AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP6PHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzAgQAAAAAAkP9rI1RVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVhBw4EAAAAAAT5W68wQAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB8BQAA//+3E9IO")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x145842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x2, 0x4000, 0x0, 0x10)

13:48:50 executing program 4:
open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x80001)

[ 1637.424694][   T27] audit: type=1800 audit(1683380930.343:256): pid=32542 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1974 res=0 errno=0
[ 1637.610273][T32575] devtmpfs: Unknown parameter ''
13:48:51 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
dup2(r5, r5)
ioctl$BLKGETSIZE(0xffffffffffffffff, 0x40081271, &(0x7f0000003c00))
mount(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='./file0\x00', &(0x7f0000000400)='devtmpfs\x00', 0x4, &(0x7f0000000440)=',\x15\x00')
sched_setaffinity(0x0, 0x8, &(0x7f00000003c0)=0xae)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup(r6, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f0000000140), 0x12)

13:48:51 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0), 0x0)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:48:51 executing program 4:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x802, 0x0)
write$uinput_user_dev(r0, 0x0, 0x0)

[ 1638.706086][T32582] devtmpfs: Unknown parameter ''
13:48:51 executing program 4:
bpf$BPF_GET_PROG_INFO(0x23, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)

13:48:52 executing program 4:
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x3, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={r0, 0xe0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000410, 0x8, 0x0, 0x0}}, 0x10)

13:48:52 executing program 4:
socketpair(0xa, 0x1, 0x6, &(0x7f0000000080))

13:48:52 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x0, 0x87}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000100)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000a00)=[{{&(0x7f0000000480)=@rc={0x1f, @fixed}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000640)=""/131, 0x83}, {&(0x7f0000000700)=""/203, 0xcb}], 0x2}, 0x4}], 0x1, 0x40000002, &(0x7f0000000a80)={0x0, 0x3938700})
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r5 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x4103fe)
sendfile(r4, r4, 0x0, 0xffffffff009)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, 0x0, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fff)
open(&(0x7f0000000400)='./file0\x00', 0x4000, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000000600), 0x8)
sched_rr_get_interval(r0, &(0x7f0000000340))

[ 1639.876947][   T27] audit: type=1800 audit(1683380932.853:257): pid=32599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=1975 res=0 errno=0
[ 1640.057848][T32569] loop5: detected capacity change from 0 to 32768
[ 1640.082830][   T27] audit: type=1804 audit(1683380933.103:258): pid=32601 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir60446055/syzkaller.7EY9SI/1875/file0" dev="sda1" ino=1975 res=1 errno=0
[ 1640.151091][T32569] XFS (loop5): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[ 1640.299125][T32570] loop2: detected capacity change from 0 to 32768
[ 1640.324548][T32569] XFS (loop5): Ending clean mount
[ 1640.342483][T32569] XFS (loop5): Quotacheck needed: Please wait.
13:48:53 executing program 2:
syz_mount_image$xfs(&(0x7f0000009800), &(0x7f0000009840)='./file0\x00', 0x0, &(0x7f0000000040)={[{@nogrpid}, {@uquota}]}, 0x1, 0x980a, &(0x7f00000130c0)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x145842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x2, 0x4000, 0x0, 0x10)

[ 1640.359968][T32570] workqueue: Failed to create a rescuer kthread for wq "xfs-conv/loop2": -EINTR
[ 1640.528250][T32569] XFS (loop5): Quotacheck: Done.
13:48:53 executing program 5:
syz_mount_image$xfs(&(0x7f0000009800), &(0x7f0000009840)='./file0\x00', 0x0, &(0x7f0000000040)={[{@nogrpid}, {@uquota}]}, 0x1, 0x980a, &(0x7f00000130c0)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x145842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x2, 0x4000, 0x0, 0x10)

13:48:53 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0), 0x0)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1640.568885][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-uuid/a2f82aab-77f8-4286-afd4-a8f747a74bab.tmp-b7:2' failed: Read-only file system
[ 1640.644225][ T5040] XFS (loop5): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[ 1640.714855][T27653] udevd[27653]: symlink '../../loop5' '/dev/disk/by-uuid/a2f82aab-77f8-4286-afd4-a8f747a74bab.tmp-b7:5' failed: Read-only file system
13:48:53 executing program 0:
syz_mount_image$xfs(&(0x7f0000009800), &(0x7f0000009840)='./file0\x00', 0x0, &(0x7f0000000040)={[{@nogrpid}, {@uquota}]}, 0x1, 0x980a, &(0x7f00000130c0)="$eJzs3QXYZHXBsPFnl6UbCwNZGotuDEJBBAEJKSWkJQWUMAARBEQBSUERUKREkO7u7u7u7vyuZXcV1xte/b73+nhf7/u+rueZmTNnznPm/ztznmf2zM4sv9DSCwwMTDQwvJGnf+/glz995OYvL7DD0dcf9tLChy565IjJYww/GTJ0xOkUI06nHBgYGDRiOYOGTxs85PgTBg+MNTAw+J3LHW/scQeNNzCwxoiL8404nXP4yfjXjJzvrVHiFR22GoN2Hv41/IcODAyMPezMMwMzLvfO5YxYr5n+6Y5KW37+hRf6u9Xf3IaN35AR59/5Ncbwr/EvGxgY/9IB3j4Gvb/36O2fP9GeF6yw4vu8Hv8rWn7+hRcZxX/YY3G0EdPmHPYYH/UxaGzU7XzonHeM3AcNwh3n/5KWn3+hxQbefT8/sPKbB2z61tv7zcHjDAwMHndgYPB4AwODxx8YGDzBwMDgCd9vl/p/633d+Kqqqup9af4FZl1g2PO9Uf4eGGvk37X0d+FKbyxxx8DAwOjD5xk8x8jnglVVVVVVVVX1P7P5F5h1QXj+P9F7Pf8/7tRXp+/5f1VVVVVVVdX/nhaZf4FZhz2PH+X5/6Tv9fx/mwdeXH/Ea//nHH6rN9/fO1FVVVVVVVVV79lSX3/7+f+4ozz/H/pez/8fnnenB0fMN/LfDd54xyIHveP1BK+9Y/po75j/1XdMH/KO6e+cf4yBgcFDRkx//e+TB48z7Lp/nn/wRMPWe8T0V94xfaa////mIVO/Y/rM75g+7TumzzJiXYdNn+4d02d/x/zT/ytjW1VVVVVVVVVVVVVVVVVV9f+rN5849cy/v+f7Jwfe8f7tf3sf9xGvCxh0zNlXX/2+rej/jAb98+shtnm/1+n/tWHOYx0xdGBgw2Xf71Wp96H3+/Ma6v0tf3f5u8vfXf7u8neXv7v83eXvLn93+bvL313+7vIX9y7H///2/v+THbrGyP8zP+fBu04+wTtvu+47zo/1/3Wt37f+U4//D6w7aGBghO9Ew1wXn3+pZaYfGBiYYPJdD55t4G/XzTXsunknGW3EGyQMfxuEaYbwgrcZ8ano24yYdcQyjnl7+Yu8ddBog0ZZiXc08YmHHLLO8i/NNurptO9+PwaPPPOhS7ZYcOR7WQweZaZ3205HLn/kfRnVecS6Tz9s3WfcbIONZ9x0y60+t+4Gq6295tprbjj3nHPONfucc8w9y4xrrbv+mjMN//5uYzb07e9T/StjNumoY/bE/O8cs1Hv27uN2dD3HrO3lzjmHqusN3LMRl21/2rMpnrvMRu67ogfNGTo6AOrvj02gwYGhkw9+sAWwy7MPObAwJBpRsw76bB5Pz/J4IGB3f5+R4edG/Nv2+CgbYbNs/xCSy/w94/d/+eP33+Xz7MfY/jJkBFDMmSKEadTDv8xEw38fVMcPOT4EwYPu+//MMzjjT3uoPEGBtYYcXG+Eadzj7j2ypHzvcvnrI+yom+/zcrOw7/+5jH2sDNHLTnhTe9czrsQ/Hf0f/X7/5+85hr0t4EaNOJrxDzDveZfeJG//6y3h2G+ke8JM+x3yzCT/4ePsf8v+6f1HTrW229y+27r+x7vizv8/sP2Ne1j5w3973pfXN53LPb296H/yr5j4L33HaP9/ezfp655xWSj7jsWffdV/IfHxcgxGnOUmd5t3zH9vvNv/fa+6b33HYutO+KDhv6+7xg8MDBkqpH7jmE7kmlHH9ht2IVZhl2YbvSBw4ZdmPXtC2MPnD3swgyrb7T+GoPeftueEcudadhy55tk0Nt3/uoZ5z9ytD3femvqEesy0yg71hHbx9B3/n6cf5LhwzbytrTcuzcbft20I5Y787+x3JG3peXOtcnw66YbsdxZRlnuaO+x3JG3Hfl4GDbr24+H6Qf9wws/4fG70CiP30Ejd+vvuMnIrzGGf41/2cjPhoLHy7+136HH70Tvsb7v8blWuL0Nm7bd4lec+t/1uVa0vmO99/q+2+dwv+v6rjf2Fkv8N6zvoHes7z9sZxvPM3xbmX7Edjb7v7H9jrztqPux0d++djjD9P/Kfmy+f9qPbTva4FFW/h29299Aa8D8w89P+relzX34aBOOHPvRR1nuf/U30PTvvR+baN1RbrfQgQODaMwffvyQdcb8L8Z89IF//Ft95JiPvO17jfl0/zzmg/5pzOd67zH/V//unH6q4deP9h5jPnjHTRcfOeZj/JtjPt2/O+bzDYxGY77bfsPH7b32p+825iNv+49jPmTgKwMDA1OPGPNp/5XtfKb/nu18HJh/+PkH/jbpksnO2OUd+5hB/86YT/vvjvnQv23nU7993ZSDB8YYY2CL1TbbbJOZh38feXGW4d95X/T0/cPH+b1+l76b0cjbvtfjYup/xWjof4/Rx4b88/wjn3SMvLzs2UdN/H+7L5r63zMatNAA74tOvmj4uL3X30XvNuYjb0u/B4e+4/ajPq97j/ejxPs0bNo+++51+8hFjrhZ70f5r/cPm+3If+Nbd9SdfP2n1r//u8vfXf7u8neXv7h3Of7/t/f/f3iipR8b8SR59N3nWXv193t93+f+o4//j/D9h+P/q689z+7DngqOuO49j88On+d/5PHZOYefjH/NyPlGPT7IK/rux2en22OGpQb+/xyf/b9q5GP1X3ge3/7fXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/N3lL+5djv+PfI3y0P3fuH+bEQdCR997r9XfeL/X933uP/r4/wjffzj+/8bqe+09eOBv173n8f/h8ziO/y+x/54nDPwPPv4/8rHa8f/6L8rfXf7u8neXv7v83eXvLn93+bvL313+7vJ3l7+7/MW9y/H/+Ua+DmCOVdbaeeTrATac+Uvbv9/r+z73n3r8v8//99b+313+7vJ3l7+7/N3l7y5/d/m7y99d/u7yd5e/u/zd5S9uxPH/gVE+1nHJtgsMjv//7+5d/L+RP2bxXyp/zOK/dP6YxX+Z/DGL/7L5Yxb/b+aPWfyXyx+z+C+fP2bxXyF/zOK/Yv6YxX+l/DGL/7fyxyz+384fs/ivnD9m8V8lf8ziv2r+mMV/tfwxi/938scs/qvnj1n818gfs/ivmT9m8V8rf8ziv3b+mMV/nfwxi/+6+WMW/+/mj1n818sfs/ivnz9m8d8gf8ziv2H+mMV/o/wxi//G+WMW/+/lj1n8N8kfs/hvmj9m8d8sf8zi//38MYv/D/LHLP6b549Z/LfIH7P4b5k/ZvHfKn/M4v/D/DGL/4/yxyz+P84fs/j/JH/M4r91/pjFf5v8MYv/tvljFv+f5o9Z/LfLH7P4/yx/zOK/ff6YxX+H/DGL/8/zxyz+O+aPWfx3yh+z+O+cP2bx/0X+mMV/l/wxi/8v88cs/r/KH7P475o/ZvHfLX/M4r97/pjF/9f5Yxb/PfLHLP575o9Z/PfKH7P4750/ZvHfJ3/M4r9v/pjF/zf5Yxb//fLHLP77549Z/H+bP2bx/13+mMX/gPwxi//v88cs/gfmj1n8D8ofs/gfnD9m8f9D/pjF/4/5Yxb/Q/LHLP5/yh+z+B+aP2bxPyx/zOJ/eP6Yxf+I/DGL/5H5Yxb/P+ePWfyPyh+z+P8lf8zif3T+mMX/mPwxi/9f88cs/sfmj1n8j8sfs/gfnz9m8T8hf8zif2L+mMX/pPwxi//J+WMW/1Pyxyz+p+aPWfxPyx+z+J+eP2bxPyN/zOJ/Zv6Yxf+s/DGL/9n5Yxb/c/LHLP7n5o9Z/M/LH7P4n58/ZvG/IH/M4n9h/pjF/6L8MYv/xfljFv9L8scs/pfmj1n8L8sfs/hfnj9m8b8if8zif2X+mMX/qvwxi//V+WMW/2vyxyz+1+aPWfyvyx+z+F+fP2bxvyF/zOJ/Y/6Yxf+m/DGL/835Yxb/W/LHLP635o9Z/G/LH7P4354/ZvG/I3/M4n9n/pjF/678MYv/3fljFv978scs/vfmj1n878sfs/jfnz9m8X8gf8zi/2D+mMX/ofwxi//D+WMW/0fyxyz+j+aPWfwfyx+z+D+eP2bxfyJ/zOL/ZP6Yxf+p/DGL/9P5Yxb/Z/LHLP7P5o9Z/J/LH7P4P58/ZvF/IX/M4v9i/pjF/6X8MYv/y/ljFv9X8scs/q/mj1n8X8sfs/i/nj9m8X8jf8zi/2b+mMX/rfwxif+ggfwxi/+g/DGL/+D8MYv/aPljFv8h+WMW/9Hzxyz+Y+SPWfzHzB+z+I+VP2bxHzt/zOI/Tv6YxX/c/DGL/3j5Yxb/8fPHLP4T5I9Z/CfMH7P4T5Q/ZvGfOH/M4j9J/pjF/wP5Yxb/D+aPWfw/lD9m8f9w/pjF/yP5Yxb/SfPHLP4fzR+z+H8sf8zi//H8MYv/J/LHLP6T5Y9Z/D+ZP2bxnzx/zOI/NH/M4j9F/pjFf8r8MYv/VPljFv+p88cs/tPkj1n8p80fs/hPlz9m8Z8+f8zi/6n8MYv/p/PHLP6fyR+z+H82f8zi/7n8MYv/DPljFv8Z88cs/jPlj1n8Z84fs/jPkj9m8Z81f8ziP1v+mMV/9vwxi/8c+WMW/znzxyz+c+WPWfznzh+z+M+TP2bxnzd/zOL/+fwxi/8X8scs/l/MH7P4fyl/zOI/X/6YxX/+/DGL/wL5Yxb/BfPHLP5fzh+z+H8lf8ziv1D+mMV/4fwxi/9X88cs/ovkj1n8v5Y/ZvFfNH/M4r9Y/pjF/+v5Yxb/xfPHLP5L5I9Z/JfMH7P4fyN/zOK/VP6YxX/p/DGL/zL5Yxb/ZfPHLP7fzB+z+C+XP2bxXz5/zOK/Qv6YxX/F/DGL/0r5Yxb/b+WPWfy/nT9m8V85f8ziv0r+mMV/1fwxi/9q+WMW/+/kj1n8V88fs/ivkT9m8V8zf8ziv1b+mMV/7fwxi/86+WMW/3Xzxyz+380fs/ivlz9m8V8/f8ziv0H+mMV/w/wxi/9G+WMW/43zxyz+38sfs/hvkj9m8d80f8ziv1n+mMX/+/ljFv8f5I9Z/DfPH7P4b5E/ZvHfMn/M4r9V/pjF/4f5Yxb/H+WPWfx/nD9m8f9J/pjFf+v8MYv/NvljFv9t88cs/j/NH7P4b5c/ZvH/Wf6YxX/7/DGL/w75Yxb/n+ePWfx3zB+z+O+UP2bx3zl/zOL/i/wxi/8u+WMW/1/mj1n8f5U/ZvHfNX/M4r9b/pjFf/f8MYv/r/PHLP575I9Z/PfMH7P475U/ZvHfO3/M4r9P/pjFf9/8MYv/b/LHLP775Y9Z/PfPH7P4/zZ/zOL/u/wxi/8B+WMW/9/nj1n8D8wfs/gflD9m8T84f8zi/4f8MYv/H/PHLP6H5I9Z/P+UP2bxPzR/zOJ/WP6Yxf/w/DGL/xH5Yxb/I/PHLP5/zh+z+B+VP2bx/0v+mMX/6Pwxi/8x+WMW/7/mj1n8j80fs/gflz9m8T8+f8zif0L+mMX/xPwxi/9J+WMW/5Pzxyz+p+SPWfxPzR+z+J+WP2bxPz1/zOJ/Rv6Yxf/M/DGL/1n5Yxb/s/PHLP7n5I9Z/M/NH7P4n5c/ZvE/P3/M4n9B/pjF/8L8MYv/RfljFv+L88cs/pfkj1n8L80fs/hflj9m8b88f8zif0X+mMX/yvwxi/9V+WMW/6vzxyz+1+SPWfyvzR+z+F+XP2bxvz5/zOJ/Q/6Yxf/G/DGL/035Yxb/m/PHLP635I9Z/G/NH7P435Y/ZvG/PX/M4n9H/pjF/878MYv/XfljFv+788cs/vfkj1n8780fs/jflz9m8b8/f8zi/0D+mMX/wfwxi/9D+WMW/4fzxyz+j+SPWfwfzR+z+D+WP2bxfzx/zOL/RP6Yxf/J/DGL/1P5Yxb/p/PHLP7P5I9Z/J/NH7P4P5c/ZvF/Pn/M4v9C/pjF/8X8MYv/S/ljFv+X88cs/q/kj1n8X80fs/i/lj9m8X89f8zi/0b+mMX/zfwxi/9b+WMS/7fP5v/PWfwH5Y9Z/Afnj1n8R8sfs/gPyR+z+I+eP2bxHyN/zOI/Zv6YxX+s/DGL/9j5Yxb/cfLHLP7j5o9Z/MfLH7P4j58/ZvGfIH/M4j9h/pjFf6L8MYv/xPljFv9J8scs/h/IH7P4fzB/zOL/ofwxi/+H88cs/h/JH7P4T5o/ZvH/aP6Yxf9j+WMW/4/nj1n8P5E/ZvGfLH/M4v/J/DGL/+T5Yxb/ofljFv8p8scs/lPmj1n8p8ofs/hPnT9m8Z8mf8ziP23+mMV/uvwxi//0+WMW/0/lj1n8P50/ZvH/TP6Yxf+z+WMW/8/lj1n8Z8gfs/jPmD9m8Z8pf8ziP3P+mMV/lvwxi/+s+WMW/9nyxyz+s+ePWfznyB+z+M+ZP2bxnyt/zOI/d/6YxX+e/DGL/7z5Yxb/z+ePWfy/kD9m8f9i/pjF/0v5Yxb/+fLHLP7z549Z/BfIH7P4L5g/ZvH/cv6Yxf8r+WMW/4Xyxyz+C+ePWfy/mj9m8V8kf8zi/7X8MYv/ovljFv/F8scs/l/PH7P4L54/ZvFfIn/M4r9k/pjF/xv5Yxb/pfLHLP5L549Z/JfJH7P4L5s/ZvH/Zv6YxX+5/DGL//L5Yxb/FfLHLP4r5o9Z/FfKH7P4fyt/zOL/7fwxi//K+WMW/1Xyxyz+q+aPWfxXyx+z+H8nf8ziv3r+mMV/jfwxi/+a+WMW/7Xyxyz+a+ePWfzXyR+z+K+bP2bx/27+mMV/vfwxi//6+WMW/w3yxyz+G+aPWfw3yh+z+G+cP2bx/17+mMV/k/wxi/+m+WMW/83yxyz+388fs/j/IH/M4r95/pjFf4v8MYv/lvljFv+t8scs/j/MH7P4/yh/zOL/4/wxi/9P8scs/lvnj1n8t8kfs/hvmz9m8f9p/pjFf7v8MYv/z/LHLP7b549Z/HfIH7P4/zx/zOK/Y/6YxX+n/DGL/875Yxb/X+SPWfx3yR+z+P8yf8zi/6v8MYv/rvljFv/d8scs/rvnj1n8f50/ZvHfI3/M4r9n/pjFf6/8MYv/3vljFv998scs/vvmj1n8f5M/ZvHfL3/M4r9//pjF/7f5Yxb/3+WPWfwPyB+z+P8+f8zif2D+mMX/oPwxi//B+WMW/z/kj1n8/5g/ZvE/JH/M4v+n/DGL/6H5Yxb/w/LHLP6H549Z/I/IH7P4H5k/ZvH/c/6Yxf+o/DGL/1/yxyz+R+ePWfyPyR+z+P81f8zif2z+mMX/uPwxi//x+WMW/xPyxyz+J+aPWfxPyh+z+J+cP2bxPyV/zOJ/av6Yxf+0/DGL/+n5Yxb/M/LHLP5n5o9Z/M/KH7P4n50/ZvE/J3/M4n9u/pjF/7z8MYv/+fljFv8L8scs/hfmj1n8L8ofs/hfnD9m8b8kf8zif2n+mMX/svwxi//l+WMW/yvyxyz+V+aPWfyvyh+z+F+dP2bxvyZ/zOJ/bf6Yxf+6/DGL//X5Yxb/G/LHLP435o9Z/G/KH7P435w/ZvG/JX/M4n9r/pjF/7b8MYv/7fljFv878scs/nfmj1n878ofs/jfnT9m8b8nf8zif2/+mMX/vvwxi//9+WMW/wfyxyz+D+aPWfwfyh+z+D+cP2bxfyR/zOL/aP6Yxf+x/DGL/+P5Yxb/J/LHLP5P5o9Z/J/KH7P4P50/ZvF/Jn/M4v9s/pjF/7n8MYv/8/ljFv8X8scs/i/mj1n8X8ofs/i/nD9m8X8lf8zi/2r+mMX/tfwxi//r+WMW/zfyxyz+b+aPWfzfyh+T+I82kD9m8R+UP2bxH5w/ZvEfLX/M4j8kf8ziP3r+mMV/jPwxi/+Y+WMW/7Hyxyz+Y+ePWfzHyR+z+I+bP2bxHy9/zOI/fv6YxX+C/DGL/4T5Yxb/ifLHLP4T549Z/CfJH7P4fyB/zOL/wfwxi/+H8scs/h/OH7P4fyR/zOI/af6Yxf+j+WMW/4/lj1n8P54/ZvH/RP6YxX+y/DGL/yfzxyz+k+ePWfyH5o9Z/KfIH7P4T5k/ZvGfKn/M4j91/pjFf5r8MYv/tPljFv/p8scs/tPnj1n8P5U/ZvH/dP6Yxf8z+WMW/8/mj1n8P5c/ZvGfIX/M4j9j/pjFf6b8MYv/zPljFv9Z8scs/rPmj1n8Z8sfs/jPnj9m8Z8jf8ziP2f+mMV/rvwxi//c+WMW/3nyxyz+8+aPWfw/nz9m8f9C/pjF/4v5Yxb/L+WPWfznyx+z+M+fP2bxXyB/zOK/YP6Yxf/L+WMW/6/kj1n8F8ofs/gvnD9m8f9q/pjFf5H8MYv/1/LHLP6L5o9Z/BfLH7P4fz1/zOK/eP6YxX+J/DGL/5L5Yxb/b+SPWfyXyh+z+C+dP2bxXyZ/zOK/bP6Yxf+b+WMW/+Xyxyz+y+ePWfxXyB+z+K+YP2bxXyl/zOL/rfwxi/+388cs/ivnj1n8V8kfs/ivmj9m8V8tf8zi/538MYv/6vljFv818scs/mvmj1n818ofs/ivnT9m8V8nf8ziv27+mMX/u/ljFv/18scs/uvnj1n8N8gfs/hvmD9m8d8of8ziv3H+mMX/e/ljFv9N8scs/pvmj1n8N8sfs/h/P3/M4v+D/DGL/+b5Yxb/LfLHLP5b5o9Z/LfKH7P4/zB/zOL/o/wxi/+P88cs/j/JH7P4b50/ZvHfJn/M4r9t/pjF/6f5Yxb/7fLHLP4/yx+z+G+fP2bx3yF/zOL/8/wxi/+O+WMW/53yxyz+O+ePWfx/kT9m8d8lf8zi/8v8MYv/r/LHLP675o9Z/HfLH7P4754/ZvH/df6YxX+P/DGL/575Yxb/vfLHLP57549Z/PfJH7P475s/ZvH/Tf6YxX+//DGL//75Yxb/3+aPWfx/lz9m8T8gf8zi//v8MYv/gfljFv+D8scs/gfnj1n8/5A/ZvH/Y/6Yxf+Q/DGL/5/yxyz+h+aPWfwPyx+z+B+eP2bxPyJ/zOJ/ZP6Yxf/P+WMW/6Pyxyz+f8kfs/gfnT9m8T8mf8zi/9f8MYv/sfljFv/j8scs/sfnj1n8T8gfs/ifmD9m8T8pf8zif3L+mMX/lPwxi/+p+WMW/9Pyxyz+p+ePWfzPyB+z+J+ZP2bxPyt/zOJ/dv6Yxf+c/DGL/7n5Yxb/8/LHLP7n549Z/C/IH7P4X5g/ZvG/KH/M4n9x/pjF/5L8MYv/pfljFv/L8scs/pfnj1n8r8gfs/hfmT9m8b8qf8zif3X+mMX/mvwxi/+1+WMW/+vyxyz+1+ePWfxvyB+z+N+YP2bxvyl/zOJ/c/6Yxf+W/DGL/635Yxb/2/LHLP63549Z/O/IH7P435k/ZvG/K3/M4n93/pjF/578MYv/vfljFv/78scs/vfnj1n8H8gfs/g/mD9m8X8of8zi/3D+mMX/kfwxi/+j+WMW/8fyxyz+j+ePWfyfyB+z+D+ZP2bxfyp/zOL/dP6Yxf+Z/DGL/7P5Yxb/5/LHLP7P549Z/F/IH7P4v5g/ZvF/KX/M4v9y/pjF/5X8MYv/q/ljFv/X8scs/q/nj1n838gfs/i/mT9m8X8rf0ziP2Qgf8ziPyh/zOI/OH/M4j9a/pjFf0j+mMV/9Pwxi/8Y+WMW/zHzxyz+Y+WPWfzHzh+z+I+TP2bxHzd/zOI/Xv6YxX/8/DGL/wT5Yxb/CfPHLP4T5Y9Z/CfOH7P4T5I/ZvH/QP6Yxf+D+WMW/w/lj1n8P5w/ZvH/SP6YxX/S/DGL/0fzxyz+H8sfs/h/PH/M4v+J/DGL/2T5Yxb/T+aPWfwnzx+z+A/NH7P4T5E/ZvGfMn/M4j9V/pjFf+r8MYv/NPljFv9p88cs/tPlj1n8p88fs/h/Kn/M4v/p/DGL/2fyxyz+n80fs/h/Ln/M4j9D/pjFf8b8MYv/TPljFv+Z88cs/rPkj1n8Z80fs/jPlj9m8Z89f8ziP0f+mMV/zvwxi/9c+WMW/7nzxyz+8+SPWfznzR+z+H8+f8zi/4X8MYv/F/PHLP5fyh+z+M+XP2bxnz9/zOK/QP6YxX/B/DGL/5fzxyz+X8kfs/gvlD9m8V84f8zi/9X8MYv/IvljFv+v5Y9Z/BfNH7P4L5Y/ZvH/ev6YxX/x/DGL/xL5Yxb/JfPHLP7fyB+z+C+VP2bxXzp/zOK/TP6YxX/Z/DGL/zfzxyz+y+WPWfyXzx+z+K+QP2bxXzF/zOK/Uv6Yxf9b+WMW/2/nj1n8V84fs/ivkj9m8V81f8ziv1r+mMX/O/ljFv/V88cs/mvkj1n818wfs/ivlT9m8V87f8ziv07+mMV/3fwxi/9388cs/uvlj1n8188fs/hvkD9m8d8wf8ziv1H+mMV/4/wxi//38scs/pvkj1n8N80fs/hvlj9m8f9+/pjF/wf5Yxb/zfPHLP5b5I9Z/LfMH7P4b5U/ZvH/Yf6Yxf9H+WMW/x/nj1n8f5I/ZvHfOn/M4r9N/pjFf9v8MYv/T/PHLP7b5Y9Z/H+WP2bx3z5/zOK/Q/6Yxf/n+WMW/x3zxyz+O+WPWfx3zh+z+P8if8ziv0v+mMX/l/ljFv9f5Y9Z/HfNH7P475Y/ZvHfPX/M4v/r/DGL/x75Yxb/PfPHLP575Y9Z/PfOH7P475M/ZvHfN3/M4v+b/DGL/375Yxb//fPHLP6/zR+z+P8uf8zif0D+mMX/9/ljFv8D88cs/gflj1n8D84fs/j/IX/M4v/H/DGL/yH5Yxb/P+WPWfwPzR+z+B+WP2bxPzx/zOJ/RP6Yxf/I/DGL/5/zxyz+R+WPWfz/kj9m8T86f8zif0z+mMX/r/ljFv9j88cs/sflj1n8j88fs/ifkD9m8T8xf8zif1L+mMX/5Pwxi/8p+WMW/1Pzxyz+p+WPWfxPzx+z+J+RP2bxPzN/zOJ/Vv6Yxf/s/DGL/zn5Yxb/c/PHLP7n5Y9Z/M/PH7P4X5A/ZvG/MH/M4n9R/pjF/+L8MYv/JfljFv9L88cs/pflj1n8L88fs/hfkT9m8b8yf8zif1X+mMX/6vwxi/81+WMW/2vzxyz+1+WPWfyvzx+z+N+QP2bxvzF/zOJ/U/6Yxf/m/DGL/y35Yxb/W/PHLP635Y9Z/G/PH7P435E/ZvG/M3/M4n9X/pjF/+78MYv/PfljFv9788cs/vflj1n8788fs/g/kD9m8X8wf8zi/1D+mMX/4fwxi/8j+WMW/0fzxyz+j+WPWfwfzx+z+D+RP2bxfzJ/zOL/VP6Yxf/p/DGL/zP5Yxb/Z/PHLP7P5Y9Z/J/PH7P4v5A/ZvF/MX/M4v9S/pjF/+X8MYv/K/ljFv9X88cs/q/lj1n8X88fs/i/kT9m8X8zf8zi/1b+mMR/9IH8MYv/oPwxi//g/DGL/2j5Yxb/IfljFv/R88cs/mPkj1n8x8wfs/iPlT9m8R87f8ziP07+mMV/3Pwxi/94+WMW//Hzxyz+E+SPWfwnzB+z+E+UP2bxnzh/zOI/Sf6Yxf8D+WMW/w/mj1n8P5Q/ZvH/cP6Yxf8j+WMW/0nzxyz+H80fs/h/LH/M4v/x/DGL/yfyxyz+k+WPWfw/mT9m8Z88f8ziPzR/zOI/Rf6YxX/K/DGL/1T5Yxb/qfPHLP7T5I9Z/KfNH7P4T5c/ZvGfPn/M4v+p/DGL/6fzxyz+n8kfs/h/Nn/M4v+5/DGL/wz5Yxb/GfPHLP4z5Y9Z/GfOH7P4z5I/ZvGfNX/M4j9b/pjFf/b8MYv/HPljFv8588cs/nPlj1n8584fs/jPkz9m8Z83f8zi//n8MYv/F/LHLP5fzB+z+H8pf8ziP1/+mMV//vwxi/8C+WMW/wXzxyz+X84fs/h/JX/M4r9Q/pjFf+H8MYv/V/PHLP6L5I9Z/L+WP2bxXzR/zOK/WP6Yxf/r+WMW/8Xzxyz+S+SPWfyXzB+z+H8jf8ziv1T+mMV/6fwxi/8y+WMW/2Xzxyz+38wfs/gvlz9m8V8+f8ziv0L+mMV/xfwxi/9K+WMW/2/lj1n8v50/ZvFfOX/M4r9K/pjFf9X8MYv/avljFv/v5I9Z/FfPH7P4r5E/ZvFfM3/M4r9W/pjFf+38MYv/OvljFv9188cs/t/NH7P4r5c/ZvFfP3/M4r9B/pjFf8P8MYv/RvljFv+N88cs/t/LH7P4b5I/ZvHfNH/M4r9Z/pjF//v5Yxb/H+SPWfw3zx+z+G+RP2bx3zJ/zOK/Vf6Yxf+H+WMW/x/lj1n8f5w/ZvH/Sf6YxX/r/DGL/zb5Yxb/bfPHLP4/zR+z+G+XP2bx/1n+mMV/+/wxi/8O+WMW/5/nj1n8d8wfs/jvlD9m8d85f8zi/4v8MYv/LvljFv9f5o9Z/H+VP2bx3zV/zOK/W/6YxX/3/DGL/6/zxyz+e+SPWfz3zB+z+O+VP2bx3zt/zOK/T/6YxX/f/DGL/2/yxyz+++WPWfz3zx+z+P82f8zi/7v8MYv/AfljFv/f549Z/A/MH7P4H5Q/ZvE/OH/M4v+H/DGL/x/zxyz+h+SPWfz/lD9m8T80f8zif1j+mMX/8Pwxi/8R+WMW/yPzxyz+f84fs/gflT9m8f9L/pjF/+j8MYv/MfljFv+/5o9Z/I/NH7P4H5c/ZvE/Pn/M4n9C/pjF/8T8MYv/SfljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zif0b+mMX/zPwxi/9Z+WMW/7Pzxyz+5+SPWfzPzR+z+J+XP2bxPz9/zOJ/Qf6Yxf/C/DGL/0X5Yxb/i/PHLP6X5I9Z/C/NH7P4X5Y/ZvG/PH/M4n9F/pjF/8r8MYv/VfljFv+r88cs/tfkj1n8r80fs/hflz9m8b8+f8zif0P+mMX/xvwxi/9N+WMW/5vzxyz+t+SPWfxvzR+z+N+WP2bxvz1/zOJ/R/6Yxf/O/DGL/135Yxb/u/PHLP735I9Z/O/NH7P435c/ZvG/P3/M4v9A/pjF/8H8MYv/Q/ljFv+H88cs/o/kj1n8H80fs/g/lj9m8X88f8zi/0T+mMX/yfwxi/9T+WMW/6fzxyz+z+SPWfyfzR+z+D+XP2bxfz5/zOL/Qv6Yxf/F/DGL/0v5Yxb/l/PHLP6v5I9Z/F/NH7P4v5Y/ZvF/PX/M4v9G/pjF/838MYv/W/ljEv8xBvLHLP6D8scs/oPzxyz+o+WPWfyH5I9Z/EfPH7P4j5E/ZvEfM3/M4j9W/pjFf+z8MYv/OPljFv9x88cs/uPlj1n8x88fs/hPkD9m8Z8wf8ziP1H+mMV/4vwxi/8k+WMW/w/kj1n8P5g/ZvH/UP6Yxf/D+WMW/4/kj1n8J80fs/h/NH/M4v+x/DGL/8fzxyz+n8gfs/hPlj9m8f9k/pjFf/L8MYv/0Pwxi/8U+WMW/ynzxyz+U+WPWfynzh+z+E+TP2bxnzZ/zOI/Xf6YxX/6/DGL/6fyxyz+n84fs/h/Jn/M4v/Z/DGL/+fyxyz+M+SPWfxnzB+z+M+UP2bxnzl/zOI/S/6YxX/W/DGL/2z5Yxb/2fPHLP5z5I9Z/OfMH7P4z5U/ZvGfO3/M4j9P/pjFf978MYv/5/PHLP5fyB+z+H8xf8zi/6X8MYv/fPljFv/588cs/gvkj1n8F8wfs/h/OX/M4v+V/DGL/0L5Yxb/hfPHLP5fzR+z+C+SP2bx/1r+mMV/0fwxi/9i+WMW/6/nj1n8F88fs/gvkT9m8V8yf8zi/438MYv/UvljFv+l88cs/svkj1n8l80fs/h/M3/M4r9c/pjFf/n8MYv/CvljFv8V88cs/ivlj1n8v5U/ZvH/dv6YxX/l/DGL/yr5Yxb/VfPHLP6r5Y9Z/L+TP2bxXz1/zOK/Rv6YxX/N/DGL/1r5Yxb/tfPHLP7r5I9Z/NfNH7P4fzd/zOK/Xv6YxX/9/DGL/wb5Yxb/DfPHLP4b5Y9Z/DfOH7P4fy9/zOK/Sf6YxX/T/DGL/2b5Yxb/7+ePWfx/kD9m8d88f8ziv0X+mMV/y/wxi/9W+WMW/x/mj1n8f5Q/ZvH/cf6Yxf8n+WMW/63zxyz+2+SPWfy3zR+z+P80f8ziv13+mMX/Z/ljFv/t88cs/jvkj1n8f54/ZvHfMX/M4r9T/pjFf+f8MYv/L/LHLP675I9Z/H+ZP2bx/1X+mMV/1/wxi/9u+WMW/93zxyz+v84fs/jvkT9m8d8zf8ziv1f+mMV/7/wxi/8++WMW/33zxyz+v8kfs/jvlz9m8d8/f8zi/9v8MYv/7/LHLP4H5I9Z/H+fP2bxPzB/zOJ/UP6Yxf/g/DGL/x/yxyz+f8wfs/gfkj9m8f9T/pjF/9D8MYv/YfljFv/D88cs/kfkj1n8j8wfs/j/OX/M4n9U/pjF/y/5Yxb/o/PHLP7H5I9Z/P+aP2bxPzZ/zOJ/XP6Yxf/4/DGL/wn5Yxb/E/PHLP4n5Y9Z/E/OH7P4n5I/ZvE/NX/M4n9a/pjF//T8MYv/GfljFv8z88cs/mflj1n8z84fs/ifkz9m8T83f8zif17+mMX//Pwxi/8F+WMW/wvzxyz+F+WPWfwvzh+z+F+SP2bxvzR/zOJ/Wf6Yxf/y/DGL/xX5Yxb/K/PHLP5X5Y9Z/K/OH7P4X5M/ZvG/Nn/M4n9d/pjF//r8MYv/DfljFv8b88cs/jflj1n8b84fs/jfkj9m8b81f8zif1v+mMX/9vwxi/8d+WMW/zvzxyz+d+WPWfzvzh+z+N+TP2bxvzd/zOJ/X/6Yxf/+/DGL/wP5Yxb/B/PHLP4P5Y9Z/B/OH7P4P5I/ZvF/NH/M4v9Y/pjF//H8MYv/E/ljFv8n88cs/k/lj1n8n84fs/g/kz9m8X82f8zi/1z+mMX/+fwxi/8L+WMW/xfzxyz+L+WPWfxfzh+z+L+SP2bxfzV/zOL/Wv6Yxf/1/DGL/xv5Yxb/N/PHLP5v5Y9J/MccyB+z+A/KH7P4D84fs/iPlj9m8R+SP2bxHz1/zOI/Rv6YxX/M/DGL/1j5Yxb/sfPHLP7j5I9Z/MfNH7P4j5c/ZvEfP3/M4j9B/pjFf8L8MYv/RPljFv+J88cs/pPkj1n8P5A/ZvH/YP6Yxf9D+WMW/w/nj1n8P5I/ZvGfNH/M4v/R/DGL/8fyxyz+H88fs/h/In/M4j9Z/pjF/5P5Yxb/yfPHLP5D88cs/lPkj1n8p8wfs/hPlT9m8Z86f8ziP03+mMV/2vwxi/90+WMW/+nzxyz+n8ofs/h/On/M4v+Z/DGL/2fzxyz+n8sfs/jPkD9m8Z8xf8ziP1P+mMV/5vwxi/8s+WMW/1nzxyz+s+WPWfxnzx+z+M+RP2bxnzN/zOI/V/6YxX/u/DGL/zz5Yxb/efPHLP6fzx+z+H8hf8zi/8X8MYv/l/LHLP7z5Y9Z/OfPH7P4L5A/ZvFfMH/M4v/l/DGL/1fyxyz+C+WPWfwXzh+z+H81f8ziv0j+mMX/a/ljFv9F88cs/ovlj1n8v54/ZvFfPH/M4r9E/pjFf8n8MYv/N/LHLP5L5Y9Z/JfOH7P4L5M/ZvFfNn/M4v/N/DGL/3L5Yxb/5fPHLP4r5I9Z/FfMH7P4r5Q/ZvH/Vv6Yxf/b+WMW/5Xzxyz+q+SPWfxXzR+z+K+WP2bx/07+mMV/9fwxi/8a+WMW/zXzxyz+a+WPWfzXzh+z+K+TP2bxXzd/zOL/3fwxi/96+WMW//Xzxyz+G+SPWfw3zB+z+G+UP2bx3zh/zOL/vfwxi/8m+WMW/03zxyz+m+WPWfy/nz9m8f9B/pjFf/P8MYv/FvljFv8t88cs/lvlj1n8f5g/ZvH/Uf6Yxf/H+WMW/5/kj1n8t84fs/hvkz9m8d82f8zi/9P8MYv/dvljFv+f5Y9Z/LfPH7P475A/ZvH/ef6YxX/H/DGL/075Yxb/nfPHLP6/yB+z+O+SP2bx/2X+mMX/V/ljFv9d88cs/rvlj1n8d88fs/j/On/M4r9H/pjFf8/8MYv/XvljFv+988cs/vvkj1n8980fs/j/Jn/M4r9f/pjFf//8MYv/b/PHLP6/yx+z+B+QP2bx/33+mMX/wPwxi/9B+WMW/4Pzxyz+f8gfs/j/MX/M4n9I/pjF/0/5Yxb/Q/PHLP6H5Y9Z/A/PH7P4H5E/ZvE/Mn/M4v/n/DGL/1H5Yxb/v+SPWfyPzh+z+B+TP2bx/2v+mMX/2Pwxi/9x+WMW/+Pzxyz+J+SPWfxPzB+z+J+UP2bxPzl/zOJ/Sv6Yxf/U/DGL/2n5Yxb/0/PHLP5n5I9Z/M/MH7P4n5U/ZvE/O3/M4n9O/pjF/9z8MYv/efljFv/z88cs/hfkj1n8L8wfs/hflD9m8b84f8zif0n+mMX/0vwxi/9l+WMW/8vzxyz+V+SPWfyvzB+z+F+VP2bxvzp/zOJ/Tf6Yxf/a/DGL/3X5Yxb/6/PHLP435I9Z/G/MH7P435Q/ZvG/OX/M4n9L/pjF/9b8MYv/bfljFv/b88cs/nfkj1n878wfs/jflT9m8b87f8zif0/+mMX/3vwxi/99+WMW//vzxyz+D+SPWfwfzB+z+D+UP2bxfzh/zOL/SP6Yxf/R/DGL/2P5Yxb/x/PHLP5P5I9Z/J/MH7P4P5U/ZvF/On/M4v9M/pjF/9n8MYv/c/ljFv/n88cs/i/kj1n8X8wfs/i/lD9m8X85f8zi/0r+mMX/1fwxi/9r+WMW/9fzxyz+b+SPWfzfzB+z+L+VPybxH2sgf8ziPyh/zOI/OH/M4j9a/pjFf0j+mMV/9Pwxi/8Y+WMW/zHzxyz+Y+WPWfzHzh+z+I+TP2bxHzd/zOI/Xv6YxX/8/DGL/wT5Yxb/CfPHLP4T5Y9Z/CfOH7P4T5I/ZvH/QP6Yxf+D+WMW/w/lj1n8P5w/ZvH/SP6YxX/S/DGL/0fzxyz+H8sfs/h/PH/M4v+J/DGL/2T5Yxb/T+aPWfwnzx+z+A/NH7P4T5E/ZvGfMn/M4j9V/pjFf+r8MYv/NPljFv9p88cs/tPlj1n8p88fs/h/Kn/M4v/p/DGL/2fyxyz+n80fs/h/Ln/M4j9D/pjFf8b8MYv/TPljFv+Z88cs/rPkj1n8Z80fs/jPlj9m8Z89f8ziP0f+mMV/zvwxi/9c+WMW/7nzxyz+8+SPWfznzR+z+H8+f8zi/4X8MYv/F/PHLP5fyh+z+M+XP2bxnz9/zOK/QP6YxX/B/DGL/5fzxyz+X8kfs/gvlD9m8V84f8zi/9X8MYv/IvljFv+v5Y9Z/BfNH7P4L5Y/ZvH/ev6YxX/x/DGL/xL5Yxb/JfPHLP7fyB+z+C+VP2bxXzp/zOK/TP6YxX/Z/DGL/zfzxyz+y+WPWfyXzx+z+K+QP2bxXzF/zOK/Uv6Yxf9b+WMW/2/nj1n8V84fs/ivkj9m8V81f8ziv1r+mMX/O/ljFv/V88cs/mvkj1n818wfs/ivlT9m8V87f8ziv07+mMV/3fwxi/9388cs/uvlj1n8188fs/hvkD9m8d8wf8ziv1H+mMV/4/wxi//38scs/pvkj1n8N80fs/hvlj9m8f9+/pjF/wf5Yxb/zfPHLP5b5I9Z/LfMH7P4b5U/ZvH/Yf6Yxf9H+WMW/x/nj1n8f5I/ZvHfOn/M4r9N/pjFf9v8MYv/T/PHLP7b5Y9Z/H+WP2bx3z5/zOK/Q/6Yxf/n+WMW/x3zxyz+O+WPWfx3zh+z+P8if8ziv0v+mMX/l/ljFv9f5Y9Z/HfNH7P475Y/ZvHfPX/M4v/r/DGL/x75Yxb/PfPHLP575Y9Z/PfOH7P475M/ZvHfN3/M4v+b/DGL/375Yxb//fPHLP6/zR+z+P8uf8zif0D+mMX/9/ljFv8D88cs/gflj1n8D84fs/j/IX/M4v/H/DGL/yH5Yxb/P+WPWfwPzR+z+B+WP2bxPzx/zOJ/RP6Yxf/I/DGL/5/zxyz+R+WPWfz/kj9m8T86f8zif0z+mMX/r/ljFv9j88cs/sflj1n8j88fs/ifkD9m8T8xf8zif1L+mMX/5Pwxi/8p+WMW/1Pzxyz+p+WPWfxPzx+z+J+RP2bxPzN/zOJ/Vv6Yxf/s/DGL/zn5Yxb/c/PHLP7n5Y9Z/M/PH7P4X5A/ZvG/MH/M4n9R/pjF/+L8MYv/JfljFv9L88cs/pflj1n8L88fs/hfkT9m8b8yf8zif1X+mMX/6vwxi/81+WMW/2vzxyz+1+WPWfyvzx+z+N+QP2bxvzF/zOJ/U/6Yxf/m/DGL/y35Yxb/W/PHLP635Y9Z/G/PH7P435E/ZvG/M3/M4n9X/pjF/+78MYv/PfljFv9788cs/vflj1n8788fs/g/kD9m8X8wf8zi/1D+mMX/4fwxi/8j+WMW/0fzxyz+j+WPWfwfzx+z+D+RP2bxfzJ/zOL/VP6Yxf/p/DGL/zP5Yxb/Z/PHLP7P5Y9Z/J/PH7P4v5A/ZvF/MX/M4v9S/pjF/+X8MYv/K/ljFv9X88cs/q/lj1n8X88fs/i/kT9m8X8zf8zi/1b+mMR/7IH8MYv/oPwxi//g/DGL/2j5Yxb/IfljFv/R88cs/mPkj1n8x8wfs/iPlT9m8R87f8ziP07+mMV/3Pwxi/94+WMW//Hzxyz+E+SPWfwnzB+z+E+UP2bxnzh/zOI/Sf6Yxf8D+WMW/w/mj1n8P5Q/ZvH/cP6Yxf8j+WMW/0nzxyz+H80fs/h/LH/M4v/x/DGL/yfyxyz+k+WPWfw/mT9m8Z88f8ziPzR/zOI/Rf6YxX/K/DGL/1T5Yxb/qfPHLP7T5I9Z/KfNH7P4T5c/ZvGfPn/M4v+p/DGL/6fzxyz+n8kfs/h/Nn/M4v+5/DGL/wz5Yxb/GfPHLP4z5Y9Z/GfOH7P4z5I/ZvGfNX/M4j9b/pjFf/b8MYv/HPljFv8588cs/nPlj1n8584fs/jPkz9m8Z83f8zi//n8MYv/F/LHLP5fzB+z+H8pf8ziP1/+mMV//vwxi/8C+WMW/wXzxyz+X84fs/h/JX/M4r9Q/pjFf+H8MYv/V/PHLP6L5I9Z/L+WP2bxXzR/zOK/WP6Yxf/r+WMW/8Xzxyz+S+SPWfyXzB+z+H8jf8ziv1T+mMV/6fwxi/8y+WMW/2Xzxyz+38wfs/gvlz9m8V8+f8ziv0L+mMV/xfwxi/9K+WMW/2/lj1n8v50/ZvFfOX/M4r9K/pjFf9X8MYv/avljFv/v5I9Z/FfPH7P4r5E/ZvFfM3/M4r9W/pjFf+38MYv/OvljFv9188cs/t/NH7P4r5c/ZvFfP3/M4r9B/pjFf8P8MYv/RvljFv+N88cs/t/LH7P4b5I/ZvHfNH/M4r9Z/pjF//v5Yxb/H+SPWfw3zx+z+G+RP2bx3zJ/zOK/Vf6Yxf+H+WMW/x/lj1n8f5w/ZvH/Sf6YxX/r/DGL/zb5Yxb/bfPHLP4/zR+z+G+XP2bx/1n+mMV/+/wxi/8O+WMW/5/nj1n8d8wfs/jvlD9m8d85f8zi/4v8MYv/LvljFv9f5o9Z/H+VP2bx3zV/zOK/W/6YxX/3/DGL/6/zxyz+e+SPWfz3zB+z+O+VP2bx3zt/zOK/T/6YxX/f/DGL/2/yxyz+++WPWfz3zx+z+P82f8zi/7v8MYv/AfljFv/f549Z/A/MH7P4H5Q/ZvE/OH/M4v+H/DGL/x/zxyz+h+SPWfz/lD9m8T80f8zif1j+mMX/8Pwxi/8R+WMW/yPzxyz+f84fs/gflT9m8f9L/pjF/+j8MYv/MfljFv+/5o9Z/I/NH7P4H5c/ZvE/Pn/M4n9C/pjF/8T8MYv/SfljFv+T88cs/qfkj1n8T80fs/iflj9m8T89f8zif0b+mMX/zPwxi/9Z+WMW/7Pzxyz+5+SPWfzPzR+z+J+XP2bxPz9/zOJ/Qf6Yxf/C/DGL/0X5Yxb/i/PHLP6X5I9Z/C/NH7P4X5Y/ZvG/PH/M4n9F/pjF/8r8MYv/VfljFv+r88cs/tfkj1n8r80fs/hflz9m8b8+f8zif0P+mMX/xvwxi/9N+WMW/5vzxyz+t+SPWfxvzR+z+N+WP2bxvz1/zOJ/R/6Yxf/O/DGL/135Yxb/u/PHLP735I9Z/O/NH7P435c/ZvG/P3/M4v9A/pjF/8H8MYv/Q/ljFv+H88cs/o/kj1n8H80fs/g/lj9m8X88f8zi/0T+mMX/yfwxi/9T+WMW/6fzxyz+z+SPWfyfzR+z+D+XP2bxfz5/zOL/Qv6Yxf/F/DGL/0v5Yxb/l/PHLP6v5I9Z/F/NH7P4v5Y/ZvF/PX/M4v9G/pjF/838MYv/W/ljEv9xBvLHLP6D8scs/oPzxyz+o+WPWfyH5I9Z/EfPH7P4j5E/ZvEfM3/M4j9W/pjFf+z8MYv/OPljFv9x88cs/uPlj1n8x88fs/hPkD9m8Z8wf8ziP1H+mMV/4vwxi/8k+WMW/w/kj1n8P5g/ZvH/UP6Yxf/D+WMW/4/kj1n8J80fs/h/NH/M4v+x/DGL/8fzxyz+n8gfs/hPlj9m8f9k/pjFf/L8MYv/0Pwxi/8U+WMW/ynzxyz+U+WPWfynzh+z+E+TP2bxnzZ/zOI/Xf6YxX/6/DGL/6fyxyz+n84fs/h/Jn/M4v/Z/DGL/+fyxyz+M+SPWfxnzB+z+M+UP2bxnzl/zOI/S/6YxX/W/DGL/2z5Yxb/2fPHLP5z5I9Z/OfMH7P4z5U/ZvGfO3/M4j9P/pjFf978MYv/5/PHLP5fyB+z+H8xf8zi/6X8MYv/fPljFv/588cs/gvkj1n8F8wfs/h/OX/M4v+V/DGL/0L5Yxb/hfPHLP5fzR+z+C+SP2bx/1r+mMV/0fwxi/9i+WMW/6/nj1n8F88fs/gvkT9m8V8yf8zi/438MYv/UvljFv+l88cs/svkj1n8l80fs/h/M3/M4r9c/pjFf/n8MYv/CvljFv8V88cs/ivlj1n8v5U/ZvH/dv6YxX/l/DGL/yr5Yxb/VfPHLP6r5Y9Z/L+TP2bxXz1/zOK/Rv6YxX/N/DGL/1r5Yxb/tfPHLP7r5I9Z/NfNH7P4fzd/zOK/Xv6YxX/9/DGL/wb5Yxb/DfPHLP4b5Y9Z/DfOH7P4fy9/zOK/Sf6YxX/T/DGL/2b5Yxb/7+ePWfx/kD9m8d88f8ziv0X+mMV/y/wxi/9W+WMW/x/mj1n8f5Q/ZvH/cf6Yxf8n+WMW/63zxyz+2+SPWfy3zR+z+P80f8ziv13+mMX/Z/ljFv/t88cs/jvkj1n8f54/ZvHfMX/M4r9T/pjFf+f8MYv/L/LHLP675I9Z/H+ZP2bx/1X+mMV/1/wxi/9u+WMW/93zxyz+v84fs/jvkT9m8d8zf8ziv1f+mMV/7/wxi/8++WMW/33zxyz+v8kfs/jvlz9m8d8/f8zi/9v8MYv/7/LHLP4H5I9Z/H+fP2bxPzB/zOJ/UP6Yxf/g/DGL/x/yxyz+f8wfs/gfkj9m8f9T/pjF/9D8MYv/YfljFv/D88cs/kfkj1n8j8wfs/j/OX/M4n9U/pjF/y/5Yxb/o/PHLP7H5I9Z/P+aP2bxPzZ/zOJ/XP6Yxf/4/DGL/wn5Yxb/E/PHLP4n5Y9Z/E/OH7P4n5I/ZvE/NX/M4n9a/pjF//T8MYv/GfljFv8z88cs/mflj1n8z84fs/ifkz9m8T83f8zif17+mMX//Pwxi/8F+WMW/wvzxyz+F+WPWfwvzh+z+F+SP2bxvzR/zOJ/Wf6Yxf/y/DGL/xX5Yxb/K/PHLP5X5Y9Z/K/OH7P4X5M/ZvG/Nn/M4n9d/pjF//r8MYv/DfljFv8b88cs/jflj1n8b84fs/jfkj9m8b81f8zif1v+mMX/9vwxi/8d+WMW/zvzxyz+d+WPWfzvzh+z+N+TP2bxvzd/zOJ/X/6Yxf/+/DGL/wP5Yxb/B/PHLP4P5Y9Z/B/OH7P4P5I/ZvF/NH/M4v9Y/pjF//H8MYv/E/ljFv8n88cs/k/lj1n8n84fs/g/kz9m8X82f8zi/1z+mMX/+fwxi/8L+WMW/xfzxyz+L+WPWfxfzh+z+L+SP2bxfzV/zOL/Wv6Yxf/1/DGL/xv5Yxb/N/PHLP5v5Y9J/McdyB+z+A/KH7P4D84fs/iPlj9m8R+SP2bxHz1/zOI/Rv6YxX/M/DGL/1j5Yxb/sfPHLP7j5I9Z/MfNH7P4j5c/ZvEfP3/M4j9B/pjFf8L8MYv/RPljFv+J88cs/pPkj1n8P5A/ZvH/YP6Yxf9D+WMW/w/nj1n8P5I/ZvGfNH/M4v/R/DGL/8fyxyz+H88fs/h/In/M4j9Z/pjF/5P5Yxb/yfPHLP5D88cs/lPkj1n8p8wfs/hPlT9m8Z86f8ziP03+mMV/2vwxi/90+WMW/+nzxyz+n8ofs/h/On/M4v+Z/DGL/2fzxyz+n8sfs/jPkD9m8Z8xf8ziP1P+mMV/5vwxi/8s+WMW/1nzxyz+s+WPWfxnzx+z+M+RP2bxnzN/zOI/V/6YxX/u/DGL/zz5Yxb/efPHLP6fzx+z+H8hf8zi/8X8MYv/l/LHLP7z5Y9Z/OfPH7P4L5A/ZvFfMH/M4v/l/DGL/1fyxyz+C+WPWfwXzh+z+H81f8ziv0j+mMX/a/ljFv9F88cs/ovlj1n8v54/ZvFfPH/M4r9E/pjFf8n8MYv/N/LHLP5L5Y9Z/JfOH7P4L5M/ZvFfNn/M4v/N/DGL/3L5Yxb/5fPHLP4r5I9Z/FfMH7P4r5Q/ZvH/Vv6Yxf/b+WMW/5Xzxyz+q+SPWfxXzR+z+K+WP2bx/07+mMV/9fwxi/8a+WMW/zXzxyz+a+WPWfzXzh+z+K+TP2bxXzd/zOL/3fwxi/96+WMW//Xzxyz+G+SPWfw3zB+z+G+UP2bx3zh/zOL/vfwxi/8m+WMW/03zxyz+m+WPWfy/nz9m8f9B/pjFf/P8MYv/FvljFv8t88cs/lvlj1n8f5g/ZvH/Uf6Yxf/H+WMW/5/kj1n8t84fs/hvkz9m8d82f8zi/9P8MYv/dvljFv+f5Y9Z/LfPH7P475A/ZvH/ef6YxX/H/DGL/075Yxb/nfPHLP6/yB+z+O+SP2bx/2X+mMX/V/ljFv9d88cs/rvlj1n8d88fs/j/On/M4r9H/pjFf8/8MYv/XvljFv+988cs/vvkj1n8980fs/j/Jn/M4r9f/pjFf//8MYv/b/PHLP6/yx+z+B+QP2bx/33+mMX/wPwxi/9B+WMW/4Pzxyz+f8gfs/j/MX/M4n9I/pjF/0/5Yxb/Q/PHLP6H5Y9Z/A/PH7P4H5E/ZvE/Mn/M4v/n/DGL/1H5Yxb/v+SPWfyPzh+z+B+TP2bx/2v+mMX/2Pwxi/9x+WMW/+Pzxyz+J+SPWfxPzB+z+J+UP2bxPzl/zOJ/Sv6Yxf/U/DGL/2n5Yxb/0/PHLP5n5I9Z/M/MH7P4n5U/ZvE/O3/M4n9O/pjF/9z8MYv/efljFv/z88cs/hfkj1n8L8wfs/hflD9m8b84f8zif0n+mMX/0vwxi/9l+WMW/8vzxyz+V+SPWfyvzB+z+F+VP2bxvzp/zOJ/Tf6Yxf/a/DGL/3X5Yxb/6/PHLP435I9Z/G/MH7P435Q/ZvG/OX/M4n9L/pjF/9b8MYv/bfljFv/b88cs/nfkj1n878wfs/jflT9m8b87f8zif0/+mMX/3vwxi/99+WMW//vzxyz+D+SPWfwfzB+z+D+UP2bxfzh/zOL/SP6Yxf/R/DGL/2P5Yxb/x/PHLP5P5I9Z/J/MH7P4P5U/ZvF/On/M4v9M/pjF/9n8MYv/c/ljFv/n88cs/i/kj1n8X8wfs/i/lD9m8X85f8zi/0r+mMX/1fwxi/9r+WMW/9fzxyz+b+SPWfzfzB+z+L+VPybxH28gf8ziPyh/zOI/OH/M4j9a/pjFf0j+mMV/9Pwxi/8Y+WMW/zHzxyz+Y+WPWfzHzh+z+I+TP2bxHzd/zOI/Xv6YxX/8/DGL/wT5Yxb/CfPHLP4T5Y9Z/CfOH7P4T5I/ZvH/QP6Yxf+D+WMW/w/lj1n8P5w/ZvH/SP6YxX/S/DGL/0fzxyz+H8sfs/h/PH/M4v+J/DGL/2T5Yxb/T+aPWfwnzx+z+A/NH7P4T5E/ZvGfMn/M4j9V/pjFf+r8MYv/NPljFv9p88cs/tPlj1n8p88fs/h/Kn/M4v/p/DGL/2fyxyz+n80fs/h/Ln/M4j9D/pjFf8b8MYv/TPljFv+Z88cs/rPkj1n8Z80fs/jPlj9m8Z89f8ziP0f+mMV/zvwxi/9c+WMW/7nzxyz+8+SPWfznzR+z+H8+f8zi/4X8MYv/F/PHLP5fyh+z+M+XP2bxnz9/zOK/QP6YxX/B/DGL/5fzxyz+X8kfs/gvlD9m8V84f8zi/9X8MYv/IvljFv+v5Y9Z/BfNH7P4L5Y/ZvH/ev6YxX/x/DGL/xL5Yxb/JfPHLP7fyB+z+C+VP2bxXzp/zOK/TP6YxX/Z/DGL/zfzxyz+y+WPWfyXzx+z+K+QP2bxXzF/zOK/Uv6Yxf9b+WMW/2/nj1n8V84fs/ivkj9m8V81f8ziv1r+mMX/O/ljFv/V88cs/mvkj1n818wfs/ivlT9m8V87f8ziv07+mMV/3fwxi/9388cs/uvlj1n8188fs/hvkD9m8d8wf8ziv1H+mMV/4/wxi//38scs/pvkj1n8N80fs/hvlj9m8f9+/pjF/wf5Yxb/zfPHLP5b5I9Z/LfMH7P4b5U/ZvH/Yf6Yxf9H+WMW/x/nj1n8f5I/ZvHfOn/M4r9N/pjFf9v8MYv/T/PHLP7b5Y9Z/H+WP2bx3z5/zOK/Q/6Yxf/n+WMW/x3zxyz+O+WPWfx3zh+z+P8if8ziv0v+mMX/l/ljFv9f5Y9Z/HfNH7P475Y/ZvHfPX/M4v/r/DGL/x75Yxb/PfPHLP575Y9Z/PfOH7P475M/ZvHfN3/M4v+b/DGL/375Yxb//fPHLP6/zR+z+P8uf8zif0D+mMX/9/ljFv8D88cs/gflj1n8D84fs/j/IX/M4v/H/DGL/yH5Yxb/P+WPWfwPzR+z+B+WP2bxPzx/zOJ/RP6Yxf/I/DGL/5/zxyz+R+WPWfz/kj9m8T86f8zif0z+mMX/r/ljFv9j88cs/sflj1n8j88fs/ifkD9m8T8xf8zif1L+mMX/5Pwxi/8p+WMW/1Pzxyz+p+WPWfxPzx+z+J+RP2bxPzN/zOJ/Vv6Yxf/s/DGL/zn5Yxb/c/PHLP7n5Y9Z/M/PH7P4X5A/ZvG/MH/M4n9R/pjF/+L8MYv/JfljFv9L88cs/pflj1n8L88fs/hfkT9m8b8yf8zif1X+mMX/6vwxi/81+WMW/2vzxyz+1+WPWfyvzx+z+N+QP2bxvzF/zOJ/U/6Yxf/m/DGL/y35Yxb/W/PHLP635Y9Z/G/PH7P435E/ZvG/M3/M4n9X/pjF/+78MYv/PfljFv9788cs/vflj1n8788fs/g/kD9m8X8wf8zi/1D+mMX/4fwxi/8j+WMW/0fzxyz+j+WPWfwfzx+z+D+RP2bxfzJ/zOL/VP6Yxf/p/DGL/zP5Yxb/Z/PHLP7P5Y9Z/J/PH7P4v5A/ZvF/MX/M4v9S/pjF/+X8MYv/K/ljFv9X88cs/q/lj1n8X88fs/i/kT9m8X8zf8zi/1b+mMR//IH8MYv/oPwxi//g/DGL/2j5Yxb/IfljFv/R88cs/mPkj1n8x8wfs/iPlT9m8R87f8ziP07+mMV/3Pwxi/94+WMW//Hzxyz+E+SPWfwnzB+z+E+UP2bxnzh/zOI/Sf6Yxf8D+WMW/w/mj1n8P5Q/ZvH/cP6Yxf8j+WMW/0nzxyz+H80fs/h/LH/M4v/x/DGL/yfyxyz+k+WPWfw/mT9m8Z88f8ziPzR/zOI/Rf6YxX/K/DGL/1T5Yxb/qfPHLP7T5I9Z/KfNH7P4T5c/ZvGfPn/M4v+p/DGL/6fzxyz+n8kfs/h/Nn/M4v+5/DGL/wz5Yxb/GfPHLP4z5Y9Z/GfOH7P4z5I/ZvGfNX/M4j9b/pjFf/b8MYv/HPljFv8588cs/nPlj1n8584fs/jPkz9m8Z83f8zi//n8MYv/F/LHLP5fzB+z+H8pf8ziP1/+mMV//vwxi/8C+WMW/wXzxyz+X84fs/h/JX/M4r9Q/pjFf+H8MYv/V/PHLP6L5I9Z/L+WP2bxXzR/zOK/WP6Yxf/r+WMW/8Xzxyz+S+SPWfyXzB+z+H8jf8ziv1T+mMV/6fwxi/8y+WMW/2Xzxyz+38wfs/gvlz9m8V8+f8ziv0L+mMV/xfwxi/9K+WMW/2/lj1n8v50/ZvFfOX/M4r9K/pjFf9X8MYv/avljFv/v5I9Z/FfPH7P4r5E/ZvFfM3/M4r9W/pjFf+38MYv/OvljFv9188cs/t/NH7P4r5c/ZvFfP3/M4r9B/pjFf8P8MYv/RvljFv+N88cs/t/LH7P4b5I/ZvHfNH/M4r9Z/pjF//v5Yxb/H+SPWfw3zx+z+G+RP2bx3zJ/zOK/Vf6Yxf+H+WMW/x/lj1n8f5w/ZvH/Sf6YxX/r/DGL/zb5Yxb/bfPHLP4/zR+z+G+XP2bx/1n+mMV/+/wxi/8O+WMW/5/nj1n8d8wfs/jvlD9m8d85f8zi/4v8MYv/LvljFv9f5o9Z/H+VP2bx3zV/zOK/W/6YxX/3/DGL/6/zxyz+e+SPWfz3zB+z+O+VP2bx3zt/zOK/T/6YxX/f/DGL/2/yxyz+++WPWfz3zx+z+P82f8zi/7v8MYv/AfljFv/f549Z/A/MH/tP9B80MLDNwCj+B+WP/Sf60+P/4Pwxi/8f8scs/n/MH7P4H5I/ZvH/U/6Yxf/Q/DGL/2H5Yxb/w/PHLP5H5I9Z/I/MH7P4/zl/zOJ/VP6Yxf8v+WMW/6Pzxyz+x+SPWfz/mj9m8T82f8zif1z+mMX/+Pwxi/8J+WMW/xPzxyz+J+WPWfxPzh+z+J+SP2bxPzV/zOJ/Wv6Yxf/0/DGL/xn5Yxb/M/PHLP5n5Y9Z/M/OH7P4n5M/ZvE/N3/M4n9e/pjF//z8MYv/BfljFv8L88cs/hflj1n8L84fs/hfkj9m8b80f8zif1n+mMX/8vwxi/8V+WMW/yvzxyz+V+WPWfyvzh+z+F+TP2bxvzZ/zOJ/Xf6Yxf/6/DGL/w35Yxb/G/PHLP435Y9Z/G/OH7P435I/ZvG/NX/M4n9b/pjF//b8MYv/HfljFv8788cs/nflj1n8784fs/jfkz9m8b83f8zif1/+mMX//vwxi/8D+WMW/wfzxyz+D+WPWfwfzh+z+D+SP2bxfzR/zOL/WP6Yxf/x/DGL/xP5Yxb/J/PHLP5P5Y9Z/J/OH7P4P5M/ZvF/Nn/M4v9c/pjF//n8MYv/C/ljFv8X88cs/i/lj1n8X84fs/i/kj9m8X81f8zi/1r+mMX/9fwxi/8b+WMW/zfzxyz+b+WPSfwnGMgfs/gPyh+z+A/OH7P4j5Y/ZvEfkj9m8R89f8ziP0b+mMV/zPwxi/9Y+WMW/7Hzxyz+4+SPWfzHzR+z+I+XP2bxHz9/zOI/Qf6YxX/C/DGL/0T5Yxb/ifPHLP6T5I9Z/D+QP2bx/2D+mMX/Q/ljFv8P549Z/D+SP2bxnzR/zOL/0fwxi//H8scs/h/PH7P4fyJ/zOI/Wf6Yxf+T+WMW/8nzxyz+Q/PHLP5T5I9Z/KfMH7P4T5U/ZvGfOn/M4j9N/pjFf9r8MYv/dPljFv/p88cs/p/KH7P4fzp/zOL/mfwxi/9n88cs/p/LH7P4z5A/ZvGfMX/M4j9T/pjFf+b8MYv/LPljFv9Z88cs/rPlj1n8Z88fs/jPkT9m8Z8zf8ziP1f+mMV/7vwxi/88+WMW/3nzxyz+n88fs/h/IX/M4v/F/DGL/5fyxyz+8+WPWfznzx+z+C+QP2bxXzB/zOL/5fwxi/9X8scs/gvlj1n8F84fs/h/NX/M4r9I/pjF/2v5Yxb/RfPHLP6L5Y9Z/L+eP2bxXzx/zOK/RP6YxX/J/DGL/zfyxyz+S+WPWfyXzh+z+C+TP2bxXzZ/zOL/zfwxi/9y+WMW/+Xzxyz+K+SPWfxXzB+z+K+UP2bx/1b+mMX/2/ljFv+V88cs/qvkj1n8V80fs/ivlj9m8f9O/pjFf/X8MYv/GvljFv8188cs/mvlj1n8184fs/ivkz9m8V83f8zi/938MYv/evljFv/188cs/hvkj1n8N8wfs/hvlD9m8d84f8zi/738MYv/JvljFv9N88cs/pvlj1n8v58/ZvH/Qf6YxX/z/DGL/xb5Yxb/LfPHLP5b5Y9Z/H+YP2bx/1H+mMX/x/ljFv+f5I9Z/LfOH7P4b5M/ZvHfNn/M4v/T/DGL/3b5Yxb/n+WPWfy3zx+z+O+QP2bx/3n+mMV/x/wxi/9O+WMW/53zxyz+v8gfs/jvkj9m8f9l/pjF/1f5Yxb/XfPHLP675Y9Z/HfPH7P4/zp/zOK/R/6YxX/P/DGL/175Yxb/vfPHLP775I9Z/PfNH7P4/yZ/zOK/X/6YxX///DGL/2/zxyz+v8sfs/gfkD9m8f99/pjF/8D8MYv/QfljFv+D88cs/n/IH7P4/zF/zOJ/SP6Yxf9P+WMW/0Pzxyz+h+WPjeJ/7H+q/+H5Y5bH/xH5Yxb/I/PHLP5/zh+z+B+VP2bx/0v+mMX/6Pwxi/8x+WMW/7/mj1n8j80fs/gflz9m8T8+f8zif0L+mMX/xPwxi/9J+WMW/5Pzxyz+p+SPWfxPzR+z+J+WP2bxPz1/zOJ/Rv6Yxf/M/DGL/1n5Yxb/s/PHLP7n5I9Z/M/NH7P4n5c/ZvE/P3/M4n9B/pjF/8L8MYv/RfljFv+L88cs/pfkj1n8L80fs/hflj9m8b88f8zif0X+mMX/yvwxi/9V+WMW/6vzxyz+1+SPWfyvzR+z+F+XP2bxvz5/zOJ/Q/6Yxf/G/DGL/035Yxb/m/PHLP635I9Z/G/NH7P435Y/ZvG/PX/M4n9H/pjF/878MYv/XfljFv+788cs/vfkj1n8780fs/jflz9m8b8/f8zi/0D+mMX/wfwxi/9D+WMW/4fzxyz+j+SPWfwfzR+z+D+WP2bxfzx/zOL/RP6Yxf/J/DGL/1P5Yxb/p/PHLP7P5I9Z/J/NH7P4P5c/ZvF/Pn/M4v9C/pjF/8X8MYv/S/ljFv+X88cs/q/kj1n8X80fs/i/lj9m8X89f8zi/0b+mMX/zfwxi/9b+WMS/wkH8scs/oPyxyz+g/PHLP6j5Y9Z/Ifkj1n8R88fs/iPkT9m8R8zf8ziP1b+mMV/7Pwxi/84+WMW/3Hzxyz+4+WPWfzHzx+z+E+QP2bxnzB/zOL/f9i5+3Cv6/qO41/gg5KZN3O10DACUTQVBBXJvEFLPQJHu7GUBCXFmwnKlAJdKdmNtZWzWMXaSvImdaQWzpprOMo5p4tmRbXNxtjMsVa4LCdulew6cA5xTu/O5fny3dcr34/HH5zz+53ev5TndfXid7hOu+kfytJ/d/1DWfr/hv6hLP330D+Upf9v6h/K0v/F+oey9H+J/qEs/X9L/1CW/i/VP5Sl/3D9Q1n676l/KEv/vfQPZen/Mv1DWfqP0D+Upf/e+oey9H+5/qEs/UfqH8rS/xX6h7L0H6V/KEv/0fqHsvTfR/9Qlv5j9A9l6b+v/qEs/ffTP5Sl/1j9Q1n6769/KEv/A/QPZen/Sv1DWfofqH8oS/+D9A9l6X+w/qEs/cfpH8rSf7z+oSz9D9E/lKX/BP1DWfpP1D+Upf+h+oey9D9M/1CW/ofrH8rSf5L+oSz9j9A/lKX/ZP1DWfq/Sv9Qlv5H6h/K0v/V+oey9D9K/1CW/kfrH8rS/xj9Q1n6H6t/KEv/KfqHsvQ/Tv9Qlv7H6x/K0v81+oey9H+t/qEs/U/QP5Sl/4n6h7L0P0n/UJb+HfqHsvQ/Wf9Qlv5T9Q9l6T9N/1CW/tP1D2Xp36l/KEv/U/QPZel/qv6hLP1fp38oS//X6x/K0v8N+oey9H+j/qEs/U/TP5Sl/5v0D2Xp/2b9Q1n6n65/KEv/M/QPZek/Q/9Qlv5v0T+Upf+Z+oey9J+pfyhL/1n6h7L0P0v/UJb+Z+sfytJ/tv6hLP3fqn8oS/9z9A9l6X+u/qEs/efoH8rS/zz9Q1n6n69/KEv/C/QPZel/of6hLP1/W/9Qlv4X6R/K0n+u/qEs/efpH8rS/2L9Q1n6X6J/KEv/+fqHsvT/Hf1DWfpfqn8oS//L9A9l6b9A/1CW/m/TP5Sl/9v1D2Xpv1D/UJb+i/QPZel/uf6hLP2v0D+Upf/v6h/K0v8d+oey9H+n/qEs/a/UP5Sl/1X6h7L0X6x/KEv/d+kfytL/av1DWfq/W/9Qlv7v0T+Upf979Q9l6f8+/UNZ+l+jfyhL//frH8rS/wP6h7L0/z39Q1n6/77+oSz9P6h/KEv/D+kfytL/Wv1DWfr/gf6hLP2v0z+Upf+H9Q9l6f8R/UNZ+i/RP5Sl/x/qH8rS/6P6h7L0/5j+oSz9P65/KEv/pfqHsvT/I/1DWfp/Qv9Qlv5/rH8oS/8/0T+Upf8n9Q9l6f8p/UNZ+l+vfyhL/2X6h7L0/7T+oSz9b9A/lKX/jfqHsvS/Sf9Qlv436x/K0v8z+oey9L9F/1CW/rfqH8rS/zb9Q1n6/6n+oSz9l+sfytL/s/qHsvS/Xf9Qlv536B/K0v9O/UNZ+n9O/1CW/p/XP5Sl/wr9Q1n636V/KEv/P9M/lKX/3fqHsvT/gv6hLP2/qH8oS/8/1z+Upf89+oey9P8L/UNZ+n9J/1CW/n+pfyhL/5X6h7L0v1f/UJb+f6V/KEv/VfqHsvT/sv6hLP2/on8oS//79A9l6f/X+oey9L9f/1CW/n+jfyhL/wf0D2Xp/7f6h7L0f1D/UJb+D+kfytL/7/QPZen/Vf1DWfqv1j+Upf/X9A9l6f/3+oey9H9Y/1CW/l/XP5Sl/zf0D2Xp/039Q1n6r9E/lKX/t/QPZen/bf1DWfp/R/9Qlv7/oH8oS/9/1D+Upf8/6R/K0v8R/UNZ+n9X/1CW/v+sfyhL/7X6h7L0/xf9Q1n6r9M/lKX/v+ofytL/3/QPZen/qP6hLP2/p38oS//H9A9l6f/v+oey9F+vfyhL///QP5Sl//f1D2Xp/5/6h7L0/4H+oSz9f6h/KEv/DfqHsvR/XP9Qlv7/pX8oS/8f6R/K0v8J/UNZ+v9Y/1CW/j/RP5Sl/5P6h7L0/2/9Q1n6P6V/KEv/jfqHsvR/Wv9Qlv7/o38oS///1T+Upf9P9Q9l6f8z/UNZ+v9c/1CW/s/oH8rSf5P+oST9d6v0D2XpP0j/UJb+g/UPZek/RP9Qlv5F/1CW/kP1D2Xpv4P+oSz9d9Q/lKX/MP1DWfq/QP9Qlv476R/K0v+F+oey9N9Z/1CW/i/SP5Sl/y76h7L031X/0POuPwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABQVR2dUzYMGdTrqSHbPhixes7mj4duPP2Cm2/+wu49H7u/PDV4ycHbPti0adOmwU9WX+1+uGNVVV3/bbt1Px7W97jr9a+asnTslkdl5A1PH7B84dPHve/ONbduPPGWqcuHbn52aHX2eRfOnTN+cFWV0UOrRV0PDhlUVWXfodV1XQ8mdD3Yb2h1a9eDiZsfvKBa1fXg4HMumXtu1xNja/+eAcCvu47OxdWQXotd9frTwLb7f9WUuxb3fOznJXterVTd+3/Pij3e3udrPX7F/ve8fnlF3/0f8L8gAPBLBrb/943s+djPS/7S+//pF39sTfS1X73/Pa9fRtl/AGhe8P3/Xhvd9/v+fb7/H/05YOv9RWct2bFr/2/ZeNqC7qfKs/n+/y9ev4zuu/+De33/f1BVlX16vv+/Y1WVMdv52wEAKXR0vmtDf+//+9//smefm0Hb7v/ut686rWv/1+5050u6nxo6wP3fp7/3/yf0+WcFAJ6djs5Pb+rz/n8A+1/tG7zk1v0/ftGDL+7a/6+v/d7Ibb42kP0f03f/xy2YN3/cZZdfcdCF82afP+f8ORdPnjTpiMMmHT55wrjN3xHY8ut2/qYAwPPc9r3/r3bqczOoqh7bev/BlSMe7Nr/CZ846YLup4YNcP/37ff9/0jv/wGgl1GDqx12qBbNXrDg0kO2/NrzcMKWX7f8x4L9H8Df/4/u+SG6np8ZHFRVL91633nZ+wd37f+No/dc2f3UDgPc//363f9je/+sIgDw7Gzn+/9z+9z02v9dh9w2uWv/Tx6z/zXdTw307//H9rv/y7z/B4A6Ojqr/9c30V37f/XOP7++3nXZ38//AUDz2tj/x0e8e1S963KA/QeA5rWx/3OOedHd9a7LK+0/ADSvjf1/oGPJzHrX5UD7DwDNa2P/p1004qF61+Ug+w8AzWtj/0decc7CetflYPsPAM1rY/+Xn75hXb3rMs7+A0Dz2tj/M4etfaLedRlv/wGgeW3s/3cOOPW8etflEPsPAM1rY/+/dOTBj9S7LhPsPwA0r439Hz982bR612Wi/QeA5rWx/x+55Oib6l2XQ+0/ADSvjf0fPv1zE+tdl8PsPwA0r439f9uZX7u23nU53P4DQPPa2P9nrjx2eL3rMsn+A0Dz2tj/VQ/sPaPedTnC/gNA89rY/6mPXbe63nWZbP8BoHlt7P9+Tz4+v951eZX9B4DmtbH/n/322evrXZcj7T8ANK+N/d9l2TO71rsur7b/ANC8Nvb/vVfPX1rvuhxl/wGgeW3s//eX7DKm3nU52v4DQPPa2P+3fn7xinrX5Rj7DwDNa2P/v/HoxKn1rsux9h8AmtfG/p/x5ZXfrXddpth/AGheG/t/2MP3za53XY6z/wDQvDb2/94fT3+q3nU53v4DQPPa2P+Xveebe9e7Lq+x/wDQvDb2/+OfmfmBetfltfYfAJrXxv7/9IujD613XU6w/wDQvDb2f/5Hb7+x3nU50f4DQPPa2P/OA3+yrt51Ocn+A0Dz2tj/+3d558J616XD/gNA89rY/9tePuShetflZPsPAM1rY/9HHfWhmfWuy1T7DwDNa2P/F0/d4+5612Wa/QeA5rWx/y+88JOj6l2X6fYfAJrXxv6fv+jR6+tdl077DwDNa2P/fzhj3rB61+UU+w8AzWtj//faadbwetflVPsPAM1rY/+vG/vwtfWuy+vsPwA0r439/9nkOybWuy6vt/8A0Lw29n/hXiNvqndd3mD/AaB5bez/t+bdO63edXmj/QeA5rWx/7NOGf9Ivetymv0HgOa1sf8TZnWeV++6vMn+A0Dz2tj/e96x6ol61+XN9h8AmtfG/l9z/6dW1Lsup9t/AGheG/u/8/rdxtS7LmfYfwBoXhv7f/ZTFy+td11m2H8AaF4b+/+DNet2rXdd3mL/AaB5bex/xw1Xrq93Xc60/wDQvDb2/yuLfzS/3nWZaf8BoHlt7P8dH752db3rMsv+A0Dz2tj/MXdVM+pdl7PsPwA077LLr7ho9ty5cy71iU984pOtnzzX/8sEAAA07Rd/6H+u/0kAAAAAAAAAAAAAAAAAAAAgrzb+78Se639HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP6PHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzAgQAAAAAAkP9rI1RVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVhBw4EAAAAAAT5W68wQAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB8BQAA//+3E9IO")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x145842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x2, 0x4000, 0x0, 0x10)

[ 1641.389352][T27653] udevd[27653]: symlink '../../loop2' '/dev/disk/by-uuid/a2f82aab-77f8-4286-afd4-a8f747a74bab.tmp-b7:5' failed: Read-only file system
13:48:54 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0), 0x0)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:48:55 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
dup2(r5, r5)
ioctl$BLKGETSIZE(0xffffffffffffffff, 0x40081271, &(0x7f0000003c00))
mount(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='./file0\x00', &(0x7f0000000400)='devtmpfs\x00', 0x4, &(0x7f0000000440)=',\x15\x00')
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup(r6, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f0000000140), 0x12)

[ 1642.368588][T32634] devtmpfs: Unknown parameter ''
[ 1642.411712][T32634] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1642.422904][T32634] CPU: 0 PID: 32634 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1642.432475][T32634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1642.442540][T32634] Call Trace:
[ 1642.445825][T32634]  <TASK>
[ 1642.448761][T32634]  dump_stack_lvl+0x136/0x150
[ 1642.453467][T32634]  dump_header+0x10a/0xd70
[ 1642.457905][T32634]  oom_kill_process+0x25d/0x600
[ 1642.462773][T32634]  out_of_memory+0x35c/0x1650
[ 1642.467474][T32634]  ? oom_killer_disable+0x2b0/0x2b0
[ 1642.472774][T32634]  ? kernfs_notify+0x1ac/0x410
[ 1642.477554][T32634]  ? find_held_lock+0x2d/0x110
[ 1642.482347][T32634]  mem_cgroup_out_of_memory+0x206/0x270
[ 1642.487929][T32634]  ? mem_cgroup_margin+0x130/0x130
[ 1642.493069][T32634]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1642.498900][T32634]  memory_max_write+0x2f9/0x3c0
[ 1642.503766][T32634]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1642.509854][T32634]  ? lock_sync+0x190/0x190
[ 1642.514383][T32634]  cgroup_file_write+0x1e2/0x7b0
[ 1642.519342][T32634]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1642.525423][T32634]  ? kill_css+0x3b0/0x3b0
[ 1642.529766][T32634]  ? lock_acquire+0x32/0xc0
[ 1642.534302][T32634]  ? kill_css+0x3b0/0x3b0
[ 1642.538647][T32634]  kernfs_fop_write_iter+0x3f1/0x600
[ 1642.543953][T32634]  vfs_write+0xa1d/0xe40
[ 1642.548217][T32634]  ? kernel_write+0x670/0x670
[ 1642.552904][T32634]  ? receive_fd+0x110/0x110
[ 1642.557425][T32634]  ? __fget_files+0x26a/0x480
[ 1642.562129][T32634]  ksys_write+0x12b/0x250
[ 1642.566475][T32634]  ? __ia32_sys_read+0xb0/0xb0
[ 1642.571253][T32634]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1642.577201][T32634]  do_syscall_64+0x39/0xb0
[ 1642.581635][T32634]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1642.587545][T32634] RIP: 0033:0x7fab35c8c169
[ 1642.591969][T32634] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1642.611596][T32634] RSP: 002b:00007fab36a3d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1642.620019][T32634] RAX: ffffffffffffffda RBX: 00007fab35dac120 RCX: 00007fab35c8c169
[ 1642.627998][T32634] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1642.635990][T32634] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1642.643970][T32634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1642.651947][T32634] R13: 00007ffc740ae83f R14: 00007fab36a3d300 R15: 0000000000022000
[ 1642.659948][T32634]  </TASK>
[ 1642.678946][T32634] memory: usage 11012kB, limit 0kB, failcnt 191
[ 1642.685301][T32634] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1642.692209][T32634] Memory cgroup stats for /syz1:
[ 1642.692672][T32634] anon 163840
[ 1642.703315][T32634] file 10125312
[ 1642.707261][T32634] kernel 786432
[ 1642.711139][T32634] kernel_stack 131072
[ 1642.715656][T32634] pagetables 77824
[ 1642.719837][T32634] sec_pagetables 0
[ 1642.724121][T32634] percpu 64
[ 1642.727635][T32634] sock 0
[ 1642.730897][T32634] vmalloc 40960
[ 1642.734867][T32634] shmem 10125312
[ 1642.738861][T32634] zswap 0
[ 1642.742233][T32634] zswapped 0
[ 1642.745802][T32634] file_mapped 299008
[ 1642.750183][T32634] file_dirty 0
[ 1642.754048][T32634] file_writeback 0
[ 1642.758235][T32634] swapcached 0
[ 1642.762063][T32634] anon_thp 0
[ 1642.765736][T32634] file_thp 0
[ 1642.769371][T32634] shmem_thp 0
[ 1642.773103][T32634] inactive_anon 0
[ 1642.777197][T32634] active_anon 10289152
[ 1642.781756][T32634] inactive_file 0
[ 1642.785889][T32634] active_file 200704
[ 1642.790294][T32634] unevictable 0
[ 1642.794236][T32634] slab_reclaimable 396560
[ 1642.799080][T32634] slab_unreclaimable 104824
[ 1642.804312][T32634] slab 501384
[ 1642.807991][T32634] workingset_refault_anon 0
[ 1642.813079][T32634] workingset_refault_file 0
[ 1642.818091][T32634] workingset_activate_anon 0
[ 1642.823246][T32634] workingset_activate_file 0
[ 1642.828447][T32634] workingset_restore_anon 0
[ 1642.833487][T32634] workingset_restore_file 0
[ 1642.838541][T32634] workingset_nodereclaim 0
[ 1642.843513][T32634] pgscan 35496
[ 1642.847357][T32634] pgsteal 43
[ 1642.850962][T32634] pgscan_kswapd 0
[ 1642.855104][T32634] pgscan_direct 35496
[ 1642.859569][T32634] pgscan_khugepaged 0
[ 1642.864076][T32634] pgsteal_kswapd 0
[ 1642.868230][T32634] pgsteal_direct 43
[ 1642.872585][T32634] pgsteal_khugepaged 0
[ 1642.877149][T32634] pgfault 618603
[ 1642.881136][T32634] pgmajfault 6
[ 1642.884994][T32634] pgrefill 1296492
[ 1642.889189][T32634] pgactivate 35439
[ 1642.893427][T32634] pgdeactivate 0
[ 1642.897424][T32634] pglazyfree 0
[ 1642.901228][T32634] pglazyfreed 0
[ 1642.905300][T32634] zswpin 0
[ 1642.908665][T32634] zswpout 0
[ 1642.912338][T32634] thp_fault_alloc 0
[ 1642.916597][T32634] thp_collapse_alloc 0
[ 1642.921175][T32634] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=32625,uid=0
[ 1642.940245][T32634] Memory cgroup out of memory: Killed process 32625 (syz-executor.1) total-vm:54812kB, anon-rss:384kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:84kB oom_score_adj:1000
13:48:56 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
dup2(r5, r5)
ioctl$BLKGETSIZE(0xffffffffffffffff, 0x40081271, &(0x7f0000003c00))
mount(&(0x7f00000005c0)=ANY=[@ANYBLOB="2f646576a338f411a405020032caed2f6d6430006dd972705d561eee9ac54d73233c3b86e303d52dd6182cc6124b0800000080149aaaa9f7d54f7674a7594db8dab812f0bccaf3f26f71175541982449f3533ca11dbbcf4e5ede593093d80b5f03673f48d6b664beed38a5d510002a375b6cb5dff48ee271fe768a5072ca72789547010287e50817efe42f4b65c6ca618d873bb88e703f7b50917329812eb52965a861fde5fba6f87e2ce358daa3ecaa8e34afac251478d828b57c2e4f1a8bb6822583913ffd5df5b35c6565d4bcfb0ca7152883c17171abc701a1a8d31a94b5b801577974fba7b99e13e4a464ced0568d7e941aa6c27dc0b106ad716fc87654fa214d5d136a1e16e8a036cedfd7513e08297eb4a0c99393397d63032d5f3a2eba0b82"], &(0x7f0000000380)='./file0\x00', &(0x7f0000000400)='devtmpfs\x00', 0x4, &(0x7f0000000440)=',\x15\x00')
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup(r6, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f0000000140), 0x12)

[ 1643.765279][T32638] devtmpfs: Unknown parameter ''
[ 1643.809657][T32638] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1643.820987][T32638] CPU: 0 PID: 32638 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1643.830557][T32638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1643.840619][T32638] Call Trace:
[ 1643.843900][T32638]  <TASK>
[ 1643.846836][T32638]  dump_stack_lvl+0x136/0x150
[ 1643.851537][T32638]  dump_header+0x10a/0xd70
[ 1643.855991][T32638]  oom_kill_process+0x25d/0x600
[ 1643.860862][T32638]  out_of_memory+0x35c/0x1650
[ 1643.865561][T32638]  ? oom_killer_disable+0x2b0/0x2b0
[ 1643.870794][T32638]  ? kernfs_notify+0x1ac/0x410
[ 1643.875575][T32638]  ? find_held_lock+0x2d/0x110
[ 1643.880367][T32638]  mem_cgroup_out_of_memory+0x206/0x270
[ 1643.885948][T32638]  ? mem_cgroup_margin+0x130/0x130
[ 1643.891090][T32638]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1643.896917][T32638]  memory_max_write+0x2f9/0x3c0
[ 1643.901784][T32638]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1643.907867][T32638]  ? lock_sync+0x190/0x190
[ 1643.912321][T32638]  cgroup_file_write+0x1e2/0x7b0
[ 1643.917280][T32638]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1643.923374][T32638]  ? kill_css+0x3b0/0x3b0
[ 1643.927715][T32638]  ? lock_acquire+0x32/0xc0
[ 1643.932246][T32638]  ? kill_css+0x3b0/0x3b0
[ 1643.936676][T32638]  kernfs_fop_write_iter+0x3f1/0x600
[ 1643.941978][T32638]  vfs_write+0xa1d/0xe40
[ 1643.946238][T32638]  ? kernel_write+0x670/0x670
[ 1643.950950][T32638]  ? receive_fd+0x110/0x110
[ 1643.955471][T32638]  ? __fget_files+0x26a/0x480
[ 1643.960193][T32638]  ksys_write+0x12b/0x250
[ 1643.964537][T32638]  ? __ia32_sys_read+0xb0/0xb0
[ 1643.969317][T32638]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1643.975269][T32638]  do_syscall_64+0x39/0xb0
[ 1643.979702][T32638]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1643.985626][T32638] RIP: 0033:0x7fab35c8c169
[ 1643.990062][T32638] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1644.009702][T32638] RSP: 002b:00007fab36a3d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1644.018130][T32638] RAX: ffffffffffffffda RBX: 00007fab35dac120 RCX: 00007fab35c8c169
[ 1644.026107][T32638] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1644.034082][T32638] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1644.042060][T32638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1644.050036][T32638] R13: 00007ffc740ae83f R14: 00007fab36a3d300 R15: 0000000000022000
[ 1644.058033][T32638]  </TASK>
[ 1644.081956][T32638] memory: usage 10588kB, limit 0kB, failcnt 191
[ 1644.088314][T32638] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1644.100294][T32638] Memory cgroup stats for /syz1:
[ 1644.101087][T32638] anon 53248
[ 1644.110768][T32638] file 10125312
[ 1644.114950][T32638] kernel 454656
[ 1644.118896][T32638] kernel_stack 32768
[ 1644.124035][T32638] pagetables 8192
[ 1644.128136][T32638] sec_pagetables 0
[ 1644.132743][T32638] percpu 64
[ 1644.136402][T32638] sock 0
[ 1644.139666][T32638] vmalloc 40960
[ 1644.143828][T32638] shmem 10125312
[ 1644.147952][T32638] zswap 0
[ 1644.151356][T32638] zswapped 0
[ 1644.155426][T32638] file_mapped 299008
[ 1644.159859][T32638] file_dirty 0
[ 1644.164126][T32638] file_writeback 0
[ 1644.168369][T32638] swapcached 0
[ 1644.172726][T32638] anon_thp 0
[ 1644.176465][T32638] file_thp 0
[ 1644.180167][T32638] shmem_thp 0
[ 1644.184393][T32638] inactive_anon 0
[ 1644.188559][T32638] active_anon 10178560
[ 1644.196822][T32638] inactive_file 0
[ 1644.200949][T32638] active_file 200704
[ 1644.205891][T32638] unevictable 0
[ 1644.209862][T32638] slab_reclaimable 305568
[ 1644.215100][T32638] slab_unreclaimable 58680
[ 1644.220158][T32638] slab 364248
[ 1644.224411][T32638] workingset_refault_anon 0
[ 1644.229446][T32638] workingset_refault_file 0
[ 1644.235829][T32638] workingset_activate_anon 0
[ 1644.241069][T32638] workingset_activate_file 0
[ 1644.246623][T32638] workingset_restore_anon 0
[ 1644.251629][T32638] workingset_restore_file 0
[ 1644.257121][T32638] workingset_nodereclaim 0
[ 1644.262295][T32638] pgscan 37064
[ 1644.266101][T32638] pgsteal 43
[ 1644.269780][T32638] pgscan_kswapd 0
[ 1644.273913][T32638] pgscan_direct 37064
[ 1644.278400][T32638] pgscan_khugepaged 0
[ 1644.282941][T32638] pgsteal_kswapd 0
[ 1644.287148][T32638] pgsteal_direct 43
[ 1644.291533][T32638] pgsteal_khugepaged 0
[ 1644.296114][T32638] pgfault 618605
[ 1644.300127][T32638] pgmajfault 6
[ 1644.304025][T32638] pgrefill 1296492
[ 1644.308187][T32638] pgactivate 37007
[ 1644.312449][T32638] pgdeactivate 0
[ 1644.316450][T32638] pglazyfree 0
[ 1644.320270][T32638] pglazyfreed 0
[ 1644.324489][T32638] zswpin 0
[ 1644.327853][T32638] zswpout 0
[ 1644.331421][T32638] thp_fault_alloc 0
[ 1644.335714][T32638] thp_collapse_alloc 0
[ 1644.340330][T32638] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=32419,uid=0
[ 1644.357659][T32638] Memory cgroup out of memory: Killed process 32419 (syz-executor.1) total-vm:50576kB, anon-rss:368kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
13:48:58 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
dup2(r5, r5)
ioctl$BLKGETSIZE(0xffffffffffffffff, 0x40081271, &(0x7f0000003c00))
mount(&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='./file0\x00', &(0x7f0000000400)='devtmpfs\x00', 0x4, &(0x7f0000000440)=',\x15\x00')
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup(r6, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f0000000140), 0x12)

13:48:58 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x17, 0x0, &(0x7f0000000200))

13:48:58 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x22, 0x0, &(0x7f0000000100))

[ 1645.276006][T32644] devtmpfs: Unknown parameter ''
[ 1645.315779][T32644] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1645.326989][T32644] CPU: 0 PID: 32644 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1645.336600][T32644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1645.346665][T32644] Call Trace:
[ 1645.349950][T32644]  <TASK>
[ 1645.352888][T32644]  dump_stack_lvl+0x136/0x150
[ 1645.357589][T32644]  dump_header+0x10a/0xd70
[ 1645.362021][T32644]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1645.368127][T32644]  out_of_memory+0xd6c/0x1650
[ 1645.372821][T32644]  ? lockdep_hardirqs_on+0x7d/0x100
[ 1645.378063][T32644]  ? oom_killer_disable+0x2b0/0x2b0
[ 1645.383391][T32644]  mem_cgroup_out_of_memory+0x206/0x270
[ 1645.388961][T32644]  ? mem_cgroup_margin+0x130/0x130
[ 1645.394101][T32644]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1645.399929][T32644]  memory_max_write+0x2f9/0x3c0
[ 1645.404799][T32644]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1645.410884][T32644]  ? lock_sync+0x190/0x190
[ 1645.415325][T32644]  cgroup_file_write+0x1e2/0x7b0
[ 1645.420286][T32644]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1645.426374][T32644]  ? kill_css+0x3b0/0x3b0
[ 1645.430722][T32644]  ? lock_acquire+0x32/0xc0
[ 1645.435257][T32644]  ? kill_css+0x3b0/0x3b0
[ 1645.439601][T32644]  kernfs_fop_write_iter+0x3f1/0x600
[ 1645.444905][T32644]  vfs_write+0xa1d/0xe40
[ 1645.449188][T32644]  ? kernel_write+0x670/0x670
[ 1645.453879][T32644]  ? receive_fd+0x110/0x110
[ 1645.458405][T32644]  ? __fget_files+0x26a/0x480
[ 1645.463147][T32644]  ksys_write+0x12b/0x250
[ 1645.467493][T32644]  ? __ia32_sys_read+0xb0/0xb0
[ 1645.472274][T32644]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1645.478207][T32644]  do_syscall_64+0x39/0xb0
[ 1645.482643][T32644]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1645.488557][T32644] RIP: 0033:0x7fab35c8c169
[ 1645.493001][T32644] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1645.512622][T32644] RSP: 002b:00007fab36a3d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1645.521044][T32644] RAX: ffffffffffffffda RBX: 00007fab35dac120 RCX: 00007fab35c8c169
[ 1645.529027][T32644] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1645.537006][T32644] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1645.544987][T32644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1645.552966][T32644] R13: 00007ffc740ae83f R14: 00007fab36a3d300 R15: 0000000000022000
[ 1645.560965][T32644]  </TASK>
[ 1645.580002][T32644] memory: usage 10408kB, limit 0kB, failcnt 191
[ 1645.586310][T32644] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1645.593267][T32644] Memory cgroup stats for /syz1:
[ 1645.593687][T32644] anon 0
[ 1645.603691][T32644] file 10125312
[ 1645.607553][T32644] kernel 331776
[ 1645.611492][T32644] kernel_stack 0
[ 1645.615725][T32644] pagetables 0
[ 1645.619558][T32644] sec_pagetables 0
[ 1645.623785][T32644] percpu 64
[ 1645.627358][T32644] sock 0
[ 1645.630605][T32644] vmalloc 0
[ 1645.634174][T32644] shmem 10125312
[ 1645.638269][T32644] zswap 0
[ 1645.641616][T32644] zswapped 0
[ 1645.645294][T32644] file_mapped 299008
[ 1645.649751][T32644] file_dirty 0
[ 1645.653575][T32644] file_writeback 0
[ 1645.657793][T32644] swapcached 0
[ 1645.661603][T32644] anon_thp 0
[ 1645.665266][T32644] file_thp 0
[ 1645.668892][T32644] shmem_thp 0
[ 1645.672636][T32644] inactive_anon 0
[ 1645.676745][T32644] active_anon 10125312
[ 1645.681301][T32644] inactive_file 0
[ 1645.685477][T32644] active_file 200704
[ 1645.689866][T32644] unevictable 0
[ 1645.693791][T32644] slab_reclaimable 272728
[ 1645.698650][T32644] slab_unreclaimable 48592
[ 1645.703614][T32644] slab 321320
[ 1645.707346][T32644] workingset_refault_anon 0
[ 1645.712491][T32644] workingset_refault_file 0
[ 1645.717475][T32644] workingset_activate_anon 0
[ 1645.722715][T32644] workingset_activate_file 0
[ 1645.727889][T32644] workingset_restore_anon 0
[ 1645.732995][T32644] workingset_restore_file 0
[ 1645.738085][T32644] workingset_nodereclaim 0
[ 1645.743087][T32644] pgscan 38632
[ 1645.746908][T32644] pgsteal 43
[ 1645.750555][T32644] pgscan_kswapd 0
[ 1645.754742][T32644] pgscan_direct 38632
[ 1645.759222][T32644] pgscan_khugepaged 0
[ 1645.763733][T32644] pgsteal_kswapd 0
[ 1645.767904][T32644] pgsteal_direct 43
[ 1645.772198][T32644] pgsteal_khugepaged 0
[ 1645.776882][T32644] pgfault 618605
[ 1645.780893][T32644] pgmajfault 6
[ 1645.784837][T32644] pgrefill 1296492
[ 1645.789038][T32644] pgactivate 38575
[ 1645.793365][T32644] pgdeactivate 0
[ 1645.797335][T32644] pglazyfree 0
[ 1645.801156][T32644] pglazyfreed 0
[ 1645.805096][T32644] zswpin 0
[ 1645.808535][T32644] zswpout 0
[ 1645.812115][T32644] thp_fault_alloc 0
[ 1645.816612][T32644] thp_collapse_alloc 0
[ 1645.821135][T32644] Out of memory and no killable processes...
13:48:59 executing program 5:
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000ffc000/0x4000)=nil)

13:48:59 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x0, 0x87}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000100)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000a00)=[{{&(0x7f0000000480)=@rc={0x1f, @fixed}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000640)=""/131, 0x83}, {&(0x7f0000000700)=""/203, 0xcb}], 0x2}, 0x4}], 0x1, 0x40000002, &(0x7f0000000a80)={0x0, 0x3938700})
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r5 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
fallocate(r5, 0x0, 0x0, 0x4103fe)
sendfile(r4, r4, 0x0, 0xffffffff009)
write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, 0x0, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fff)
open(&(0x7f0000000400)='./file0\x00', 0x4000, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000000600), 0x8)
sched_rr_get_interval(r0, &(0x7f0000000340))

13:48:59 executing program 0:
r0 = openat$audio(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0x80045006, 0x0)

13:48:59 executing program 2:
madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xc)

13:48:59 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_NOOP(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="ed0027bd70000000000000000000090019"], 0x24}}, 0x0)

13:48:59 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
dup2(r5, r5)
ioctl$BLKGETSIZE(0xffffffffffffffff, 0x40081271, &(0x7f0000003c00))
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup(r6, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f0000000140), 0x12)

[ 1646.555555][T32655] netlink: 'syz-executor.5': attribute type 25 has an invalid length.
[ 1646.601815][T32655] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
13:48:59 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000500)={&(0x7f0000000300), 0xc, &(0x7f00000004c0)={&(0x7f0000000340)={0x4c, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_DEVKEY={0x24, 0x2d, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x8001}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x4c}}, 0x0)

13:48:59 executing program 0:
mremap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffe000/0x2000)=nil)

13:48:59 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{0x0}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:48:59 executing program 5:
r0 = openat$audio(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0x800c5011, &(0x7f00000005c0))

[ 1646.795359][T32664] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1646.805742][T32664] CPU: 1 PID: 32664 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1646.815389][T32664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1646.825458][T32664] Call Trace:
[ 1646.828746][T32664]  <TASK>
[ 1646.831688][T32664]  dump_stack_lvl+0x136/0x150
[ 1646.836396][T32664]  dump_header+0x10a/0xd70
[ 1646.840829][T32664]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1646.846922][T32664]  out_of_memory+0xd6c/0x1650
[ 1646.851626][T32664]  ? io_schedule_timeout+0x150/0x150
[ 1646.856940][T32664]  ? oom_killer_disable+0x2b0/0x2b0
[ 1646.862178][T32664]  mem_cgroup_out_of_memory+0x206/0x270
[ 1646.867769][T32664]  ? mem_cgroup_margin+0x130/0x130
[ 1646.872924][T32664]  memory_max_write+0x2f9/0x3c0
[ 1646.877797][T32664]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1646.883887][T32664]  ? lock_sync+0x190/0x190
[ 1646.888336][T32664]  cgroup_file_write+0x1e2/0x7b0
[ 1646.893302][T32664]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1646.899390][T32664]  ? kill_css+0x3b0/0x3b0
[ 1646.903738][T32664]  ? lock_acquire+0x32/0xc0
[ 1646.908293][T32664]  ? kill_css+0x3b0/0x3b0
[ 1646.912641][T32664]  kernfs_fop_write_iter+0x3f1/0x600
[ 1646.917951][T32664]  vfs_write+0xa1d/0xe40
[ 1646.922214][T32664]  ? kernel_write+0x670/0x670
[ 1646.926910][T32664]  ? receive_fd+0x110/0x110
[ 1646.931437][T32664]  ? __fget_files+0x26a/0x480
[ 1646.936150][T32664]  ksys_write+0x12b/0x250
[ 1646.940496][T32664]  ? __ia32_sys_read+0xb0/0xb0
[ 1646.945289][T32664]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1646.951221][T32664]  do_syscall_64+0x39/0xb0
[ 1646.955659][T32664]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1646.961575][T32664] RIP: 0033:0x7fab35c8c169
[ 1646.966004][T32664] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1646.985633][T32664] RSP: 002b:00007fab36a3d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1646.994078][T32664] RAX: ffffffffffffffda RBX: 00007fab35dac120 RCX: 00007fab35c8c169
[ 1647.002070][T32664] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1647.010059][T32664] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1647.018045][T32664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1647.026049][T32664] R13: 00007ffc740ae83f R14: 00007fab36a3d300 R15: 0000000000022000
[ 1647.034051][T32664]  </TASK>
[ 1647.037265][T32664] memory: usage 10404kB, limit 0kB, failcnt 191
[ 1647.043622][T32664] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1647.050560][T32664] Memory cgroup stats for /syz1:
[ 1647.051362][T32664] anon 0
[ 1647.059262][T32664] file 10125312
[ 1647.062959][T32664] kernel 307200
[ 1647.066517][T32664] kernel_stack 0
[ 1647.070166][T32664] pagetables 0
[ 1647.073649][T32664] sec_pagetables 0
[ 1647.077441][T32664] percpu 0
[ 1647.080532][T32664] sock 0
[ 1647.083481][T32664] vmalloc 0
[ 1647.086661][T32664] shmem 10125312
[ 1647.090249][T32664] zswap 0
[ 1647.093288][T32664] zswapped 0
[ 1647.096531][T32664] file_mapped 299008
[ 1647.100498][T32664] file_dirty 0
[ 1647.103942][T32664] file_writeback 0
[ 1647.107738][T32664] swapcached 0
[ 1647.111195][T32664] anon_thp 0
[ 1647.114490][T32664] file_thp 0
[ 1647.117763][T32664] shmem_thp 0
[ 1647.121118][T32664] inactive_anon 0
[ 1647.124853][T32664] active_anon 10125312
[ 1647.128993][T32664] inactive_file 0
[ 1647.132722][T32664] active_file 200704
[ 1647.136688][T32664] unevictable 0
[ 1647.140219][T32664] slab_reclaimable 271960
[ 1647.144617][T32664] slab_unreclaimable 36528
[ 1647.149122][T32664] slab 308488
[ 1647.152517][T32664] workingset_refault_anon 0
[ 1647.157097][T32664] workingset_refault_file 0
[ 1647.161681][T32664] workingset_activate_anon 0
[ 1647.166476][T32664] workingset_activate_file 0
[ 1647.171170][T32664] workingset_restore_anon 0
[ 1647.175768][T32664] workingset_restore_file 0
[ 1647.180351][T32664] workingset_nodereclaim 0
[ 1647.184865][T32664] pgscan 40200
[ 1647.188309][T32664] pgsteal 43
[ 1647.191576][T32664] pgscan_kswapd 0
[ 1647.195285][T32664] pgscan_direct 40200
[ 1647.199338][T32664] pgscan_khugepaged 0
[ 1647.203413][T32664] pgsteal_kswapd 0
[ 1647.207184][T32664] pgsteal_direct 43
[ 1647.211064][T32664] pgsteal_khugepaged 0
[ 1647.215258][T32664] pgfault 618605
[ 1647.218850][T32664] pgmajfault 6
[ 1647.222315][T32664] pgrefill 1296492
[ 1647.226105][T32664] pgactivate 40143
[ 1647.229893][T32664] pgdeactivate 0
[ 1647.233534][T32664] pglazyfree 0
[ 1647.236951][T32664] pglazyfreed 0
[ 1647.240479][T32664] zswpin 0
[ 1647.243597][T32664] zswpout 0
[ 1647.246782][T32664] thp_fault_alloc 0
[ 1647.250658][T32664] thp_collapse_alloc 0
[ 1647.254820][T32664] Out of memory and no killable processes...
[ 1647.499866][   T27] audit: type=1800 audit(1683380940.513:259): pid=32666 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=1963 res=0 errno=0
13:49:00 executing program 0:
r0 = openat$audio1(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$SNDCTL_DSP_POST(r0, 0x5008, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r0, 0x5001, 0x0)

13:49:00 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000500)={&(0x7f0000000300), 0xc, &(0x7f00000004c0)={&(0x7f0000000340)={0x4c, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_DEVKEY={0x24, 0x2d, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x8001}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x4c}}, 0x0)

[ 1647.670917][T14050] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
13:49:00 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000001c0), r0)
sendmsg$NLBL_CIPSOV4_C_LIST(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, r2, 0x1}, 0x14}}, 0x0)

[ 1647.959127][   T27] audit: type=1804 audit(1683380940.973:260): pid=32677 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir60446055/syzkaller.7EY9SI/1876/file0" dev="sda1" ino=1963 res=1 errno=0
[ 1648.203608][T14050] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1648.340712][T14050] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1648.436530][T14050] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
13:49:02 executing program 4:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)={0x24, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_DEVKEY={0x4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x24}}, 0x0)

13:49:02 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
dup2(r5, r5)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup(r6, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r8, &(0x7f0000000140), 0x12)

13:49:02 executing program 2:
set_mempolicy(0x3, &(0x7f0000000000)=0x2000005, 0xce)
syz_genetlink_get_family_id$l2tp(&(0x7f00000001c0), 0xffffffffffffffff)

13:49:02 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_GETPARAMS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14}, 0x14}}, 0x0)

13:49:02 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x34, r1, 0x1, 0x0, 0x0, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

13:49:02 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{0x0}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:49:02 executing program 5:
ioctl$SNDRV_PCM_IOCTL_DELAY(0xffffffffffffffff, 0x80044121, &(0x7f0000000080))
r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r0)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000000000)={0x1, 0x1, 0xa4, 0x8, @vifc_lcl_ifindex, @local}, 0x10)
mmap$IORING_OFF_SQES(&(0x7f0000ff3000/0xc000)=nil, 0xc000, 0x2000008, 0x10, 0xffffffffffffffff, 0x10000000)

[ 1649.569282][T14050] hsr_slave_0: left promiscuous mode
[ 1649.577675][T14050] hsr_slave_1: left promiscuous mode
13:49:02 executing program 2:
r0 = openat$null(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000240)={r0, 0x0, 0x0}, 0x1c)

[ 1649.745733][T32706] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1649.756076][T32706] CPU: 1 PID: 32706 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1649.765906][T32706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1649.775997][T32706] Call Trace:
[ 1649.779285][T32706]  <TASK>
[ 1649.782221][T32706]  dump_stack_lvl+0x136/0x150
[ 1649.786933][T32706]  dump_header+0x10a/0xd70
[ 1649.791366][T32706]  ? out_of_memory+0x1a4/0x1650
[ 1649.796246][T32706]  out_of_memory+0xd6c/0x1650
[ 1649.800940][T32706]  ? lockdep_hardirqs_on+0x7d/0x100
[ 1649.806172][T32706]  ? oom_killer_disable+0x2b0/0x2b0
[ 1649.811408][T32706]  mem_cgroup_out_of_memory+0x206/0x270
[ 1649.816987][T32706]  ? mem_cgroup_margin+0x130/0x130
[ 1649.822147][T32706]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1649.827984][T32706]  memory_max_write+0x2f9/0x3c0
[ 1649.832862][T32706]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1649.838954][T32706]  ? lock_sync+0x190/0x190
[ 1649.843407][T32706]  cgroup_file_write+0x1e2/0x7b0
[ 1649.848370][T32706]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1649.854461][T32706]  ? kill_css+0x3b0/0x3b0
[ 1649.858833][T32706]  ? lock_acquire+0x32/0xc0
[ 1649.863369][T32706]  ? kill_css+0x3b0/0x3b0
[ 1649.867724][T32706]  kernfs_fop_write_iter+0x3f1/0x600
[ 1649.873034][T32706]  vfs_write+0xa1d/0xe40
[ 1649.877304][T32706]  ? kernel_write+0x670/0x670
[ 1649.881995][T32706]  ? receive_fd+0x110/0x110
[ 1649.886526][T32706]  ? __fget_files+0x26a/0x480
[ 1649.891256][T32706]  ksys_write+0x12b/0x250
[ 1649.895622][T32706]  ? __ia32_sys_read+0xb0/0xb0
[ 1649.900412][T32706]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1649.906341][T32706]  do_syscall_64+0x39/0xb0
[ 1649.910783][T32706]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1649.916695][T32706] RIP: 0033:0x7fab35c8c169
[ 1649.921130][T32706] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1649.940769][T32706] RSP: 002b:00007fab36a3d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1649.949239][T32706] RAX: ffffffffffffffda RBX: 00007fab35dac120 RCX: 00007fab35c8c169
[ 1649.957227][T32706] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1649.965214][T32706] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1649.973286][T32706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1649.981268][T32706] R13: 00007ffc740ae83f R14: 00007fab36a3d300 R15: 0000000000022000
[ 1649.989271][T32706]  </TASK>
[ 1649.992468][T32706] memory: usage 10372kB, limit 0kB, failcnt 191
[ 1649.998798][T32706] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1650.005747][T32706] Memory cgroup stats for /syz1:
[ 1650.006593][T32706] anon 0
[ 1650.014477][T32706] file 10125312
[ 1650.018009][T32706] kernel 294912
[ 1650.021538][T32706] kernel_stack 0
[ 1650.025299][T32706] pagetables 0
[ 1650.028742][T32706] sec_pagetables 0
[ 1650.032554][T32706] percpu 0
[ 1650.035623][T32706] sock 0
[ 1650.038536][T32706] vmalloc 0
[ 1650.041710][T32706] shmem 10125312
[ 1650.045343][T32706] zswap 0
[ 1650.048350][T32706] zswapped 0
[ 1650.051653][T32706] file_mapped 299008
[ 1650.055613][T32706] file_dirty 0
[ 1650.059053][T32706] file_writeback 0
[ 1650.062839][T32706] swapcached 0
[ 1650.066277][T32706] anon_thp 0
[ 1650.069544][T32706] file_thp 0
[ 1650.072809][T32706] shmem_thp 0
[ 1650.076157][T32706] inactive_anon 0
[ 1650.079837][T32706] active_anon 10125312
[ 1650.083973][T32706] inactive_file 0
[ 1650.087646][T32706] active_file 200704
[ 1650.091604][T32706] unevictable 0
[ 1650.095186][T32706] slab_reclaimable 263304
[ 1650.099578][T32706] slab_unreclaimable 28328
[ 1650.104085][T32706] slab 291632
[ 1650.107434][T32706] workingset_refault_anon 0
[ 1650.112002][T32706] workingset_refault_file 0
[ 1650.116591][T32706] workingset_activate_anon 0
[ 1650.121228][T32706] workingset_activate_file 0
[ 1650.126029][T32706] workingset_restore_anon 0
[ 1650.130598][T32706] workingset_restore_file 0
[ 1650.135189][T32706] workingset_nodereclaim 0
[ 1650.139700][T32706] pgscan 41768
[ 1650.143163][T32706] pgsteal 43
[ 1650.146423][T32706] pgscan_kswapd 0
[ 1650.150095][T32706] pgscan_direct 41768
[ 1650.154167][T32706] pgscan_khugepaged 0
[ 1650.158209][T32706] pgsteal_kswapd 0
[ 1650.161965][T32706] pgsteal_direct 43
[ 1650.165857][T32706] pgsteal_khugepaged 0
[ 1650.169994][T32706] pgfault 618605
[ 1650.173627][T32706] pgmajfault 6
[ 1650.177065][T32706] pgrefill 1296492
[ 1650.180877][T32706] pgactivate 41711
[ 1650.184687][T32706] pgdeactivate 0
[ 1650.188284][T32706] pglazyfree 0
[ 1650.191724][T32706] pglazyfreed 0
[ 1650.195282][T32706] zswpin 0
[ 1650.198377][T32706] zswpout 0
[ 1650.201550][T32706] thp_fault_alloc 0
[ 1650.205422][T32706] thp_collapse_alloc 0
[ 1650.209552][T32706] Out of memory and no killable processes...
13:49:03 executing program 0:
bpf$OBJ_GET_PROG(0x1e, &(0x7f0000000400)={&(0x7f00000003c0)='./file0\x00'}, 0x10)

[ 1650.497573][T14050] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1650.521684][T14050] batman_adv: batadv0: Removing interface: batadv_slave_0
13:49:03 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x0, 0x0, 0x0, 0x2}, 0x48)

13:49:03 executing program 0:
r0 = openat$audio(0xffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0x8010500d, &(0x7f00000005c0))

[ 1650.712972][T14050] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1650.720441][T14050] batman_adv: batadv0: Removing interface: batadv_slave_1
13:49:03 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup(r5, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r7, &(0x7f0000000140), 0x12)

[ 1650.829430][T14050] bridge_slave_1: left allmulticast mode
[ 1650.872892][T14050] bridge_slave_1: left promiscuous mode
[ 1650.917838][T14050] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1650.946617][T14050] bridge_slave_0: left allmulticast mode
[ 1650.964231][T14050] bridge_slave_0: left promiscuous mode
[ 1650.970327][T14050] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1650.997551][T14050] veth1_macvtap: left promiscuous mode
[ 1651.003682][T14050] veth0_macvtap: left promiscuous mode
[ 1651.009538][T14050] veth1_vlan: left promiscuous mode
[ 1651.017394][T14050] veth0_vlan: left promiscuous mode
[ 1651.115367][T32723] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1651.125852][T32723] CPU: 1 PID: 32723 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1651.135427][T32723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1651.145494][T32723] Call Trace:
[ 1651.148786][T32723]  <TASK>
[ 1651.151745][T32723]  dump_stack_lvl+0x136/0x150
[ 1651.156455][T32723]  dump_header+0x10a/0xd70
[ 1651.160884][T32723]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1651.166979][T32723]  out_of_memory+0xd6c/0x1650
[ 1651.171684][T32723]  ? oom_killer_disable+0x2b0/0x2b0
[ 1651.176914][T32723]  ? mark_held_locks+0x9f/0xe0
[ 1651.181709][T32723]  mem_cgroup_out_of_memory+0x206/0x270
[ 1651.187282][T32723]  ? mem_cgroup_margin+0x130/0x130
[ 1651.192518][T32723]  ? _raw_spin_unlock_irqrestore+0x3c/0x70
[ 1651.198357][T32723]  memory_max_write+0x2f9/0x3c0
[ 1651.203227][T32723]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1651.209314][T32723]  ? mark_held_locks+0x9f/0xe0
[ 1651.214105][T32723]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1651.219769][T32723]  cgroup_file_write+0x1e2/0x7b0
[ 1651.224736][T32723]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1651.230826][T32723]  ? kill_css+0x3b0/0x3b0
[ 1651.235187][T32723]  ? kill_css+0x3b0/0x3b0
[ 1651.239533][T32723]  kernfs_fop_write_iter+0x3f1/0x600
[ 1651.244841][T32723]  vfs_write+0xa1d/0xe40
[ 1651.249107][T32723]  ? kernel_write+0x670/0x670
[ 1651.253798][T32723]  ? receive_fd+0x110/0x110
[ 1651.258326][T32723]  ? __fget_files+0x26a/0x480
[ 1651.263035][T32723]  ksys_write+0x12b/0x250
[ 1651.267392][T32723]  ? __ia32_sys_read+0xb0/0xb0
[ 1651.272179][T32723]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1651.278110][T32723]  do_syscall_64+0x39/0xb0
[ 1651.282637][T32723]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1651.288548][T32723] RIP: 0033:0x7fab35c8c169
[ 1651.292976][T32723] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1651.312612][T32723] RSP: 002b:00007fab36a3d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1651.321041][T32723] RAX: ffffffffffffffda RBX: 00007fab35dac120 RCX: 00007fab35c8c169
[ 1651.329023][T32723] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1651.337003][T32723] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1651.344981][T32723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1651.352964][T32723] R13: 00007ffc740ae83f R14: 00007fab36a3d300 R15: 0000000000022000
[ 1651.360965][T32723]  </TASK>
[ 1651.366187][T32723] memory: usage 10372kB, limit 0kB, failcnt 191
[ 1651.372734][T32723] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1651.379665][T32723] Memory cgroup stats for /syz1:
[ 1651.380479][T32723] anon 0
[ 1651.388366][T32723] file 10125312
[ 1651.391892][T32723] kernel 294912
[ 1651.395445][T32723] kernel_stack 0
[ 1651.399059][T32723] pagetables 0
[ 1651.402667][T32723] sec_pagetables 0
[ 1651.406571][T32723] percpu 0
[ 1651.409662][T32723] sock 0
[ 1651.412607][T32723] vmalloc 0
[ 1651.415783][T32723] shmem 10125312
[ 1651.419374][T32723] zswap 0
[ 1651.422408][T32723] zswapped 0
[ 1651.425673][T32723] file_mapped 299008
[ 1651.429606][T32723] file_dirty 0
[ 1651.433044][T32723] file_writeback 0
[ 1651.436832][T32723] swapcached 0
[ 1651.440269][T32723] anon_thp 0
[ 1651.443555][T32723] file_thp 0
[ 1651.446823][T32723] shmem_thp 0
[ 1651.450175][T32723] inactive_anon 0
[ 1651.453893][T32723] active_anon 10125312
[ 1651.458029][T32723] inactive_file 0
[ 1651.461725][T32723] active_file 200704
[ 1651.465714][T32723] unevictable 0
[ 1651.469215][T32723] slab_reclaimable 263304
[ 1651.473657][T32723] slab_unreclaimable 28328
[ 1651.478152][T32723] slab 291632
[ 1651.481505][T32723] workingset_refault_anon 0
[ 1651.486075][T32723] workingset_refault_file 0
[ 1651.490641][T32723] workingset_activate_anon 0
[ 1651.495319][T32723] workingset_activate_file 0
[ 1651.499975][T32723] workingset_restore_anon 0
[ 1651.504684][T32723] workingset_restore_file 0
[ 1651.509276][T32723] workingset_nodereclaim 0
[ 1651.513783][T32723] pgscan 43336
[ 1651.517234][T32723] pgsteal 43
[ 1651.520480][T32723] pgscan_kswapd 0
[ 1651.524206][T32723] pgscan_direct 43336
[ 1651.528254][T32723] pgscan_khugepaged 0
[ 1651.532327][T32723] pgsteal_kswapd 0
[ 1651.536114][T32723] pgsteal_direct 43
[ 1651.539981][T32723] pgsteal_khugepaged 0
[ 1651.544157][T32723] pgfault 618605
[ 1651.547746][T32723] pgmajfault 6
[ 1651.551213][T32723] pgrefill 1296492
[ 1651.555020][T32723] pgactivate 43279
[ 1651.558814][T32723] pgdeactivate 0
[ 1651.562448][T32723] pglazyfree 0
[ 1651.565865][T32723] pglazyfreed 0
[ 1651.569389][T32723] zswpin 0
[ 1651.572530][T32723] zswpout 0
[ 1651.575721][T32723] thp_fault_alloc 0
[ 1651.579596][T32723] thp_collapse_alloc 0
[ 1651.583759][T32723] Out of memory and no killable processes...
[ 1652.602979][T14050] team0 (unregistering): Port device team_slave_1 removed
[ 1652.649205][T14050] team0 (unregistering): Port device team_slave_0 removed
[ 1652.688704][T14050] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1652.711722][T14050] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1652.814175][T14050] bond0 (unregistering): Released all slaves
[ 1652.876566][T32710] dvmrp1: entered allmulticast mode
13:49:05 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_NOOP(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="ed0327bd70000000000004"], 0x24}}, 0x0)

13:49:05 executing program 2:
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed00c6, &(0x7f00000021c0)={[{@inode_readahead_blks}, {@resgid}, {}, {@noload}, {@resuid}, {@usrjquota}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000006ac0)='cpuacct.stat\x00', 0x275a, 0x0)

13:49:05 executing program 0:
syz_mount_image$f2fs(&(0x7f0000000100), &(0x7f0000010600)='./file0\x00', 0x10, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x105fe, &(0x7f0000010640)="$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")
r0 = creat(&(0x7f0000000380)='./bus\x00', 0x0)
lseek(r0, 0x7ffffc, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[], 0xfd14)
creat(0x0, 0x0)
close(0xffffffffffffffff)
open(&(0x7f0000000040)='./bus\x00', 0x200, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)

13:49:05 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup(r5, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r7, &(0x7f0000000140), 0x12)

13:49:05 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@L2TP_ATTR_CONN_ID={0x8}]}, 0x1c}}, 0x0)

[ 1653.051645][T32727] loop2: detected capacity change from 0 to 512
[ 1653.222096][T32735] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1653.232816][T32735] CPU: 1 PID: 32735 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1653.242387][T32735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1653.252453][T32735] Call Trace:
[ 1653.255745][T32735]  <TASK>
[ 1653.258687][T32735]  dump_stack_lvl+0x136/0x150
[ 1653.263400][T32735]  dump_header+0x10a/0xd70
[ 1653.267837][T32735]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1653.273934][T32735]  out_of_memory+0xd6c/0x1650
[ 1653.278642][T32735]  ? oom_killer_disable+0x2b0/0x2b0
[ 1653.283857][T32735]  ? kernfs_notify+0x1ac/0x410
[ 1653.288641][T32735]  ? find_held_lock+0x2d/0x110
[ 1653.293434][T32735]  mem_cgroup_out_of_memory+0x206/0x270
[ 1653.299008][T32735]  ? mem_cgroup_margin+0x130/0x130
[ 1653.304157][T32735]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1653.309994][T32735]  memory_max_write+0x2f9/0x3c0
[ 1653.314872][T32735]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1653.320989][T32735]  ? cgroup_file_write+0x8e/0x7b0
[ 1653.326045][T32735]  cgroup_file_write+0x1e2/0x7b0
[ 1653.331092][T32735]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1653.337188][T32735]  ? kill_css+0x3b0/0x3b0
[ 1653.341534][T32735]  ? lock_acquire+0x32/0xc0
[ 1653.346083][T32735]  ? kill_css+0x3b0/0x3b0
[ 1653.350436][T32735]  kernfs_fop_write_iter+0x3f1/0x600
[ 1653.355750][T32735]  vfs_write+0xa1d/0xe40
[ 1653.360021][T32735]  ? kernel_write+0x670/0x670
[ 1653.364735][T32735]  ? __fdget_pos+0x7f/0x100
[ 1653.369265][T32735]  ksys_write+0x12b/0x250
[ 1653.373615][T32735]  ? __ia32_sys_read+0xb0/0xb0
[ 1653.378403][T32735]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1653.384338][T32735]  do_syscall_64+0x39/0xb0
[ 1653.388775][T32735]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1653.394689][T32735] RIP: 0033:0x7fab35c8c169
[ 1653.399118][T32735] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1653.418774][T32735] RSP: 002b:00007fab36a3d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1653.427211][T32735] RAX: ffffffffffffffda RBX: 00007fab35dac120 RCX: 00007fab35c8c169
[ 1653.435196][T32735] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1653.443179][T32735] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1653.451162][T32735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1653.459149][T32735] R13: 00007ffc740ae83f R14: 00007fab36a3d300 R15: 0000000000022000
[ 1653.467157][T32735]  </TASK>
[ 1653.472652][T32735] memory: usage 10372kB, limit 0kB, failcnt 191
[ 1653.478984][T32735] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1653.485909][T32735] Memory cgroup stats for /syz1:
[ 1653.486724][T32735] anon 0
[ 1653.494596][T32735] file 10125312
[ 1653.498124][T32735] kernel 294912
[ 1653.501649][T32735] kernel_stack 0
[ 1653.505429][T32735] pagetables 0
[ 1653.508905][T32735] sec_pagetables 0
[ 1653.512723][T32735] percpu 0
[ 1653.515814][T32735] sock 0
[ 1653.518746][T32735] vmalloc 0
[ 1653.521923][T32735] shmem 10125312
[ 1653.525534][T32735] zswap 0
[ 1653.528538][T32735] zswapped 0
[ 1653.531803][T32735] file_mapped 299008
[ 1653.535795][T32735] file_dirty 0
[ 1653.539236][T32735] file_writeback 0
[ 1653.543060][T32735] swapcached 0
[ 1653.547105][T32735] anon_thp 0
[ 1653.550366][T32735] file_thp 0
[ 1653.553660][T32735] shmem_thp 0
[ 1653.557011][T32735] inactive_anon 0
[ 1653.560712][T32735] active_anon 10125312
[ 1653.564870][T32735] inactive_file 0
[ 1653.568606][T32735] active_file 200704
[ 1653.572599][T32735] unevictable 0
[ 1653.576126][T32735] slab_reclaimable 263304
[ 1653.580525][T32735] slab_unreclaimable 28328
[ 1653.585030][T32735] slab 291632
[ 1653.588379][T32735] workingset_refault_anon 0
[ 1653.592973][T32735] workingset_refault_file 0
[ 1653.597553][T32735] workingset_activate_anon 0
[ 1653.602353][T32735] workingset_activate_file 0
[ 1653.607037][T32735] workingset_restore_anon 0
[ 1653.611597][T32735] workingset_restore_file 0
[ 1653.616193][T32735] workingset_nodereclaim 0
[ 1653.620710][T32735] pgscan 44904
[ 1653.624173][T32735] pgsteal 43
[ 1653.627436][T32735] pgscan_kswapd 0
[ 1653.631132][T32735] pgscan_direct 44904
[ 1653.635206][T32735] pgscan_khugepaged 0
[ 1653.639231][T32735] pgsteal_kswapd 0
[ 1653.643029][T32735] pgsteal_direct 43
[ 1653.646922][T32735] pgsteal_khugepaged 0
[ 1653.651055][T32735] pgfault 618605
[ 1653.654699][T32735] pgmajfault 6
[ 1653.658140][T32735] pgrefill 1296492
[ 1653.661925][T32735] pgactivate 44847
[ 1653.665737][T32735] pgdeactivate 0
[ 1653.669350][T32735] pglazyfree 0
[ 1653.672789][T32735] pglazyfreed 0
[ 1653.676313][T32735] zswpin 0
[ 1653.679382][T32735] zswpout 0
[ 1653.682583][T32735] thp_fault_alloc 0
[ 1653.686454][T32735] thp_collapse_alloc 0
[ 1653.690589][T32735] Out of memory and no killable processes...
[ 1653.818004][T32727] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[ 1654.171876][T32727] EXT4-fs error (device loop2): ext4_orphan_get:1416: comm syz-executor.2: bad orphan inode 15
[ 1654.271204][T32727] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[ 1654.388952][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/\x86\x5b.tmp-b7:2' failed: Read-only file system
[ 1654.419866][T32727] EXT4-fs error (device loop2): __ext4_new_inode:1069: comm syz-executor.2: reserved inode found cleared - inode=18
[ 1654.519768][ T5058] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1654.942760][T25866] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1654.971154][T25866] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1654.980460][T25866] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1654.996407][T25866] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1655.004549][T25866] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1655.011892][T25866] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1655.663942][T32749] chnl_net:caif_netlink_parms(): no params data found
[ 1655.912704][T32749] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1655.941480][T32749] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1655.964905][T32749] bridge_slave_0: entered allmulticast mode
[ 1656.013615][T32749] bridge_slave_0: entered promiscuous mode
[ 1656.046788][T32749] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1656.055707][T32749] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1656.064148][T32749] bridge_slave_1: entered allmulticast mode
[ 1656.074376][T32749] bridge_slave_1: entered promiscuous mode
[ 1656.150919][T32749] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1656.189984][T32749] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1656.323462][T32749] team0: Port device team_slave_0 added
[ 1656.355533][T32749] team0: Port device team_slave_1 added
[ 1656.455006][T32749] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1656.482288][T32749] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1656.522707][T32749] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1656.548704][T32749] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1656.561850][T32749] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1656.599685][T32749] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1656.710656][T32749] hsr_slave_0: entered promiscuous mode
[ 1656.733115][T32749] hsr_slave_1: entered promiscuous mode
[ 1656.741375][T32749] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1656.749853][T32749] Cannot create hsr debugfs directory
[ 1657.112535][T25866] Bluetooth: hci0: command 0x0409 tx timeout
[ 1657.982914][T32749] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1657.993882][T32749] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1658.004995][T32749] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1658.018091][T32749] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1658.132106][T32749] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1658.160174][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1658.176300][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1658.191547][T32749] 8021q: adding VLAN 0 to HW filter on device team0
[ 1658.211590][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1658.230222][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1658.240550][T31259] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1658.247723][T31259] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1658.282029][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1658.291734][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1658.308781][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1658.330259][ T5500] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1658.337435][ T5500] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1658.353041][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1658.386645][T25235] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1658.396736][T25235] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1658.407641][T25235] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1658.416864][T25235] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1658.426079][T25235] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1658.439920][T25235] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1658.450342][T25235] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1658.471064][T32749] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1658.501861][T32749] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1658.518963][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1658.528328][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1658.538738][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1658.732845][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1658.740407][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1658.754645][T32749] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1658.784066][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1658.794953][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1658.827483][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1658.838888][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1658.853550][T32749] veth0_vlan: entered promiscuous mode
[ 1658.873411][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1658.892764][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1658.925764][T32749] veth1_vlan: entered promiscuous mode
[ 1658.967454][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1658.978185][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1658.988749][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1658.999875][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1659.018958][T32749] veth0_macvtap: entered promiscuous mode
[ 1659.036535][T32749] veth1_macvtap: entered promiscuous mode
[ 1659.064791][T32749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1659.076766][T32749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1659.088370][T32749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1659.100160][T32749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1659.111954][T32749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1659.124016][T32749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1659.135247][T32749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1659.148550][T32749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1659.161581][T32749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1659.173622][T32749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1659.187239][T32749] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1659.198137][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1659.202869][T25866] Bluetooth: hci0: command 0x041b tx timeout
[ 1659.208836][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1659.221856][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1659.233214][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1659.247932][T32749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1659.260132][T32749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1659.280832][T32749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1659.303153][T32749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1659.314848][T32749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1659.325723][T32749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1659.336207][T32749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1659.346925][T32749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1659.359490][T32749] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1659.370369][T32749] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1659.382960][T32749] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1659.393855][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1659.404035][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1659.416655][T32749] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1659.430479][T32749] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1659.439781][T32749] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1659.449455][T32749] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1659.536920][ T7192] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1659.561091][ T7192] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1659.596027][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1659.615707][ T7192] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1659.624841][ T7192] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1659.651664][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
13:49:13 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{0x0}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:49:13 executing program 4:
openat$audio1(0xffffff9c, &(0x7f0000000000), 0x48043, 0x0)

13:49:13 executing program 5:
socketpair(0x15, 0x5, 0x18000000, &(0x7f0000000000))

13:49:13 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup(r5, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r7, &(0x7f0000000140), 0x12)

13:49:13 executing program 2:
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed00c6, &(0x7f00000021c0)={[{@inode_readahead_blks}, {@resgid}, {}, {@noload}, {@resuid}, {@usrjquota}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$eJzs3MtvG8UfAPDv2kn6/iW/8mxoIVAQEY+kSR/0wAUEEgeQkOBQxCkkaRXqNqgJEq0iCBzCEVXijjgi8RdwggsCTkhc4Y4qVSiXFk5Ga++mbmKnceLUJfv5SNvOeMea+e7u2LMz3gRQWEPpP0nE/oj4PSL669nbCwzV/7u5vDD59/LCZBLV6lt/JbVyN5YXJvOi+fsO1TPVapbf1aTepXcjJiqV6UtZfnT+wgejc5evPD9zYeLc9Lnpi+OnT584fqTv1PjJjsSZxnVj8OPZw4dee+fqG5Nnrr7387dpe/dn+xvj6JSh+tFt6qlOV9ZlBxrSSU8XG0JbyhGRnq7eWv/vj3LsWdnXH69+1tXGAduqWq1Wm30/ZxarwA6WRLdbAHRH/kWf3v/m210aetwTrr9UvwFK476ZbfU9PVHKyvSuur/tpKGIOLP4z1fpFts0DwEA0Oj7dPzzXLPxXykebCj3v2wNZSAi/h8RByPivoi4PyIeiKiVfSgiHm6z/tUrJGvHP6Vrmwpsg9Lx34vZ2tbt47989BcD5Sx3oBZ/b3J2pjJ9LDsmw9G7K82PrVPHD6/89kWrfY3jv3RL68/Hglk7rvWsmqCbmpif2ErMja5/GjHY0yz+JPJlnCRb0xvcZB0zz3xzuNW+O8e/jg6sM1W/jni6fv4XY1X8uaTl+uTYC6fGT47ujsr0sdH8qljrl1+X3mxV/5bi74D0/O9tev2vxD+Q7I6Yu3zlfG29dq79Opb++LzlPc1mr/++5O1aui977aOJ+flLYxF9yetrXx+/9d48n5dP4x8+2rz/H4xbR+KRiEgv4iMR8WhEPJa1/fGIeCIijq4T/08vP/l++/GvMyvfQWn8U3c6/9F4/ttPlM//+F378efS83+ilhrOXtnI599GG7iVYwcAAAD/FaXab+CT0shKulQaGYnYV5vb3VuqzM7NP3t29sOLU/Xfyg9Ebymf6epvmA8dy+aG8/z4qvzxbN74y/KeWn5kcrYy1e3goeD2tej/qT/L3W4dsO08rwXFpf9Dcen/UFz6PxSX/g/F1az/f9KFdgB3n+9/KC79H4pL/4fi0v+hkFo+G1/a0iP/Ejs+EaV7ohk7P9Gz4T9mscnErqa7uv3JBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0Bn/BgAA//83OOSV")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000006ac0)='cpuacct.stat\x00', 0x275a, 0x0)

13:49:13 executing program 0:
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000100)='l', 0x1}], 0x1, 0x0, 0xc}, 0x0)

13:49:13 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'bond_slave_1\x00', 0xbc32})

13:49:13 executing program 4:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000001c0))

13:49:13 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x3, 0x4, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xf00}, 0x48)

[ 1660.854771][  T380] loop2: detected capacity change from 0 to 512
[ 1661.071815][  T394] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1661.082502][  T394] CPU: 1 PID: 394 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1661.091902][  T394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1661.101980][  T394] Call Trace:
[ 1661.105268][  T394]  <TASK>
[ 1661.108209][  T394]  dump_stack_lvl+0x136/0x150
[ 1661.112915][  T394]  dump_header+0x10a/0xd70
[ 1661.117372][  T394]  oom_kill_process+0x25d/0x600
[ 1661.122242][  T394]  out_of_memory+0x35c/0x1650
[ 1661.126946][  T394]  ? oom_killer_disable+0x2b0/0x2b0
[ 1661.132166][  T394]  ? kernfs_notify+0x1ac/0x410
[ 1661.136950][  T394]  ? find_held_lock+0x2d/0x110
[ 1661.141748][  T394]  mem_cgroup_out_of_memory+0x206/0x270
[ 1661.147320][  T394]  ? mem_cgroup_margin+0x130/0x130
[ 1661.152468][  T394]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1661.158303][  T394]  memory_max_write+0x2f9/0x3c0
[ 1661.163173][  T394]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1661.169263][  T394]  ? lock_sync+0x190/0x190
[ 1661.173731][  T394]  cgroup_file_write+0x1e2/0x7b0
[ 1661.178696][  T394]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1661.184785][  T394]  ? kill_css+0x3b0/0x3b0
[ 1661.189138][  T394]  ? lock_acquire+0x32/0xc0
[ 1661.193676][  T394]  ? kill_css+0x3b0/0x3b0
[ 1661.198027][  T394]  kernfs_fop_write_iter+0x3f1/0x600
[ 1661.203338][  T394]  vfs_write+0xa1d/0xe40
[ 1661.207603][  T394]  ? kernel_write+0x670/0x670
[ 1661.212297][  T394]  ? receive_fd+0x110/0x110
[ 1661.216820][  T394]  ? __fget_files+0x26a/0x480
[ 1661.221530][  T394]  ksys_write+0x12b/0x250
[ 1661.225878][  T394]  ? __ia32_sys_read+0xb0/0xb0
[ 1661.230662][  T394]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1661.236588][  T394]  do_syscall_64+0x39/0xb0
[ 1661.241022][  T394]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1661.246938][  T394] RIP: 0033:0x7fab35c8c169
[ 1661.251368][  T394] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1661.270992][  T394] RSP: 002b:00007fab36a3d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1661.279422][  T394] RAX: ffffffffffffffda RBX: 00007fab35dac120 RCX: 00007fab35c8c169
[ 1661.287411][  T394] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1661.295397][  T394] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1661.303375][  T394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1661.311355][  T394] R13: 00007ffc740ae83f R14: 00007fab36a3d300 R15: 0000000000022000
[ 1661.319533][  T394]  </TASK>
[ 1661.322670][  T394] memory: usage 10844kB, limit 0kB, failcnt 191
[ 1661.328992][  T394] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1661.335938][  T394] Memory cgroup stats for /syz1:
[ 1661.336625][  T394] anon 102400
[ 1661.345046][  T394] file 10125312
[ 1661.348594][  T394] kernel 524288
[ 1661.352124][  T394] kernel_stack 65536
[ 1661.356092][  T394] pagetables 69632
[ 1661.359872][  T394] sec_pagetables 0
[ 1661.363684][  T394] percpu 64
[ 1661.366840][  T394] sock 0
[ 1661.369760][  T394] vmalloc 0
[ 1661.372976][  T394] shmem 10125312
[ 1661.376603][  T394] zswap 0
[ 1661.379614][  T394] zswapped 0
[ 1661.382901][  T394] file_mapped 299008
[ 1661.386860][  T394] file_dirty 0
[ 1661.390323][  T394] file_writeback 0
[ 1661.394130][  T394] swapcached 0
[ 1661.397566][  T394] anon_thp 0
[ 1661.400804][  T394] file_thp 0
[ 1661.404089][  T394] shmem_thp 0
[ 1661.407415][  T394] inactive_anon 0
[ 1661.411128][  T394] active_anon 10227712
[ 1661.415266][  T394] inactive_file 0
[ 1661.418959][  T394] active_file 200704
[ 1661.422940][  T394] unevictable 0
[ 1661.426468][  T394] slab_reclaimable 285344
[ 1661.430837][  T394] slab_unreclaimable 78280
[ 1661.435344][  T394] slab 363624
[ 1661.438690][  T394] workingset_refault_anon 0
[ 1661.443384][  T394] workingset_refault_file 0
[ 1661.447979][  T394] workingset_activate_anon 0
[ 1661.452655][  T394] workingset_activate_file 0
[ 1661.457319][  T394] workingset_restore_anon 0
[ 1661.461883][  T394] workingset_restore_file 0
[ 1661.466478][  T394] workingset_nodereclaim 0
[ 1661.470936][  T394] pgscan 46472
[ 1661.474398][  T394] pgsteal 43
[ 1661.477661][  T394] pgscan_kswapd 0
[ 1661.481362][  T394] pgscan_direct 46472
[ 1661.485431][  T394] pgscan_khugepaged 0
[ 1661.489485][  T394] pgsteal_kswapd 0
[ 1661.493293][  T394] pgsteal_direct 43
[ 1661.497176][  T394] pgsteal_khugepaged 0
[ 1661.501412][  T394] pgfault 620286
[ 1661.505048][  T394] pgmajfault 6
[ 1661.508482][  T394] pgrefill 1296492
[ 1661.512286][  T394] pgactivate 46415
[ 1661.516068][  T394] pgdeactivate 0
[ 1661.519675][  T394] pglazyfree 0
[ 1661.523136][  T394] pglazyfreed 0
[ 1661.526634][  T394] zswpin 0
[ 1661.529733][  T394] zswpout 0
[ 1661.532937][  T394] thp_fault_alloc 0
[ 1661.536816][  T394] thp_collapse_alloc 0
[ 1661.540951][  T394] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=32749,uid=0
[ 1661.556926][  T394] Memory cgroup out of memory: Killed process 32749 (syz-executor.1) total-vm:50576kB, anon-rss:368kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 1661.713219][T25866] Bluetooth: hci0: command 0x040f tx timeout
13:49:15 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup(r5, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r7, &(0x7f0000000140), 0x12)

13:49:15 executing program 5:
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x4a242100, &(0x7f0000000d80)='A', 0x1, 0x0, 0x0, &(0x7f0000003c80)="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")

13:49:15 executing program 4:
syz_clone(0x4a242100, &(0x7f0000000d80)='A', 0x1, 0x0, 0x0, &(0x7f0000003c80)="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")

[ 1662.006501][  T380] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[ 1662.090542][  T380] EXT4-fs error (device loop2): ext4_orphan_get:1416: comm syz-executor.2: bad orphan inode 15
[ 1662.174323][  T380] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[ 1662.350500][  T413] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1662.361751][  T413] CPU: 0 PID: 413 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1662.371149][  T413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1662.381209][  T413] Call Trace:
[ 1662.384507][  T413]  <TASK>
[ 1662.387446][  T413]  dump_stack_lvl+0x136/0x150
[ 1662.392172][  T413]  dump_header+0x10a/0xd70
[ 1662.396603][  T413]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1662.402691][  T413]  out_of_memory+0xd6c/0x1650
[ 1662.407390][  T413]  ? oom_killer_disable+0x2b0/0x2b0
[ 1662.412630][  T413]  ? kernfs_notify+0x1ac/0x410
[ 1662.417416][  T413]  ? find_held_lock+0x2d/0x110
[ 1662.422205][  T413]  mem_cgroup_out_of_memory+0x206/0x270
[ 1662.427778][  T413]  ? mem_cgroup_margin+0x130/0x130
[ 1662.432917][  T413]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1662.438751][  T413]  memory_max_write+0x2f9/0x3c0
[ 1662.443616][  T413]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1662.449699][  T413]  ? lock_sync+0x190/0x190
[ 1662.454141][  T413]  cgroup_file_write+0x1e2/0x7b0
[ 1662.459100][  T413]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1662.465203][  T413]  ? kill_css+0x3b0/0x3b0
[ 1662.469549][  T413]  ? lock_acquire+0x32/0xc0
[ 1662.474082][  T413]  ? kill_css+0x3b0/0x3b0
[ 1662.478437][  T413]  kernfs_fop_write_iter+0x3f1/0x600
[ 1662.483743][  T413]  vfs_write+0xa1d/0xe40
[ 1662.488006][  T413]  ? kernel_write+0x670/0x670
[ 1662.492702][  T413]  ? receive_fd+0x110/0x110
[ 1662.497224][  T413]  ? __fget_files+0x26a/0x480
[ 1662.501930][  T413]  ksys_write+0x12b/0x250
[ 1662.506275][  T413]  ? __ia32_sys_read+0xb0/0xb0
[ 1662.511059][  T413]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1662.516986][  T413]  do_syscall_64+0x39/0xb0
[ 1662.521436][  T413]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1662.527348][  T413] RIP: 0033:0x7fab35c8c169
[ 1662.531773][  T413] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1662.551410][  T413] RSP: 002b:00007fab36a3d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1662.559833][  T413] RAX: ffffffffffffffda RBX: 00007fab35dac120 RCX: 00007fab35c8c169
[ 1662.567820][  T413] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1662.575798][  T413] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1662.583794][  T413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1662.591772][  T413] R13: 00007ffc740ae83f R14: 00007fab36a3d300 R15: 0000000000022000
[ 1662.599767][  T413]  </TASK>
[ 1662.620136][  T413] memory: usage 10432kB, limit 0kB, failcnt 191
[ 1662.626447][  T413] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1662.633317][  T413] Memory cgroup stats for /syz1:
[ 1662.633574][  T413] anon 0
[ 1662.644501][  T413] file 10125312
[ 1662.648345][  T413] kernel 356352
[ 1662.652222][  T413] kernel_stack 32768
[ 1662.656495][  T413] pagetables 0
[ 1662.660215][  T413] sec_pagetables 0
[ 1662.664425][  T413] percpu 0
[ 1662.667963][  T413] sock 0
[ 1662.671140][  T413] vmalloc 0
[ 1662.674581][  T413] shmem 10125312
[ 1662.678488][  T413] zswap 0
[ 1662.681718][  T413] zswapped 0
[ 1662.685260][  T413] file_mapped 299008
[ 1662.689548][  T413] file_dirty 0
[ 1662.693281][  T413] file_writeback 0
[ 1662.697359][  T413] swapcached 0
[ 1662.701060][  T413] anon_thp 0
[ 1662.704627][  T413] file_thp 0
[ 1662.708157][  T413] shmem_thp 0
[ 1662.711769][  T413] inactive_anon 0
[ 1662.715780][  T413] active_anon 10125312
[ 1662.720243][  T413] inactive_file 0
[ 1662.724279][  T413] active_file 200704
[ 1662.728552][  T413] unevictable 0
[ 1662.732366][  T413] slab_reclaimable 269776
[ 1662.737125][  T413] slab_unreclaimable 46280
[ 1662.741949][  T413] slab 316056
[ 1662.745613][  T413] workingset_refault_anon 0
[ 1662.750563][  T413] workingset_refault_file 0
[ 1662.755556][  T413] workingset_activate_anon 0
[ 1662.760606][  T413] workingset_activate_file 0
[ 1662.765732][  T413] workingset_restore_anon 0
[ 1662.770699][  T413] workingset_restore_file 0
[ 1662.775667][  T413] workingset_nodereclaim 0
[ 1662.780513][  T413] pgscan 48040
[ 1662.784249][  T413] pgsteal 43
[ 1662.787752][  T413] pgscan_kswapd 0
[ 1662.791744][  T413] pgscan_direct 48040
[ 1662.796141][  T413] pgscan_khugepaged 0
[ 1662.800586][  T413] pgsteal_kswapd 0
[ 1662.804713][  T413] pgsteal_direct 43
[ 1662.808911][  T413] pgsteal_khugepaged 0
[ 1662.813408][  T413] pgfault 620286
[ 1662.817310][  T413] pgmajfault 6
[ 1662.821028][  T413] pgrefill 1296492
[ 1662.825179][  T413] pgactivate 47983
[ 1662.829283][  T413] pgdeactivate 0
[ 1662.833216][  T413] pglazyfree 0
[ 1662.836948][  T413] pglazyfreed 0
[ 1662.840751][  T413] zswpin 0
[ 1662.844106][  T413] zswpout 0
[ 1662.847568][  T413] thp_fault_alloc 0
[ 1662.851757][  T413] thp_collapse_alloc 0
[ 1662.856233][  T413] Out of memory and no killable processes...
[ 1662.893645][  T380] EXT4-fs error (device loop2): __ext4_new_inode:1069: comm syz-executor.2: reserved inode found cleared - inode=18
[ 1663.218360][T27653] udevd[27653]: symlink '../../loop2' '/dev/disk/by-label/\x86\x5b.tmp-b7:2' failed: Read-only file system
[ 1663.271509][ T5058] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
13:49:19 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:49:19 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000001240)=ANY=[@ANYBLOB="61129a00000000006113500000000000bf200000000000000700000080ffffff3d0301000000000095000000000000006926000000000000bf670000000000005606000032ff07006706000020000000150600000ee60000bf250000000000003d350000000000006507f3ff01000000070700004c0000001f75000000000000bf540000000000000704000004f3f8ffac53010000008000a40400000000000005000000000000009500000000e90000db13d5d8b741f2cdaabc8383c8f56b8c0500a800ef1856bb9b904e70c347de8f426bad033728760857289ad166cbb434587529df2a24c02257c8dd2dc925cb0ff850d3fbd1f09a88ae8d7467086ef331d137046c358611f1b1bde5cdfba964241caebec538abc8b62f1f6960a39d8f78c83ea754d010824414093b826bd6705a407072b2baeb007e555c43222c9732bc52c68194c46cf933587fb1c31bd28e883fe541bb611e259e89a91407b80002be8082bb7c7bf296f25886ec7018d182b3adc538320246ed12730eb983ab57054232ae9c1e88609f1c1863fc4312432c941d5ac14702d5eab1a71508e64cbe338fdfb6572f28fd18b283c1"], &(0x7f0000000100)='GPL\x00'}, 0x48)

13:49:19 executing program 4:
syz_clone(0x4a242100, &(0x7f0000000d80)='A', 0x1, 0x0, 0x0, &(0x7f0000003c80)="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")

13:49:19 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000001240)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)

13:49:19 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup(r5, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r7, &(0x7f0000000140), 0x12)

13:49:19 executing program 2:
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000001800)={0x0, 0x0, 0x0, 0x0}, 0x38)

13:49:19 executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x9, 0x16, &(0x7f0000001240)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)

13:49:19 executing program 0:
syz_clone(0xe0320000, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0)

13:49:19 executing program 5:
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
syz_clone(0xe0320000, 0x0, 0x0, 0x0, &(0x7f0000000300), &(0x7f0000000340)="65bd60c80b036c5269218e5cb6b88b05ff3aff661b1cae3d7d362e8d99f7bb22e719b5df041c8f3f187fceeda517d620e7b6a6ae9bddf5b5fc66abe422634038ee978c")

[ 1666.255891][  T442] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1666.266240][  T442] CPU: 1 PID: 442 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1666.275642][  T442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1666.285730][  T442] Call Trace:
[ 1666.289035][  T442]  <TASK>
[ 1666.291980][  T442]  dump_stack_lvl+0x136/0x150
[ 1666.296689][  T442]  dump_header+0x10a/0xd70
[ 1666.301131][  T442]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1666.307234][  T442]  out_of_memory+0xd6c/0x1650
[ 1666.311942][  T442]  ? oom_killer_disable+0x2b0/0x2b0
[ 1666.317162][  T442]  ? kernfs_notify+0x1ac/0x410
[ 1666.321946][  T442]  ? find_held_lock+0x2d/0x110
[ 1666.326739][  T442]  mem_cgroup_out_of_memory+0x206/0x270
[ 1666.332319][  T442]  ? mem_cgroup_margin+0x130/0x130
[ 1666.337483][  T442]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1666.343314][  T442]  memory_max_write+0x2f9/0x3c0
[ 1666.348181][  T442]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1666.354269][  T442]  ? lock_sync+0x190/0x190
[ 1666.358725][  T442]  cgroup_file_write+0x1e2/0x7b0
[ 1666.363690][  T442]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1666.369779][  T442]  ? kill_css+0x3b0/0x3b0
[ 1666.374127][  T442]  ? lock_acquire+0x32/0xc0
[ 1666.378664][  T442]  ? kill_css+0x3b0/0x3b0
[ 1666.383012][  T442]  kernfs_fop_write_iter+0x3f1/0x600
[ 1666.388320][  T442]  vfs_write+0xa1d/0xe40
[ 1666.392584][  T442]  ? kernel_write+0x670/0x670
[ 1666.397277][  T442]  ? receive_fd+0x110/0x110
[ 1666.401808][  T442]  ? __fget_files+0x26a/0x480
[ 1666.406518][  T442]  ksys_write+0x12b/0x250
[ 1666.410874][  T442]  ? __ia32_sys_read+0xb0/0xb0
[ 1666.415659][  T442]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1666.421588][  T442]  do_syscall_64+0x39/0xb0
[ 1666.426026][  T442]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1666.431943][  T442] RIP: 0033:0x7fab35c8c169
[ 1666.436372][  T442] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1666.455994][  T442] RSP: 002b:00007fab36a3d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1666.464442][  T442] RAX: ffffffffffffffda RBX: 00007fab35dac120 RCX: 00007fab35c8c169
[ 1666.472426][  T442] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1666.480412][  T442] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1666.488393][  T442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1666.496386][  T442] R13: 00007ffc740ae83f R14: 00007fab36a3d300 R15: 0000000000022000
[ 1666.504403][  T442]  </TASK>
[ 1666.507601][  T442] memory: usage 10376kB, limit 0kB, failcnt 191
[ 1666.513953][  T442] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1666.520883][  T442] Memory cgroup stats for /syz1:
[ 1666.521667][  T442] anon 0
[ 1666.529557][  T442] file 10125312
[ 1666.533088][  T442] kernel 299008
[ 1666.536612][  T442] kernel_stack 0
[ 1666.540206][  T442] pagetables 0
[ 1666.543673][  T442] sec_pagetables 0
[ 1666.547460][  T442] percpu 0
[ 1666.550557][  T442] sock 0
[ 1666.553502][  T442] vmalloc 0
[ 1666.556680][  T442] shmem 10125312
[ 1666.560294][  T442] zswap 0
[ 1666.563445][  T442] zswapped 0
[ 1666.566758][  T442] file_mapped 299008
[ 1666.570723][  T442] file_dirty 0
[ 1666.574204][  T442] file_writeback 0
[ 1666.578597][  T442] swapcached 0
[ 1666.582037][  T442] anon_thp 0
[ 1666.585332][  T442] file_thp 0
[ 1666.588595][  T442] shmem_thp 0
[ 1666.591926][  T442] inactive_anon 0
[ 1666.595652][  T442] active_anon 10125312
[ 1666.599783][  T442] inactive_file 0
[ 1666.603506][  T442] active_file 200704
[ 1666.607462][  T442] unevictable 0
[ 1666.610994][  T442] slab_reclaimable 265872
[ 1666.615413][  T442] slab_unreclaimable 28328
[ 1666.619893][  T442] slab 294200
[ 1666.623270][  T442] workingset_refault_anon 0
[ 1666.627817][  T442] workingset_refault_file 0
[ 1666.632587][  T442] workingset_activate_anon 0
[ 1666.637239][  T442] workingset_activate_file 0
[ 1666.641893][  T442] workingset_restore_anon 0
[ 1666.646498][  T442] workingset_restore_file 0
[ 1666.651080][  T442] workingset_nodereclaim 0
[ 1666.655563][  T442] pgscan 49608
[ 1666.659002][  T442] pgsteal 43
[ 1666.662434][  T442] pgscan_kswapd 0
[ 1666.666179][  T442] pgscan_direct 49608
[ 1666.670226][  T442] pgscan_khugepaged 0
[ 1666.674655][  T442] pgsteal_kswapd 0
[ 1666.678417][  T442] pgsteal_direct 43
[ 1666.682326][  T442] pgsteal_khugepaged 0
[ 1666.686468][  T442] pgfault 620286
[ 1666.690096][  T442] pgmajfault 6
[ 1666.693560][  T442] pgrefill 1296492
[ 1666.697345][  T442] pgactivate 49551
[ 1666.701135][  T442] pgdeactivate 0
[ 1666.704806][  T442] pglazyfree 0
[ 1666.708284][  T442] pglazyfreed 0
[ 1666.711811][  T442] zswpin 0
[ 1666.714919][  T442] zswpout 0
[ 1666.718138][  T442] thp_fault_alloc 0
[ 1666.722030][  T442] thp_collapse_alloc 0
[ 1666.726209][  T442] Out of memory and no killable processes...
[ 1666.990916][T14067] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
13:49:20 executing program 2:
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
open(&(0x7f00000059c0)='./file0/file0\x00', 0x3, 0x0)

13:49:20 executing program 4:
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f0000005f00)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x21}}, 0x50)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000007f40)="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", 0x2000, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78}, 0x0, 0x0, 0x0, 0x0, 0x0})
statx(0xffffffffffffff9c, &(0x7f00000008c0)='./file0\x00', 0x0, 0x0, 0x0)

13:49:20 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup(r5, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r7, &(0x7f0000000140), 0x12)

13:49:20 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1667.447754][T14067] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
13:49:20 executing program 4:
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f0000005f00)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x21}}, 0x50)
newfstatat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000007f40)="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", 0x2000, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78}, 0x0, 0x0, 0x0, 0x0, 0x0})
statx(0xffffffffffffff9c, &(0x7f00000008c0)='./file0\x00', 0x0, 0x0, 0x0)

[ 1667.619102][  T456] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1667.629501][  T456] CPU: 1 PID: 456 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1667.638917][  T456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1667.648998][  T456] Call Trace:
[ 1667.652289][  T456]  <TASK>
[ 1667.655231][  T456]  dump_stack_lvl+0x136/0x150
[ 1667.659949][  T456]  dump_header+0x10a/0xd70
[ 1667.664385][  T456]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1667.670482][  T456]  out_of_memory+0xd6c/0x1650
[ 1667.675190][  T456]  ? oom_killer_disable+0x2b0/0x2b0
[ 1667.680414][  T456]  ? kernfs_notify+0x1ac/0x410
[ 1667.685193][  T456]  ? find_held_lock+0x2d/0x110
[ 1667.689987][  T456]  mem_cgroup_out_of_memory+0x206/0x270
[ 1667.695563][  T456]  ? mem_cgroup_margin+0x130/0x130
[ 1667.700711][  T456]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1667.706542][  T456]  memory_max_write+0x2f9/0x3c0
[ 1667.711413][  T456]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1667.717501][  T456]  ? lock_sync+0x190/0x190
[ 1667.721947][  T456]  cgroup_file_write+0x1e2/0x7b0
[ 1667.726915][  T456]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1667.733000][  T456]  ? kill_css+0x3b0/0x3b0
[ 1667.737351][  T456]  ? lock_acquire+0x32/0xc0
[ 1667.741891][  T456]  ? kill_css+0x3b0/0x3b0
[ 1667.746248][  T456]  kernfs_fop_write_iter+0x3f1/0x600
[ 1667.751556][  T456]  vfs_write+0xa1d/0xe40
[ 1667.755827][  T456]  ? kernel_write+0x670/0x670
[ 1667.760522][  T456]  ? receive_fd+0x110/0x110
[ 1667.765070][  T456]  ? __fget_files+0x26a/0x480
[ 1667.769783][  T456]  ksys_write+0x12b/0x250
[ 1667.774130][  T456]  ? __ia32_sys_read+0xb0/0xb0
[ 1667.778912][  T456]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1667.784840][  T456]  do_syscall_64+0x39/0xb0
[ 1667.789279][  T456]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1667.795336][  T456] RIP: 0033:0x7fab35c8c169
[ 1667.799776][  T456] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1667.819407][  T456] RSP: 002b:00007fab36a5e168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1667.827842][  T456] RAX: ffffffffffffffda RBX: 00007fab35dac050 RCX: 00007fab35c8c169
[ 1667.835834][  T456] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1667.843818][  T456] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1667.851804][  T456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1667.859813][  T456] R13: 00007ffc740ae83f R14: 00007fab36a5e300 R15: 0000000000022000
[ 1667.867817][  T456]  </TASK>
[ 1667.872921][  T456] memory: usage 10372kB, limit 0kB, failcnt 191
[ 1667.879211][  T456] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1667.886351][  T456] Memory cgroup stats for /syz1:
[ 1667.886588][  T456] anon 0
[ 1667.894439][  T456] file 10125312
[ 1667.897921][  T456] kernel 294912
[ 1667.901397][  T456] kernel_stack 0
[ 1667.905006][  T456] pagetables 0
[ 1667.908399][  T456] sec_pagetables 0
[ 1667.912176][  T456] percpu 0
[ 1667.915232][  T456] sock 0
[ 1667.918101][  T456] vmalloc 0
[ 1667.921231][  T456] shmem 10125312
[ 1667.924832][  T456] zswap 0
[ 1667.927791][  T456] zswapped 0
[ 1667.931008][  T456] file_mapped 299008
[ 1667.934959][  T456] file_dirty 0
[ 1667.938350][  T456] file_writeback 0
[ 1667.942089][  T456] swapcached 0
[ 1667.945523][  T456] anon_thp 0
[ 1667.948782][  T456] file_thp 0
[ 1667.952019][  T456] shmem_thp 0
[ 1667.955377][  T456] inactive_anon 0
[ 1667.959035][  T456] active_anon 10125312
[ 1667.963173][  T456] inactive_file 0
[ 1667.966838][  T456] active_file 200704
[ 1667.970751][  T456] unevictable 0
[ 1667.974295][  T456] slab_reclaimable 263304
[ 1667.978644][  T456] slab_unreclaimable 28328
[ 1667.983140][  T456] slab 291632
[ 1667.986456][  T456] workingset_refault_anon 0
[ 1667.991016][  T456] workingset_refault_file 0
[ 1667.995590][  T456] workingset_activate_anon 0
[ 1668.000211][  T456] workingset_activate_file 0
[ 1668.004885][  T456] workingset_restore_anon 0
[ 1668.009415][  T456] workingset_restore_file 0
[ 1668.013992][  T456] workingset_nodereclaim 0
[ 1668.018431][  T456] pgscan 51176
[ 1668.021822][  T456] pgsteal 43
[ 1668.025097][  T456] pgscan_kswapd 0
[ 1668.028750][  T456] pgscan_direct 51176
[ 1668.033075][  T456] pgscan_khugepaged 0
[ 1668.037079][  T456] pgsteal_kswapd 0
[ 1668.040818][  T456] pgsteal_direct 43
[ 1668.044703][  T456] pgsteal_khugepaged 0
[ 1668.048790][  T456] pgfault 620286
[ 1668.052405][  T456] pgmajfault 6
[ 1668.055796][  T456] pgrefill 1296492
[ 1668.059534][  T456] pgactivate 51119
[ 1668.063338][  T456] pgdeactivate 0
[ 1668.066908][  T456] pglazyfree 0
[ 1668.070296][  T456] pglazyfreed 0
[ 1668.073887][  T456] zswpin 0
[ 1668.076932][  T456] zswpout 0
[ 1668.080072][  T456] thp_fault_alloc 0
[ 1668.083964][  T456] thp_collapse_alloc 0
[ 1668.088052][  T456] Out of memory and no killable processes...
[ 1668.101415][T14067] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
13:49:21 executing program 2:
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000640)='cgroup.procs\x00', 0x2, 0x0)
writev(r2, &(0x7f0000000380)=[{&(0x7f0000000700)='0', 0x1}], 0x1)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000480)=0x7)
getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, 0x0, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000f80), 0x2110012, &(0x7f000001c780)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@access_any}], [{@fowner_eq}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@context={'context', 0x3d, 'staff_u'}}, {@fsmagic={'fsmagic', 0x3d, 0x400}}]}})
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})

13:49:21 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
socket(0x0, 0x0, 0x0)
sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@window={0x3, 0xfff, 0x5}, @sack_perm, @window={0x3, 0x7}, @sack_perm, @mss={0x2, 0x202}, @timestamp], 0x6)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x0, 0x6)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0xc7)

[ 1668.368075][T14067] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
13:49:21 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup(r4, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r6 = openat$cgroup_int(r5, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r6, &(0x7f0000000140), 0x12)

[ 1668.662499][  T471] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1668.673555][  T471] CPU: 1 PID: 471 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1668.682993][  T471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1668.693078][  T471] Call Trace:
[ 1668.696379][  T471]  <TASK>
[ 1668.699339][  T471]  dump_stack_lvl+0x136/0x150
[ 1668.704072][  T471]  dump_header+0x10a/0xd70
[ 1668.708535][  T471]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1668.714649][  T471]  out_of_memory+0xd6c/0x1650
[ 1668.719378][  T471]  ? oom_killer_disable+0x2b0/0x2b0
[ 1668.724622][  T471]  ? kernfs_notify+0x1ac/0x410
[ 1668.729426][  T471]  ? find_held_lock+0x2d/0x110
[ 1668.734241][  T471]  mem_cgroup_out_of_memory+0x206/0x270
[ 1668.739838][  T471]  ? mem_cgroup_margin+0x130/0x130
[ 1668.745005][  T471]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1668.750858][  T471]  memory_max_write+0x2f9/0x3c0
[ 1668.755762][  T471]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1668.761885][  T471]  ? lock_sync+0x190/0x190
[ 1668.766362][  T471]  cgroup_file_write+0x1e2/0x7b0
[ 1668.771347][  T471]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1668.777464][  T471]  ? kill_css+0x3b0/0x3b0
[ 1668.781838][  T471]  ? lock_acquire+0x32/0xc0
[ 1668.786399][  T471]  ? kill_css+0x3b0/0x3b0
[ 1668.790773][  T471]  kernfs_fop_write_iter+0x3f1/0x600
[ 1668.796107][  T471]  vfs_write+0xa1d/0xe40
[ 1668.800404][  T471]  ? kernel_write+0x670/0x670
[ 1668.805117][  T471]  ? receive_fd+0x110/0x110
[ 1668.809665][  T471]  ? __fget_files+0x26a/0x480
[ 1668.814394][  T471]  ksys_write+0x12b/0x250
[ 1668.818774][  T471]  ? __ia32_sys_read+0xb0/0xb0
[ 1668.823612][  T471]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1668.829567][  T471]  do_syscall_64+0x39/0xb0
[ 1668.834030][  T471]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1668.839965][  T471] RIP: 0033:0x7fab35c8c169
[ 1668.844409][  T471] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1668.864058][  T471] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1668.872516][  T471] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1668.880525][  T471] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1668.888533][  T471] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1668.896543][  T471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1668.904554][  T471] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1668.912619][  T471]  </TASK>
[ 1668.917586][  T471] memory: usage 10372kB, limit 0kB, failcnt 191
[ 1668.925882][  T471] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1668.932825][  T471] Memory cgroup stats for /syz1:
[ 1668.933059][  T471] anon 0
[ 1668.940874][  T471] file 10125312
[ 1668.944408][  T471] kernel 294912
[ 1668.947896][  T471] kernel_stack 0
[ 1668.951506][  T471] pagetables 0
[ 1668.954946][  T471] sec_pagetables 0
[ 1668.954985][ T1216] ieee802154 phy0 wpan0: encryption failed: -22
[ 1668.958662][  T471] percpu 0
[ 1668.958675][  T471] sock 0
[ 1668.958685][  T471] vmalloc 0
[ 1668.958695][  T471] shmem 10125312
[ 1668.958706][  T471] zswap 0
[ 1668.958717][  T471] zswapped 0
[ 1668.958729][  T471] file_mapped 299008
[ 1668.958740][  T471] file_dirty 0
[ 1668.958752][  T471] file_writeback 0
[ 1668.958763][  T471] swapcached 0
[ 1668.958774][  T471] anon_thp 0
[ 1668.958785][  T471] file_thp 0
[ 1668.958796][  T471] shmem_thp 0
[ 1668.958807][  T471] inactive_anon 0
[ 1668.958819][  T471] active_anon 10125312
[ 1668.958830][  T471] inactive_file 0
[ 1668.958842][  T471] active_file 200704
[ 1668.958854][  T471] unevictable 0
[ 1668.958865][  T471] slab_reclaimable 263304
[ 1668.958877][  T471] slab_unreclaimable 28328
[ 1668.958890][  T471] slab 291632
[ 1668.958901][  T471] workingset_refault_anon 0
[ 1668.958913][  T471] workingset_refault_file 0
[ 1668.958925][  T471] workingset_activate_anon 0
[ 1668.958938][  T471] workingset_activate_file 0
[ 1668.958950][  T471] workingset_restore_anon 0
[ 1668.958963][  T471] workingset_restore_file 0
[ 1668.958975][  T471] workingset_nodereclaim 0
[ 1668.958988][  T471] pgscan 52744
[ 1668.958999][  T471] pgsteal 43
[ 1668.959010][  T471] pgscan_kswapd 0
[ 1668.959021][  T471] pgscan_direct 52744
[ 1668.959033][  T471] pgscan_khugepaged 0
[ 1668.959045][  T471] pgsteal_kswapd 0
[ 1668.968654][ T1216] ieee802154 phy1 wpan1: encryption failed: -22
[ 1668.971182][  T471] pgsteal_direct 43
[ 1668.971196][  T471] pgsteal_khugepaged 0
[ 1668.971207][  T471] pgfault 620286
[ 1668.971218][  T471] pgmajfault 6
[ 1668.971229][  T471] pgrefill 1296492
[ 1668.971241][  T471] pgactivate 52687
[ 1668.971253][  T471] pgdeactivate 0
[ 1668.971264][  T471] pglazyfree 0
[ 1668.971275][  T471] pglazyfreed 0
[ 1668.971287][  T471] zswpin 0
[ 1668.971302][  T471] zswpout 0
[ 1668.971313][  T471] thp_fault_alloc 0
[ 1668.971325][  T471] thp_collapse_alloc 0
[ 1668.971338][  T471] Out of memory and no killable processes...
13:49:22 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f0000000140), 0x12)

13:49:22 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x34, r1, 0x901, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r3}, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x994}]]}, 0x34}}, 0x0)

[ 1669.450315][  T473] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1669.460733][  T473] CPU: 1 PID: 473 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1669.470144][  T473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1669.480225][  T473] Call Trace:
[ 1669.483522][  T473]  <TASK>
[ 1669.486466][  T473]  dump_stack_lvl+0x136/0x150
[ 1669.491176][  T473]  dump_header+0x10a/0xd70
[ 1669.495611][  T473]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1669.501704][  T473]  out_of_memory+0xd6c/0x1650
[ 1669.506412][  T473]  ? oom_killer_disable+0x2b0/0x2b0
[ 1669.511627][  T473]  ? kernfs_notify+0x1ac/0x410
[ 1669.516407][  T473]  ? find_held_lock+0x2d/0x110
[ 1669.521199][  T473]  mem_cgroup_out_of_memory+0x206/0x270
[ 1669.526781][  T473]  ? mem_cgroup_margin+0x130/0x130
[ 1669.531947][  T473]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1669.537779][  T473]  memory_max_write+0x2f9/0x3c0
[ 1669.542650][  T473]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1669.548741][  T473]  ? lock_sync+0x190/0x190
[ 1669.553190][  T473]  cgroup_file_write+0x1e2/0x7b0
[ 1669.558157][  T473]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1669.564246][  T473]  ? kill_css+0x3b0/0x3b0
[ 1669.568601][  T473]  ? lock_acquire+0x32/0xc0
[ 1669.573141][  T473]  ? kill_css+0x3b0/0x3b0
[ 1669.577491][  T473]  kernfs_fop_write_iter+0x3f1/0x600
[ 1669.582799][  T473]  vfs_write+0xa1d/0xe40
[ 1669.587069][  T473]  ? kernel_write+0x670/0x670
[ 1669.591762][  T473]  ? receive_fd+0x110/0x110
[ 1669.596290][  T473]  ? __fget_files+0x26a/0x480
[ 1669.600999][  T473]  ksys_write+0x12b/0x250
[ 1669.605350][  T473]  ? __ia32_sys_read+0xb0/0xb0
[ 1669.610135][  T473]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1669.616066][  T473]  do_syscall_64+0x39/0xb0
[ 1669.620504][  T473]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1669.626421][  T473] RIP: 0033:0x7fab35c8c169
[ 1669.630867][  T473] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1669.650494][  T473] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1669.658933][  T473] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1669.666917][  T473] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 000000000000000a
[ 1669.674900][  T473] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1669.682884][  T473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1669.690864][  T473] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1669.698869][  T473]  </TASK>
[ 1669.704170][  T473] memory: usage 10372kB, limit 0kB, failcnt 191
[ 1669.710456][  T473] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1669.717843][  T473] Memory cgroup stats for /syz1:
[ 1669.718080][  T473] anon 0
[ 1669.725942][  T473] file 10125312
[ 1669.729425][  T473] kernel 294912
[ 1669.732947][  T473] kernel_stack 0
[ 1669.736540][  T473] pagetables 0
[ 1669.739936][  T473] sec_pagetables 0
[ 1669.743720][  T473] percpu 0
[ 1669.746773][  T473] sock 0
[ 1669.749644][  T473] vmalloc 0
[ 1669.752895][  T473] shmem 10125312
[ 1669.756460][  T473] zswap 0
[ 1669.759413][  T473] zswapped 0
[ 1669.762658][  T473] file_mapped 299008
[ 1669.766575][  T473] file_dirty 0
[ 1669.769965][  T473] file_writeback 0
[ 1669.773771][  T473] swapcached 0
[ 1669.777184][  T473] anon_thp 0
[ 1669.780407][  T473] file_thp 0
[ 1669.783657][  T473] shmem_thp 0
[ 1669.786967][  T473] inactive_anon 0
[ 1669.790621][  T473] active_anon 10125312
[ 1669.794749][  T473] inactive_file 0
[ 1669.798405][  T473] active_file 200704
[ 1669.802350][  T473] unevictable 0
[ 1669.805828][  T473] slab_reclaimable 263304
[ 1669.810185][  T473] slab_unreclaimable 28328
[ 1669.814674][  T473] slab 291632
[ 1669.817985][  T473] workingset_refault_anon 0
[ 1669.822593][  T473] workingset_refault_file 0
[ 1669.827119][  T473] workingset_activate_anon 0
[ 1669.831731][  T473] workingset_activate_file 0
[ 1669.836400][  T473] workingset_restore_anon 0
[ 1669.840926][  T473] workingset_restore_file 0
[ 1669.845503][  T473] workingset_nodereclaim 0
[ 1669.849941][  T473] pgscan 54312
[ 1669.853412][  T473] pgsteal 43
[ 1669.856652][  T473] pgscan_kswapd 0
[ 1669.860339][  T473] pgscan_direct 54312
[ 1669.864417][  T473] pgscan_khugepaged 0
[ 1669.868418][  T473] pgsteal_kswapd 0
[ 1669.872229][  T473] pgsteal_direct 43
[ 1669.876056][  T473] pgsteal_khugepaged 0
[ 1669.880145][  T473] pgfault 620286
[ 1669.883777][  T473] pgmajfault 6
[ 1669.887178][  T473] pgrefill 1296492
[ 1669.890931][  T473] pgactivate 54255
[ 1669.894733][  T473] pgdeactivate 0
[ 1669.898304][  T473] pglazyfree 0
[ 1669.901698][  T473] pglazyfreed 0
[ 1669.905234][  T473] zswpin 0
[ 1669.908285][  T473] zswpout 0
[ 1669.911418][  T473] thp_fault_alloc 0
[ 1669.915306][  T473] thp_collapse_alloc 0
[ 1669.919397][  T473] Out of memory and no killable processes...
[ 1671.261877][T14067] hsr_slave_0: left promiscuous mode
[ 1671.292562][T14067] hsr_slave_1: left promiscuous mode
[ 1671.303016][T14067] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1671.311205][T14067] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1671.353416][T14067] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1671.361687][T14067] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1671.409249][T14067] bridge_slave_1: left allmulticast mode
[ 1671.415623][T14067] bridge_slave_1: left promiscuous mode
[ 1671.421927][T14067] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1671.460589][T14067] bridge_slave_0: left allmulticast mode
[ 1671.482379][T14067] bridge_slave_0: left promiscuous mode
[ 1671.488765][T14067] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1671.530570][T14067] veth1_macvtap: left promiscuous mode
[ 1671.537817][T14067] veth0_macvtap: left promiscuous mode
[ 1671.579466][T14067] veth1_vlan: left promiscuous mode
[ 1671.584942][T14067] veth0_vlan: left promiscuous mode
[ 1672.340728][T14067] team0 (unregistering): Port device team_slave_1 removed
[ 1672.433193][T14067] team0 (unregistering): Port device team_slave_0 removed
[ 1672.545219][T14067] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1672.583767][T16241] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1672.599185][T16241] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1672.607969][T16241] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1672.616489][T16241] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1672.634992][T16241] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1672.645973][T16241] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1672.658043][T14067] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1672.774191][T14067] bond0 (unregistering): Released all slaves
13:49:26 executing program 0:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/tcp6\x00')
write$UHID_GET_REPORT_REPLY(r0, 0x0, 0x0)

13:49:26 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001780)='oom_adj\x00')
epoll_pwait2(r0, &(0x7f0000001800)=[{}], 0x1, 0x0, 0x0, 0x0)

13:49:26 executing program 4:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
getsockopt$sock_timeval(r0, 0x1, 0x2a, 0x0, &(0x7f00000000c0))

13:49:26 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup(r3, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r5 = openat$cgroup_int(r4, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f0000000140), 0x12)

13:49:26 executing program 2:
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x2}, 0x20)

[ 1673.241753][  T506] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1673.252379][  T506] CPU: 1 PID: 506 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1673.261792][  T506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1673.271884][  T506] Call Trace:
[ 1673.275192][  T506]  <TASK>
[ 1673.278151][  T506]  dump_stack_lvl+0x136/0x150
[ 1673.282878][  T506]  dump_header+0x10a/0xd70
[ 1673.287335][  T506]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1673.293459][  T506]  out_of_memory+0xd6c/0x1650
[ 1673.298187][  T506]  ? oom_killer_disable+0x2b0/0x2b0
[ 1673.303430][  T506]  ? kernfs_notify+0x1ac/0x410
[ 1673.308235][  T506]  ? find_held_lock+0x2d/0x110
[ 1673.313053][  T506]  mem_cgroup_out_of_memory+0x206/0x270
[ 1673.318654][  T506]  ? mem_cgroup_margin+0x130/0x130
[ 1673.323829][  T506]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1673.329689][  T506]  memory_max_write+0x2f9/0x3c0
[ 1673.334590][  T506]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1673.340789][  T506]  ? lock_sync+0x190/0x190
[ 1673.345270][  T506]  cgroup_file_write+0x1e2/0x7b0
[ 1673.350253][  T506]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1673.356379][  T506]  ? kill_css+0x3b0/0x3b0
[ 1673.360751][  T506]  ? lock_acquire+0x32/0xc0
[ 1673.365310][  T506]  ? kill_css+0x3b0/0x3b0
[ 1673.369714][  T506]  kernfs_fop_write_iter+0x3f1/0x600
[ 1673.375048][  T506]  vfs_write+0xa1d/0xe40
[ 1673.379337][  T506]  ? kernel_write+0x670/0x670
[ 1673.384053][  T506]  ? receive_fd+0x110/0x110
[ 1673.388600][  T506]  ? __fget_files+0x26a/0x480
[ 1673.393346][  T506]  ksys_write+0x12b/0x250
[ 1673.397718][  T506]  ? __ia32_sys_read+0xb0/0xb0
[ 1673.402524][  T506]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1673.408475][  T506]  do_syscall_64+0x39/0xb0
[ 1673.412937][  T506]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1673.418875][  T506] RIP: 0033:0x7fab35c8c169
[ 1673.423316][  T506] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1673.443308][  T506] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1673.451761][  T506] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1673.459766][  T506] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1673.467771][  T506] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1673.475778][  T506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1673.483781][  T506] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1673.491804][  T506]  </TASK>
[ 1673.494930][  T506] memory: usage 10372kB, limit 0kB, failcnt 191
[ 1673.501212][  T506] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1673.508142][  T506] Memory cgroup stats for /syz1:
[ 1673.508382][  T506] anon 0
[ 1673.516239][  T506] file 10125312
[ 1673.519719][  T506] kernel 294912
[ 1673.523250][  T506] kernel_stack 0
[ 1673.526827][  T506] pagetables 0
[ 1673.530227][  T506] sec_pagetables 0
[ 1673.534030][  T506] percpu 0
[ 1673.537086][  T506] sock 0
[ 1673.539959][  T506] vmalloc 0
[ 1673.543144][  T506] shmem 10125312
[ 1673.546711][  T506] zswap 0
[ 1673.549666][  T506] zswapped 0
[ 1673.552944][  T506] file_mapped 299008
[ 1673.556866][  T506] file_dirty 0
[ 1673.560252][  T506] file_writeback 0
[ 1673.564049][  T506] swapcached 0
[ 1673.567444][  T506] anon_thp 0
[ 1673.570662][  T506] file_thp 0
[ 1673.573934][  T506] shmem_thp 0
[ 1673.577248][  T506] inactive_anon 0
[ 1673.580898][  T506] active_anon 10125312
[ 1673.585033][  T506] inactive_file 0
[ 1673.588693][  T506] active_file 200704
[ 1673.592651][  T506] unevictable 0
[ 1673.596128][  T506] slab_reclaimable 263304
[ 1673.600473][  T506] slab_unreclaimable 28328
[ 1673.604973][  T506] slab 291632
[ 1673.608274][  T506] workingset_refault_anon 0
[ 1673.611747][  T491] chnl_net:caif_netlink_parms(): no params data found
[ 1673.612847][  T506] workingset_refault_file 0
[ 1673.612863][  T506] workingset_activate_anon 0
[ 1673.612875][  T506] workingset_activate_file 0
[ 1673.612888][  T506] workingset_restore_anon 0
[ 1673.612900][  T506] workingset_restore_file 0
[ 1673.612912][  T506] workingset_nodereclaim 0
[ 1673.612925][  T506] pgscan 55880
[ 1673.612936][  T506] pgsteal 43
[ 1673.612952][  T506] pgscan_kswapd 0
[ 1673.612964][  T506] pgscan_direct 55880
[ 1673.612975][  T506] pgscan_khugepaged 0
[ 1673.612987][  T506] pgsteal_kswapd 0
[ 1673.612996][  T506] pgsteal_direct 43
[ 1673.613007][  T506] pgsteal_khugepaged 0
[ 1673.613017][  T506] pgfault 620286
[ 1673.613029][  T506] pgmajfault 6
[ 1673.613039][  T506] pgrefill 1296492
[ 1673.613050][  T506] pgactivate 55823
[ 1673.613060][  T506] pgdeactivate 0
[ 1673.613071][  T506] pglazyfree 0
[ 1673.613082][  T506] pglazyfreed 0
[ 1673.613092][  T506] zswpin 0
[ 1673.613102][  T506] zswpout 0
[ 1673.613113][  T506] thp_fault_alloc 0
[ 1673.613125][  T506] thp_collapse_alloc 0
[ 1673.715809][  T506] Out of memory and no killable processes...
[ 1673.986314][  T491] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1673.994474][  T491] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1674.001770][  T491] bridge_slave_0: entered allmulticast mode
[ 1674.009353][  T491] bridge_slave_0: entered promiscuous mode
[ 1674.017805][  T491] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1674.042604][  T491] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1674.049917][  T491] bridge_slave_1: entered allmulticast mode
[ 1674.059239][  T491] bridge_slave_1: entered promiscuous mode
[ 1674.268687][  T491] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1674.316822][  T491] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1674.435630][  T491] team0: Port device team_slave_0 added
[ 1674.464795][  T491] team0: Port device team_slave_1 added
[ 1674.541059][  T491] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1674.558136][  T491] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1674.591618][  T491] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1674.616630][  T491] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1674.631017][  T491] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1674.706132][  T491] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1674.712466][T25866] Bluetooth: hci0: command 0x0409 tx timeout
[ 1674.909603][  T491] hsr_slave_0: entered promiscuous mode
[ 1674.949260][  T491] hsr_slave_1: entered promiscuous mode
[ 1674.980006][  T491] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1674.999533][  T491] Cannot create hsr debugfs directory
[ 1676.615309][  T491] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1676.638565][  T491] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1676.667543][  T491] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1676.690075][  T491] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1676.792497][T25866] Bluetooth: hci0: command 0x041b tx timeout
[ 1676.874128][  T491] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1676.894369][T25481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1676.904579][T25481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1676.919912][  T491] 8021q: adding VLAN 0 to HW filter on device team0
[ 1676.947378][T25481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1676.958928][T25481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1676.971512][T25481] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1676.979307][T25481] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1677.003989][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1677.013433][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1677.023736][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1677.043648][T31218] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1677.051439][T31218] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1677.070772][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1677.108801][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1677.120260][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1677.131668][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1677.143662][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1677.154144][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1677.177678][  T491] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1677.191230][  T491] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1677.208731][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1677.219269][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1677.229919][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1677.240283][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1677.250397][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1677.270458][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1677.569800][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1677.578153][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1677.588419][  T491] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1677.613308][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1677.623194][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1677.650227][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1677.686552][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1677.699527][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1677.711674][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1677.730749][  T491] veth0_vlan: entered promiscuous mode
[ 1677.748669][  T491] veth1_vlan: entered promiscuous mode
[ 1677.797574][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1677.811565][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1677.827959][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1677.841797][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1677.861053][  T491] veth0_macvtap: entered promiscuous mode
[ 1677.886406][  T491] veth1_macvtap: entered promiscuous mode
[ 1677.911503][  T491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1677.931262][  T491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1677.941802][  T491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1677.953179][  T491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1677.963624][  T491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1677.975298][  T491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1677.995767][  T491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1678.014152][  T491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1678.029934][  T491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1678.041882][  T491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1678.061187][  T491] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1678.072310][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1678.080693][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1678.090698][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1678.100099][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1678.113032][  T491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1678.127016][  T491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1678.137714][  T491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1678.148743][  T491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1678.159082][  T491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1678.170253][  T491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1678.180634][  T491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1678.192876][  T491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1678.205462][  T491] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1678.227104][  T491] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1678.251095][  T491] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1678.273505][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1678.288599][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1678.315524][  T491] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1678.326044][  T491] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1678.346229][  T491] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1678.360741][  T491] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1678.491164][T14050] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1678.512353][T14050] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1678.539688][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1678.556893][T32391] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1678.571687][T32391] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1678.593064][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1678.872331][T16241] Bluetooth: hci0: command 0x040f tx timeout
13:49:32 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:49:32 executing program 2:
r0 = gettid()
ptrace$getregset(0x4204, r0, 0x0, 0x0)

13:49:32 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000300)={'gre0\x00', &(0x7f0000000540)={'tunl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @multicast2}}}})

13:49:32 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001780)='oom_adj\x00')
epoll_pwait2(r0, &(0x7f0000001800)=[{}], 0x1, 0x0, 0x0, 0x0)

13:49:32 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000140), 0x12)

13:49:32 executing program 4:
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x0, 0xa0000}, 0x20)

[ 1679.805317][  T627] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1679.815586][  T627] CPU: 1 PID: 627 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1679.824999][  T627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1679.835093][  T627] Call Trace:
[ 1679.838392][  T627]  <TASK>
[ 1679.841350][  T627]  dump_stack_lvl+0x136/0x150
[ 1679.846076][  T627]  dump_header+0x10a/0xd70
[ 1679.850536][  T627]  oom_kill_process+0x25d/0x600
[ 1679.855426][  T627]  out_of_memory+0x35c/0x1650
[ 1679.860153][  T627]  ? _raw_spin_unlock_irqrestore+0x41/0x70
[ 1679.866004][  T627]  ? oom_killer_disable+0x2b0/0x2b0
[ 1679.871247][  T627]  ? find_held_lock+0x2d/0x110
[ 1679.876055][  T627]  mem_cgroup_out_of_memory+0x206/0x270
[ 1679.881647][  T627]  ? mem_cgroup_margin+0x130/0x130
[ 1679.886812][  T627]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1679.892653][  T627]  memory_max_write+0x2f9/0x3c0
[ 1679.897538][  T627]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1679.903631][  T627]  ? lock_sync+0x190/0x190
[ 1679.908099][  T627]  cgroup_file_write+0x1e2/0x7b0
[ 1679.913080][  T627]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1679.919178][  T627]  ? kill_css+0x3b0/0x3b0
[ 1679.923532][  T627]  ? lock_acquire+0x32/0xc0
[ 1679.928086][  T627]  ? kill_css+0x3b0/0x3b0
[ 1679.932474][  T627]  kernfs_fop_write_iter+0x3f1/0x600
[ 1679.937828][  T627]  vfs_write+0xa1d/0xe40
[ 1679.942107][  T627]  ? kernel_write+0x670/0x670
[ 1679.946804][  T627]  ? receive_fd+0x110/0x110
[ 1679.951344][  T627]  ? __fget_files+0x26a/0x480
[ 1679.956153][  T627]  ksys_write+0x12b/0x250
[ 1679.960512][  T627]  ? __ia32_sys_read+0xb0/0xb0
[ 1679.965317][  T627]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1679.971288][  T627]  do_syscall_64+0x39/0xb0
[ 1679.975733][  T627]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1679.981651][  T627] RIP: 0033:0x7fab35c8c169
[ 1679.986081][  T627] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1680.005703][  T627] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1680.014134][  T627] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1680.022120][  T627] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1680.030104][  T627] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1680.038104][  T627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1680.046085][  T627] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1680.054092][  T627]  </TASK>
[ 1680.057251][  T627] memory: usage 10632kB, limit 0kB, failcnt 198
[ 1680.063587][  T627] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1680.070463][  T627] Memory cgroup stats for /syz1:
[ 1680.070727][  T627] anon 65536
[ 1680.078939][  T627] file 10125312
[ 1680.082452][  T627] kernel 475136
[ 1680.085931][  T627] kernel_stack 32768
[ 1680.089846][  T627] pagetables 61440
[ 1680.093656][  T627] sec_pagetables 0
[ 1680.097397][  T627] percpu 64
[ 1680.100536][  T627] sock 0
[ 1680.103441][  T627] vmalloc 0
[ 1680.106573][  T627] shmem 10125312
[ 1680.110162][  T627] zswap 0
[ 1680.113159][  T627] zswapped 0
[ 1680.116375][  T627] file_mapped 299008
[ 1680.120284][  T627] file_dirty 0
[ 1680.123709][  T627] file_writeback 0
[ 1680.127487][  T627] swapcached 0
[ 1680.130882][  T627] anon_thp 0
[ 1680.134143][  T627] file_thp 0
[ 1680.137361][  T627] shmem_thp 0
[ 1680.140667][  T627] inactive_anon 65536
[ 1680.144705][  T627] active_anon 10125312
[ 1680.148790][  T627] inactive_file 0
[ 1680.152473][  T627] active_file 0
[ 1680.155960][  T627] unevictable 0
[ 1680.159432][  T627] slab_reclaimable 285816
[ 1680.163822][  T627] slab_unreclaimable 73008
[ 1680.168250][  T627] slab 358824
[ 1680.171555][  T627] workingset_refault_anon 0
[ 1680.176113][  T627] workingset_refault_file 0
[ 1680.180636][  T627] workingset_activate_anon 0
[ 1680.185289][  T627] workingset_activate_file 0
[ 1680.189916][  T627] workingset_restore_anon 0
[ 1680.194574][  T627] workingset_restore_file 0
[ 1680.199097][  T627] workingset_nodereclaim 0
[ 1680.203566][  T627] pgscan 57987
[ 1680.206956][  T627] pgsteal 43
[ 1680.210174][  T627] pgscan_kswapd 0
[ 1680.213864][  T627] pgscan_direct 57987
[ 1680.217866][  T627] pgscan_khugepaged 0
[ 1680.221866][  T627] pgsteal_kswapd 0
[ 1680.225641][  T627] pgsteal_direct 43
[ 1680.229467][  T627] pgsteal_khugepaged 0
[ 1680.233600][  T627] pgfault 621555
[ 1680.237176][  T627] pgmajfault 6
[ 1680.240568][  T627] pgrefill 1296492
[ 1680.244344][  T627] pgactivate 57916
[ 1680.248083][  T627] pgdeactivate 0
[ 1680.251647][  T627] pglazyfree 0
[ 1680.255087][  T627] pglazyfreed 0
[ 1680.258567][  T627] zswpin 0
[ 1680.261607][  T627] zswpout 0
[ 1680.264778][  T627] thp_fault_alloc 0
[ 1680.268604][  T627] thp_collapse_alloc 0
[ 1680.272729][  T627] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=491,uid=0
[ 1680.288177][  T627] Memory cgroup out of memory: Killed process 491 (syz-executor.1) total-vm:50576kB, anon-rss:368kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 1680.530713][  T627] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1680.540984][  T627] CPU: 1 PID: 627 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1680.550396][  T627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1680.560485][  T627] Call Trace:
[ 1680.563792][  T627]  <TASK>
[ 1680.566735][  T627]  dump_stack_lvl+0x136/0x150
[ 1680.571442][  T627]  dump_header+0x10a/0xd70
[ 1680.575889][  T627]  oom_kill_process+0x25d/0x600
[ 1680.580761][  T627]  out_of_memory+0x35c/0x1650
[ 1680.585465][  T627]  ? oom_killer_disable+0x2b0/0x2b0
[ 1680.590692][  T627]  ? find_held_lock+0x2d/0x110
[ 1680.595490][  T627]  mem_cgroup_out_of_memory+0x206/0x270
[ 1680.601069][  T627]  ? mem_cgroup_margin+0x130/0x130
[ 1680.606207][  T627]  ? cgroup_file_notify+0x26/0x1b0
[ 1680.611351][  T627]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1680.617184][  T627]  memory_max_write+0x2f9/0x3c0
[ 1680.622077][  T627]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1680.628165][  T627]  ? lock_sync+0x190/0x190
[ 1680.632615][  T627]  cgroup_file_write+0x1e2/0x7b0
[ 1680.637577][  T627]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1680.643665][  T627]  ? kill_css+0x3b0/0x3b0
[ 1680.648015][  T627]  ? lock_acquire+0x32/0xc0
[ 1680.652553][  T627]  ? kill_css+0x3b0/0x3b0
[ 1680.656902][  T627]  kernfs_fop_write_iter+0x3f1/0x600
[ 1680.662217][  T627]  vfs_write+0xa1d/0xe40
[ 1680.666483][  T627]  ? kernel_write+0x670/0x670
[ 1680.671198][  T627]  ? receive_fd+0x110/0x110
[ 1680.675723][  T627]  ? __fget_files+0x26a/0x480
[ 1680.680448][  T627]  ksys_write+0x12b/0x250
[ 1680.684805][  T627]  ? __ia32_sys_read+0xb0/0xb0
[ 1680.689591][  T627]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1680.695521][  T627]  do_syscall_64+0x39/0xb0
[ 1680.699961][  T627]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1680.705876][  T627] RIP: 0033:0x7fab35c8c169
[ 1680.710304][  T627] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1680.729930][  T627] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1680.738359][  T627] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1680.746342][  T627] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1680.754324][  T627] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1680.762324][  T627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1680.770304][  T627] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1680.778306][  T627]  </TASK>
[ 1680.781432][  T627] memory: usage 10604kB, limit 0kB, failcnt 224
[ 1680.787742][  T627] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1680.794651][  T627] Memory cgroup stats for /syz1:
[ 1680.794879][  T627] anon 49152
[ 1680.803076][  T627] file 10125312
[ 1680.806558][  T627] kernel 462848
[ 1680.810043][  T627] kernel_stack 32768
[ 1680.813995][  T627] pagetables 53248
[ 1680.817736][  T627] sec_pagetables 0
[ 1680.821470][  T627] percpu 64
[ 1680.824639][  T627] sock 0
[ 1680.827514][  T627] vmalloc 0
[ 1680.830656][  T627] shmem 10125312
[ 1680.834252][  T627] zswap 0
[ 1680.837215][  T627] zswapped 0
[ 1680.840437][  T627] file_mapped 299008
[ 1680.844398][  T627] file_dirty 0
[ 1680.847789][  T627] file_writeback 0
[ 1680.851526][  T627] swapcached 0
[ 1680.854959][  T627] anon_thp 0
[ 1680.858177][  T627] file_thp 0
[ 1680.861405][  T627] shmem_thp 0
[ 1680.864750][  T627] inactive_anon 49152
[ 1680.868751][  T627] active_anon 10125312
[ 1680.872870][  T627] inactive_file 0
[ 1680.876525][  T627] active_file 0
[ 1680.880002][  T627] unevictable 0
[ 1680.883610][  T627] slab_reclaimable 285816
[ 1680.887957][  T627] slab_unreclaimable 73008
[ 1680.892446][  T627] slab 358824
[ 1680.895853][  T627] workingset_refault_anon 0
[ 1680.900367][  T627] workingset_refault_file 0
[ 1680.904926][  T627] workingset_activate_anon 0
[ 1680.909657][  T627] workingset_activate_file 0
[ 1680.914358][  T627] workingset_restore_anon 0
[ 1680.918887][  T627] workingset_restore_file 0
[ 1680.923487][  T627] workingset_nodereclaim 0
[ 1680.927960][  T627] pgscan 60437
13:49:33 executing program 4:
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f00000027c0))

13:49:33 executing program 2:
openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
fchmod(0xffffffffffffffff, 0xc1)

[ 1680.931356][  T627] pgsteal 43
[ 1680.934622][  T627] pgscan_kswapd 0
[ 1680.938276][  T627] pgscan_direct 60437
[ 1680.942318][  T627] pgscan_khugepaged 0
[ 1680.946321][  T627] pgsteal_kswapd 0
[ 1680.950063][  T627] pgsteal_direct 43
[ 1680.953941][  T627] pgsteal_khugepaged 0
[ 1680.958029][  T627] pgfault 621555
[ 1680.961595][  T627] pgmajfault 6
[ 1680.965029][  T627] pgrefill 1296492
[ 1680.968772][  T627] pgactivate 60380
[ 1680.972556][  T627] pgdeactivate 0
[ 1680.976211][  T627] pglazyfree 0
13:49:34 executing program 2:
syz_open_dev$usbfs(0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1680.979606][  T627] pglazyfreed 0
[ 1680.983132][  T627] zswpin 0
[ 1680.986179][  T627] zswpout 0
[ 1680.989314][  T627] thp_fault_alloc 0
[ 1680.993181][  T627] thp_collapse_alloc 0
[ 1680.997272][  T627] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=623,uid=0
[ 1681.012685][  T627] Memory cgroup out of memory: OOM victim 623 (syz-executor.1) is already exiting. Skip killing the task
[ 1681.023985][  T627] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1681.034255][  T627] CPU: 1 PID: 627 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1681.043663][  T627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1681.053754][  T627] Call Trace:
[ 1681.057064][  T627]  <TASK>
[ 1681.060020][  T627]  dump_stack_lvl+0x136/0x150
[ 1681.064750][  T627]  dump_header+0x10a/0xd70
[ 1681.069218][  T627]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1681.075339][  T627]  out_of_memory+0xd6c/0x1650
[ 1681.080074][  T627]  ? oom_killer_disable+0x2b0/0x2b0
[ 1681.085314][  T627]  ? kernfs_notify+0x1ac/0x410
[ 1681.090118][  T627]  ? find_held_lock+0x2d/0x110
[ 1681.094933][  T627]  mem_cgroup_out_of_memory+0x206/0x270
[ 1681.100535][  T627]  ? mem_cgroup_margin+0x130/0x130
[ 1681.105705][  T627]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1681.111561][  T627]  memory_max_write+0x2f9/0x3c0
[ 1681.116457][  T627]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1681.122569][  T627]  ? lock_sync+0x190/0x190
[ 1681.127042][  T627]  cgroup_file_write+0x1e2/0x7b0
[ 1681.132021][  T627]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1681.138219][  T627]  ? kill_css+0x3b0/0x3b0
[ 1681.142578][  T627]  ? lock_acquire+0x32/0xc0
[ 1681.147123][  T627]  ? kill_css+0x3b0/0x3b0
[ 1681.151472][  T627]  kernfs_fop_write_iter+0x3f1/0x600
[ 1681.156780][  T627]  vfs_write+0xa1d/0xe40
[ 1681.161054][  T627]  ? kernel_write+0x670/0x670
[ 1681.165745][  T627]  ? receive_fd+0x110/0x110
[ 1681.170270][  T627]  ? __fget_files+0x26a/0x480
[ 1681.174982][  T627]  ksys_write+0x12b/0x250
[ 1681.179335][  T627]  ? __ia32_sys_read+0xb0/0xb0
[ 1681.184119][  T627]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1681.190053][  T627]  do_syscall_64+0x39/0xb0
[ 1681.194489][  T627]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1681.200402][  T627] RIP: 0033:0x7fab35c8c169
[ 1681.204831][  T627] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1681.224454][  T627] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1681.232882][  T627] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1681.240862][  T627] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1681.248872][  T627] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1681.256943][  T627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1681.264928][  T627] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1681.272944][  T627]  </TASK>
[ 1681.276104][  T627] memory: usage 10472kB, limit 0kB, failcnt 227
[ 1681.282413][  T627] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1681.289874][  T627] Memory cgroup stats for /syz1:
[ 1681.290099][  T627] anon 0
[ 1681.297967][  T627] file 10125312
[ 1681.301448][  T627] kernel 376832
[ 1681.304962][  T627] kernel_stack 32768
[ 1681.308875][  T627] pagetables 0
[ 1681.312325][  T627] sec_pagetables 0
[ 1681.316062][  T627] percpu 0
[ 1681.319108][  T627] sock 0
[ 1681.321972][  T627] vmalloc 0
[ 1681.325148][  T627] shmem 10125312
[ 1681.328709][  T627] zswap 0
[ 1681.331664][  T627] zswapped 0
[ 1681.334918][  T627] file_mapped 299008
[ 1681.338837][  T627] file_dirty 0
[ 1681.342260][  T627] file_writeback 0
[ 1681.345997][  T627] swapcached 0
[ 1681.349391][  T627] anon_thp 0
[ 1681.352656][  T627] file_thp 0
[ 1681.355880][  T627] shmem_thp 0
[ 1681.359195][  T627] inactive_anon 10125312
[ 1681.363520][  T627] active_anon 0
[ 1681.367004][  T627] inactive_file 0
[ 1681.370686][  T627] active_file 200704
[ 1681.374664][  T627] unevictable 0
[ 1681.378179][  T627] slab_reclaimable 285816
[ 1681.382588][  T627] slab_unreclaimable 51120
[ 1681.387029][  T627] slab 336936
[ 1681.390330][  T627] workingset_refault_anon 0
[ 1681.394896][  T627] workingset_refault_file 0
[ 1681.399416][  T627] workingset_activate_anon 0
[ 1681.404059][  T627] workingset_activate_file 0
[ 1681.408664][  T627] workingset_restore_anon 0
[ 1681.413222][  T627] workingset_restore_file 0
[ 1681.417743][  T627] workingset_nodereclaim 0
[ 1681.422205][  T627] pgscan 60780
[ 1681.425590][  T627] pgsteal 43
[ 1681.428808][  T627] pgscan_kswapd 0
[ 1681.432492][  T627] pgscan_direct 60780
[ 1681.436490][  T627] pgscan_khugepaged 0
[ 1681.440491][  T627] pgsteal_kswapd 0
[ 1681.444273][  T627] pgsteal_direct 43
[ 1681.448095][  T627] pgsteal_khugepaged 0
[ 1681.452207][  T627] pgfault 621556
[ 1681.455774][  T627] pgmajfault 6
[ 1681.459165][  T627] pgrefill 1296492
[ 1681.462950][  T627] pgactivate 60723
[ 1681.466688][  T627] pgdeactivate 0
[ 1681.470251][  T627] pglazyfree 0
[ 1681.473680][  T627] pglazyfreed 0
[ 1681.477157][  T627] zswpin 0
[ 1681.480194][  T627] zswpout 0
13:49:34 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000580)={0x1c, r1, 0x7cb66ece63743003, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)

[ 1681.483355][  T627] thp_fault_alloc 0
[ 1681.487181][  T627] thp_collapse_alloc 0
[ 1681.491263][  T627] Out of memory and no killable processes...
13:49:34 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000140), 0x12)

13:49:34 executing program 0:
r0 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$inet_mreqn(r0, 0x0, 0x20, 0x0, &(0x7f00000001c0))

[ 1681.798090][  T652] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1681.810788][  T652] CPU: 0 PID: 652 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1681.820218][  T652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1681.830307][  T652] Call Trace:
[ 1681.833620][  T652]  <TASK>
[ 1681.836573][  T652]  dump_stack_lvl+0x136/0x150
[ 1681.841299][  T652]  dump_header+0x10a/0xd70
[ 1681.845757][  T652]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1681.851879][  T652]  out_of_memory+0xd6c/0x1650
[ 1681.856609][  T652]  ? oom_killer_disable+0x2b0/0x2b0
[ 1681.861856][  T652]  ? mark_held_locks+0x9f/0xe0
[ 1681.866671][  T652]  mem_cgroup_out_of_memory+0x206/0x270
[ 1681.872260][  T652]  ? mem_cgroup_margin+0x130/0x130
[ 1681.877412][  T652]  ? _raw_spin_unlock_irqrestore+0x3c/0x70
[ 1681.883245][  T652]  memory_max_write+0x2f9/0x3c0
[ 1681.888115][  T652]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1681.894201][  T652]  ? lock_sync+0x190/0x190
[ 1681.898646][  T652]  cgroup_file_write+0x1e2/0x7b0
[ 1681.903605][  T652]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1681.909685][  T652]  ? kill_css+0x3b0/0x3b0
[ 1681.914030][  T652]  ? lock_acquire+0x32/0xc0
[ 1681.918561][  T652]  ? kill_css+0x3b0/0x3b0
[ 1681.922913][  T652]  kernfs_fop_write_iter+0x3f1/0x600
[ 1681.928217][  T652]  vfs_write+0xa1d/0xe40
[ 1681.932478][  T652]  ? kernel_write+0x670/0x670
[ 1681.937191][  T652]  ? receive_fd+0x110/0x110
[ 1681.941723][  T652]  ? __fget_files+0x26a/0x480
[ 1681.946464][  T652]  ksys_write+0x12b/0x250
[ 1681.950829][  T652]  ? __ia32_sys_read+0xb0/0xb0
[ 1681.955619][  T652]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1681.961550][  T652]  do_syscall_64+0x39/0xb0
[ 1681.965986][  T652]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1681.971897][  T652] RIP: 0033:0x7fab35c8c169
[ 1681.976322][  T652] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1681.995956][  T652] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1682.004398][  T652] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1682.012471][  T652] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1682.020454][  T652] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1682.028435][  T652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1682.036415][  T652] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1682.044413][  T652]  </TASK>
[ 1682.067271][  T652] memory: usage 10428kB, limit 0kB, failcnt 227
[ 1682.073569][  T652] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1682.080446][  T652] Memory cgroup stats for /syz1:
[ 1682.080690][  T652] anon 0
[ 1682.092424][  T652] file 10125312
[ 1682.096270][  T652] kernel 352256
[ 1682.100019][  T652] kernel_stack 32768
[ 1682.104334][  T652] pagetables 0
[ 1682.108055][  T652] sec_pagetables 0
[ 1682.112206][  T652] percpu 0
[ 1682.115554][  T652] sock 0
[ 1682.118694][  T652] vmalloc 0
[ 1682.122217][  T652] shmem 10125312
[ 1682.126100][  T652] zswap 0
[ 1682.129350][  T652] zswapped 0
[ 1682.132896][  T652] file_mapped 299008
[ 1682.137488][  T652] file_dirty 0
[ 1682.141184][  T652] file_writeback 0
[ 1682.145302][  T652] swapcached 0
[ 1682.149025][  T652] anon_thp 0
[ 1682.152574][  T652] file_thp 0
[ 1682.156112][  T652] shmem_thp 0
[ 1682.159717][  T652] inactive_anon 10125312
[ 1682.164382][  T652] active_anon 0
[ 1682.168189][  T652] inactive_file 0
[ 1682.172238][  T652] active_file 200704
[ 1682.176447][  T652] unevictable 0
[ 1682.180272][  T652] slab_reclaimable 267560
[ 1682.185062][  T652] slab_unreclaimable 46280
[ 1682.189932][  T652] slab 313840
[ 1682.193575][  T652] workingset_refault_anon 0
[ 1682.198493][  T652] workingset_refault_file 0
[ 1682.203489][  T652] workingset_activate_anon 0
[ 1682.208523][  T652] workingset_activate_file 0
[ 1682.213529][  T652] workingset_restore_anon 0
[ 1682.218444][  T652] workingset_restore_file 0
[ 1682.223404][  T652] workingset_nodereclaim 0
[ 1682.228249][  T652] pgscan 62348
[ 1682.231950][  T652] pgsteal 43
[ 1682.235528][  T652] pgscan_kswapd 0
[ 1682.239516][  T652] pgscan_direct 62348
[ 1682.243881][  T652] pgscan_khugepaged 0
[ 1682.248263][  T652] pgsteal_kswapd 0
[ 1682.252381][  T652] pgsteal_direct 43
[ 1682.256522][  T652] pgsteal_khugepaged 0
[ 1682.261011][  T652] pgfault 621556
[ 1682.264943][  T652] pgmajfault 6
[ 1682.268635][  T652] pgrefill 1296492
[ 1682.272754][  T652] pgactivate 62291
[ 1682.276840][  T652] pgdeactivate 0
[ 1682.280752][  T652] pglazyfree 0
[ 1682.284494][  T652] pglazyfreed 0
[ 1682.288295][  T652] zswpin 0
[ 1682.291595][  T652] zswpout 0
[ 1682.295056][  T652] thp_fault_alloc 0
[ 1682.299244][  T652] thp_collapse_alloc 0
[ 1682.303746][  T652] Out of memory and no killable processes...
13:49:37 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf", 0x84}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:49:37 executing program 4:
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000080)={0x10000a}, 0x20)

13:49:37 executing program 2:
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001880)={0x77359400}, 0x0, 0x0)

13:49:37 executing program 0:
syz_io_uring_setup(0x6b7c, &(0x7f0000000000), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x541b, &(0x7f0000000180), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240))

13:49:37 executing program 5:
r0 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$MRT(r0, 0x0, 0x14, 0x0, &(0x7f0000000e80))

13:49:37 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000140), 0x12)

[ 1684.641337][  T674] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1684.651947][  T674] CPU: 1 PID: 674 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1684.661362][  T674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1684.671452][  T674] Call Trace:
[ 1684.674761][  T674]  <TASK>
[ 1684.677733][  T674]  dump_stack_lvl+0x136/0x150
[ 1684.682462][  T674]  dump_header+0x10a/0xd70
13:49:37 executing program 0:
syz_io_uring_setup(0x6b7c, &(0x7f0000000000), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x541b, &(0x7f0000000180), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240))

[ 1684.686932][  T674]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1684.693050][  T674]  out_of_memory+0xd6c/0x1650
[ 1684.697824][  T674]  ? oom_killer_disable+0x2b0/0x2b0
[ 1684.703151][  T674]  ? kernfs_notify+0x1ac/0x410
[ 1684.707949][  T674]  ? find_held_lock+0x2d/0x110
[ 1684.712757][  T674]  mem_cgroup_out_of_memory+0x206/0x270
[ 1684.718361][  T674]  ? mem_cgroup_margin+0x130/0x130
[ 1684.723535][  T674]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1684.729389][  T674]  memory_max_write+0x2f9/0x3c0
[ 1684.734287][  T674]  ? mem_cgroup_force_empty_write+0x160/0x160
13:49:37 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000c80)={0x0, 0x0})

13:49:37 executing program 5:
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x280000}, 0x20)

[ 1684.740401][  T674]  ? lock_sync+0x190/0x190
[ 1684.745131][  T674]  cgroup_file_write+0x1e2/0x7b0
[ 1684.750113][  T674]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1684.756230][  T674]  ? kill_css+0x3b0/0x3b0
[ 1684.760599][  T674]  ? lock_acquire+0x32/0xc0
[ 1684.765162][  T674]  ? kill_css+0x3b0/0x3b0
[ 1684.769534][  T674]  kernfs_fop_write_iter+0x3f1/0x600
[ 1684.774882][  T674]  vfs_write+0xa1d/0xe40
[ 1684.779171][  T674]  ? kernel_write+0x670/0x670
[ 1684.783882][  T674]  ? receive_fd+0x110/0x110
[ 1684.788426][  T674]  ? __fget_files+0x26a/0x480
[ 1684.793150][  T674]  ksys_write+0x12b/0x250
[ 1684.797515][  T674]  ? __ia32_sys_read+0xb0/0xb0
[ 1684.802316][  T674]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1684.808274][  T674]  do_syscall_64+0x39/0xb0
[ 1684.812741][  T674]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1684.818673][  T674] RIP: 0033:0x7fab35c8c169
[ 1684.823116][  T674] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1684.842766][  T674] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1684.851260][  T674] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1684.859272][  T674] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1684.867277][  T674] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1684.875280][  T674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1684.883285][  T674] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
13:49:37 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000400)={'tunl0\x00', &(0x7f0000000340)={'erspan0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x15, 0x4, 0x0, 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @loopback, {[@timestamp_prespec={0x44, 0x24, 0x0, 0x3, 0x0, [{@local}, {@broadcast}, {@empty}, {@loopback}]}, @timestamp_addr={0x44, 0x1c, 0x0, 0x1, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}}, {@multicast2}, {@empty}]}]}}}}})

[ 1684.891315][  T674]  </TASK>
[ 1684.894537][  T674] memory: usage 10380kB, limit 0kB, failcnt 227
[ 1684.901122][  T674] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1684.902981][ T7192] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1684.908025][  T674] Memory cgroup stats for /syz1:
[ 1684.908268][  T674] anon 0
[ 1684.908280][  T674] file 10125312
[ 1684.908292][  T674] kernel 303104
[ 1684.908303][  T674] kernel_stack 0
[ 1684.908314][  T674] pagetables 0
[ 1684.908325][  T674] sec_pagetables 0
[ 1684.908337][  T674] percpu 0
[ 1684.908347][  T674] sock 0
[ 1684.908358][  T674] vmalloc 0
[ 1684.908369][  T674] shmem 10125312
[ 1684.908379][  T674] zswap 0
[ 1684.908390][  T674] zswapped 0
[ 1684.908401][  T674] file_mapped 299008
[ 1684.908412][  T674] file_dirty 0
[ 1684.908425][  T674] file_writeback 0
[ 1684.908436][  T674] swapcached 0
[ 1684.908446][  T674] anon_thp 0
[ 1684.908455][  T674] file_thp 0
[ 1684.908465][  T674] shmem_thp 0
[ 1684.987540][  T674] inactive_anon 10125312
[ 1684.991802][  T674] active_anon 0
[ 1684.995327][  T674] inactive_file 0
[ 1684.998980][  T674] active_file 200704
[ 1685.002936][  T674] unevictable 0
[ 1685.006413][  T674] slab_reclaimable 267560
[ 1685.010762][  T674] slab_unreclaimable 28632
[ 1685.015240][  T674] slab 296192
[ 1685.018543][  T674] workingset_refault_anon 0
[ 1685.023125][  T674] workingset_refault_file 0
[ 1685.027650][  T674] workingset_activate_anon 0
[ 1685.032292][  T674] workingset_activate_file 0
[ 1685.037341][  T674] workingset_restore_anon 0
[ 1685.041867][  T674] workingset_restore_file 0
[ 1685.046439][  T674] workingset_nodereclaim 0
[ 1685.050875][  T674] pgscan 63916
[ 1685.054309][  T674] pgsteal 43
[ 1685.057528][  T674] pgscan_kswapd 0
[ 1685.061177][  T674] pgscan_direct 63916
[ 1685.065211][  T674] pgscan_khugepaged 0
[ 1685.069211][  T674] pgsteal_kswapd 0
[ 1685.072995][  T674] pgsteal_direct 43
[ 1685.076822][  T674] pgsteal_khugepaged 0
[ 1685.080913][  T674] pgfault 621556
[ 1685.084520][  T674] pgmajfault 6
[ 1685.087916][  T674] pgrefill 1296492
[ 1685.091702][  T674] pgactivate 63859
[ 1685.095485][  T674] pgdeactivate 0
[ 1685.099050][  T674] pglazyfree 0
[ 1685.102475][  T674] pglazyfreed 0
[ 1685.105951][  T674] zswpin 0
[ 1685.108993][  T674] zswpout 0
[ 1685.112171][  T674] thp_fault_alloc 0
[ 1685.115993][  T674] thp_collapse_alloc 0
[ 1685.120075][  T674] Out of memory and no killable processes...
13:49:38 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x2}, 0x8)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)

13:49:38 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_MCAST_LEAVE_GROUP(r0, 0x0, 0x5, 0x0, 0x0)

13:49:38 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf", 0x84}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:49:38 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000140), 0x12)

13:49:38 executing program 2:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x39, 0x0, 0x0)

13:49:38 executing program 0:
syz_io_uring_setup(0x6b7c, &(0x7f0000000000), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x541b, &(0x7f0000000180), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240))

13:49:38 executing program 4:
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$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")
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000004380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
chdir(&(0x7f0000004340)='./file0\x00')
write$FUSE_INIT(r0, &(0x7f00000066c0)={0x50, 0x0, r1, {0x7, 0x21}}, 0x50)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f000000a9c0)={0x2020}, 0x2020)
read$FUSE(r0, &(0x7f0000006740)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r2}, 0x10)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, &(0x7f0000000900))
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_ENTRY(r0, &(0x7f00000002c0)={0x90, 0x0, r4}, 0x90)

[ 1685.343500][ T7192] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
13:49:38 executing program 0:
syz_io_uring_setup(0x6b7c, &(0x7f0000000000), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x541b, &(0x7f0000000180), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240))

13:49:38 executing program 5:
r0 = gettid()
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x0)
read(r1, &(0x7f0000000500)=""/248, 0xf8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000040)={0x287})
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r1, 0x80045300, 0x0)
tkill(r0, 0x7)

13:49:38 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x2fe4}, 0x0)

[ 1685.604418][  T697] loop4: detected capacity change from 0 to 512
[ 1685.677825][ T7192] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1685.701406][  T697] EXT4-fs: Ignoring removed bh option
13:49:38 executing program 2:
socketpair(0x18, 0x0, 0x0, &(0x7f0000000200))

[ 1685.733657][  T697] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[ 1685.761750][  T694] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1685.828310][  T694] CPU: 0 PID: 694 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1685.837769][  T694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1685.847867][  T694] Call Trace:
[ 1685.851171][  T694]  <TASK>
[ 1685.854131][  T694]  dump_stack_lvl+0x136/0x150
[ 1685.858860][  T694]  dump_header+0x10a/0xd70
[ 1685.863320][  T694]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1685.869433][  T694]  out_of_memory+0xd6c/0x1650
[ 1685.874160][  T694]  ? io_schedule_timeout+0x150/0x150
[ 1685.879492][  T694]  ? oom_killer_disable+0x2b0/0x2b0
[ 1685.884741][  T694]  mem_cgroup_out_of_memory+0x206/0x270
[ 1685.890341][  T694]  ? mem_cgroup_margin+0x130/0x130
[ 1685.895506][  T694]  memory_max_write+0x2f9/0x3c0
[ 1685.900391][  T694]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1685.906510][  T694]  ? lock_sync+0x190/0x190
[ 1685.910984][  T694]  cgroup_file_write+0x1e2/0x7b0
[ 1685.915966][  T694]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1685.922073][  T694]  ? kill_css+0x3b0/0x3b0
13:49:38 executing program 0:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
read$usbmon(r0, &(0x7f00000001c0)=""/2, 0x2)

13:49:38 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000000140)=0x1000, 0x4)
setsockopt$sock_timeval(r0, 0x1, 0x49, &(0x7f0000000040)={0x77359400}, 0x10)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c)

[ 1685.926455][  T694]  ? lock_acquire+0x32/0xc0
[ 1685.931018][  T694]  ? kill_css+0x3b0/0x3b0
[ 1685.935385][  T694]  kernfs_fop_write_iter+0x3f1/0x600
[ 1685.940712][  T694]  vfs_write+0xa1d/0xe40
[ 1685.944994][  T694]  ? kernel_write+0x670/0x670
[ 1685.949716][  T694]  ? receive_fd+0x110/0x110
[ 1685.954267][  T694]  ? __fget_files+0x26a/0x480
[ 1685.958992][  T694]  ksys_write+0x12b/0x250
[ 1685.963363][  T694]  ? __ia32_sys_read+0xb0/0xb0
[ 1685.968170][  T694]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1685.974122][  T694]  do_syscall_64+0x39/0xb0
[ 1685.978573][  T694]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1685.984499][  T694] RIP: 0033:0x7fab35c8c169
[ 1685.988938][  T694] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1686.008568][  T694] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1686.016995][  T694] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1686.024973][  T694] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1686.032948][  T694] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1686.040925][  T694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1686.048901][  T694] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1686.056896][  T694]  </TASK>
[ 1686.127830][  T697] EXT4-fs (loop4): 1 truncate cleaned up
[ 1686.134502][ T7192] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1686.172882][  T694] memory: usage 10372kB, limit 0kB, failcnt 227
[ 1686.181132][  T694] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1686.191503][  T694] Memory cgroup stats for /syz1:
[ 1686.191894][  T694] anon 0
[ 1686.200921][  T694] file 10125312
[ 1686.205063][  T694] kernel 294912
[ 1686.208185][  T697] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
13:49:39 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = mq_open(&(0x7f0000000080)='\xb6\x826OE\x90#\xcc\tRV\xb5]^!\x87', 0x0, 0x0, 0x0)
mq_notify(r0, 0x0)

[ 1686.209070][  T694] kernel_stack 0
[ 1686.225352][  T694] pagetables 0
[ 1686.229062][  T694] sec_pagetables 0
[ 1686.233501][  T694] percpu 0
[ 1686.236842][  T694] sock 0
[ 1686.239939][  T694] vmalloc 0
[ 1686.243671][  T694] shmem 10125312
[ 1686.247594][  T694] zswap 0
[ 1686.250860][  T694] zswapped 0
[ 1686.254486][  T694] file_mapped 299008
[ 1686.258784][  T694] file_dirty 0
[ 1686.262600][  T694] file_writeback 0
[ 1686.266730][  T694] swapcached 0
[ 1686.270415][  T694] anon_thp 0
[ 1686.276342][  T694] file_thp 0
[ 1686.283039][  T694] shmem_thp 0
[ 1686.286667][  T694] inactive_anon 10125312
[ 1686.291367][  T694] active_anon 0
[ 1686.297057][  T694] inactive_file 0
[ 1686.300994][  T694] active_file 200704
[ 1686.305393][  T694] unevictable 0
[ 1686.309203][  T694] slab_reclaimable 264992
[ 1686.334367][  T694] slab_unreclaimable 28328
[ 1686.339278][  T694] slab 293320
[ 1686.369701][  T694] workingset_refault_anon 0
[ 1686.385098][  T694] workingset_refault_file 0
[ 1686.388990][T27653] udevd[27653]: symlink '../../loop4' '/dev/disk/by-label/\x86\x5b.tmp-b7:4' failed: Read-only file system
[ 1686.409725][  T694] workingset_activate_anon 0
[ 1686.441954][  T694] workingset_activate_file 0
[ 1686.469631][  T694] workingset_restore_anon 0
[ 1686.514428][  T694] workingset_restore_file 0
[ 1686.524791][  T694] workingset_nodereclaim 0
[ 1686.547406][  T694] pgscan 65484
[ 1686.576585][  T694] pgsteal 43
[ 1686.590929][  T694] pgscan_kswapd 0
[ 1686.612700][  T694] pgscan_direct 65484
[ 1686.661304][  T694] pgscan_khugepaged 0
[ 1686.702859][  T694] pgsteal_kswapd 0
[ 1686.710907][ T5049] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1686.721802][  T694] pgsteal_direct 43
[ 1686.751998][  T694] pgsteal_khugepaged 0
[ 1686.779727][  T694] pgfault 621556
[ 1686.799525][  T694] pgmajfault 6
[ 1686.852601][  T694] pgrefill 1296492
[ 1686.856734][  T694] pgactivate 65427
[ 1686.895588][  T694] pgdeactivate 0
[ 1686.899530][  T694] pglazyfree 0
[ 1686.933682][  T694] pglazyfreed 0
[ 1686.937502][  T694] zswpin 0
[ 1686.940832][  T694] zswpout 0
[ 1686.979145][  T694] thp_fault_alloc 0
[ 1686.984129][  T694] thp_collapse_alloc 0
[ 1686.988598][  T694] Out of memory and no killable processes...
[ 1687.868636][ T7192] hsr_slave_0: left promiscuous mode
[ 1687.879243][ T7192] hsr_slave_1: left promiscuous mode
[ 1687.897377][ T7192] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1687.910843][ T7192] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1687.935808][ T7192] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1687.957882][ T7192] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1687.980903][ T7192] bridge_slave_1: left allmulticast mode
[ 1687.988160][ T7192] bridge_slave_1: left promiscuous mode
[ 1687.995312][ T7192] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1688.006366][ T7192] bridge_slave_0: left allmulticast mode
[ 1688.013177][ T7192] bridge_slave_0: left promiscuous mode
[ 1688.019543][ T7192] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1688.041870][ T7192] veth1_macvtap: left promiscuous mode
[ 1688.047891][ T7192] veth0_macvtap: left promiscuous mode
[ 1688.058351][ T7192] veth1_vlan: left promiscuous mode
[ 1688.065773][ T7192] veth0_vlan: left promiscuous mode
[ 1688.406365][ T7192] team0 (unregistering): Port device team_slave_1 removed
[ 1688.428474][ T7192] team0 (unregistering): Port device team_slave_0 removed
[ 1688.445231][ T7192] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1688.462043][ T7192] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1688.631767][ T7192] bond0 (unregistering): Released all slaves
[ 1688.829376][T25866] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1688.847119][T25866] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1688.858279][T25866] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1688.893417][ T5050] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1688.910801][ T5050] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1688.925307][T25866] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1689.254237][  T751] chnl_net:caif_netlink_parms(): no params data found
[ 1689.514375][  T751] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1689.521546][  T751] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1689.557161][  T751] bridge_slave_0: entered allmulticast mode
[ 1689.577250][  T751] bridge_slave_0: entered promiscuous mode
[ 1689.614098][  T751] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1689.621289][  T751] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1689.650104][  T751] bridge_slave_1: entered allmulticast mode
[ 1689.673206][  T751] bridge_slave_1: entered promiscuous mode
[ 1689.780507][  T751] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1689.809896][  T751] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1689.878475][  T751] team0: Port device team_slave_0 added
[ 1689.905285][  T751] team0: Port device team_slave_1 added
[ 1689.957373][  T751] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1689.972445][  T751] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1690.046840][  T751] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1690.079153][  T751] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1690.107059][  T751] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1690.162529][  T751] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1690.247664][  T751] hsr_slave_0: entered promiscuous mode
[ 1690.266072][  T751] hsr_slave_1: entered promiscuous mode
[ 1690.284903][  T751] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1690.298373][  T751] Cannot create hsr debugfs directory
[ 1690.952633][T25866] Bluetooth: hci0: command 0x0409 tx timeout
[ 1691.479538][  T751] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1691.492098][  T751] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1691.508225][  T751] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1691.527731][  T751] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1691.647882][  T751] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1691.670921][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1691.694020][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1691.711769][  T751] 8021q: adding VLAN 0 to HW filter on device team0
[ 1691.735119][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1691.749735][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1691.762032][ T5516] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1691.769239][ T5516] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1691.802488][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1691.811107][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1691.828943][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1691.840031][ T5516] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1691.847209][ T5516] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1691.862571][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1691.871665][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1691.888167][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1691.898285][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1691.907594][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1691.918106][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1691.947080][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1691.958322][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1691.971963][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1691.988507][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1691.999341][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1692.017272][  T751] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1692.302827][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1692.310501][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1692.334368][  T751] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1692.375588][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1692.399280][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1692.448956][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1692.458219][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1692.469643][  T751] veth0_vlan: entered promiscuous mode
[ 1692.478644][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1692.488582][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1692.506871][  T751] veth1_vlan: entered promiscuous mode
[ 1692.546840][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1692.556863][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1692.565845][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1692.575582][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1692.586915][  T751] veth0_macvtap: entered promiscuous mode
[ 1692.600486][  T751] veth1_macvtap: entered promiscuous mode
[ 1692.619545][  T751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1692.635970][  T751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1692.646385][  T751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1692.662662][  T751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1692.673815][  T751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1692.684843][  T751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1692.695517][  T751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1692.706449][  T751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1692.717308][  T751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1692.744320][  T751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1692.763436][  T751] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1692.774490][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1692.790770][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1692.801117][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1692.817573][ T5500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1692.833854][  T751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1692.856066][  T751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1692.871998][  T751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1692.890587][  T751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1692.901035][  T751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1692.919068][  T751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1692.929357][  T751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1692.948955][  T751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1692.960862][  T751] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1692.980647][  T751] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1692.999932][  T751] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1693.012982][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1693.021867][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1693.032544][T25866] Bluetooth: hci0: command 0x041b tx timeout
[ 1693.043490][  T751] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1693.061652][  T751] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1693.071236][  T751] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1693.089302][  T751] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1693.212345][T14075] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1693.220790][T14075] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1693.251445][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1693.276878][T14050] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1693.292059][T14050] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1693.310262][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
13:49:47 executing program 5:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x202000, 0x1000}, 0x20)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r0, &(0x7f00000001c0)={0x2c, 0x0, r2}, 0x10)
recvmmsg(r0, &(0x7f0000001cc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x60, 0x0)

13:49:47 executing program 0:
r0 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000580))

13:49:47 executing program 4:
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$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")
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000004380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
chdir(&(0x7f0000004340)='./file0\x00')
write$FUSE_INIT(r0, &(0x7f00000066c0)={0x50, 0x0, r1, {0x7, 0x21}}, 0x50)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f000000a9c0)={0x2020}, 0x2020)
read$FUSE(r0, &(0x7f0000006740)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r2}, 0x10)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, &(0x7f0000000900))
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_ENTRY(r0, &(0x7f00000002c0)={0x90, 0x0, r4}, 0x90)

13:49:47 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000000140)=0x1000, 0x4)
setsockopt$sock_timeval(r0, 0x1, 0x49, &(0x7f0000000040)={0x77359400}, 0x10)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c)

13:49:47 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf", 0x84}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:49:47 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000140), 0x12)

13:49:47 executing program 0:
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$eJzs3MtvG0UYAPBv7SR9k1DKo6WFQEFEPJImfdADFxBIHEBCgkMRp5CkVajboCZItIogcAhHVIk74ojEX8AJLgg4IXGFO6pUoVxaOBmtvZu6iZ3GiVOX7O8nbTvjHWvm292xZ2e8CaCwBtN/koi9EfFHRPTXs7cXGKz/d3NpfuKfpfmJJKrVt/9OauVuLM1P5EXz9+2pZ6rVLL+jSb2L70WMVypTl7L8yNyFD0dmL195YfrC+Lmpc1MXx06fPnH8SN+psZMdiTON68ahT2YOH3z93atvTpy5+v4v36Xt3Zvtb4yjUwbrR7eppztdWZfta0gnPV1sCG0pR0R6unpr/b8/yrFreV9/vPZ5VxsHbKlqtVpt9v2cWagC21gS3W4B0B35F316/5tvd2nocU+4/nL9BiiN+2a21ff0RCkr07vi/raTBiPizMK/X6dbbNE8BABAox/S8c/zzcZ/pXioodx92RrKQETcHxH7I+KBiDgQEQ9G1Mo+HBGPtFn/yhWS1eOf0rUNBbZO6fjvpWxt6/bxXz76i4FylttXi783OTtdmTqWHZOh6N2R5kfXqOPHV3//stW+xvFfuqX152PBrB3XelZM0E2Oz41vJuZG1z+LONTTLP4k8mWcJCIORsShDdYx/ey3h1vtu3P8a+jAOlP1m4hn6ud/IVbEn0tark+Ovnhq7OTIzqhMHRvJr4rVfv1t8a1W9W8q/g5Iz//uptf/cvwDyc6I2ctXztfWa2fbr2Pxzy9a3tNs9PrvS96ppfuy1z4en5u7NBrRl7yx+vWxW+/N83n5NP6ho837//64dSQejYj0Ij4SEY9FxONZ25+IiCcj4uga8f/8ylMftB//GrPyHZTGP3mn8x+N57/9RPn8T9+3H38uPf8naqmh7JX1fP6tt4GbOXYAAADwf1Gq/QY+KQ0vp0ul4eH6b/gPxO5SZWZ27rmzMx9dnKz/Vn4gekv5TFd/w3zoaDY3nOfHVuSPZ/PGX5V31fLDEzOVyW4HDwW3p0X/T/1V7nbrgC3neS0oLv0fikv/h+LS/6G49H8ormb9/9MutAO4+3z/Q3Hp/1Bc+j8Ul/4PhdTy2fjSph75l9j2iSjdE83Y/omedf8xiw0mdjTd1e1PJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgM74LwAA//9wiOSH")
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000004380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
chdir(&(0x7f0000004340)='./file0\x00')
write$FUSE_INIT(r0, &(0x7f00000066c0)={0x50, 0x0, r1, {0x7, 0x21}}, 0x50)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f000000a9c0)={0x2020}, 0x2020)
read$FUSE(r0, &(0x7f0000006740)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r2}, 0x10)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, &(0x7f0000000900))
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_ENTRY(r0, &(0x7f00000002c0)={0x90, 0x0, r4}, 0x90)

[ 1694.500542][  T881] loop4: detected capacity change from 0 to 512
[ 1694.534109][  T881] EXT4-fs: Ignoring removed bh option
[ 1694.586125][  T881] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[ 1694.616969][  T751] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1694.662877][  T751] CPU: 0 PID: 751 Comm: syz-executor.1 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1694.672312][  T751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1694.682401][  T751] Call Trace:
[ 1694.685701][  T751]  <TASK>
[ 1694.688653][  T751]  dump_stack_lvl+0x136/0x150
[ 1694.693372][  T751]  dump_header+0x10a/0xd70
[ 1694.697831][  T751]  oom_kill_process+0x25d/0x600
[ 1694.702720][  T751]  out_of_memory+0x35c/0x1650
[ 1694.707433][  T751]  ? find_held_lock+0x2d/0x110
[ 1694.712243][  T751]  ? oom_killer_disable+0x2b0/0x2b0
[ 1694.717477][  T751]  ? rcu_read_unlock+0x9/0x60
[ 1694.722200][  T751]  ? find_held_lock+0x2d/0x110
[ 1694.727007][  T751]  mem_cgroup_out_of_memory+0x206/0x270
[ 1694.732599][  T751]  ? mem_cgroup_margin+0x130/0x130
[ 1694.737755][  T751]  ? lock_downgrade+0x690/0x690
[ 1694.742666][  T751]  try_charge_memcg+0xf9c/0x13b0
[ 1694.747646][  T751]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 1694.753662][  T751]  ? get_mem_cgroup_from_objcg+0xa1/0x280
[ 1694.759414][  T751]  ? lock_downgrade+0x690/0x690
[ 1694.764317][  T751]  ? trace_lock_acquire+0x12d/0x180
[ 1694.769562][  T751]  ? get_mem_cgroup_from_objcg+0x159/0x280
[ 1694.775401][  T751]  ? lock_acquire+0x32/0xc0
[ 1694.779959][  T751]  obj_cgroup_charge+0x2b2/0x5e0
[ 1694.784958][  T751]  ? vm_area_dup+0x23/0x300
[ 1694.789504][  T751]  kmem_cache_alloc+0xb1/0x3b0
[ 1694.794304][  T751]  vm_area_dup+0x23/0x300
[ 1694.798677][  T751]  dup_mmap+0x713/0x19d0
[ 1694.802967][  T751]  ? replace_mm_exe_file+0x4c0/0x4c0
[ 1694.808303][  T751]  ? lockdep_hardirqs_on+0x7d/0x100
13:49:47 executing program 0:
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$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")
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000004380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
chdir(&(0x7f0000004340)='./file0\x00')
write$FUSE_INIT(r0, &(0x7f00000066c0)={0x50, 0x0, r1, {0x7, 0x21}}, 0x50)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f000000a9c0)={0x2020}, 0x2020)
read$FUSE(r0, &(0x7f0000006740)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r2}, 0x10)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, &(0x7f0000000900))
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_ENTRY(r0, &(0x7f00000002c0)={0x90, 0x0, r4}, 0x90)

[ 1694.813555][  T751]  ? mm_init+0xc7a/0x1030
[ 1694.817927][  T751]  copy_process+0x65ae/0x7600
[ 1694.822639][  T751]  ? _raw_spin_unlock+0x28/0x40
[ 1694.827535][  T751]  ? pidfd_prepare+0x80/0x80
[ 1694.832177][  T751]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 1694.838209][  T751]  kernel_clone+0xeb/0x890
[ 1694.842664][  T751]  ? create_io_thread+0xe0/0xe0
[ 1694.847541][  T751]  ? do_user_addr_fault+0x2d4/0x1240
[ 1694.852865][  T751]  ? reacquire_held_locks+0x216/0x4e0
[ 1694.858277][  T751]  ? do_user_addr_fault+0x2d4/0x1240
13:49:47 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40040, 0x0)
lsetxattr$security_evm(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0), 0x0, 0x0, 0x0)

[ 1694.863614][  T751]  ? find_held_lock+0x2d/0x110
[ 1694.868417][  T751]  __do_sys_clone+0xba/0x100
[ 1694.873051][  T751]  ? kernel_clone+0x890/0x890
[ 1694.877782][  T751]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1694.883727][  T751]  do_syscall_64+0x39/0xb0
[ 1694.888181][  T751]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1694.894110][  T751] RIP: 0033:0x7efd48689e9b
[ 1694.898549][  T751] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 1694.918185][  T751] RSP: 002b:00007fff3ebf1cd0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1694.926630][  T751] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efd48689e9b
[ 1694.934631][  T751] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 1694.942630][  T751] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555557043400
[ 1694.950633][  T751] R10: 00005555570436d0 R11: 0000000000000246 R12: 0000000000000001
[ 1694.958629][  T751] R13: 0000000000000000 R14: 0000000000000001 R15: 00007fff3ebf1db0
[ 1694.966646][  T751]  </TASK>
[ 1694.999429][  T751] memory: usage 10552kB, limit 0kB, failcnt 246
[ 1695.005781][  T751] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1695.011489][  T881] EXT4-fs (loop4): 1 truncate cleaned up
[ 1695.012627][  T751] Memory cgroup stats for /syz1:
[ 1695.018881][  T751] anon 49152
[ 1695.019484][  T881] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[ 1695.026479][  T751] file 10125312
[ 1695.044235][  T751] kernel 430080
[ 1695.048164][  T751] kernel_stack 32768
13:49:48 executing program 5:
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x85000, 0x0)

13:49:48 executing program 0:
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$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")
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000004380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
chdir(&(0x7f0000004340)='./file0\x00')
write$FUSE_INIT(r0, &(0x7f00000066c0)={0x50, 0x0, r1, {0x7, 0x21}}, 0x50)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f000000a9c0)={0x2020}, 0x2020)
read$FUSE(r0, &(0x7f0000006740)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r2}, 0x10)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, &(0x7f0000000900))
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_ENTRY(r0, &(0x7f00000002c0)={0x90, 0x0, r4}, 0x90)

13:49:48 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40040, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='./file0\x00', 0x40000, 0x140)

[ 1695.062379][  T751] pagetables 45056
[ 1695.072065][  T751] sec_pagetables 0
[ 1695.072979][T25963] udevd[25963]: symlink '../../loop4' '/dev/disk/by-label/\x86\x5b.tmp-b7:4' failed: Read-only file system
[ 1695.076353][  T751] percpu 64
[ 1695.112395][T25866] Bluetooth: hci0: command 0x040f tx timeout
[ 1695.124035][  T751] sock 0
[ 1695.126928][  T751] vmalloc 0
[ 1695.130492][  T751] shmem 10125312
[ 1695.176323][  T751] zswap 0
[ 1695.194083][  T751] zswapped 0
[ 1695.214955][  T751] file_mapped 299008
[ 1695.237606][  T751] file_dirty 0
13:49:48 executing program 5:
syz_mount_image$fuse(0x0, &(0x7f0000001900)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
execve(&(0x7f0000005840)='./file0\x00', 0x0, 0x0)

13:49:48 executing program 2:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x541c, 0x0)

[ 1695.259974][  T751] file_writeback 0
[ 1695.296634][  T751] swapcached 0
[ 1695.317876][  T751] anon_thp 0
[ 1695.335759][  T751] file_thp 0
[ 1695.351432][  T751] shmem_thp 0
[ 1695.370798][  T751] inactive_anon 10174464
[ 1695.397773][  T751] active_anon 0
[ 1695.411338][  T751] inactive_file 0
[ 1695.423752][  T751] active_file 200704
[ 1695.437135][  T751] unevictable 0
13:49:48 executing program 4:
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$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")
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000004380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
chdir(&(0x7f0000004340)='./file0\x00')
write$FUSE_INIT(r0, &(0x7f00000066c0)={0x50, 0x0, r1, {0x7, 0x21}}, 0x50)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f000000a9c0)={0x2020}, 0x2020)
read$FUSE(r0, &(0x7f0000006740)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r2}, 0x10)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, &(0x7f0000000900))
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_ENTRY(r0, &(0x7f00000002c0)={0x90, 0x0, r4}, 0x90)

13:49:48 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000140), 0x12)

[ 1695.449739][  T751] slab_reclaimable 267560
[ 1695.492432][  T751] slab_unreclaimable 63480
[ 1695.500143][ T5049] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1695.512451][  T751] slab 331040
[ 1695.515779][  T751] workingset_refault_anon 0
[ 1695.520295][  T751] workingset_refault_file 0
[ 1695.547396][  T751] workingset_activate_anon 0
[ 1695.553297][  T751] workingset_activate_file 0
[ 1695.572406][  T751] workingset_restore_anon 0
[ 1695.576961][  T751] workingset_restore_file 0
[ 1695.581486][  T751] workingset_nodereclaim 0
[ 1695.589065][  T751] pgscan 67689
[ 1695.612512][  T751] pgsteal 43
[ 1695.618074][  T751] pgscan_kswapd 0
[ 1695.626238][  T751] pgscan_direct 67689
[ 1695.635200][  T751] pgscan_khugepaged 0
[ 1695.643565][  T751] pgsteal_kswapd 0
[ 1695.647455][  T751] pgsteal_direct 43
[ 1695.651939][  T916] loop4: detected capacity change from 0 to 512
[ 1695.666276][  T751] pgsteal_khugepaged 0
[ 1695.670775][  T751] pgfault 623476
[ 1695.675402][  T916] EXT4-fs: Ignoring removed bh option
[ 1695.675567][  T751] pgmajfault 6
[ 1695.684862][  T751] pgrefill 1296492
[ 1695.688716][  T751] pgactivate 67632
[ 1695.690801][  T916] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[ 1695.695146][  T751] pgdeactivate 0
[ 1695.705937][  T751] pglazyfree 0
[ 1695.709478][  T751] pglazyfreed 0
[ 1695.713510][  T751] zswpin 0
[ 1695.716708][  T751] zswpout 0
[ 1695.719677][  T916] EXT4-fs (loop4): 1 truncate cleaned up
[ 1695.719958][  T751] thp_fault_alloc 0
[ 1695.726184][  T916] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[ 1695.734566][  T751] thp_collapse_alloc 0
[ 1695.752589][  T751] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=751,uid=0
[ 1695.782075][  T751] Memory cgroup out of memory: Killed process 751 (syz-executor.1) total-vm:50576kB, anon-rss:368kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 1695.820399][T25963] udevd[25963]: symlink '../../loop4' '/dev/disk/by-label/\x86\x5b.tmp-b7:4' failed: Read-only file system
[ 1695.898877][  T914] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1695.910884][  T914] CPU: 0 PID: 914 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1695.920293][  T914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1695.930366][  T914] Call Trace:
[ 1695.933660][  T914]  <TASK>
[ 1695.936594][  T914]  dump_stack_lvl+0x136/0x150
[ 1695.941273][  T914]  dump_header+0x10a/0xd70
[ 1695.945687][  T914]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1695.951778][  T914]  out_of_memory+0xd6c/0x1650
[ 1695.956497][  T914]  ? oom_killer_disable+0x2b0/0x2b0
[ 1695.961716][  T914]  ? find_held_lock+0x2d/0x110
[ 1695.966523][  T914]  mem_cgroup_out_of_memory+0x206/0x270
[ 1695.972114][  T914]  ? mem_cgroup_margin+0x130/0x130
[ 1695.977252][  T914]  ? cgroup_file_notify+0x26/0x1b0
[ 1695.982367][  T914]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1695.988173][  T914]  memory_max_write+0x2f9/0x3c0
[ 1695.993042][  T914]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1695.999106][  T914]  ? lock_sync+0x190/0x190
[ 1696.003522][  T914]  cgroup_file_write+0x1e2/0x7b0
[ 1696.008478][  T914]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1696.014580][  T914]  ? kill_css+0x3b0/0x3b0
[ 1696.018930][  T914]  ? lock_acquire+0x32/0xc0
[ 1696.023464][  T914]  ? kill_css+0x3b0/0x3b0
[ 1696.027809][  T914]  kernfs_fop_write_iter+0x3f1/0x600
[ 1696.033547][  T914]  vfs_write+0xa1d/0xe40
[ 1696.037808][  T914]  ? kernel_write+0x670/0x670
[ 1696.042495][  T914]  ? receive_fd+0x110/0x110
[ 1696.047027][  T914]  ? __fget_files+0x26a/0x480
[ 1696.051732][  T914]  ksys_write+0x12b/0x250
[ 1696.056073][  T914]  ? __ia32_sys_read+0xb0/0xb0
[ 1696.060852][  T914]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1696.066778][  T914]  do_syscall_64+0x39/0xb0
[ 1696.071208][  T914]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1696.077115][  T914] RIP: 0033:0x7fab35c8c169
[ 1696.081540][  T914] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1696.101157][  T914] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1696.109584][  T914] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1696.117568][  T914] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1696.125549][  T914] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1696.133528][  T914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1696.141503][  T914] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1696.149590][  T914]  </TASK>
[ 1696.173266][  T914] memory: usage 10392kB, limit 0kB, failcnt 263
[ 1696.185567][  T914] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1696.194103][  T914] Memory cgroup stats for /syz1:
[ 1696.194326][  T914] anon 0
[ 1696.205246][  T914] file 10125312
[ 1696.209074][  T914] kernel 307200
[ 1696.214866][  T914] kernel_stack 0
[ 1696.218773][  T914] pagetables 0
[ 1696.223391][  T914] sec_pagetables 0
[ 1696.227484][  T914] percpu 0
[ 1696.230823][  T914] sock 0
[ 1696.235013][  T914] vmalloc 0
[ 1696.238873][  T914] shmem 10125312
[ 1696.243384][  T914] zswap 0
[ 1696.246623][  T914] zswapped 0
[ 1696.250159][  T914] file_mapped 299008
[ 1696.255322][  T914] file_dirty 0
[ 1696.259110][  T914] file_writeback 0
[ 1696.264302][  T914] swapcached 0
[ 1696.268038][  T914] anon_thp 0
[ 1696.271562][  T914] file_thp 0
[ 1696.278910][  T914] shmem_thp 0
[ 1696.283948][  T914] inactive_anon 10125312
[ 1696.288612][  T914] active_anon 0
[ 1696.293090][  T914] inactive_file 0
[ 1696.297050][  T914] active_file 200704
[ 1696.301187][  T914] unevictable 0
[ 1696.305797][  T914] slab_reclaimable 267560
[ 1696.310372][  T914] slab_unreclaimable 33912
[ 1696.318716][  T914] slab 301472
[ 1696.325238][  T914] workingset_refault_anon 0
[ 1696.329961][  T914] workingset_refault_file 0
[ 1696.336565][  T914] workingset_activate_anon 0
[ 1696.341354][  T914] workingset_activate_file 0
[ 1696.346803][  T914] workingset_restore_anon 0
[ 1696.351572][  T914] workingset_restore_file 0
[ 1696.356643][  T914] workingset_nodereclaim 0
[ 1696.361283][  T914] pgscan 70923
[ 1696.365204][  T914] pgsteal 43
[ 1696.368624][  T914] pgscan_kswapd 0
[ 1696.372830][  T914] pgscan_direct 70923
[ 1696.377223][  T914] pgscan_khugepaged 0
[ 1696.381416][  T914] pgsteal_kswapd 0
[ 1696.387157][  T914] pgsteal_direct 43
[ 1696.391156][  T914] pgsteal_khugepaged 0
[ 1696.395645][  T914] pgfault 623476
[ 1696.399377][  T914] pgmajfault 6
[ 1696.403256][  T914] pgrefill 1296492
[ 1696.407305][  T914] pgactivate 70866
[ 1696.411364][  T914] pgdeactivate 0
[ 1696.415370][  T914] pglazyfree 0
[ 1696.420406][  T914] pglazyfreed 0
[ 1696.424321][  T914] zswpin 0
[ 1696.427499][  T914] zswpout 0
[ 1696.430813][  T914] thp_fault_alloc 0
[ 1696.435140][  T914] thp_collapse_alloc 0
[ 1696.439401][  T914] Out of memory and no killable processes...
[ 1696.490380][ T5049] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
13:49:50 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf3b727cf6c5c720be7ff98322e5248012d8181dedd0e45eb1ed34c50067820fee5a52720a19d0fa61e42399dffa9e1bd79c6f819eae9e2266947bb59100a7add03e23", 0xc6}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:49:50 executing program 0:
r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmctl$IPC_INFO(r0, 0x3, &(0x7f0000001480)=""/217)

13:49:50 executing program 2:
syz_usb_connect$cdc_ncm(0x0, 0x76, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x64, 0x2, 0x1, 0x0, 0x90, 0x9, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x3, 0x3f}, {0x6, 0x24, 0x1a, 0x4, 0x10}, [@mdlm_detail={0x4}, @mdlm_detail={0x4, 0x24, 0x13, 0x8}]}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0x80, 0x3, 0xff}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0x3, 0x0, 0xff}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x8, 0x20, 0xe0}}}}}}}]}}, &(0x7f0000000a00)={0xa, &(0x7f00000005c0)={0xa, 0x6, 0x250, 0x0, 0x0, 0x3, 0xff, 0x9}, 0xc, &(0x7f0000000600)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7, 0x10, 0x2, 0x10, 0x5, 0x6, 0x5}]}, 0x7, [{0x2, &(0x7f0000000640)=@string={0x2}}, {0x4, &(0x7f0000000700)=@lang_id={0x4, 0x3, 0x430}}, {0x0, 0x0}, {0xf1, &(0x7f0000000780)=@string={0xf1, 0x3, "a5065dee573d7b02fc4aaf4fed19805c0096d9f451c18683dcbfbd674958969a8e78bcd7c87168a42cf85ad1ec61299946adca6cd1d883ba5089fe0839143687503135841220ff0c941a6ab4fb8c6d259826739b7adc7bef731b44a9a68b5f5a62fc782295c9481f5a42d555de77cba02ab68c666f3e648f78588befc1e45d516aa41172a60029221b3fcc8d6f3df716227aede7ae17161e8624d6ea3b734f0eb23010434c72bfa885f26f69727fb79a1dc2dcf1998d098c3f473ed73548d7905f7fbd53211eccbaa0f2f20a9b56a10b3f50917487ed7c69bbbe735815eff6bca95d6427e3d9ae816ea4c7d143bc65"}}, {0x98, &(0x7f0000000880)=@string={0x98, 0x3, "47bdba49e11a90521efbb806fbb24c10f7deb4e36934130208fe6ff269af1a1dd1845b5cd1f02155f80e7dfc932a8e177369d6584bc6510f067e78db4b37922fe8b6498d6538c8325731f201e97f5c65e65848637da52b4466b966f8089e800d6bdfb3760051bb32a9749a4c5c6e9113f70200e06f698c5da9be0c7094b2d5aa70a68f4da807c7d12630631f3a4fd09f6787330b6c21"}}, {0x50, &(0x7f0000000940)=@string={0x50, 0x3, "db582f365b088ab4b6e4bd45e942ba51cefaece44bc5e655f4781698a3df0c87d186f528dfe8c2a4526739d8940acfd0b28fe19bfefea15cbfd0a202fbe592598dd0b5c24e4d3b68cbe052fa3c99"}}, {0x0, 0x0}]})
syz_usb_connect$hid(0x5, 0x3f, &(0x7f0000004bc0)={{0x12, 0x1, 0x351, 0x0, 0x0, 0x0, 0x8, 0x11ff, 0x3331, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0xc0, 0x90, 0x20, [{{0x9, 0x4, 0x0, 0x1f, 0x1, 0x3, 0x1, 0x3, 0x1f, {0x9, 0x21, 0x1, 0x1, 0x1, {0x22, 0xb67}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x9, 0x4, 0x2}}, [{{0x9, 0x5, 0x2, 0x3, 0x20, 0x0, 0x9}}]}}}]}}]}}, &(0x7f0000004e00)={0xa, &(0x7f0000004c00)={0xa, 0x6, 0x310, 0x1, 0x5, 0x81, 0xff, 0x2}, 0x10b, &(0x7f0000004c40)={0x5, 0xf, 0x10b, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x4, 0x1, 0x0, 0x2}, @ext_cap={0x7, 0x10, 0x2, 0x18, 0x1, 0x2, 0x7}, @generic={0xe0, 0x10, 0x1, "5c2685b8f235094df3744b9250817f9d5af736c3d67aabd3f42bfa22d3b85f40d2ab496adbb9418425de674796629c6c645596bcecf2fb0c71a3125c93b5fe8c81fb095fd43f71e4e3f78f3ad07635d626b5bbc3c997660a236951f9e590b6a1ad53c14a186586b7ba97d0ad1856eeeedf9eb66cb620e84b0b03b25b6e290faf29eae8992d86a85434dff4a2b976c6c7183b3948dc088b3512ba3749983b70bb62992e9b71fd3741be996d7808c579c161dde19c1aa514b00a23e56353aae1606ad93d2fa63873b935e5e075c55d53ce997cb2db7fe9fb5fcefb769340"}, @ext_cap={0x7, 0x10, 0x2, 0x0, 0x2, 0x1, 0x400}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x9, 0x0, 0x40, 0x1}, @ext_cap={0x7, 0x10, 0x2, 0x4, 0x0, 0x7, 0xb88d}]}, 0x1, [{0x4e, &(0x7f0000004d80)=@string={0x4e, 0x3, "5f34b9996de195f9e23c3e891095075710021ca020c378a90f128433efb68277027d7f734c5cee41bc07a33cbe1dd95a72df196560df46fae27a499c815ed88adf44c0f040898f4cb44fda56"}}]})
syz_usb_connect$cdc_ecm(0x6, 0x88, &(0x7f0000004e80)={{0x12, 0x1, 0xca4c4fa37d734894, 0x2, 0x0, 0x0, 0xff, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x76, 0x1, 0x1, 0x3, 0x20, 0x0, [{{0x9, 0x4, 0x0, 0x5, 0x2, 0x2, 0x6, 0x0, 0x4, {{0x8, 0x24, 0x6, 0x0, 0x0, ' \'2'}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x5, 0x5, 0x8001, 0x8}, [@dmm={0x7, 0x24, 0x14, 0x9, 0x172}, @mdlm={0x15, 0x24, 0x12, 0x80}, @mbim={0xc, 0x24, 0x1b, 0xb374, 0x100, 0x0, 0x8, 0x3, 0x74}, @network_terminal={0x7, 0x24, 0xa, 0x0, 0x1, 0xd3, 0x1}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x200, 0x5, 0x8}}], {{0x9, 0x5, 0x82, 0x2, 0x400, 0x0, 0x1, 0x55}}, {{0x9, 0x5, 0x3, 0x2, 0x208, 0x5, 0x0, 0x3f}}}}}]}}]}}, &(0x7f00000050c0)={0xa, &(0x7f0000004f40)={0xa, 0x6, 0x110, 0x3f, 0x1, 0x7, 0xff, 0x1f}, 0xf, &(0x7f0000004f80)={0x5, 0xf, 0xf, 0x1, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x0, 0x9, 0x4, 0x8196}]}, 0x3, [{0x0, 0x0}, {0x0, 0x0}, {0x4, &(0x7f0000005080)=@lang_id={0x4}}]})

13:49:50 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f00000012c0), 0x0, 0x0)
ioctl$EVIOCGPHYS(r0, 0x4020940d, &(0x7f0000001300)=""/142)

13:49:50 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000140), 0x12)

13:49:50 executing program 4:
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0006, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x43e, &(0x7f00000004c0)="$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")
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000004380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
chdir(&(0x7f0000004340)='./file0\x00')
write$FUSE_INIT(r0, &(0x7f00000066c0)={0x50, 0x0, r1, {0x7, 0x21}}, 0x50)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f000000a9c0)={0x2020}, 0x2020)
read$FUSE(r0, &(0x7f0000006740)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r2}, 0x10)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, &(0x7f0000000900))
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_ENTRY(r0, &(0x7f00000002c0)={0x90, 0x0, r4}, 0x90)

13:49:51 executing program 5:
r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f00000044c0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x0, 0x0)

13:49:51 executing program 0:
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x40, 0x2505, 0x220, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}}}]}}]}}, &(0x7f0000000540)={0x0, 0x0, 0x23, &(0x7f0000000080)={0x5, 0xf, 0x23, 0x2, [@generic={0x14, 0x10, 0x4, "2f2e78b79bc8d2a7b31d41bdd9ded89204"}, @ss_cap={0xa}]}})

[ 1698.031601][  T927] loop4: detected capacity change from 0 to 512
[ 1698.076326][  T927] EXT4-fs: Ignoring removed bh option
[ 1698.149665][  T927] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[ 1698.177990][T14075] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1698.209130][  T927] EXT4-fs (loop4): 1 truncate cleaned up
[ 1698.215190][ T5516] usb 3-1: new high-speed USB device number 115 using dummy_hcd
[ 1698.238208][  T930] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1698.279895][  T927] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[ 1698.311003][  T930] CPU: 1 PID: 930 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1698.320431][  T930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1698.330512][  T930] Call Trace:
[ 1698.333820][  T930]  <TASK>
[ 1698.336774][  T930]  dump_stack_lvl+0x136/0x150
[ 1698.341493][  T930]  dump_header+0x10a/0xd70
[ 1698.345940][  T930]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1698.352048][  T930]  out_of_memory+0xd6c/0x1650
[ 1698.356766][  T930]  ? io_schedule_timeout+0x150/0x150
[ 1698.362090][  T930]  ? oom_killer_disable+0x2b0/0x2b0
[ 1698.367318][  T930]  ? kernfs_notify+0x1ac/0x410
[ 1698.372130][  T930]  mem_cgroup_out_of_memory+0x206/0x270
[ 1698.377718][  T930]  ? mem_cgroup_margin+0x130/0x130
[ 1698.382889][  T930]  memory_max_write+0x2f9/0x3c0
[ 1698.387795][  T930]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1698.393899][  T930]  ? lock_sync+0x190/0x190
[ 1698.398361][  T930]  cgroup_file_write+0x1e2/0x7b0
[ 1698.403334][  T930]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1698.409437][  T930]  ? kill_css+0x3b0/0x3b0
[ 1698.413796][  T930]  ? lock_acquire+0x32/0xc0
[ 1698.418358][  T930]  ? kill_css+0x3b0/0x3b0
[ 1698.422720][  T930]  kernfs_fop_write_iter+0x3f1/0x600
[ 1698.428047][  T930]  vfs_write+0xa1d/0xe40
[ 1698.432328][  T930]  ? kernel_write+0x670/0x670
[ 1698.437038][  T930]  ? receive_fd+0x110/0x110
[ 1698.441576][  T930]  ? __fget_files+0x26a/0x480
[ 1698.446301][  T930]  ksys_write+0x12b/0x250
[ 1698.450676][  T930]  ? __ia32_sys_read+0xb0/0xb0
[ 1698.455472][  T930]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1698.461419][  T930]  do_syscall_64+0x39/0xb0
[ 1698.465870][  T930]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1698.471805][  T930] RIP: 0033:0x7fab35c8c169
[ 1698.476241][  T930] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1698.495881][  T930] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1698.504324][  T930] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1698.512332][  T930] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1698.520324][  T930] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1698.528323][  T930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1698.536325][  T930] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1698.544355][  T930]  </TASK>
13:49:51 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf3b727cf6c5c720be7ff98322e5248012d8181dedd0e45eb1ed34c50067820fee5a52720a19d0fa61e42399dffa9e1bd79c6f819eae9e2266947bb59100a7add03e23", 0xc6}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1698.572364][T25493] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[ 1698.628141][T25963] udevd[25963]: symlink '../../loop4' '/dev/disk/by-label/\x86\x5b.tmp-b7:4' failed: Read-only file system
[ 1698.656650][T14075] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1698.682396][ T5516] usb 3-1: Using ep0 maxpacket: 32
[ 1698.710828][  T930] memory: usage 10380kB, limit 0kB, failcnt 263
[ 1698.728629][ T5500] usb 6-1: new high-speed USB device number 58 using dummy_hcd
[ 1698.740834][  T930] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1698.780985][  T930] Memory cgroup stats for /syz1:
[ 1698.781234][  T930] anon 0
[ 1698.796002][T14075] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1698.813203][  T930] file 10125312
[ 1698.820082][  T930] kernel 294912
[ 1698.824397][ T5516] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 128, changing to 11
[ 1698.840271][  T930] kernel_stack 0
[ 1698.847529][ T5516] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16
[ 1698.862324][  T930] pagetables 0
[ 1698.870286][  T930] sec_pagetables 0
[ 1698.879014][  T930] percpu 0
[ 1698.885837][ T5516] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[ 1698.899225][  T930] sock 0
[ 1698.905844][  T930] vmalloc 0
[ 1698.909708][  T930] shmem 10125312
[ 1698.918663][  T930] zswap 0
[ 1698.921767][  T930] zswapped 0
[ 1698.929993][  T930] file_mapped 299008
[ 1698.937064][  T930] file_dirty 0
[ 1698.944541][  T930] file_writeback 0
[ 1698.962447][ T5516] usb 3-1: language id specifier not provided by device, defaulting to English
13:49:52 executing program 4:
syz_usb_connect(0x0, 0x48, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0xfe, 0x9f, 0x3d, 0x20, 0x15ba, 0x2a, 0x839e, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x36, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x4, 0x36, 0xcf, 0x55, 0x0, [], [{{0x9, 0x5, 0x7, 0x2}}, {{0x9, 0x5, 0x4, 0x0, 0x200}}, {{0x9, 0x5, 0x8e}}, {{0x9, 0x5, 0x4}}]}}]}}]}}, 0x0)

[ 1698.983749][  T930] swapcached 0
[ 1698.992608][  T930] anon_thp 0
[ 1698.995845][  T930] file_thp 0
[ 1698.999060][  T930] shmem_thp 0
[ 1699.015694][ T5049] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1699.022586][T25493] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1699.039261][  T930] inactive_anon 10125312
[ 1699.060118][  T930] active_anon 0
[ 1699.060573][T14075] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1699.096907][  T930] inactive_file 0
[ 1699.111755][  T930] active_file 200704
[ 1699.151058][  T930] unevictable 0
[ 1699.177568][  T930] slab_reclaimable 267560
[ 1699.204882][  T930] slab_unreclaimable 28328
[ 1699.212783][T25493] usb 1-1: New USB device found, idVendor=2505, idProduct=0220, bcdDevice= 0.40
[ 1699.226401][  T930] slab 295888
[ 1699.234178][T25493] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1699.239880][  T930] workingset_refault_anon 0
[ 1699.258718][T25493] usb 1-1: Product: syz
[ 1699.263216][  T930] workingset_refault_file 0
[ 1699.263233][  T930] workingset_activate_anon 0
[ 1699.263246][  T930] workingset_activate_file 0
[ 1699.263258][  T930] workingset_restore_anon 0
[ 1699.263270][  T930] workingset_restore_file 0
[ 1699.263283][  T930] workingset_nodereclaim 0
[ 1699.263295][  T930] pgscan 72491
[ 1699.263306][  T930] pgsteal 43
[ 1699.263318][  T930] pgscan_kswapd 0
[ 1699.263329][  T930] pgscan_direct 72491
[ 1699.263340][  T930] pgscan_khugepaged 0
[ 1699.263351][  T930] pgsteal_kswapd 0
[ 1699.263362][  T930] pgsteal_direct 43
[ 1699.263372][  T930] pgsteal_khugepaged 0
[ 1699.263382][  T930] pgfault 623476
[ 1699.263394][  T930] pgmajfault 6
[ 1699.263404][  T930] pgrefill 1296492
[ 1699.263415][  T930] pgactivate 72434
[ 1699.263425][  T930] pgdeactivate 0
[ 1699.263436][  T930] pglazyfree 0
[ 1699.284535][T25493] usb 1-1: Manufacturer: syz
[ 1699.337191][  T930] pglazyfreed 0
[ 1699.356997][ T5500] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1699.370747][ T5500] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1699.394344][ T5500] usb 6-1: Product: syz
[ 1699.402049][  T930] zswpin 0
[ 1699.411775][ T5516] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1699.424754][ T5500] usb 6-1: Manufacturer: syz
[ 1699.424925][T25493] usb 1-1: SerialNumber: syz
[ 1699.432857][  T930] zswpout 0
[ 1699.438863][ T5516] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1699.449864][  T930] thp_fault_alloc 0
[ 1699.456301][ T5500] usb 6-1: SerialNumber: syz
[ 1699.468001][  T930] thp_collapse_alloc 0
[ 1699.480111][ T5516] usb 3-1: Manufacturer: а
[ 1699.486178][  T930] Out of memory and no killable processes...
[ 1699.506122][T25493] usbhid 1-1:1.0: couldn't find an input interrupt endpoint
13:49:52 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000140), 0x12)

[ 1699.506119][ T5516] usb 3-1: SerialNumber: ڥ�㵗ɻ䫼侯᧭岀阀셑莆뿜枽塉骖碎ힼ燈ꑨ텚懬餩굆泊몃�ࣾ�蜶��‒೿᪔둪賻╭⚘魳᭳ꥄ讦婟ﱢ≸즕Ὀ䉚嗕矞ꃋ똪暌㹯轤塸��ꑪ爑¦∩㼛跌㵯ᛷ稢ឮḖ⒆猻�ゲ�牌ꢿ楯署骷�趙谉䜿휾䠵郗罟厽ḡ뫌૲嚛஡倿璑楼뺻塳볶嶩�膮ꑮ퇇뱃
[ 1699.530634][ T5500] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1699.593734][ T5516] cdc_ncm 3-1:1.0: CDC Union missing and no IAD found
[ 1699.600575][ T5516] cdc_ncm 3-1:1.0: bind() failure
[ 1699.684519][ T5516] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[ 1699.724687][ T5516] cdc_ncm 3-1:1.1: bind() failure
[ 1699.799705][  T924] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1699.817549][T25493] usb 1-1: USB disconnect, device number 14
[ 1699.887249][  T924] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1699.938144][ T5516] usb 3-1: USB disconnect, device number 115
[ 1699.988576][  T947] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1700.036473][  T947] CPU: 1 PID: 947 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1700.045900][  T947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1700.055982][  T947] Call Trace:
[ 1700.059283][  T947]  <TASK>
[ 1700.062232][  T947]  dump_stack_lvl+0x136/0x150
[ 1700.066956][  T947]  dump_header+0x10a/0xd70
[ 1700.071410][  T947]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1700.077523][  T947]  out_of_memory+0xd6c/0x1650
[ 1700.082239][  T947]  ? io_schedule_timeout+0x150/0x150
[ 1700.087561][  T947]  ? oom_killer_disable+0x2b0/0x2b0
[ 1700.092780][  T947]  ? kernfs_notify+0x1ac/0x410
[ 1700.097573][  T947]  mem_cgroup_out_of_memory+0x206/0x270
[ 1700.103146][  T947]  ? mem_cgroup_margin+0x130/0x130
[ 1700.108300][  T947]  memory_max_write+0x2f9/0x3c0
[ 1700.113168][  T947]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1700.119257][  T947]  ? lock_sync+0x190/0x190
[ 1700.123702][  T947]  cgroup_file_write+0x1e2/0x7b0
[ 1700.128660][  T947]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1700.134739][  T947]  ? kill_css+0x3b0/0x3b0
[ 1700.139084][  T947]  ? lock_acquire+0x32/0xc0
[ 1700.143620][  T947]  ? kill_css+0x3b0/0x3b0
[ 1700.147967][  T947]  kernfs_fop_write_iter+0x3f1/0x600
[ 1700.153272][  T947]  vfs_write+0xa1d/0xe40
[ 1700.157535][  T947]  ? kernel_write+0x670/0x670
[ 1700.162227][  T947]  ? receive_fd+0x110/0x110
[ 1700.166749][  T947]  ? __fget_files+0x26a/0x480
[ 1700.171452][  T947]  ksys_write+0x12b/0x250
[ 1700.175810][  T947]  ? __ia32_sys_read+0xb0/0xb0
[ 1700.180622][  T947]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1700.186559][  T947]  do_syscall_64+0x39/0xb0
[ 1700.190998][  T947]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1700.196914][  T947] RIP: 0033:0x7fab35c8c169
[ 1700.201343][  T947] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1700.220969][  T947] RSP: 002b:00007fab36a5e168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1700.229408][  T947] RAX: ffffffffffffffda RBX: 00007fab35dac050 RCX: 00007fab35c8c169
[ 1700.237390][  T947] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1700.245378][  T947] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1700.253365][  T947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1700.261356][  T947] R13: 00007ffc740ae83f R14: 00007fab36a5e300 R15: 0000000000022000
[ 1700.269364][  T947]  </TASK>
13:49:53 executing program 0:
syz_usb_connect(0x0, 0x46, &(0x7f0000003880)={{0x12, 0x1, 0x0, 0xd6, 0x69, 0x40, 0x10, 0xace, 0x2011, 0xaa98, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x3, 0xa7, 0x9c, 0x88, 0x0, [], [{{0x9, 0x5, 0xf}}, {{0x9, 0x5, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, [@uac_iso={0x7}]}}, {{0x9, 0x5, 0xb}}]}}]}}]}}, 0x0)

[ 1700.552379][T31259] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1700.639800][  T947] memory: usage 10372kB, limit 0kB, failcnt 263
[ 1700.646718][  T947] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1700.654484][  T947] Memory cgroup stats for /syz1:
[ 1700.654721][  T947] anon 0
[ 1700.663339][  T947] file 10125312
[ 1700.667065][  T947] kernel 294912
[ 1700.670743][  T947] kernel_stack 0
[ 1700.675205][  T947] pagetables 0
[ 1700.686021][  T947] sec_pagetables 0
13:49:53 executing program 2:
syz_mount_image$fuse(0x0, &(0x7f00000024c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000006980)=@nullb, 0x0, &(0x7f00000069c0)='./file0\x00')

[ 1700.692011][  T947] percpu 0
[ 1700.703616][  T947] sock 0
[ 1700.708393][  T947] vmalloc 0
[ 1700.711725][  T947] shmem 10125312
[ 1700.724718][  T947] zswap 0
[ 1700.727875][  T947] zswapped 0
[ 1700.731384][  T947] file_mapped 299008
[ 1700.739858][  T947] file_dirty 0
[ 1700.747426][  T947] file_writeback 0
[ 1700.751486][  T947] swapcached 0
[ 1700.760686][  T947] anon_thp 0
[ 1700.764443][ T5522] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[ 1700.772741][  T947] file_thp 0
[ 1700.776211][  T947] shmem_thp 0
[ 1700.779706][  T947] inactive_anon 10125312
[ 1700.789025][  T947] active_anon 0
[ 1700.793475][  T947] inactive_file 0
[ 1700.797360][  T947] active_file 200704
[ 1700.801480][  T947] unevictable 0
[ 1700.805729][  T947] slab_reclaimable 264992
[ 1700.813426][  T947] slab_unreclaimable 28328
13:49:53 executing program 2:
openat$uinput(0xffffffffffffff9c, &(0x7f0000003cc0), 0x802, 0x0)

[ 1700.835869][  T947] slab 293320
[ 1700.839441][  T947] workingset_refault_anon 0
[ 1700.861060][  T947] workingset_refault_file 0
[ 1700.866316][  T947] workingset_activate_anon 0
[ 1700.880758][  T947] workingset_activate_file 0
[ 1700.888063][  T947] workingset_restore_anon 0
[ 1700.896525][  T947] workingset_restore_file 0
[ 1700.906276][  T947] workingset_nodereclaim 0
[ 1700.916617][  T947] pgscan 74059
[ 1700.935016][  T947] pgsteal 43
13:49:54 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1700.946175][  T947] pgscan_kswapd 0
[ 1700.957836][  T947] pgscan_direct 74059
[ 1700.964011][ T5516] usb 6-1: USB disconnect, device number 58
[ 1700.983543][  T947] pgscan_khugepaged 0
[ 1700.993881][  T947] pgsteal_kswapd 0
[ 1701.004902][  T947] pgsteal_direct 43
[ 1701.012752][ T5522] usb 1-1: Using ep0 maxpacket: 16
[ 1701.021590][  T947] pgsteal_khugepaged 0
[ 1701.031670][  T947] pgfault 623476
[ 1701.036091][  T947] pgmajfault 6
[ 1701.039744][  T947] pgrefill 1296492
[ 1701.040742][  T964] loop2: detected capacity change from 0 to 64
[ 1701.044519][  T947] pgactivate 74002
[ 1701.080654][  T947] pgdeactivate 0
[ 1701.091944][  T947] pglazyfree 0
[ 1701.095944][  T947] pglazyfreed 0
[ 1701.099736][  T947] zswpin 0
[ 1701.110824][  T947] zswpout 0
[ 1701.152324][ T5522] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[ 1701.152498][  T947] thp_fault_alloc 0
[ 1701.161994][ T5522] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[ 1701.162026][ T5522] usb 1-1: config 0 interface 0 altsetting 0 has a duplicate endpoint with address 0xB, skipping
13:49:54 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1701.226537][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1701.272113][  T947] thp_collapse_alloc 0
[ 1701.278078][  T947] Out of memory and no killable processes...
13:49:54 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup(r2, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r4 = openat$cgroup_int(r3, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r4, &(0x7f0000000140), 0x12)

[ 1701.332611][ T5522] usb 1-1: New USB device found, idVendor=0ace, idProduct=2011, bcdDevice=aa.98
[ 1701.341702][ T5522] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1701.359148][ T5522] usb 1-1: Product: syz
[ 1701.369021][ T5522] usb 1-1: Manufacturer: syz
[ 1701.374279][ T5522] usb 1-1: SerialNumber: syz
[ 1701.382089][ T5522] usb 1-1: config 0 descriptor??
13:49:54 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1701.449226][T14075] hsr_slave_0: left promiscuous mode
[ 1701.538783][T14075] hsr_slave_1: left promiscuous mode
[ 1701.552083][T14075] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1701.592385][T31259] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[ 1701.600088][T31259] ath9k_htc: Failed to initialize the device
[ 1701.605885][  T984] loop2: detected capacity change from 0 to 64
[ 1701.608739][  T983] loop5: detected capacity change from 0 to 64
[ 1701.631112][T14075] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1701.661275][ T5516] usb 6-1: ath9k_htc: USB layer deinitialized
[ 1701.686913][T25235] usb 1-1: USB disconnect, device number 15
[ 1701.702486][T14075] batman_adv: batadv0: Interface deactivated: batadv_slave_1
13:49:54 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1701.726075][  T976] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1701.743042][T14075] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1701.781080][  T976] CPU: 0 PID: 976 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1701.790515][  T976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1701.800596][  T976] Call Trace:
[ 1701.803893][  T976]  <TASK>
[ 1701.806848][  T976]  dump_stack_lvl+0x136/0x150
[ 1701.811569][  T976]  dump_header+0x10a/0xd70
[ 1701.816024][  T976]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1701.822133][  T976]  out_of_memory+0xd6c/0x1650
13:49:54 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1701.826846][  T976]  ? io_schedule_timeout+0x150/0x150
[ 1701.832174][  T976]  ? oom_killer_disable+0x2b0/0x2b0
[ 1701.837401][  T976]  ? kernfs_notify+0x1ac/0x410
[ 1701.842199][  T976]  mem_cgroup_out_of_memory+0x206/0x270
[ 1701.847787][  T976]  ? mem_cgroup_margin+0x130/0x130
[ 1701.852957][  T976]  memory_max_write+0x2f9/0x3c0
[ 1701.857845][  T976]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1701.863942][  T976]  ? lock_sync+0x190/0x190
[ 1701.868398][  T976]  cgroup_file_write+0x1e2/0x7b0
[ 1701.873371][  T976]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1701.879471][  T976]  ? kill_css+0x3b0/0x3b0
[ 1701.883838][  T976]  ? lock_acquire+0x32/0xc0
[ 1701.888394][  T976]  ? kill_css+0x3b0/0x3b0
[ 1701.892761][  T976]  kernfs_fop_write_iter+0x3f1/0x600
[ 1701.895227][T25977] udevd[25977]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1701.898066][  T976]  vfs_write+0xa1d/0xe40
[ 1701.910998][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1701.913635][  T976]  ? kernel_write+0x670/0x670
[ 1701.913670][  T976]  ? receive_fd+0x110/0x110
[ 1701.934247][  T976]  ? __fget_files+0x26a/0x480
[ 1701.938973][  T976]  ksys_write+0x12b/0x250
[ 1701.943340][  T976]  ? __ia32_sys_read+0xb0/0xb0
[ 1701.948137][  T976]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1701.954135][  T976]  do_syscall_64+0x39/0xb0
[ 1701.958589][  T976]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1701.964521][  T976] RIP: 0033:0x7fab35c8c169
[ 1701.968965][  T976] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1701.988609][  T976] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1701.997061][  T976] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1702.005057][  T976] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1702.013053][  T976] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1702.021052][  T976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1702.029052][  T976] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1702.037073][  T976]  </TASK>
[ 1702.075199][T14075] bridge_slave_1: left allmulticast mode
[ 1702.084327][T14075] bridge_slave_1: left promiscuous mode
[ 1702.118213][T14075] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1702.124834][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1702.128353][  T976] memory: usage 10372kB, limit 0kB, failcnt 263
[ 1702.156181][T14075] bridge_slave_0: left allmulticast mode
[ 1702.180029][T14075] bridge_slave_0: left promiscuous mode
[ 1702.192968][  T976] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1702.212075][T14075] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1702.229078][  T976] Memory cgroup stats for /syz1:
[ 1702.229453][  T976] anon 0
[ 1702.254295][  T976] file 10125312
[ 1702.258654][  T989] loop5: detected capacity change from 0 to 64
[ 1702.268859][  T976] kernel 294912
[ 1702.283225][  T990] loop2: detected capacity change from 0 to 64
[ 1702.302971][  T976] kernel_stack 0
[ 1702.306908][  T976] pagetables 0
[ 1702.316280][  T976] sec_pagetables 0
[ 1702.328491][  T976] percpu 0
[ 1702.332466][T14075] veth1_macvtap: left promiscuous mode
[ 1702.338556][T14075] veth0_macvtap: left promiscuous mode
[ 1702.345322][  T976] sock 0
[ 1702.348515][  T976] vmalloc 0
[ 1702.351944][  T976] shmem 10125312
[ 1702.361037][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1702.372380][T14075] veth1_vlan: left promiscuous mode
[ 1702.372631][T14075] veth0_vlan: left promiscuous mode
[ 1702.373382][  T976] zswap 0
[ 1702.403700][  T976] zswapped 0
[ 1702.411448][  T976] file_mapped 299008
[ 1702.428963][  T976] file_dirty 0
[ 1702.443158][  T976] file_writeback 0
[ 1702.447068][T27653] udevd[27653]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1702.465965][  T976] swapcached 0
[ 1702.469695][  T976] anon_thp 0
[ 1702.478676][  T976] file_thp 0
[ 1702.484867][T16241] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1702.490855][T27653] udevd[27653]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1702.509268][T16241] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1702.512021][  T976] shmem_thp 0
[ 1702.528605][T16241] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1702.530906][  T976] inactive_anon 10125312
[ 1702.544371][T16241] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1702.547170][  T976] active_anon 0
[ 1702.556341][T16241] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1702.564221][  T976] inactive_file 0
[ 1702.568014][  T976] active_file 200704
[ 1702.572076][  T976] unevictable 0
[ 1702.576015][  T976] slab_reclaimable 264992
[ 1702.580362][  T976] slab_unreclaimable 28328
[ 1702.584993][  T976] slab 293320
[ 1702.588297][  T976] workingset_refault_anon 0
[ 1702.593019][  T976] workingset_refault_file 0
[ 1702.597565][  T976] workingset_activate_anon 0
[ 1702.602691][  T976] workingset_activate_file 0
[ 1702.607970][  T976] workingset_restore_anon 0
[ 1702.612749][  T976] workingset_restore_file 0
[ 1702.617307][  T976] workingset_nodereclaim 0
[ 1702.621742][  T976] pgscan 75627
[ 1702.625297][  T976] pgsteal 43
[ 1702.628515][  T976] pgscan_kswapd 0
[ 1702.633680][  T976] pgscan_direct 75627
[ 1702.642323][  T976] pgscan_khugepaged 0
[ 1702.650878][  T976] pgsteal_kswapd 0
[ 1702.661328][  T976] pgsteal_direct 43
[ 1702.671241][  T976] pgsteal_khugepaged 0
[ 1702.676069][  T976] pgfault 623476
[ 1702.679925][  T976] pgmajfault 6
[ 1702.687413][  T976] pgrefill 1296492
[ 1702.691285][  T976] pgactivate 75570
[ 1702.695885][  T976] pgdeactivate 0
[ 1702.699507][  T976] pglazyfree 0
[ 1702.704453][  T976] pglazyfreed 0
[ 1702.710599][  T976] zswpin 0
[ 1702.714224][  T976] zswpout 0
[ 1702.717642][  T976] thp_fault_alloc 0
[ 1702.721740][  T976] thp_collapse_alloc 0
[ 1702.729250][  T976] Out of memory and no killable processes...
[ 1702.914612][T14075] team0 (unregistering): Port device team_slave_1 removed
[ 1702.933778][T14075] team0 (unregistering): Port device team_slave_0 removed
[ 1702.950123][T14075] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1702.978717][T14075] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1703.079034][T14075] bond0 (unregistering): Released all slaves
[ 1703.511447][  T991] chnl_net:caif_netlink_parms(): no params data found
[ 1703.664824][  T991] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1703.671975][  T991] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1703.691071][  T991] bridge_slave_0: entered allmulticast mode
[ 1703.698416][  T991] bridge_slave_0: entered promiscuous mode
[ 1703.718244][  T991] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1703.726252][  T991] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1703.735003][  T991] bridge_slave_1: entered allmulticast mode
[ 1703.753541][  T991] bridge_slave_1: entered promiscuous mode
[ 1703.825944][  T991] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1703.872712][  T991] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1704.011206][  T991] team0: Port device team_slave_0 added
[ 1704.020091][  T991] team0: Port device team_slave_1 added
[ 1704.059912][  T991] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1704.067163][  T991] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1704.102880][  T991] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1704.124984][  T991] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1704.131961][  T991] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1704.166669][  T991] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1704.241402][  T991] hsr_slave_0: entered promiscuous mode
[ 1704.255398][  T991] hsr_slave_1: entered promiscuous mode
[ 1704.261717][  T991] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1704.297001][  T991] Cannot create hsr debugfs directory
[ 1704.634078][T16241] Bluetooth: hci0: command 0x0409 tx timeout
[ 1706.296785][  T991] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1706.307627][  T991] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1706.318079][  T991] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1706.332084][  T991] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1706.464241][  T991] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1706.484711][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1706.494984][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1706.520016][  T991] 8021q: adding VLAN 0 to HW filter on device team0
[ 1706.540400][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1706.551180][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1706.573502][T10966] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1706.581290][T10966] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1706.617219][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1706.627259][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1706.637599][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1706.647812][T31218] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1706.655596][T31218] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1706.667274][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1706.677825][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1706.712636][T16241] Bluetooth: hci0: command 0x041b tx timeout
[ 1706.731774][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1706.744956][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1706.755249][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1706.766754][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1706.777040][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1706.786734][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1706.796014][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1706.805699][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1706.815113][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1706.826799][  T991] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1707.021110][  T991] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1707.031138][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1707.039671][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1707.062780][T25235] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1707.073134][T25235] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1707.095840][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1707.105082][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1707.119027][  T991] veth0_vlan: entered promiscuous mode
[ 1707.127223][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1707.137687][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1707.150436][  T991] veth1_vlan: entered promiscuous mode
[ 1707.180037][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1707.190072][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1707.199147][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1707.208301][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1707.220292][  T991] veth0_macvtap: entered promiscuous mode
[ 1707.234439][  T991] veth1_macvtap: entered promiscuous mode
[ 1707.250436][  T991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1707.261601][  T991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1707.275508][  T991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1707.286720][  T991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1707.297051][  T991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1707.307753][  T991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1707.317794][  T991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1707.328444][  T991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1707.338529][  T991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1707.349374][  T991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1707.361432][  T991] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1707.370389][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1707.379266][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1707.388087][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1707.397140][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1707.410142][  T991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1707.421471][  T991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1707.433343][  T991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1707.445063][  T991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1707.457266][  T991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1707.467982][  T991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1707.478475][  T991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1707.491386][  T991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1707.504570][  T991] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1707.515643][  T991] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1707.527627][  T991] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1707.536759][T25235] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1707.545921][T25235] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1707.557774][  T991] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1707.568147][  T991] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1707.577790][  T991] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1707.588060][  T991] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1707.702079][T14050] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1707.728692][T14050] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1707.732916][T14075] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1707.745304][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1707.754103][T14075] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1707.772977][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
13:50:01 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf3b727cf6c5c720be7ff98322e5248012d8181dedd0e45eb1ed34c50067820fee5a52720a19d0fa61e42399dffa9e1bd79c6f819eae9e2266947bb59100a7add03e23", 0xc6}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:50:01 executing program 0:
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000200)='./file1\x00', 0x808000, &(0x7f0000000840)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYBLOB="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", @ANYRES16], 0x1, 0x5ff, &(0x7f0000001240)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000006ac0)='cpuacct.stat\x00', 0x275a, 0x0)
ftruncate(r0, 0x8)

13:50:01 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:01 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

13:50:01 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:01 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000140), 0x12)

[ 1708.611989][ T1081] loop4: detected capacity change from 0 to 16
[ 1708.646394][ T1078] loop2: detected capacity change from 0 to 64
[ 1708.656309][ T1085] loop5: detected capacity change from 0 to 64
[ 1708.699260][ T1086] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1708.710286][ T1086] CPU: 1 PID: 1086 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1708.719779][ T1086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1708.729856][ T1086] Call Trace:
[ 1708.733158][ T1086]  <TASK>
[ 1708.736124][ T1086]  dump_stack_lvl+0x136/0x150
[ 1708.740846][ T1086]  dump_header+0x10a/0xd70
[ 1708.745297][ T1086]  oom_kill_process+0x25d/0x600
[ 1708.750195][ T1086]  out_of_memory+0x35c/0x1650
[ 1708.754921][ T1086]  ? oom_killer_disable+0x2b0/0x2b0
[ 1708.760152][ T1086]  ? kernfs_notify+0x1ac/0x410
[ 1708.764950][ T1086]  ? find_held_lock+0x2d/0x110
[ 1708.769763][ T1086]  mem_cgroup_out_of_memory+0x206/0x270
[ 1708.775359][ T1086]  ? mem_cgroup_margin+0x130/0x130
[ 1708.780526][ T1086]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1708.786381][ T1086]  memory_max_write+0x2f9/0x3c0
[ 1708.791266][ T1086]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1708.796215][T25866] Bluetooth: hci0: command 0x040f tx timeout
[ 1708.797351][ T1086]  ? lock_sync+0x190/0x190
[ 1708.797403][ T1086]  cgroup_file_write+0x1e2/0x7b0
[ 1708.797441][ T1086]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1708.818892][ T1086]  ? kill_css+0x3b0/0x3b0
[ 1708.823262][ T1086]  ? lock_acquire+0x32/0xc0
[ 1708.827816][ T1086]  ? kill_css+0x3b0/0x3b0
[ 1708.832173][ T1086]  kernfs_fop_write_iter+0x3f1/0x600
[ 1708.837492][ T1086]  vfs_write+0xa1d/0xe40
[ 1708.841777][ T1086]  ? kernel_write+0x670/0x670
13:50:01 executing program 0:
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$tcp_congestion(r0, &(0x7f0000000040)='scalable\x00', 0x9)

[ 1708.846483][ T1086]  ? receive_fd+0x110/0x110
[ 1708.851021][ T1086]  ? __fget_files+0x26a/0x480
[ 1708.855749][ T1086]  ksys_write+0x12b/0x250
[ 1708.860117][ T1086]  ? __ia32_sys_read+0xb0/0xb0
[ 1708.864770][ T1081] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1708.872082][ T1086]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1708.872140][ T1086]  do_syscall_64+0x39/0xb0
[ 1708.872174][ T1086]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1708.872208][ T1086] RIP: 0033:0x7fab35c8c169
13:50:01 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:01 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

[ 1708.872231][ T1086] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1708.872258][ T1086] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1708.872286][ T1086] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1708.872306][ T1086] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1708.872325][ T1086] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1708.872343][ T1086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1708.872360][ T1086] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1708.872401][ T1086]  </TASK>
[ 1708.874546][ T1086] memory: usage 10464kB, limit 0kB, failcnt 263
[ 1708.973112][ T1086] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1708.980026][ T1086] Memory cgroup stats for /syz1:
[ 1708.980257][ T1086] anon 49152
[ 1708.988470][ T1086] file 10125312
[ 1708.991950][ T1086] kernel 331776
[ 1708.995482][ T1086] kernel_stack 0
[ 1708.999059][ T1086] pagetables 8192
[ 1709.002752][ T1086] sec_pagetables 0
[ 1709.006489][ T1086] percpu 0
[ 1709.009531][ T1086] sock 0
[ 1709.012462][ T1086] vmalloc 0
[ 1709.015595][ T1086] shmem 10125312
[ 1709.019159][ T1086] zswap 0
[ 1709.022160][ T1086] zswapped 0
[ 1709.025378][ T1086] file_mapped 299008
[ 1709.029287][ T1086] file_dirty 0
[ 1709.033081][ T1086] file_writeback 0
[ 1709.036823][ T1086] swapcached 0
[ 1709.040211][ T1086] anon_thp 0
[ 1709.043489][ T1086] file_thp 0
[ 1709.046706][ T1086] shmem_thp 0
[ 1709.050006][ T1086] inactive_anon 49152
[ 1709.054054][ T1086] active_anon 10125312
[ 1709.058141][ T1086] inactive_file 0
[ 1709.061797][ T1086] active_file 0
[ 1709.065339][ T1086] unevictable 0
[ 1709.068816][ T1086] slab_reclaimable 273248
[ 1709.073210][ T1086] slab_unreclaimable 44776
[ 1709.077649][ T1086] slab 318024
[ 1709.080953][ T1086] workingset_refault_anon 0
[ 1709.085542][ T1086] workingset_refault_file 0
[ 1709.090155][ T1086] workingset_activate_anon 0
[ 1709.094810][ T1086] workingset_activate_file 0
[ 1709.099427][ T1086] workingset_restore_anon 0
[ 1709.104019][ T1086] workingset_restore_file 0
[ 1709.108546][ T1086] workingset_nodereclaim 0
[ 1709.113045][ T1086] pgscan 78077
[ 1709.116441][ T1086] pgsteal 43
[ 1709.119656][ T1086] pgscan_kswapd 0
[ 1709.123370][ T1086] pgscan_direct 78077
[ 1709.127372][ T1086] pgscan_khugepaged 0
[ 1709.131366][ T1086] pgsteal_kswapd 0
[ 1709.135165][ T1086] pgsteal_direct 43
[ 1709.138991][ T1086] pgsteal_khugepaged 0
[ 1709.143127][ T1086] pgfault 627707
[ 1709.146699][ T1086] pgmajfault 6
[ 1709.150093][ T1086] pgrefill 1296492
[ 1709.153887][ T1086] pgactivate 78004
[ 1709.157635][ T1086] pgdeactivate 0
[ 1709.161195][ T1086] pglazyfree 0
[ 1709.164639][ T1086] pglazyfreed 0
[ 1709.168112][ T1086] zswpin 0
[ 1709.171152][ T1086] zswpout 0
[ 1709.174325][ T1086] thp_fault_alloc 0
[ 1709.178144][ T1086] thp_collapse_alloc 0
[ 1709.182276][ T1086] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=991,uid=0
[ 1709.197688][ T1086] Memory cgroup out of memory: Killed process 991 (syz-executor.1) total-vm:50576kB, anon-rss:368kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
[ 1709.323732][ T1091] loop2: detected capacity change from 0 to 64
[ 1709.373414][ T1092] loop5: detected capacity change from 0 to 64
[ 1709.439858][T25977] udevd[25977]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1709.476618][T25963] udevd[25963]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
13:50:02 executing program 0:
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed5004, &(0x7f0000000140), 0xfe, 0x45e, &(0x7f0000001940)="$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")

13:50:02 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

13:50:02 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000140), 0x12)

[ 1709.500592][T27653] udevd[27653]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1709.605231][ T1098] loop4: detected capacity change from 0 to 16
[ 1709.680168][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1709.695718][ T1099] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1709.706311][ T1099] CPU: 1 PID: 1099 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1709.715819][ T1099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1709.725896][ T1099] Call Trace:
[ 1709.729190][ T1099]  <TASK>
[ 1709.732132][ T1099]  dump_stack_lvl+0x136/0x150
[ 1709.736853][ T1099]  dump_header+0x10a/0xd70
[ 1709.741285][ T1099]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1709.747371][ T1099]  out_of_memory+0xd6c/0x1650
[ 1709.752071][ T1099]  ? oom_killer_disable+0x2b0/0x2b0
[ 1709.757294][ T1099]  ? find_held_lock+0x2d/0x110
[ 1709.762084][ T1099]  mem_cgroup_out_of_memory+0x206/0x270
[ 1709.767660][ T1099]  ? mem_cgroup_margin+0x130/0x130
[ 1709.772806][ T1099]  ? cgroup_file_notify+0x26/0x1b0
[ 1709.777969][ T1099]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1709.783825][ T1099]  memory_max_write+0x2f9/0x3c0
[ 1709.788697][ T1099]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1709.794794][ T1099]  ? lock_sync+0x190/0x190
[ 1709.799242][ T1099]  cgroup_file_write+0x1e2/0x7b0
[ 1709.804202][ T1099]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1709.810294][ T1099]  ? kill_css+0x3b0/0x3b0
[ 1709.814645][ T1099]  ? lock_acquire+0x32/0xc0
[ 1709.819175][ T1099]  ? kill_css+0x3b0/0x3b0
[ 1709.823519][ T1099]  kernfs_fop_write_iter+0x3f1/0x600
[ 1709.828824][ T1099]  vfs_write+0xa1d/0xe40
[ 1709.833260][ T1099]  ? kernel_write+0x670/0x670
[ 1709.837950][ T1099]  ? receive_fd+0x110/0x110
[ 1709.842488][ T1099]  ? __fget_files+0x26a/0x480
[ 1709.847212][ T1099]  ksys_write+0x12b/0x250
[ 1709.851574][ T1099]  ? __ia32_sys_read+0xb0/0xb0
[ 1709.856363][ T1099]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1709.862299][ T1099]  do_syscall_64+0x39/0xb0
[ 1709.866740][ T1099]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1709.872653][ T1099] RIP: 0033:0x7fab35c8c169
[ 1709.877086][ T1099] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1709.897491][ T1099] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1709.905927][ T1099] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1709.913913][ T1099] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1709.921891][ T1099] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1709.929870][ T1099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1709.937851][ T1099] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1709.945854][ T1099]  </TASK>
[ 1709.950909][ T1099] memory: usage 10384kB, limit 0kB, failcnt 299
[ 1709.957307][ T1099] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1709.964282][ T1099] Memory cgroup stats for /syz1:
[ 1709.964510][ T1099] anon 0
[ 1709.972416][ T1099] file 10125312
[ 1709.975899][ T1099] kernel 307200
[ 1709.979374][ T1099] kernel_stack 0
[ 1709.982987][ T1099] pagetables 0
[ 1709.986419][ T1098] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1709.986699][ T1099] sec_pagetables 0
[ 1709.986713][ T1099] percpu 0
[ 1709.986725][ T1099] sock 0
[ 1709.986735][ T1099] vmalloc 0
[ 1709.986746][ T1099] shmem 10125312
[ 1710.002619][T25977] udevd[25977]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1710.003957][ T1099] zswap 0
[ 1710.015128][T27653] udevd[27653]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1710.024210][ T1099] zswapped 0
[ 1710.024225][ T1099] file_mapped 299008
[ 1710.024236][ T1099] file_dirty 0
[ 1710.024247][ T1099] file_writeback 0
[ 1710.024259][ T1099] swapcached 0
[ 1710.024271][ T1099] anon_thp 0
[ 1710.024283][ T1099] file_thp 0
[ 1710.024294][ T1099] shmem_thp 0
[ 1710.024304][ T1099] inactive_anon 0
[ 1710.024316][ T1099] active_anon 10125312
[ 1710.024328][ T1099] inactive_file 0
[ 1710.024339][ T1099] active_file 200704
[ 1710.024351][ T1099] unevictable 0
[ 1710.024362][ T1099] slab_reclaimable 267560
[ 1710.024374][ T1099] slab_unreclaimable 33912
[ 1710.024387][ T1099] slab 301472
[ 1710.024398][ T1099] workingset_refault_anon 0
[ 1710.024410][ T1099] workingset_refault_file 0
[ 1710.024422][ T1099] workingset_activate_anon 0
[ 1710.024435][ T1099] workingset_activate_file 0
[ 1710.024447][ T1099] workingset_restore_anon 0
[ 1710.024460][ T1099] workingset_restore_file 0
[ 1710.024472][ T1099] workingset_nodereclaim 0
[ 1710.024484][ T1099] pgscan 81703
[ 1710.024496][ T1099] pgsteal 43
[ 1710.024507][ T1099] pgscan_kswapd 0
[ 1710.024519][ T1099] pgscan_direct 81703
[ 1710.024530][ T1099] pgscan_khugepaged 0
[ 1710.024542][ T1099] pgsteal_kswapd 0
[ 1710.024554][ T1099] pgsteal_direct 43
[ 1710.024565][ T1099] pgsteal_khugepaged 0
[ 1710.024577][ T1099] pgfault 627707
[ 1710.024588][ T1099] pgmajfault 6
[ 1710.024599][ T1099] pgrefill 1296492
[ 1710.024611][ T1099] pgactivate 81646
[ 1710.024622][ T1099] pgdeactivate 0
[ 1710.024632][ T1099] pglazyfree 0
[ 1710.024643][ T1099] pglazyfreed 0
[ 1710.024655][ T1099] zswpin 0
[ 1710.024666][ T1099] zswpout 0
[ 1710.024677][ T1099] thp_fault_alloc 0
[ 1710.024688][ T1099] thp_collapse_alloc 0
[ 1710.024702][ T1099] Out of memory and no killable processes...
[ 1710.057367][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1710.106132][T25977] udevd[25977]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1710.155236][T27653] udevd[27653]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1710.206314][T25963] udevd[25963]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
13:50:05 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf3b727cf6c5c720be7ff98322e5248012d8181dedd0e45eb1ed34c50067820fee5a52720a19d0fa61e42399dffa9e1bd79c6f819eae9e2266947bb59100a7add03e23cf3de1258354ab5c89dad58beb0df31879b29bafd49f5f6008405bec0a7826f79a", 0xe7}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:50:05 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:05 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:05 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

13:50:05 executing program 0:
mkdirat(0xffffffffffffff9c, &(0x7f0000000c40)='./file0\x00', 0x0)
utimensat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)

13:50:05 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup(r1, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000140), 0x12)

[ 1712.580114][ T1105] loop5: detected capacity change from 0 to 64
[ 1712.597679][ T1104] loop2: detected capacity change from 0 to 64
[ 1712.603714][ T1108] loop4: detected capacity change from 0 to 16
[ 1712.703238][ T1109] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1712.714603][ T1109] CPU: 0 PID: 1109 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1712.724101][ T1109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1712.734187][ T1109] Call Trace:
[ 1712.737491][ T1109]  <TASK>
[ 1712.740458][ T1109]  dump_stack_lvl+0x136/0x150
[ 1712.745187][ T1109]  dump_header+0x10a/0xd70
[ 1712.749641][ T1109]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1712.755746][ T1109]  out_of_memory+0xd6c/0x1650
[ 1712.760476][ T1109]  ? oom_killer_disable+0x2b0/0x2b0
[ 1712.765713][ T1109]  ? kernfs_notify+0x1ac/0x410
[ 1712.770525][ T1109]  ? find_held_lock+0x2d/0x110
[ 1712.775331][ T1109]  mem_cgroup_out_of_memory+0x206/0x270
[ 1712.780943][ T1109]  ? mem_cgroup_margin+0x130/0x130
[ 1712.786135][ T1109]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1712.791971][ T1109]  memory_max_write+0x2f9/0x3c0
[ 1712.796842][ T1109]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1712.802934][ T1109]  ? lock_sync+0x190/0x190
[ 1712.807377][ T1109]  cgroup_file_write+0x1e2/0x7b0
[ 1712.812340][ T1109]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1712.818420][ T1109]  ? kill_css+0x3b0/0x3b0
[ 1712.822761][ T1109]  ? lock_acquire+0x32/0xc0
[ 1712.827308][ T1109]  ? kill_css+0x3b0/0x3b0
[ 1712.831652][ T1109]  kernfs_fop_write_iter+0x3f1/0x600
[ 1712.836952][ T1109]  vfs_write+0xa1d/0xe40
[ 1712.841215][ T1109]  ? kernel_write+0x670/0x670
[ 1712.845903][ T1109]  ? receive_fd+0x110/0x110
[ 1712.850421][ T1109]  ? __fget_files+0x26a/0x480
[ 1712.855136][ T1109]  ksys_write+0x12b/0x250
[ 1712.859477][ T1109]  ? __ia32_sys_read+0xb0/0xb0
[ 1712.864266][ T1109]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1712.870198][ T1109]  do_syscall_64+0x39/0xb0
[ 1712.874626][ T1109]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1712.880548][ T1109] RIP: 0033:0x7fab35c8c169
[ 1712.884970][ T1109] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1712.904588][ T1109] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1712.913012][ T1109] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1712.920988][ T1109] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000008
[ 1712.928964][ T1109] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1712.936940][ T1109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1712.944914][ T1109] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
13:50:05 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:06 executing program 0:
symlinkat(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00')

[ 1712.952908][ T1109]  </TASK>
[ 1712.972629][ T1108] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1712.977256][ T1109] memory: usage 10380kB, limit 0kB, failcnt 299
[ 1712.986136][ T1109] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1712.993010][ T1109] Memory cgroup stats for /syz1:
[ 1712.993200][ T1109] anon 0
[ 1713.003378][ T1109] file 10125312
[ 1713.008163][ T1109] kernel 303104
[ 1713.008402][T14048] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1713.011942][ T1109] kernel_stack 0
[ 1713.027285][ T1109] pagetables 0
[ 1713.030958][ T1109] sec_pagetables 0
[ 1713.036207][ T1109] percpu 0
[ 1713.039563][ T1109] sock 0
[ 1713.042827][ T1109] vmalloc 0
[ 1713.046372][ T1109] shmem 10125312
[ 1713.050300][ T1109] zswap 0
[ 1713.053707][ T1109] zswapped 0
[ 1713.057247][ T1109] file_mapped 299008
[ 1713.061508][ T1109] file_dirty 0
[ 1713.065439][ T1109] file_writeback 0
[ 1713.069516][ T1109] swapcached 0
[ 1713.073344][ T1109] anon_thp 0
[ 1713.076948][ T1109] file_thp 0
[ 1713.080493][ T1109] shmem_thp 0
[ 1713.084257][ T1109] inactive_anon 0
[ 1713.088285][ T1109] active_anon 10125312
[ 1713.092912][ T1109] inactive_file 0
[ 1713.096959][ T1109] active_file 200704
[ 1713.101288][ T1109] unevictable 0
13:50:06 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

[ 1713.105286][ T1109] slab_reclaimable 267560
[ 1713.111158][ T1109] slab_unreclaimable 28328
[ 1713.117583][ T1109] slab 295888
[ 1713.121217][ T1109] workingset_refault_anon 0
[ 1713.126335][ T1109] workingset_refault_file 0
[ 1713.131282][ T1109] workingset_activate_anon 0
[ 1713.136585][ T1109] workingset_activate_file 0
[ 1713.141603][ T1109] workingset_restore_anon 0
[ 1713.146872][ T1109] workingset_restore_file 0
13:50:06 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$eJxiGAWjYBSMWPDo4dcHvU4WIToMDAw8DCoM7FDxF8wINUxI6u/MLNWeaus6Z9PtpUfy+Gp3oZvHyMDA8P8/8fazMDAwHHBkZiiB8v//R9WtAqVDGJjg7FAGJgZNKDucgZFBD8pOYGBiCIOyUxkYGSKh7Cwkdj5IvZ5eWmZOql5yfk4KiGEAIgxBhBGIMEZ339tGRoYUJPcxIskXV1ZlJ+bkpBYhMVigclikyGIQCr+3jkwMtkjuA8VXREdzI4gPCxsDpPAzZGBiMISyjRkYGYKhbAsGdljYQIIEyf9SLAjzmQn4f9AwBHUHhTNGGVBG3+BwBn6G2NtdpzGlng68w4YYA1E+/V/IyKCOVD6xIJUf+iW5BfrFlVW6mbmJ6anpqXlGRsZmBiYGBqZG+uCCCELiKf84weUTF5L5rDjUsjGyMVQklpQUGUJION8IQiKVuMHb8t+A9TAxMJQwNDIxaChDzACV/Wx4ymNGKGYC0yCWBjMe5aNgFIyCUTAKRsEoGAWjYBSMglEwCkbBKBgFo2AUjIJRQAKQZ2AEj4ISAEYBYNWAAAAA//+mdHi4")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

[ 1713.151822][ T1109] workingset_nodereclaim 0
[ 1713.156912][ T1109] pgscan 83271
[ 1713.160638][ T1109] pgsteal 43
[ 1713.164379][ T1109] pgscan_kswapd 0
[ 1713.168320][ T1109] pgscan_direct 83271
[ 1713.172843][ T1109] pgscan_khugepaged 0
[ 1713.177236][ T1109] pgsteal_kswapd 0
[ 1713.181366][ T1109] pgsteal_direct 43
[ 1713.185689][ T1109] pgsteal_khugepaged 0
[ 1713.190147][ T1109] pgfault 627707
[ 1713.195258][ T1109] pgmajfault 6
[ 1713.199052][ T1109] pgrefill 1296492
13:50:06 executing program 0:
openat$dir(0xffffffffffffff9c, &(0x7f00000008c0)='./file0\x00', 0x2940, 0x0)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000000)='./file0\x00', 0x200014c)

[ 1713.203302][ T1109] pgactivate 83214
[ 1713.207377][ T1109] pgdeactivate 0
[ 1713.212680][ T1109] pglazyfree 0
[ 1713.216402][ T1109] pglazyfreed 0
[ 1713.220167][ T1109] zswpin 0
[ 1713.223560][ T1109] zswpout 0
[ 1713.226979][ T1109] thp_fault_alloc 0
[ 1713.231155][ T1109] thp_collapse_alloc 0
[ 1713.235683][ T1109] Out of memory and no killable processes...
13:50:06 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
open(&(0x7f0000000100)='./file0\x00', 0x0, 0x100)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1713.359735][ T1114] loop2: detected capacity change from 0 to 64
[ 1713.372447][T14048] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
13:50:06 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf3b727cf6c5c720be7ff98322e5248012d8181dedd0e45eb1ed34c50067820fee5a52720a19d0fa61e42399dffa9e1bd79c6f819eae9e2266947bb59100a7add03e23cf3de1258354ab5c89dad58beb0df31879b29bafd49f5f6008405bec0a7826f79a", 0xe7}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1713.446562][ T1119] loop4: detected capacity change from 0 to 16
[ 1713.473052][ T1118] loop5: detected capacity change from 0 to 64
[ 1713.505195][ T1119] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1713.508564][ T1121] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1713.525837][ T1121] CPU: 0 PID: 1121 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1713.535333][ T1121] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1713.545412][ T1121] Call Trace:
[ 1713.548713][ T1121]  <TASK>
[ 1713.551662][ T1121]  dump_stack_lvl+0x136/0x150
[ 1713.556376][ T1121]  dump_header+0x10a/0xd70
[ 1713.560824][ T1121]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1713.566932][ T1121]  out_of_memory+0xd6c/0x1650
[ 1713.571662][ T1121]  ? oom_killer_disable+0x2b0/0x2b0
[ 1713.576906][ T1121]  ? kernfs_notify+0x1ac/0x410
[ 1713.581704][ T1121]  ? find_held_lock+0x2d/0x110
[ 1713.586511][ T1121]  mem_cgroup_out_of_memory+0x206/0x270
[ 1713.592103][ T1121]  ? mem_cgroup_margin+0x130/0x130
[ 1713.597269][ T1121]  ? _raw_spin_unlock_irqrestore+0x54/0x70
13:50:06 executing program 0:
openat$dir(0xffffffffffffff9c, &(0x7f00000008c0)='./file0\x00', 0x2940, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)

13:50:06 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:06 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)

[ 1713.603118][ T1121]  memory_max_write+0x2f9/0x3c0
[ 1713.608004][ T1121]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1713.614111][ T1121]  ? lock_sync+0x190/0x190
[ 1713.618575][ T1121]  cgroup_file_write+0x1e2/0x7b0
[ 1713.623545][ T1121]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1713.629645][ T1121]  ? kill_css+0x3b0/0x3b0
[ 1713.634012][ T1121]  ? lock_acquire+0x32/0xc0
[ 1713.638565][ T1121]  ? kill_css+0x3b0/0x3b0
[ 1713.642928][ T1121]  kernfs_fop_write_iter+0x3f1/0x600
[ 1713.648255][ T1121]  vfs_write+0xa1d/0xe40
[ 1713.652537][ T1121]  ? kernel_write+0x670/0x670
[ 1713.657250][ T1121]  ? receive_fd+0x110/0x110
[ 1713.661829][ T1121]  ? __fget_files+0x26a/0x480
[ 1713.666552][ T1121]  ksys_write+0x12b/0x250
[ 1713.670925][ T1121]  ? __ia32_sys_read+0xb0/0xb0
[ 1713.675735][ T1121]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1713.681696][ T1121]  do_syscall_64+0x39/0xb0
[ 1713.686160][ T1121]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1713.692096][ T1121] RIP: 0033:0x7fab35c8c169
[ 1713.696540][ T1121] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1713.716186][ T1121] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1713.724637][ T1121] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1713.732646][ T1121] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000007
[ 1713.740659][ T1121] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1713.748662][ T1121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
13:50:06 executing program 0:
mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0)
munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000)

[ 1713.756665][ T1121] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1713.764696][ T1121]  </TASK>
[ 1713.788167][ T1121] memory: usage 10372kB, limit 0kB, failcnt 299
[ 1713.794475][ T1121] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1713.801621][ T1121] Memory cgroup stats for /syz1:
13:50:06 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1713.801885][ T1121] anon 0
[ 1713.812061][ T1121] file 10125312
[ 1713.815882][ T1121] kernel 294912
[ 1713.819684][ T1121] kernel_stack 0
[ 1713.823615][ T1121] pagetables 0
[ 1713.827331][ T1121] sec_pagetables 0
[ 1713.831421][ T1121] percpu 0
[ 1713.834800][ T1121] sock 0
[ 1713.837918][ T1121] vmalloc 0
[ 1713.841310][ T1121] shmem 10125312
[ 1713.845265][ T1121] zswap 0
[ 1713.848504][ T1121] zswapped 0
[ 1713.852040][ T1121] file_mapped 299008
[ 1713.856325][ T1121] file_dirty 0
[ 1713.860044][ T1121] file_writeback 0
[ 1713.864135][ T1121] swapcached 0
[ 1713.867866][ T1121] anon_thp 0
[ 1713.871484][ T1121] file_thp 0
[ 1713.875058][ T1121] shmem_thp 0
[ 1713.878645][ T1121] inactive_anon 0
[ 1713.882657][ T1121] active_anon 10125312
[ 1713.887045][ T1121] inactive_file 0
[ 1713.891029][ T1121] active_file 200704
[ 1713.895315][ T1121] unevictable 0
[ 1713.899094][ T1121] slab_reclaimable 264992
[ 1713.903833][ T1121] slab_unreclaimable 28328
[ 1713.908657][ T1121] slab 293320
[ 1713.912295][ T1121] workingset_refault_anon 0
[ 1713.917218][ T1121] workingset_refault_file 0
[ 1713.922217][ T1121] workingset_activate_anon 0
[ 1713.927217][ T1121] workingset_activate_file 0
[ 1713.932291][ T1121] workingset_restore_anon 0
[ 1713.937207][ T1121] workingset_restore_file 0
[ 1713.942206][ T1121] workingset_nodereclaim 0
[ 1713.947040][ T1121] pgscan 84839
[ 1713.950703][ T1121] pgsteal 43
[ 1713.954237][ T1121] pgscan_kswapd 0
13:50:07 executing program 0:
mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0)
munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000)

[ 1713.958216][ T1121] pgscan_direct 84839
[ 1713.962613][ T1121] pgscan_khugepaged 0
[ 1713.967013][ T1121] pgsteal_kswapd 0
[ 1713.971068][ T1121] pgsteal_direct 43
[ 1713.975274][ T1121] pgsteal_khugepaged 0
[ 1713.979705][ T1121] pgfault 627707
[ 1713.983610][ T1121] pgmajfault 6
[ 1713.987322][ T1121] pgrefill 1296492
[ 1713.991387][ T1121] pgactivate 84782
[ 1713.995586][ T1121] pgdeactivate 0
[ 1713.999513][ T1121] pglazyfree 0
[ 1714.003245][ T1121] pglazyfreed 0
[ 1714.007062][ T1121] zswpin 0
[ 1714.010379][ T1121] zswpout 0
[ 1714.013821][ T1121] thp_fault_alloc 0
[ 1714.017973][ T1121] thp_collapse_alloc 0
[ 1714.022438][ T1121] Out of memory and no killable processes...
13:50:07 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1714.164671][ T1128] loop4: detected capacity change from 0 to 16
[ 1714.216190][ T1134] loop5: detected capacity change from 0 to 64
[ 1714.245750][ T1135] loop2: detected capacity change from 0 to 64
[ 1714.253869][ T1128] erofs: (device loop4): mounted with root inode @ nid 36.
13:50:07 executing program 0:
mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0)
munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000)

[ 1714.341094][T14048] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
13:50:07 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

[ 1714.398644][ T1139] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1714.409963][ T1139] CPU: 0 PID: 1139 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1714.419464][ T1139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1714.429553][ T1139] Call Trace:
[ 1714.432849][ T1139]  <TASK>
[ 1714.435798][ T1139]  dump_stack_lvl+0x136/0x150
[ 1714.440521][ T1139]  dump_header+0x10a/0xd70
13:50:07 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1714.444973][ T1139]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1714.451083][ T1139]  out_of_memory+0xd6c/0x1650
[ 1714.455806][ T1139]  ? oom_killer_disable+0x2b0/0x2b0
[ 1714.461041][ T1139]  ? kernfs_notify+0x1ac/0x410
[ 1714.465840][ T1139]  ? find_held_lock+0x2d/0x110
[ 1714.470650][ T1139]  mem_cgroup_out_of_memory+0x206/0x270
[ 1714.476235][ T1139]  ? mem_cgroup_margin+0x130/0x130
[ 1714.481390][ T1139]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1714.487238][ T1139]  memory_max_write+0x2f9/0x3c0
[ 1714.492127][ T1139]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1714.498233][ T1139]  ? lock_sync+0x190/0x190
[ 1714.502699][ T1139]  cgroup_file_write+0x1e2/0x7b0
[ 1714.507709][ T1139]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1714.513823][ T1139]  ? kill_css+0x3b0/0x3b0
[ 1714.518186][ T1139]  ? lock_acquire+0x32/0xc0
[ 1714.522736][ T1139]  ? kill_css+0x3b0/0x3b0
[ 1714.527274][ T1139]  kernfs_fop_write_iter+0x3f1/0x600
[ 1714.532596][ T1139]  vfs_write+0xa1d/0xe40
[ 1714.536864][ T1139]  ? kernel_write+0x670/0x670
[ 1714.541560][ T1139]  ? receive_fd+0x110/0x110
[ 1714.546083][ T1139]  ? __fget_files+0x26a/0x480
[ 1714.550792][ T1139]  ksys_write+0x12b/0x250
[ 1714.555141][ T1139]  ? __ia32_sys_read+0xb0/0xb0
[ 1714.559925][ T1139]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1714.565870][ T1139]  do_syscall_64+0x39/0xb0
[ 1714.570301][ T1139]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1714.576221][ T1139] RIP: 0033:0x7fab35c8c169
[ 1714.580643][ T1139] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1714.600261][ T1139] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1714.608690][ T1139] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1714.616666][ T1139] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000006
[ 1714.624655][ T1139] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1714.632631][ T1139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1714.640613][ T1139] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1714.648607][ T1139]  </TASK>
[ 1714.672313][ T1139] memory: usage 10372kB, limit 0kB, failcnt 299
[ 1714.678826][ T1139] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1714.685704][ T1139] Memory cgroup stats for /syz1:
[ 1714.685935][ T1139] anon 0
[ 1714.695778][ T1139] file 10125312
[ 1714.699618][ T1139] kernel 294912
[ 1714.703450][ T1139] kernel_stack 0
[ 1714.707275][ T1139] pagetables 0
[ 1714.710918][ T1139] sec_pagetables 0
[ 1714.715049][ T1139] percpu 0
[ 1714.718374][ T1139] sock 0
13:50:07 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)

[ 1714.721571][ T1139] vmalloc 0
[ 1714.725016][ T1139] shmem 10125312
[ 1714.728886][ T1139] zswap 0
[ 1714.732141][ T1139] zswapped 0
[ 1714.735685][ T1139] file_mapped 299008
[ 1714.739922][ T1139] file_dirty 0
[ 1714.743663][ T1139] file_writeback 0
[ 1714.747717][ T1139] swapcached 0
[ 1714.751364][ T1139] anon_thp 0
[ 1714.755026][ T1139] file_thp 0
[ 1714.758528][ T1139] shmem_thp 0
[ 1714.762198][ T1139] inactive_anon 0
[ 1714.765015][T25963] udevd[25963]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1714.766127][ T1139] active_anon 10125312
[ 1714.785039][ T1139] inactive_file 0
[ 1714.789045][ T1139] active_file 200704
[ 1714.793349][ T1139] unevictable 0
[ 1714.797100][ T1139] slab_reclaimable 264992
[ 1714.801803][ T1139] slab_unreclaimable 28328
[ 1714.806737][ T1139] slab 293320
[ 1714.810324][ T1139] workingset_refault_anon 0
[ 1714.815258][ T1139] workingset_refault_file 0
[ 1714.820149][ T1139] workingset_activate_anon 0
[ 1714.825199][ T1139] workingset_activate_file 0
[ 1714.830173][ T1139] workingset_restore_anon 0
[ 1714.835107][ T1139] workingset_restore_file 0
[ 1714.840000][ T1139] workingset_nodereclaim 0
[ 1714.844867][ T1139] pgscan 86407
[ 1714.848579][ T1139] pgsteal 43
[ 1714.852086][ T1139] pgscan_kswapd 0
[ 1714.856078][ T1139] pgscan_direct 86407
[ 1714.860410][ T1139] pgscan_khugepaged 0
[ 1714.864858][ T1139] pgsteal_kswapd 0
[ 1714.868937][ T1139] pgsteal_direct 43
[ 1714.873151][ T1139] pgsteal_khugepaged 0
[ 1714.877560][ T1139] pgfault 627707
[ 1714.881424][ T1139] pgmajfault 6
[ 1714.885159][ T1139] pgrefill 1296492
[ 1714.889179][ T1139] pgactivate 86350
[ 1714.893316][ T1139] pgdeactivate 0
[ 1714.897167][ T1139] pglazyfree 0
[ 1714.900874][ T1139] pglazyfreed 0
[ 1714.904704][ T1139] zswpin 0
[ 1714.908040][ T1139] zswpout 0
[ 1714.911448][ T1139] thp_fault_alloc 0
[ 1714.915650][ T1139] thp_collapse_alloc 0
[ 1714.920110][ T1139] Out of memory and no killable processes...
[ 1714.992661][T27653] udevd[27653]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1714.993023][T25963] udevd[25963]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1715.092667][T27653] udevd[27653]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1715.106223][T14048] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1715.134748][ T1145] loop4: detected capacity change from 0 to 16
[ 1715.147438][ T1146] loop2: detected capacity change from 0 to 64
[ 1715.163097][ T1147] loop5: detected capacity change from 0 to 64
[ 1715.172673][ T1145] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1715.234402][T27653] udevd[27653]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1715.270544][T25963] udevd[25963]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1715.340681][T25977] udevd[25977]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1715.385483][T27653] udevd[27653]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1715.443977][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1716.543339][T14048] hsr_slave_0: left promiscuous mode
[ 1716.550290][T14048] hsr_slave_1: left promiscuous mode
[ 1716.558636][T14048] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1716.568070][T14048] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1716.579945][T14048] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1716.588724][T14048] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1716.611329][T14048] bridge_slave_1: left allmulticast mode
[ 1716.617800][T14048] bridge_slave_1: left promiscuous mode
[ 1716.624875][T14048] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1716.635918][T14048] bridge_slave_0: left allmulticast mode
[ 1716.642694][T14048] bridge_slave_0: left promiscuous mode
[ 1716.648978][T14048] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1716.671488][T14048] veth1_macvtap: left promiscuous mode
[ 1716.677785][T14048] veth0_macvtap: left promiscuous mode
[ 1716.684808][T14048] veth1_vlan: left promiscuous mode
[ 1716.690685][T14048] veth0_vlan: left promiscuous mode
[ 1717.124728][T14048] team0 (unregistering): Port device team_slave_1 removed
[ 1717.150886][T14048] team0 (unregistering): Port device team_slave_0 removed
[ 1717.163649][T16241] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1717.173415][T16241] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1717.188634][T16241] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1717.199910][T16241] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1717.205585][T14048] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1717.217443][T16241] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1717.230581][T16241] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1717.253986][T14048] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1717.363077][T14048] bond0 (unregistering): Released all slaves
[ 1717.764952][ T1178] chnl_net:caif_netlink_parms(): no params data found
[ 1717.940245][ T1178] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1717.949996][ T1178] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1717.964673][ T1178] bridge_slave_0: entered allmulticast mode
[ 1717.971862][ T1178] bridge_slave_0: entered promiscuous mode
[ 1717.985513][ T1178] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1717.993349][ T1178] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1718.001359][ T1178] bridge_slave_1: entered allmulticast mode
[ 1718.010763][ T1178] bridge_slave_1: entered promiscuous mode
[ 1718.070491][ T1178] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1718.085303][ T1178] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1718.156280][ T1178] team0: Port device team_slave_0 added
[ 1718.180213][ T1178] team0: Port device team_slave_1 added
[ 1718.238525][ T1178] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1718.260751][ T1178] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1718.340567][ T1178] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1718.380722][ T1178] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1718.402358][ T1178] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1718.430647][ T1178] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1718.504109][ T1178] hsr_slave_0: entered promiscuous mode
[ 1718.522806][ T1178] hsr_slave_1: entered promiscuous mode
[ 1718.529938][ T1178] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1718.549155][ T1178] Cannot create hsr debugfs directory
[ 1719.272591][T25866] Bluetooth: hci0: command 0x0409 tx timeout
[ 1720.435201][ T1178] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1720.447973][ T1178] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1720.460508][ T1178] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1720.475731][ T1178] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1720.664173][ T1178] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1720.688505][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1720.698364][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1720.713961][ T1178] 8021q: adding VLAN 0 to HW filter on device team0
[ 1720.730602][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1720.753147][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1720.771470][T11532] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1720.779317][T11532] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1720.831755][T25481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1720.852762][T25481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1720.863895][T25481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1720.873843][T25481] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1720.881293][T25481] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1720.889823][T25481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1720.905620][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1720.948014][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1720.965738][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1720.981390][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1720.999776][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1721.009996][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1721.026192][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1721.045045][ T1178] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1721.080698][ T1178] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1721.091829][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1721.109378][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1721.119787][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1721.352642][T25866] Bluetooth: hci0: command 0x041b tx timeout
[ 1721.377170][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1721.388567][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1721.409155][ T1178] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1721.453523][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1721.470439][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1721.523260][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1721.533653][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1721.543460][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1721.551497][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1721.568199][ T1178] veth0_vlan: entered promiscuous mode
[ 1721.588297][ T1178] veth1_vlan: entered promiscuous mode
[ 1721.626374][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1721.637082][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1721.647749][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1721.668269][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1721.694593][ T1178] veth0_macvtap: entered promiscuous mode
[ 1721.705898][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1721.719703][ T1178] veth1_macvtap: entered promiscuous mode
[ 1721.748816][ T1178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1721.767401][ T1178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1721.780254][ T1178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1721.795677][ T1178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1721.808559][ T1178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1721.820778][ T1178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1721.831138][ T1178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1721.851126][ T1178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1721.861469][ T1178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1721.872875][ T1178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1721.884961][ T1178] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1721.904096][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1721.923280][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1721.941709][ T1178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1721.956353][ T1178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1721.967952][ T1178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1721.979551][ T1178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1721.991243][ T1178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1722.003680][ T1178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1722.014918][ T1178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1722.026885][ T1178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1722.037142][ T1178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1722.048038][ T1178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1722.060024][ T1178] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1722.082720][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1722.095129][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1722.114740][ T1178] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1722.131870][ T1178] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1722.141284][ T1178] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1722.157617][ T1178] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1722.266539][T14075] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1722.291657][T14075] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1722.333160][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1722.361230][T14075] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1722.377822][T14075] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1722.415367][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1723.436239][T25866] Bluetooth: hci0: command 0x040f tx timeout
13:50:16 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:16 executing program 0:
mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0)
munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000)

13:50:16 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)

13:50:16 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:16 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:16 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf3b727cf6c5c720be7ff98322e5248012d8181dedd0e45eb1ed34c50067820fee5a52720a19d0fa61e42399dffa9e1bd79c6f819eae9e2266947bb59100a7add03e23cf3de1258354ab5c89dad58beb0df31879b29bafd49f5f6008405bec0a7826f79a", 0xe7}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1723.599469][ T1300] loop4: detected capacity change from 0 to 16
[ 1723.648770][ T1305] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1723.653097][ T1300] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1723.660400][ T1305] CPU: 1 PID: 1305 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1723.676955][ T1305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1723.687022][ T1305] Call Trace:
[ 1723.690306][ T1305]  <TASK>
[ 1723.693245][ T1305]  dump_stack_lvl+0x136/0x150
[ 1723.697948][ T1305]  dump_header+0x10a/0xd70
[ 1723.702384][ T1305]  oom_kill_process+0x25d/0x600
[ 1723.707252][ T1305]  out_of_memory+0x35c/0x1650
[ 1723.711959][ T1305]  ? oom_killer_disable+0x2b0/0x2b0
[ 1723.717177][ T1305]  ? find_held_lock+0x2d/0x110
[ 1723.721968][ T1305]  mem_cgroup_out_of_memory+0x206/0x270
[ 1723.727554][ T1305]  ? mem_cgroup_margin+0x130/0x130
[ 1723.732701][ T1305]  ? cgroup_file_notify+0x26/0x1b0
[ 1723.737849][ T1305]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1723.743684][ T1305]  memory_max_write+0x2f9/0x3c0
[ 1723.748567][ T1305]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1723.754661][ T1305]  ? lock_sync+0x190/0x190
[ 1723.759108][ T1305]  cgroup_file_write+0x1e2/0x7b0
[ 1723.764065][ T1305]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1723.770147][ T1305]  ? kill_css+0x3b0/0x3b0
[ 1723.774503][ T1305]  ? lock_acquire+0x32/0xc0
[ 1723.779038][ T1305]  ? kill_css+0x3b0/0x3b0
[ 1723.783385][ T1305]  kernfs_fop_write_iter+0x3f1/0x600
[ 1723.788703][ T1305]  vfs_write+0xa1d/0xe40
[ 1723.793001][ T1305]  ? kernel_write+0x670/0x670
[ 1723.797712][ T1305]  ? receive_fd+0x110/0x110
[ 1723.802251][ T1305]  ? __fget_files+0x26a/0x480
[ 1723.806963][ T1305]  ksys_write+0x12b/0x250
[ 1723.811312][ T1305]  ? __ia32_sys_read+0xb0/0xb0
[ 1723.816095][ T1305]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1723.822029][ T1305]  do_syscall_64+0x39/0xb0
[ 1723.826464][ T1305]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1723.832374][ T1305] RIP: 0033:0x7fab35c8c169
[ 1723.836799][ T1305] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1723.856420][ T1305] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1723.864846][ T1305] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1723.872825][ T1305] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000006
[ 1723.880823][ T1305] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1723.888806][ T1305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1723.896814][ T1305] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1723.904814][ T1305]  </TASK>
[ 1723.910213][ T1305] memory: usage 10524kB, limit 0kB, failcnt 304
[ 1723.917461][ T1305] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1723.924494][ T1305] Memory cgroup stats for /syz1:
[ 1723.924741][ T1305] anon 49152
[ 1723.927153][ T1304] loop2: detected capacity change from 0 to 64
[ 1723.929673][ T1305] file 10125312
[ 1723.929687][ T1305] kernel 393216
13:50:16 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:17 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x2)
sendmsg$netlink(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000001c0)={0xec4, 0x0, 0x0, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @nested={0xea5, 0x0, 0x0, 0x1, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @generic="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"]}]}, 0xec4}], 0x1}, 0x0)

[ 1723.929697][ T1305] kernel_stack 32768
[ 1723.929708][ T1305] pagetables 16384
[ 1723.929720][ T1305] sec_pagetables 0
[ 1723.929731][ T1305] percpu 64
[ 1723.929743][ T1305] sock 0
[ 1723.929753][ T1305] vmalloc 0
[ 1723.929765][ T1305] shmem 10125312
[ 1723.929776][ T1305] zswap 0
[ 1723.929787][ T1305] zswapped 0
[ 1723.929799][ T1305] file_mapped 299008
[ 1723.929810][ T1305] file_dirty 0
[ 1723.929821][ T1305] file_writeback 0
[ 1723.929833][ T1305] swapcached 0
[ 1723.929844][ T1305] anon_thp 0
[ 1723.929855][ T1305] file_thp 0
[ 1723.929866][ T1305] shmem_thp 0
[ 1723.929877][ T1305] inactive_anon 10125312
[ 1723.929889][ T1305] active_anon 49152
[ 1723.929900][ T1305] inactive_file 0
[ 1723.929912][ T1305] active_file 0
[ 1723.929922][ T1305] unevictable 0
[ 1723.929932][ T1305] slab_reclaimable 270648
[ 1724.027540][ T1305] slab_unreclaimable 59744
[ 1724.031972][ T1305] slab 330392
[ 1724.035439][ T1305] workingset_refault_anon 0
[ 1724.039964][ T1305] workingset_refault_file 0
[ 1724.044725][ T1305] workingset_activate_anon 0
[ 1724.049335][ T1305] workingset_activate_file 0
[ 1724.054095][ T1305] workingset_restore_anon 0
[ 1724.058613][ T1305] workingset_restore_file 0
[ 1724.063334][ T1305] workingset_nodereclaim 0
[ 1724.068604][ T1305] pgscan 87828
[ 1724.072004][ T1305] pgsteal 43
[ 1724.075373][ T1305] pgscan_kswapd 0
[ 1724.079025][ T1305] pgscan_direct 87828
[ 1724.083194][ T1305] pgscan_khugepaged 0
[ 1724.087204][ T1305] pgsteal_kswapd 0
[ 1724.090942][ T1305] pgsteal_direct 43
[ 1724.095056][ T1305] pgsteal_khugepaged 0
13:50:17 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
getdents64(0xffffffffffffffff, &(0x7f0000000000)=""/48, 0x30)
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(0xffffffffffffffff, &(0x7f00000000c0)=""/134, 0x86)

[ 1724.099188][ T1305] pgfault 631938
[ 1724.102930][ T1305] pgmajfault 6
[ 1724.106317][ T1305] pgrefill 1296492
[ 1724.110045][ T1305] pgactivate 87722
[ 1724.114438][ T1305] pgdeactivate 0
[ 1724.118003][ T1305] pglazyfree 0
[ 1724.121391][ T1305] pglazyfreed 0
[ 1724.125023][ T1305] zswpin 0
[ 1724.128065][ T1305] zswpout 0
[ 1724.131193][ T1305] thp_fault_alloc 0
[ 1724.135186][ T1305] thp_collapse_alloc 0
[ 1724.139273][ T1305] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=1178,uid=0
[ 1724.155080][ T1305] Memory cgroup out of memory: Killed process 1178 (syz-executor.1) total-vm:50576kB, anon-rss:368kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
13:50:17 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
lseek(0xffffffffffffffff, 0xfffffffffffffff8, 0x2)
getdents64(0xffffffffffffffff, 0x0, 0x0)

13:50:17 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:17 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000700)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@enum={0x4}]}, {0x0, [0x0, 0x0, 0x0]}}, &(0x7f0000000600)=""/219, 0x29, 0xdb, 0x1}, 0x20)

13:50:17 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:17 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

[ 1724.547762][ T1314] loop2: detected capacity change from 0 to 64
[ 1724.585513][ T1316] loop4: detected capacity change from 0 to 16
13:50:17 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@delqdisc={0x24, 0x25, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r1}}, 0x24}}, 0x0)

[ 1724.646828][ T1316] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1724.681839][ T1322] loop5: detected capacity change from 0 to 64
[ 1724.721123][ T1320] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1724.731543][ T1320] CPU: 1 PID: 1320 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1724.741043][ T1320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1724.751138][ T1320] Call Trace:
[ 1724.754449][ T1320]  <TASK>
[ 1724.757416][ T1320]  dump_stack_lvl+0x136/0x150
[ 1724.762139][ T1320]  dump_header+0x10a/0xd70
13:50:17 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
lseek(0xffffffffffffffff, 0xfffffffffffffff8, 0x2)
getdents64(0xffffffffffffffff, 0x0, 0x0)

[ 1724.766631][ T1320]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1724.772746][ T1320]  out_of_memory+0xd6c/0x1650
[ 1724.777474][ T1320]  ? oom_killer_disable+0x2b0/0x2b0
[ 1724.782712][ T1320]  ? kernfs_notify+0x1ac/0x410
[ 1724.787511][ T1320]  ? find_held_lock+0x2d/0x110
[ 1724.792318][ T1320]  mem_cgroup_out_of_memory+0x206/0x270
[ 1724.797912][ T1320]  ? mem_cgroup_margin+0x130/0x130
[ 1724.803093][ T1320]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1724.808946][ T1320]  memory_max_write+0x2f9/0x3c0
[ 1724.813835][ T1320]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1724.820023][ T1320]  ? lock_sync+0x190/0x190
[ 1724.824478][ T1320]  cgroup_file_write+0x1e2/0x7b0
[ 1724.829445][ T1320]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1724.835538][ T1320]  ? kill_css+0x3b0/0x3b0
[ 1724.839898][ T1320]  ? lock_acquire+0x32/0xc0
[ 1724.844439][ T1320]  ? kill_css+0x3b0/0x3b0
[ 1724.848787][ T1320]  kernfs_fop_write_iter+0x3f1/0x600
[ 1724.854102][ T1320]  vfs_write+0xa1d/0xe40
[ 1724.858369][ T1320]  ? kernel_write+0x670/0x670
[ 1724.863065][ T1320]  ? receive_fd+0x110/0x110
[ 1724.867596][ T1320]  ? __fget_files+0x26a/0x480
[ 1724.872305][ T1320]  ksys_write+0x12b/0x250
[ 1724.876661][ T1320]  ? __ia32_sys_read+0xb0/0xb0
[ 1724.881443][ T1320]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1724.887371][ T1320]  do_syscall_64+0x39/0xb0
[ 1724.891804][ T1320]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1724.897716][ T1320] RIP: 0033:0x7fab35c8c169
[ 1724.902142][ T1320] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1724.921765][ T1320] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1724.930194][ T1320] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1724.938176][ T1320] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000006
[ 1724.946312][ T1320] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1724.954300][ T1320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1724.962283][ T1320] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1724.970287][ T1320]  </TASK>
[ 1724.975845][ T1320] memory: usage 10384kB, limit 0kB, failcnt 335
[ 1724.982280][ T1320] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1724.989886][ T1320] Memory cgroup stats for /syz1:
[ 1724.990124][ T1320] anon 0
[ 1724.998081][ T1320] file 10125312
[ 1725.001558][ T1320] kernel 307200
[ 1725.005162][ T1320] kernel_stack 0
[ 1725.008728][ T1320] pagetables 0
[ 1725.012286][ T1320] sec_pagetables 0
[ 1725.016022][ T1320] percpu 0
[ 1725.019066][ T1320] sock 0
13:50:18 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
getdents64(0xffffffffffffffff, &(0x7f0000000000)=""/48, 0x30)
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(0xffffffffffffffff, &(0x7f00000000c0)=""/134, 0x86)

[ 1725.021936][ T1320] vmalloc 0
[ 1725.025279][ T1320] shmem 10125312
[ 1725.028844][ T1320] zswap 0
[ 1725.031796][ T1320] zswapped 0
[ 1725.035147][ T1320] file_mapped 299008
[ 1725.039061][ T1320] file_dirty 0
[ 1725.042829][ T1320] file_writeback 0
[ 1725.046574][ T1320] swapcached 0
[ 1725.049967][ T1320] anon_thp 0
[ 1725.053356][ T1320] file_thp 0
[ 1725.056573][ T1320] shmem_thp 0
[ 1725.059875][ T1320] inactive_anon 10125312
[ 1725.064291][ T1320] active_anon 0
[ 1725.067766][ T1320] inactive_file 0
[ 1725.071409][ T1320] active_file 200704
[ 1725.073971][T27653] udevd[27653]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1725.075508][ T1320] unevictable 0
[ 1725.093725][ T1320] slab_reclaimable 267560
[ 1725.098079][ T1320] slab_unreclaimable 33912
[ 1725.098998][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1725.102806][ T1320] slab 301472
[ 1725.102819][ T1320] workingset_refault_anon 0
[ 1725.102832][ T1320] workingset_refault_file 0
[ 1725.102845][ T1320] workingset_activate_anon 0
[ 1725.102856][ T1320] workingset_activate_file 0
[ 1725.102876][ T1320] workingset_restore_anon 0
[ 1725.140724][ T1320] workingset_restore_file 0
[ 1725.145432][ T1320] workingset_nodereclaim 0
[ 1725.149869][ T1320] pgscan 92434
[ 1725.153468][ T1320] pgsteal 43
[ 1725.156695][ T1320] pgscan_kswapd 0
[ 1725.160351][ T1320] pgscan_direct 92434
[ 1725.164562][ T1320] pgscan_khugepaged 0
[ 1725.168566][ T1320] pgsteal_kswapd 0
[ 1725.171553][T25977] udevd[25977]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1725.172333][ T1320] pgsteal_direct 43
[ 1725.172347][ T1320] pgsteal_khugepaged 0
[ 1725.172359][ T1320] pgfault 631938
[ 1725.172371][ T1320] pgmajfault 6
[ 1725.172383][ T1320] pgrefill 1296492
[ 1725.172394][ T1320] pgactivate 92377
[ 1725.172406][ T1320] pgdeactivate 0
[ 1725.172417][ T1320] pglazyfree 0
[ 1725.172428][ T1320] pglazyfreed 0
[ 1725.172438][ T1320] zswpin 0
[ 1725.172449][ T1320] zswpout 0
[ 1725.172459][ T1320] thp_fault_alloc 0
[ 1725.172471][ T1320] thp_collapse_alloc 0
[ 1725.172482][ T1320] Out of memory and no killable processes...
[ 1725.355338][ T1327] loop4: detected capacity change from 0 to 16
[ 1725.372673][ T1327] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1725.374810][ T1328] loop2: detected capacity change from 0 to 64
[ 1725.430380][T25963] udevd[25963]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1725.448789][T27653] udevd[27653]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
13:50:19 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf3b727cf6c5c720be7ff98322e5248012d8181dedd0e45eb1ed34c50067820fee5a52720a19d0fa61e42399dffa9e1bd79c6f819eae9e2266947bb59100a7add03e23cf3de1258354ab5c89dad58beb0df31879b29bafd49f5f6008405bec0a7826f79a3331dda2e1cc00970a3cd22d1f318bce", 0xf7}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:50:19 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:19 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:19 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x89a1, &(0x7f0000000000)={'batadv_slave_1\x00'})

13:50:19 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$eJxiGAWjYBSMWPDo4dcHvU4WIToMDAw8DCoM7FDxF8wINUxI6u/MLNWeaus6Z9PtpUfy+Gp3oZvHyMDA8P8/8fazMDAwHHBkZiiB8v//R9WtAqVDGJjg7FAGJgZNKDucgZFBD8pOYGBiCIOyUxkYGSKh7Cwkdj5IvZ5eWmZOql5yfk4KiGEAIgxBhBGIMEZ339tGRoYUJPcxIskXV1ZlJ+bkpBYhMVigclikyGIQCr+3jkwMtkjuA8VXREdzI4gPCxsDpPAzZGBiMISyjRkYGYKhbAsGdljYQIIEyf9SLAjzmQn4f9AwBHUHhTNGGVBG3+BwBn6G2NtdpzGlng68w4YYA1E+/V/IyKCOVD6xIJUf+iW5BfrFlVW6mbmJ6anpqXlGRsZmBiYGBqZG+uCCCELiKf84weUTF5L5rDjUsjGyMVQklpQUGUJION8IQiKVuMHb8t+A9TAxMJQwNDIxaChDzACV/Wx4ymNGKGYC0yCWBjMe5aNgFIyCUTAKRsEoGAWjYBSMglEwCkbBKBgFo2AUjIJRQAKQZ2AEj4ISAEYBYNWAAAAA//+mdHi4")
lseek(0xffffffffffffffff, 0xfffffffffffffff8, 0x2)
getdents64(0xffffffffffffffff, 0x0, 0x0)

13:50:19 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
getdents64(0xffffffffffffffff, &(0x7f0000000000)=""/48, 0x30)
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(0xffffffffffffffff, &(0x7f00000000c0)=""/134, 0x86)

13:50:20 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@delqdisc={0x24, 0x25, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0x0, 0xb}}}, 0x24}}, 0x0)

13:50:20 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1726.969480][ T1331] loop5: detected capacity change from 0 to 64
[ 1726.991091][ T1337] loop2: detected capacity change from 0 to 64
[ 1726.993348][ T1338] loop4: detected capacity change from 0 to 16
13:50:20 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1727.076643][T25963] udevd[25963]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1727.092377][ T1338] erofs: (device loop4): mounted with root inode @ nid 36.
13:50:20 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:20 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

[ 1727.138929][T14075] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
13:50:20 executing program 0:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
ioctl$BTRFS_IOC_SCRUB_CANCEL(r0, 0x541b, 0x20000000)

13:50:20 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:20 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:20 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf3b727cf6c5c720be7ff98322e5248012d8181dedd0e45eb1ed34c50067820fee5a52720a19d0fa61e42399dffa9e1bd79c6f819eae9e2266947bb59100a7add03e23cf3de1258354ab5c89dad58beb0df31879b29bafd49f5f6008405bec0a7826f79a3331dda2e1cc00970a3cd22d1f318bce", 0xf7}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1727.403750][T14075] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1727.412905][ T1348] loop5: detected capacity change from 0 to 64
13:50:20 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

13:50:20 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:20 executing program 0:
r0 = socket(0x11, 0x3, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x8922, &(0x7f0000000080)={'ip6gre0\x00', 0x0})

13:50:20 executing program 3:
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:20 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1727.663359][T14075] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
13:50:20 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

[ 1727.773361][ T1361] loop5: detected capacity change from 0 to 64
[ 1727.795562][   T27] audit: type=1804 audit(1683381020.813:261): pid=1363 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2349659456/syzkaller.d2SjGS/1364/file0" dev="sda1" ino=1962 res=1 errno=0
13:50:20 executing program 3:
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:20 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:20 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'\x00', 0x4003})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0xffffff55, &(0x7f0000000000)={&(0x7f00000001c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
pread64(r0, &(0x7f00000000c0)=""/21, 0xe, 0x0)

13:50:20 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

[ 1727.908747][T14075] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1727.938016][T25963] udevd[25963]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
13:50:21 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

[ 1728.023886][   T27] audit: type=1804 audit(1683381021.043:262): pid=1371 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2349659456/syzkaller.d2SjGS/1365/file0" dev="sda1" ino=1946 res=1 errno=0
[ 1728.076934][ T1373] loop2: detected capacity change from 0 to 64
[ 1728.136060][ T1374] loop5: detected capacity change from 0 to 64
[ 1728.180584][T25963] udevd[25963]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1728.210523][ T1377] loop4: detected capacity change from 0 to 16
[ 1728.275406][ T1377] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1728.298229][T27653] udevd[27653]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1728.372990][ T1370] 0ªX¹¦Dö»: left allmulticast mode
[ 1728.411393][ T1370] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1728.434478][T25963] udevd[25963]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1728.482690][ T1370] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1728.589282][ T1370] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1729.884037][T14075] hsr_slave_0: left promiscuous mode
[ 1729.890824][T14075] hsr_slave_1: left promiscuous mode
[ 1729.899598][T14075] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1729.909438][T14075] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1729.921173][T14075] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1729.929873][T14075] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1729.941452][T14075] bridge_slave_1: left allmulticast mode
[ 1729.948080][T14075] bridge_slave_1: left promiscuous mode
[ 1729.954777][T14075] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1729.965721][T14075] bridge_slave_0: left allmulticast mode
[ 1729.971926][T14075] bridge_slave_0: left promiscuous mode
[ 1729.979124][T14075] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1730.002592][T14075] veth1_macvtap: left promiscuous mode
[ 1730.009541][T14075] veth0_macvtap: left promiscuous mode
[ 1730.016239][T14075] veth1_vlan: left promiscuous mode
[ 1730.031789][T14075] veth0_vlan: left promiscuous mode
[ 1730.396075][ T1216] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.412320][ T1216] ieee802154 phy1 wpan1: encryption failed: -22
[ 1730.457126][T14075] team0 (unregistering): Port device team_slave_1 removed
[ 1730.474128][T14075] team0 (unregistering): Port device team_slave_0 removed
[ 1730.506062][T14075] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1730.531569][T14075] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1730.655760][T16241] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1730.672537][T16241] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1730.696055][T16241] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1730.704361][T16241] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1730.712048][T16241] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1730.713791][T14075] bond0 (unregistering): Released all slaves
[ 1730.727377][T16241] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1731.182476][ T1407] chnl_net:caif_netlink_parms(): no params data found
[ 1731.353581][ T1407] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1731.360795][ T1407] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1731.392609][ T1407] bridge_slave_0: entered allmulticast mode
[ 1731.400756][ T1407] bridge_slave_0: entered promiscuous mode
[ 1731.455813][ T1407] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1731.472695][ T1407] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1731.480726][ T1407] bridge_slave_1: entered allmulticast mode
[ 1731.507691][ T1407] bridge_slave_1: entered promiscuous mode
[ 1731.595973][ T1407] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1731.626551][ T1407] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1731.733041][ T1407] team0: Port device team_slave_0 added
[ 1731.747575][ T1407] team0: Port device team_slave_1 added
[ 1731.804036][ T1407] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1731.811028][ T1407] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1731.838405][ T1407] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1731.854528][ T1407] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1731.861846][ T1407] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1731.889342][ T1407] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1731.957136][ T1407] hsr_slave_0: entered promiscuous mode
[ 1731.976813][ T1407] hsr_slave_1: entered promiscuous mode
[ 1731.990966][ T1407] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1732.003053][ T1407] Cannot create hsr debugfs directory
[ 1732.802241][T25866] Bluetooth: hci0: command 0x0409 tx timeout
[ 1733.347038][ T1407] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1733.359832][ T1407] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1733.380348][ T1407] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1733.392030][ T1407] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1733.521098][ T1407] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1733.549225][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1733.559138][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1733.583902][ T1407] 8021q: adding VLAN 0 to HW filter on device team0
[ 1733.600423][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1733.611616][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1733.621834][T11532] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1733.629751][T11532] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1733.679194][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1733.692077][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1733.708418][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1733.718307][T31218] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1733.726079][T31218] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1733.745488][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1733.783496][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1733.806067][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1733.817787][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1733.827995][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1733.840673][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1733.855943][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1733.876690][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1733.897627][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1733.926381][ T1407] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1733.941916][ T1407] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1733.972921][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1733.989778][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1734.395011][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1734.410044][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1734.438236][ T1407] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1734.461500][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1734.471077][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1734.510162][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1734.520593][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1734.538634][ T1407] veth0_vlan: entered promiscuous mode
[ 1734.549228][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1734.559964][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1734.577146][ T1407] veth1_vlan: entered promiscuous mode
[ 1734.616848][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1734.628487][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1734.639163][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1734.649648][T11532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1734.664992][ T1407] veth0_macvtap: entered promiscuous mode
[ 1734.684186][ T1407] veth1_macvtap: entered promiscuous mode
[ 1734.711155][ T1407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1734.726595][ T1407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1734.737837][ T1407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1734.749832][ T1407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1734.761593][ T1407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1734.773179][ T1407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1734.785120][ T1407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1734.796374][ T1407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1734.807218][ T1407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1734.819129][ T1407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1734.835120][ T1407] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1734.846919][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1734.857533][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1734.867815][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1734.879412][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1734.883269][T25866] Bluetooth: hci0: command 0x041b tx timeout
[ 1734.893221][ T1407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1734.908829][ T1407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1734.922069][ T1407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1734.946244][ T1407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1734.957204][ T1407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1734.967945][ T1407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1734.978954][ T1407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1735.001676][ T1407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1735.018461][ T1407] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1735.030709][ T1407] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1735.053612][ T1407] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1735.067516][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1735.085275][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1735.104788][ T1407] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1735.117496][ T1407] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1735.127417][ T1407] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1735.137343][ T1407] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1735.241386][T32665] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1735.263883][T32665] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1735.294369][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1735.316806][T32645] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1735.327011][T32645] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1735.344331][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
13:50:29 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:29 executing program 3:
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:29 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:29 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

13:50:29 executing program 0:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'\x00', 0x4003})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0xffffff55, &(0x7f0000000000)={&(0x7f00000001c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
pread64(r0, &(0x7f00000000c0)=""/21, 0xe, 0x0)

13:50:29 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf3b727cf6c5c720be7ff98322e5248012d8181dedd0e45eb1ed34c50067820fee5a52720a19d0fa61e42399dffa9e1bd79c6f819eae9e2266947bb59100a7add03e23cf3de1258354ab5c89dad58beb0df31879b29bafd49f5f6008405bec0a7826f79a3331dda2e1cc00970a3cd22d1f318bce", 0xf7}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1736.519378][ T1511] loop2: detected capacity change from 0 to 64
13:50:29 executing program 3:
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1736.544941][   T27] audit: type=1804 audit(1683381029.563:263): pid=1514 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2349659456/syzkaller.d2SjGS/1366/file0" dev="sda1" ino=1972 res=1 errno=0
[ 1736.579802][ T1515] loop5: detected capacity change from 0 to 64
[ 1736.597936][ T1513] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1736.607479][ T1516] loop4: detected capacity change from 0 to 16
13:50:29 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1736.649209][ T1516] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1736.696170][ T1513] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
13:50:29 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, 0x0, r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:29 executing program 3:
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1736.733079][   T27] audit: type=1804 audit(1683381029.753:264): pid=1521 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2349659456/syzkaller.d2SjGS/1367/file0" dev="sda1" ino=1957 res=1 errno=0
13:50:29 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

[ 1736.936420][T27694] udevd[27694]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1736.955609][T25866] Bluetooth: hci0: command 0x040f tx timeout
[ 1737.025957][   T27] audit: type=1804 audit(1683381030.043:265): pid=1530 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2349659456/syzkaller.d2SjGS/1368/file0" dev="sda1" ino=1969 res=1 errno=0
[ 1737.052421][ T1529] loop2: detected capacity change from 0 to 64
[ 1737.059262][ T1528] loop5: detected capacity change from 0 to 64
13:50:30 executing program 3:
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1737.133923][T25963] udevd[25963]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
13:50:30 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, 0x0, r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:30 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1737.210120][T27653] udevd[27653]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1737.228855][ T1532] loop4: detected capacity change from 0 to 16
[ 1737.320511][ T1532] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1737.371434][   T27] audit: type=1804 audit(1683381030.383:266): pid=1535 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2349659456/syzkaller.d2SjGS/1369/file0" dev="sda1" ino=1959 res=1 errno=0
13:50:30 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$eJxiGAWjYBSMWPDo4dcHvU4WIToMDAw8DCoM7FDxF8wINUxI6u/MLNWeaus6Z9PtpUfy+Gp3oZvHyMDA8P8/8fazMDAwHHBkZiiB8v//R9WtAqVDGJjg7FAGJgZNKDucgZFBD8pOYGBiCIOyUxkYGSKh7Cwkdj5IvZ5eWmZOql5yfk4KiGEAIgxBhBGIMEZ339tGRoYUJPcxIskXV1ZlJ+bkpBYhMVigclikyGIQCr+3jkwMtkjuA8VXREdzI4gPCxsDpPAzZGBiMISyjRkYGYKhbAsGdljYQIIEyf9SLAjzmQn4f9AwBHUHhTNGGVBG3+BwBn6G2NtdpzGlng68w4YYA1E+/V/IyKCOVD6xIJUf+iW5BfrFlVW6mbmJ6anpqXlGRsZmBiYGBqZG+uCCCELiKf84weUTF5L5rDjUsjGyMVQklpQUGUJION8IQiKVuMHb8t+A9TAxMJQwNDIxaChDzACV/Wx4ymNGKGYC0yCWBjMe5aNgFIyCUTAKRsEoGAWjYBSMglEwCkbBKBgFo2AUjIJRQAKQZ2AEj4ISAEYBYNWAAAAA//+mdHi4")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(0xffffffffffffffff, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

13:50:30 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r0, 0x29, 0x1, 0x0, 0x2d)

13:50:30 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1737.441494][ T1537] loop2: detected capacity change from 0 to 64
[ 1737.459468][T27653] udevd[27653]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1737.463438][ T1538] loop5: detected capacity change from 0 to 64
[ 1737.521486][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1737.661715][ T1542] loop4: detected capacity change from 0 to 16
[ 1737.680566][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1737.738919][T27694] udevd[27694]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1737.748350][T25977] udevd[25977]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1737.766342][ T1542] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1737.804748][T25963] udevd[25963]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
13:50:30 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="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", 0xff}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:50:30 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:30 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, 0x0, r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:30 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$eJxiGAWjYBSMWPDo4dcHvU4WIToMDAw8DCoM7FDxF8wINUxI6u/MLNWeaus6Z9PtpUfy+Gp3oZvHyMDA8P8/8fazMDAwHHBkZiiB8v//R9WtAqVDGJjg7FAGJgZNKDucgZFBD8pOYGBiCIOyUxkYGSKh7Cwkdj5IvZ5eWmZOql5yfk4KiGEAIgxBhBGIMEZ339tGRoYUJPcxIskXV1ZlJ+bkpBYhMVigclikyGIQCr+3jkwMtkjuA8VXREdzI4gPCxsDpPAzZGBiMISyjRkYGYKhbAsGdljYQIIEyf9SLAjzmQn4f9AwBHUHhTNGGVBG3+BwBn6G2NtdpzGlng68w4YYA1E+/V/IyKCOVD6xIJUf+iW5BfrFlVW6mbmJ6anpqXlGRsZmBiYGBqZG+uCCCELiKf84weUTF5L5rDjUsjGyMVQklpQUGUJION8IQiKVuMHb8t+A9TAxMJQwNDIxaChDzACV/Wx4ymNGKGYC0yCWBjMe5aNgFIyCUTAKRsEoGAWjYBSMglEwCkbBKBgFo2AUjIJRQAKQZ2AEj4ISAEYBYNWAAAAA//+mdHi4")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(0xffffffffffffffff, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

13:50:30 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:30 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f00000000c0)={'syztnl1\x00', &(0x7f0000000140)={'ip6gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private1, @private1}})

[ 1738.034280][ T1550] loop2: detected capacity change from 0 to 64
[ 1738.066839][ T1554] loop5: detected capacity change from 0 to 64
[ 1738.068801][ T1556] loop4: detected capacity change from 0 to 16
13:50:31 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1738.126726][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1738.151891][ T1556] erofs: (device loop4): mounted with root inode @ nid 36.
13:50:31 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:31 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$eJxiGAWjYBSMWPDo4dcHvU4WIToMDAw8DCoM7FDxF8wINUxI6u/MLNWeaus6Z9PtpUfy+Gp3oZvHyMDA8P8/8fazMDAwHHBkZiiB8v//R9WtAqVDGJjg7FAGJgZNKDucgZFBD8pOYGBiCIOyUxkYGSKh7Cwkdj5IvZ5eWmZOql5yfk4KiGEAIgxBhBGIMEZ339tGRoYUJPcxIskXV1ZlJ+bkpBYhMVigclikyGIQCr+3jkwMtkjuA8VXREdzI4gPCxsDpPAzZGBiMISyjRkYGYKhbAsGdljYQIIEyf9SLAjzmQn4f9AwBHUHhTNGGVBG3+BwBn6G2NtdpzGlng68w4YYA1E+/V/IyKCOVD6xIJUf+iW5BfrFlVW6mbmJ6anpqXlGRsZmBiYGBqZG+uCCCELiKf84weUTF5L5rDjUsjGyMVQklpQUGUJION8IQiKVuMHb8t+A9TAxMJQwNDIxaChDzACV/Wx4ymNGKGYC0yCWBjMe5aNgFIyCUTAKRsEoGAWjYBSMglEwCkbBKBgFo2AUjIJRQAKQZ2AEj4ISAEYBYNWAAAAA//+mdHi4")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(0xffffffffffffffff, 0xfffffffffffffff8, 0x2)
getdents64(r0, 0x0, 0x0)

13:50:31 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

[ 1738.402984][ T1563] loop4: detected capacity change from 0 to 16
[ 1738.424802][ T1562] loop2: detected capacity change from 0 to 64
[ 1738.428251][ T1563] erofs: (device loop4): mounted with root inode @ nid 36.
13:50:31 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:31 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
getdents64(r0, 0x0, 0x0)

[ 1738.790912][ T1575] loop5: detected capacity change from 0 to 64
[ 1738.848996][ T1577] loop4: detected capacity change from 0 to 16
[ 1738.904925][ T1577] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1739.032825][T25866] Bluetooth: hci0: command 0x0419 tx timeout
13:50:32 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="796d4c507ff3a6f64215568449e5a3cdd5d5d81edf9d60c8473eea9ffa46c5e5b5345ee9349b7559e0203e0bd0a3023576a8d46d7050e861b5160f8874cbfb4637860d148bd92f3caa4604738bc16155a4ace2d93aa061881ffdd21e34034a4340f794dbcc918c48dba42311494a80950000759f27037a7fe57cbf95696bb658254e4bdf3b727cf6c5c720be7ff98322e5248012d8181dedd0e45eb1ed34c50067820fee5a52720a19d0fa61e42399dffa9e1bd79c6f819eae9e2266947bb59100a7add03e23cf3de1258354ab5c89dad58beb0df31879b29bafd49f5f6008405bec0a7826f79a3331dda2e1cc00970a3cd22d1f318bce8e045ccf7ba6ba93", 0xff}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:50:32 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:32 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:32 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r0, 0x29, 0x4, 0x0, 0x3f)

13:50:32 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:32 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
getdents64(r0, 0x0, 0x0)

[ 1739.181540][ T1585] loop4: detected capacity change from 0 to 16
[ 1739.217394][ T1584] loop5: detected capacity change from 0 to 64
13:50:32 executing program 0:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, r0)
keyctl$KEYCTL_MOVE(0x1e, r1, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x1)

[ 1739.225847][ T1587] loop2: detected capacity change from 0 to 64
13:50:32 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

13:50:32 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1739.301925][ T1585] erofs: (device loop4): mounted with root inode @ nid 36.
13:50:32 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$eJxiGAWjYBSMWPDo4dcHvU4WIToMDAw8DCoM7FDxF8wINUxI6u/MLNWeaus6Z9PtpUfy+Gp3oZvHyMDA8P8/8fazMDAwHHBkZiiB8v//R9WtAqVDGJjg7FAGJgZNKDucgZFBD8pOYGBiCIOyUxkYGSKh7Cwkdj5IvZ5eWmZOql5yfk4KiGEAIgxBhBGIMEZ339tGRoYUJPcxIskXV1ZlJ+bkpBYhMVigclikyGIQCr+3jkwMtkjuA8VXREdzI4gPCxsDpPAzZGBiMISyjRkYGYKhbAsGdljYQIIEyf9SLAjzmQn4f9AwBHUHhTNGGVBG3+BwBn6G2NtdpzGlng68w4YYA1E+/V/IyKCOVD6xIJUf+iW5BfrFlVW6mbmJ6anpqXlGRsZmBiYGBqZG+uCCCELiKf84weUTF5L5rDjUsjGyMVQklpQUGUJION8IQiKVuMHb8t+A9TAxMJQwNDIxaChDzACV/Wx4ymNGKGYC0yCWBjMe5aNgFIyCUTAKRsEoGAWjYBSMglEwCkbBKBgFo2AUjIJRQAKQZ2AEj4ISAEYBYNWAAAAA//+mdHi4")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x2)
getdents64(r0, 0x0, 0x0)

13:50:32 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:32 executing program 0:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
close(r0)
close(r0)

[ 1739.560377][ T1596] loop5: detected capacity change from 0 to 64
[ 1739.623055][ T1603] loop4: detected capacity change from 0 to 16
[ 1739.644393][ T1605] loop2: detected capacity change from 0 to 64
[ 1739.666004][ T1603] erofs: (device loop4): mounted with root inode @ nid 36.
13:50:33 executing program 0:
mlock(&(0x7f0000ff5000/0x1000)=nil, 0x1000)
munlock(&(0x7f0000ff5000/0x1000)=nil, 0x1000)

13:50:33 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, 0x0, 0x0)

13:50:33 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x0)
getdents64(r0, 0x0, 0x0)

13:50:33 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:33 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="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", 0xff}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:50:33 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1740.308410][ T1612] loop4: detected capacity change from 0 to 16
[ 1740.345291][ T1619] loop2: detected capacity change from 0 to 64
13:50:33 executing program 0:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
close(r0)
ftruncate(r0, 0x0)

[ 1740.360369][ T1620] loop5: detected capacity change from 0 to 64
[ 1740.383770][ T1612] erofs: (device loop4): mounted with root inode @ nid 36.
13:50:33 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, 0x0, 0x0)

13:50:33 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x0)
getdents64(r0, 0x0, 0x0)

13:50:33 executing program 0:
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@local, @local, @val, {@ipv4}}, 0x0)

13:50:33 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1740.515359][ T1618] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 1740.562377][ T1618] CPU: 0 PID: 1618 Comm: syz-executor.1 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1740.571894][ T1618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1740.581983][ T1618] Call Trace:
[ 1740.585330][ T1618]  <TASK>
[ 1740.588283][ T1618]  dump_stack_lvl+0x136/0x150
[ 1740.593004][ T1618]  dump_header+0x10a/0xd70
[ 1740.597469][ T1618]  oom_kill_process+0x25d/0x600
[ 1740.602357][ T1618]  out_of_memory+0x35c/0x1650
[ 1740.607071][ T1618]  ? find_held_lock+0x2d/0x110
[ 1740.611876][ T1618]  ? oom_killer_disable+0x2b0/0x2b0
[ 1740.617115][ T1618]  ? rcu_read_unlock+0x9/0x60
[ 1740.621830][ T1618]  ? find_held_lock+0x2d/0x110
[ 1740.626636][ T1618]  mem_cgroup_out_of_memory+0x206/0x270
[ 1740.631482][ T1626] loop5: detected capacity change from 0 to 64
[ 1740.632204][ T1618]  ? mem_cgroup_margin+0x130/0x130
[ 1740.643520][ T1618]  ? lock_downgrade+0x690/0x690
[ 1740.648432][ T1618]  try_charge_memcg+0xf9c/0x13b0
[ 1740.653411][ T1618]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 1740.659465][ T1618]  ? get_mem_cgroup_from_objcg+0xa1/0x280
[ 1740.665224][ T1618]  ? lock_downgrade+0x690/0x690
[ 1740.670122][ T1618]  ? trace_lock_acquire+0x12d/0x180
[ 1740.675367][ T1618]  ? get_mem_cgroup_from_objcg+0x159/0x280
[ 1740.681206][ T1618]  ? lock_acquire+0x32/0xc0
[ 1740.685764][ T1618]  __memcg_kmem_charge_page+0x16e/0x3c0
[ 1740.691355][ T1618]  __alloc_pages+0x1f3/0x4a0
[ 1740.695984][ T1618]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1740.702787][ T1618]  ? __lock_acquire+0xc17/0x5f30
[ 1740.707783][ T1618]  ? find_held_lock+0x2d/0x110
13:50:33 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, 0x0, 0x0)

13:50:33 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x8, 0x16, &(0x7f0000001240)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)

13:50:33 executing program 0:
bpf$BPF_TASK_FD_QUERY(0xd, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)

[ 1740.712601][ T1618]  alloc_pages+0x1aa/0x270
[ 1740.717054][ T1618]  get_zeroed_page+0x14/0x40
[ 1740.721675][ T1618]  __pud_alloc+0x3b/0x180
[ 1740.726061][ T1618]  __handle_mm_fault+0x839/0x3c30
[ 1740.731128][ T1618]  ? vm_iomap_memory+0x190/0x190
[ 1740.736111][ T1618]  ? mas_find+0x200/0x200
[ 1740.740511][ T1618]  handle_mm_fault+0x2af/0x9f0
[ 1740.745325][ T1618]  do_user_addr_fault+0x53d/0x1240
[ 1740.750484][ T1618]  exc_page_fault+0x98/0x170
[ 1740.755129][ T1618]  asm_exc_page_fault+0x26/0x30
13:50:33 executing program 0:
socketpair$unix(0x1, 0x0, 0x0, 0x0)
syz_clone(0x40000000, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000140), &(0x7f0000000180)="6071a7e8146f3f96a803de91c27e4164d8836fe5ec4f042898ceeedb4a4f1026a80d7f9a8ee7bd0c0fcf706332198e7665d4bb8d9d42b7c2e2aa5d6bfa74ba01")

[ 1740.760011][ T1618] RIP: 0033:0x7f2c65027766
[ 1740.764448][ T1618] Code: ff ff 66 90 48 8b 0d 89 df ca 00 4c 63 05 72 df ca 00 48 8b 05 73 df ca 00 49 01 c8 48 39 c8 72 13 4c 39 c0 73 0e 48 8d 50 04 <89> 38 48 89 15 59 df ca 00 c3 52 48 8d 35 e2 f1 0b 00 48 89 c2 48
[ 1740.784092][ T1618] RSP: 002b:00007ffcbc50da58 EFLAGS: 00010287
[ 1740.790194][ T1618] RAX: 0000001b33a20000 RBX: 0000000000000003 RCX: 0000001b33a20000
[ 1740.798198][ T1618] RDX: 0000001b33a20004 RSI: 00000000003c0000 RDI: 0000000000000000
[ 1740.806207][ T1618] RBP: 0000000000000000 R08: 0000001b33e20000 R09: 0000000000040000
[ 1740.814208][ T1618] R10: 0000000000000011 R11: 0000000000000000 R12: 0000000000000001
[ 1740.822202][ T1618] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffcbc50dd00
[ 1740.830218][ T1618]  </TASK>
[ 1740.917044][ T1634] loop2: detected capacity change from 0 to 64
[ 1740.997231][ T1637] loop4: detected capacity change from 0 to 16
[ 1741.005180][ T1618] memory: usage 10612kB, limit 0kB, failcnt 354
[ 1741.012030][ T1638] loop5: detected capacity change from 0 to 64
[ 1741.029226][ T1618] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1741.040240][ T1618] Memory cgroup stats for /syz1:
[ 1741.041822][ T1637] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1741.066587][ T1618] anon 77824
[ 1741.087879][ T1618] file 10125312
13:50:34 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1741.116195][ T1618] kernel 462848
[ 1741.203981][ T1618] kernel_stack 32768
[ 1741.251622][ T1618] pagetables 65536
[ 1741.261619][ T1618] sec_pagetables 0
[ 1741.269701][ T1642] loop2: detected capacity change from 0 to 64
[ 1741.302473][ T1618] percpu 64
[ 1741.305732][ T1618] sock 0
[ 1741.323485][ T1618] vmalloc 0
[ 1741.342417][ T1618] shmem 10125312
[ 1741.349478][ T1618] zswap 0
[ 1741.382941][ T1618] zswapped 0
[ 1741.386197][ T1618] file_mapped 299008
[ 1741.390112][ T1618] file_dirty 0
[ 1741.427419][ T1618] file_writeback 0
[ 1741.431194][ T1618] swapcached 0
[ 1741.456814][ T1618] anon_thp 0
[ 1741.460061][ T1618] file_thp 0
[ 1741.512793][ T1618] shmem_thp 0
[ 1741.534204][ T1618] inactive_anon 0
[ 1741.537889][ T1618] active_anon 10203136
[ 1741.552906][ T1618] inactive_file 0
[ 1741.556593][ T1618] active_file 200704
[ 1741.560509][ T1618] unevictable 0
[ 1741.564612][ T1618] slab_reclaimable 271464
[ 1741.569318][ T1618] slab_unreclaimable 68168
[ 1741.574542][ T1618] slab 339632
[ 1741.579006][ T1618] workingset_refault_anon 0
[ 1741.587624][ T1618] workingset_refault_file 0
[ 1741.593517][ T1618] workingset_activate_anon 0
[ 1741.608709][ T1618] workingset_activate_file 0
[ 1741.614088][ T1618] workingset_restore_anon 0
[ 1741.631641][ T1618] workingset_restore_file 0
[ 1741.638403][ T1618] workingset_nodereclaim 0
[ 1741.651839][ T1618] pgscan 95377
[ 1741.657530][ T1618] pgsteal 44
[ 1741.661076][ T1618] pgscan_kswapd 0
[ 1741.677115][ T1618] pgscan_direct 95377
[ 1741.684211][ T1618] pgscan_khugepaged 0
[ 1741.688599][ T1618] pgsteal_kswapd 0
[ 1741.692873][ T1618] pgsteal_direct 44
[ 1741.697065][ T1618] pgsteal_khugepaged 0
[ 1741.701549][ T1618] pgfault 637308
[ 1741.705708][ T1618] pgmajfault 6
[ 1741.709435][ T1618] pgrefill 1296492
[ 1741.713689][ T1618] pgactivate 95319
[ 1741.717764][ T1618] pgdeactivate 0
[ 1741.721689][ T1618] pglazyfree 0
[ 1741.725538][ T1618] pglazyfreed 0
[ 1741.729352][ T1618] zswpin 0
[ 1741.734952][ T1618] zswpout 0
[ 1741.738399][ T1618] thp_fault_alloc 0
[ 1741.742733][ T1618] thp_collapse_alloc 0
[ 1741.747203][ T1618] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=1407,uid=0
[ 1741.771122][ T1618] Memory cgroup out of memory: Killed process 1407 (syz-executor.1) total-vm:50576kB, anon-rss:368kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0
13:50:35 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="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", 0x103}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:50:35 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:35 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$eJxiGAWjYBSMWPDo4dcHvU4WIToMDAw8DCoM7FDxF8wINUxI6u/MLNWeaus6Z9PtpUfy+Gp3oZvHyMDA8P8/8fazMDAwHHBkZiiB8v//R9WtAqVDGJjg7FAGJgZNKDucgZFBD8pOYGBiCIOyUxkYGSKh7Cwkdj5IvZ5eWmZOql5yfk4KiGEAIgxBhBGIMEZ339tGRoYUJPcxIskXV1ZlJ+bkpBYhMVigclikyGIQCr+3jkwMtkjuA8VXREdzI4gPCxsDpPAzZGBiMISyjRkYGYKhbAsGdljYQIIEyf9SLAjzmQn4f9AwBHUHhTNGGVBG3+BwBn6G2NtdpzGlng68w4YYA1E+/V/IyKCOVD6xIJUf+iW5BfrFlVW6mbmJ6anpqXlGRsZmBiYGBqZG+uCCCELiKf84weUTF5L5rDjUsjGyMVQklpQUGUJION8IQiKVuMHb8t+A9TAxMJQwNDIxaChDzACV/Wx4ymNGKGYC0yCWBjMe5aNgFIyCUTAKRsEoGAWjYBSMglEwCkbBKBgFo2AUjIJRQAKQZ2AEj4ISAEYBYNWAAAAA//+mdHi4")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x0)
getdents64(r0, 0x0, 0x0)

13:50:35 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1\x00', 0x0)

13:50:35 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)='P', 0x101d0}], 0x1}, 0x0)

13:50:35 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1742.270914][ T1645] loop4: detected capacity change from 0 to 16
[ 1742.287769][ T1651] loop5: detected capacity change from 0 to 64
[ 1742.307153][ T1649] loop2: detected capacity change from 0 to 64
[ 1742.346786][ T1645] erofs: (device loop4): mounted with root inode @ nid 36.
13:50:35 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(0xffffffffffffffff, 0x0, 0x0)

[ 1742.387386][T25963] udevd[25963]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
13:50:35 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1\x00', 0x0)

13:50:35 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, 0x0, r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:35 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000480)="9e", 0x1}], 0x1}, 0x0)
recvmsg(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000080)=""/90, 0x5a}], 0x1, &(0x7f00000001c0)=""/8, 0x8}, 0x0)

[ 1742.561325][ T1650] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1742.591713][ T1657] loop2: detected capacity change from 0 to 64
[ 1742.605790][ T1650] CPU: 1 PID: 1650 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1742.615315][ T1650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1742.617290][ T1655] loop4: detected capacity change from 0 to 16
[ 1742.625375][ T1650] Call Trace:
[ 1742.625387][ T1650]  <TASK>
[ 1742.625398][ T1650]  dump_stack_lvl+0x136/0x150
[ 1742.625436][ T1650]  dump_header+0x10a/0xd70
[ 1742.625466][ T1650]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1742.625507][ T1650]  out_of_memory+0xd6c/0x1650
[ 1742.625544][ T1650]  ? io_schedule_timeout+0x150/0x150
[ 1742.625584][ T1650]  ? oom_killer_disable+0x2b0/0x2b0
[ 1742.625617][ T1650]  ? kernfs_notify+0x1ac/0x410
[ 1742.625656][ T1650]  mem_cgroup_out_of_memory+0x206/0x270
[ 1742.625698][ T1650]  ? mem_cgroup_margin+0x130/0x130
[ 1742.625760][ T1650]  memory_max_write+0x2f9/0x3c0
[ 1742.625794][ T1650]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1742.625830][ T1650]  ? lock_sync+0x190/0x190
[ 1742.625875][ T1650]  cgroup_file_write+0x1e2/0x7b0
[ 1742.625932][ T1650]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1742.625969][ T1650]  ? kill_css+0x3b0/0x3b0
[ 1742.626002][ T1650]  ? lock_acquire+0x32/0xc0
[ 1742.626052][ T1650]  ? kill_css+0x3b0/0x3b0
[ 1742.626084][ T1650]  kernfs_fop_write_iter+0x3f1/0x600
[ 1742.626120][ T1650]  vfs_write+0xa1d/0xe40
[ 1742.626153][ T1650]  ? kernel_write+0x670/0x670
[ 1742.626179][ T1650]  ? receive_fd+0x110/0x110
[ 1742.626212][ T1650]  ? __fget_files+0x26a/0x480
[ 1742.626258][ T1650]  ksys_write+0x12b/0x250
[ 1742.626288][ T1650]  ? __ia32_sys_read+0xb0/0xb0
[ 1742.626321][ T1650]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1742.761990][ T1650]  do_syscall_64+0x39/0xb0
[ 1742.766439][ T1650]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1742.772354][ T1650] RIP: 0033:0x7fab35c8c169
[ 1742.776780][ T1650] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1742.796498][ T1650] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1742.804945][ T1650] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1742.812934][ T1650] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000006
[ 1742.820926][ T1650] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1742.828996][ T1650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1742.836980][ T1650] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1742.844985][ T1650]  </TASK>
[ 1742.860495][ T1655] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1742.882643][ T1658] loop5: detected capacity change from 0 to 64
13:50:35 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(0xffffffffffffffff, 0x0, 0x0)

13:50:36 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="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", 0x103}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1742.912472][T25977] udevd[25977]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1742.918846][T27653] udevd[27653]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1742.945496][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
13:50:36 executing program 5:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1\x00', 0x0)

[ 1743.000606][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1743.052639][T25977] udevd[25977]: symlink '../../loop4' '/dev/disk/by-uuid/dc99752b-953d-459c-b2db-a5c46e0e7dba.tmp-b7:4' failed: Read-only file system
[ 1743.059454][T27653] udevd[27653]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1743.152546][T25963] udevd[25963]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1743.177129][ T1650] memory: usage 10376kB, limit 0kB, failcnt 388
[ 1743.198823][ T1650] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1743.200205][ T1664] loop5: detected capacity change from 0 to 64
[ 1743.218218][ T1650] Memory cgroup stats for /syz1:
[ 1743.218551][ T1650] anon 0
[ 1743.241753][ T1650] file 10125312
[ 1743.246926][ T1650] kernel 299008
[ 1743.250836][ T1650] kernel_stack 0
[ 1743.264863][ T1650] pagetables 0
[ 1743.268684][ T1650] sec_pagetables 0
[ 1743.294930][T27653] udevd[27653]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1743.386027][T25963] udevd[25963]: symlink '../../loop5' '/dev/disk/by-label/untitled.tmp-b7:5' failed: Read-only file system
[ 1743.417573][ T1650] percpu 0
[ 1743.422029][ T1650] sock 0
[ 1743.428198][ T1650] vmalloc 0
[ 1743.431740][ T1650] shmem 10125312
[ 1743.436817][ T1650] zswap 0
[ 1743.472435][ T1650] zswapped 0
[ 1743.484927][ T1650] file_mapped 299008
[ 1743.489540][ T1650] file_dirty 0
[ 1743.504132][ T1650] file_writeback 0
[ 1743.508318][ T1650] swapcached 0
[ 1743.519807][ T1650] anon_thp 0
[ 1743.530807][ T1650] file_thp 0
[ 1743.544262][ T1650] shmem_thp 0
[ 1743.551517][ T1650] inactive_anon 0
[ 1743.561739][ T1650] active_anon 10125312
[ 1743.569802][ T1650] inactive_file 0
[ 1743.581333][ T1650] active_file 200704
[ 1743.589583][ T1650] unevictable 0
[ 1743.604015][ T1650] slab_reclaimable 264992
[ 1743.608791][ T1650] slab_unreclaimable 33912
[ 1743.645629][ T1650] slab 298904
[ 1743.649300][ T1650] workingset_refault_anon 0
[ 1743.687046][ T1650] workingset_refault_file 0
[ 1743.691981][ T1650] workingset_activate_anon 0
[ 1743.745386][ T1650] workingset_activate_file 0
[ 1743.770934][ T1650] workingset_restore_anon 0
[ 1743.791243][ T1650] workingset_restore_file 0
[ 1743.811562][ T1650] workingset_nodereclaim 0
[ 1743.821769][ T1650] pgscan 100277
[ 1743.860439][ T1650] pgsteal 44
[ 1743.882409][ T1650] pgscan_kswapd 0
[ 1743.886419][ T1650] pgscan_direct 100277
[ 1743.890871][ T1650] pgscan_khugepaged 0
[ 1743.963630][ T1650] pgsteal_kswapd 0
[ 1743.967749][ T1650] pgsteal_direct 44
[ 1743.992404][ T1650] pgsteal_khugepaged 0
[ 1743.996600][ T1650] pgfault 637309
[ 1744.000235][ T1650] pgmajfault 6
[ 1744.022343][ T1650] pgrefill 1296492
[ 1744.026210][ T1650] pgactivate 100219
[ 1744.052279][ T1650] pgdeactivate 0
[ 1744.055964][ T1650] pglazyfree 0
[ 1744.059418][ T1650] pglazyfreed 0
13:50:37 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:37 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, 0x0, r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:37 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000000000)="cc", 0x1}, {0x0}], 0x2}, 0x0)

13:50:37 executing program 4:
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000540)=ANY=[], 0xfe, 0x1ad, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffff8, 0x2)
getdents64(0xffffffffffffffff, 0x0, 0x0)

13:50:37 executing program 5:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000007c0)={<r0=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000000000)="cc", 0x1}, {0x0}], 0x2}, 0x0)

[ 1744.082303][ T1650] zswpin 0
[ 1744.085454][ T1650] zswpout 0
[ 1744.102293][ T1650] thp_fault_alloc 0
[ 1744.112312][ T1650] thp_collapse_alloc 0
[ 1744.124830][ T1650] Out of memory and no killable processes...
13:50:37 executing program 0:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000007c0))
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, &(0x7f0000000580)='4', 0x1, 0x0, 0x0, &(0x7f00000025c0)="7f9d4d4af2101299f2a7e7b66ec4483ced4f766595c84a1a8012b40bb46f473a98af3a4d23a9bd210815b4a1a51bd14cde1425abf032d3a7157ad74ee1c48d96f5552ac8c969d8abbd758503a321f4ee288f9689b37b6d62114875e685fd33eeb26498cc4e5112cf4b1891d84149b637e5582e2337401135d5aef365b4f217d50fd7109882207dc07f4cc0dac058a0cbe761283d4482c10e254973e5b99538899fd134e5be89fa3b718fd0dd79bbad340640428b807302a9a08536f117537a89189bd0dc542edfe3785d7804ba70218870bd6de8b84b7fa909fd04ba62e41cd60c082fba761e5bc5dad96f260ae508a6b7b8acb3b61c454eeba6ec8ae7ff6c4e6b2d0ab6f2128f3feaef5503dc2f39ac62381e1f7970a4f69bf84f30350a7c8519542aa88a9d179634c1bbb1f767d3ca191a4afbdf823c76d56aaf2cff595ec4955384ef98a4715e3ce34129b8aed55e1935e651130acaa2ff20c38986ec0909e5109e1bcc8b69330f3dff6fe8b827367b14c77baa898121eeeeb2c1dd0828eb3f0a36d438a1edce45ade6e391a94c8c8c720046a0762fc3d63952465a327bd13f35eef66544035139991ba64166021b623686e6f7174c646ffb9d4a150498d95628fa03a3bb3ddf05ea5b35d138455a0eb5c6a14b07c2442c203df301a9c614c8c3e3413b8305c93ced932151dc3b91bbf268b80f2ee9b67a286d3c71745c8455e6a20375a95a49331f09831d5732f2af0afccafbec7bc36a2efa6a97210fa6ddf491d6cd68f2289a5ff8405e6a88202593012c7aaf9eaa57ca4c2094d2ba2ca3c30241ef68668d98d929b3fc768c8301ce1a7ce097dd3a9088b772600e0454fc6680d86226a3bc49e6d7314ece28f7595b7534e317a6e945c348b4de30f2bfe6b661eb2467aa8a37a38f58ddaf55060065b627070b4802491dfbc7a81f4041e2b63bc9af7822ed395b3df6684f21a361d6bea272d2a61599ae80a0a47455b47ffb03d53809e6987d01d3df94cc3b7e32844c3143b5f1138ef9501028e80e55321e4e49c1c9c74291ecfbfd4ba275ad76f00127c4fd912a13b0d24db68965da63f0d7264209695b464b06e7f71fa862c5977122777752facf6a1021d698e04b8e7fe651f9dbcff420e233b5dbb8a980634bdd4a224d12fc269f1a5a247b409528544e774bd6757984c7f057069d7972e54f76b95e35b75133856311b269c4f7b10b840c8e70d6c829e58c94a29abb678d1b86fa48061c3eb499170c3cca54424b8404ffd1fbaddaaa01743f1bb2fb0cda30b1406e61de7ff4e7cf8fb13c73ea5984544ecb796a84e68a47b4767d7e5977c8084fd3791b220dfce5c4e2725906b3fff18b2ddb05b552991d6958cbabd1c84776ad5eb92bd58730c2b1e7bcb77b89685984d3308337c174dce2b974749ac73264eec0f18d9d7ce4335530c773b4e364e7666cc74ecbc42e5613b4b8a4c811ead7ce3d8f6ed956e4961ceb90f8ff8bbf9b15deb45657e52aa0e1591cf2ee0054213258bc1ffc145dd6345fa1cd7244478c19ce27164ee9b9c06b37600dfb87900d5da6348cf0a1f10462cb6221ce598752eb62b87feb713d098168e55c7401aed680f90a3340f6245023b5b240995b1ff153623b2fb79eacd97676c4ea79d54db17eaf6fa605a5f7210912d6df9ecfdd71a1a9d4ee77581e9acc053dbf75b8730035e6a9b3fa0d9dfda8c37bd17ac0f7a06a7577356409e42e33930a69b2622933d5a3d3c44b799b4dfc994b8b918829339b14084462791688a0603cc3b7e03f9060901b33cd54bc3c8501fab5565003fb1467e2dec6f9bada9ca4516ad48aa206593912dde77944cefb880a6d24c414bf10d82427ecdb2ac32ae8270f2b83d7f1dfcacfc8e450363ac8c96771250d4e9ee3fb1fffb1e9105b22d6d44f4363456f50165f5129ffbc0776f59d3b71ec5fb74f671090d33ba8d9fc8273c5e766cbaaca62b5b24e55815edf1a4830eaf4e8ffcf5bc8fe53232ada2bdc5f32a4e5396914a074375556b807fef1b65913cd23c5fc5524e82acd954e27a68b49c4ee4597cfd6602622fdbc2f4d35c93571803d808fa5bc71dce09a32a0427fe25e9546f1e97092b6eafe20f16afee74db537672805d151ae6f4dedda69ae945866c1396aa1fcf387394a48a539dcd4261c3c348e5bd9fba019589c70b3027f542d1f5852cf8d8204ecc3de7ebd0efd581ed47c2e34343fc8308097ad27c633db356c3bc11dca03faae1c9ddcaae7a0a39893dd5cc40f4e068a592d18f43d3e023957723c5ed488bd7b951d658be94a8932a84aacdb18642b155856cfbb2f9a664c5bc42df5ded6eae7b8d1c4c48c7b7351a602e0887eb90c9778f662b8fc0d37313f151a578c7bc513b1fa5e3acda9d176eb7152373bb7c3210f16243e5effb2e0a4db816b31e2148a1cd1f8198ac85aa24c4131fa87554b975f063e9733923d361f57be7a9ad8fd680130bde75283183e7d879a54249f495496d797672ee9602202e9e6d874775753666ef6ed408d33274433da1376ea6ae057e415ab779b49df903d6974058df6aeb75545332ed4fa1424c0c3c746c3e70ed1f11211c877b0bb470752d108f98b41cbce93477352c5645f9fd6d6260e6673c5a53e3de7aa5783d8243decdf431c5b4696b21aeff295523c5386a341b24fb63670b90adc541f14d4afa3e5edf64ba55a265158c59cbf2a611ad4061a06c3c5127bfcadec9ca6f62897e1ab58479e5dcdb3be2c206d32457fddf916778b2cae230d1c350e1cec34bb5ac268978de1c2dd168d1adc9a709f3f5b2ae97cc1b55033f5cd7b8d50afc16df60b93af3aa4a118bee659e0637c311f1f261943992c2092db5c99468527fd77e79b3bc85cf5a00d9dd5881d87fc2e46c7e53bfc5da124e9b4969d788952216ddb03b1749c0c679d87324a74ac0dca1d11cd0f30766ad648e9f688b21133905b16a9335afdade52ec25c10f9152de822700d2323b668d82fa63742dbcbb9879dca40d2caae47b0bc6bde1a110ec694b8668017e7805c74f7b749b49a4320b4ab8f221426469f1295b42dc7083573f39002e3d825b626cb3c084e188ba1d12b6623389e0914b5df63ee26e34d8f343ad4845cf1fa5ed1f78ae6a7fb6b22a789b7bc3ccd9e3407c2cc8998057f984f957e6835dbccc2a33919add1bcb442e7cb636d5109c066a96d21f8ba5af700a156c34e7f8a4cbcd11d977b77e2661894bb473977b29408acde1af016294317fb136fc91ed7f28c7d04b632dc3488cf68a009c833161d11e8bdf6e2ce2165d22b9e639ed68b07c0346c6ddc1f65ddb2e32d21db8b67e82dde6b0705d1480bcb4fb118f66aced3a35144bcc5298af95a372fd10848829a7a0acf46269378d00ef3feba78ddb6bc348f9f95d11656b65aed57d122db85a5dd2e13ca3deb7789945845756e5769d70d547004a8c6f53fb8f0bafbe3d4ecd1b0f8f29ad04fc16b510531cb3cfa5ead6f887b84a12b0d8da5130d5e12713b3417b9188e3c0096ee0075e4dc3d607d80eeeb3d328594755a9eac2444224d23d21867fe606b059758736c48e638736b10832bbbe91ea5a6f69df7caeea4fad7d2eb199ed056a89750985d1499404fee3ec1b7d0eb37262446304cb76e3232b665d34e5a1b444cb8cef96fa7fc34b2afd8d3611cb3c45d5b71159399946e3285c5ab614d2b533500c959e4024c")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

13:50:37 executing program 5:
r0 = openat$audio1(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000000c0))
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000140)=0x8001)

[ 1744.209888][ T1671] loop2: detected capacity change from 0 to 64
[ 1744.260111][ T1672] loop4: detected capacity change from 0 to 16
[ 1744.314734][ T1672] erofs: (device loop4): mounted with root inode @ nid 36.
13:50:37 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, 0x0, r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:37 executing program 4:
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000008440)=ANY=[@ANYRES64=0x0, @ANYBLOB="fc50116d75f02d841f9c73262913f9de63bfade281ef4d8423633d6581f5f1558ac700d79ea63011ea49db12c8411347d5e281b71466cb8732d5c115de5bf39d84e79cfae2de221363669b11f66ca41360d4f025ca39ec4e007b8e8465ed920050d1462eace39defc88ad62882f2b743d9e804004c45a1cfd52fa5f8e3500610f41ce8fe4c1988793a8a584697eb4166c85ddc05ea9e5b6aa0e22be377791e456580f7cf9109cfa8e9b8d6ce37fddf8efc68208032958d8935783d42dc3b6c3fac783392eca5f788c0d85b0bc44d4453375b18f8984e85bb55d33eafa86e27126361a60057f073ce49da076b57a6ceb0039f1fa57b07b287e0c570b5d002a1496dbd19331ff5cc69e45a2e9322014dc63f14565a67ea9ef045b64cd91a8b06a4f03ae5b2eb16887e778433a118b67c55e9822a36c1ba259224d61623b9171538375a281f1ca551c5ac472cc6f613af6c9f406af174917169c686fae8112f95cb66d537070000008870f65485e4d9b43c2abf75160f81eae6cbf6d14829001e071334e601b195e3688bc42ff711ebf133fc6dc69397fc7cd746f5bc4f1e1e495d7a89b4206a021b97c668658d35a5cdc079aeb833c862adae92eefb2afa694a4bf1cd550e27080182de50027acc51a490acb294414880da618234d94cdd3129377a817493303bb818c8fd552b0b3240b9a3f91732f0d0fa622beeae9dbfefdb4e3ef68bc0eda94101eab12d1eb38fd8d08207734d30241f533e139dd4712b1835520ca679ec3a31fcc11d929b7bf15f6a88ccfa244d04b0f832ffffffffdb9bed201f25c428eef8c7f1b6560ff12d39d704b46819ab7ad19799ff8ed45f5533acbcb0addfe1a216900539ac23fc0b0df88a13b8b815311a2aebad5bd57ad62f3f042b9614bc4092d530a60999893d48f3e994ecfa677c1d163e4dda0e53046c761b9867a872b910df3ee107b2bcc332aa326bae7f5956511c1254eccb7ac8a51d92c0dd65176552763868167e1cb1ad243302bda253c8d7d7b18449e5cbd26299ac94b0e15ad00015ebda7b71381e98f19557875e328ba559faf3e0cca42978a53a9bc8a83cc078e41b02bde69a9e7dd7b65f76bd557a32777a27f30a5920cf8449b5995ff227ace02b9a1e6121b57f50916b053fc771f587d000cc3a09a204c2cb2ecd5114c1d2fad2398a7f93a78c9f8c3fc5a1ccda75d98d626c27119376a6941ee7880e78e4b6f2c892b0d6ac1c72c0120a15ca80925b475213c7af02affe3370c5a3cf9eb092ae1e4f748bf72b18c22e6158cfe2d2b7ac47cac3b19e75804e11b408a0b941c95d6a14d022027128b6858adc39e323d76539ca18e2518f987f6991931660dec11266dad0a52f05d0dd07d6ede6014c1d6c0ab0407e3ab8c05819036e383631639be17b5ad0bc055f06732848ded6a8400aa82a9a8f697b137b4a77f2614e226cc16081167271e9f254f2cf910bea6e0ad2162cb74fe4e96fa50c6d9ec556fd10c77ca2bf5bfeb07b36def68e3bd377c42ecb56fb934aecfad205ff357b8089be84252bd02e4a5ca8bce361bd220e24fee981d6496f6ff6cb9517ffb24a0edc5f8aba8020b7ea63f8ae086c18ad2ecb22c98f9c04dceee16e7f678bf64ffb7c5478d9ed8eb90f6d38ca2e9413a88096e2b1d60c285026e44b38e8f38a46c7aac46e0356bbf0ea767a34b72b60827251dbc8ec3f732655ae2dd964656b7e50742810125dc723f04a1aac3822a7c5308bca6f6e3c54a7d46f09fc731c922d79d77dc476a33a7dc72ea15545136beb554d6fb175efce5f593321f86e1b9a02efb5e722125ae65d090000002ac9d148b26a35c1ae2bfcde178f7bb23157e6f65d60a773e9954868fc091c7162afc1679d2dae9411616d92be975d10e7c051b3d9e2740990761f1a2b3c82515a6432c121d983b264f2cf01e6ef9643858c9d7e9bf33f01a66771e8ec47aca45941d641016f2a0cd5552d7c8556877ec4d940876eadae48675f3f590ff7bde8f1beba5b3f73da84a6526845824c544514f731bdd239679880a8d47b7b691c3c56a0d0dcc5708bfd89c064bca13726db2a684e8e910b991c3f3ad8672843a45b9c15200526ecd4e40ba0ef1f42c86f3fe3792feb11abbb7b24da0cc9d3ee7d0a72dbf24575c33ae9bee3c84bd2ed32385dcbeb75003183c48f3955d9f3477cb3094db3252d1eaadac54611d1d082e9a6824a557e25c61b20ec2a3d37ed5bac7fd02ce3e86c83881e3ee8437bcdb1242a148321bd613555d1e7f79801c990106b312a971e9dd1382f9e275b19ed1c342a06a2963eb8ccc84cc580e48d9be4337a6541ebd8448813169787eca6c5562d5db655d15cecb998aa9bab2b8d4dd2293e20d7f102a58ba52a472cc8889b4dfe4d2dfbcca3b1c108aaf524fca4e38409a7561178dab922d2f10307727f1d81428d658e1cc855a2b7f87964eaf386c50fc6a75b888bb0d3ce411c2cf1a6fce252b2603f130535ed69a48af2d34160790401b147d6cbdac92b6865249569b3931c370cb8ac1e858372db587411f5e733ee301e261a2ce812b31fc49f861a4a29404f6d7c33df69d0267608e7961a396d677ffd5b4e0cedc9a5f34ed72d7db34e2d810707e43ab78310bdf1e3ecd8f026a59bece4e0a01b4cb8bfc04043545fa8dbb2c312a749e0bc3d4508b33f80dfcb8b5db9160becd2328e3c82f8240481bcdd433bff761a88c9ce44bce2959a9477eb194e491030597dd0678b75e0f90df4e8931aafeb76c5b35feecd4f68591139d9da225e3497d0df6f4f128d4bf6dd200f3c92b573c4feaf4529a76cdd0c7b43ac75b56c654f1f683123d33daa387a0a52646eb25773d1675ee0dd505398a3aab6803c69c15f0e877a657447789c47dac5ff1ad544748ccb7d1e420eaeb5b96aa961e450ee5773502cc75afeee4475b16795b80fb4a0a923a3ec4cce5456ea7bb1839991d15a0799731942374ebaac43332f58af2fef3d3fc83bd9db50aec9fb078a7d221bff9179bf2cfcf9d3f8daa2cfa03bf992cd2542ab8c904ce94384cf7caa389b232f771cf4fd05ea5cefe2798592b09b0d475f985641515754f863282ab45275247a5ccca075ccbbeb69b5eac9e15c3c71c02442214f51aa3aa26a33ca66c168fd0c204abcea1e393afd58c6df796694eefdf570b8a28d5fd0475ae9e7ca900b4075acbc2a40edc0e4708fa86709ba400e432c6912f98b08dda06acce8d6582e6c66ebb3b2c2913ccf9d99ebbe4908c12b56ed66859ff03411b52839872ba372b67d8e3ba6cf7e5378522e68382ca57eb6102934d376ba8eeb8148917794d64bf1116d0dce6182e7c2418deea3ac345a6076c5091991674240754432ae9aa7b52ed3abb0ff439fd7524809d089038f6b18b8e8512abe3faf1089ca9f19a6ea88099f635686c5237cf24386fcb2f2f9309969956c8620e644a62b26e1dc78e1d37d2c5f968324868d78252f4ce86227c04e8aadcf568ddaef86f8294a1d8c2fe0d7a210b0f8999e82dbacaa84676e23de8c96b2ede1ea1295f11f2113180d1def78fc7c76fccfe1684235d8abe08b0a4d1a79781f916a1940476073cceb8cb63735d55394766292a5a2101dfe207b1e2dbc192fdb9394c3243265e300ff9f63b8b5c77e7ff336aa8fe3a17862520cafbcf94eebd3c2ca7300e29daac7218d88a793d4965f9137a17a0d298cf35c81cca6defcf288778715b1c70d268e2bfe11b47104f8aa31350865b9fa3af67d8f84fe97abff99e87243a8fa83091b53edbe8279ceec4243275c9f15f7fadfed9393eb9526a124d8775a428d1cc7fa70654212440cc2dc8b3d778d9406fb047c23b338bce21039d76fc9fd72369f87ba2c0aa2281fd6a85da860fb37f270262d6c5a9afcd30fa61fc2801d59828771262e16e919c54e8cc918c02cc0e6957f7543d71dfedb21a05c6b29c8e9869567677cc230ff6681ac6f4e6e47cdf5df9f268333de67b034778101d60805e32d0a5b4b757cad9e5fe07fab9888a58b983cfa7a18142eda531eb4e414ce6d074d33c9052521b3d49ec94ce0437a6d0060b3e504b0085818b3d44a421bbc778f3af19a1b9cc48a87e7ec401ff28981a1baa5ae915b14d469e36afe96b34bab047f77971df4da9cf680adcfbc53c8e21890b1ca203467183705a113b4dccaa8f6aebadf4b3032e44940c95436f7b002f70578154e8c7c10f9fe29ce501d0738f1b0bfb3c48d2b676165039fe5e0c2ee0fa23cad37a3d5c81310c8cf7fbfa66262576fa28b58fb29be8201d2ae9fb78758703d4ab035991c2e5f279e3e7726228fa5bb2c0c92195a7604cb68fbed329035b2edf81bc17c9f64075c930fcb0700000000000000e44bd16da6f7bbeb0f60833b99558331db7c56c5bfb242c1419271aa815be938455ff64442c6edabe79f9ac644949ba00a9ac84b2a922c6c4ec7887ad8d3776ec948a07926a036cfd2f3ac658eefba96baf246a016c8d3b3b5aeb4069da5ae30becd8a3061e9f1cd5edb8ea5f8daea29a49795446b819187c6c8c5b53b78ecaebc0fac0b9b00a4eb7e44b5203bae3cccfcd97b08b351cbbe0c62c9052c06414c9d310f90a92967388f4be0ec34c8cf177be9e9da34f0e128071e8e249a378d243768b4a9366af4573701a4ef74369cfcbe3d3b028fc4af39dd2f15ec76384f2d584c54ea415c37d815e6ef1f01db5bb4c7bf24fd9e12a1105995928c6da55d1f492dd63960da6b3a2e8e7cc3e1e33e465feafa34eb33f4848504d08c43212ed5f975b29a55a1e0529e2d6b5a5a3017c251b40890f6aac3725cfa56e667bb2434c1243d792ffb5f0aae6d25d08e5d06ddd2b93ec54d188680b67b6a7c51f0262cb511d307757a69e68898c97c220eebd97735e4ee3d0500b3a2ee27a3ac44ca031cafbae87c904bc50cf5c729799a3f6dfc6edb6361933528f406d5c28056de1c61630d7fa7ba564a015684c06848d2435540ad1d6eb4bd6155200614798e40dcb3e494ca578451bdaab3716997a9f043a90a1faf3fefba6bf43d6e6d55bceb47beff2eaf5fcfbf66ce99c9fe0456c5bb5f3bd4358d02c4c4cb3e514b7db89255df4dd8a0dfb5a0e9df2e2089003df781d348a435c81bdc00f41140e70230592be090f0d332836f964188a87c36bde1943c0d5c40c98ed1636f15a311c1f3df5879c1bc1116873da9dbab2afb5a5fa6b1a5ed3008d460d6e5b0608844d5c20b2a0654f486876397c2c11d8bab6b45d3729016fea515a7735808316899c627bc2b281b0a74fe7ef7231ed62c283004f2ac9b4289eee841df6a0db77705130fbdb713d47d41014d11adf13da74fe9208dadee550f730d9774ed05f39d24d6301c86f803f4b3bb1462ee2022ab377563800d3b8e7239c3326e7a614149b6d4183b780a72d0d5eab8db692803e97a095661d7c503b54eeb0e0c8b63a714d1b1562284c7c204da6194431061fc4de2f5a620cbe52a2dc4d5a884b764c818fbbdf01f1f88f1ebc9cf00a801375dc6e91e6c24b063e135e04769206b547ec4ab0bfa6c1a716b2249b602ddffbbbc698e53f9cbf53f69e0beec713c056900a9c90efb6f004637799eae31802012879ae91e41fd39b88217d56ac5a9f7adbc5176df5fc9597660a342c7447c6ccdbacbbd3aa77a5b58937665a4164049d8276622d3f4764fa7f129f1a90c75a08e4a30a60172196b2539a40b9f082ae4663002f4676fa1432959d1616333c429ffd9fa129f4016a51ec28017c2a6edda230411e83c751723fc63321e7d8d358a2a1c2ac64720dd486dd19b496f29e0cf70fec66ad0e772c23ad3825d00000029b745bf1a506fa483e7975c044c7e3f3c6986c99eb59610147a26d03e2600327a06ba99a6f74e4e62873462cbcba95b5fb130866b48dc6c876ac6323254487fb9c5348d933683bd0f8021e4f19d7f5f727f160383d85fc3e58aaac7af95754418acf1cfab669e6c1bf402003fae8464db9e9f3efc1c2295e9edebb20352bd05a447255ae1fbe87a407095c50d26f9a0c93168724fd9204e83d931130d9236f47970618a18bcab684fca789238a54bc34d8b41fb61e3744a4c29b9f0e20dbc6daa3775a9766d148c219f9ca6b146a4397078f5e3e06d76b7099d7c4172f65b0165e4a043dcc79561d7589ff04f224b5619f66590f6773c39979efb812550dc1932b01581e2e41a1b612b5f9cd0dc7b1b1bd284b7ada3f436c63e8957e6a6ca11c3f53f23ddb2a9624124eccdf9a18af224331a88d7912668e46f494eee8f1fa0a5f26562ceb76e54353cddd616db11a6ee70b5237e8ab811154e69cd5f723132c723f37cd98db873583548b0853a1c4652b70cdad9a69ed76a28c7c74f67a7be397ce1a8ea57628943d347f98614525ab8f1d91f07e65bcb8ebe152819cbd7d6b236585c31d327082409d688edbcd0757b751dd225c2b83177e456a96400"/4579], 0x1, 0x75b, &(0x7f0000000840)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x143042, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f000000f900)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000540)="842cb9e56b6b83cb47052e8d80721122bc49f89f9282d0e7a05a827911bb1b3c52d1588881bab57a98704f70141a6dcf8214205ce2a3ee6fe29d1b06562214b4a1e6ba0736c3978a96fa387893134980b4ed4de6fdd9b9846d437d0b10d4c414eeb18e0e571d1ec9dda832024c6dd5471d012a087aee1e0c7a56b0b70a18fef436f2ff2a8dd1a6e5a3a920d5d8cd061babd7406e10cc8fa411f101fbce7c402a7e2354a2e3644448db569446ba820f71c1d7e0d25c19feac2e5372ea8751c8b0dcfca0762907de8830d00cd04bc05800d703e1d0", 0xd4}], 0x1}}], 0x1, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000400)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r0, &(0x7f00000000c0)=ANY=[], 0x208e24b)
creat(&(0x7f0000000e00)='./file0\x00', 0x0)

[ 1744.557710][ T1682] loop2: detected capacity change from 0 to 64
13:50:37 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1744.683539][ T1674] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1744.716818][ T1685] loop4: detected capacity change from 0 to 2048
[ 1744.723500][ T1674] CPU: 0 PID: 1674 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1744.723538][ T1674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1744.723553][ T1674] Call Trace:
[ 1744.723562][ T1674]  <TASK>
[ 1744.723572][ T1674]  dump_stack_lvl+0x136/0x150
[ 1744.723614][ T1674]  dump_header+0x10a/0xd70
[ 1744.758449][ T1674]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1744.764564][ T1674]  out_of_memory+0xd6c/0x1650
[ 1744.769291][ T1674]  ? oom_killer_disable+0x2b0/0x2b0
[ 1744.774536][ T1674]  ? kernfs_notify+0x1ac/0x410
[ 1744.779341][ T1674]  ? find_held_lock+0x2d/0x110
[ 1744.784152][ T1674]  mem_cgroup_out_of_memory+0x206/0x270
[ 1744.789752][ T1674]  ? mem_cgroup_margin+0x130/0x130
[ 1744.794926][ T1674]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1744.800779][ T1674]  memory_max_write+0x2f9/0x3c0
[ 1744.805679][ T1674]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1744.811791][ T1674]  ? lock_sync+0x190/0x190
[ 1744.816263][ T1674]  cgroup_file_write+0x1e2/0x7b0
[ 1744.821250][ T1674]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1744.827359][ T1674]  ? kill_css+0x3b0/0x3b0
[ 1744.831741][ T1674]  ? lock_acquire+0x32/0xc0
[ 1744.836277][ T1674]  ? kill_css+0x3b0/0x3b0
[ 1744.840647][ T1674]  kernfs_fop_write_iter+0x3f1/0x600
[ 1744.845971][ T1674]  vfs_write+0xa1d/0xe40
[ 1744.850239][ T1674]  ? kernel_write+0x670/0x670
[ 1744.854956][ T1674]  ? receive_fd+0x110/0x110
[ 1744.859480][ T1674]  ? __fget_files+0x26a/0x480
[ 1744.864207][ T1674]  ksys_write+0x12b/0x250
[ 1744.868552][ T1674]  ? __ia32_sys_read+0xb0/0xb0
[ 1744.873336][ T1674]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1744.879261][ T1674]  do_syscall_64+0x39/0xb0
[ 1744.883702][ T1674]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1744.889613][ T1674] RIP: 0033:0x7fab35c8c169
[ 1744.894039][ T1674] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1744.913676][ T1674] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1744.922138][ T1674] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1744.930117][ T1674] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000006
[ 1744.938095][ T1674] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1744.946073][ T1674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1744.954050][ T1674] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1744.962050][ T1674]  </TASK>
[ 1745.030003][ T1688] loop2: detected capacity change from 0 to 64
[ 1745.032346][ T1674] memory: usage 10376kB, limit 0kB, failcnt 388
[ 1745.056412][ T1674] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1745.077149][ T1674] Memory cgroup stats for /syz1:
[ 1745.077525][ T1674] anon 0
[ 1745.086637][ T1685] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[ 1745.087792][ T1674] file 10125312
[ 1745.112077][ T1674] kernel 299008
[ 1745.195521][ T1674] kernel_stack 0
[ 1745.202372][ T1674] pagetables 0
[ 1745.229938][ T1674] sec_pagetables 0
[ 1745.270218][ T1674] percpu 0
[ 1745.278199][ T1692] EXT4-fs error (device loop4): ext4_map_blocks:579: inode #2: block 16: comm syz-executor.4: lblock 0 mapped to illegal pblock 16 (length 1)
[ 1745.280023][ T1674] sock 0
[ 1745.349136][ T1674] vmalloc 0
[ 1745.357534][ T1674] shmem 10125312
[ 1745.372467][ T1674] zswap 0
[ 1745.375524][ T1674] zswapped 0
[ 1745.398733][ T1674] file_mapped 299008
[ 1745.416487][ T1674] file_dirty 0
[ 1745.454601][ T1674] file_writeback 0
[ 1745.458459][ T1674] swapcached 0
[ 1745.495352][ T1674] anon_thp 0
[ 1745.506313][ T1674] file_thp 0
[ 1745.522365][ T1674] shmem_thp 0
[ 1745.532638][ T1674] inactive_anon 0
[ 1745.543010][ T1674] active_anon 10125312
[ 1745.554843][ T5049] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1745.562264][ T1674] inactive_file 0
[ 1745.582307][ T1674] active_file 200704
[ 1745.586320][ T1674] unevictable 0
[ 1745.602203][ T1674] slab_reclaimable 264992
[ 1745.612712][ T1674] slab_unreclaimable 33912
[ 1745.625229][ T1674] slab 298904
[ 1745.643072][ T1674] workingset_refault_anon 0
[ 1745.668966][ T1674] workingset_refault_file 0
[ 1745.682440][ T1674] workingset_activate_anon 0
[ 1745.702361][ T1674] workingset_activate_file 0
[ 1745.726741][ T1674] workingset_restore_anon 0
[ 1745.753545][ T1674] workingset_restore_file 0
[ 1745.775151][ T1674] workingset_nodereclaim 0
[ 1745.792455][ T1674] pgscan 101845
[ 1745.802605][ T1674] pgsteal 44
[ 1745.805926][ T1674] pgscan_kswapd 0
[ 1745.832383][ T1674] pgscan_direct 101845
[ 1745.836575][ T1674] pgscan_khugepaged 0
[ 1745.840633][ T1674] pgsteal_kswapd 0
[ 1745.872312][ T1674] pgsteal_direct 44
[ 1745.876728][ T1674] pgsteal_khugepaged 0
[ 1745.892416][ T1674] pgfault 637309
[ 1745.902620][ T1674] pgmajfault 6
[ 1745.906111][ T1674] pgrefill 1296492
[ 1745.932383][ T1674] pgactivate 101787
[ 1745.936312][ T1674] pgdeactivate 0
[ 1745.939940][ T1674] pglazyfree 0
[ 1745.962389][ T1674] pglazyfreed 0
[ 1745.965979][ T1674] zswpin 0
[ 1745.992735][ T1674] zswpout 0
[ 1745.996122][ T1674] thp_fault_alloc 0
[ 1746.000024][ T1674] thp_collapse_alloc 0
[ 1746.022368][ T1674] Out of memory and no killable processes...
[ 1746.202973][T16241] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1746.243497][T16241] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1746.254560][T16241] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1746.262342][T16241] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1746.271263][T16241] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1746.678189][ T1694] chnl_net:caif_netlink_parms(): no params data found
[ 1746.898395][ T1694] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1746.908582][ T1694] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1746.917316][ T1694] bridge_slave_0: entered allmulticast mode
[ 1746.926737][ T1694] bridge_slave_0: entered promiscuous mode
[ 1746.956157][ T1694] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1746.972410][ T1694] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1746.980481][ T1694] bridge_slave_1: entered allmulticast mode
[ 1747.023691][ T1694] bridge_slave_1: entered promiscuous mode
[ 1747.098409][ T1694] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1747.124890][ T1694] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1747.213531][T14075] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1747.330922][ T1694] team0: Port device team_slave_0 added
[ 1747.359893][T14075] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1747.381354][ T1694] team0: Port device team_slave_1 added
[ 1747.431994][ T1694] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1747.450166][ T1694] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1747.479418][ T1694] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1747.515074][T14075] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1747.531405][ T1694] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1747.540046][ T1694] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1747.571189][ T1694] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1747.654971][T14075] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1747.755811][ T1694] hsr_slave_0: entered promiscuous mode
[ 1747.774439][ T1694] hsr_slave_1: entered promiscuous mode
[ 1747.781561][ T1694] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1747.793605][ T1694] Cannot create hsr debugfs directory
[ 1748.315480][T25866] Bluetooth: hci0: command 0x0409 tx timeout
[ 1749.053872][T14075] hsr_slave_0: left promiscuous mode
[ 1749.071094][T14075] hsr_slave_1: left promiscuous mode
[ 1749.080245][T14075] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1749.105694][T14075] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1749.130199][T14075] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1749.150709][T14075] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1749.177511][T14075] bridge_slave_1: left allmulticast mode
[ 1749.202412][T14075] bridge_slave_1: left promiscuous mode
[ 1749.208797][T14075] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1749.231203][T14075] bridge_slave_0: left allmulticast mode
[ 1749.239917][T14075] bridge_slave_0: left promiscuous mode
[ 1749.246857][T14075] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1749.268543][T14075] veth1_macvtap: left promiscuous mode
[ 1749.274970][T14075] veth0_macvtap: left promiscuous mode
[ 1749.281156][T14075] veth1_vlan: left promiscuous mode
[ 1749.287429][T14075] veth0_vlan: left promiscuous mode
[ 1749.573653][T14075] team0 (unregistering): Port device team_slave_1 removed
[ 1749.601452][T14075] team0 (unregistering): Port device team_slave_0 removed
[ 1749.619503][T14075] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1749.637342][T14075] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1749.795164][T14075] bond0 (unregistering): Released all slaves
[ 1750.392479][T25866] Bluetooth: hci0: command 0x041b tx timeout
[ 1751.355987][ T1694] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1751.366334][ T1694] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1751.377353][ T1694] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1751.389859][ T1694] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1751.469200][ T1694] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1751.484312][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1751.492845][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1751.506230][ T1694] 8021q: adding VLAN 0 to HW filter on device team0
[ 1751.520960][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1751.530126][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1751.538844][ T5522] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1751.545990][ T5522] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1751.555106][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1751.573200][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1751.583398][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1751.593169][T31218] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1751.601085][T31218] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1751.609426][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1751.620505][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1751.643046][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1751.655761][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1751.665188][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1751.676951][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1751.686825][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1751.696535][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1751.709119][ T1694] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1751.727374][ T1694] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1751.736873][T25481] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1751.745847][T25481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1751.757163][T25481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1751.942952][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1751.951235][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1751.966038][ T1694] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1751.990362][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1752.000068][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1752.025708][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1752.034485][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1752.044322][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1752.052578][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1752.063940][ T1694] veth0_vlan: entered promiscuous mode
[ 1752.078016][ T1694] veth1_vlan: entered promiscuous mode
[ 1752.103418][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1752.111618][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1752.120155][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1752.130109][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1752.142654][ T1694] veth0_macvtap: entered promiscuous mode
[ 1752.151838][ T1694] veth1_macvtap: entered promiscuous mode
[ 1752.173715][ T1694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1752.184415][ T1694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1752.196774][ T1694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1752.207569][ T1694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1752.218056][ T1694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1752.229222][ T1694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1752.240522][ T1694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1752.252348][ T1694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1752.262812][ T1694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1752.274146][ T1694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1752.286346][ T1694] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1752.295459][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1752.304289][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1752.312536][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1752.321417][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1752.334060][ T1694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1752.347374][ T1694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1752.357917][ T1694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1752.368784][ T1694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1752.379335][ T1694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1752.390470][ T1694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1752.401040][ T1694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1752.412763][ T1694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1752.423172][ T1694] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1752.434874][ T1694] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1752.447241][ T1694] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1752.458567][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1752.467550][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1752.472598][T25866] Bluetooth: hci0: command 0x040f tx timeout
[ 1752.490081][ T1694] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1752.500266][ T1694] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1752.510095][ T1694] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1752.520031][ T1694] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1752.616602][T14075] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1752.638598][T14075] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1752.658642][T32665] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1752.661728][T31218] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1752.672405][T32665] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1752.693895][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
13:50:46 executing program 5:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000080)={0x5f00, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x2, 0x7, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

13:50:46 executing program 0:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000007c0))
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, &(0x7f0000000580)='4', 0x1, 0x0, 0x0, &(0x7f00000025c0)="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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

13:50:46 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:46 executing program 4:
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000008440)=ANY=[@ANYRES64=0x0, @ANYBLOB="fc50116d75f02d841f9c73262913f9de63bfade281ef4d8423633d6581f5f1558ac700d79ea63011ea49db12c8411347d5e281b71466cb8732d5c115de5bf39d84e79cfae2de221363669b11f66ca41360d4f025ca39ec4e007b8e8465ed920050d1462eace39defc88ad62882f2b743d9e804004c45a1cfd52fa5f8e3500610f41ce8fe4c1988793a8a584697eb4166c85ddc05ea9e5b6aa0e22be377791e456580f7cf9109cfa8e9b8d6ce37fddf8efc68208032958d8935783d42dc3b6c3fac783392eca5f788c0d85b0bc44d4453375b18f8984e85bb55d33eafa86e27126361a60057f073ce49da076b57a6ceb0039f1fa57b07b287e0c570b5d002a1496dbd19331ff5cc69e45a2e9322014dc63f14565a67ea9ef045b64cd91a8b06a4f03ae5b2eb16887e778433a118b67c55e9822a36c1ba259224d61623b9171538375a281f1ca551c5ac472cc6f613af6c9f406af174917169c686fae8112f95cb66d537070000008870f65485e4d9b43c2abf75160f81eae6cbf6d14829001e071334e601b195e3688bc42ff711ebf133fc6dc69397fc7cd746f5bc4f1e1e495d7a89b4206a021b97c668658d35a5cdc079aeb833c862adae92eefb2afa694a4bf1cd550e27080182de50027acc51a490acb294414880da618234d94cdd3129377a817493303bb818c8fd552b0b3240b9a3f91732f0d0fa622beeae9dbfefdb4e3ef68bc0eda94101eab12d1eb38fd8d08207734d30241f533e139dd4712b1835520ca679ec3a31fcc11d929b7bf15f6a88ccfa244d04b0f832ffffffffdb9bed201f25c428eef8c7f1b6560ff12d39d704b46819ab7ad19799ff8ed45f5533acbcb0addfe1a216900539ac23fc0b0df88a13b8b815311a2aebad5bd57ad62f3f042b9614bc4092d530a60999893d48f3e994ecfa677c1d163e4dda0e53046c761b9867a872b910df3ee107b2bcc332aa326bae7f5956511c1254eccb7ac8a51d92c0dd65176552763868167e1cb1ad243302bda253c8d7d7b18449e5cbd26299ac94b0e15ad00015ebda7b71381e98f19557875e328ba559faf3e0cca42978a53a9bc8a83cc078e41b02bde69a9e7dd7b65f76bd557a32777a27f30a5920cf8449b5995ff227ace02b9a1e6121b57f50916b053fc771f587d000cc3a09a204c2cb2ecd5114c1d2fad2398a7f93a78c9f8c3fc5a1ccda75d98d626c27119376a6941ee7880e78e4b6f2c892b0d6ac1c72c0120a15ca80925b475213c7af02affe3370c5a3cf9eb092ae1e4f748bf72b18c22e6158cfe2d2b7ac47cac3b19e75804e11b408a0b941c95d6a14d022027128b6858adc39e323d76539ca18e2518f987f6991931660dec11266dad0a52f05d0dd07d6ede6014c1d6c0ab0407e3ab8c05819036e383631639be17b5ad0bc055f06732848ded6a8400aa82a9a8f697b137b4a77f2614e226cc16081167271e9f254f2cf910bea6e0ad2162cb74fe4e96fa50c6d9ec556fd10c77ca2bf5bfeb07b36def68e3bd377c42ecb56fb934aecfad205ff357b8089be84252bd02e4a5ca8bce361bd220e24fee981d6496f6ff6cb9517ffb24a0edc5f8aba8020b7ea63f8ae086c18ad2ecb22c98f9c04dceee16e7f678bf64ffb7c5478d9ed8eb90f6d38ca2e9413a88096e2b1d60c285026e44b38e8f38a46c7aac46e0356bbf0ea767a34b72b60827251dbc8ec3f732655ae2dd964656b7e50742810125dc723f04a1aac3822a7c5308bca6f6e3c54a7d46f09fc731c922d79d77dc476a33a7dc72ea15545136beb554d6fb175efce5f593321f86e1b9a02efb5e722125ae65d090000002ac9d148b26a35c1ae2bfcde178f7bb23157e6f65d60a773e9954868fc091c7162afc1679d2dae9411616d92be975d10e7c051b3d9e2740990761f1a2b3c82515a6432c121d983b264f2cf01e6ef9643858c9d7e9bf33f01a66771e8ec47aca45941d641016f2a0cd5552d7c8556877ec4d940876eadae48675f3f590ff7bde8f1beba5b3f73da84a6526845824c544514f731bdd239679880a8d47b7b691c3c56a0d0dcc5708bfd89c064bca13726db2a684e8e910b991c3f3ad8672843a45b9c15200526ecd4e40ba0ef1f42c86f3fe3792feb11abbb7b24da0cc9d3ee7d0a72dbf24575c33ae9bee3c84bd2ed32385dcbeb75003183c48f3955d9f3477cb3094db3252d1eaadac54611d1d082e9a6824a557e25c61b20ec2a3d37ed5bac7fd02ce3e86c83881e3ee8437bcdb1242a148321bd613555d1e7f79801c990106b312a971e9dd1382f9e275b19ed1c342a06a2963eb8ccc84cc580e48d9be4337a6541ebd8448813169787eca6c5562d5db655d15cecb998aa9bab2b8d4dd2293e20d7f102a58ba52a472cc8889b4dfe4d2dfbcca3b1c108aaf524fca4e38409a7561178dab922d2f10307727f1d81428d658e1cc855a2b7f87964eaf386c50fc6a75b888bb0d3ce411c2cf1a6fce252b2603f130535ed69a48af2d34160790401b147d6cbdac92b6865249569b3931c370cb8ac1e858372db587411f5e733ee301e261a2ce812b31fc49f861a4a29404f6d7c33df69d0267608e7961a396d677ffd5b4e0cedc9a5f34ed72d7db34e2d810707e43ab78310bdf1e3ecd8f026a59bece4e0a01b4cb8bfc04043545fa8dbb2c312a749e0bc3d4508b33f80dfcb8b5db9160becd2328e3c82f8240481bcdd433bff761a88c9ce44bce2959a9477eb194e491030597dd0678b75e0f90df4e8931aafeb76c5b35feecd4f68591139d9da225e3497d0df6f4f128d4bf6dd200f3c92b573c4feaf4529a76cdd0c7b43ac75b56c654f1f683123d33daa387a0a52646eb25773d1675ee0dd505398a3aab6803c69c15f0e877a657447789c47dac5ff1ad544748ccb7d1e420eaeb5b96aa961e450ee5773502cc75afeee4475b16795b80fb4a0a923a3ec4cce5456ea7bb1839991d15a0799731942374ebaac43332f58af2fef3d3fc83bd9db50aec9fb078a7d221bff9179bf2cfcf9d3f8daa2cfa03bf992cd2542ab8c904ce94384cf7caa389b232f771cf4fd05ea5cefe2798592b09b0d475f985641515754f863282ab45275247a5ccca075ccbbeb69b5eac9e15c3c71c02442214f51aa3aa26a33ca66c168fd0c204abcea1e393afd58c6df796694eefdf570b8a28d5fd0475ae9e7ca900b4075acbc2a40edc0e4708fa86709ba400e432c6912f98b08dda06acce8d6582e6c66ebb3b2c2913ccf9d99ebbe4908c12b56ed66859ff03411b52839872ba372b67d8e3ba6cf7e5378522e68382ca57eb6102934d376ba8eeb8148917794d64bf1116d0dce6182e7c2418deea3ac345a6076c5091991674240754432ae9aa7b52ed3abb0ff439fd7524809d089038f6b18b8e8512abe3faf1089ca9f19a6ea88099f635686c5237cf24386fcb2f2f9309969956c8620e644a62b26e1dc78e1d37d2c5f968324868d78252f4ce86227c04e8aadcf568ddaef86f8294a1d8c2fe0d7a210b0f8999e82dbacaa84676e23de8c96b2ede1ea1295f11f2113180d1def78fc7c76fccfe1684235d8abe08b0a4d1a79781f916a1940476073cceb8cb63735d55394766292a5a2101dfe207b1e2dbc192fdb9394c3243265e300ff9f63b8b5c77e7ff336aa8fe3a17862520cafbcf94eebd3c2ca7300e29daac7218d88a793d4965f9137a17a0d298cf35c81cca6defcf288778715b1c70d268e2bfe11b47104f8aa31350865b9fa3af67d8f84fe97abff99e87243a8fa83091b53edbe8279ceec4243275c9f15f7fadfed9393eb9526a124d8775a428d1cc7fa70654212440cc2dc8b3d778d9406fb047c23b338bce21039d76fc9fd72369f87ba2c0aa2281fd6a85da860fb37f270262d6c5a9afcd30fa61fc2801d59828771262e16e919c54e8cc918c02cc0e6957f7543d71dfedb21a05c6b29c8e9869567677cc230ff6681ac6f4e6e47cdf5df9f268333de67b034778101d60805e32d0a5b4b757cad9e5fe07fab9888a58b983cfa7a18142eda531eb4e414ce6d074d33c9052521b3d49ec94ce0437a6d0060b3e504b0085818b3d44a421bbc778f3af19a1b9cc48a87e7ec401ff28981a1baa5ae915b14d469e36afe96b34bab047f77971df4da9cf680adcfbc53c8e21890b1ca203467183705a113b4dccaa8f6aebadf4b3032e44940c95436f7b002f70578154e8c7c10f9fe29ce501d0738f1b0bfb3c48d2b676165039fe5e0c2ee0fa23cad37a3d5c81310c8cf7fbfa66262576fa28b58fb29be8201d2ae9fb78758703d4ab035991c2e5f279e3e7726228fa5bb2c0c92195a7604cb68fbed329035b2edf81bc17c9f64075c930fcb0700000000000000e44bd16da6f7bbeb0f60833b99558331db7c56c5bfb242c1419271aa815be938455ff64442c6edabe79f9ac644949ba00a9ac84b2a922c6c4ec7887ad8d3776ec948a07926a036cfd2f3ac658eefba96baf246a016c8d3b3b5aeb4069da5ae30becd8a3061e9f1cd5edb8ea5f8daea29a49795446b819187c6c8c5b53b78ecaebc0fac0b9b00a4eb7e44b5203bae3cccfcd97b08b351cbbe0c62c9052c06414c9d310f90a92967388f4be0ec34c8cf177be9e9da34f0e128071e8e249a378d243768b4a9366af4573701a4ef74369cfcbe3d3b028fc4af39dd2f15ec76384f2d584c54ea415c37d815e6ef1f01db5bb4c7bf24fd9e12a1105995928c6da55d1f492dd63960da6b3a2e8e7cc3e1e33e465feafa34eb33f4848504d08c43212ed5f975b29a55a1e0529e2d6b5a5a3017c251b40890f6aac3725cfa56e667bb2434c1243d792ffb5f0aae6d25d08e5d06ddd2b93ec54d188680b67b6a7c51f0262cb511d307757a69e68898c97c220eebd97735e4ee3d0500b3a2ee27a3ac44ca031cafbae87c904bc50cf5c729799a3f6dfc6edb6361933528f406d5c28056de1c61630d7fa7ba564a015684c06848d2435540ad1d6eb4bd6155200614798e40dcb3e494ca578451bdaab3716997a9f043a90a1faf3fefba6bf43d6e6d55bceb47beff2eaf5fcfbf66ce99c9fe0456c5bb5f3bd4358d02c4c4cb3e514b7db89255df4dd8a0dfb5a0e9df2e2089003df781d348a435c81bdc00f41140e70230592be090f0d332836f964188a87c36bde1943c0d5c40c98ed1636f15a311c1f3df5879c1bc1116873da9dbab2afb5a5fa6b1a5ed3008d460d6e5b0608844d5c20b2a0654f486876397c2c11d8bab6b45d3729016fea515a7735808316899c627bc2b281b0a74fe7ef7231ed62c283004f2ac9b4289eee841df6a0db77705130fbdb713d47d41014d11adf13da74fe9208dadee550f730d9774ed05f39d24d6301c86f803f4b3bb1462ee2022ab377563800d3b8e7239c3326e7a614149b6d4183b780a72d0d5eab8db692803e97a095661d7c503b54eeb0e0c8b63a714d1b1562284c7c204da6194431061fc4de2f5a620cbe52a2dc4d5a884b764c818fbbdf01f1f88f1ebc9cf00a801375dc6e91e6c24b063e135e04769206b547ec4ab0bfa6c1a716b2249b602ddffbbbc698e53f9cbf53f69e0beec713c056900a9c90efb6f004637799eae31802012879ae91e41fd39b88217d56ac5a9f7adbc5176df5fc9597660a342c7447c6ccdbacbbd3aa77a5b58937665a4164049d8276622d3f4764fa7f129f1a90c75a08e4a30a60172196b2539a40b9f082ae4663002f4676fa1432959d1616333c429ffd9fa129f4016a51ec28017c2a6edda230411e83c751723fc63321e7d8d358a2a1c2ac64720dd486dd19b496f29e0cf70fec66ad0e772c23ad3825d00000029b745bf1a506fa483e7975c044c7e3f3c6986c99eb59610147a26d03e2600327a06ba99a6f74e4e62873462cbcba95b5fb130866b48dc6c876ac6323254487fb9c5348d933683bd0f8021e4f19d7f5f727f160383d85fc3e58aaac7af95754418acf1cfab669e6c1bf402003fae8464db9e9f3efc1c2295e9edebb20352bd05a447255ae1fbe87a407095c50d26f9a0c93168724fd9204e83d931130d9236f47970618a18bcab684fca789238a54bc34d8b41fb61e3744a4c29b9f0e20dbc6daa3775a9766d148c219f9ca6b146a4397078f5e3e06d76b7099d7c4172f65b0165e4a043dcc79561d7589ff04f224b5619f66590f6773c39979efb812550dc1932b01581e2e41a1b612b5f9cd0dc7b1b1bd284b7ada3f436c63e8957e6a6ca11c3f53f23ddb2a9624124eccdf9a18af224331a88d7912668e46f494eee8f1fa0a5f26562ceb76e54353cddd616db11a6ee70b5237e8ab811154e69cd5f723132c723f37cd98db873583548b0853a1c4652b70cdad9a69ed76a28c7c74f67a7be397ce1a8ea57628943d347f98614525ab8f1d91f07e65bcb8ebe152819cbd7d6b236585c31d327082409d688edbcd0757b751dd225c2b83177e456a96400"/4579], 0x1, 0x75b, &(0x7f0000000840)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x143042, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f000000f900)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000540)="842cb9e56b6b83cb47052e8d80721122bc49f89f9282d0e7a05a827911bb1b3c52d1588881bab57a98704f70141a6dcf8214205ce2a3ee6fe29d1b06562214b4a1e6ba0736c3978a96fa387893134980b4ed4de6fdd9b9846d437d0b10d4c414eeb18e0e571d1ec9dda832024c6dd5471d012a087aee1e0c7a56b0b70a18fef436f2ff2a8dd1a6e5a3a920d5d8cd061babd7406e10cc8fa411f101fbce7c402a7e2354a2e3644448db569446ba820f71c1d7e0d25c19feac2e5372ea8751c8b0dcfca0762907de8830d00cd04bc05800d703e1d0", 0xd4}], 0x1}}], 0x1, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000400)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r0, &(0x7f00000000c0)=ANY=[], 0x208e24b)
creat(&(0x7f0000000e00)='./file0\x00', 0x0)

13:50:46 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:46 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="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", 0x103}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1753.656854][ T1744] loop2: detected capacity change from 0 to 64
13:50:46 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1753.725630][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1753.803111][ T1745] loop4: detected capacity change from 0 to 2048
[ 1753.861839][ T1694] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[ 1753.913396][ T1694] CPU: 0 PID: 1694 Comm: syz-executor.1 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1753.922922][ T1694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1753.927870][ T1756] loop2: detected capacity change from 0 to 64
[ 1753.932983][ T1694] Call Trace:
[ 1753.942538][ T1694]  <TASK>
[ 1753.945495][ T1694]  dump_stack_lvl+0x136/0x150
[ 1753.950213][ T1694]  dump_header+0x10a/0xd70
[ 1753.954675][ T1694]  oom_kill_process+0x25d/0x600
[ 1753.959571][ T1694]  out_of_memory+0x35c/0x1650
[ 1753.964289][ T1694]  ? find_held_lock+0x2d/0x110
[ 1753.969097][ T1694]  ? oom_killer_disable+0x2b0/0x2b0
[ 1753.974329][ T1694]  ? rcu_read_unlock+0x9/0x60
[ 1753.979066][ T1694]  ? find_held_lock+0x2d/0x110
[ 1753.983878][ T1694]  mem_cgroup_out_of_memory+0x206/0x270
[ 1753.989518][ T1694]  ? mem_cgroup_margin+0x130/0x130
[ 1753.994682][ T1694]  ? lock_downgrade+0x690/0x690
[ 1753.999594][ T1694]  try_charge_memcg+0xf9c/0x13b0
[ 1754.001496][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1754.004558][ T1694]  ? mem_cgroup_handle_over_high+0x520/0x520
[ 1754.004595][ T1694]  ? get_mem_cgroup_from_objcg+0xa1/0x280
[ 1754.004622][ T1694]  ? lock_downgrade+0x690/0x690
[ 1754.032553][ T1694]  ? trace_lock_acquire+0x12d/0x180
[ 1754.037777][ T1694]  ? get_mem_cgroup_from_objcg+0x159/0x280
[ 1754.043594][ T1694]  ? lock_acquire+0x32/0xc0
[ 1754.048214][ T1694]  __memcg_kmem_charge_page+0x16e/0x3c0
[ 1754.053780][ T1694]  memcg_charge_kernel_stack.part.0+0x6c/0x150
[ 1754.059979][ T1694]  copy_process+0x1442/0x7600
[ 1754.064676][ T1694]  ? _raw_spin_unlock+0x28/0x40
[ 1754.069624][ T1694]  ? wp_page_reuse+0x1a1/0x570
[ 1754.074411][ T1694]  ? pidfd_prepare+0x80/0x80
[ 1754.079029][ T1694]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 1754.085039][ T1694]  kernel_clone+0xeb/0x890
[ 1754.089490][ T1694]  ? create_io_thread+0xe0/0xe0
[ 1754.094364][ T1694]  ? do_user_addr_fault+0x2d4/0x1240
[ 1754.099684][ T1694]  ? reacquire_held_locks+0x216/0x4e0
[ 1754.105074][ T1694]  ? do_user_addr_fault+0x2d4/0x1240
[ 1754.110383][ T1694]  ? find_held_lock+0x2d/0x110
[ 1754.115164][ T1694]  __do_sys_clone+0xba/0x100
[ 1754.119771][ T1694]  ? kernel_clone+0x890/0x890
[ 1754.124482][ T1694]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1754.130403][ T1694]  do_syscall_64+0x39/0xb0
[ 1754.134833][ T1694]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1754.140740][ T1694] RIP: 0033:0x7f4131689e9b
[ 1754.145172][ T1694] Code: ed 0f 85 60 01 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 89 00 00 00 41 89 c5 85 c0 0f 85 90 00 00
[ 1754.164791][ T1694] RSP: 002b:00007ffc937f4600 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1754.173213][ T1694] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4131689e9b
[ 1754.181193][ T1694] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 1754.189171][ T1694] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000555555de2400
[ 1754.197147][ T1694] R10: 0000555555de26d0 R11: 0000000000000246 R12: 0000000000000001
[ 1754.205121][ T1694] R13: 0000000000000000 R14: 0000000000000001 R15: 00007ffc937f46e0
[ 1754.213123][ T1694]  </TASK>
13:50:47 executing program 0:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @my=0x0}, 0x10)
sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)

13:50:47 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, 0x0, 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1754.248753][ T1745] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[ 1754.279824][ T1694] memory: usage 10456kB, limit 0kB, failcnt 411
[ 1754.287310][ T1694] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1754.295022][ T1694] Memory cgroup stats for /syz1:
[ 1754.295998][ T1694] anon 49152
[ 1754.358121][ T1694] file 10125312
[ 1754.365333][ T1694] kernel 331776
[ 1754.372470][ T1694] kernel_stack 0
[ 1754.383692][ T1694] pagetables 8192
[ 1754.399281][ T1694] sec_pagetables 0
[ 1754.440633][ T1761] EXT4-fs error (device loop4): ext4_map_blocks:579: inode #2: block 16: comm syz-executor.4: lblock 0 mapped to illegal pblock 16 (length 1)
[ 1754.461410][ T1694] percpu 0
[ 1754.466223][ T1759] loop2: detected capacity change from 0 to 64
[ 1754.479233][ T1694] sock 0
13:50:47 executing program 5:
r0 = socket(0x11, 0x3, 0x0)
setsockopt$netlink_NETLINK_RX_RING(r0, 0x107, 0xa, 0x0, 0x0)

13:50:47 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1754.506068][ T1694] vmalloc 0
[ 1754.525455][ T1694] shmem 10125312
[ 1754.529453][ T1694] zswap 0
[ 1754.552497][T25866] Bluetooth: hci0: command 0x0419 tx timeout
[ 1754.555920][ T1694] zswapped 0
13:50:47 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, 0x0, 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1754.658315][ T1694] file_mapped 299008
[ 1754.670884][ T1694] file_dirty 0
13:50:47 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x2, 0x7, 0x2, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0)

[ 1754.707963][ T1694] file_writeback 0
[ 1754.736018][ T1694] swapcached 0
13:50:47 executing program 5:
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000280)={0xa8, 0x0, 0x0, [{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00, 0xee01}}}]}, 0xa8)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
openat(0xffffffffffffff9c, &(0x7f00000020c0)='./file0/file0\x00', 0x0, 0x0)

[ 1754.779396][ T1694] anon_thp 0
[ 1754.797883][ T1694] file_thp 0
[ 1754.801409][ T1694] shmem_thp 0
[ 1754.845241][ T1772] loop2: detected capacity change from 0 to 64
[ 1754.848688][ T1694] inactive_anon 0
13:50:47 executing program 4:
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000008440)=ANY=[@ANYRES64=0x0, @ANYBLOB="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"/4579], 0x1, 0x75b, &(0x7f0000000840)="$eJzs3c1rHOUfAPDvbJKmv7Q/E0HQegoIGijdmBpbBQ8VDyJYKOjZdtlsQ81utmQ3pQkBLSJ4EVQ8CHrp2Zd68+rLVf8LD9JSNS1WPEhkNrPpttlNN22SRffzgad9npnZPPOdZ2aeZ3eGmQD61nj6Ty7iUER8kESMZtOTiBhq5AYjTqwvd2t1pZimJNbWXvstaSxzc3WlGC2fSR3ICo9FxPfvRhzOba63trQ8VyiXSwtZebJeOT9ZW1o+cq5SmC3NluaPTU1PHz3+7PFjOxfrHz8tH7z24ctPfXXir3cevfL+D0mciIPZvNY4dsp4jGfbZCjdhHd4aacr67Gk1yvAfUkPzYH1ozwOxWgMNHIAwH/ZWxGxBgD0mUT/DwB9pvk7wM3VlWIz9fYXib11/cWI2L8ef/P65vqcweya3f7GddCRm8kdV0aSiBjbgfrHI+Kzb974Ik2xS9chAdp5+1JEnBkb33z+Tzbds7BdT3exzPhdZec/2DvfpuOf59qN/3Ib459oM/4ZbnPs3o97H/+5qztQTUfp+O+FlnvbbrXEnxkbyEr/b4z5hpKz58ql9Nz2UERMxNBwWp7aoo6JG3/f6DSvdfz3+0dvfp7Wn/5/e4nc1cHhOz8zU6gXHiTmVtcvRTw+2C7+ZKP9kw7j31Nd1vHK8+992mleGn8abzNtjn93rV2OeLJt+9++oy3Z8v7EycbuMNncKdr4+udPRjrV39r+aUrrb34X2Atp+49sHf9Y0nq/Zm37dfx4efS7TvPuHX/7/X9f8nojvy+bdrFQry9MRexLXt08/ejtzzbLzeXT+CeeaH/8b7X/p98Jz3QZ/+C1X7+8//h3Vxr/zLbaf/uZK7fmBjrV3137TzdyE9mUbs5/3a7gg2w7AAAAAAAAAAAAAAAAAAAAAAAAAOhWLiIORpLLb+RzuXx+/R3ej8RIrlyt1Q+frS7Oz0TjXdljMZRrPupytOV5qFPZ8/Cb5aN3lZ+JiIcj4uPh/zXK+WK1PNPr4AEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgc6DD+/9Tvwz3eu0AgF2zv9crAADsOf0/APQf/T8A9B/9PwD0H/0/APQf/T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC77NTJk2la+3N1pZiWZy4sLc5VLxyZKdXm8pXFYr5YXTifn61WZ8ulfLFaudffK1er56djfvHiZL1Uq0/WlpZPV6qL8/XT5yqF2dLp0tCeRAUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA21NbWp4rlMulBRkZGZmNTK/PTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/Dv8EAAD//z4HKi8=")
open(&(0x7f0000000180)='./bus\x00', 0x143042, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f000000f900)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000540)="842cb9e56b6b83cb47052e8d80721122bc49f89f9282d0e7a05a827911bb1b3c52d1588881bab57a98704f70141a6dcf8214205ce2a3ee6fe29d1b06562214b4a1e6ba0736c3978a96fa387893134980b4ed4de6fdd9b9846d437d0b10d4c414eeb18e0e571d1ec9dda832024c6dd5471d012a087aee1e0c7a56b0b70a18fef436f2ff2a8dd1a6e5a3a920d5d8cd061babd7406e10cc8fa411f101fbce7c402a7e2354a2e3644448db569446ba820f71c1d7e0d25c19feac2e5372ea8751c8b0dcfca0762907de8830d00cd04bc05800d703e1d0", 0xd4}], 0x1}}], 0x1, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000400)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r0, &(0x7f00000000c0)=ANY=[], 0x208e24b)
creat(&(0x7f0000000e00)='./file0\x00', 0x0)

[ 1754.890865][ T1694] active_anon 10174464
[ 1754.904124][ T1694] inactive_file 0
[ 1754.907825][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
13:50:48 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, 0x0, 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1754.941183][ T5049] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1754.996452][ T1694] active_file 200704
[ 1755.000896][ T1694] unevictable 0
[ 1755.022467][ T1694] slab_reclaimable 267560
[ 1755.031631][T27190] udevd[27190]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
13:50:48 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200000800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x94, &(0x7f0000000040)=""/148, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000002940)={&(0x7f0000002900)='./file0\x00', 0x0, 0x10}, 0x10)

[ 1755.035172][ T1694] slab_unreclaimable 41536
[ 1755.066713][ T1694] slab 309096
[ 1755.070516][ T1694] workingset_refault_anon 0
[ 1755.102495][ T1694] workingset_refault_file 0
[ 1755.109325][ T1694] workingset_activate_anon 0
[ 1755.133545][ T1694] workingset_activate_file 0
[ 1755.171634][ T1779] loop2: detected capacity change from 0 to 64
[ 1755.172375][ T1694] workingset_restore_anon 0
[ 1755.219139][ T1694] workingset_restore_file 0
[ 1755.243057][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1755.257539][ T1694] workingset_nodereclaim 0
[ 1755.277598][ T1694] pgscan 104295
[ 1755.288809][ T1694] pgsteal 44
[ 1755.300149][ T1694] pgscan_kswapd 0
[ 1755.311343][ T1694] pgscan_direct 104295
[ 1755.341792][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1755.356375][ T1694] pgscan_khugepaged 0
[ 1755.384190][ T1784] loop4: detected capacity change from 0 to 2048
[ 1755.384543][ T1694] pgsteal_kswapd 0
[ 1755.409798][ T1694] pgsteal_direct 44
[ 1755.419603][ T1694] pgsteal_khugepaged 0
[ 1755.431219][ T1694] pgfault 641538
[ 1755.454536][ T1694] pgmajfault 6
[ 1755.460171][ T1694] pgrefill 1296492
[ 1755.469891][ T1694] pgactivate 104237
[ 1755.479832][ T1694] pgdeactivate 0
[ 1755.486340][ T1784] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[ 1755.489223][ T1694] pglazyfree 0
[ 1755.513123][ T1694] pglazyfreed 0
[ 1755.516636][ T1694] zswpin 0
[ 1755.519672][ T1694] zswpout 0
[ 1755.542433][ T1694] thp_fault_alloc 0
[ 1755.546758][ T1694] thp_collapse_alloc 0
[ 1755.551683][ T1694] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=1694,uid=0
[ 1755.570750][T25963] udevd[25963]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system
[ 1755.583536][ T1694] Memory cgroup out of memory: Killed process 1694 (syz-executor.1) total-vm:50576kB, anon-rss:368kB, file-rss:9088kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:0
[ 1755.752934][ T1790] EXT4-fs error (device loop4): ext4_map_blocks:579: inode #2: block 16: comm syz-executor.4: lblock 0 mapped to illegal pblock 16 (length 1)
[ 1756.085452][ T5049] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
13:50:50 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

13:50:50 executing program 5:
unlink(0xfffffffffffffffc)

13:50:50 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="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", 0x105}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:50:50 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:50 executing program 0:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x2, 0x7, 0x2, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0)

13:50:50 executing program 4:
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x2000480, &(0x7f0000008440)=ANY=[@ANYRES64=0x0, @ANYBLOB="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"/4579], 0x1, 0x75b, &(0x7f0000000840)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x143042, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f000000f900)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000540)="842cb9e56b6b83cb47052e8d80721122bc49f89f9282d0e7a05a827911bb1b3c52d1588881bab57a98704f70141a6dcf8214205ce2a3ee6fe29d1b06562214b4a1e6ba0736c3978a96fa387893134980b4ed4de6fdd9b9846d437d0b10d4c414eeb18e0e571d1ec9dda832024c6dd5471d012a087aee1e0c7a56b0b70a18fef436f2ff2a8dd1a6e5a3a920d5d8cd061babd7406e10cc8fa411f101fbce7c402a7e2354a2e3644448db569446ba820f71c1d7e0d25c19feac2e5372ea8751c8b0dcfca0762907de8830d00cd04bc05800d703e1d0", 0xd4}], 0x1}}], 0x1, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000400)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r0, &(0x7f00000000c0)=ANY=[], 0x208e24b)
creat(&(0x7f0000000e00)='./file0\x00', 0x0)

[ 1757.956008][ T1800] loop2: detected capacity change from 0 to 64
13:50:51 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

[ 1758.077927][ T1798] loop4: detected capacity change from 0 to 2048
[ 1758.103017][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
13:50:51 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1758.153725][T32665] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1758.181592][ T1805] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1758.242387][ T1805] CPU: 1 PID: 1805 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1758.251911][ T1805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1758.262005][ T1805] Call Trace:
[ 1758.264866][ T1811] loop2: detected capacity change from 0 to 64
[ 1758.265287][ T1805]  <TASK>
[ 1758.265301][ T1805]  dump_stack_lvl+0x136/0x150
[ 1758.265345][ T1805]  dump_header+0x10a/0xd70
[ 1758.283547][ T1805]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1758.289705][ T1805]  out_of_memory+0xd6c/0x1650
[ 1758.294432][ T1805]  ? io_schedule_timeout+0x150/0x150
[ 1758.299777][ T1805]  ? oom_killer_disable+0x2b0/0x2b0
[ 1758.305016][ T1805]  ? kernfs_notify+0x1ac/0x410
[ 1758.309823][ T1805]  mem_cgroup_out_of_memory+0x206/0x270
[ 1758.315415][ T1805]  ? mem_cgroup_margin+0x130/0x130
[ 1758.320593][ T1805]  memory_max_write+0x2f9/0x3c0
[ 1758.325479][ T1805]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1758.331588][ T1805]  ? lock_sync+0x190/0x190
[ 1758.336063][ T1805]  cgroup_file_write+0x1e2/0x7b0
[ 1758.341047][ T1805]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1758.347150][ T1805]  ? kill_css+0x3b0/0x3b0
[ 1758.351519][ T1805]  ? lock_acquire+0x32/0xc0
[ 1758.356078][ T1805]  ? kill_css+0x3b0/0x3b0
[ 1758.360452][ T1805]  kernfs_fop_write_iter+0x3f1/0x600
[ 1758.365809][ T1805]  vfs_write+0xa1d/0xe40
[ 1758.370101][ T1805]  ? kernel_write+0x670/0x670
[ 1758.374907][ T1805]  ? receive_fd+0x110/0x110
[ 1758.379456][ T1805]  ? __fget_files+0x26a/0x480
[ 1758.384198][ T1805]  ksys_write+0x12b/0x250
[ 1758.388563][ T1805]  ? __ia32_sys_read+0xb0/0xb0
[ 1758.393370][ T1805]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1758.399322][ T1805]  do_syscall_64+0x39/0xb0
[ 1758.403781][ T1805]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1758.409711][ T1805] RIP: 0033:0x7fab35c8c169
[ 1758.414154][ T1805] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1758.433805][ T1805] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
13:50:51 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1\x00', 0x0)
getdents64(r0, &(0x7f00000000c0)=""/134, 0x86)

[ 1758.442258][ T1805] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1758.450262][ T1805] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000006
[ 1758.458264][ T1805] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1758.466269][ T1805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1758.474274][ T1805] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1758.482299][ T1805]  </TASK>
[ 1758.496085][ T1798] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[ 1758.545005][T27653] udevd[27653]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system
[ 1758.573153][ T1808] netlink: 'syz-executor.5': attribute type 10 has an invalid length.
13:50:51 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

[ 1758.670225][T32665] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1758.686213][ T1814] EXT4-fs error (device loop4): ext4_map_blocks:579: inode #2: block 16: comm syz-executor.4: lblock 0 mapped to illegal pblock 16 (length 1)
13:50:51 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="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", 0x105}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1758.720464][ T1816] loop2: detected capacity change from 0 to 64
13:50:51 executing program 0:
syz_emit_ethernet(0x4a, &(0x7f0000000480)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00@\x00', 0x14, 0x6, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[ 1758.821089][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
13:50:52 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(0xffffffffffffffff, &(0x7f00000000c0)=""/134, 0x86)

[ 1759.002768][T32665] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1759.008891][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1759.086727][ T1822] netlink: 'syz-executor.5': attribute type 10 has an invalid length.
13:50:52 executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200000800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x94, &(0x7f0000000040)=""/148, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001200)={&(0x7f00000011c0)='sys_enter\x00', r0}, 0x10)
statx(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)

13:50:52 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

[ 1759.193789][ T1805] memory: usage 10372kB, limit 0kB, failcnt 428
[ 1759.205226][ T1826] loop2: detected capacity change from 0 to 64
[ 1759.212507][ T1805] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1759.280233][T32665] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1759.291159][ T1805] Memory cgroup stats for /syz1:
[ 1759.312801][ T1805] anon 0
[ 1759.326318][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1759.432618][ T1831] netlink: 'syz-executor.5': attribute type 10 has an invalid length.
[ 1759.470936][ T1805] file 10125312
[ 1759.476299][ T1805] kernel 294912
[ 1759.487251][ T5049] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1759.488208][ T1805] kernel_stack 0
[ 1759.499566][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1759.581970][ T1805] pagetables 0
[ 1759.600288][ T1805] sec_pagetables 0
[ 1759.615942][ T1805] percpu 0
[ 1759.629283][ T1805] sock 0
[ 1759.639380][ T1805] vmalloc 0
[ 1759.683727][ T1805] shmem 10125312
[ 1759.687739][ T1805] zswap 0
[ 1759.793559][ T1805] zswapped 0
[ 1759.797413][ T1805] file_mapped 299008
[ 1759.801746][ T1805] file_dirty 0
[ 1759.822024][ T1805] file_writeback 0
[ 1759.826637][ T1805] swapcached 0
[ 1759.862441][ T1805] anon_thp 0
[ 1759.871743][ T1805] file_thp 0
[ 1759.890103][ T1805] shmem_thp 0
[ 1759.907776][ T1805] inactive_anon 0
[ 1759.921018][ T1805] active_anon 10125312
[ 1759.936634][ T1805] inactive_file 0
[ 1759.957280][ T1805] active_file 200704
[ 1759.972348][ T1805] unevictable 0
[ 1759.976286][ T1805] slab_reclaimable 264992
[ 1759.992534][ T1805] slab_unreclaimable 28328
[ 1759.997430][ T1805] slab 293320
[ 1760.033489][ T1805] workingset_refault_anon 0
[ 1760.038425][ T1805] workingset_refault_file 0
[ 1760.062370][ T1805] workingset_activate_anon 0
[ 1760.092471][ T1805] workingset_activate_file 0
[ 1760.106841][ T1805] workingset_restore_anon 0
[ 1760.132756][ T1805] workingset_restore_file 0
[ 1760.137900][ T1805] workingset_nodereclaim 0
[ 1760.152516][ T1805] pgscan 109097
[ 1760.162657][ T1805] pgsteal 44
[ 1760.166326][ T1805] pgscan_kswapd 0
[ 1760.182328][ T1805] pgscan_direct 109097
[ 1760.191036][ T1805] pgscan_khugepaged 0
[ 1760.207243][ T1805] pgsteal_kswapd 0
[ 1760.222304][ T1805] pgsteal_direct 44
[ 1760.244519][ T1805] pgsteal_khugepaged 0
[ 1760.249210][ T1805] pgfault 641538
[ 1760.272484][ T1805] pgmajfault 6
[ 1760.276300][ T1805] pgrefill 1296492
[ 1760.280509][ T1805] pgactivate 109039
[ 1760.302448][ T1805] pgdeactivate 0
[ 1760.306710][ T1805] pglazyfree 0
[ 1760.322356][ T1805] pglazyfreed 0
[ 1760.326220][ T1805] zswpin 0
[ 1760.340342][ T1805] zswpout 0
[ 1760.345958][ T1805] thp_fault_alloc 0
[ 1760.372456][ T1805] thp_collapse_alloc 0
[ 1760.379275][ T1805] Out of memory and no killable processes...
13:50:53 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x0, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:50:53 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(0xffffffffffffffff, &(0x7f00000000c0)=""/134, 0x86)

13:50:53 executing program 0:
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000013c0)={<r1=>0xffffffffffffffff})
dup2(r1, r0)
getpeername$inet6(r0, 0x0, &(0x7f0000000040))

13:50:53 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

13:50:53 executing program 4:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$L2TP_CMD_SESSION_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14}, 0x14}}, 0x0)

13:50:53 executing program 4:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
dup3(r0, r1, 0x0)
r2 = dup2(r1, r0)
write$FUSE_WRITE(r2, 0x0, 0x0)

[ 1760.517833][ T1845] loop2: detected capacity change from 0 to 64
[ 1760.539200][ T1844] netlink: 'syz-executor.5': attribute type 10 has an invalid length.
13:50:53 executing program 0:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4)

[ 1760.684464][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1760.843100][ T1848] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1760.911158][ T1848] CPU: 0 PID: 1848 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1760.920685][ T1848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1760.930775][ T1848] Call Trace:
[ 1760.934075][ T1848]  <TASK>
[ 1760.937033][ T1848]  dump_stack_lvl+0x136/0x150
[ 1760.941760][ T1848]  dump_header+0x10a/0xd70
[ 1760.946212][ T1848]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1760.952337][ T1848]  out_of_memory+0xd6c/0x1650
[ 1760.957062][ T1848]  ? oom_killer_disable+0x2b0/0x2b0
[ 1760.962303][ T1848]  ? kernfs_notify+0x1ac/0x410
[ 1760.967107][ T1848]  ? find_held_lock+0x2d/0x110
[ 1760.971922][ T1848]  mem_cgroup_out_of_memory+0x206/0x270
[ 1760.977520][ T1848]  ? mem_cgroup_margin+0x130/0x130
[ 1760.982698][ T1848]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1760.988552][ T1848]  memory_max_write+0x2f9/0x3c0
[ 1760.993439][ T1848]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1760.999546][ T1848]  ? lock_sync+0x190/0x190
[ 1761.004015][ T1848]  cgroup_file_write+0x1e2/0x7b0
[ 1761.008991][ T1848]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1761.015091][ T1848]  ? kill_css+0x3b0/0x3b0
[ 1761.019461][ T1848]  ? lock_acquire+0x32/0xc0
[ 1761.024020][ T1848]  ? kill_css+0x3b0/0x3b0
[ 1761.028390][ T1848]  kernfs_fop_write_iter+0x3f1/0x600
[ 1761.033716][ T1848]  vfs_write+0xa1d/0xe40
[ 1761.038006][ T1848]  ? kernel_write+0x670/0x670
[ 1761.042715][ T1848]  ? receive_fd+0x110/0x110
[ 1761.047267][ T1848]  ? __fget_files+0x26a/0x480
[ 1761.052043][ T1848]  ksys_write+0x12b/0x250
[ 1761.056408][ T1848]  ? __ia32_sys_read+0xb0/0xb0
[ 1761.061210][ T1848]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1761.067167][ T1848]  do_syscall_64+0x39/0xb0
[ 1761.071618][ T1848]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1761.077562][ T1848] RIP: 0033:0x7fab35c8c169
[ 1761.082006][ T1848] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1761.101654][ T1848] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1761.110101][ T1848] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1761.118105][ T1848] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000006
[ 1761.126151][ T1848] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1761.134149][ T1848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1761.142235][ T1848] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1761.150256][ T1848]  </TASK>
[ 1761.178437][ T1848] memory: usage 10372kB, limit 0kB, failcnt 428
[ 1761.184892][ T1848] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1761.191771][ T1848] Memory cgroup stats for /syz1:
[ 1761.192012][ T1848] anon 0
[ 1761.204167][ T1848] file 10125312
[ 1761.208018][ T1848] kernel 294912
[ 1761.211896][ T1848] kernel_stack 0
[ 1761.216520][ T1848] pagetables 0
[ 1761.220279][ T1848] sec_pagetables 0
[ 1761.225011][ T1848] percpu 0
[ 1761.228415][ T1848] sock 0
[ 1761.231607][ T1848] vmalloc 0
[ 1761.236645][ T1848] shmem 10125312
[ 1761.240674][ T1848] zswap 0
[ 1761.244586][ T1848] zswapped 0
[ 1761.248123][ T1848] file_mapped 299008
[ 1761.253042][ T1848] file_dirty 0
[ 1761.256734][ T1848] file_writeback 0
[ 1761.260848][ T1848] swapcached 0
[ 1761.265519][ T1848] anon_thp 0
[ 1761.269244][ T1848] file_thp 0
[ 1761.273510][ T1848] shmem_thp 0
[ 1761.277246][ T1848] inactive_anon 0
[ 1761.281379][ T1848] active_anon 10125312
[ 1761.288632][ T1848] inactive_file 0
[ 1761.298328][ T1848] active_file 200704
[ 1761.303173][ T1848] unevictable 0
[ 1761.307119][ T1848] slab_reclaimable 264992
[ 1761.322663][ T1848] slab_unreclaimable 28328
[ 1761.327702][ T1848] slab 293320
[ 1761.331501][ T1848] workingset_refault_anon 0
[ 1761.348349][ T1848] workingset_refault_file 0
[ 1761.357360][ T1848] workingset_activate_anon 0
[ 1761.363157][ T1848] workingset_activate_file 0
[ 1761.368372][ T1848] workingset_restore_anon 0
[ 1761.374141][ T1848] workingset_restore_file 0
[ 1761.379219][ T1848] workingset_nodereclaim 0
[ 1761.387116][ T1848] pgscan 110665
[ 1761.391057][ T1848] pgsteal 44
[ 1761.397181][ T1848] pgscan_kswapd 0
[ 1761.401344][ T1848] pgscan_direct 110665
[ 1761.407300][ T1848] pgscan_khugepaged 0
[ 1761.421629][T32665] hsr_slave_0: left promiscuous mode
[ 1761.429532][ T1848] pgsteal_kswapd 0
[ 1761.434778][ T1848] pgsteal_direct 44
[ 1761.439039][ T1848] pgsteal_khugepaged 0
[ 1761.439096][T32665] hsr_slave_1: left promiscuous mode
[ 1761.455308][ T1848] pgfault 641538
[ 1761.458930][ T1848] pgmajfault 6
[ 1761.462808][T32665] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1761.470260][T32665] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1761.477729][ T1848] pgrefill 1296492
[ 1761.481474][ T1848] pgactivate 110607
[ 1761.487824][T32665] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1761.495538][ T1848] pgdeactivate 0
[ 1761.499109][ T1848] pglazyfree 0
[ 1761.503018][T32665] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1761.510229][ T1848] pglazyfreed 0
[ 1761.516235][T32665] bridge_slave_1: left allmulticast mode
[ 1761.521997][T32665] bridge_slave_1: left promiscuous mode
[ 1761.529604][ T1848] zswpin 0
[ 1761.532797][ T1848] zswpout 0
[ 1761.535932][ T1848] thp_fault_alloc 0
[ 1761.539754][ T1848] thp_collapse_alloc 0
[ 1761.545544][T32665] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1761.553818][ T1848] Out of memory and no killable processes...
[ 1761.563798][T32665] bridge_slave_0: left allmulticast mode
[ 1761.569574][T32665] bridge_slave_0: left promiscuous mode
[ 1761.588879][T32665] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1761.621385][T32665] veth1_macvtap: left promiscuous mode
[ 1761.627324][T32665] veth0_macvtap: left promiscuous mode
[ 1761.636598][T32665] veth1_vlan: left promiscuous mode
[ 1761.641930][T32665] veth0_vlan: left promiscuous mode
[ 1762.215948][T32665] team0 (unregistering): Port device team_slave_1 removed
[ 1762.236519][T16241] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1762.255788][T16241] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1762.264680][T16241] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1762.273228][T32665] team0 (unregistering): Port device team_slave_0 removed
[ 1762.281528][T16241] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1762.289276][T16241] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1762.298230][T16241] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1762.323995][T32665] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1762.340674][T32665] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1762.435111][T32665] bond0 (unregistering): Released all slaves
[ 1762.818486][ T1876] chnl_net:caif_netlink_parms(): no params data found
[ 1762.963648][ T1876] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1762.977990][ T1876] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1763.002562][ T1876] bridge_slave_0: entered allmulticast mode
[ 1763.019911][ T1876] bridge_slave_0: entered promiscuous mode
[ 1763.044933][ T1876] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1763.058815][ T1876] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1763.071154][ T1876] bridge_slave_1: entered allmulticast mode
[ 1763.096264][ T1876] bridge_slave_1: entered promiscuous mode
[ 1763.171683][ T1876] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1763.199405][ T1876] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1763.320016][ T1876] team0: Port device team_slave_0 added
[ 1763.355419][ T1876] team0: Port device team_slave_1 added
[ 1763.397943][ T1876] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1763.422228][ T1876] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1763.479280][ T1876] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1763.535456][ T1876] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1763.543217][ T1876] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1763.572818][ T1876] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1763.642895][ T1876] hsr_slave_0: entered promiscuous mode
[ 1763.650291][ T1876] hsr_slave_1: entered promiscuous mode
[ 1763.658014][ T1876] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1763.666913][ T1876] Cannot create hsr debugfs directory
[ 1764.312478][T25866] Bluetooth: hci0: command 0x0409 tx timeout
[ 1765.099260][ T1876] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1765.110990][ T1876] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1765.121983][ T1876] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1765.133403][ T1876] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1765.284119][ T1876] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1765.301512][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1765.317384][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1765.340612][ T1876] 8021q: adding VLAN 0 to HW filter on device team0
[ 1765.366364][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1765.380646][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1765.397301][ T5522] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1765.404517][ T5522] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1765.445414][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1765.459900][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1765.470904][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1765.487865][T31259] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1765.495069][T31259] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1765.510986][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1765.531781][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1765.549849][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1765.559974][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1765.600761][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1765.617572][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1765.630952][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1765.648595][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1765.658816][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1765.675745][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1765.689413][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1765.705497][ T1876] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1765.961061][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1765.971656][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1765.991777][ T1876] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1766.021032][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1766.030619][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1766.054765][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1766.064654][ T5522] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1766.084247][ T1876] veth0_vlan: entered promiscuous mode
[ 1766.102353][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1766.110939][T31259] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1766.127695][ T1876] veth1_vlan: entered promiscuous mode
[ 1766.176567][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1766.194191][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1766.214468][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1766.225253][T25493] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1766.239590][ T1876] veth0_macvtap: entered promiscuous mode
[ 1766.258814][ T1876] veth1_macvtap: entered promiscuous mode
[ 1766.289990][ T1876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1766.302387][ T1876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.313682][ T1876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1766.325585][ T1876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.336753][ T1876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1766.348855][ T1876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.363737][ T1876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1766.375580][ T1876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.386738][ T1876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1766.398663][T25866] Bluetooth: hci0: command 0x041b tx timeout
[ 1766.405806][ T1876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.419239][ T1876] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1766.430970][ T1876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1766.446245][ T1876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.456218][ T1876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1766.467539][ T1876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.477725][ T1876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1766.488789][ T1876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.498985][ T1876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1766.511124][ T1876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.521654][ T1876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1766.532801][ T1876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1766.544775][ T1876] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1766.552436][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1766.561129][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1766.571245][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1766.580716][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1766.590286][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1766.599923][T10966] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1766.613937][ T1876] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1766.625637][ T1876] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1766.635534][ T1876] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1766.645160][ T1876] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1766.768867][T14050] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1766.802655][T14050] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1766.810846][T14075] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1766.837057][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1766.851960][T14075] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1766.879915][ T5516] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
13:51:01 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(0xffffffffffffffff, &(0x7f00000000c0)=""/134, 0x86)

13:51:01 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

13:51:01 executing program 0:
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x202000, 0x1000}, 0x20)

13:51:01 executing program 4:
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
read$qrtrtun(r0, 0x0, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x1a)

13:51:01 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x0, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

13:51:01 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="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", 0x105}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1768.071666][ T1984] loop2: detected capacity change from 0 to 64
13:51:01 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

13:51:01 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, 0x0, 0x0)

[ 1768.207596][ T1982] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
13:51:01 executing program 4:
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
read$qrtrtun(r0, 0x0, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x1a)

[ 1768.297302][ T1982] CPU: 0 PID: 1982 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1768.306832][ T1982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1768.316920][ T1982] Call Trace:
[ 1768.320222][ T1982]  <TASK>
[ 1768.323177][ T1982]  dump_stack_lvl+0x136/0x150
[ 1768.327900][ T1982]  dump_header+0x10a/0xd70
[ 1768.332368][ T1982]  oom_kill_process+0x25d/0x600
[ 1768.337261][ T1982]  out_of_memory+0x35c/0x1650
[ 1768.341973][ T1982]  ? io_schedule_timeout+0x150/0x150
13:51:01 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

[ 1768.347297][ T1982]  ? oom_killer_disable+0x2b0/0x2b0
[ 1768.352546][ T1982]  ? kernfs_notify+0x1ac/0x410
[ 1768.357358][ T1982]  mem_cgroup_out_of_memory+0x206/0x270
[ 1768.362952][ T1982]  ? mem_cgroup_margin+0x130/0x130
[ 1768.368128][ T1982]  memory_max_write+0x2f9/0x3c0
[ 1768.373014][ T1982]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1768.379124][ T1982]  ? lock_sync+0x190/0x190
[ 1768.383586][ T1982]  cgroup_file_write+0x1e2/0x7b0
[ 1768.388559][ T1982]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1768.394660][ T1982]  ? kill_css+0x3b0/0x3b0
[ 1768.399022][ T1982]  ? lock_acquire+0x32/0xc0
[ 1768.403576][ T1982]  ? kill_css+0x3b0/0x3b0
[ 1768.407937][ T1982]  kernfs_fop_write_iter+0x3f1/0x600
[ 1768.413252][ T1982]  vfs_write+0xa1d/0xe40
[ 1768.417513][ T1982]  ? kernel_write+0x670/0x670
[ 1768.422203][ T1982]  ? receive_fd+0x110/0x110
[ 1768.426982][ T1982]  ? __fget_files+0x26a/0x480
[ 1768.431683][ T1982]  ksys_write+0x12b/0x250
[ 1768.436026][ T1982]  ? __ia32_sys_read+0xb0/0xb0
[ 1768.440805][ T1982]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1768.446728][ T1982]  do_syscall_64+0x39/0xb0
[ 1768.451158][ T1982]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1768.457066][ T1982] RIP: 0033:0x7fab35c8c169
[ 1768.461488][ T1982] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1768.481104][ T1982] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1768.489544][ T1982] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1768.497519][ T1982] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000006
[ 1768.505492][ T1982] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1768.513470][ T1982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1768.521456][ T1982] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1768.529453][ T1982]  </TASK>
13:51:01 executing program 0:
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x202000, 0x1000}, 0x20)

[ 1768.553634][T25866] Bluetooth: hci0: command 0x040f tx timeout
[ 1768.600171][ T1982] memory: usage 10444kB, limit 0kB, failcnt 447
[ 1768.632357][ T1982] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
13:51:01 executing program 4:
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
read$qrtrtun(r0, 0x0, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x1a)

13:51:01 executing program 5:
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

[ 1768.679851][ T2001] loop2: detected capacity change from 0 to 64
[ 1768.693545][ T1982] Memory cgroup stats for /syz1:
[ 1768.693799][ T1982] anon 49152
[ 1768.759542][ T1982] file 10125312
13:51:01 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, 0x0, 0x0)

[ 1768.792958][ T1982] kernel 319488
[ 1768.807960][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1768.815389][ T1982] kernel_stack 0
13:51:01 executing program 5:
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

[ 1768.846944][ T1982] pagetables 8192
[ 1768.859838][ T1982] sec_pagetables 0
[ 1768.881415][ T1982] percpu 0
[ 1768.890115][ T1982] sock 0
[ 1768.912943][ T1982] vmalloc 0
[ 1768.933547][ T1982] shmem 10125312
13:51:01 executing program 4:
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
read$qrtrtun(r0, 0x0, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[], 0x1a)

[ 1768.954899][ T1982] zswap 0
[ 1768.974624][ T1982] zswapped 0
[ 1768.989039][ T1982] file_mapped 299008
[ 1769.007697][ T2014] loop2: detected capacity change from 0 to 64
[ 1769.017716][ T1982] file_dirty 0
[ 1769.033167][ T1982] file_writeback 0
[ 1769.046044][ T1982] swapcached 0
[ 1769.054099][ T1982] anon_thp 0
[ 1769.072058][ T1982] file_thp 0
[ 1769.097938][ T1982] shmem_thp 0
[ 1769.116141][ T1982] inactive_anon 10125312
[ 1769.130574][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1769.164685][ T1982] active_anon 49152
[ 1769.168549][ T1982] inactive_file 0
[ 1769.178496][ T1982] active_file 200704
[ 1769.183385][ T1982] unevictable 0
[ 1769.224911][ T1982] slab_reclaimable 267560
[ 1769.229306][ T1982] slab_unreclaimable 33912
[ 1769.246252][ T1982] slab 301472
[ 1769.250007][ T1982] workingset_refault_anon 0
[ 1769.255975][ T1982] workingset_refault_file 0
[ 1769.261027][ T1982] workingset_activate_anon 0
[ 1769.266737][ T1982] workingset_activate_file 0
[ 1769.271900][ T1982] workingset_restore_anon 0
[ 1769.280277][ T1982] workingset_restore_file 0
[ 1769.285538][ T1982] workingset_nodereclaim 0
[ 1769.290396][ T1982] pgscan 113360
[ 1769.294488][ T1982] pgsteal 44
[ 1769.298172][ T1982] pgscan_kswapd 0
[ 1769.302628][ T1982] pgscan_direct 113360
[ 1769.307267][ T1982] pgscan_khugepaged 0
[ 1769.311687][ T1982] pgsteal_kswapd 0
[ 1769.316068][ T1982] pgsteal_direct 44
[ 1769.320341][ T1982] pgsteal_khugepaged 0
[ 1769.325132][ T1982] pgfault 643153
[ 1769.330177][ T1982] pgmajfault 6
[ 1769.334610][ T1982] pgrefill 1296492
[ 1769.338764][ T1982] pgactivate 113302
[ 1769.343737][ T1982] pgdeactivate 0
[ 1769.347772][ T1982] pglazyfree 0
[ 1769.351580][ T1982] pglazyfreed 0
[ 1769.356681][ T1982] zswpin 0
[ 1769.360119][ T1982] zswpout 0
[ 1769.364302][ T1982] thp_fault_alloc 0
[ 1769.368641][ T1982] thp_collapse_alloc 0
[ 1769.373892][ T1982] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=1876,uid=0
[ 1769.393782][ T1982] Memory cgroup out of memory: Killed process 1876 (syz-executor.1) total-vm:50576kB, anon-rss:368kB, file-rss:8960kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:0
13:51:02 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x0, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1769.623719][ T2031] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1769.635529][ T2031] CPU: 1 PID: 2031 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1769.645030][ T2031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1769.655116][ T2031] Call Trace:
[ 1769.658472][ T2031]  <TASK>
[ 1769.661429][ T2031]  dump_stack_lvl+0x136/0x150
[ 1769.666150][ T2031]  dump_header+0x10a/0xd70
[ 1769.670602][ T2031]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1769.676721][ T2031]  out_of_memory+0xd6c/0x1650
[ 1769.681440][ T2031]  ? io_schedule_timeout+0x150/0x150
[ 1769.686774][ T2031]  ? oom_killer_disable+0x2b0/0x2b0
[ 1769.692013][ T2031]  ? kernfs_notify+0x1ac/0x410
[ 1769.696820][ T2031]  mem_cgroup_out_of_memory+0x206/0x270
[ 1769.702410][ T2031]  ? mem_cgroup_margin+0x130/0x130
[ 1769.707586][ T2031]  memory_max_write+0x2f9/0x3c0
[ 1769.712471][ T2031]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1769.718574][ T2031]  ? lock_sync+0x190/0x190
[ 1769.723038][ T2031]  cgroup_file_write+0x1e2/0x7b0
[ 1769.728451][ T2031]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1769.734556][ T2031]  ? kill_css+0x3b0/0x3b0
[ 1769.738924][ T2031]  ? lock_acquire+0x32/0xc0
[ 1769.743484][ T2031]  ? kill_css+0x3b0/0x3b0
[ 1769.747846][ T2031]  kernfs_fop_write_iter+0x3f1/0x600
[ 1769.753187][ T2031]  vfs_write+0xa1d/0xe40
[ 1769.757465][ T2031]  ? kernel_write+0x670/0x670
[ 1769.762173][ T2031]  ? receive_fd+0x110/0x110
[ 1769.766719][ T2031]  ? __fget_files+0x26a/0x480
[ 1769.771449][ T2031]  ksys_write+0x12b/0x250
[ 1769.775815][ T2031]  ? __ia32_sys_read+0xb0/0xb0
[ 1769.780618][ T2031]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1769.786567][ T2031]  do_syscall_64+0x39/0xb0
[ 1769.791023][ T2031]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1769.796951][ T2031] RIP: 0033:0x7fab35c8c169
[ 1769.801399][ T2031] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1769.821082][ T2031] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1769.829534][ T2031] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1769.837537][ T2031] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000006
[ 1769.845531][ T2031] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1769.853530][ T2031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1769.861530][ T2031] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1769.869642][ T2031]  </TASK>
[ 1769.892342][ T2031] memory: usage 10384kB, limit 0kB, failcnt 464
[ 1769.898724][ T2031] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1769.912967][ T2031] Memory cgroup stats for /syz1:
[ 1769.913222][ T2031] anon 0
[ 1769.921138][ T2031] file 10125312
[ 1769.930871][ T2031] kernel 307200
[ 1769.936117][ T2031] kernel_stack 0
[ 1769.941664][ T2031] pagetables 0
[ 1769.951356][ T2031] sec_pagetables 0
[ 1769.956767][ T2031] percpu 0
[ 1769.959898][ T2031] sock 0
[ 1769.969116][ T2031] vmalloc 0
[ 1769.973876][ T2031] shmem 10125312
[ 1769.977521][ T2031] zswap 0
[ 1769.980548][ T2031] zswapped 0
[ 1769.994821][ T2031] file_mapped 299008
[ 1769.998890][ T2031] file_dirty 0
[ 1770.002773][ T2031] file_writeback 0
[ 1770.006595][ T2031] swapcached 0
[ 1770.010065][ T2031] anon_thp 0
[ 1770.020917][ T2031] file_thp 0
[ 1770.025115][ T2031] shmem_thp 0
[ 1770.028499][ T2031] inactive_anon 10125312
[ 1770.040104][ T2031] active_anon 0
[ 1770.045913][ T2031] inactive_file 0
[ 1770.049646][ T2031] active_file 200704
[ 1770.061392][ T2031] unevictable 0
[ 1770.065424][ T2031] slab_reclaimable 267560
[ 1770.069870][ T2031] slab_unreclaimable 33912
[ 1770.083709][ T2031] slab 301472
[ 1770.087104][ T2031] workingset_refault_anon 0
[ 1770.091699][ T2031] workingset_refault_file 0
[ 1770.106781][ T2031] workingset_activate_anon 0
[ 1770.111487][ T2031] workingset_activate_file 0
[ 1770.116819][ T2031] workingset_restore_anon 0
[ 1770.121409][ T2031] workingset_restore_file 0
[ 1770.126515][ T2031] workingset_nodereclaim 0
[ 1770.131118][ T2031] pgscan 116594
[ 1770.135457][ T2031] pgsteal 44
[ 1770.146201][ T2031] pgscan_kswapd 0
[ 1770.158721][ T2031] pgscan_direct 116594
[ 1770.170459][ T2031] pgscan_khugepaged 0
[ 1770.180029][ T2031] pgsteal_kswapd 0
[ 1770.189351][ T2031] pgsteal_direct 44
[ 1770.198960][ T2031] pgsteal_khugepaged 0
[ 1770.208547][ T2031] pgfault 643153
[ 1770.218501][ T2031] pgmajfault 6
[ 1770.227819][ T2031] pgrefill 1296492
[ 1770.232005][ T2031] pgactivate 116536
[ 1770.242564][ T2031] pgdeactivate 0
[ 1770.246676][ T2031] pglazyfree 0
[ 1770.251538][ T2031] pglazyfreed 0
[ 1770.256452][ T2031] zswpin 0
[ 1770.270015][ T2031] zswpout 0
[ 1770.276099][ T2031] thp_fault_alloc 0
[ 1770.280384][ T2031] thp_collapse_alloc 0
[ 1770.285721][ T2031] Out of memory and no killable processes...
13:51:04 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="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", 0x106}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

13:51:04 executing program 5:
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

13:51:04 executing program 0:
r0 = socket(0x11, 0x3, 0x0)
ioctl$sock_inet6_udp_SIOCINQ(r0, 0x8955, 0x0)

13:51:04 executing program 4:
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
read$qrtrtun(r0, 0x0, 0x0)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)

13:51:04 executing program 2:
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2014800, &(0x7f0000000300)=ANY=[], 0xb, 0x275, &(0x7f0000000980)="$eJzs3cFqE1EUxvHvTtKY2lqnWhHEVbXgStq6ETcFCT6DK1GbCMVQQSuoG4tr8QHcu/EBfAhXIrjWlSsfILuRe2emucGZTEjN3Ib+f5CQJvfcnDMzydwTKCMAp9bdzs9Pt37bm5Eaaki6I0WS2lJT0iVdbr/cP9g76Pe64yZquAh7M0ojzT9jdvd7RaE2zkVkYvtXU8v+c5iNJEmSX6GTQHDu018gks5kn073erv2zGbjMHQCgZmBBnqlldB5AADCys7/UXaeX87W71EkbWSnff/8/+Nc4HyPaxA6gcC887/rshJj9+9599Kw33MtnH09yrvEad6rpfTIGllgmqqu0uUSLT7Z6/du7j7rdyO9007GG7YmaUfd9NDNVWS7XtCbFqQ84WxjLLkaFmwN2yX5XyyKO87WrmK+mm/mgYn1Ud2j9V8zMbZmV3Z8tKfuLQzz3yyf0VUZp6NKqlx1b3JldMNWVNku7kiU755Vjf5AEFfl2cpuI1FpdVvjo+xeKojarohas1Gfvajh0VweOWvmg7lv1vVHX9Tx1v+R3dobmuSTace4kdmRkddT2Bs23cjYf+rwauGc0XT1YCrv9Vi3tfLi9Zunj/r93nMenKIH+UFwUvL5fw+a9bxXa243Xf4lXTk43FcT6jPc6eVj3taZEOpm110m7f+8fmXTtUj2Lh6zTk+qJvdm3CrpDS64+7PeAtBkv8+X9wZL5R3cpD3XtRvSde/Jim4ktnkuVpU7N0xH3/WQ3/8BAAAAAAAAAAAAAAAAAADmTR3/chC6RgAAAAAAAAAAAAAAAAAAAAAA5l2g6/+OXEyH6/8CYfwNAAD//4+6ekw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000000)=""/48, 0x30)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000700)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
getdents64(r0, 0x0, 0x0)

13:51:04 executing program 3:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000240)='syz1\x00', 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000180)='memory.max\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000140), 0x12)

[ 1771.778925][ T2060] loop2: detected capacity change from 0 to 64
13:51:04 executing program 0:
epoll_wait(0xffffffffffffffff, 0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f00000022c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
read$FUSE(r0, &(0x7f0000005b40)={0x2020}, 0x2020)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000900), &(0x7f0000000940)=0x14)
r1 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000002140), 0x400, 0x0)
openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000880), 0x2, 0x0)
ioctl$sock_inet6_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000000))
io_setup(0xffff, &(0x7f00000000c0)=<r2=>0x0)
io_pgetevents(r2, 0xffffffff00000001, 0x2, &(0x7f0000000100)=[{}, {}], &(0x7f0000000140)={0x0, 0x3938700}, &(0x7f00000001c0)={&(0x7f0000000180)={[0xa4]}, 0x8})
sendmsg$WG_CMD_GET_DEVICE(r1, &(0x7f0000002e00)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000002dc0)={&(0x7f0000002f00)=ANY=[@ANYBLOB="dc0b0000", @ANYRES16=0x0, @ANYBLOB="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"], 0xbdc}, 0x1, 0x0, 0x0, 0x20000080}, 0x200048c1)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r1, 0xc01864c6, &(0x7f0000002e80)={&(0x7f0000002e40)=[0x0], 0x1})
socket$packet(0x11, 0x3, 0x300)

13:51:04 executing program 2:
r0 = socket$inet(0x2, 0x5, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000080)="441f0801000000e8c94ef56491ee54be0e1c2074ed27c1c6fe76cef3e2", 0x1d)
sendto$inet(r0, &(0x7f0000000040)='\'', 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)

[ 1771.900209][T25963] udevd[25963]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system
[ 1771.929606][T14048] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1771.993289][ T2061] syz-executor.3 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
13:51:05 executing program 5:
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r0=>0x0})
r1 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r0}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

[ 1772.047936][ T2061] CPU: 0 PID: 2061 Comm: syz-executor.3 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1772.057459][ T2061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1772.067543][ T2061] Call Trace:
[ 1772.070848][ T2061]  <TASK>
[ 1772.073805][ T2061]  dump_stack_lvl+0x136/0x150
[ 1772.078528][ T2061]  dump_header+0x10a/0xd70
[ 1772.082985][ T2061]  ? mem_cgroup_print_oom_meminfo+0x4e0/0x4e0
[ 1772.089280][ T2061]  out_of_memory+0xd6c/0x1650
[ 1772.093999][ T2061]  ? io_schedule_timeout+0x150/0x150
[ 1772.099313][ T2061]  ? oom_killer_disable+0x2b0/0x2b0
[ 1772.104529][ T2061]  ? kernfs_notify+0x1ac/0x410
[ 1772.109313][ T2061]  mem_cgroup_out_of_memory+0x206/0x270
[ 1772.114882][ T2061]  ? mem_cgroup_margin+0x130/0x130
[ 1772.120035][ T2061]  memory_max_write+0x2f9/0x3c0
[ 1772.124918][ T2061]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1772.131015][ T2061]  ? cgroup_file_write+0x8e/0x7b0
[ 1772.136063][ T2061]  cgroup_file_write+0x1e2/0x7b0
[ 1772.141017][ T2061]  ? mem_cgroup_force_empty_write+0x160/0x160
[ 1772.147117][ T2061]  ? kill_css+0x3b0/0x3b0
[ 1772.151463][ T2061]  ? lock_acquire+0x32/0xc0
[ 1772.155998][ T2061]  ? kill_css+0x3b0/0x3b0
[ 1772.160340][ T2061]  kernfs_fop_write_iter+0x3f1/0x600
[ 1772.165641][ T2061]  vfs_write+0xa1d/0xe40
[ 1772.169903][ T2061]  ? kernel_write+0x670/0x670
[ 1772.174598][ T2061]  ? receive_fd+0x110/0x110
[ 1772.179117][ T2061]  ? __fget_files+0x26a/0x480
[ 1772.183818][ T2061]  ksys_write+0x12b/0x250
[ 1772.188158][ T2061]  ? __ia32_sys_read+0xb0/0xb0
[ 1772.192938][ T2061]  ? syscall_enter_from_user_mode+0x30/0x80
[ 1772.198865][ T2061]  do_syscall_64+0x39/0xb0
[ 1772.203295][ T2061]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1772.209203][ T2061] RIP: 0033:0x7fab35c8c169
[ 1772.213624][ T2061] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1772.234194][ T2061] RSP: 002b:00007fab36a7f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1772.242617][ T2061] RAX: ffffffffffffffda RBX: 00007fab35dabf80 RCX: 00007fab35c8c169
[ 1772.250595][ T2061] RDX: 0000000000000012 RSI: 0000000020000140 RDI: 0000000000000006
[ 1772.258569][ T2061] RBP: 00007fab35ce7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1772.266549][ T2061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1772.274533][ T2061] R13: 00007ffc740ae83f R14: 00007fab36a7f300 R15: 0000000000022000
[ 1772.282530][ T2061]  </TASK>
13:51:05 executing program 2:
clock_settime(0x0, &(0x7f0000000880)={0x77359400})

[ 1772.342378][ T2061] memory: usage 10380kB, limit 0kB, failcnt 464
[ 1772.351122][ T2061] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
13:51:05 executing program 1:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000440)="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", 0x106}], 0x1)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305829, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000280), 0x2)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffffff, 0x0, 0x0, 0x190)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x38}}, 0x0)
fchmod(0xffffffffffffffff, 0x2)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1772.419562][ T2061] Memory cgroup stats for /syz1:
[ 1772.419811][ T2061] anon 0
[ 1772.467740][T14048] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1772.478497][ T2061] file 10125312
[ 1772.478514][ T2061] kernel 303104
[ 1772.478525][ T2061] kernel_stack 0
[ 1772.478558][ T2061] pagetables 0
[ 1772.478574][ T2061] sec_pagetables 0
[ 1772.478585][ T2061] percpu 0
[ 1772.478616][ T2061] sock 0
[ 1772.478627][ T2061] vmalloc 0
[ 1772.478638][ T2061] shmem 10125312
[ 1772.478649][ T2061] zswap 0
[ 1772.478659][ T2061] zswapped 0
[ 1772.559501][ T2061] file_mapped 299008
03:33:20 executing program 5:
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r0=>0x0})
r1 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@bridge_setlink={0x30, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r0}, [@IFLA_AF_SPEC={0x10, 0xc, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}]}]}]}, 0x30}}, 0x0)

[ 1772.982851][ T2061] file_dirty 0
[ 1772.996695][ T2061] file_writeback 0
[ 1773.050341][ T2061] swapcached 0
[ 1773.074158][ T2061] anon_thp 0
[ 1773.095555][ T2061] file_thp 0
[ 1773.120599][ T2061] shmem_thp 0
[ 1773.144075][ T2061] inactive_anon 10125312
[ 1773.173354][ T2061] active_anon 0
[ 1773.197624][ T2061] inactive_file 0
[ 1773.224050][ T2061] active_file 200704
[ 1773.250879][ T2061] unevictable 0
[ 1773.275190][ T2061] slab_reclaimable 267560
[ 1773.304684][ T2061] slab_unreclaimable 28328
[ 1773.336157][ T2061] slab 295888
[ 1773.359713][ T2061] workingset_refault_anon 0
[ 1773.390571][ T2061] workingset_refault_file 0
[ 1877.582052][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1877.589113][    C1] rcu: 	0-...!: (0 ticks this GP) idle=9c6c/1/0x4000000000000000 softirq=127273/127273 fqs=16
[ 1877.601543][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=207665, q=116 ncpus=2)
[ 1877.609368][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 1877.614589][    C0] NMI backtrace for cpu 0
[ 1877.614630][    C0] CPU: 0 PID: 2078 Comm: syz-executor.2 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1877.614651][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1877.614662][    C0] RIP: 0010:lock_release+0x150/0x670
[ 1877.614696][    C0] Code: 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 c0 04 00 00 41 8b be c4 0a 00 00 85 ff 0f 85 9e 02 00 00 9c 8f 04 24 <fa> 48 c7 c7 20 73 4c 8a e8 93 3e a9 08 48 89 da 83 e3 07 48 b8 00
[ 1877.614714][    C0] RSP: 0018:ffffc90000007c78 EFLAGS: 00000046
[ 1877.614729][    C0] RAX: 0000000000000007 RBX: ffffffff8e7ac430 RCX: ffffffff81660095
[ 1877.614742][    C0] RDX: 0000000000000000 RSI: 0000000000010004 RDI: 0000000000000000
[ 1877.614753][    C0] RBP: 1ffff92000000f91 R08: 0000000000000001 R09: ffffffff8e7a8f17
[ 1877.614765][    C0] R10: fffffbfff1cf51e2 R11: ffffc90000007ff8 R12: ffffffff92003e10
[ 1877.614778][    C0] R13: ffffffff8a4ee6a0 R14: ffff88803d843b80 R15: ffff88802b902340
[ 1877.614791][    C0] FS:  00007f0c1337b700(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 1877.614810][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1877.614823][    C0] CR2: 0000001b2e025000 CR3: 000000002b005000 CR4: 00000000003506f0
[ 1877.614835][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1877.614846][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1877.614857][    C0] Call Trace:
[ 1877.614864][    C0]  <IRQ>
[ 1877.614872][    C0]  ? debug_object_deactivate+0x268/0x300
[ 1877.614903][    C0]  ? lock_downgrade+0x690/0x690
[ 1877.614927][    C0]  ? spin_bug+0x1c0/0x1c0
[ 1877.614944][    C0]  ? debug_object_deactivate+0x105/0x300
[ 1877.614965][    C0]  ? lock_acquire+0x32/0xc0
[ 1877.614988][    C0]  ? debug_object_deactivate+0x105/0x300
[ 1877.615011][    C0]  _raw_spin_unlock_irqrestore+0x1a/0x70
[ 1877.615035][    C0]  debug_object_deactivate+0x268/0x300
[ 1877.615058][    C0]  ? lock_sync+0x190/0x190
[ 1877.615081][    C0]  ? lookup_object_or_alloc.part.0+0xa30/0xa30
[ 1877.615106][    C0]  ? timerqueue_add+0x1c2/0x330
[ 1877.615136][    C0]  __hrtimer_run_queues+0x3f3/0xa30
[ 1877.615164][    C0]  ? __remove_hrtimer+0x2a0/0x2a0
[ 1877.615187][    C0]  ? ktime_get_update_offsets_now+0x3ef/0x5c0
[ 1877.615217][    C0]  hrtimer_interrupt+0x320/0x7b0
[ 1877.615247][    C0]  __sysvec_apic_timer_interrupt+0x14a/0x430
[ 1877.615275][    C0]  sysvec_apic_timer_interrupt+0x92/0xc0
[ 1877.615304][    C0]  </IRQ>
[ 1877.615309][    C0]  <TASK>
[ 1877.615315][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1877.615340][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x3c/0x70
[ 1877.615361][    C0] Code: 74 24 10 e8 76 68 53 f7 48 89 ef e8 5e d6 53 f7 81 e3 00 02 00 00 75 25 9c 58 f6 c4 02 75 2d 48 85 db 74 01 fb bf 01 00 00 00 <e8> 7f a0 45 f7 65 8b 05 20 24 f1 75 85 c0 74 0a 5b 5d c3 e8 bc 52
[ 1877.615378][    C0] RSP: 0018:ffffc9000392fcb0 EFLAGS: 00000206
[ 1877.615392][    C0] RAX: 0000000000000002 RBX: 0000000000000200 RCX: 1ffffffff22a6ad6
[ 1877.615404][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[ 1877.615415][    C0] RBP: ffff8880b982b840 R08: 0000000000000001 R09: ffffffff91534d07
[ 1877.615428][    C0] R10: 0000000000000001 R11: 0000000000000002 R12: fb9b265e6a3b557a
[ 1877.615439][    C0] R13: 0000000000000000 R14: 0000019cb4168255 R15: dffffc0000000000
[ 1877.615459][    C0]  clock_was_set+0x610/0x810
[ 1877.615485][    C0]  ? hrtimer_fixup_init+0x80/0x80
[ 1877.615510][    C0]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1877.615532][    C0]  do_settimeofday64+0x3c4/0x5d0
[ 1877.615560][    C0]  ? timekeeping_inject_offset+0x620/0x620
[ 1877.615585][    C0]  ? __ipv6_isatap_ifid+0x10c/0x310
[ 1877.615631][    C0]  ? capable+0xe1/0x120
[ 1877.615651][    C0]  do_sys_settimeofday64+0x1e2/0x270
[ 1877.615670][    C0]  __x64_sys_clock_settime+0x1a5/0x280
[ 1877.615695][    C0]  ? exit_itimers+0x4c0/0x4c0
[ 1877.615717][    C0]  ? syscall_enter_from_user_mode+0x26/0x80
[ 1877.615746][    C0]  do_syscall_64+0x39/0xb0
[ 1877.615768][    C0]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1877.615790][    C0] RIP: 0033:0x7f0c1268c169
[ 1877.615805][    C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1877.615822][    C0] RSP: 002b:00007f0c1337b168 EFLAGS: 00000246 ORIG_RAX: 00000000000000e3
[ 1877.615838][    C0] RAX: ffffffffffffffda RBX: 00007f0c127abf80 RCX: 00007f0c1268c169
[ 1877.615851][    C0] RDX: 0000000000000000 RSI: 0000000020000880 RDI: 0000000000000000
[ 1877.615862][    C0] RBP: 00007f0c126e7ca1 R08: 0000000000000000 R09: 0000000000000000
[ 1877.615874][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1877.615885][    C0] R13: 00007ffd716e33cf R14: 00007f0c1337b300 R15: 0000000000022000
[ 1877.615907][    C0]  </TASK>
[ 1877.616585][    C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 10419 jiffies! g207665 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[ 1878.085889][    C1] rcu: 	Possible timer handling issue on cpu=1 timer-softirq=141266
[ 1878.093876][    C1] rcu: rcu_preempt kthread starved for 10420 jiffies! g207665 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[ 1878.105347][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1878.115321][    C1] rcu: RCU grace-period kthread stack dump:
[ 1878.121213][    C1] task:rcu_preempt     state:I stack:28328 pid:16    ppid:2      flags:0x00004000
[ 1878.130438][    C1] Call Trace:
[ 1878.133722][    C1]  <TASK>
[ 1878.136666][    C1]  __schedule+0x1d15/0x5790
[ 1878.141202][    C1]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1878.147037][    C1]  ? io_schedule_timeout+0x150/0x150
[ 1878.152356][    C1]  ? add_timer_on+0x4e0/0x4e0
[ 1878.157068][    C1]  schedule+0xde/0x1a0
[ 1878.161156][    C1]  schedule_timeout+0x14e/0x2b0
[ 1878.166022][    C1]  ? usleep_range_state+0x1b0/0x1b0
[ 1878.171237][    C1]  ? __next_timer_interrupt+0x2a0/0x2a0
[ 1878.176805][    C1]  ? mas_rebalance.isra.0+0x810/0xe30
[ 1878.182197][    C1]  ? _raw_spin_unlock_irqrestore+0x41/0x70
[ 1878.188020][    C1]  ? prepare_to_swait_event+0xf6/0x480
[ 1878.193509][    C1]  rcu_gp_fqs_loop+0x190/0x910
[ 1878.198296][    C1]  ? force_qs_rnp+0x820/0x820
[ 1878.203038][    C1]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[ 1878.208895][    C1]  rcu_gp_kthread+0x23a/0x360
[ 1878.213607][    C1]  ? rcu_gp_init+0x13d0/0x13d0
[ 1878.218398][    C1]  ? __kthread_parkme+0x163/0x220
[ 1878.223457][    C1]  ? rcu_gp_init+0x13d0/0x13d0
[ 1878.228242][    C1]  kthread+0x344/0x440
[ 1878.232330][    C1]  ? kthread_complete_and_exit+0x40/0x40
[ 1878.237985][    C1]  ret_from_fork+0x1f/0x30
[ 1878.242556][    C1]  </TASK>
[ 1878.245582][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1878.251905][    C1] CPU: 1 PID: 2077 Comm: syz-executor.2 Not tainted 6.3.0-next-20230505-syzkaller #0
[ 1878.261374][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 1878.271442][    C1] RIP: 0010:smp_call_function_many_cond+0x684/0x1240
[ 1878.278142][    C1] Code: 89 ee e8 9f 39 0b 00 85 ed 74 48 48 8b 44 24 08 49 89 c4 83 e0 07 49 c1 ec 03 48 89 c5 4d 01 f4 83 c5 03 e8 5e 3d 0b 00 f3 90 <41> 0f b6 04 24 40 38 c5 7c 08 84 c0 0f 85 81 09 00 00 8b 43 08 31
[ 1878.297878][    C1] RSP: 0000:ffffc9000396f9e0 EFLAGS: 00000293
[ 1878.303962][    C1] RAX: 0000000000000000 RBX: ffff8880b98451e0 RCX: 0000000000000000
[ 1878.311942][    C1] RDX: ffff88803d845940 RSI: ffffffff817911d2 RDI: 0000000000000005
[ 1878.319941][    C1] RBP: 0000000000000003 R08: 0000000000000005 R09: 0000000000000000
[ 1878.327929][    C1] R10: 0000000000000001 R11: 0000000000094001 R12: ffffed1017308a3d
[ 1878.335911][    C1] R13: 0000000000000000 R14: dffffc0000000000 R15: 0000000000000001
[ 1878.343908][    C1] FS:  0000555556ba5400(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 1878.352856][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1878.359453][    C1] CR2: 00007f0c127a47b0 CR3: 000000002b005000 CR4: 00000000003506e0
[ 1878.367444][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1878.375428][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1878.383414][    C1] Call Trace:
[ 1878.386707][    C1]  <TASK>
[ 1878.389654][    C1]  ? __phys_addr+0x140/0x140
[ 1878.394271][    C1]  ? leave_mm+0x40/0x40
[ 1878.398449][    C1]  ? generic_smp_call_function_single_interrupt+0x20/0x20
[ 1878.405593][    C1]  ? page_ext_get+0x194/0x320
[ 1878.410298][    C1]  ? leave_mm+0x40/0x40
[ 1878.414464][    C1]  ? __phys_addr+0x140/0x140
[ 1878.419075][    C1]  on_each_cpu_cond_mask+0x5a/0xa0
[ 1878.424209][    C1]  flush_tlb_mm_range+0x36e/0x540
[ 1878.429250][    C1]  ? pmd_free_pte_page+0xe0/0xe0
[ 1878.434214][    C1]  ptep_clear_flush+0x139/0x180
[ 1878.439086][    C1]  do_wp_page+0x1247/0x34c0
[ 1878.443617][    C1]  ? lock_sync+0x190/0x190
[ 1878.448057][    C1]  ? finish_mkwrite_fault+0x3d0/0x3d0
[ 1878.453448][    C1]  ? rcu_is_watching+0x12/0xb0
[ 1878.458236][    C1]  ? spin_bug+0x1c0/0x1c0
[ 1878.462579][    C1]  ? lock_acquire+0x32/0xc0
[ 1878.467103][    C1]  ? __handle_mm_fault+0x1367/0x3c30
[ 1878.472444][    C1]  __handle_mm_fault+0x16d2/0x3c30
[ 1878.477591][    C1]  ? vm_iomap_memory+0x190/0x190
[ 1878.482549][    C1]  ? mas_walk+0x58f/0x730
[ 1878.486906][    C1]  ? numa_migrate_prep+0x3a0/0x3a0
[ 1878.492033][    C1]  ? do_user_addr_fault+0x38a/0x1240
[ 1878.497348][    C1]  handle_mm_fault+0x2af/0x9f0
[ 1878.502138][    C1]  do_user_addr_fault+0x2ed/0x1240
[ 1878.507270][    C1]  ? rcu_is_watching+0x12/0xb0
[ 1878.512053][    C1]  exc_page_fault+0x98/0x170
[ 1878.516668][    C1]  asm_exc_page_fault+0x26/0x30
[ 1878.521537][    C1] RIP: 0033:0x7f0c12639610
[ 1878.525974][    C1] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1878.545601][    C1] RSP: 002b:00007ffd716e33a0 EFLAGS: 00010246
[ 1878.551689][    C1] RAX: 0000000041dcb1ec RBX: 00007f0c127ac018 RCX: 0000001b2e820000
[ 1878.559704][    C1] RDX: 0000000000000000 RSI: 0000001b2e820018 RDI: 0000000000000022
[ 1878.567684][    C1] RBP: 0000000041dcb1ec R08: 00000000000011ec R09: 0000000041dcb1f0
[ 1878.575665][    C1] R10: 00007ffd7179b090 R11: 0000000000055bde R12: 00007f0c127a0000
[ 1878.583656][    C1] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff8175f886
[ 1878.591636][    C1]  ? __x64_sys_clock_settime+0x66/0x280
[ 1878.597219][    C1]  </TASK>