0001580)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f00000015c0)={0x20, 0x0, 0x8, {0x10, 0x10, [0xff0]}}, &(0x7f0000001600)={0x40, 0x7, 0x2, 0x3}, &(0x7f0000001640)={0x40, 0x9, 0x1, 0x5}, &(0x7f0000001680)={0x40, 0xb, 0x2, "0109"}, &(0x7f00000016c0)={0x40, 0xf, 0x2, 0x3}, &(0x7f0000001700)={0x40, 0x13, 0x6, @local}, &(0x7f0000001740)={0x40, 0x17, 0x6, @remote}, &(0x7f0000001780)={0x40, 0x19, 0x2, "d02f"}, &(0x7f00000017c0)={0x40, 0x1a, 0x2, 0x4}, &(0x7f0000001800)={0x40, 0x1c, 0x1, 0x6}, &(0x7f0000001840)={0x40, 0x1e, 0x1, 0x7f}, &(0x7f0000001880)={0x40, 0x21, 0x1, 0xbc}}) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) (async, rerun: 32) r2 = syz_usb_connect$cdc_ncm(0x0, 0x79, &(0x7f0000001980)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x67, 0x2, 0x1, 0x80, 0x0, 0xdb, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x9, 0x24, 0x6, 0x0, 0x1, "33496788"}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x1cc, 0x7fff, 0x5}, {0x6, 0x24, 0x1a, 0x9, 0x24}, [@dmm={0x7, 0x24, 0x14, 0x3, 0x3018}]}, {{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x5, 0x93, 0x5}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x40, 0x8, 0x5, 0x6}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x33, 0x7}}}}}}}]}}, &(0x7f0000001ac0)={0xa, &(0x7f0000001a00)={0xa, 0x6, 0x250, 0x20, 0x0, 0x4, 0x20, 0x7}, 0x30, &(0x7f0000001a40)={0x5, 0xf, 0x30, 0x4, [@wireless={0xb, 0x10, 0x1, 0x4, 0x19, 0x8, 0x1, 0x7, 0xe4}, @wireless={0xb, 0x10, 0x1, 0xc, 0x80, 0x3f, 0x7, 0x8, 0x40}, @wireless={0xb, 0x10, 0x1, 0xc, 0x10, 0x0, 0x0, 0x6, 0x1}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x2, 0xff, 0x65, 0xfc01}]}, 0x1, [{0x12, &(0x7f0000001a80)=@string={0x12, 0x3, "1c2b2538b10c8509a917a77a87186a59"}}]}) (rerun: 32) syz_usb_control_io$cdc_ncm(r2, &(0x7f0000001c40)={0x14, &(0x7f0000001b00)={0x0, 0x7, 0xd5, {0xd5, 0x9, "090203cc28a67238593ff653fa9853cb7f65657e1dbc0a2581bffb67141d0b61ff199fa225e01c4bd4a6b3e93e080dbabc7702cc4f00c99d8bc4dee736875bd67a991d86f4b61af9ba72d588f33ddb638683450bd263f1d07246e53e2c8f508e8e61dae8bda59790c9fc9bc9e852c06030ab3f34091a31b156b73a9b31f0d5af3dfa0e1f52af4006a04c79142cd3ceec9e2c69b981d3296c0c327f52be7f18fe2df59669762924c20b0703e82d87b1067f294293feee4c4b9a5af40768e5b7c6270d76024d5a05fbdf0d1d8e6e8799519dd6ce"}}, &(0x7f0000001c00)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000001f40)={0x44, &(0x7f0000001c80)={0x40, 0x1c, 0xf2, "fac2489d23f83610503fc361d7dbc4efa1e836f9dc6ef184bac9361d545dcb12a13987fe0d8a31532cc983ae6c13717d40c74383d57c15c505938d837f06ae04420467f39d28e94c191d4f47dad22310c085d5d45032d162dccb788e3f81167e118f42ea425817300dc132d6da6933f83b1ee2dd5e2e79e80f4ef033e1a748ead67c68d1e7bd81d4d134a37b43541176e72ae0df08d26825ac8b010cdc26e3239ae76dec504f1e8a2dbe0baf46db06ad384b6784a5881460050f4beca31ee1d295168fcab75852da208ed91dfa730baba170225c6742ceb4bd717c0cf547d40e1c7d3a8826c20ebe2d18451b73eb1c0e4737"}, &(0x7f0000001d80)={0x0, 0xa, 0x1, 0xa7}, &(0x7f0000001dc0)={0x0, 0x8, 0x1, 0x5}, &(0x7f0000001e00)={0x20, 0x80, 0x1c, {0x5, 0xffff, 0x8, 0x7, 0x800, 0xfff7, 0x0, 0xfff, 0x4, 0x3ff, 0x389, 0x3ff}}, &(0x7f0000001e40)={0x20, 0x85, 0x4, 0x200}, &(0x7f0000001e80)={0x20, 0x83, 0x2}, &(0x7f0000001ec0)={0x20, 0x87, 0x2, 0x6}, &(0x7f0000001f00)={0x20, 0x89, 0x2, 0x1}}) syz_usb_connect(0x4, 0xa8d, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f00000011c0)={0xa, &(0x7f0000001000)={0xa, 0x6, 0x200, 0x6, 0xa0, 0x6, 0x20}, 0x5f, &(0x7f0000001040)={0x5, 0xf, 0x5f, 0x6, [@ssp_cap={0x20, 0x10, 0xa, 0x0, 0x5, 0x4, 0xf, 0x3, [0xf, 0x18, 0xc000, 0xc0f0, 0x3f00]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x5, 0x1, 0x6, 0x7ff}, @ext_cap={0x7, 0x10, 0x2, 0x18, 0x3, 0x4, 0x4}, @wireless={0xb, 0x10, 0x1, 0x8, 0x40, 0x9, 0x54, 0x6, 0x3}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x8, 0x7, 0x1f, 0x3}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "507cdf2f52e0583fc4a0eed03b8e7be1"}]}, 0x1, [{0xcb, &(0x7f00000010c0)=@string={0xcb, 0x3, "9c701462c0db5e28b181821bfa7c267cf81772c282a9379342bf3a1107d31f61e3523d07fae7799b79fa7ca75a6946a25e7ca1b438c26bcb7053b73b4e7dd1a4a5603ac903fccff86ee753a8776eb4103491279a5daadb4cde7cf52f2dae583df233a04f96c8eb62a5749cccd65d8c6a490841798932424a0cadfcda709ad5c15479e639ae3e1bb121fe012416d3e21bf995c2083e882424c3970c09bd3ac0c7ec19b4321a4942d01cd5114afe6613c811d7454c225729754bd46c83736ba890c7b6d59c43402cf464"}}]}) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000040)={0x14, &(0x7f0000000240)={0x40, 0xf, 0xc8, {0xc8, 0x0, "fe657ff43dc71b13e6b439e50bc36152bc6a4b9613a9a60c60ead063675b4113fd3d596bc51f6a2ad7748ebf0cd189beede01b7555b15211006c2ad5c6486bd770d41ca5d0a6c2c9988c8b310e0d0d92dad519597f8103f4732bbcc488a9658a55c878c8bc8834d2b225a18cb70cdac4527d3036b02cafcae2a3b41da684d6419d00fa005a814150c1428d58ff97b4936e3f14a89d4b97264911bf22cdf74392988d96650dc752d1be271c2e7e5d939d07c54ec520f6930222260ff925e83000f40549d866d5"}}, &(0x7f0000000000)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f00000004c0)={0x44, &(0x7f00000000c0)={0x0, 0xa, 0x96, "ff560b2bf60859c7e1c29b02b5b526f8ccf485079d9b15179082511f1575a6ce71fa7ae818cda9e4c4d82586d77ee36889271c0aafeaa996169d9122a08933dae81c9cd8cb8d56d65adc0ed1999eaf61fe66ff23cb0f3afb0810284e3fefe1b3875cf1063c890a692240ba84c460540b7b8de7fa8996294c3e18d83d50dd43a6c7ec1e79bf4f0b748a10fd3f7347f62e4a4114c4c12a"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x4}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0xb6}, &(0x7f0000000380)={0x20, 0x80, 0x1c, {0xfff, 0x2, 0x8, 0x9, 0x8001, 0xffe0, 0x66, 0x2, 0x0, 0x400, 0x7fff, 0x2}}, &(0x7f00000003c0)={0x20, 0x85, 0x4, 0x400}, &(0x7f0000000400)={0x20, 0x83, 0x2}, &(0x7f0000000440)={0x20, 0x87, 0x2, 0x3}, &(0x7f0000000480)={0x20, 0x89, 0x2, 0x1}}) [ 3259.146823][T19131] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3259.146841][T19131] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3259.160054][ T8615] usb 3-1: SerialNumber: syz [ 3259.160593][T19131] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3259.261178][T19131] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3259.269180][T19131] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3259.277206][T19131] [ 3259.302032][T19131] memory: usage 307200kB, limit 307200kB, failcnt 116945 [ 3259.312497][ T8615] usb 3-1: can't set config #1, error -71 [ 3259.318615][T19131] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3259.328875][ T8615] usb 3-1: USB disconnect, device number 27 [ 3259.335007][T19131] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3259.355650][T19131] Memory cgroup stats for /syz0: [ 3259.355809][T19131] cache 0 [ 3259.368884][T19131] rss 0 [ 3259.371787][T19131] rss_huge 0 [ 3259.379325][T19131] shmem 0 [ 3259.382407][T19131] mapped_file 0 [ 3259.386624][T19131] dirty 0 [ 3259.389693][T19131] writeback 0 [ 3259.393100][T19131] workingset_refault_anon 37043 [ 3259.398719][T19131] workingset_refault_file 0 [ 3259.403339][T19131] swap 1372160 [ 3259.407838][T19131] swapcached 0 [ 3259.411447][T19131] pgpgin 280119 [ 3259.415064][T19131] pgpgout 280119 [ 3259.423044][T19131] pgfault 526502 [ 3259.427171][T19131] pgmajfault 36002 [ 3259.431042][T19131] inactive_anon 0 [ 3259.434862][T19131] active_anon 0 [ 3259.439099][T19131] inactive_file 0 [ 3259.442868][T19131] active_file 0 [ 3259.446941][T19131] unevictable 0 [ 3259.450577][T19131] hierarchical_memory_limit 314572800 [ 3259.456828][T19131] hierarchical_memsw_limit 9223372036854771712 [ 3259.463167][T19131] total_cache 0 [ 3259.467314][T19131] total_rss 0 [ 3259.470723][T19131] total_rss_huge 0 [ 3259.474514][T19131] total_shmem 0 [ 3259.478792][T19131] total_mapped_file 0 [ 3259.482885][T19131] total_dirty 0 [ 3259.486920][T19131] total_writeback 0 [ 3259.490847][T19131] total_workingset_refault_anon 37043 [ 3259.497330][T19131] total_workingset_refault_file 0 [ 3259.502526][T19131] total_swap 1372160 [ 3259.507334][T19131] total_swapcached 0 [ 3259.511426][T19131] total_pgpgin 280119 [ 3259.516213][T19131] total_pgpgout 280119 [ 3259.520452][T19131] total_pgfault 526502 [ 3259.524663][T19131] total_pgmajfault 36002 [ 3259.532359][T19131] total_inactive_anon 0 [ 3259.545275][T19131] total_active_anon 0 [ 3259.549471][T19131] total_inactive_file 0 [ 3259.553755][T19131] total_active_file 0 [ 3259.558511][T19131] total_unevictable 0 [ 3259.562608][T19131] anon_cost 0 [ 3259.566546][T19131] file_cost 0 [ 3259.569983][T19131] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19131,uid=0 [ 3259.586242][T19131] Memory cgroup out of memory: Killed process 19131 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:37 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xf2ff}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3259.765720][ T8615] usb 3-1: new high-speed USB device number 28 using dummy_hcd [ 3259.949784][T19134] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3259.960425][T19134] CPU: 1 PID: 19134 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3259.970975][T19134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3259.981056][T19134] Call Trace: [ 3259.984340][T19134] [ 3259.987278][T19134] dump_stack_lvl+0x1e7/0x2e0 [ 3259.991999][T19134] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3259.997301][T19134] ? __pfx__printk+0x10/0x10 [ 3260.001903][T19134] ? ___ratelimit+0x4c4/0x670 [ 3260.006623][T19134] ? __pfx____ratelimit+0x10/0x10 [ 3260.011699][T19134] dump_header+0xda/0x6a0 [ 3260.016060][T19134] oom_kill_process+0x3a7/0x930 [ 3260.020969][T19134] out_of_memory+0xf67/0x1320 [ 3260.025692][T19134] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3260.031351][T19134] ? __pfx___mutex_lock+0x10/0x10 [ 3260.036395][T19134] ? __pfx_out_of_memory+0x10/0x10 [ 3260.041551][T19134] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3260.047687][T19134] ? __pfx_lock_release+0x10/0x10 [ 3260.052733][T19134] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3260.058817][T19134] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3260.064037][T19134] ? mem_cgroup_iter+0x422/0x560 [ 3260.069027][T19134] try_charge_memcg+0xda2/0x18a0 [ 3260.074039][T19134] ? __pfx_try_charge_memcg+0x10/0x10 [ 3260.079454][T19134] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3260.085209][T19134] ? __pfx_lock_release+0x10/0x10 [ 3260.090252][T19134] ? memcg_account_kmem+0x1e7/0x210 [ 3260.095471][T19134] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3260.101293][T19134] __memcg_kmem_charge_page+0xe1/0x250 [ 3260.106805][T19134] memcg_charge_kernel_stack+0x210/0x550 [ 3260.112450][T19134] dup_task_struct+0x40d/0x7d0 [ 3260.115763][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3260.117235][T19134] copy_process+0x5d5/0x3fc0 [ 3260.117283][T19134] ? __might_fault+0xa9/0x120 [ 3260.131600][T19134] ? __pfx_lock_release+0x10/0x10 [ 3260.136681][T19134] ? __pfx_copy_process+0x10/0x10 [ 3260.141739][T19134] ? __might_fault+0xc5/0x120 [ 3260.146444][T19134] ? __asan_memset+0x23/0x50 [ 3260.151052][T19134] kernel_clone+0x21d/0x8d0 [ 3260.155589][T19134] ? __pfx_kernel_clone+0x10/0x10 [ 3260.160641][T19134] __se_sys_clone3+0x2cb/0x350 [ 3260.165429][T19134] ? __pfx___se_sys_clone3+0x10/0x10 [ 3260.170751][T19134] ? rcu_is_watching+0x15/0xb0 [ 3260.175571][T19134] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3260.181595][T19134] ? exc_page_fault+0x587/0x870 [ 3260.186548][T19134] ? do_syscall_64+0xb4/0x240 [ 3260.191255][T19134] do_syscall_64+0xf9/0x240 [ 3260.195797][T19134] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3260.201709][T19134] RIP: 0033:0x7f080fca9b99 [ 3260.206129][T19134] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3260.225752][T19134] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3260.234203][T19134] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3260.242199][T19134] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3260.250174][T19134] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3260.258148][T19134] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3260.266135][T19134] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3260.274153][T19134] [ 3260.277699][T19134] memory: usage 307200kB, limit 307200kB, failcnt 117337 [ 3260.284764][T19134] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3260.305457][T19134] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3260.312905][T19134] Memory cgroup stats for /syz0: [ 3260.313058][T19134] cache 0 [ 3260.321959][T19134] rss 0 [ 3260.324753][T19134] rss_huge 0 [ 3260.328559][T19134] shmem 0 [ 3260.331553][T19134] mapped_file 0 [ 3260.335024][T19134] dirty 0 [ 3260.338290][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3260.343750][T19134] writeback 0 [ 3260.350159][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3260.352684][T19134] workingset_refault_anon 37177 [ 3260.362965][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3260.362999][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3260.377180][T19134] workingset_refault_file 0 [ 3260.377198][T19134] swap 1372160 [ 3260.377207][T19134] swapcached 0 [ 3260.390225][ T8615] usb 3-1: config 0 descriptor?? [ 3260.398798][T19134] pgpgin 280265 [ 3260.409996][T19134] pgpgout 280265 [ 3260.413738][T19134] pgfault 526709 [ 3260.417541][T19134] pgmajfault 36122 [ 3260.421461][T19134] inactive_anon 0 [ 3260.426130][T19134] active_anon 0 [ 3260.429751][T19134] inactive_file 0 [ 3260.433547][T19134] active_file 0 [ 3260.437674][T19134] unevictable 0 [ 3260.441257][T19134] hierarchical_memory_limit 314572800 [ 3260.447690][T19134] hierarchical_memsw_limit 9223372036854771712 [ 3260.464744][T19134] total_cache 0 [ 3260.468497][T19134] total_rss 0 [ 3260.471964][T19134] total_rss_huge 0 [ 3260.475909][T19134] total_shmem 0 [ 3260.479525][T19134] total_mapped_file 0 [ 3260.483629][T19134] total_dirty 0 [ 3260.487295][T19134] total_writeback 0 [ 3260.491224][T19134] total_workingset_refault_anon 37177 [ 3260.500777][T19134] total_workingset_refault_file 0 [ 3260.507568][T19134] total_swap 1372160 [ 3260.511593][T19134] total_swapcached 0 [ 3260.519459][T19134] total_pgpgin 280265 [ 3260.523465][T19134] total_pgpgout 280265 [ 3260.528230][T19134] total_pgfault 526709 [ 3260.532345][T19134] total_pgmajfault 36122 [ 3260.538697][T19134] total_inactive_anon 0 [ 3260.542887][T19134] total_active_anon 0 [ 3260.547470][T19134] total_inactive_file 0 [ 3260.551684][T19134] total_active_file 0 [ 3260.556306][T19134] total_unevictable 0 [ 3260.560369][T19134] anon_cost 0 [ 3260.563690][T19134] file_cost 0 [ 3260.567864][T19134] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19134,uid=0 [ 3260.583536][T19134] Memory cgroup out of memory: Killed process 19134 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:38 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xf603}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3260.755619][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3260.775586][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3260.795688][ T8615] usb 3-1: USB disconnect, device number 28 17:44:39 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000fc0)={0x0, &(0x7f0000000e00)={0x20, 0x3, 0xd6, {0xd6, 0xf, "6a27d35056794917aba7c38d1c064b60c143ae37370f6de79d87d96bb2c6acfb0543386b5b6606d661c69e633f62e1db7e6d9bba436296be14680fed45c64c3b3bbc72ca817ba2497918b6e5cf77e335c20d7ae45cc5368c9cc45a339f4d005bb0b8b3cc47ff3615457b2aa72124084ac4c39c7c3f66a02e4ffadb6e03fda2f88942437a3f060ef5d2847d2b3860e3be844e70966d515a8211ea0a8d08ee80dbcf666210253346b5e591d360a346e757ea1c2c21ea8204c9826b74cfaa99c5063399d94d9b91f931e8bcbb4c4792c5dde4ab5515"}}, &(0x7f0000000f00)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x380a}}, &(0x7f0000000f40)={0x0, 0x22, 0x1e, {[@global=@item_4={0x3, 0x1, 0xa, "17fe9643"}, @local=@item_4={0x3, 0x2, 0x4, '\rn#F'}, @local=@item_4={0x3, 0x2, 0x8, "a8907068"}, @main=@item_4={0x3, 0x0, 0xc, "725fa8c9"}, @main=@item_4={0x3, 0x0, 0xc, "639a94b6"}, @main=@item_4={0x3, 0x0, 0xc, "e0cd867b"}]}}, &(0x7f0000000f80)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3, 0xff, 0x1, {0x22, 0x9fc}}}}, &(0x7f00000012c0)={0x2c, &(0x7f0000001000)={0x40, 0x7, 0xd8, "a0776aa19ecafbf0cba445092509b5238402bbcea35f2995daf69d75bd32ee589fb07400a8146534981008f6695470e039440df0b3d5a5d0332cb4b4c3c2823da07b7d46095fb6669bff7e4c475d6280d9d52548f256400c231fee383b78f847ddd43d0d8249f745a04fe9d81596c2c7202a437bcf02ed40975ac74a4e90834ff38ebe98eb472597c36427177ade0c955d5f9aece9013e0a7b83133a44175b0b37fd571f664e704961db63d5ab487de00256cc7f3452dbf2c98d4ef61a608acf70e26e00a56c45f390de9fe491d9bf261105bd2f5a791dbd"}, &(0x7f0000001100)={0x0, 0xa, 0x1, 0x7f}, &(0x7f0000001140)={0x0, 0x8, 0x1, 0x40}, &(0x7f0000001180)={0x20, 0x1, 0xf9, "af67da101c6766219059df99f50b0ad113bf0f87fa174c9cf41b88a59b5d4f92f18f786b4e6e9f0c44f80cc59d4c4645ee5db4cccd433f8b4d1c90e70d60ccea648513440c590b655c6f05eb4dd190ff17df582ff3d4209b26e86f2071601495c373c82cd2708266c7b882c5d280e717a2c8c66014474f51b95b0b00d12568e8567bd400d22be62ad498be3bfcc48da086ff1d90c069e844328e40939e6a7ffefbf699486bf152f131b7222d8a9fd7c9731de9fe5b37cdbe4258713871d478cddd964c2f21e814267e33efcdb0806e942219ba3c1cdd83483d236a507efddd4c91177986d55a7909a874333e46928f21d7d1cd4e950c6ea4ca"}, &(0x7f0000001280)={0x20, 0x3, 0x1, 0x20}}) syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x8, 0x46d, 0xc52f, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x7f, 0xc0, 0xf2, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x2, 0x4, {0x9, 0x21, 0xffff, 0x4, 0x1, {0x22, 0xf8a}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x1f, 0xe7, 0x4}}}}}]}}]}}, &(0x7f00000003c0)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x310, 0xff, 0x9, 0xe0, 0x0, 0x9}, 0x21, &(0x7f00000000c0)={0x5, 0xf, 0x21, 0x1, [@ssp_cap={0x1c, 0x10, 0xa, 0x6, 0x4, 0x3ff, 0x0, 0x3, [0xc030, 0xc0, 0xff3fff, 0x7fbff0]}]}, 0x5, [{0x65, &(0x7f0000000100)=@string={0x65, 0x3, "85ae1a250dd386508b76a0585b7a50ea52699abc5c0920e3b313d2c5ced51e9a52095a2e66a0874dfdf5d413bfde588ab129329cf377a1e151606fd57a90d4d379c40435594a4506ffd654c935cf276d7b849e04680fe63a1fa9ede000409d9ee4d472"}}, {0x59, &(0x7f0000000240)=@string={0x59, 0x3, "9f19cdf10d1c81d3a335b42ac2647b733389cab88ddbad661143223262f72b0c231ede41d82670cb2264d0fbfffaa7547dec6dde7cc7a1be0e1f791d65c06e9a3895489ac9214a52882b540b5f5a87cc6a6405097ab3cc"}}, {0x75, &(0x7f00000002c0)=@string={0x75, 0x3, "f8752a83aaa81754c5a6958bbc740ceb48e5dec1bbd37b438dddf998bb5597828c6f94963ff7d266b852027849c22684c132b725c38831cb52dd349328363df3513c47ce7ea2473992be8a03f38cb2c9e4a4c1e2542c6a7dbbe66a474b6f0e0427c65b71a692fe643885838dae8cb7813b70f0"}}, {0x30, &(0x7f00000001c0)=@string={0x30, 0x3, "2500ea4efb97f9b6bf91c74135b190fc02c9c544293dfafcf7bb34d2705d5460299a68c7d1198b4a593a20c185e5"}}, {0x62, &(0x7f0000000340)=@string={0x62, 0x3, "de7663ceff3461ec84a42e032f34d1c91778bca8251d9f73d77b156731a3143b541bffc39a5458367c8b18037b97e3c528f1988d5dccba07c0ff74aa5564ea9db4fe56d7403f802468854d4337a2b4b431167f0c123ee8b7952d510a24350cf3"}}]}) syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000b40)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xff, 0x0, 0x5, [{{0x9, 0x4, 0x0, 0xc0, 0x2, 0x7, 0x1, 0x1, 0x1f, "", {{{0x9, 0x5, 0x1, 0x2, 0x200, 0x5, 0x1}}, [{{0x9, 0x5, 0x82, 0x2, 0x440, 0x1, 0xff, 0x17}}]}}}]}}]}}, &(0x7f0000000d80)={0xa, &(0x7f0000000b80)={0xa, 0x6, 0x110, 0x5, 0x80, 0x4, 0x10, 0x9}, 0x5, &(0x7f0000000bc0)={0x5, 0xf, 0x5}, 0x4, [{0x0, 0xfffffffffffffffc}, {0x4, &(0x7f0000000c00)=@lang_id={0x4, 0x3, 0x440a}}, {0x65, &(0x7f0000000c40)=@string={0x65, 0x3, "5b52320624ef23eff4801243908924db518fbf3459dac48e82bf3c0acd1cec57c02a66875f1240b086a55193457cd4b2a8b9b57ce543c1f7323e2b650e9debcbab8be00c96b0754d23943243c40c7a4866662c2358853f4638678ffb5caaede70f98bb"}}, {0x9f, &(0x7f0000000cc0)=@string={0x9f, 0x3, "e0f5e65cd347351e016d27df3e3ec4a5cee0dc354cca9f35e8aa02246b38ddc849c600e37ebe14fe2540f1feea168b8580ac23d8a11252592423595f266d3980f0d20e4fdcc43512f7ddbfc3d3a06c015ab365e26b137405885cb8d4421bfde9ab3d4336f3c8326ebd8b4099e84e2f7cf0a012e8bf44e11cf307be151b0755a138e44cb80104ceed0794e764fea0d28caf96b56410e4b0c229776c69f6"}}]}) r2 = syz_usb_connect$hid(0x4, 0x3f, &(0x7f0000000440)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x221, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x9, 0x20, 0x6, [{{0x9, 0x4, 0x0, 0xae, 0x1, 0x3, 0x1, 0x0, 0x40, {0x9, 0x21, 0x200, 0xf7, 0x1, {0x22, 0x291}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0xff, 0xc4}}, [{{0x9, 0x5, 0x2, 0x3, 0x400, 0x8, 0x1, 0x20}}]}}}]}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000480)={0xa, 0x6, 0x201, 0x4, 0x7, 0x9f, 0x10, 0x20}, 0x4e, &(0x7f00000004c0)={0x5, 0xf, 0x4e, 0x6, [@wireless={0xb, 0x10, 0x1, 0x2, 0xc4, 0x81, 0x3, 0x40, 0x40}, @ssp_cap={0x10, 0x10, 0xa, 0xff, 0x1, 0xec, 0xf, 0x28, [0xff0000]}, @ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0x8, "ad043d869ad53d604e5190cc3840d229"}, @ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0x3f, "6780ce7a8045d93d5814a773c1efe48d"}]}, 0x1, [{0xef, &(0x7f0000000540)=@string={0xef, 0x3, "73ddbeb287726aa00cc53f109e44ab018c2cb53cacef28d9cac65296f47a019fbf2837b159feeb9f541f64612e2ffe303514011147ff141c697bdad0f322b9ac4496995f8fd03d6f11c0a0e1aa521dd2c9655139ef48b5eb0b41a10b681dd8a50d46ac906161ecb48f719646c1d0293f70fcaeafebc566d4bde4bf92798f459f52cea58ff4ae26997067c3f9db57113a61182d6500b576c7e6edac88bc11f2131c2cd8196cd092a6400bd3b386225938daf5308d747a0dd62622f1fce0ffe55871a8c95c1839f2848374231d3b00140ff1c66deb91d6008629acab3b368f04e2cf025c730225ed40dbe53556f5"}}]}) syz_usb_control_io$hid(r2, &(0x7f00000008c0)={0x24, &(0x7f0000000680)={0x40, 0x3e, 0x94, {0x94, 0x8, "4d47e6ba675b2efca144263270044e26997f6ea000951aabea921ae123bc345872ac1f8d70f0bf542f880526b0ee748a380f6f51a0652bd389fc56cc200a089e5112db8f96b9b2beb6970baa5f98fbf0b8f7e0def0a884717f3af7070bef5a83b1d2edac6ecc34c8295b8a5e9889ff4e1906fb38b14432f5955c1d7feddf702d26505439f777a48725ab6752d6d3af55541b"}}, &(0x7f0000000740)={0x0, 0x3, 0xd8, @string={0xd8, 0x3, "e148561c84586eb88d2f202e6f4e6149d3b810350ed2b5c7d0788d1064794692b2344691017e987caa6dab8e85eeb0c9c0eb69ec2593f04faf39ffb39bbca95404cf7927a58796a2b97555f427460982b90f2519f1efd9a6f199ba3019ef2641ed33084cb521997fdf8624606c216166adcc0cc42444380be66d51846c543c988f4af3d5f36ab1d777cd2f59c56d46654936664c8262f237b59e4cea78a1176380441415ec230e374bfe15cd22d912cfcbdf4e3c676b65b6092a7ec7183b86e28c897deaa29fda9a9aafe02f9238ef9424c59f9e5935"}}, &(0x7f0000000840)={0x0, 0x22, 0x16, {[@local=@item_4={0x3, 0x2, 0x8, "31a5365a"}, @global=@item_012={0x0, 0x1, 0x7}, @local, @main=@item_012={0x2, 0x0, 0x8, "9092"}, @main=@item_4={0x3, 0x0, 0xb, "c87c0c45"}, @global=@item_012={0x1, 0x1, 0x1, "13"}, @global=@item_4={0x3, 0x1, 0xb, 'g#F2'}]}}, &(0x7f0000000880)={0x0, 0x21, 0x9, {0x9, 0x21, 0xfffa, 0x1, 0x1, {0x22, 0xc60}}}}, &(0x7f0000000b00)={0x2c, &(0x7f0000000900)={0x20, 0x18, 0xaa, "cc66d7cc078c3cfb45da4dda2ba9f0da936b85819bc01758e0311616d1efbffe6242848c322819c670a72b6af021ae8ed04d924bfef761edd779b8ff5bd33cedb56faef86f7929d96a30292be9948a37ff42813cdd3a00e0cd25cca39fe217897523a64c383b0c1a78d6ad570537eb8d34b1da43698fd5439021206f531c24035011382e746a8383d0b0af5aa6ed00331a1e812f27539a7fb6df80c2156a935f38d95343efb2c210d936"}, &(0x7f00000009c0)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000a00)={0x0, 0x8, 0x1, 0x1f}, &(0x7f0000000a40)={0x20, 0x1, 0x4c, "221d0932df4f55d31b3947dafee2289e11ac0bb6e4644c427ab82591b646a568c1f751a0ac49caebd83daa8fdbf1791afb685087b0146d1f7fe4e48a1d0288401cf8694d04d0075fbfd06b2b"}, &(0x7f0000000ac0)={0x20, 0x3, 0x1, 0x33}}) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3261.050326][T19136] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3261.067571][T19136] CPU: 1 PID: 19136 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3261.078032][T19136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3261.088094][T19136] Call Trace: [ 3261.091379][T19136] [ 3261.094328][T19136] dump_stack_lvl+0x1e7/0x2e0 [ 3261.099040][T19136] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3261.104253][T19136] ? __pfx__printk+0x10/0x10 [ 3261.108850][T19136] ? ___ratelimit+0x4c4/0x670 [ 3261.113555][T19136] ? __pfx____ratelimit+0x10/0x10 [ 3261.118653][T19136] dump_header+0xda/0x6a0 [ 3261.122997][T19136] oom_kill_process+0x3a7/0x930 [ 3261.127877][T19136] out_of_memory+0xf67/0x1320 [ 3261.132606][T19136] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3261.138279][T19136] ? __pfx___mutex_lock+0x10/0x10 [ 3261.143331][T19136] ? __pfx_out_of_memory+0x10/0x10 [ 3261.148484][T19136] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3261.154037][T19136] ? __pfx_lock_release+0x10/0x10 [ 3261.159086][T19136] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3261.165217][T19136] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3261.170440][T19136] ? mem_cgroup_iter+0x422/0x560 [ 3261.175443][T19136] try_charge_memcg+0xda2/0x18a0 [ 3261.180435][T19136] ? __pfx_try_charge_memcg+0x10/0x10 [ 3261.185826][T19136] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3261.191550][T19136] ? __pfx_lock_release+0x10/0x10 [ 3261.196588][T19136] ? memcg_account_kmem+0x1e7/0x210 [ 3261.201803][T19136] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3261.207619][T19136] __memcg_kmem_charge_page+0xe1/0x250 [ 3261.213092][T19136] memcg_charge_kernel_stack+0x210/0x550 [ 3261.218750][T19136] dup_task_struct+0x15d/0x7d0 [ 3261.223519][T19136] copy_process+0x5d5/0x3fc0 [ 3261.228127][T19136] ? __might_fault+0xa9/0x120 [ 3261.232821][T19136] ? __pfx_lock_release+0x10/0x10 [ 3261.237876][T19136] ? __pfx_copy_process+0x10/0x10 [ 3261.242909][T19136] ? __might_fault+0xc5/0x120 [ 3261.247600][T19136] ? __asan_memset+0x23/0x50 [ 3261.252209][T19136] kernel_clone+0x21d/0x8d0 [ 3261.256727][T19136] ? __pfx_kernel_clone+0x10/0x10 [ 3261.261773][T19136] __se_sys_clone3+0x2cb/0x350 [ 3261.266547][T19136] ? __pfx___se_sys_clone3+0x10/0x10 [ 3261.271864][T19136] ? do_syscall_64+0x108/0x240 [ 3261.276646][T19136] ? do_syscall_64+0xb4/0x240 [ 3261.281340][T19136] do_syscall_64+0xf9/0x240 [ 3261.285863][T19136] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3261.291771][T19136] RIP: 0033:0x7f080fca9b99 [ 3261.296191][T19136] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3261.315803][T19136] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3261.324224][T19136] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3261.332204][T19136] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3261.340198][T19136] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3261.348179][T19136] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3261.356161][T19136] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3261.364148][T19136] [ 3261.386311][T19136] memory: usage 307200kB, limit 307200kB, failcnt 117749 [ 3261.393410][T19136] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 17:44:39 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) r2 = syz_usb_connect$uac1(0x4, 0xeb, &(0x7f00000001c0)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xd9, 0x3, 0x1, 0x6e, 0x0, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x6, 0xc6}, [@extension_unit={0x7, 0x24, 0x8, 0x1, 0x401, 0x3}, @mixer_unit={0x6, 0x24, 0x4, 0x2, 0x2, "ef"}, @output_terminal={0x9, 0x24, 0x3, 0x4, 0x303, 0x4, 0x5, 0x13}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0xd, 0x24, 0x2, 0x1, 0x0, 0x3, 0x1, 0x1, "bbd5da3a12"}, @format_type_ii_discrete={0x11, 0x24, 0x2, 0x2, 0xffff, 0x4, 0x8, "c080541506395800"}]}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0x6, 0x7f, 0x3, {0x7, 0x25, 0x1, 0x80, 0xca, 0x401}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xd, 0x24, 0x2, 0x2, 0x1, 0x0, 0x1f, "3834f725"}, @format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x2, 0x3, 0x7, 0x7, "20b404", "b3"}, @format_type_ii_discrete={0xe, 0x24, 0x2, 0x2, 0x9, 0x9, 0x5, "80bca17deb"}, @format_type_ii_discrete={0x12, 0x24, 0x2, 0x2, 0x5, 0x7, 0x28, "b4ba782d9ae80ebf16"}, @format_type_i_continuous={0xd, 0x24, 0x2, 0x1, 0x21, 0x2, 0x6, 0xf0, "3c1f", "e2705f"}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x4, 0x4, 0x3, {0x7, 0x25, 0x1, 0x1, 0x6, 0xc34}}}}}}}]}}, &(0x7f0000000440)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x110, 0x1, 0x9, 0x0, 0x40, 0x6}, 0x10, &(0x7f0000000100)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0x2, 0x9, 0x3f, 0x4000, 0x79}]}, 0x4, [{0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x438}}, {0xbc, &(0x7f0000000300)=@string={0xbc, 0x3, "3b2a431949bd754733fc6c2b5da9ef0c09c4c0c529ca2dd5621993cd439a0db9325328d34203d82c88e69c2cb99c0acf04dc9f6a110c677111af32afa8b6b93785ee008f76e7ebcd3dc694ef1b94045e52cde02bf56ed412b3328476bfc90fceb4f20a3013b402c6ffdc13bdd852d4d766ff9470f80ee0c5800d6f2c5314de63ee8aa000b40c39a6681aee827b727c8a29932f89544e8ec33cd7eadb830d729125639ddd1b5926859dc35608176d6731324b1503f15fae488bc9"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0xf8ff}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x140c}}]}) syz_usb_control_io(r2, &(0x7f0000000700)={0x2c, &(0x7f00000004c0)={0x0, 0x21, 0xdd, {0xdd, 0x23, "910d48dada13a5bb7334d5fbe26c8405f128870fbd5bf7eec3624755660a429ab51a6ace85073beef6c6f3937b81d7465385411a3ed0672e62d68dcb2c486a88a0a58c4e8d1587866a50e7adc2df3ccd54028818ad721d882a63fb8a8188796becc12138d2953f3b2dc41fab362c470851907ab2aa72ba9b73c77b8e81447314071330ee20b468ae311547b5fec4dbdde33ee38c6d1a8665a28396c2fefd06416f221960332deeaa6a8b2b3583313f6e71fe75fb81a7c784fd3924e203ca140e11ca7c8632bc2efdf7bb969a6494c740b6d008b7abd8dbe273d767"}}, &(0x7f00000005c0)={0x0, 0x3, 0x6c, @string={0x6c, 0x3, "7f7bfaf104e28f3ee954f9e9d1e9291112199738ac2ee47055fbc9c5a298d686709fb28ff2a7b0b7e23e654b7726fe1a455f7095206aace16813768163d7a158b669599c86beb3f7291d53aca870860be93f61480f4fc00dbcba0ce369f83815c85dc90029d8ee9870a3"}}, &(0x7f0000000640)={0x0, 0xf, 0x29, {0x5, 0xf, 0x29, 0x1, [@ssp_cap={0x24, 0x10, 0xa, 0x2, 0x6, 0x4, 0xf000, 0x6, [0xc0, 0x30, 0x1f80, 0xc000, 0xff0030, 0xff3f00]}]}}, &(0x7f0000000680)={0x20, 0x29, 0xf, {0xf, 0x29, 0x84, 0x2, 0x6, 0x0, "3ae2840d", "e3d0935a"}}, &(0x7f00000006c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0xe3, 0x18, 0x5, 0x4b, 0x9, 0x8b2b, 0x6d85}}}, &(0x7f0000000c40)={0x84, &(0x7f0000000740)={0x0, 0x8, 0xfd, "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"}, &(0x7f0000000880)={0x0, 0xa, 0x1, 0xfa}, &(0x7f00000008c0)={0x0, 0x8, 0x1, 0x1f}, &(0x7f0000000900)={0x20, 0x0, 0x4, {0x0, 0x1}}, &(0x7f0000000940)={0x20, 0x0, 0x4, {0x80, 0x80}}, &(0x7f0000000980)={0x40, 0x7, 0x2, 0x20}, &(0x7f00000009c0)={0x40, 0x9, 0x1, 0x66}, &(0x7f0000000a00)={0x40, 0xb, 0x2, 'Li'}, &(0x7f0000000a40)={0x40, 0xf, 0x2, 0x8}, &(0x7f0000000a80)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000000ac0)={0x40, 0x17, 0x6}, &(0x7f0000000b00)={0x40, 0x19, 0x2, '=w'}, &(0x7f0000000b40)={0x40, 0x1a, 0x2, 0x81}, &(0x7f0000000b80)={0x40, 0x1c, 0x1, 0x6c}, &(0x7f0000000bc0)={0x40, 0x1e, 0x1, 0x4e}, &(0x7f0000000c00)={0x40, 0x21, 0x1, 0x5}}) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3261.425643][T19136] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3261.439667][T19136] Memory cgroup stats for /syz0: [ 3261.439816][T19136] cache 0 [ 3261.455283][T19136] rss 0 [ 3261.458104][T19136] rss_huge 0 [ 3261.461325][T19136] shmem 0 [ 3261.464283][T19136] mapped_file 0 [ 3261.481974][T19136] dirty 0 [ 3261.491300][T19136] writeback 0 [ 3261.494631][T19136] workingset_refault_anon 37331 [ 3261.500197][T19136] workingset_refault_file 0 [ 3261.504847][T19136] swap 1372160 [ 3261.508338][T19136] swapcached 0 [ 3261.512028][T19136] pgpgin 280430 [ 3261.515898][T19136] pgpgout 280430 [ 3261.520009][T19136] pgfault 526936 [ 3261.523586][T19136] pgmajfault 36263 [ 3261.527413][T19136] inactive_anon 0 [ 3261.531064][T19136] active_anon 0 [ 3261.534547][T19136] inactive_file 0 [ 3261.535295][ T8615] usb 3-1: new high-speed USB device number 29 using dummy_hcd [ 3261.539481][T19136] active_file 0 [ 3261.558023][T19136] unevictable 0 [ 3261.561579][T19136] hierarchical_memory_limit 314572800 [ 3261.567282][T19136] hierarchical_memsw_limit 9223372036854771712 [ 3261.573524][T19136] total_cache 0 [ 3261.584834][T19136] total_rss 0 [ 3261.588695][T19136] total_rss_huge 0 [ 3261.592490][T19136] total_shmem 0 [ 3261.596437][T19136] total_mapped_file 0 [ 3261.601609][T19136] total_dirty 0 [ 3261.609849][T19136] total_writeback 0 [ 3261.617217][T19136] total_workingset_refault_anon 37331 [ 3261.622716][T19136] total_workingset_refault_file 0 [ 3261.632617][T19136] total_swap 1372160 [ 3261.636883][T19136] total_swapcached 0 [ 3261.640899][T19136] total_pgpgin 280430 [ 3261.644968][T19136] total_pgpgout 280430 [ 3261.649373][T19136] total_pgfault 526936 [ 3261.653558][T19136] total_pgmajfault 36263 [ 3261.657950][T19136] total_inactive_anon 0 [ 3261.662179][T19136] total_active_anon 0 [ 3261.666350][T19136] total_inactive_file 0 [ 3261.670642][T19136] total_active_file 0 [ 3261.674752][T19136] total_unevictable 0 [ 3261.678924][T19136] anon_cost 0 [ 3261.682335][T19136] file_cost 0 [ 3261.686378][T19136] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19136,uid=0 [ 3261.702344][T19136] Memory cgroup out of memory: Killed process 19136 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:40 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xfff2}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3261.826153][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3261.945691][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3261.971423][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3261.988246][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3262.007595][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3262.028720][ T8615] usb 3-1: config 0 descriptor?? [ 3262.113126][T19144] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3262.123522][T19144] CPU: 1 PID: 19144 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3262.133972][T19144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3262.144052][T19144] Call Trace: [ 3262.147348][T19144] [ 3262.150293][T19144] dump_stack_lvl+0x1e7/0x2e0 [ 3262.155006][T19144] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3262.160219][T19144] ? __pfx__printk+0x10/0x10 [ 3262.164829][T19144] ? ___ratelimit+0x4c4/0x670 [ 3262.169537][T19144] ? __pfx____ratelimit+0x10/0x10 [ 3262.174575][T19144] dump_header+0xda/0x6a0 [ 3262.178936][T19144] oom_kill_process+0x3a7/0x930 [ 3262.183842][T19144] out_of_memory+0xf67/0x1320 [ 3262.188564][T19144] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3262.194222][T19144] ? __pfx___mutex_lock+0x10/0x10 [ 3262.199259][T19144] ? __pfx_out_of_memory+0x10/0x10 [ 3262.204386][T19144] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3262.209936][T19144] ? __pfx_lock_release+0x10/0x10 [ 3262.214971][T19144] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3262.221064][T19144] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3262.226283][T19144] ? mem_cgroup_iter+0x422/0x560 [ 3262.231273][T19144] try_charge_memcg+0xda2/0x18a0 [ 3262.236259][T19144] ? __pfx_try_charge_memcg+0x10/0x10 [ 3262.241651][T19144] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3262.247383][T19144] ? __pfx_lock_release+0x10/0x10 [ 3262.252423][T19144] ? memcg_account_kmem+0x1e7/0x210 [ 3262.257641][T19144] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3262.263458][T19144] __memcg_kmem_charge_page+0xe1/0x250 [ 3262.268935][T19144] memcg_charge_kernel_stack+0x210/0x550 [ 3262.274582][T19144] dup_task_struct+0x15d/0x7d0 [ 3262.279361][T19144] copy_process+0x5d5/0x3fc0 [ 3262.283968][T19144] ? __might_fault+0xa9/0x120 [ 3262.288656][T19144] ? __pfx_lock_release+0x10/0x10 [ 3262.293696][T19144] ? __lock_acquire+0x1345/0x1fd0 [ 3262.298737][T19144] ? __pfx_copy_process+0x10/0x10 [ 3262.303764][T19144] ? __might_fault+0xc5/0x120 [ 3262.308458][T19144] ? __asan_memset+0x23/0x50 [ 3262.313061][T19144] kernel_clone+0x21d/0x8d0 [ 3262.317574][T19144] ? __pfx_kernel_clone+0x10/0x10 [ 3262.322618][T19144] ? __pfx_lock_release+0x10/0x10 [ 3262.327665][T19144] __se_sys_clone3+0x2cb/0x350 [ 3262.332452][T19144] ? __might_fault+0xa9/0x120 [ 3262.337145][T19144] ? __pfx___se_sys_clone3+0x10/0x10 [ 3262.342439][T19144] ? rcu_is_watching+0x15/0xb0 [ 3262.347230][T19144] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3262.353233][T19144] ? exc_page_fault+0x587/0x870 [ 3262.358095][T19144] ? do_syscall_64+0xb4/0x240 [ 3262.362790][T19144] do_syscall_64+0xf9/0x240 [ 3262.367318][T19144] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3262.373224][T19144] RIP: 0033:0x7f080fca9b99 [ 3262.377649][T19144] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3262.397267][T19144] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3262.405845][T19144] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3262.413838][T19144] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3262.421829][T19144] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3262.429825][T19144] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3262.437808][T19144] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3262.445804][T19144] [ 3262.451767][T19144] memory: usage 307200kB, limit 307200kB, failcnt 118177 [ 3262.466314][T19144] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3262.477512][T19144] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3262.484918][T19144] Memory cgroup stats for /syz0: [ 3262.485064][T19144] cache 0 [ 3262.494416][T19144] rss 0 [ 3262.497693][T19144] rss_huge 0 [ 3262.501000][T19144] shmem 0 [ 3262.504059][T19144] mapped_file 0 [ 3262.508281][T19144] dirty 0 [ 3262.511353][T19144] writeback 0 [ 3262.514746][T19144] workingset_refault_anon 37485 [ 3262.520395][T19144] workingset_refault_file 0 [ 3262.525017][T19144] swap 1335296 [ 3262.529032][T19144] swapcached 0 [ 3262.532490][T19144] pgpgin 280602 [ 3262.536914][T19144] pgpgout 280602 [ 3262.540581][T19144] pgfault 527187 [ 3262.544192][T19144] pgmajfault 36404 [ 3262.548637][T19144] inactive_anon 0 [ 3262.552400][T19144] active_anon 0 [ 3262.555511][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3262.556764][T19144] inactive_file 0 [ 3262.561920][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3262.566077][T19144] active_file 0 [ 3262.576178][T19144] unevictable 0 [ 3262.579844][T19144] hierarchical_memory_limit 314572800 [ 3262.586323][T19144] hierarchical_memsw_limit 9223372036854771712 [ 3262.592713][T19144] total_cache 0 [ 3262.595914][ T8615] usb 3-1: USB disconnect, device number 29 [ 3262.597146][T19144] total_rss 0 [ 3262.614137][T19144] total_rss_huge 0 [ 3262.618365][T19144] total_shmem 0 [ 3262.622123][T19144] total_mapped_file 0 [ 3262.626345][T19144] total_dirty 0 [ 3262.630158][T19144] total_writeback 0 [ 3262.634146][T19144] total_workingset_refault_anon 37485 [ 3262.639972][T19144] total_workingset_refault_file 0 [ 3262.645117][T19144] total_swap 1335296 [ 3262.654515][T19144] total_swapcached 0 [ 3262.660087][T19144] total_pgpgin 280602 [ 3262.664103][T19144] total_pgpgout 280602 [ 3262.668312][T19144] total_pgfault 527187 [ 3262.672396][T19144] total_pgmajfault 36404 [ 3262.676952][T19144] total_inactive_anon 0 [ 3262.681134][T19144] total_active_anon 0 [ 3262.685141][T19144] total_inactive_file 0 [ 3262.689424][T19144] total_active_file 0 [ 3262.693428][T19144] total_unevictable 0 [ 3262.697595][T19144] anon_cost 0 [ 3262.700901][T19144] file_cost 0 [ 3262.704209][T19144] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19144,uid=0 [ 3262.719902][T19144] Memory cgroup out of memory: Killed process 19144 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:41 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3263.125430][ T8615] usb 3-1: new high-speed USB device number 30 using dummy_hcd [ 3263.155293][T19145] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3263.165575][T19145] CPU: 1 PID: 19145 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3263.176023][T19145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3263.186102][T19145] Call Trace: [ 3263.189383][T19145] [ 3263.192328][T19145] dump_stack_lvl+0x1e7/0x2e0 [ 3263.197057][T19145] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3263.202264][T19145] ? __pfx__printk+0x10/0x10 [ 3263.206859][T19145] ? ___ratelimit+0x4c4/0x670 [ 3263.211554][T19145] ? __pfx____ratelimit+0x10/0x10 [ 3263.216672][T19145] dump_header+0xda/0x6a0 [ 3263.221010][T19145] oom_kill_process+0x3a7/0x930 [ 3263.225884][T19145] out_of_memory+0xf67/0x1320 [ 3263.230615][T19145] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3263.236320][T19145] ? __pfx___mutex_lock+0x10/0x10 [ 3263.241376][T19145] ? __pfx_out_of_memory+0x10/0x10 [ 3263.246522][T19145] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3263.252075][T19145] ? __pfx_lock_release+0x10/0x10 [ 3263.257119][T19145] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3263.263213][T19145] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3263.268420][T19145] ? mem_cgroup_iter+0x422/0x560 [ 3263.273366][T19145] try_charge_memcg+0xda2/0x18a0 [ 3263.278353][T19145] ? __pfx_try_charge_memcg+0x10/0x10 [ 3263.283765][T19145] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3263.289640][T19145] ? __pfx_lock_release+0x10/0x10 [ 3263.294685][T19145] ? memcg_account_kmem+0x1e7/0x210 [ 3263.299897][T19145] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3263.305708][T19145] __memcg_kmem_charge_page+0xe1/0x250 [ 3263.311181][T19145] memcg_charge_kernel_stack+0x210/0x550 [ 3263.316825][T19145] dup_task_struct+0x15d/0x7d0 [ 3263.321596][T19145] copy_process+0x5d5/0x3fc0 [ 3263.326225][T19145] ? __might_fault+0xa9/0x120 [ 3263.330945][T19145] ? __pfx_lock_release+0x10/0x10 [ 3263.336013][T19145] ? __lock_acquire+0x1345/0x1fd0 [ 3263.341158][T19145] ? __pfx_copy_process+0x10/0x10 [ 3263.346238][T19145] ? __might_fault+0xc5/0x120 [ 3263.350948][T19145] ? __asan_memset+0x23/0x50 [ 3263.355561][T19145] kernel_clone+0x21d/0x8d0 [ 3263.360074][T19145] ? __pfx_kernel_clone+0x10/0x10 [ 3263.365130][T19145] ? __pfx_lock_release+0x10/0x10 [ 3263.370186][T19145] __se_sys_clone3+0x2cb/0x350 [ 3263.374983][T19145] ? __might_fault+0xa9/0x120 [ 3263.379718][T19145] ? __pfx___se_sys_clone3+0x10/0x10 [ 3263.385033][T19145] ? rcu_is_watching+0x15/0xb0 [ 3263.389852][T19145] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3263.395875][T19145] ? exc_page_fault+0x587/0x870 [ 3263.400740][T19145] ? do_syscall_64+0xb4/0x240 [ 3263.405435][T19145] do_syscall_64+0xf9/0x240 [ 3263.409958][T19145] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3263.415877][T19145] RIP: 0033:0x7f080fca9b99 [ 3263.420314][T19145] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3263.439949][T19145] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3263.448419][T19145] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3263.456403][T19145] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3263.464466][T19145] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3263.472457][T19145] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3263.480447][T19145] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3263.488500][T19145] [ 3263.515332][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3263.520544][T19145] memory: usage 307200kB, limit 307200kB, failcnt 118633 [ 3263.527896][T19145] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3263.535961][T19145] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3263.543280][T19145] Memory cgroup stats for /syz0: [ 3263.543432][T19145] cache 0 [ 3263.551893][T19145] rss 16384 [ 3263.555107][T19145] rss_huge 0 [ 3263.558545][T19145] shmem 0 [ 3263.561540][T19145] mapped_file 0 [ 3263.565034][T19145] dirty 0 [ 3263.568436][T19145] writeback 0 [ 3263.571770][T19145] workingset_refault_anon 37619 [ 3263.584775][T19145] workingset_refault_file 0 [ 3263.589732][T19145] swap 1351680 [ 3263.593140][T19145] swapcached 16384 [ 3263.597566][T19145] pgpgin 280757 [ 3263.601060][T19145] pgpgout 280752 [ 3263.604624][T19145] pgfault 527403 [ 3263.611429][T19145] pgmajfault 36529 [ 3263.615514][T19145] inactive_anon 0 [ 3263.619228][T19145] active_anon 20480 [ 3263.623071][T19145] inactive_file 0 [ 3263.627089][T19145] active_file 0 [ 3263.630593][T19145] unevictable 0 [ 3263.634069][T19145] hierarchical_memory_limit 314572800 [ 3263.639551][T19145] hierarchical_memsw_limit 9223372036854771712 [ 3263.646020][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3263.654025][T19145] total_cache 0 [ 3263.657233][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3263.657286][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3263.657313][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3263.666699][ T8615] usb 3-1: config 0 descriptor?? [ 3263.679488][T19145] total_rss 16384 [ 3263.704059][T19145] total_rss_huge 0 [ 3263.708026][T19145] total_shmem 0 [ 3263.711506][T19145] total_mapped_file 0 [ 3263.715588][T19145] total_dirty 0 [ 3263.719075][T19145] total_writeback 0 [ 3263.722892][T19145] total_workingset_refault_anon 37619 [ 3263.728358][T19145] total_workingset_refault_file 0 [ 3263.733417][T19145] total_swap 1351680 [ 3263.741107][T19145] total_swapcached 16384 [ 3263.745495][T19145] total_pgpgin 280757 [ 3263.749491][T19145] total_pgpgout 280752 [ 3263.753557][T19145] total_pgfault 527403 [ 3263.765264][T19145] total_pgmajfault 36529 [ 3263.772294][T19145] total_inactive_anon 0 [ 3263.778084][T19145] total_active_anon 20480 [ 3263.782438][T19145] total_inactive_file 0 [ 3263.786767][T19145] total_active_file 0 [ 3263.790769][T19145] total_unevictable 0 [ 3263.794775][T19145] anon_cost 0 [ 3263.806577][T19145] file_cost 0 [ 3263.809937][T19145] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19145,uid=0 [ 3263.825785][T19145] Memory cgroup out of memory: Killed process 19145 (syz-executor.0) total-vm:54508kB, anon-rss:356kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:42 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000fc0)={0x0, &(0x7f0000000e00)={0x20, 0x3, 0xd6, {0xd6, 0xf, "6a27d35056794917aba7c38d1c064b60c143ae37370f6de79d87d96bb2c6acfb0543386b5b6606d661c69e633f62e1db7e6d9bba436296be14680fed45c64c3b3bbc72ca817ba2497918b6e5cf77e335c20d7ae45cc5368c9cc45a339f4d005bb0b8b3cc47ff3615457b2aa72124084ac4c39c7c3f66a02e4ffadb6e03fda2f88942437a3f060ef5d2847d2b3860e3be844e70966d515a8211ea0a8d08ee80dbcf666210253346b5e591d360a346e757ea1c2c21ea8204c9826b74cfaa99c5063399d94d9b91f931e8bcbb4c4792c5dde4ab5515"}}, &(0x7f0000000f00)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x380a}}, &(0x7f0000000f40)={0x0, 0x22, 0x1e, {[@global=@item_4={0x3, 0x1, 0xa, "17fe9643"}, @local=@item_4={0x3, 0x2, 0x4, '\rn#F'}, @local=@item_4={0x3, 0x2, 0x8, "a8907068"}, @main=@item_4={0x3, 0x0, 0xc, "725fa8c9"}, @main=@item_4={0x3, 0x0, 0xc, "639a94b6"}, @main=@item_4={0x3, 0x0, 0xc, "e0cd867b"}]}}, &(0x7f0000000f80)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3, 0xff, 0x1, {0x22, 0x9fc}}}}, &(0x7f00000012c0)={0x2c, &(0x7f0000001000)={0x40, 0x7, 0xd8, "a0776aa19ecafbf0cba445092509b5238402bbcea35f2995daf69d75bd32ee589fb07400a8146534981008f6695470e039440df0b3d5a5d0332cb4b4c3c2823da07b7d46095fb6669bff7e4c475d6280d9d52548f256400c231fee383b78f847ddd43d0d8249f745a04fe9d81596c2c7202a437bcf02ed40975ac74a4e90834ff38ebe98eb472597c36427177ade0c955d5f9aece9013e0a7b83133a44175b0b37fd571f664e704961db63d5ab487de00256cc7f3452dbf2c98d4ef61a608acf70e26e00a56c45f390de9fe491d9bf261105bd2f5a791dbd"}, &(0x7f0000001100)={0x0, 0xa, 0x1, 0x7f}, &(0x7f0000001140)={0x0, 0x8, 0x1, 0x40}, &(0x7f0000001180)={0x20, 0x1, 0xf9, "af67da101c6766219059df99f50b0ad113bf0f87fa174c9cf41b88a59b5d4f92f18f786b4e6e9f0c44f80cc59d4c4645ee5db4cccd433f8b4d1c90e70d60ccea648513440c590b655c6f05eb4dd190ff17df582ff3d4209b26e86f2071601495c373c82cd2708266c7b882c5d280e717a2c8c66014474f51b95b0b00d12568e8567bd400d22be62ad498be3bfcc48da086ff1d90c069e844328e40939e6a7ffefbf699486bf152f131b7222d8a9fd7c9731de9fe5b37cdbe4258713871d478cddd964c2f21e814267e33efcdb0806e942219ba3c1cdd83483d236a507efddd4c91177986d55a7909a874333e46928f21d7d1cd4e950c6ea4ca"}, &(0x7f0000001280)={0x20, 0x3, 0x1, 0x20}}) (async) syz_usb_control_io$hid(r0, &(0x7f0000000fc0)={0x0, &(0x7f0000000e00)={0x20, 0x3, 0xd6, {0xd6, 0xf, "6a27d35056794917aba7c38d1c064b60c143ae37370f6de79d87d96bb2c6acfb0543386b5b6606d661c69e633f62e1db7e6d9bba436296be14680fed45c64c3b3bbc72ca817ba2497918b6e5cf77e335c20d7ae45cc5368c9cc45a339f4d005bb0b8b3cc47ff3615457b2aa72124084ac4c39c7c3f66a02e4ffadb6e03fda2f88942437a3f060ef5d2847d2b3860e3be844e70966d515a8211ea0a8d08ee80dbcf666210253346b5e591d360a346e757ea1c2c21ea8204c9826b74cfaa99c5063399d94d9b91f931e8bcbb4c4792c5dde4ab5515"}}, &(0x7f0000000f00)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x380a}}, &(0x7f0000000f40)={0x0, 0x22, 0x1e, {[@global=@item_4={0x3, 0x1, 0xa, "17fe9643"}, @local=@item_4={0x3, 0x2, 0x4, '\rn#F'}, @local=@item_4={0x3, 0x2, 0x8, "a8907068"}, @main=@item_4={0x3, 0x0, 0xc, "725fa8c9"}, @main=@item_4={0x3, 0x0, 0xc, "639a94b6"}, @main=@item_4={0x3, 0x0, 0xc, "e0cd867b"}]}}, &(0x7f0000000f80)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3, 0xff, 0x1, {0x22, 0x9fc}}}}, &(0x7f00000012c0)={0x2c, &(0x7f0000001000)={0x40, 0x7, 0xd8, "a0776aa19ecafbf0cba445092509b5238402bbcea35f2995daf69d75bd32ee589fb07400a8146534981008f6695470e039440df0b3d5a5d0332cb4b4c3c2823da07b7d46095fb6669bff7e4c475d6280d9d52548f256400c231fee383b78f847ddd43d0d8249f745a04fe9d81596c2c7202a437bcf02ed40975ac74a4e90834ff38ebe98eb472597c36427177ade0c955d5f9aece9013e0a7b83133a44175b0b37fd571f664e704961db63d5ab487de00256cc7f3452dbf2c98d4ef61a608acf70e26e00a56c45f390de9fe491d9bf261105bd2f5a791dbd"}, &(0x7f0000001100)={0x0, 0xa, 0x1, 0x7f}, &(0x7f0000001140)={0x0, 0x8, 0x1, 0x40}, &(0x7f0000001180)={0x20, 0x1, 0xf9, "af67da101c6766219059df99f50b0ad113bf0f87fa174c9cf41b88a59b5d4f92f18f786b4e6e9f0c44f80cc59d4c4645ee5db4cccd433f8b4d1c90e70d60ccea648513440c590b655c6f05eb4dd190ff17df582ff3d4209b26e86f2071601495c373c82cd2708266c7b882c5d280e717a2c8c66014474f51b95b0b00d12568e8567bd400d22be62ad498be3bfcc48da086ff1d90c069e844328e40939e6a7ffefbf699486bf152f131b7222d8a9fd7c9731de9fe5b37cdbe4258713871d478cddd964c2f21e814267e33efcdb0806e942219ba3c1cdd83483d236a507efddd4c91177986d55a7909a874333e46928f21d7d1cd4e950c6ea4ca"}, &(0x7f0000001280)={0x20, 0x3, 0x1, 0x20}}) syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x8, 0x46d, 0xc52f, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x7f, 0xc0, 0xf2, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x2, 0x4, {0x9, 0x21, 0xffff, 0x4, 0x1, {0x22, 0xf8a}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x1f, 0xe7, 0x4}}}}}]}}]}}, &(0x7f00000003c0)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x310, 0xff, 0x9, 0xe0, 0x0, 0x9}, 0x21, &(0x7f00000000c0)={0x5, 0xf, 0x21, 0x1, [@ssp_cap={0x1c, 0x10, 0xa, 0x6, 0x4, 0x3ff, 0x0, 0x3, [0xc030, 0xc0, 0xff3fff, 0x7fbff0]}]}, 0x5, [{0x65, &(0x7f0000000100)=@string={0x65, 0x3, "85ae1a250dd386508b76a0585b7a50ea52699abc5c0920e3b313d2c5ced51e9a52095a2e66a0874dfdf5d413bfde588ab129329cf377a1e151606fd57a90d4d379c40435594a4506ffd654c935cf276d7b849e04680fe63a1fa9ede000409d9ee4d472"}}, {0x59, &(0x7f0000000240)=@string={0x59, 0x3, "9f19cdf10d1c81d3a335b42ac2647b733389cab88ddbad661143223262f72b0c231ede41d82670cb2264d0fbfffaa7547dec6dde7cc7a1be0e1f791d65c06e9a3895489ac9214a52882b540b5f5a87cc6a6405097ab3cc"}}, {0x75, &(0x7f00000002c0)=@string={0x75, 0x3, "f8752a83aaa81754c5a6958bbc740ceb48e5dec1bbd37b438dddf998bb5597828c6f94963ff7d266b852027849c22684c132b725c38831cb52dd349328363df3513c47ce7ea2473992be8a03f38cb2c9e4a4c1e2542c6a7dbbe66a474b6f0e0427c65b71a692fe643885838dae8cb7813b70f0"}}, {0x30, &(0x7f00000001c0)=@string={0x30, 0x3, "2500ea4efb97f9b6bf91c74135b190fc02c9c544293dfafcf7bb34d2705d5460299a68c7d1198b4a593a20c185e5"}}, {0x62, &(0x7f0000000340)=@string={0x62, 0x3, "de7663ceff3461ec84a42e032f34d1c91778bca8251d9f73d77b156731a3143b541bffc39a5458367c8b18037b97e3c528f1988d5dccba07c0ff74aa5564ea9db4fe56d7403f802468854d4337a2b4b431167f0c123ee8b7952d510a24350cf3"}}]}) syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000b40)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xff, 0x0, 0x5, [{{0x9, 0x4, 0x0, 0xc0, 0x2, 0x7, 0x1, 0x1, 0x1f, "", {{{0x9, 0x5, 0x1, 0x2, 0x200, 0x5, 0x1}}, [{{0x9, 0x5, 0x82, 0x2, 0x440, 0x1, 0xff, 0x17}}]}}}]}}]}}, &(0x7f0000000d80)={0xa, &(0x7f0000000b80)={0xa, 0x6, 0x110, 0x5, 0x80, 0x4, 0x10, 0x9}, 0x5, &(0x7f0000000bc0)={0x5, 0xf, 0x5}, 0x4, [{0x0, 0xfffffffffffffffc}, {0x4, &(0x7f0000000c00)=@lang_id={0x4, 0x3, 0x440a}}, {0x65, &(0x7f0000000c40)=@string={0x65, 0x3, "5b52320624ef23eff4801243908924db518fbf3459dac48e82bf3c0acd1cec57c02a66875f1240b086a55193457cd4b2a8b9b57ce543c1f7323e2b650e9debcbab8be00c96b0754d23943243c40c7a4866662c2358853f4638678ffb5caaede70f98bb"}}, {0x9f, &(0x7f0000000cc0)=@string={0x9f, 0x3, "e0f5e65cd347351e016d27df3e3ec4a5cee0dc354cca9f35e8aa02246b38ddc849c600e37ebe14fe2540f1feea168b8580ac23d8a11252592423595f266d3980f0d20e4fdcc43512f7ddbfc3d3a06c015ab365e26b137405885cb8d4421bfde9ab3d4336f3c8326ebd8b4099e84e2f7cf0a012e8bf44e11cf307be151b0755a138e44cb80104ceed0794e764fea0d28caf96b56410e4b0c229776c69f6"}}]}) r2 = syz_usb_connect$hid(0x4, 0x3f, &(0x7f0000000440)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x221, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x9, 0x20, 0x6, [{{0x9, 0x4, 0x0, 0xae, 0x1, 0x3, 0x1, 0x0, 0x40, {0x9, 0x21, 0x200, 0xf7, 0x1, {0x22, 0x291}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0xff, 0xc4}}, [{{0x9, 0x5, 0x2, 0x3, 0x400, 0x8, 0x1, 0x20}}]}}}]}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000480)={0xa, 0x6, 0x201, 0x4, 0x7, 0x9f, 0x10, 0x20}, 0x4e, &(0x7f00000004c0)={0x5, 0xf, 0x4e, 0x6, [@wireless={0xb, 0x10, 0x1, 0x2, 0xc4, 0x81, 0x3, 0x40, 0x40}, @ssp_cap={0x10, 0x10, 0xa, 0xff, 0x1, 0xec, 0xf, 0x28, [0xff0000]}, @ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0x8, "ad043d869ad53d604e5190cc3840d229"}, @ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0x3f, "6780ce7a8045d93d5814a773c1efe48d"}]}, 0x1, [{0xef, &(0x7f0000000540)=@string={0xef, 0x3, "73ddbeb287726aa00cc53f109e44ab018c2cb53cacef28d9cac65296f47a019fbf2837b159feeb9f541f64612e2ffe303514011147ff141c697bdad0f322b9ac4496995f8fd03d6f11c0a0e1aa521dd2c9655139ef48b5eb0b41a10b681dd8a50d46ac906161ecb48f719646c1d0293f70fcaeafebc566d4bde4bf92798f459f52cea58ff4ae26997067c3f9db57113a61182d6500b576c7e6edac88bc11f2131c2cd8196cd092a6400bd3b386225938daf5308d747a0dd62622f1fce0ffe55871a8c95c1839f2848374231d3b00140ff1c66deb91d6008629acab3b368f04e2cf025c730225ed40dbe53556f5"}}]}) syz_usb_control_io$hid(r2, &(0x7f00000008c0)={0x24, &(0x7f0000000680)={0x40, 0x3e, 0x94, {0x94, 0x8, "4d47e6ba675b2efca144263270044e26997f6ea000951aabea921ae123bc345872ac1f8d70f0bf542f880526b0ee748a380f6f51a0652bd389fc56cc200a089e5112db8f96b9b2beb6970baa5f98fbf0b8f7e0def0a884717f3af7070bef5a83b1d2edac6ecc34c8295b8a5e9889ff4e1906fb38b14432f5955c1d7feddf702d26505439f777a48725ab6752d6d3af55541b"}}, &(0x7f0000000740)={0x0, 0x3, 0xd8, @string={0xd8, 0x3, "e148561c84586eb88d2f202e6f4e6149d3b810350ed2b5c7d0788d1064794692b2344691017e987caa6dab8e85eeb0c9c0eb69ec2593f04faf39ffb39bbca95404cf7927a58796a2b97555f427460982b90f2519f1efd9a6f199ba3019ef2641ed33084cb521997fdf8624606c216166adcc0cc42444380be66d51846c543c988f4af3d5f36ab1d777cd2f59c56d46654936664c8262f237b59e4cea78a1176380441415ec230e374bfe15cd22d912cfcbdf4e3c676b65b6092a7ec7183b86e28c897deaa29fda9a9aafe02f9238ef9424c59f9e5935"}}, &(0x7f0000000840)={0x0, 0x22, 0x16, {[@local=@item_4={0x3, 0x2, 0x8, "31a5365a"}, @global=@item_012={0x0, 0x1, 0x7}, @local, @main=@item_012={0x2, 0x0, 0x8, "9092"}, @main=@item_4={0x3, 0x0, 0xb, "c87c0c45"}, @global=@item_012={0x1, 0x1, 0x1, "13"}, @global=@item_4={0x3, 0x1, 0xb, 'g#F2'}]}}, &(0x7f0000000880)={0x0, 0x21, 0x9, {0x9, 0x21, 0xfffa, 0x1, 0x1, {0x22, 0xc60}}}}, &(0x7f0000000b00)={0x2c, &(0x7f0000000900)={0x20, 0x18, 0xaa, "cc66d7cc078c3cfb45da4dda2ba9f0da936b85819bc01758e0311616d1efbffe6242848c322819c670a72b6af021ae8ed04d924bfef761edd779b8ff5bd33cedb56faef86f7929d96a30292be9948a37ff42813cdd3a00e0cd25cca39fe217897523a64c383b0c1a78d6ad570537eb8d34b1da43698fd5439021206f531c24035011382e746a8383d0b0af5aa6ed00331a1e812f27539a7fb6df80c2156a935f38d95343efb2c210d936"}, &(0x7f00000009c0)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000a00)={0x0, 0x8, 0x1, 0x1f}, &(0x7f0000000a40)={0x20, 0x1, 0x4c, "221d0932df4f55d31b3947dafee2289e11ac0bb6e4644c427ab82591b646a568c1f751a0ac49caebd83daa8fdbf1791afb685087b0146d1f7fe4e48a1d0288401cf8694d04d0075fbfd06b2b"}, &(0x7f0000000ac0)={0x20, 0x3, 0x1, 0x33}}) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) 17:44:42 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x2}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3264.085460][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3264.091662][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3264.111619][ T8615] usb 3-1: USB disconnect, device number 30 [ 3264.265341][T19148] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3264.275672][T19148] CPU: 1 PID: 19148 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3264.286124][T19148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3264.296302][T19148] Call Trace: [ 3264.299637][T19148] [ 3264.302583][T19148] dump_stack_lvl+0x1e7/0x2e0 [ 3264.307302][T19148] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3264.312557][T19148] ? __pfx__printk+0x10/0x10 [ 3264.317155][T19148] ? ___ratelimit+0x4c4/0x670 [ 3264.321864][T19148] ? __pfx____ratelimit+0x10/0x10 [ 3264.326900][T19148] dump_header+0xda/0x6a0 [ 3264.331269][T19148] oom_kill_process+0x3a7/0x930 [ 3264.336146][T19148] out_of_memory+0xf67/0x1320 [ 3264.340871][T19148] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3264.346544][T19148] ? __pfx___mutex_lock+0x10/0x10 [ 3264.351619][T19148] ? __pfx_out_of_memory+0x10/0x10 [ 3264.356774][T19148] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3264.362342][T19148] ? __pfx_lock_release+0x10/0x10 [ 3264.367412][T19148] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3264.373492][T19148] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3264.378713][T19148] ? mem_cgroup_iter+0x422/0x560 [ 3264.383686][T19148] try_charge_memcg+0xda2/0x18a0 [ 3264.388698][T19148] ? __pfx_try_charge_memcg+0x10/0x10 [ 3264.394114][T19148] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3264.399882][T19148] ? __pfx_lock_release+0x10/0x10 [ 3264.404941][T19148] ? memcg_account_kmem+0x1e7/0x210 [ 3264.410216][T19148] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3264.416094][T19148] __memcg_kmem_charge_page+0xe1/0x250 [ 3264.421588][T19148] memcg_charge_kernel_stack+0x210/0x550 [ 3264.427266][T19148] dup_task_struct+0x15d/0x7d0 [ 3264.432060][T19148] copy_process+0x5d5/0x3fc0 [ 3264.436690][T19148] ? __might_fault+0xa9/0x120 [ 3264.441400][T19148] ? __pfx_lock_release+0x10/0x10 [ 3264.446461][T19148] ? __pfx_copy_process+0x10/0x10 [ 3264.451548][T19148] ? __might_fault+0xc5/0x120 [ 3264.456270][T19148] ? __asan_memset+0x23/0x50 [ 3264.460890][T19148] kernel_clone+0x21d/0x8d0 [ 3264.465426][T19148] ? __pfx_kernel_clone+0x10/0x10 [ 3264.470518][T19148] __se_sys_clone3+0x2cb/0x350 [ 3264.475364][T19148] ? __pfx___se_sys_clone3+0x10/0x10 [ 3264.480737][T19148] ? do_syscall_64+0x108/0x240 [ 3264.485558][T19148] ? do_syscall_64+0xb4/0x240 [ 3264.490296][T19148] do_syscall_64+0xf9/0x240 [ 3264.494858][T19148] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3264.500800][T19148] RIP: 0033:0x7f080fca9b99 17:44:42 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async, rerun: 64) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (rerun: 64) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async, rerun: 64) r2 = syz_usb_connect$uac1(0x4, 0xeb, &(0x7f00000001c0)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xd9, 0x3, 0x1, 0x6e, 0x0, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x6, 0xc6}, [@extension_unit={0x7, 0x24, 0x8, 0x1, 0x401, 0x3}, @mixer_unit={0x6, 0x24, 0x4, 0x2, 0x2, "ef"}, @output_terminal={0x9, 0x24, 0x3, 0x4, 0x303, 0x4, 0x5, 0x13}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0xd, 0x24, 0x2, 0x1, 0x0, 0x3, 0x1, 0x1, "bbd5da3a12"}, @format_type_ii_discrete={0x11, 0x24, 0x2, 0x2, 0xffff, 0x4, 0x8, "c080541506395800"}]}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0x6, 0x7f, 0x3, {0x7, 0x25, 0x1, 0x80, 0xca, 0x401}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xd, 0x24, 0x2, 0x2, 0x1, 0x0, 0x1f, "3834f725"}, @format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x2, 0x3, 0x7, 0x7, "20b404", "b3"}, @format_type_ii_discrete={0xe, 0x24, 0x2, 0x2, 0x9, 0x9, 0x5, "80bca17deb"}, @format_type_ii_discrete={0x12, 0x24, 0x2, 0x2, 0x5, 0x7, 0x28, "b4ba782d9ae80ebf16"}, @format_type_i_continuous={0xd, 0x24, 0x2, 0x1, 0x21, 0x2, 0x6, 0xf0, "3c1f", "e2705f"}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x4, 0x4, 0x3, {0x7, 0x25, 0x1, 0x1, 0x6, 0xc34}}}}}}}]}}, &(0x7f0000000440)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x110, 0x1, 0x9, 0x0, 0x40, 0x6}, 0x10, &(0x7f0000000100)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0x2, 0x9, 0x3f, 0x4000, 0x79}]}, 0x4, [{0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x438}}, {0xbc, &(0x7f0000000300)=@string={0xbc, 0x3, "3b2a431949bd754733fc6c2b5da9ef0c09c4c0c529ca2dd5621993cd439a0db9325328d34203d82c88e69c2cb99c0acf04dc9f6a110c677111af32afa8b6b93785ee008f76e7ebcd3dc694ef1b94045e52cde02bf56ed412b3328476bfc90fceb4f20a3013b402c6ffdc13bdd852d4d766ff9470f80ee0c5800d6f2c5314de63ee8aa000b40c39a6681aee827b727c8a29932f89544e8ec33cd7eadb830d729125639ddd1b5926859dc35608176d6731324b1503f15fae488bc9"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0xf8ff}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x140c}}]}) (rerun: 64) syz_usb_control_io(r2, &(0x7f0000000700)={0x2c, &(0x7f00000004c0)={0x0, 0x21, 0xdd, {0xdd, 0x23, "910d48dada13a5bb7334d5fbe26c8405f128870fbd5bf7eec3624755660a429ab51a6ace85073beef6c6f3937b81d7465385411a3ed0672e62d68dcb2c486a88a0a58c4e8d1587866a50e7adc2df3ccd54028818ad721d882a63fb8a8188796becc12138d2953f3b2dc41fab362c470851907ab2aa72ba9b73c77b8e81447314071330ee20b468ae311547b5fec4dbdde33ee38c6d1a8665a28396c2fefd06416f221960332deeaa6a8b2b3583313f6e71fe75fb81a7c784fd3924e203ca140e11ca7c8632bc2efdf7bb969a6494c740b6d008b7abd8dbe273d767"}}, &(0x7f00000005c0)={0x0, 0x3, 0x6c, @string={0x6c, 0x3, "7f7bfaf104e28f3ee954f9e9d1e9291112199738ac2ee47055fbc9c5a298d686709fb28ff2a7b0b7e23e654b7726fe1a455f7095206aace16813768163d7a158b669599c86beb3f7291d53aca870860be93f61480f4fc00dbcba0ce369f83815c85dc90029d8ee9870a3"}}, &(0x7f0000000640)={0x0, 0xf, 0x29, {0x5, 0xf, 0x29, 0x1, [@ssp_cap={0x24, 0x10, 0xa, 0x2, 0x6, 0x4, 0xf000, 0x6, [0xc0, 0x30, 0x1f80, 0xc000, 0xff0030, 0xff3f00]}]}}, &(0x7f0000000680)={0x20, 0x29, 0xf, {0xf, 0x29, 0x84, 0x2, 0x6, 0x0, "3ae2840d", "e3d0935a"}}, &(0x7f00000006c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0xe3, 0x18, 0x5, 0x4b, 0x9, 0x8b2b, 0x6d85}}}, &(0x7f0000000c40)={0x84, &(0x7f0000000740)={0x0, 0x8, 0xfd, "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"}, &(0x7f0000000880)={0x0, 0xa, 0x1, 0xfa}, &(0x7f00000008c0)={0x0, 0x8, 0x1, 0x1f}, &(0x7f0000000900)={0x20, 0x0, 0x4, {0x0, 0x1}}, &(0x7f0000000940)={0x20, 0x0, 0x4, {0x80, 0x80}}, &(0x7f0000000980)={0x40, 0x7, 0x2, 0x20}, &(0x7f00000009c0)={0x40, 0x9, 0x1, 0x66}, &(0x7f0000000a00)={0x40, 0xb, 0x2, 'Li'}, &(0x7f0000000a40)={0x40, 0xf, 0x2, 0x8}, &(0x7f0000000a80)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000000ac0)={0x40, 0x17, 0x6}, &(0x7f0000000b00)={0x40, 0x19, 0x2, '=w'}, &(0x7f0000000b40)={0x40, 0x1a, 0x2, 0x81}, &(0x7f0000000b80)={0x40, 0x1c, 0x1, 0x6c}, &(0x7f0000000bc0)={0x40, 0x1e, 0x1, 0x4e}, &(0x7f0000000c00)={0x40, 0x21, 0x1, 0x5}}) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3264.505274][T19148] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3264.524926][T19148] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3264.533384][T19148] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3264.541386][T19148] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3264.549524][T19148] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3264.557538][T19148] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3264.565556][T19148] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3264.573649][T19148] [ 3264.585252][T19148] memory: usage 307200kB, limit 307200kB, failcnt 119003 [ 3264.585759][ T8615] usb 3-1: new high-speed USB device number 31 using dummy_hcd [ 3264.592300][T19148] memory+swap: usage 308512kB, limit 9007199254740988kB, failcnt 0 [ 3264.592320][T19148] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3264.592336][T19148] Memory cgroup stats for /syz0: [ 3264.641721][T19148] cache 0 [ 3264.653362][T19148] rss 20480 [ 3264.659061][T19148] rss_huge 0 [ 3264.662270][T19148] shmem 0 [ 3264.669221][T19148] mapped_file 0 [ 3264.672736][T19148] dirty 0 [ 3264.675917][T19148] writeback 0 [ 3264.679220][T19148] workingset_refault_anon 37728 [ 3264.684073][T19148] workingset_refault_file 0 [ 3264.689385][T19148] swap 1323008 [ 3264.692844][T19148] swapcached 8192 [ 3264.696963][T19148] pgpgin 280876 [ 3264.700504][T19148] pgpgout 280871 [ 3264.704074][T19148] pgfault 527583 [ 3264.711353][T19148] pgmajfault 36636 [ 3264.715087][T19148] inactive_anon 16384 [ 3264.719194][T19148] active_anon 4096 [ 3264.723162][T19148] inactive_file 0 [ 3264.726890][T19148] active_file 0 [ 3264.730551][T19148] unevictable 0 [ 3264.734033][T19148] hierarchical_memory_limit 314572800 [ 3264.739533][T19148] hierarchical_memsw_limit 9223372036854771712 [ 3264.753468][T19148] total_cache 0 [ 3264.757064][T19148] total_rss 20480 [ 3264.760860][T19148] total_rss_huge 0 [ 3264.764588][T19148] total_shmem 0 [ 3264.768131][T19148] total_mapped_file 0 [ 3264.772130][T19148] total_dirty 0 [ 3264.776088][T19148] total_writeback 0 [ 3264.780658][T19148] total_workingset_refault_anon 37728 [ 3264.786193][T19148] total_workingset_refault_file 0 [ 3264.791256][T19148] total_swap 1323008 [ 3264.804711][T19148] total_swapcached 8192 [ 3264.809073][T19148] total_pgpgin 280876 [ 3264.813062][T19148] total_pgpgout 280871 [ 3264.817268][T19148] total_pgfault 527583 [ 3264.821351][T19148] total_pgmajfault 36636 [ 3264.825812][T19148] total_inactive_anon 16384 [ 3264.830341][T19148] total_active_anon 4096 [ 3264.834605][T19148] total_inactive_file 0 [ 3264.839324][T19148] total_active_file 0 [ 3264.850574][T19148] total_unevictable 0 [ 3264.854591][T19148] anon_cost 0 [ 3264.857959][T19148] file_cost 0 [ 3264.861256][T19148] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19148,uid=0 [ 3264.865401][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3264.876942][T19148] Memory cgroup out of memory: Killed process 19148 (syz-executor.0) total-vm:54508kB, anon-rss:356kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:43 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x3}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3265.015976][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3265.036233][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3265.065570][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3265.082742][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3265.116354][ T8615] usb 3-1: config 0 descriptor?? [ 3265.452616][T19151] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3265.465501][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3265.471733][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3265.472233][T19151] CPU: 1 PID: 19151 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3265.483966][ T8615] usb 3-1: USB disconnect, device number 31 [ 3265.488471][T19151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3265.488489][T19151] Call Trace: [ 3265.488511][T19151] [ 3265.488519][T19151] dump_stack_lvl+0x1e7/0x2e0 [ 3265.488559][T19151] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3265.520712][T19151] ? __pfx__printk+0x10/0x10 [ 3265.525326][T19151] ? ___ratelimit+0x4c4/0x670 [ 3265.530055][T19151] ? __pfx____ratelimit+0x10/0x10 [ 3265.535124][T19151] dump_header+0xda/0x6a0 [ 3265.539489][T19151] oom_kill_process+0x3a7/0x930 [ 3265.544362][T19151] out_of_memory+0xf67/0x1320 [ 3265.549065][T19151] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3265.554720][T19151] ? __pfx___mutex_lock+0x10/0x10 [ 3265.559762][T19151] ? __pfx_out_of_memory+0x10/0x10 [ 3265.564907][T19151] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3265.570482][T19151] ? __pfx_lock_release+0x10/0x10 [ 3265.575527][T19151] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3265.581635][T19151] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3265.586853][T19151] ? mem_cgroup_iter+0x422/0x560 [ 3265.591842][T19151] try_charge_memcg+0xda2/0x18a0 [ 3265.596820][T19151] ? __pfx_try_charge_memcg+0x10/0x10 [ 3265.602224][T19151] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3265.607971][T19151] ? __pfx_lock_release+0x10/0x10 [ 3265.613017][T19151] ? memcg_account_kmem+0x1e7/0x210 [ 3265.618265][T19151] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3265.624119][T19151] __memcg_kmem_charge_page+0xe1/0x250 [ 3265.629694][T19151] memcg_charge_kernel_stack+0x210/0x550 [ 3265.635345][T19151] dup_task_struct+0x15d/0x7d0 [ 3265.640126][T19151] copy_process+0x5d5/0x3fc0 [ 3265.644766][T19151] ? __might_fault+0xa9/0x120 [ 3265.649456][T19151] ? __pfx_lock_release+0x10/0x10 [ 3265.654496][T19151] ? __pfx_copy_process+0x10/0x10 [ 3265.659529][T19151] ? __might_fault+0xc5/0x120 [ 3265.664224][T19151] ? __asan_memset+0x23/0x50 [ 3265.668836][T19151] kernel_clone+0x21d/0x8d0 [ 3265.673443][T19151] ? __pfx_kernel_clone+0x10/0x10 [ 3265.678513][T19151] __se_sys_clone3+0x2cb/0x350 [ 3265.683317][T19151] ? __pfx___se_sys_clone3+0x10/0x10 [ 3265.688629][T19151] ? rcu_is_watching+0x15/0xb0 [ 3265.693435][T19151] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3265.699454][T19151] ? exc_page_fault+0x587/0x870 [ 3265.704330][T19151] ? do_syscall_64+0xb4/0x240 [ 3265.709041][T19151] do_syscall_64+0xf9/0x240 [ 3265.713570][T19151] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3265.719588][T19151] RIP: 0033:0x7f080fca9b99 [ 3265.724026][T19151] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3265.743662][T19151] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3265.752097][T19151] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3265.760081][T19151] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3265.768059][T19151] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3265.776052][T19151] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3265.784060][T19151] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3265.792084][T19151] [ 3265.806947][T19151] memory: usage 307200kB, limit 307200kB, failcnt 119559 [ 3265.822127][T19151] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3265.830498][T19151] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3265.838130][T19151] Memory cgroup stats for /syz0: [ 3265.838283][T19151] cache 0 [ 3265.846833][T19151] rss 8192 [ 3265.850064][T19151] rss_huge 0 [ 3265.853424][T19151] shmem 0 [ 3265.856672][T19151] mapped_file 0 [ 3265.860321][T19151] dirty 0 [ 3265.863419][T19151] writeback 0 [ 3265.877071][T19151] workingset_refault_anon 37911 [ 3265.882067][T19151] workingset_refault_file 0 [ 3265.886831][T19151] swap 1327104 [ 3265.890372][T19151] swapcached 8192 [ 3265.894143][T19151] pgpgin 281070 [ 3265.898483][T19151] pgpgout 281067 [ 3265.902061][T19151] pgfault 527870 [ 3265.910531][T19151] pgmajfault 36805 [ 3265.914267][T19151] inactive_anon 0 [ 3265.918609][T19151] active_anon 8192 [ 3265.922460][T19151] inactive_file 0 [ 3265.932650][T19151] active_file 0 [ 3265.939176][T19151] unevictable 0 [ 3265.942665][T19151] hierarchical_memory_limit 314572800 [ 3265.953510][T19151] hierarchical_memsw_limit 9223372036854771712 [ 3265.960029][T19151] total_cache 0 [ 3265.963511][T19151] total_rss 8192 [ 3265.967840][T19151] total_rss_huge 0 [ 3265.971598][T19151] total_shmem 0 [ 3265.975087][T19151] total_mapped_file 0 [ 3265.979831][T19151] total_dirty 0 [ 3265.983318][T19151] total_writeback 0 [ 3265.987749][T19151] total_workingset_refault_anon 37911 [ 3265.993148][T19151] total_workingset_refault_file 0 [ 3265.998781][T19151] total_swap 1327104 [ 3266.002721][T19151] total_swapcached 8192 [ 3266.007420][T19151] total_pgpgin 281070 [ 3266.011432][T19151] total_pgpgout 281067 [ 3266.016042][T19151] total_pgfault 527870 [ 3266.020224][T19151] total_pgmajfault 36805 [ 3266.024492][T19151] total_inactive_anon 0 [ 3266.029140][T19151] total_active_anon 8192 [ 3266.047601][T19147] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3266.057857][T19151] total_inactive_file 0 [ 3266.062059][T19151] total_active_file 0 [ 3266.067132][T19147] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3266.071835][T19151] total_unevictable 0 [ 3266.079809][T19151] anon_cost 0 [ 3266.083118][T19151] file_cost 0 [ 3266.087213][T19151] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19151,uid=0 [ 3266.112112][T19151] Memory cgroup out of memory: Killed process 19151 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:44 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x4}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3266.295389][T13927] usb 3-1: new high-speed USB device number 32 using dummy_hcd [ 3266.538709][ T1240] ieee802154 phy0 wpan0: encryption failed: -22 [ 3266.545036][ T1240] ieee802154 phy1 wpan1: encryption failed: -22 [ 3266.551462][T13927] usb 3-1: Using ep0 maxpacket: 8 [ 3266.584551][T19153] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3266.595131][T19153] CPU: 1 PID: 19153 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3266.605595][T19153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3266.615655][T19153] Call Trace: [ 3266.618947][T19153] [ 3266.621927][T19153] dump_stack_lvl+0x1e7/0x2e0 [ 3266.626628][T19153] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3266.631843][T19153] ? __pfx__printk+0x10/0x10 [ 3266.636444][T19153] ? ___ratelimit+0x4c4/0x670 [ 3266.641133][T19153] ? __pfx____ratelimit+0x10/0x10 [ 3266.646186][T19153] dump_header+0xda/0x6a0 [ 3266.650561][T19153] oom_kill_process+0x3a7/0x930 [ 3266.655451][T19153] out_of_memory+0xf67/0x1320 [ 3266.660160][T19153] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3266.665824][T19153] ? __pfx___mutex_lock+0x10/0x10 [ 3266.670860][T19153] ? __pfx_out_of_memory+0x10/0x10 [ 3266.675994][T19153] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3266.681562][T19153] ? __pfx_lock_release+0x10/0x10 [ 3266.686621][T19153] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3266.692710][T19153] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3266.697933][T19153] ? mem_cgroup_iter+0x422/0x560 [ 3266.702918][T19153] try_charge_memcg+0xda2/0x18a0 [ 3266.707912][T19153] ? __pfx_try_charge_memcg+0x10/0x10 [ 3266.713348][T19153] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3266.719087][T19153] ? __pfx_lock_release+0x10/0x10 [ 3266.724132][T19153] ? memcg_account_kmem+0x1e7/0x210 [ 3266.729351][T19153] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3266.735203][T19153] __memcg_kmem_charge_page+0xe1/0x250 [ 3266.740692][T19153] memcg_charge_kernel_stack+0x210/0x550 [ 3266.746347][T19153] dup_task_struct+0x15d/0x7d0 [ 3266.751149][T19153] copy_process+0x5d5/0x3fc0 [ 3266.755761][T19153] ? __might_fault+0xa9/0x120 [ 3266.760454][T19153] ? __pfx_lock_release+0x10/0x10 [ 3266.765498][T19153] ? __lock_acquire+0x1345/0x1fd0 [ 3266.770548][T19153] ? __pfx_copy_process+0x10/0x10 [ 3266.775579][T19153] ? __might_fault+0xc5/0x120 [ 3266.780266][T19153] ? __asan_memset+0x23/0x50 [ 3266.784876][T19153] kernel_clone+0x21d/0x8d0 [ 3266.789391][T19153] ? __pfx_kernel_clone+0x10/0x10 [ 3266.794431][T19153] ? __pfx_lock_release+0x10/0x10 [ 3266.799478][T19153] __se_sys_clone3+0x2cb/0x350 [ 3266.804258][T19153] ? __might_fault+0xa9/0x120 [ 3266.808954][T19153] ? __pfx___se_sys_clone3+0x10/0x10 [ 3266.814245][T19153] ? rcu_is_watching+0x15/0xb0 [ 3266.819039][T19153] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3266.825044][T19153] ? exc_page_fault+0x587/0x870 [ 3266.829911][T19153] ? do_syscall_64+0xb4/0x240 [ 3266.834609][T19153] do_syscall_64+0xf9/0x240 [ 3266.839134][T19153] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3266.845056][T19153] RIP: 0033:0x7f080fca9b99 [ 3266.849481][T19153] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3266.869103][T19153] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3266.877529][T19153] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3266.885505][T19153] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3266.893482][T19153] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3266.901461][T19153] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3266.909450][T19153] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3266.917440][T19153] [ 3266.931871][T19153] memory: usage 307200kB, limit 307200kB, failcnt 120008 [ 3266.948333][T19153] memory+swap: usage 308520kB, limit 9007199254740988kB, failcnt 0 [ 3266.957811][T19153] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3266.965569][T19153] Memory cgroup stats for /syz0: [ 3266.965716][T19153] cache 0 [ 3266.973727][T19153] rss 12288 [ 3266.977541][T19153] rss_huge 0 [ 3266.980852][T19153] shmem 0 [ 3266.983884][T19153] mapped_file 0 [ 3266.987989][T19153] dirty 0 [ 3266.991036][T19153] writeback 0 [ 3266.994415][T19153] workingset_refault_anon 38066 [ 3267.000063][T19153] workingset_refault_file 0 [ 3267.004635][T19153] swap 1339392 [ 3267.005579][T13927] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3267.008861][T19153] swapcached 8192 [ 3267.019294][T13927] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3267.023062][T19153] pgpgin 281236 17:44:45 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f0000000fc0)={0x0, &(0x7f0000000e00)={0x20, 0x3, 0xd6, {0xd6, 0xf, "6a27d35056794917aba7c38d1c064b60c143ae37370f6de79d87d96bb2c6acfb0543386b5b6606d661c69e633f62e1db7e6d9bba436296be14680fed45c64c3b3bbc72ca817ba2497918b6e5cf77e335c20d7ae45cc5368c9cc45a339f4d005bb0b8b3cc47ff3615457b2aa72124084ac4c39c7c3f66a02e4ffadb6e03fda2f88942437a3f060ef5d2847d2b3860e3be844e70966d515a8211ea0a8d08ee80dbcf666210253346b5e591d360a346e757ea1c2c21ea8204c9826b74cfaa99c5063399d94d9b91f931e8bcbb4c4792c5dde4ab5515"}}, &(0x7f0000000f00)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x380a}}, &(0x7f0000000f40)={0x0, 0x22, 0x1e, {[@global=@item_4={0x3, 0x1, 0xa, "17fe9643"}, @local=@item_4={0x3, 0x2, 0x4, '\rn#F'}, @local=@item_4={0x3, 0x2, 0x8, "a8907068"}, @main=@item_4={0x3, 0x0, 0xc, "725fa8c9"}, @main=@item_4={0x3, 0x0, 0xc, "639a94b6"}, @main=@item_4={0x3, 0x0, 0xc, "e0cd867b"}]}}, &(0x7f0000000f80)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3, 0xff, 0x1, {0x22, 0x9fc}}}}, &(0x7f00000012c0)={0x2c, &(0x7f0000001000)={0x40, 0x7, 0xd8, "a0776aa19ecafbf0cba445092509b5238402bbcea35f2995daf69d75bd32ee589fb07400a8146534981008f6695470e039440df0b3d5a5d0332cb4b4c3c2823da07b7d46095fb6669bff7e4c475d6280d9d52548f256400c231fee383b78f847ddd43d0d8249f745a04fe9d81596c2c7202a437bcf02ed40975ac74a4e90834ff38ebe98eb472597c36427177ade0c955d5f9aece9013e0a7b83133a44175b0b37fd571f664e704961db63d5ab487de00256cc7f3452dbf2c98d4ef61a608acf70e26e00a56c45f390de9fe491d9bf261105bd2f5a791dbd"}, &(0x7f0000001100)={0x0, 0xa, 0x1, 0x7f}, &(0x7f0000001140)={0x0, 0x8, 0x1, 0x40}, &(0x7f0000001180)={0x20, 0x1, 0xf9, "af67da101c6766219059df99f50b0ad113bf0f87fa174c9cf41b88a59b5d4f92f18f786b4e6e9f0c44f80cc59d4c4645ee5db4cccd433f8b4d1c90e70d60ccea648513440c590b655c6f05eb4dd190ff17df582ff3d4209b26e86f2071601495c373c82cd2708266c7b882c5d280e717a2c8c66014474f51b95b0b00d12568e8567bd400d22be62ad498be3bfcc48da086ff1d90c069e844328e40939e6a7ffefbf699486bf152f131b7222d8a9fd7c9731de9fe5b37cdbe4258713871d478cddd964c2f21e814267e33efcdb0806e942219ba3c1cdd83483d236a507efddd4c91177986d55a7909a874333e46928f21d7d1cd4e950c6ea4ca"}, &(0x7f0000001280)={0x20, 0x3, 0x1, 0x20}}) (async) syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x8, 0x46d, 0xc52f, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x7f, 0xc0, 0xf2, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x2, 0x4, {0x9, 0x21, 0xffff, 0x4, 0x1, {0x22, 0xf8a}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x1f, 0xe7, 0x4}}}}}]}}]}}, &(0x7f00000003c0)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x310, 0xff, 0x9, 0xe0, 0x0, 0x9}, 0x21, &(0x7f00000000c0)={0x5, 0xf, 0x21, 0x1, [@ssp_cap={0x1c, 0x10, 0xa, 0x6, 0x4, 0x3ff, 0x0, 0x3, [0xc030, 0xc0, 0xff3fff, 0x7fbff0]}]}, 0x5, [{0x65, &(0x7f0000000100)=@string={0x65, 0x3, "85ae1a250dd386508b76a0585b7a50ea52699abc5c0920e3b313d2c5ced51e9a52095a2e66a0874dfdf5d413bfde588ab129329cf377a1e151606fd57a90d4d379c40435594a4506ffd654c935cf276d7b849e04680fe63a1fa9ede000409d9ee4d472"}}, {0x59, &(0x7f0000000240)=@string={0x59, 0x3, "9f19cdf10d1c81d3a335b42ac2647b733389cab88ddbad661143223262f72b0c231ede41d82670cb2264d0fbfffaa7547dec6dde7cc7a1be0e1f791d65c06e9a3895489ac9214a52882b540b5f5a87cc6a6405097ab3cc"}}, {0x75, &(0x7f00000002c0)=@string={0x75, 0x3, "f8752a83aaa81754c5a6958bbc740ceb48e5dec1bbd37b438dddf998bb5597828c6f94963ff7d266b852027849c22684c132b725c38831cb52dd349328363df3513c47ce7ea2473992be8a03f38cb2c9e4a4c1e2542c6a7dbbe66a474b6f0e0427c65b71a692fe643885838dae8cb7813b70f0"}}, {0x30, &(0x7f00000001c0)=@string={0x30, 0x3, "2500ea4efb97f9b6bf91c74135b190fc02c9c544293dfafcf7bb34d2705d5460299a68c7d1198b4a593a20c185e5"}}, {0x62, &(0x7f0000000340)=@string={0x62, 0x3, "de7663ceff3461ec84a42e032f34d1c91778bca8251d9f73d77b156731a3143b541bffc39a5458367c8b18037b97e3c528f1988d5dccba07c0ff74aa5564ea9db4fe56d7403f802468854d4337a2b4b431167f0c123ee8b7952d510a24350cf3"}}]}) syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000b40)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xff, 0x0, 0x5, [{{0x9, 0x4, 0x0, 0xc0, 0x2, 0x7, 0x1, 0x1, 0x1f, "", {{{0x9, 0x5, 0x1, 0x2, 0x200, 0x5, 0x1}}, [{{0x9, 0x5, 0x82, 0x2, 0x440, 0x1, 0xff, 0x17}}]}}}]}}]}}, &(0x7f0000000d80)={0xa, &(0x7f0000000b80)={0xa, 0x6, 0x110, 0x5, 0x80, 0x4, 0x10, 0x9}, 0x5, &(0x7f0000000bc0)={0x5, 0xf, 0x5}, 0x4, [{0x0, 0xfffffffffffffffc}, {0x4, &(0x7f0000000c00)=@lang_id={0x4, 0x3, 0x440a}}, {0x65, &(0x7f0000000c40)=@string={0x65, 0x3, "5b52320624ef23eff4801243908924db518fbf3459dac48e82bf3c0acd1cec57c02a66875f1240b086a55193457cd4b2a8b9b57ce543c1f7323e2b650e9debcbab8be00c96b0754d23943243c40c7a4866662c2358853f4638678ffb5caaede70f98bb"}}, {0x9f, &(0x7f0000000cc0)=@string={0x9f, 0x3, "e0f5e65cd347351e016d27df3e3ec4a5cee0dc354cca9f35e8aa02246b38ddc849c600e37ebe14fe2540f1feea168b8580ac23d8a11252592423595f266d3980f0d20e4fdcc43512f7ddbfc3d3a06c015ab365e26b137405885cb8d4421bfde9ab3d4336f3c8326ebd8b4099e84e2f7cf0a012e8bf44e11cf307be151b0755a138e44cb80104ceed0794e764fea0d28caf96b56410e4b0c229776c69f6"}}]}) (async) r2 = syz_usb_connect$hid(0x4, 0x3f, &(0x7f0000000440)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x40, 0x5ac, 0x221, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x9, 0x20, 0x6, [{{0x9, 0x4, 0x0, 0xae, 0x1, 0x3, 0x1, 0x0, 0x40, {0x9, 0x21, 0x200, 0xf7, 0x1, {0x22, 0x291}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0xff, 0xc4}}, [{{0x9, 0x5, 0x2, 0x3, 0x400, 0x8, 0x1, 0x20}}]}}}]}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000480)={0xa, 0x6, 0x201, 0x4, 0x7, 0x9f, 0x10, 0x20}, 0x4e, &(0x7f00000004c0)={0x5, 0xf, 0x4e, 0x6, [@wireless={0xb, 0x10, 0x1, 0x2, 0xc4, 0x81, 0x3, 0x40, 0x40}, @ssp_cap={0x10, 0x10, 0xa, 0xff, 0x1, 0xec, 0xf, 0x28, [0xff0000]}, @ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0x8, "ad043d869ad53d604e5190cc3840d229"}, @ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0x3f, "6780ce7a8045d93d5814a773c1efe48d"}]}, 0x1, [{0xef, &(0x7f0000000540)=@string={0xef, 0x3, "73ddbeb287726aa00cc53f109e44ab018c2cb53cacef28d9cac65296f47a019fbf2837b159feeb9f541f64612e2ffe303514011147ff141c697bdad0f322b9ac4496995f8fd03d6f11c0a0e1aa521dd2c9655139ef48b5eb0b41a10b681dd8a50d46ac906161ecb48f719646c1d0293f70fcaeafebc566d4bde4bf92798f459f52cea58ff4ae26997067c3f9db57113a61182d6500b576c7e6edac88bc11f2131c2cd8196cd092a6400bd3b386225938daf5308d747a0dd62622f1fce0ffe55871a8c95c1839f2848374231d3b00140ff1c66deb91d6008629acab3b368f04e2cf025c730225ed40dbe53556f5"}}]}) syz_usb_control_io$hid(r2, &(0x7f00000008c0)={0x24, &(0x7f0000000680)={0x40, 0x3e, 0x94, {0x94, 0x8, "4d47e6ba675b2efca144263270044e26997f6ea000951aabea921ae123bc345872ac1f8d70f0bf542f880526b0ee748a380f6f51a0652bd389fc56cc200a089e5112db8f96b9b2beb6970baa5f98fbf0b8f7e0def0a884717f3af7070bef5a83b1d2edac6ecc34c8295b8a5e9889ff4e1906fb38b14432f5955c1d7feddf702d26505439f777a48725ab6752d6d3af55541b"}}, &(0x7f0000000740)={0x0, 0x3, 0xd8, @string={0xd8, 0x3, "e148561c84586eb88d2f202e6f4e6149d3b810350ed2b5c7d0788d1064794692b2344691017e987caa6dab8e85eeb0c9c0eb69ec2593f04faf39ffb39bbca95404cf7927a58796a2b97555f427460982b90f2519f1efd9a6f199ba3019ef2641ed33084cb521997fdf8624606c216166adcc0cc42444380be66d51846c543c988f4af3d5f36ab1d777cd2f59c56d46654936664c8262f237b59e4cea78a1176380441415ec230e374bfe15cd22d912cfcbdf4e3c676b65b6092a7ec7183b86e28c897deaa29fda9a9aafe02f9238ef9424c59f9e5935"}}, &(0x7f0000000840)={0x0, 0x22, 0x16, {[@local=@item_4={0x3, 0x2, 0x8, "31a5365a"}, @global=@item_012={0x0, 0x1, 0x7}, @local, @main=@item_012={0x2, 0x0, 0x8, "9092"}, @main=@item_4={0x3, 0x0, 0xb, "c87c0c45"}, @global=@item_012={0x1, 0x1, 0x1, "13"}, @global=@item_4={0x3, 0x1, 0xb, 'g#F2'}]}}, &(0x7f0000000880)={0x0, 0x21, 0x9, {0x9, 0x21, 0xfffa, 0x1, 0x1, {0x22, 0xc60}}}}, &(0x7f0000000b00)={0x2c, &(0x7f0000000900)={0x20, 0x18, 0xaa, "cc66d7cc078c3cfb45da4dda2ba9f0da936b85819bc01758e0311616d1efbffe6242848c322819c670a72b6af021ae8ed04d924bfef761edd779b8ff5bd33cedb56faef86f7929d96a30292be9948a37ff42813cdd3a00e0cd25cca39fe217897523a64c383b0c1a78d6ad570537eb8d34b1da43698fd5439021206f531c24035011382e746a8383d0b0af5aa6ed00331a1e812f27539a7fb6df80c2156a935f38d95343efb2c210d936"}, &(0x7f00000009c0)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000a00)={0x0, 0x8, 0x1, 0x1f}, &(0x7f0000000a40)={0x20, 0x1, 0x4c, "221d0932df4f55d31b3947dafee2289e11ac0bb6e4644c427ab82591b646a568c1f751a0ac49caebd83daa8fdbf1791afb685087b0146d1f7fe4e48a1d0288401cf8694d04d0075fbfd06b2b"}, &(0x7f0000000ac0)={0x20, 0x3, 0x1, 0x33}}) (async) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3267.041578][T13927] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3267.054165][T13927] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3267.058521][T19153] pgpgout 281233 [ 3267.069907][T19153] pgfault 528101 [ 3267.074791][T19153] pgmajfault 36946 [ 3267.079148][T19153] inactive_anon 12288 [ 3267.083254][T19153] active_anon 0 [ 3267.087365][T19153] inactive_file 0 [ 3267.091126][T19153] active_file 0 [ 3267.094680][T19153] unevictable 0 [ 3267.099304][T19153] hierarchical_memory_limit 314572800 [ 3267.110231][T19153] hierarchical_memsw_limit 9223372036854771712 [ 3267.116408][T13927] usb 3-1: config 0 descriptor?? [ 3267.126927][T19153] total_cache 0 [ 3267.133483][T19153] total_rss 12288 [ 3267.143388][T13927] usb 3-1: can't set config #0, error -71 [ 3267.145264][T19153] total_rss_huge 0 [ 3267.152959][T19153] total_shmem 0 [ 3267.154227][T13927] usb 3-1: USB disconnect, device number 32 [ 3267.156837][T19153] total_mapped_file 0 [ 3267.156852][T19153] total_dirty 0 [ 3267.156862][T19153] total_writeback 0 [ 3267.156871][T19153] total_workingset_refault_anon 38066 [ 3267.156882][T19153] total_workingset_refault_file 0 [ 3267.156893][T19153] total_swap 1339392 [ 3267.156902][T19153] total_swapcached 8192 [ 3267.156912][T19153] total_pgpgin 281236 [ 3267.156922][T19153] total_pgpgout 281233 [ 3267.204600][T19153] total_pgfault 528101 [ 3267.209117][T19153] total_pgmajfault 36946 [ 3267.213392][T19153] total_inactive_anon 12288 [ 3267.219414][T19153] total_active_anon 0 [ 3267.223693][T19153] total_inactive_file 0 [ 3267.228174][T19153] total_active_file 0 [ 3267.232238][T19153] total_unevictable 0 [ 3267.236607][T19153] anon_cost 0 [ 3267.239997][T19153] file_cost 0 [ 3267.243385][T19153] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19153,uid=0 [ 3267.260461][T19153] Memory cgroup out of memory: Killed process 19153 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:45 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x5}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) 17:44:45 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) r2 = syz_usb_connect$uac1(0x4, 0xeb, &(0x7f00000001c0)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xd9, 0x3, 0x1, 0x6e, 0x0, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x6, 0xc6}, [@extension_unit={0x7, 0x24, 0x8, 0x1, 0x401, 0x3}, @mixer_unit={0x6, 0x24, 0x4, 0x2, 0x2, "ef"}, @output_terminal={0x9, 0x24, 0x3, 0x4, 0x303, 0x4, 0x5, 0x13}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0xd, 0x24, 0x2, 0x1, 0x0, 0x3, 0x1, 0x1, "bbd5da3a12"}, @format_type_ii_discrete={0x11, 0x24, 0x2, 0x2, 0xffff, 0x4, 0x8, "c080541506395800"}]}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0x6, 0x7f, 0x3, {0x7, 0x25, 0x1, 0x80, 0xca, 0x401}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xd, 0x24, 0x2, 0x2, 0x1, 0x0, 0x1f, "3834f725"}, @format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x2, 0x3, 0x7, 0x7, "20b404", "b3"}, @format_type_ii_discrete={0xe, 0x24, 0x2, 0x2, 0x9, 0x9, 0x5, "80bca17deb"}, @format_type_ii_discrete={0x12, 0x24, 0x2, 0x2, 0x5, 0x7, 0x28, "b4ba782d9ae80ebf16"}, @format_type_i_continuous={0xd, 0x24, 0x2, 0x1, 0x21, 0x2, 0x6, 0xf0, "3c1f", "e2705f"}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x4, 0x4, 0x3, {0x7, 0x25, 0x1, 0x1, 0x6, 0xc34}}}}}}}]}}, &(0x7f0000000440)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x110, 0x1, 0x9, 0x0, 0x40, 0x6}, 0x10, &(0x7f0000000100)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0x2, 0x9, 0x3f, 0x4000, 0x79}]}, 0x4, [{0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x438}}, {0xbc, &(0x7f0000000300)=@string={0xbc, 0x3, "3b2a431949bd754733fc6c2b5da9ef0c09c4c0c529ca2dd5621993cd439a0db9325328d34203d82c88e69c2cb99c0acf04dc9f6a110c677111af32afa8b6b93785ee008f76e7ebcd3dc694ef1b94045e52cde02bf56ed412b3328476bfc90fceb4f20a3013b402c6ffdc13bdd852d4d766ff9470f80ee0c5800d6f2c5314de63ee8aa000b40c39a6681aee827b727c8a29932f89544e8ec33cd7eadb830d729125639ddd1b5926859dc35608176d6731324b1503f15fae488bc9"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0xf8ff}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x140c}}]}) syz_usb_control_io(r2, &(0x7f0000000700)={0x2c, &(0x7f00000004c0)={0x0, 0x21, 0xdd, {0xdd, 0x23, "910d48dada13a5bb7334d5fbe26c8405f128870fbd5bf7eec3624755660a429ab51a6ace85073beef6c6f3937b81d7465385411a3ed0672e62d68dcb2c486a88a0a58c4e8d1587866a50e7adc2df3ccd54028818ad721d882a63fb8a8188796becc12138d2953f3b2dc41fab362c470851907ab2aa72ba9b73c77b8e81447314071330ee20b468ae311547b5fec4dbdde33ee38c6d1a8665a28396c2fefd06416f221960332deeaa6a8b2b3583313f6e71fe75fb81a7c784fd3924e203ca140e11ca7c8632bc2efdf7bb969a6494c740b6d008b7abd8dbe273d767"}}, &(0x7f00000005c0)={0x0, 0x3, 0x6c, @string={0x6c, 0x3, "7f7bfaf104e28f3ee954f9e9d1e9291112199738ac2ee47055fbc9c5a298d686709fb28ff2a7b0b7e23e654b7726fe1a455f7095206aace16813768163d7a158b669599c86beb3f7291d53aca870860be93f61480f4fc00dbcba0ce369f83815c85dc90029d8ee9870a3"}}, &(0x7f0000000640)={0x0, 0xf, 0x29, {0x5, 0xf, 0x29, 0x1, [@ssp_cap={0x24, 0x10, 0xa, 0x2, 0x6, 0x4, 0xf000, 0x6, [0xc0, 0x30, 0x1f80, 0xc000, 0xff0030, 0xff3f00]}]}}, &(0x7f0000000680)={0x20, 0x29, 0xf, {0xf, 0x29, 0x84, 0x2, 0x6, 0x0, "3ae2840d", "e3d0935a"}}, &(0x7f00000006c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0xe3, 0x18, 0x5, 0x4b, 0x9, 0x8b2b, 0x6d85}}}, &(0x7f0000000c40)={0x84, &(0x7f0000000740)={0x0, 0x8, 0xfd, "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"}, &(0x7f0000000880)={0x0, 0xa, 0x1, 0xfa}, &(0x7f00000008c0)={0x0, 0x8, 0x1, 0x1f}, &(0x7f0000000900)={0x20, 0x0, 0x4, {0x0, 0x1}}, &(0x7f0000000940)={0x20, 0x0, 0x4, {0x80, 0x80}}, &(0x7f0000000980)={0x40, 0x7, 0x2, 0x20}, &(0x7f00000009c0)={0x40, 0x9, 0x1, 0x66}, &(0x7f0000000a00)={0x40, 0xb, 0x2, 'Li'}, &(0x7f0000000a40)={0x40, 0xf, 0x2, 0x8}, &(0x7f0000000a80)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000000ac0)={0x40, 0x17, 0x6}, &(0x7f0000000b00)={0x40, 0x19, 0x2, '=w'}, &(0x7f0000000b40)={0x40, 0x1a, 0x2, 0x81}, &(0x7f0000000b80)={0x40, 0x1c, 0x1, 0x6c}, &(0x7f0000000bc0)={0x40, 0x1e, 0x1, 0x4e}, &(0x7f0000000c00)={0x40, 0x21, 0x1, 0x5}}) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) (async) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_connect$uac1(0x4, 0xeb, &(0x7f00000001c0)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xd9, 0x3, 0x1, 0x6e, 0x0, 0x8, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x6, 0xc6}, [@extension_unit={0x7, 0x24, 0x8, 0x1, 0x401, 0x3}, @mixer_unit={0x6, 0x24, 0x4, 0x2, 0x2, "ef"}, @output_terminal={0x9, 0x24, 0x3, 0x4, 0x303, 0x4, 0x5, 0x13}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0xd, 0x24, 0x2, 0x1, 0x0, 0x3, 0x1, 0x1, "bbd5da3a12"}, @format_type_ii_discrete={0x11, 0x24, 0x2, 0x2, 0xffff, 0x4, 0x8, "c080541506395800"}]}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0x6, 0x7f, 0x3, {0x7, 0x25, 0x1, 0x80, 0xca, 0x401}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xd, 0x24, 0x2, 0x2, 0x1, 0x0, 0x1f, "3834f725"}, @format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x2, 0x3, 0x7, 0x7, "20b404", "b3"}, @format_type_ii_discrete={0xe, 0x24, 0x2, 0x2, 0x9, 0x9, 0x5, "80bca17deb"}, @format_type_ii_discrete={0x12, 0x24, 0x2, 0x2, 0x5, 0x7, 0x28, "b4ba782d9ae80ebf16"}, @format_type_i_continuous={0xd, 0x24, 0x2, 0x1, 0x21, 0x2, 0x6, 0xf0, "3c1f", "e2705f"}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x4, 0x4, 0x3, {0x7, 0x25, 0x1, 0x1, 0x6, 0xc34}}}}}}}]}}, &(0x7f0000000440)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x110, 0x1, 0x9, 0x0, 0x40, 0x6}, 0x10, &(0x7f0000000100)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0xc, 0x2, 0x9, 0x3f, 0x4000, 0x79}]}, 0x4, [{0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x438}}, {0xbc, &(0x7f0000000300)=@string={0xbc, 0x3, "3b2a431949bd754733fc6c2b5da9ef0c09c4c0c529ca2dd5621993cd439a0db9325328d34203d82c88e69c2cb99c0acf04dc9f6a110c677111af32afa8b6b93785ee008f76e7ebcd3dc694ef1b94045e52cde02bf56ed412b3328476bfc90fceb4f20a3013b402c6ffdc13bdd852d4d766ff9470f80ee0c5800d6f2c5314de63ee8aa000b40c39a6681aee827b727c8a29932f89544e8ec33cd7eadb830d729125639ddd1b5926859dc35608176d6731324b1503f15fae488bc9"}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0xf8ff}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x140c}}]}) (async) syz_usb_control_io(r2, &(0x7f0000000700)={0x2c, &(0x7f00000004c0)={0x0, 0x21, 0xdd, {0xdd, 0x23, "910d48dada13a5bb7334d5fbe26c8405f128870fbd5bf7eec3624755660a429ab51a6ace85073beef6c6f3937b81d7465385411a3ed0672e62d68dcb2c486a88a0a58c4e8d1587866a50e7adc2df3ccd54028818ad721d882a63fb8a8188796becc12138d2953f3b2dc41fab362c470851907ab2aa72ba9b73c77b8e81447314071330ee20b468ae311547b5fec4dbdde33ee38c6d1a8665a28396c2fefd06416f221960332deeaa6a8b2b3583313f6e71fe75fb81a7c784fd3924e203ca140e11ca7c8632bc2efdf7bb969a6494c740b6d008b7abd8dbe273d767"}}, &(0x7f00000005c0)={0x0, 0x3, 0x6c, @string={0x6c, 0x3, "7f7bfaf104e28f3ee954f9e9d1e9291112199738ac2ee47055fbc9c5a298d686709fb28ff2a7b0b7e23e654b7726fe1a455f7095206aace16813768163d7a158b669599c86beb3f7291d53aca870860be93f61480f4fc00dbcba0ce369f83815c85dc90029d8ee9870a3"}}, &(0x7f0000000640)={0x0, 0xf, 0x29, {0x5, 0xf, 0x29, 0x1, [@ssp_cap={0x24, 0x10, 0xa, 0x2, 0x6, 0x4, 0xf000, 0x6, [0xc0, 0x30, 0x1f80, 0xc000, 0xff0030, 0xff3f00]}]}}, &(0x7f0000000680)={0x20, 0x29, 0xf, {0xf, 0x29, 0x84, 0x2, 0x6, 0x0, "3ae2840d", "e3d0935a"}}, &(0x7f00000006c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0xe3, 0x18, 0x5, 0x4b, 0x9, 0x8b2b, 0x6d85}}}, &(0x7f0000000c40)={0x84, &(0x7f0000000740)={0x0, 0x8, 0xfd, "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"}, &(0x7f0000000880)={0x0, 0xa, 0x1, 0xfa}, &(0x7f00000008c0)={0x0, 0x8, 0x1, 0x1f}, &(0x7f0000000900)={0x20, 0x0, 0x4, {0x0, 0x1}}, &(0x7f0000000940)={0x20, 0x0, 0x4, {0x80, 0x80}}, &(0x7f0000000980)={0x40, 0x7, 0x2, 0x20}, &(0x7f00000009c0)={0x40, 0x9, 0x1, 0x66}, &(0x7f0000000a00)={0x40, 0xb, 0x2, 'Li'}, &(0x7f0000000a40)={0x40, 0xf, 0x2, 0x8}, &(0x7f0000000a80)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000000ac0)={0x40, 0x17, 0x6}, &(0x7f0000000b00)={0x40, 0x19, 0x2, '=w'}, &(0x7f0000000b40)={0x40, 0x1a, 0x2, 0x81}, &(0x7f0000000b80)={0x40, 0x1c, 0x1, 0x6c}, &(0x7f0000000bc0)={0x40, 0x1e, 0x1, 0x4e}, &(0x7f0000000c00)={0x40, 0x21, 0x1, 0x5}}) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) (async) [ 3267.555647][T13927] usb 3-1: new high-speed USB device number 33 using dummy_hcd [ 3267.771951][T19157] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3267.784655][T19157] CPU: 1 PID: 19157 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3267.795185][T19157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3267.805366][T19157] Call Trace: [ 3267.808660][T19157] [ 3267.811612][T19157] dump_stack_lvl+0x1e7/0x2e0 [ 3267.816314][T19157] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3267.821543][T19157] ? __pfx__printk+0x10/0x10 [ 3267.826146][T19157] ? ___ratelimit+0x4c4/0x670 [ 3267.830836][T19157] ? __pfx____ratelimit+0x10/0x10 [ 3267.835894][T19157] dump_header+0xda/0x6a0 [ 3267.840275][T19157] oom_kill_process+0x3a7/0x930 [ 3267.845179][T19157] out_of_memory+0xf67/0x1320 [ 3267.849911][T19157] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3267.855572][T19157] ? __pfx___mutex_lock+0x10/0x10 [ 3267.860614][T19157] ? __pfx_out_of_memory+0x10/0x10 [ 3267.865760][T19157] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3267.871338][T19157] ? __pfx_lock_release+0x10/0x10 [ 3267.876403][T19157] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3267.882491][T19157] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3267.887714][T19157] ? mem_cgroup_iter+0x422/0x560 [ 3267.892709][T19157] try_charge_memcg+0xda2/0x18a0 [ 3267.897692][T19157] ? __pfx_try_charge_memcg+0x10/0x10 [ 3267.903080][T19157] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3267.908814][T19157] ? __pfx_lock_release+0x10/0x10 [ 3267.913894][T19157] ? memcg_account_kmem+0x1e7/0x210 [ 3267.919123][T19157] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3267.924948][T19157] __memcg_kmem_charge_page+0xe1/0x250 [ 3267.930444][T19157] memcg_charge_kernel_stack+0x210/0x550 [ 3267.936094][T19157] dup_task_struct+0x15d/0x7d0 [ 3267.940883][T19157] copy_process+0x5d5/0x3fc0 [ 3267.945515][T19157] ? __might_fault+0xa9/0x120 [ 3267.950207][T19157] ? __pfx_lock_release+0x10/0x10 [ 3267.955266][T19157] ? __pfx_copy_process+0x10/0x10 [ 3267.960309][T19157] ? __might_fault+0xc5/0x120 [ 3267.965009][T19157] ? __asan_memset+0x23/0x50 [ 3267.969640][T19157] kernel_clone+0x21d/0x8d0 [ 3267.974184][T19157] ? __pfx_kernel_clone+0x10/0x10 [ 3267.979248][T19157] __se_sys_clone3+0x2cb/0x350 [ 3267.984046][T19157] ? __pfx___se_sys_clone3+0x10/0x10 [ 3267.989353][T19157] ? rcu_is_watching+0x15/0xb0 [ 3267.994253][T19157] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3268.000299][T19157] ? exc_page_fault+0x587/0x870 [ 3268.005187][T19157] ? do_syscall_64+0xb4/0x240 [ 3268.009888][T19157] do_syscall_64+0xf9/0x240 [ 3268.014419][T19157] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3268.020342][T19157] RIP: 0033:0x7f080fca9b99 [ 3268.024769][T19157] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3268.044386][T19157] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3268.052810][T19157] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3268.060788][T19157] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3268.068856][T19157] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3268.076833][T19157] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3268.084807][T19157] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3268.092801][T19157] [ 3268.097980][T13927] usb 3-1: Using ep0 maxpacket: 8 [ 3268.111156][T19157] memory: usage 307200kB, limit 307200kB, failcnt 120455 [ 3268.119898][T19157] memory+swap: usage 308516kB, limit 9007199254740988kB, failcnt 0 [ 3268.128811][T19157] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3268.139176][T19157] Memory cgroup stats for /syz0: [ 3268.139337][T19157] cache 0 [ 3268.152517][T19157] rss 8192 [ 3268.159581][T19157] rss_huge 0 [ 3268.162895][T19157] shmem 0 [ 3268.166245][T19157] mapped_file 0 [ 3268.169815][T19157] dirty 0 [ 3268.172837][T19157] writeback 0 [ 3268.177007][T19157] workingset_refault_anon 38235 [ 3268.181939][T19157] workingset_refault_file 0 [ 3268.186850][T19157] swap 1335296 [ 3268.190372][T19157] swapcached 8192 [ 3268.194108][T19157] pgpgin 281416 [ 3268.204802][T19157] pgpgout 281413 [ 3268.209225][T19157] pgfault 528350 [ 3268.212854][T19157] pgmajfault 37095 [ 3268.216889][T13927] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3268.228124][T19157] inactive_anon 0 [ 3268.231773][T19157] active_anon 8192 [ 3268.235968][T13927] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3268.255255][T19157] inactive_file 0 [ 3268.258931][T19157] active_file 0 [ 3268.262387][T19157] unevictable 0 [ 3268.268080][T13927] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3268.275270][T19157] hierarchical_memory_limit 314572800 [ 3268.277264][T13927] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3268.282551][T19157] hierarchical_memsw_limit 9223372036854771712 [ 3268.282565][T19157] total_cache 0 [ 3268.293084][T13927] usb 3-1: config 0 descriptor?? [ 3268.306290][T19157] total_rss 8192 [ 3268.309871][T19157] total_rss_huge 0 [ 3268.313613][T19157] total_shmem 0 [ 3268.317340][T19157] total_mapped_file 0 [ 3268.321346][T19157] total_dirty 0 [ 3268.324810][T19157] total_writeback 0 [ 3268.335276][T19157] total_workingset_refault_anon 38235 [ 3268.340683][T19157] total_workingset_refault_file 0 [ 3268.349756][T19157] total_swap 1335296 [ 3268.353692][T19157] total_swapcached 8192 [ 3268.358033][T19157] total_pgpgin 281416 [ 3268.362066][T19157] total_pgpgout 281413 [ 3268.375628][T19157] total_pgfault 528350 [ 3268.379733][T19157] total_pgmajfault 37095 [ 3268.384015][T19157] total_inactive_anon 0 [ 3268.388274][T19157] total_active_anon 8192 [ 3268.392525][T19157] total_inactive_file 0 [ 3268.396772][T19157] total_active_file 0 [ 3268.400863][T19157] total_unevictable 0 [ 3268.404856][T19157] anon_cost 0 [ 3268.408270][T19157] file_cost 0 [ 3268.411577][T19157] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19157,uid=0 [ 3268.427372][T19157] Memory cgroup out of memory: Killed process 19157 (syz-executor.0) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:46 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x6}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3268.655433][T13927] usbhid 3-1:0.0: can't add hid device: -71 [ 3268.661511][T13927] usbhid: probe of 3-1:0.0 failed with error -71 [ 3268.676730][T13927] usb 3-1: USB disconnect, device number 33 [ 3268.944816][T19160] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3268.955600][T19160] CPU: 1 PID: 19160 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3268.966061][T19160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3268.976142][T19160] Call Trace: [ 3268.979418][T19160] [ 3268.982342][T19160] dump_stack_lvl+0x1e7/0x2e0 [ 3268.987052][T19160] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3268.992270][T19160] ? __pfx__printk+0x10/0x10 [ 3268.996861][T19160] ? ___ratelimit+0x4c4/0x670 [ 3269.001557][T19160] ? __pfx____ratelimit+0x10/0x10 [ 3269.006605][T19160] dump_header+0xda/0x6a0 [ 3269.010973][T19160] oom_kill_process+0x3a7/0x930 [ 3269.015859][T19160] out_of_memory+0xf67/0x1320 [ 3269.020563][T19160] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3269.026288][T19160] ? __pfx___mutex_lock+0x10/0x10 [ 3269.031327][T19160] ? __pfx_out_of_memory+0x10/0x10 [ 3269.036452][T19160] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3269.042011][T19160] ? __pfx_lock_release+0x10/0x10 [ 3269.047043][T19160] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3269.053120][T19160] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3269.058429][T19160] ? mem_cgroup_iter+0x422/0x560 [ 3269.063401][T19160] try_charge_memcg+0xda2/0x18a0 [ 3269.068371][T19160] ? __pfx_try_charge_memcg+0x10/0x10 [ 3269.073771][T19160] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3269.079499][T19160] ? __pfx_lock_release+0x10/0x10 [ 3269.084551][T19160] ? memcg_account_kmem+0x1e7/0x210 [ 3269.089792][T19160] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3269.095609][T19160] __memcg_kmem_charge_page+0xe1/0x250 [ 3269.101095][T19160] memcg_charge_kernel_stack+0x210/0x550 [ 3269.106750][T19160] dup_task_struct+0x15d/0x7d0 [ 3269.111525][T19160] copy_process+0x5d5/0x3fc0 [ 3269.116134][T19160] ? __might_fault+0xa9/0x120 [ 3269.120956][T19160] ? __pfx_lock_release+0x10/0x10 [ 3269.126007][T19160] ? __lock_acquire+0x1345/0x1fd0 [ 3269.131061][T19160] ? __pfx_copy_process+0x10/0x10 [ 3269.136101][T19160] ? __might_fault+0xc5/0x120 [ 3269.140796][T19160] ? __asan_memset+0x23/0x50 [ 3269.145403][T19160] kernel_clone+0x21d/0x8d0 [ 3269.149919][T19160] ? __pfx_kernel_clone+0x10/0x10 [ 3269.154957][T19160] ? __pfx_lock_release+0x10/0x10 [ 3269.160002][T19160] __se_sys_clone3+0x2cb/0x350 [ 3269.164777][T19160] ? __might_fault+0xa9/0x120 [ 3269.169465][T19160] ? __pfx___se_sys_clone3+0x10/0x10 [ 3269.174757][T19160] ? rcu_is_watching+0x15/0xb0 [ 3269.179637][T19160] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3269.185644][T19160] ? exc_page_fault+0x587/0x870 [ 3269.190516][T19160] ? do_syscall_64+0xb4/0x240 [ 3269.195233][T19160] do_syscall_64+0xf9/0x240 [ 3269.199756][T19160] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3269.205674][T19160] RIP: 0033:0x7f080fca9b99 [ 3269.210108][T19160] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3269.229738][T19160] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3269.238165][T19160] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3269.246154][T19160] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3269.254128][T19160] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3269.262104][T19160] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3269.270082][T19160] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3269.278077][T19160] [ 3269.292040][T19160] memory: usage 307200kB, limit 307200kB, failcnt 120919 [ 3269.299316][T19160] memory+swap: usage 308552kB, limit 9007199254740988kB, failcnt 0 [ 3269.307870][T19160] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3269.315652][T19160] Memory cgroup stats for /syz0: [ 3269.315804][T19160] cache 0 [ 3269.323857][T19160] rss 12288 [ 3269.328779][T19160] rss_huge 0 [ 3269.332163][T19160] shmem 0 [ 3269.340603][T19160] mapped_file 0 [ 3269.344207][T19160] dirty 0 [ 3269.347630][T19160] writeback 0 [ 3269.351051][T19160] workingset_refault_anon 38412 [ 3269.357249][T19160] workingset_refault_file 0 [ 3269.361867][T19160] swap 1368064 [ 3269.365777][T19160] swapcached 12288 [ 3269.369560][T19160] pgpgin 281603 [ 3269.373015][T19160] pgpgout 281599 [ 3269.376954][T19160] pgfault 528624 [ 3269.380562][T19160] pgmajfault 37262 [ 3269.384303][T19160] inactive_anon 4096 [ 3269.388308][T19160] active_anon 0 [ 3269.391802][T19160] inactive_file 0 [ 3269.395544][T19160] active_file 0 [ 3269.399027][T19160] unevictable 0 [ 3269.402502][T19160] hierarchical_memory_limit 314572800 [ 3269.407960][T19160] hierarchical_memsw_limit 9223372036854771712 [ 3269.414143][T19160] total_cache 0 [ 3269.417721][T19160] total_rss 12288 [ 3269.421378][T19160] total_rss_huge 0 [ 3269.425132][T19160] total_shmem 0 [ 3269.425412][T13927] usb 3-1: new high-speed USB device number 34 using dummy_hcd [ 3269.428665][T19160] total_mapped_file 0 [ 3269.428677][T19160] total_dirty 0 [ 3269.428687][T19160] total_writeback 0 [ 3269.428697][T19160] total_workingset_refault_anon 38412 [ 3269.428707][T19160] total_workingset_refault_file 0 [ 3269.428718][T19160] total_swap 1368064 [ 3269.463489][T19160] total_swapcached 12288 [ 3269.468713][T19160] total_pgpgin 281603 [ 3269.472723][T19160] total_pgpgout 281599 [ 3269.477433][T19160] total_pgfault 528624 [ 3269.481536][T19160] total_pgmajfault 37262 [ 3269.486005][T19160] total_inactive_anon 4096 [ 3269.490499][T19160] total_active_anon 0 [ 3269.494477][T19160] total_inactive_file 0 [ 3269.499535][T19160] total_active_file 0 [ 3269.503544][T19160] total_unevictable 0 [ 3269.507698][T19160] anon_cost 0 [ 3269.511010][T19160] file_cost 0 [ 3269.514320][T19160] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19160,uid=0 [ 3269.530042][T19160] Memory cgroup out of memory: Killed process 19160 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:47 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x7}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3269.685365][T13927] usb 3-1: Using ep0 maxpacket: 8 [ 3269.805428][T13927] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3269.817692][T13927] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3269.835736][T13927] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3269.852535][T13927] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3269.871482][T13927] usb 3-1: config 0 descriptor?? [ 3270.085478][T19162] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3270.095791][T19162] CPU: 1 PID: 19162 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3270.106247][T19162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3270.116350][T19162] Call Trace: [ 3270.119660][T19162] [ 3270.122621][T19162] dump_stack_lvl+0x1e7/0x2e0 [ 3270.127336][T19162] ? __pfx_dump_stack_lvl+0x10/0x10 17:44:48 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="06e6a6da1f048a4cf8333ea715deeb1699483aa11a7ef8a7006c3f4e48d303da273d5ab0f263162094310a7ae64eb3efd772e7ed0765837db69d252c20c7d17c83984a0b205dbb3495ac1c055e13aec35871db5a2a7dad247095d59697ef538e71f9aef635e663e663d19634b2bfb81c850c6cd0373a16d893269f5516ba7a4c7f350df30735afb14495f46705190f4476ffbc5134007ce71351d0586c37b07d043c08c7c40d2557911657a596dfa8fcd5c8e837a293bc59d609f6b63851afd9e3f36b0890b49d52114ab6abd9c257e4df69fadf67f3f0a9"], 0x0}, 0x0) [ 3270.132579][T19162] ? __pfx__printk+0x10/0x10 [ 3270.137189][T19162] ? ___ratelimit+0x4c4/0x670 [ 3270.141915][T19162] ? __pfx____ratelimit+0x10/0x10 [ 3270.146980][T19162] dump_header+0xda/0x6a0 [ 3270.151363][T19162] oom_kill_process+0x3a7/0x930 [ 3270.156267][T19162] out_of_memory+0xf67/0x1320 [ 3270.161079][T19162] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3270.166726][T19162] ? __pfx___mutex_lock+0x10/0x10 [ 3270.171755][T19162] ? __pfx_out_of_memory+0x10/0x10 [ 3270.176901][T19162] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3270.182457][T19162] ? __pfx_lock_release+0x10/0x10 [ 3270.187496][T19162] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3270.193579][T19162] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3270.198799][T19162] ? mem_cgroup_iter+0x422/0x560 [ 3270.203748][T19162] try_charge_memcg+0xda2/0x18a0 [ 3270.208736][T19162] ? __pfx_try_charge_memcg+0x10/0x10 [ 3270.214120][T19162] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3270.219851][T19162] ? __pfx_lock_release+0x10/0x10 [ 3270.224905][T19162] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3270.230734][T19162] __memcg_kmem_charge_page+0xe1/0x250 [ 3270.236210][T19162] memcg_charge_kernel_stack+0xa7/0x550 [ 3270.241772][T19162] dup_task_struct+0x15d/0x7d0 [ 3270.246551][T19162] copy_process+0x5d5/0x3fc0 [ 3270.251165][T19162] ? __might_fault+0xa9/0x120 [ 3270.255856][T19162] ? __pfx_lock_release+0x10/0x10 [ 3270.260900][T19162] ? __pfx_copy_process+0x10/0x10 [ 3270.265932][T19162] ? __might_fault+0xc5/0x120 [ 3270.270621][T19162] ? __asan_memset+0x23/0x50 [ 3270.275223][T19162] kernel_clone+0x21d/0x8d0 [ 3270.279752][T19162] ? __pfx_kernel_clone+0x10/0x10 [ 3270.284890][T19162] __se_sys_clone3+0x2cb/0x350 [ 3270.289666][T19162] ? __pfx___se_sys_clone3+0x10/0x10 [ 3270.294988][T19162] ? rcu_is_watching+0x15/0xb0 [ 3270.299801][T19162] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3270.305809][T19162] ? exc_page_fault+0x587/0x870 [ 3270.310682][T19162] ? do_syscall_64+0xb4/0x240 [ 3270.315390][T19162] do_syscall_64+0xf9/0x240 [ 3270.319912][T19162] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3270.325818][T19162] RIP: 0033:0x7f080fca9b99 [ 3270.330256][T19162] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3270.349952][T19162] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3270.358468][T19162] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3270.366448][T19162] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3270.374425][T19162] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3270.382404][T19162] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3270.390376][T19162] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3270.398396][T19162] [ 3270.418491][T19162] memory: usage 307200kB, limit 307200kB, failcnt 121415 [ 3270.432296][T19162] memory+swap: usage 308524kB, limit 9007199254740988kB, failcnt 0 [ 3270.440990][T19162] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3270.449139][T19162] Memory cgroup stats for /syz0: [ 3270.449280][T19162] cache 0 [ 3270.458317][T19162] rss 16384 [ 3270.461657][T19162] rss_huge 0 [ 3270.465066][T19162] shmem 0 [ 3270.469318][T19162] mapped_file 0 [ 3270.472959][T19162] dirty 0 [ 3270.476594][T19162] writeback 0 [ 3270.480152][T19162] workingset_refault_anon 38585 [ 3270.485398][T13927] usbhid 3-1:0.0: can't add hid device: -71 [ 3270.485438][T19162] workingset_refault_file 0 [ 3270.491535][T13927] usbhid: probe of 3-1:0.0 failed with error -71 [ 3270.501164][T19162] swap 1351680 [ 3270.505365][T13927] usb 3-1: USB disconnect, device number 34 [ 3270.514090][T19162] swapcached 16384 [ 3270.523132][T19162] pgpgin 281787 [ 3270.526736][T19162] pgpgout 281783 [ 3270.530316][T19162] pgfault 528888 [ 3270.533904][T19162] pgmajfault 37428 [ 3270.537755][T19162] inactive_anon 0 [ 3270.541426][T19162] active_anon 4096 [ 3270.545294][T19162] inactive_file 0 [ 3270.548954][T19162] active_file 0 [ 3270.552429][T19162] unevictable 0 [ 3270.555990][T19162] hierarchical_memory_limit 314572800 [ 3270.561387][T19162] hierarchical_memsw_limit 9223372036854771712 [ 3270.567799][T19162] total_cache 0 [ 3270.571291][T19162] total_rss 16384 [ 3270.574967][T19162] total_rss_huge 0 [ 3270.578901][T19162] total_shmem 0 [ 3270.582397][T19162] total_mapped_file 0 17:44:48 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io(r1, &(0x7f0000000840)={0x2c, &(0x7f0000000580)={0x20, 0x31, 0x100, {0x100, 0x22, "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"}}, &(0x7f00000006c0)={0x0, 0x3, 0x16, @string={0x16, 0x3, "192a3333cda0f91e577108770ec2bd6a676d0ff3"}}, &(0x7f0000000700)={0x0, 0xf, 0x92, {0x5, 0xf, 0x92, 0x4, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0x6, 0x8}, @ss_container_id={0x14, 0x10, 0x4, 0x3, "46f0c47e9d59ae409c843828ebe909de"}, @generic={0x64, 0x10, 0xb, "45a78946f146f4aef2e51be7875699016a9bcbc550f14d4839792cca5346a2081f0cb1c1dc5b92b5d780fb98e8f572a9cddd550a6a676da01c2fcca06b5197c05fc2d0736f630253faddb768719c190bcb2569d91774e144706e595aae0019d6b4"}, @wireless={0xb, 0x10, 0x1, 0x8, 0x12, 0x6, 0x80, 0x1, 0x1}]}}, &(0x7f00000007c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x5b, 0x3, 0x79, 0x7f, "b57655c7", "6ebf2173"}}, &(0x7f0000000800)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x80, 0x3, 0x7f, 0x1, 0x1, 0x6}}}, &(0x7f0000000cc0)={0x84, &(0x7f0000000880)={0x20, 0x1, 0x55, "de081389a3b5c53d4bfda5262fde2ff1c7e59bbd56b5b7e0bb7fdabd957ecddaa22beba9e584c17db1197d11fe0cd5d67a7aafa9a886156aafb8abb697ad5138e6e49d61fd5c39e9491cef6cae9233bc683ac47826"}, &(0x7f0000000900)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000940)={0x0, 0x8, 0x1}, &(0x7f0000000980)={0x20, 0x0, 0x4, {0x2, 0x2}}, &(0x7f00000009c0)={0x20, 0x0, 0x4, {0x1e0, 0x68}}, &(0x7f0000000a00)={0x40, 0x7, 0x2, 0x4f}, &(0x7f0000000a40)={0x40, 0x9, 0x1, 0xf8}, &(0x7f0000000a80)={0x40, 0xb, 0x2, "1e7f"}, &(0x7f0000000ac0)={0x40, 0xf, 0x2, 0x9}, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, &(0x7f0000000b40)={0x40, 0x17, 0x6, @random="5f7c6a815c7e"}, &(0x7f0000000b80)={0x40, 0x19, 0x2, "bb2d"}, &(0x7f0000000bc0)={0x40, 0x1a, 0x2, 0xff}, &(0x7f0000000c00)={0x40, 0x1c, 0x1, 0x85}, &(0x7f0000000c40)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000c80)={0x40, 0x21, 0x1, 0x26}}) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x40, 0x23, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f00000000c0)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_disconnect(r1) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000140)={0x14, &(0x7f00000001c0)={0x0, 0x11, 0xf9, {0xf9, 0xf, "8ea44ee40003adb6c285744ee4776723875a7d00875e96b1989a4f75c042e4855ec5e5f19a289f1f238db3ed580e2f1d2a5f5e0fcc9b9db5a92d2461717df84b2240f24cef3b2a617501972c55a7a7165d546e4e9835df5ffc81b2db052a2c649fcd930edc18db3621b21a22af9a6883e788fedaef6d065520525c12e2d35ee784f086f2c38ef4f66240be37e34f996d00099e09786e28875690efd29f7bc27f5b9a168c28c7a3d302aac324f56e56717f714f5dfa578c9351e72bc7470a9b0b481c8f44b89cb366abf00b37f50f26ca6a965ea5586b5a0befd2fa872b395c72df825192aa05ce193ac9f8de0c073269b626ad55350755"}}, &(0x7f0000000100)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000500)={0x44, &(0x7f00000002c0)={0x20, 0x13, 0x4d, "f2af0d89579613bca79f67af462e9e1d4440d3e0b335d38fcd4360376f06da00dc34924f1259674a5128ce8e1dc780dd367312a8ad1ebe1e512476cc620a1a1b03f9a379c199ed8a55c7461ec8"}, &(0x7f0000000340)={0x0, 0xa, 0x1, 0xb3}, &(0x7f0000000380)={0x0, 0x8, 0x1, 0x5}, &(0x7f00000003c0)={0x20, 0x80, 0x1c, {0x400, 0x2, 0x8001, 0x1000, 0x4, 0x8fc1, 0x3, 0xb4, 0x0, 0xfffc, 0x4}}, &(0x7f0000000400)={0x20, 0x85, 0x4, 0x7ff}, &(0x7f0000000440)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000480)={0x20, 0x87, 0x2}, &(0x7f00000004c0)={0x20, 0x89, 0x2, 0x1}}) [ 3270.586508][T19162] total_dirty 0 [ 3270.590002][T19162] total_writeback 0 [ 3270.593839][T19162] total_workingset_refault_anon 38585 [ 3270.599311][T19162] total_workingset_refault_file 0 [ 3270.604543][T19162] total_swap 1351680 [ 3270.608946][T19162] total_swapcached 16384 [ 3270.613218][T19162] total_pgpgin 281787 [ 3270.633316][T19162] total_pgpgout 281783 [ 3270.640932][T19162] total_pgfault 528888 [ 3270.645047][T19162] total_pgmajfault 37428 [ 3270.649533][T19162] total_inactive_anon 0 [ 3270.653761][T19162] total_active_anon 4096 [ 3270.669454][T19162] total_inactive_file 0 [ 3270.685003][T19162] total_active_file 0 [ 3270.692816][T19162] total_unevictable 0 [ 3270.701715][T19162] anon_cost 0 [ 3270.705027][T19162] file_cost 0 [ 3270.709371][T19162] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19162,uid=0 [ 3270.733894][T19162] Memory cgroup out of memory: Killed process 19162 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:49 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x8}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3270.875336][T13927] usb 3-1: new high-speed USB device number 35 using dummy_hcd [ 3271.051215][T19167] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3271.061627][T19167] CPU: 0 PID: 19167 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3271.072085][T19167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3271.082179][T19167] Call Trace: [ 3271.085516][T19167] [ 3271.088475][T19167] dump_stack_lvl+0x1e7/0x2e0 [ 3271.093241][T19167] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3271.098471][T19167] ? __pfx__printk+0x10/0x10 [ 3271.103099][T19167] ? ___ratelimit+0x4c4/0x670 [ 3271.107814][T19167] ? __pfx____ratelimit+0x10/0x10 [ 3271.112873][T19167] dump_header+0xda/0x6a0 [ 3271.115400][T13927] usb 3-1: Using ep0 maxpacket: 8 [ 3271.117214][T19167] oom_kill_process+0x3a7/0x930 [ 3271.127160][T19167] out_of_memory+0xf67/0x1320 [ 3271.131889][T19167] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3271.137567][T19167] ? __pfx___mutex_lock+0x10/0x10 [ 3271.142637][T19167] ? __pfx_out_of_memory+0x10/0x10 [ 3271.147793][T19167] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3271.153379][T19167] ? __pfx_lock_release+0x10/0x10 [ 3271.158431][T19167] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3271.164511][T19167] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3271.169733][T19167] ? mem_cgroup_iter+0x422/0x560 [ 3271.174708][T19167] try_charge_memcg+0xda2/0x18a0 [ 3271.179672][T19167] ? __pfx_try_charge_memcg+0x10/0x10 [ 3271.185051][T19167] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3271.190797][T19167] ? __pfx_lock_release+0x10/0x10 [ 3271.195898][T19167] ? memcg_account_kmem+0x1e7/0x210 [ 3271.201147][T19167] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3271.206998][T19167] __memcg_kmem_charge_page+0xe1/0x250 [ 3271.212514][T19167] memcg_charge_kernel_stack+0x210/0x550 [ 3271.218174][T19167] dup_task_struct+0x15d/0x7d0 [ 3271.222971][T19167] copy_process+0x5d5/0x3fc0 [ 3271.227605][T19167] ? __might_fault+0xa9/0x120 [ 3271.232311][T19167] ? __pfx_lock_release+0x10/0x10 [ 3271.235545][T13927] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3271.237348][T19167] ? __pfx_copy_process+0x10/0x10 [ 3271.253241][T19167] ? __might_fault+0xc5/0x120 [ 3271.257971][T19167] ? __asan_memset+0x23/0x50 [ 3271.260166][T13927] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3271.262591][T19167] kernel_clone+0x21d/0x8d0 [ 3271.262630][T19167] ? __pfx_kernel_clone+0x10/0x10 [ 3271.281917][T19167] __se_sys_clone3+0x2cb/0x350 [ 3271.286722][T19167] ? __pfx___se_sys_clone3+0x10/0x10 [ 3271.292057][T19167] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3271.292561][T13927] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3271.298068][T19167] ? exc_page_fault+0x587/0x870 [ 3271.298109][T19167] ? do_syscall_64+0xb4/0x240 [ 3271.298147][T19167] do_syscall_64+0xf9/0x240 [ 3271.298186][T19167] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3271.298234][T19167] RIP: 0033:0x7f080fca9b99 [ 3271.298255][T19167] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3271.298272][T19167] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3271.298297][T19167] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3271.298314][T19167] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3271.298329][T19167] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3271.298344][T19167] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3271.318115][T13927] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3271.321381][T19167] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3271.321421][T19167] [ 3271.324680][T19167] memory: usage 307200kB, limit 307200kB, failcnt 121780 [ 3271.371230][T13927] usb 3-1: config 0 descriptor?? [ 3271.419385][T19167] memory+swap: usage 308560kB, limit 9007199254740988kB, failcnt 0 [ 3271.435315][T19167] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3271.442778][T19167] Memory cgroup stats for /syz0: [ 3271.442904][T19167] cache 0 [ 3271.451197][T19167] rss 0 [ 3271.454089][T19167] rss_huge 0 [ 3271.457852][T19167] shmem 0 [ 3271.460943][T19167] mapped_file 0 [ 3271.464547][T19167] dirty 0 [ 3271.467733][T19167] writeback 0 [ 3271.471132][T19167] workingset_refault_anon 38685 [ 3271.476282][T19167] workingset_refault_file 0 [ 3271.481005][T19167] swap 1392640 [ 3271.484520][T19167] swapcached 0 [ 3271.488273][T19167] pgpgin 281898 [ 3271.506112][T19167] pgpgout 281898 [ 3271.509839][T19167] pgfault 529048 [ 3271.513555][T19167] pgmajfault 37515 [ 3271.517568][T19167] inactive_anon 0 [ 3271.521366][T19167] active_anon 0 [ 3271.524968][T19167] inactive_file 0 [ 3271.528799][T19167] active_file 0 [ 3271.532460][T19167] unevictable 0 [ 3271.540238][T19167] hierarchical_memory_limit 314572800 [ 3271.545853][T19167] hierarchical_memsw_limit 9223372036854771712 [ 3271.552023][T19167] total_cache 0 [ 3271.555650][T19167] total_rss 0 [ 3271.558948][T19167] total_rss_huge 0 [ 3271.562674][T19167] total_shmem 0 [ 3271.566275][T19167] total_mapped_file 0 [ 3271.570269][T19167] total_dirty 0 [ 3271.573729][T19167] total_writeback 0 [ 3271.577645][T19167] total_workingset_refault_anon 38685 [ 3271.583029][T19167] total_workingset_refault_file 0 [ 3271.588152][T19167] total_swap 1392640 [ 3271.592072][T19167] total_swapcached 0 [ 3271.596035][T19167] total_pgpgin 281898 [ 3271.600040][T19167] total_pgpgout 281898 [ 3271.604297][T19167] total_pgfault 529048 [ 3271.608509][T19167] total_pgmajfault 37515 [ 3271.612775][T19167] total_inactive_anon 0 [ 3271.617204][T19167] total_active_anon 0 [ 3271.621199][T19167] total_inactive_file 0 [ 3271.625477][T19167] total_active_file 0 [ 3271.629568][T19167] total_unevictable 0 [ 3271.633568][T19167] anon_cost 0 [ 3271.637051][T19167] file_cost 0 [ 3271.640337][T19167] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19167,uid=0 17:44:50 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x9}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3271.660207][T19167] Memory cgroup out of memory: Killed process 19167 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3271.795376][T13927] usbhid 3-1:0.0: can't add hid device: -71 [ 3271.801481][T13927] usbhid: probe of 3-1:0.0 failed with error -71 [ 3271.835838][T13927] usb 3-1: USB disconnect, device number 35 [ 3272.385417][T18973] usb 3-1: new high-speed USB device number 36 using dummy_hcd [ 3272.435405][T19170] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3272.445752][T19170] CPU: 0 PID: 19170 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3272.456215][T19170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3272.466311][T19170] Call Trace: [ 3272.469622][T19170] [ 3272.472578][T19170] dump_stack_lvl+0x1e7/0x2e0 [ 3272.477284][T19170] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3272.482502][T19170] ? __pfx__printk+0x10/0x10 [ 3272.487110][T19170] ? ___ratelimit+0x4c4/0x670 [ 3272.491807][T19170] ? __pfx____ratelimit+0x10/0x10 [ 3272.496852][T19170] dump_header+0xda/0x6a0 [ 3272.501204][T19170] oom_kill_process+0x3a7/0x930 [ 3272.506072][T19170] out_of_memory+0xf67/0x1320 [ 3272.510771][T19170] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3272.516432][T19170] ? __pfx___mutex_lock+0x10/0x10 [ 3272.521472][T19170] ? __pfx_out_of_memory+0x10/0x10 [ 3272.526643][T19170] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3272.532219][T19170] ? __pfx_lock_release+0x10/0x10 [ 3272.537264][T19170] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3272.543359][T19170] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3272.548579][T19170] ? mem_cgroup_iter+0x422/0x560 [ 3272.553552][T19170] try_charge_memcg+0xda2/0x18a0 [ 3272.558519][T19170] ? __pfx_try_charge_memcg+0x10/0x10 [ 3272.563897][T19170] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3272.569623][T19170] ? __pfx_lock_release+0x10/0x10 [ 3272.574681][T19170] ? memcg_account_kmem+0x1e7/0x210 [ 3272.579918][T19170] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3272.585737][T19170] __memcg_kmem_charge_page+0xe1/0x250 [ 3272.591228][T19170] memcg_charge_kernel_stack+0x210/0x550 [ 3272.596907][T19170] dup_task_struct+0x15d/0x7d0 [ 3272.601695][T19170] copy_process+0x5d5/0x3fc0 [ 3272.606316][T19170] ? __might_fault+0xa9/0x120 [ 3272.611017][T19170] ? __pfx_lock_release+0x10/0x10 [ 3272.616066][T19170] ? __pfx_copy_process+0x10/0x10 [ 3272.621101][T19170] ? __might_fault+0xc5/0x120 [ 3272.625794][T19170] ? __asan_memset+0x23/0x50 [ 3272.630411][T19170] kernel_clone+0x21d/0x8d0 [ 3272.634931][T19170] ? __pfx_kernel_clone+0x10/0x10 [ 3272.640083][T19170] __se_sys_clone3+0x2cb/0x350 [ 3272.644879][T19170] ? __pfx___se_sys_clone3+0x10/0x10 [ 3272.650206][T19170] ? do_syscall_64+0x108/0x240 [ 3272.654991][T19170] ? do_syscall_64+0xb4/0x240 [ 3272.659687][T19170] do_syscall_64+0xf9/0x240 [ 3272.664212][T19170] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3272.670140][T19170] RIP: 0033:0x7f080fca9b99 [ 3272.674567][T19170] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3272.694201][T19170] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3272.702627][T19170] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3272.710607][T19170] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3272.718588][T19170] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3272.726584][T19170] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3272.734562][T19170] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3272.742600][T19170] [ 3272.749646][T19170] memory: usage 307200kB, limit 307200kB, failcnt 122194 [ 3272.766070][T19170] memory+swap: usage 308560kB, limit 9007199254740988kB, failcnt 0 [ 3272.774154][T19170] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3272.782030][T19170] Memory cgroup stats for /syz0: [ 3272.782182][T19170] cache 0 [ 3272.790274][T19170] rss 0 [ 3272.793199][T19170] rss_huge 0 [ 3272.796619][T19170] shmem 0 [ 3272.799704][T19170] mapped_file 0 [ 3272.811015][T19170] dirty 0 [ 3272.814082][T19170] writeback 0 [ 3272.822029][T19170] workingset_refault_anon 38859 [ 3272.827725][T19170] workingset_refault_file 0 [ 3272.832265][T19170] swap 1392640 [ 3272.836087][T19170] swapcached 0 [ 3272.839492][T19170] pgpgin 282082 [ 3272.842973][T19170] pgpgout 282082 [ 3272.847293][T19170] pgfault 529326 [ 3272.850865][T19170] pgmajfault 37683 [ 3272.854598][T19170] inactive_anon 0 [ 3272.858907][T19170] active_anon 0 [ 3272.862405][T19170] inactive_file 0 [ 3272.865679][T18973] usb 3-1: Using ep0 maxpacket: 8 [ 3272.867116][T19170] active_file 0 [ 3272.874573][T19170] unevictable 0 [ 3272.878579][T19170] hierarchical_memory_limit 314572800 [ 3272.883981][T19170] hierarchical_memsw_limit 9223372036854771712 [ 3272.890262][T19170] total_cache 0 [ 3272.893823][T19170] total_rss 0 [ 3272.900011][T19170] total_rss_huge 0 [ 3272.903764][T19170] total_shmem 0 [ 3272.907629][T19170] total_mapped_file 0 [ 3272.911640][T19170] total_dirty 0 [ 3272.915095][T19170] total_writeback 0 [ 3272.919247][T19170] total_workingset_refault_anon 38859 [ 3272.924766][T19170] total_workingset_refault_file 0 [ 3272.930031][T19170] total_swap 1392640 [ 3272.934036][T19170] total_swapcached 0 [ 3272.938087][T19170] total_pgpgin 282082 [ 3272.942178][T19170] total_pgpgout 282082 [ 3272.946431][T19170] total_pgfault 529326 [ 3272.950576][T19170] total_pgmajfault 37683 [ 3272.954895][T19170] total_inactive_anon 0 [ 3272.959230][T19170] total_active_anon 0 [ 3272.963289][T19170] total_inactive_file 0 [ 3272.967658][T19170] total_active_file 0 [ 3272.971740][T19170] total_unevictable 0 [ 3272.975884][T19170] anon_cost 0 [ 3272.979316][T19170] file_cost 0 [ 3272.982701][T19170] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19170,uid=0 [ 3272.995515][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3273.004661][T19170] Memory cgroup out of memory: Killed process 19170 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8896kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3273.013651][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3273.041592][T18973] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3273.053569][T18973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 17:44:51 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xa}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3273.094057][T18973] usb 3-1: config 0 descriptor?? [ 3273.456316][T19171] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3273.466632][T19171] CPU: 1 PID: 19171 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3273.477168][T19171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3273.487426][T19171] Call Trace: [ 3273.490732][T19171] [ 3273.493672][T19171] dump_stack_lvl+0x1e7/0x2e0 [ 3273.498405][T19171] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3273.503630][T19171] ? __pfx__printk+0x10/0x10 [ 3273.508297][T19171] ? ___ratelimit+0x4c4/0x670 [ 3273.512988][T19171] ? __pfx____ratelimit+0x10/0x10 [ 3273.518051][T19171] dump_header+0xda/0x6a0 [ 3273.522413][T19171] oom_kill_process+0x3a7/0x930 [ 3273.527296][T19171] out_of_memory+0xf67/0x1320 [ 3273.532016][T19171] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3273.537688][T19171] ? __pfx___mutex_lock+0x10/0x10 [ 3273.542747][T19171] ? __pfx_out_of_memory+0x10/0x10 [ 3273.547901][T19171] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3273.553487][T19171] ? __pfx_lock_release+0x10/0x10 [ 3273.558634][T19171] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3273.564734][T19171] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3273.569944][T19171] ? mem_cgroup_iter+0x422/0x560 [ 3273.574916][T19171] try_charge_memcg+0xda2/0x18a0 [ 3273.579913][T19171] ? __pfx_try_charge_memcg+0x10/0x10 [ 3273.585322][T19171] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3273.591103][T19171] ? __pfx_lock_release+0x10/0x10 [ 3273.596188][T19171] ? memcg_account_kmem+0x1e7/0x210 [ 3273.601442][T19171] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3273.607307][T19171] __memcg_kmem_charge_page+0xe1/0x250 [ 3273.612797][T19171] memcg_charge_kernel_stack+0x210/0x550 [ 3273.618451][T19171] dup_task_struct+0x40d/0x7d0 [ 3273.623246][T19171] copy_process+0x5d5/0x3fc0 [ 3273.627882][T19171] ? __might_fault+0xa9/0x120 [ 3273.632649][T19171] ? __pfx_lock_release+0x10/0x10 [ 3273.637713][T19171] ? __pfx_copy_process+0x10/0x10 [ 3273.642747][T19171] ? __might_fault+0xc5/0x120 [ 3273.647437][T19171] ? __asan_memset+0x23/0x50 [ 3273.652049][T19171] kernel_clone+0x21d/0x8d0 [ 3273.656565][T19171] ? __pfx_kernel_clone+0x10/0x10 [ 3273.661797][T19171] __se_sys_clone3+0x2cb/0x350 [ 3273.666593][T19171] ? __pfx___se_sys_clone3+0x10/0x10 [ 3273.671900][T19171] ? rcu_is_watching+0x15/0xb0 [ 3273.676725][T19171] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3273.682775][T19171] ? exc_page_fault+0x587/0x870 [ 3273.687675][T19171] ? do_syscall_64+0xb4/0x240 [ 3273.692406][T19171] do_syscall_64+0xf9/0x240 [ 3273.696961][T19171] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3273.702913][T19171] RIP: 0033:0x7f080fca9b99 17:44:52 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io(r1, &(0x7f0000000840)={0x2c, &(0x7f0000000580)={0x20, 0x31, 0x100, {0x100, 0x22, "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"}}, &(0x7f00000006c0)={0x0, 0x3, 0x16, @string={0x16, 0x3, "192a3333cda0f91e577108770ec2bd6a676d0ff3"}}, &(0x7f0000000700)={0x0, 0xf, 0x92, {0x5, 0xf, 0x92, 0x4, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0x6, 0x8}, @ss_container_id={0x14, 0x10, 0x4, 0x3, "46f0c47e9d59ae409c843828ebe909de"}, @generic={0x64, 0x10, 0xb, "45a78946f146f4aef2e51be7875699016a9bcbc550f14d4839792cca5346a2081f0cb1c1dc5b92b5d780fb98e8f572a9cddd550a6a676da01c2fcca06b5197c05fc2d0736f630253faddb768719c190bcb2569d91774e144706e595aae0019d6b4"}, @wireless={0xb, 0x10, 0x1, 0x8, 0x12, 0x6, 0x80, 0x1, 0x1}]}}, &(0x7f00000007c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x5b, 0x3, 0x79, 0x7f, "b57655c7", "6ebf2173"}}, &(0x7f0000000800)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x80, 0x3, 0x7f, 0x1, 0x1, 0x6}}}, &(0x7f0000000cc0)={0x84, &(0x7f0000000880)={0x20, 0x1, 0x55, "de081389a3b5c53d4bfda5262fde2ff1c7e59bbd56b5b7e0bb7fdabd957ecddaa22beba9e584c17db1197d11fe0cd5d67a7aafa9a886156aafb8abb697ad5138e6e49d61fd5c39e9491cef6cae9233bc683ac47826"}, &(0x7f0000000900)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000940)={0x0, 0x8, 0x1}, &(0x7f0000000980)={0x20, 0x0, 0x4, {0x2, 0x2}}, &(0x7f00000009c0)={0x20, 0x0, 0x4, {0x1e0, 0x68}}, &(0x7f0000000a00)={0x40, 0x7, 0x2, 0x4f}, &(0x7f0000000a40)={0x40, 0x9, 0x1, 0xf8}, &(0x7f0000000a80)={0x40, 0xb, 0x2, "1e7f"}, &(0x7f0000000ac0)={0x40, 0xf, 0x2, 0x9}, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, &(0x7f0000000b40)={0x40, 0x17, 0x6, @random="5f7c6a815c7e"}, &(0x7f0000000b80)={0x40, 0x19, 0x2, "bb2d"}, &(0x7f0000000bc0)={0x40, 0x1a, 0x2, 0xff}, &(0x7f0000000c00)={0x40, 0x1c, 0x1, 0x85}, &(0x7f0000000c40)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000c80)={0x40, 0x21, 0x1, 0x26}}) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x40, 0x23, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f00000000c0)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) (async) syz_usb_disconnect(r1) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000140)={0x14, &(0x7f00000001c0)={0x0, 0x11, 0xf9, {0xf9, 0xf, "8ea44ee40003adb6c285744ee4776723875a7d00875e96b1989a4f75c042e4855ec5e5f19a289f1f238db3ed580e2f1d2a5f5e0fcc9b9db5a92d2461717df84b2240f24cef3b2a617501972c55a7a7165d546e4e9835df5ffc81b2db052a2c649fcd930edc18db3621b21a22af9a6883e788fedaef6d065520525c12e2d35ee784f086f2c38ef4f66240be37e34f996d00099e09786e28875690efd29f7bc27f5b9a168c28c7a3d302aac324f56e56717f714f5dfa578c9351e72bc7470a9b0b481c8f44b89cb366abf00b37f50f26ca6a965ea5586b5a0befd2fa872b395c72df825192aa05ce193ac9f8de0c073269b626ad55350755"}}, &(0x7f0000000100)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000500)={0x44, &(0x7f00000002c0)={0x20, 0x13, 0x4d, "f2af0d89579613bca79f67af462e9e1d4440d3e0b335d38fcd4360376f06da00dc34924f1259674a5128ce8e1dc780dd367312a8ad1ebe1e512476cc620a1a1b03f9a379c199ed8a55c7461ec8"}, &(0x7f0000000340)={0x0, 0xa, 0x1, 0xb3}, &(0x7f0000000380)={0x0, 0x8, 0x1, 0x5}, &(0x7f00000003c0)={0x20, 0x80, 0x1c, {0x400, 0x2, 0x8001, 0x1000, 0x4, 0x8fc1, 0x3, 0xb4, 0x0, 0xfffc, 0x4}}, &(0x7f0000000400)={0x20, 0x85, 0x4, 0x7ff}, &(0x7f0000000440)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000480)={0x20, 0x87, 0x2}, &(0x7f00000004c0)={0x20, 0x89, 0x2, 0x1}}) [ 3273.707359][T19171] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3273.727096][T19171] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3273.735646][T19171] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3273.743657][T19171] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3273.751663][T19171] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3273.759666][T19171] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3273.767645][T19171] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3273.775655][T19171] [ 3273.779694][T19171] memory: usage 307200kB, limit 307200kB, failcnt 122622 [ 3273.787574][T19171] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3273.796128][T19171] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3273.803622][T19171] Memory cgroup stats for /syz0: [ 3273.803833][T19171] cache 0 [ 3273.811889][T19171] rss 0 [ 3273.814678][T19171] rss_huge 0 [ 3273.825242][T19171] shmem 0 [ 3273.828295][T19171] mapped_file 0 [ 3273.831776][T19171] dirty 0 [ 3273.834733][T19171] writeback 0 [ 3273.842978][T19171] workingset_refault_anon 39035 [ 3273.848117][T19171] workingset_refault_file 0 [ 3273.852660][T19171] swap 1372160 [ 3273.855381][T18973] usbhid 3-1:0.0: can't add hid device: -71 [ 3273.856232][T19171] swapcached 0 [ 3273.865480][T19171] pgpgin 282268 [ 3273.868951][T18973] usbhid: probe of 3-1:0.0 failed with error -71 [ 3273.868967][T19171] pgpgout 282268 [ 3273.868978][T19171] pgfault 529585 [ 3273.882568][T19171] pgmajfault 37846 [ 3273.890114][T18973] usb 3-1: USB disconnect, device number 36 [ 3273.895059][T19171] inactive_anon 0 [ 3273.899919][T19171] active_anon 0 [ 3273.903402][T19171] inactive_file 0 [ 3273.911277][T19171] active_file 0 [ 3273.915104][T19171] unevictable 0 [ 3273.921709][T19171] hierarchical_memory_limit 314572800 [ 3273.930527][T19171] hierarchical_memsw_limit 9223372036854771712 [ 3273.939335][T19171] total_cache 0 [ 3273.942837][T19171] total_rss 0 [ 3273.949360][T19171] total_rss_huge 0 [ 3273.953162][T19171] total_shmem 0 [ 3273.956763][T19171] total_mapped_file 0 [ 3273.960769][T19171] total_dirty 0 [ 3273.964264][T19171] total_writeback 0 [ 3273.969373][T19171] total_workingset_refault_anon 39035 [ 3273.974802][T19171] total_workingset_refault_file 0 [ 3273.979982][T19171] total_swap 1372160 [ 3273.983903][T19171] total_swapcached 0 [ 3273.988398][T19171] total_pgpgin 282268 [ 3273.992417][T19171] total_pgpgout 282268 [ 3273.996585][T19171] total_pgfault 529585 [ 3274.000675][T19171] total_pgmajfault 37846 [ 3274.004931][T19171] total_inactive_anon 0 [ 3274.009316][T19171] total_active_anon 0 [ 3274.013330][T19171] total_inactive_file 0 [ 3274.017591][T19171] total_active_file 0 [ 3274.021597][T19171] total_unevictable 0 [ 3274.025740][T19171] anon_cost 0 [ 3274.029041][T19171] file_cost 0 [ 3274.032363][T19171] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19171,uid=0 [ 3274.048192][T19171] Memory cgroup out of memory: Killed process 19171 (syz-executor.0) total-vm:54508kB, anon-rss:356kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:52 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="06e6a6da1f048a4cf8333ea715deeb1699483aa11a7ef8a7006c3f4e48d303da273d5ab0f263162094310a7ae64eb3efd772e7ed0765837db69d252c20c7d17c83984a0b205dbb3495ac1c055e13aec35871db5a2a7dad247095d59697ef538e71f9aef635e663e663d19634b2bfb81c850c6cd0373a16d893269f5516ba7a4c7f350df30735afb14495f46705190f4476ffbc5134007ce71351d0586c37b07d043c08c7c40d2557911657a596dfa8fcd5c8e837a293bc59d609f6b63851afd9e3f36b0890b49d52114ab6abd9c257e4df69fadf67f3f0a9"], 0x0}, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) (async) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="06e6a6da1f048a4cf8333ea715deeb1699483aa11a7ef8a7006c3f4e48d303da273d5ab0f263162094310a7ae64eb3efd772e7ed0765837db69d252c20c7d17c83984a0b205dbb3495ac1c055e13aec35871db5a2a7dad247095d59697ef538e71f9aef635e663e663d19634b2bfb81c850c6cd0373a16d893269f5516ba7a4c7f350df30735afb14495f46705190f4476ffbc5134007ce71351d0586c37b07d043c08c7c40d2557911657a596dfa8fcd5c8e837a293bc59d609f6b63851afd9e3f36b0890b49d52114ab6abd9c257e4df69fadf67f3f0a9"], 0x0}, 0x0) (async) 17:44:52 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xb}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3274.386490][T19176] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3274.399677][T19176] CPU: 0 PID: 19176 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3274.410259][T19176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3274.420355][T19176] Call Trace: [ 3274.423657][T19176] [ 3274.426623][T19176] dump_stack_lvl+0x1e7/0x2e0 [ 3274.431343][T19176] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3274.436571][T19176] ? __pfx__printk+0x10/0x10 [ 3274.441278][T19176] ? ___ratelimit+0x4c4/0x670 [ 3274.445990][T19176] ? __pfx____ratelimit+0x10/0x10 [ 3274.451071][T19176] dump_header+0xda/0x6a0 [ 3274.455442][T19176] oom_kill_process+0x3a7/0x930 [ 3274.460320][T19176] out_of_memory+0xf67/0x1320 [ 3274.465009][T19176] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3274.470657][T19176] ? __pfx___mutex_lock+0x10/0x10 [ 3274.475697][T19176] ? __pfx_out_of_memory+0x10/0x10 [ 3274.480833][T19176] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3274.486388][T19176] ? __pfx_lock_release+0x10/0x10 [ 3274.491429][T19176] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3274.497518][T19176] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3274.502734][T19176] ? mem_cgroup_iter+0x422/0x560 [ 3274.507687][T19176] try_charge_memcg+0xda2/0x18a0 [ 3274.512658][T19176] ? __pfx_try_charge_memcg+0x10/0x10 [ 3274.518046][T19176] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3274.523780][T19176] ? __pfx_lock_release+0x10/0x10 [ 3274.528820][T19176] ? memcg_account_kmem+0x1e7/0x210 [ 3274.534043][T19176] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3274.539860][T19176] __memcg_kmem_charge_page+0xe1/0x250 [ 3274.545339][T19176] memcg_charge_kernel_stack+0x210/0x550 [ 3274.550986][T19176] dup_task_struct+0x15d/0x7d0 [ 3274.555766][T19176] copy_process+0x5d5/0x3fc0 [ 3274.560396][T19176] ? __might_fault+0xa9/0x120 [ 3274.565094][T19176] ? __pfx_lock_release+0x10/0x10 [ 3274.570144][T19176] ? __pfx_copy_process+0x10/0x10 [ 3274.575280][T19176] ? __might_fault+0xc5/0x120 [ 3274.580011][T19176] ? __asan_memset+0x23/0x50 [ 3274.584669][T19176] kernel_clone+0x21d/0x8d0 [ 3274.589202][T19176] ? __pfx_kernel_clone+0x10/0x10 [ 3274.594263][T19176] __se_sys_clone3+0x2cb/0x350 [ 3274.599049][T19176] ? __pfx___se_sys_clone3+0x10/0x10 [ 3274.604365][T19176] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3274.610377][T19176] ? exc_page_fault+0x587/0x870 [ 3274.615252][T19176] ? do_syscall_64+0xb4/0x240 [ 3274.619984][T19176] do_syscall_64+0xf9/0x240 [ 3274.624511][T19176] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3274.630421][T19176] RIP: 0033:0x7f080fca9b99 [ 3274.634843][T19176] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3274.654564][T19176] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3274.662993][T19176] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3274.671059][T19176] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3274.679120][T19176] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3274.687096][T19176] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3274.695072][T19176] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3274.703064][T19176] [ 3274.712481][ T8615] usb 3-1: new high-speed USB device number 37 using dummy_hcd [ 3274.716792][T19176] memory: usage 307200kB, limit 307200kB, failcnt 122997 [ 3274.727279][T19176] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3274.742672][T19176] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3274.750467][T19176] Memory cgroup stats for /syz0: [ 3274.750611][T19176] cache 0 [ 3274.758604][T19176] rss 20480 [ 3274.761741][T19176] rss_huge 0 [ 3274.764970][T19176] shmem 0 [ 3274.771626][T19176] mapped_file 0 [ 3274.775096][T19176] dirty 0 [ 3274.778166][T19176] writeback 0 [ 3274.781473][T19176] workingset_refault_anon 39158 [ 3274.786430][T19176] workingset_refault_file 0 [ 3274.791395][T19176] swap 1314816 [ 3274.794789][T19176] swapcached 16384 [ 3274.799123][T19176] pgpgin 282407 [ 3274.802605][T19176] pgpgout 282402 [ 3274.806702][T19176] pgfault 529773 [ 3274.810266][T19176] pgmajfault 37953 [ 3274.813989][T19176] inactive_anon 16384 [ 3274.823446][T19176] active_anon 4096 [ 3274.827741][T19176] inactive_file 0 [ 3274.831420][T19176] active_file 0 [ 3274.834896][T19176] unevictable 0 [ 3274.838734][T19176] hierarchical_memory_limit 314572800 [ 3274.844145][T19176] hierarchical_memsw_limit 9223372036854771712 [ 3274.851160][T19176] total_cache 0 [ 3274.874003][T19176] total_rss 20480 [ 3274.878258][T19176] total_rss_huge 0 [ 3274.882057][T19176] total_shmem 0 [ 3274.885920][T19176] total_mapped_file 0 [ 3274.889938][T19176] total_dirty 0 [ 3274.893425][T19176] total_writeback 0 [ 3274.898072][T19176] total_workingset_refault_anon 39158 [ 3274.903482][T19176] total_workingset_refault_file 0 [ 3274.909241][T19176] total_swap 1314816 [ 3274.913292][T19176] total_swapcached 16384 [ 3274.918120][T19176] total_pgpgin 282407 [ 3274.922140][T19176] total_pgpgout 282402 [ 3274.926965][T19176] total_pgfault 529773 [ 3274.931106][T19176] total_pgmajfault 37953 [ 3274.935970][T19176] total_inactive_anon 16384 [ 3274.940506][T19176] total_active_anon 4096 [ 3274.944779][T19176] total_inactive_file 0 [ 3274.949461][T19176] total_active_file 0 [ 3274.953621][T19176] total_unevictable 0 [ 3274.957809][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3274.960086][T19176] anon_cost 0 [ 3274.966675][T19176] file_cost 0 [ 3274.969978][T19176] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19176,uid=0 [ 3274.986733][T19176] Memory cgroup out of memory: Killed process 19176 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:53 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x10}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3275.114427][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3275.130598][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3275.144049][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3275.153635][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3275.171438][ T8615] usb 3-1: config 0 descriptor?? [ 3275.321820][T19177] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3275.332140][T19177] CPU: 1 PID: 19177 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3275.342586][T19177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3275.352653][T19177] Call Trace: [ 3275.355993][T19177] [ 3275.358926][T19177] dump_stack_lvl+0x1e7/0x2e0 [ 3275.363646][T19177] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3275.368867][T19177] ? __pfx__printk+0x10/0x10 [ 3275.373477][T19177] ? ___ratelimit+0x4c4/0x670 [ 3275.378182][T19177] ? __pfx____ratelimit+0x10/0x10 [ 3275.383238][T19177] dump_header+0xda/0x6a0 [ 3275.387606][T19177] oom_kill_process+0x3a7/0x930 [ 3275.392513][T19177] out_of_memory+0xf67/0x1320 [ 3275.397242][T19177] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3275.402913][T19177] ? __pfx___mutex_lock+0x10/0x10 [ 3275.407967][T19177] ? __pfx_out_of_memory+0x10/0x10 [ 3275.413112][T19177] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3275.418668][T19177] ? __pfx_lock_release+0x10/0x10 [ 3275.423714][T19177] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3275.429814][T19177] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3275.435041][T19177] ? mem_cgroup_iter+0x422/0x560 [ 3275.440025][T19177] try_charge_memcg+0xda2/0x18a0 [ 3275.445020][T19177] ? __pfx_try_charge_memcg+0x10/0x10 [ 3275.450425][T19177] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3275.456159][T19177] ? __pfx_lock_release+0x10/0x10 [ 3275.461207][T19177] ? memcg_account_kmem+0x1e7/0x210 [ 3275.466438][T19177] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3275.472259][T19177] __memcg_kmem_charge_page+0xe1/0x250 [ 3275.477743][T19177] memcg_charge_kernel_stack+0x210/0x550 [ 3275.483405][T19177] dup_task_struct+0x40d/0x7d0 [ 3275.488194][T19177] copy_process+0x5d5/0x3fc0 [ 3275.492810][T19177] ? __might_fault+0xa9/0x120 [ 3275.497532][T19177] ? __pfx_lock_release+0x10/0x10 [ 3275.502577][T19177] ? __lock_acquire+0x1345/0x1fd0 [ 3275.507625][T19177] ? __pfx_copy_process+0x10/0x10 [ 3275.512664][T19177] ? __might_fault+0xc5/0x120 [ 3275.517372][T19177] ? __asan_memset+0x23/0x50 [ 3275.521980][T19177] kernel_clone+0x21d/0x8d0 [ 3275.526506][T19177] ? __pfx_kernel_clone+0x10/0x10 [ 3275.531552][T19177] ? __pfx_lock_release+0x10/0x10 [ 3275.536605][T19177] __se_sys_clone3+0x2cb/0x350 [ 3275.541381][T19177] ? __might_fault+0xa9/0x120 [ 3275.546075][T19177] ? __pfx___se_sys_clone3+0x10/0x10 [ 3275.551466][T19177] ? rcu_is_watching+0x15/0xb0 [ 3275.556284][T19177] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3275.562305][T19177] ? exc_page_fault+0x587/0x870 [ 3275.567186][T19177] ? do_syscall_64+0xb4/0x240 [ 3275.571891][T19177] do_syscall_64+0xf9/0x240 [ 3275.576434][T19177] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3275.582372][T19177] RIP: 0033:0x7f080fca9b99 [ 3275.586808][T19177] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3275.606532][T19177] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3275.615060][T19177] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3275.623068][T19177] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3275.631053][T19177] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3275.639035][T19177] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3275.647031][T19177] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3275.655039][T19177] [ 3275.662624][T19177] memory: usage 307200kB, limit 307200kB, failcnt 123358 [ 3275.669917][T19177] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3275.682207][T19177] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3275.689894][T19177] Memory cgroup stats for /syz0: [ 3275.690035][T19177] cache 0 [ 3275.698656][T19177] rss 0 [ 3275.701564][T19177] rss_huge 0 [ 3275.704857][T19177] shmem 0 [ 3275.708166][T19177] mapped_file 0 [ 3275.711736][T19177] dirty 0 [ 3275.714739][T19177] writeback 0 [ 3275.718180][T19177] workingset_refault_anon 39291 [ 3275.723131][T19177] workingset_refault_file 0 [ 3275.735282][T19177] swap 1372160 [ 3275.738732][T19177] swapcached 0 [ 3275.742132][T19177] pgpgin 282552 [ 3275.745886][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3275.751940][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3275.753228][T19177] pgpgout 282552 [ 3275.761939][ T8615] usb 3-1: USB disconnect, device number 37 [ 3275.771236][T19177] pgfault 529979 [ 3275.779897][T19177] pgmajfault 38076 [ 3275.784169][T19177] inactive_anon 0 [ 3275.789678][T19177] active_anon 0 [ 3275.793696][T19177] inactive_file 0 [ 3275.797554][T19177] active_file 0 [ 3275.801126][T19177] unevictable 0 [ 3275.805066][T19177] hierarchical_memory_limit 314572800 [ 3275.810595][T19177] hierarchical_memsw_limit 9223372036854771712 [ 3275.816832][T19177] total_cache 0 [ 3275.820300][T19177] total_rss 0 [ 3275.823582][T19177] total_rss_huge 0 [ 3275.827651][T19177] total_shmem 0 [ 3275.831172][T19177] total_mapped_file 0 [ 3275.835498][T19177] total_dirty 0 [ 3275.839011][T19177] total_writeback 0 [ 3275.842883][T19177] total_workingset_refault_anon 39291 [ 3275.848590][T19177] total_workingset_refault_file 0 [ 3275.853636][T19177] total_swap 1372160 [ 3275.857602][T19177] total_swapcached 0 [ 3275.861518][T19177] total_pgpgin 282552 [ 3275.872789][T19177] total_pgpgout 282552 [ 3275.877834][T19177] total_pgfault 529979 [ 3275.881987][T19177] total_pgmajfault 38076 [ 3275.888069][T19177] total_inactive_anon 0 [ 3275.892332][T19177] total_active_anon 0 [ 3275.905473][T19177] total_inactive_file 0 [ 3275.909809][T19177] total_active_file 0 [ 3275.915384][T19177] total_unevictable 0 [ 3275.919497][T19177] anon_cost 0 17:44:54 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x11}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3275.922889][T19177] file_cost 0 [ 3275.926594][T19177] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19177,uid=0 [ 3275.942297][T19177] Memory cgroup out of memory: Killed process 19177 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3276.225370][ T8615] usb 3-1: new high-speed USB device number 38 using dummy_hcd [ 3276.366863][T19178] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3276.377344][T19178] CPU: 1 PID: 19178 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3276.387891][T19178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3276.397971][T19178] Call Trace: [ 3276.401356][T19178] [ 3276.404306][T19178] dump_stack_lvl+0x1e7/0x2e0 [ 3276.409006][T19178] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3276.414223][T19178] ? __pfx__printk+0x10/0x10 [ 3276.418855][T19178] ? ___ratelimit+0x4c4/0x670 [ 3276.423563][T19178] ? __pfx____ratelimit+0x10/0x10 [ 3276.428616][T19178] dump_header+0xda/0x6a0 [ 3276.432993][T19178] oom_kill_process+0x3a7/0x930 [ 3276.437882][T19178] out_of_memory+0xf67/0x1320 [ 3276.442602][T19178] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3276.448278][T19178] ? __pfx___mutex_lock+0x10/0x10 [ 3276.453333][T19178] ? __pfx_out_of_memory+0x10/0x10 [ 3276.458466][T19178] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3276.464028][T19178] ? __pfx_lock_release+0x10/0x10 [ 3276.469126][T19178] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3276.475231][T19178] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3276.480445][T19178] ? mem_cgroup_iter+0x422/0x560 [ 3276.485410][T19178] try_charge_memcg+0xda2/0x18a0 [ 3276.490419][T19178] ? __pfx_try_charge_memcg+0x10/0x10 [ 3276.495827][T19178] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3276.501581][T19178] ? __pfx_lock_release+0x10/0x10 [ 3276.506635][T19178] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3276.512455][T19178] __memcg_kmem_charge_page+0xe1/0x250 [ 3276.517942][T19178] memcg_charge_kernel_stack+0xa7/0x550 [ 3276.523526][T19178] dup_task_struct+0x40d/0x7d0 [ 3276.528315][T19178] copy_process+0x5d5/0x3fc0 [ 3276.532952][T19178] ? __might_fault+0xa9/0x120 [ 3276.535668][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3276.537658][T19178] ? __pfx_lock_release+0x10/0x10 [ 3276.537704][T19178] ? __pfx_copy_process+0x10/0x10 [ 3276.552823][T19178] ? __might_fault+0xc5/0x120 [ 3276.557551][T19178] ? __asan_memset+0x23/0x50 [ 3276.562190][T19178] kernel_clone+0x21d/0x8d0 [ 3276.566727][T19178] ? __pfx_kernel_clone+0x10/0x10 [ 3276.571793][T19178] __se_sys_clone3+0x2cb/0x350 [ 3276.576589][T19178] ? __pfx___se_sys_clone3+0x10/0x10 [ 3276.581893][T19178] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3276.587915][T19178] ? exc_page_fault+0x587/0x870 [ 3276.592809][T19178] ? do_syscall_64+0xb4/0x240 [ 3276.597530][T19178] do_syscall_64+0xf9/0x240 [ 3276.602113][T19178] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3276.608058][T19178] RIP: 0033:0x7f080fca9b99 [ 3276.612525][T19178] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3276.632241][T19178] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3276.640681][T19178] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3276.648688][T19178] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3276.656679][T19178] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3276.664678][T19178] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3276.672656][T19178] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3276.680681][T19178] [ 3276.684821][T19178] memory: usage 307200kB, limit 307200kB, failcnt 123779 [ 3276.692050][T19178] memory+swap: usage 308564kB, limit 9007199254740988kB, failcnt 0 [ 3276.700145][T19178] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3276.707683][T19178] Memory cgroup stats for /syz0: [ 3276.707837][T19178] cache 0 [ 3276.715928][T19178] rss 12288 [ 3276.719173][T19178] rss_huge 0 [ 3276.722482][T19178] shmem 0 [ 3276.725584][T19178] mapped_file 0 [ 3276.729151][T19178] dirty 0 [ 3276.732186][T19178] writeback 0 [ 3276.738353][T19178] workingset_refault_anon 39473 [ 3276.745495][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3276.746757][T19178] workingset_refault_file 0 17:44:55 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io(r1, &(0x7f0000000840)={0x2c, &(0x7f0000000580)={0x20, 0x31, 0x100, {0x100, 0x22, "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"}}, &(0x7f00000006c0)={0x0, 0x3, 0x16, @string={0x16, 0x3, "192a3333cda0f91e577108770ec2bd6a676d0ff3"}}, &(0x7f0000000700)={0x0, 0xf, 0x92, {0x5, 0xf, 0x92, 0x4, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0x6, 0x8}, @ss_container_id={0x14, 0x10, 0x4, 0x3, "46f0c47e9d59ae409c843828ebe909de"}, @generic={0x64, 0x10, 0xb, "45a78946f146f4aef2e51be7875699016a9bcbc550f14d4839792cca5346a2081f0cb1c1dc5b92b5d780fb98e8f572a9cddd550a6a676da01c2fcca06b5197c05fc2d0736f630253faddb768719c190bcb2569d91774e144706e595aae0019d6b4"}, @wireless={0xb, 0x10, 0x1, 0x8, 0x12, 0x6, 0x80, 0x1, 0x1}]}}, &(0x7f00000007c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x5b, 0x3, 0x79, 0x7f, "b57655c7", "6ebf2173"}}, &(0x7f0000000800)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x80, 0x3, 0x7f, 0x1, 0x1, 0x6}}}, &(0x7f0000000cc0)={0x84, &(0x7f0000000880)={0x20, 0x1, 0x55, "de081389a3b5c53d4bfda5262fde2ff1c7e59bbd56b5b7e0bb7fdabd957ecddaa22beba9e584c17db1197d11fe0cd5d67a7aafa9a886156aafb8abb697ad5138e6e49d61fd5c39e9491cef6cae9233bc683ac47826"}, &(0x7f0000000900)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000940)={0x0, 0x8, 0x1}, &(0x7f0000000980)={0x20, 0x0, 0x4, {0x2, 0x2}}, &(0x7f00000009c0)={0x20, 0x0, 0x4, {0x1e0, 0x68}}, &(0x7f0000000a00)={0x40, 0x7, 0x2, 0x4f}, &(0x7f0000000a40)={0x40, 0x9, 0x1, 0xf8}, &(0x7f0000000a80)={0x40, 0xb, 0x2, "1e7f"}, &(0x7f0000000ac0)={0x40, 0xf, 0x2, 0x9}, &(0x7f0000000b00)={0x40, 0x13, 0x6, @local}, &(0x7f0000000b40)={0x40, 0x17, 0x6, @random="5f7c6a815c7e"}, &(0x7f0000000b80)={0x40, 0x19, 0x2, "bb2d"}, &(0x7f0000000bc0)={0x40, 0x1a, 0x2, 0xff}, &(0x7f0000000c00)={0x40, 0x1c, 0x1, 0x85}, &(0x7f0000000c40)={0x40, 0x1e, 0x1, 0x3}, &(0x7f0000000c80)={0x40, 0x21, 0x1, 0x26}}) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x40, 0x23, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f00000000c0)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) (async) syz_usb_disconnect(r1) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000140)={0x14, &(0x7f00000001c0)={0x0, 0x11, 0xf9, {0xf9, 0xf, "8ea44ee40003adb6c285744ee4776723875a7d00875e96b1989a4f75c042e4855ec5e5f19a289f1f238db3ed580e2f1d2a5f5e0fcc9b9db5a92d2461717df84b2240f24cef3b2a617501972c55a7a7165d546e4e9835df5ffc81b2db052a2c649fcd930edc18db3621b21a22af9a6883e788fedaef6d065520525c12e2d35ee784f086f2c38ef4f66240be37e34f996d00099e09786e28875690efd29f7bc27f5b9a168c28c7a3d302aac324f56e56717f714f5dfa578c9351e72bc7470a9b0b481c8f44b89cb366abf00b37f50f26ca6a965ea5586b5a0befd2fa872b395c72df825192aa05ce193ac9f8de0c073269b626ad55350755"}}, &(0x7f0000000100)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000500)={0x44, &(0x7f00000002c0)={0x20, 0x13, 0x4d, "f2af0d89579613bca79f67af462e9e1d4440d3e0b335d38fcd4360376f06da00dc34924f1259674a5128ce8e1dc780dd367312a8ad1ebe1e512476cc620a1a1b03f9a379c199ed8a55c7461ec8"}, &(0x7f0000000340)={0x0, 0xa, 0x1, 0xb3}, &(0x7f0000000380)={0x0, 0x8, 0x1, 0x5}, &(0x7f00000003c0)={0x20, 0x80, 0x1c, {0x400, 0x2, 0x8001, 0x1000, 0x4, 0x8fc1, 0x3, 0xb4, 0x0, 0xfffc, 0x4}}, &(0x7f0000000400)={0x20, 0x85, 0x4, 0x7ff}, &(0x7f0000000440)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000480)={0x20, 0x87, 0x2}, &(0x7f00000004c0)={0x20, 0x89, 0x2, 0x1}}) [ 3276.758151][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3276.765286][T19178] swap 1396736 [ 3276.778649][T19178] swapcached 8192 [ 3276.795296][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3276.801701][T19178] pgpgin 282747 [ 3276.804829][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3276.829148][T19178] pgpgout 282744 [ 3276.832865][T19178] pgfault 530250 [ 3276.848583][ T8615] usb 3-1: config 0 descriptor?? [ 3276.853722][T19178] pgmajfault 38248 [ 3276.858019][T19178] inactive_anon 8192 [ 3276.862057][T19178] active_anon 0 [ 3276.867015][T19178] inactive_file 0 [ 3276.870788][T19178] active_file 0 [ 3276.874375][T19178] unevictable 0 [ 3276.878765][T19178] hierarchical_memory_limit 314572800 [ 3276.884301][T19178] hierarchical_memsw_limit 9223372036854771712 [ 3276.901822][T19178] total_cache 0 [ 3276.905441][T19178] total_rss 12288 [ 3276.921398][T19178] total_rss_huge 0 [ 3276.927092][T19178] total_shmem 0 [ 3276.930722][T19178] total_mapped_file 0 [ 3276.934886][T19178] total_dirty 0 [ 3276.951612][T19178] total_writeback 0 [ 3276.956368][T19178] total_workingset_refault_anon 39473 [ 3276.970729][T19178] total_workingset_refault_file 0 [ 3276.977666][T19178] total_swap 1396736 [ 3276.981771][T19178] total_swapcached 8192 [ 3276.986777][T19178] total_pgpgin 282747 [ 3276.990936][T19178] total_pgpgout 282744 [ 3276.995781][T19178] total_pgfault 530250 [ 3277.000010][T19178] total_pgmajfault 38248 [ 3277.004447][T19178] total_inactive_anon 8192 [ 3277.011918][T19178] total_active_anon 0 [ 3277.022855][T19178] total_inactive_file 0 [ 3277.029629][T19178] total_active_file 0 [ 3277.033804][T19178] total_unevictable 0 [ 3277.040182][T19178] anon_cost 0 [ 3277.043674][T19178] file_cost 0 [ 3277.047647][T19178] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19178,uid=0 [ 3277.064014][T19178] Memory cgroup out of memory: Killed process 19178 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:55 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x14}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) 17:44:55 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="06e6a6da1f048a4cf8333ea715deeb1699483aa11a7ef8a7006c3f4e48d303da273d5ab0f263162094310a7ae64eb3efd772e7ed0765837db69d252c20c7d17c83984a0b205dbb3495ac1c055e13aec35871db5a2a7dad247095d59697ef538e71f9aef635e663e663d19634b2bfb81c850c6cd0373a16d893269f5516ba7a4c7f350df30735afb14495f46705190f4476ffbc5134007ce71351d0586c37b07d043c08c7c40d2557911657a596dfa8fcd5c8e837a293bc59d609f6b63851afd9e3f36b0890b49d52114ab6abd9c257e4df69fadf67f3f0a9"], 0x0}, 0x0) [ 3277.415565][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3277.425467][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3277.437070][ T8615] usb 3-1: USB disconnect, device number 38 [ 3277.575856][T19181] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3277.586232][T19181] CPU: 1 PID: 19181 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3277.596697][T19181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3277.606778][T19181] Call Trace: [ 3277.610069][T19181] [ 3277.613014][T19181] dump_stack_lvl+0x1e7/0x2e0 [ 3277.617720][T19181] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3277.622938][T19181] ? __pfx__printk+0x10/0x10 [ 3277.627564][T19181] ? ___ratelimit+0x4c4/0x670 [ 3277.632274][T19181] ? __pfx____ratelimit+0x10/0x10 [ 3277.637330][T19181] dump_header+0xda/0x6a0 [ 3277.641692][T19181] oom_kill_process+0x3a7/0x930 [ 3277.646571][T19181] out_of_memory+0xf67/0x1320 [ 3277.651287][T19181] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3277.656943][T19181] ? __pfx___mutex_lock+0x10/0x10 [ 3277.661984][T19181] ? __pfx_out_of_memory+0x10/0x10 [ 3277.667142][T19181] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3277.672702][T19181] ? __pfx_lock_release+0x10/0x10 [ 3277.677749][T19181] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3277.683845][T19181] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3277.689055][T19181] ? mem_cgroup_iter+0x422/0x560 [ 3277.694034][T19181] try_charge_memcg+0xda2/0x18a0 [ 3277.699005][T19181] ? __pfx_try_charge_memcg+0x10/0x10 [ 3277.704389][T19181] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3277.710290][T19181] ? __pfx_lock_release+0x10/0x10 [ 3277.715330][T19181] ? memcg_account_kmem+0x1e7/0x210 [ 3277.720545][T19181] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3277.726358][T19181] __memcg_kmem_charge_page+0xe1/0x250 [ 3277.731832][T19181] memcg_charge_kernel_stack+0x210/0x550 [ 3277.737482][T19181] dup_task_struct+0x15d/0x7d0 [ 3277.742272][T19181] copy_process+0x5d5/0x3fc0 [ 3277.746904][T19181] ? __might_fault+0xa9/0x120 [ 3277.751592][T19181] ? __pfx_lock_release+0x10/0x10 [ 3277.756643][T19181] ? __pfx_copy_process+0x10/0x10 [ 3277.761672][T19181] ? __might_fault+0xc5/0x120 [ 3277.766363][T19181] ? __asan_memset+0x23/0x50 [ 3277.770969][T19181] kernel_clone+0x21d/0x8d0 [ 3277.775492][T19181] ? __pfx_kernel_clone+0x10/0x10 [ 3277.780543][T19181] __se_sys_clone3+0x2cb/0x350 [ 3277.785319][T19181] ? __pfx___se_sys_clone3+0x10/0x10 [ 3277.790622][T19181] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3277.796633][T19181] ? exc_page_fault+0x587/0x870 [ 3277.801511][T19181] ? do_syscall_64+0xb4/0x240 [ 3277.806205][T19181] do_syscall_64+0xf9/0x240 [ 3277.810738][T19181] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3277.816654][T19181] RIP: 0033:0x7f080fca9b99 [ 3277.821078][T19181] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3277.840692][T19181] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3277.849118][T19181] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3277.857099][T19181] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3277.865080][T19181] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3277.873056][T19181] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3277.881066][T19181] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3277.889055][T19181] [ 3277.893039][T19181] memory: usage 307200kB, limit 307200kB, failcnt 124217 [ 3277.910284][T19181] memory+swap: usage 308576kB, limit 9007199254740988kB, failcnt 0 [ 3277.918934][T19181] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3277.926667][T19181] Memory cgroup stats for /syz0: [ 3277.926818][T19181] cache 0 [ 3277.934764][T19181] rss 0 [ 3277.938065][T19181] rss_huge 0 [ 3277.941359][T19181] shmem 0 [ 3277.944348][T19181] mapped_file 0 [ 3277.948678][T19181] dirty 0 [ 3277.951722][T19181] writeback 0 [ 3277.955062][T19181] workingset_refault_anon 39637 [ 3277.960670][T19181] workingset_refault_file 0 [ 3277.965560][T19181] swap 1409024 [ 3277.968960][T19181] swapcached 0 [ 3277.972344][T19181] pgpgin 282924 [ 3277.977180][T19181] pgpgout 282924 [ 3277.980757][T19181] pgfault 530496 [ 3277.984321][T19181] pgmajfault 38391 [ 3277.988770][T19181] inactive_anon 0 [ 3277.992433][T19181] active_anon 0 [ 3277.996556][T19181] inactive_file 0 [ 3278.000220][T19181] active_file 0 [ 3278.003697][T19181] unevictable 0 [ 3278.008247][T19181] hierarchical_memory_limit 314572800 [ 3278.013637][T19181] hierarchical_memsw_limit 9223372036854771712 [ 3278.020396][T19181] total_cache 0 [ 3278.023887][T19181] total_rss 0 [ 3278.029474][T19181] total_rss_huge 0 [ 3278.033229][T19181] total_shmem 0 [ 3278.037287][T19181] total_mapped_file 0 [ 3278.041300][T19181] total_dirty 0 [ 3278.044767][T19181] total_writeback 0 [ 3278.049114][T19181] total_workingset_refault_anon 39637 [ 3278.054488][T19181] total_workingset_refault_file 0 [ 3278.060360][T19181] total_swap 1409024 [ 3278.064286][T19181] total_swapcached 0 [ 3278.068735][T19181] total_pgpgin 282924 [ 3278.072745][T19181] total_pgpgout 282924 [ 3278.075893][ T8615] usb 3-1: new high-speed USB device number 39 using dummy_hcd [ 3278.077610][T19181] total_pgfault 530496 [ 3278.088891][T19181] total_pgmajfault 38391 [ 3278.093220][T19181] total_inactive_anon 0 [ 3278.097927][T19181] total_active_anon 0 [ 3278.101936][T19181] total_inactive_file 0 [ 3278.106711][T19181] total_active_file 0 [ 3278.110704][T19181] total_unevictable 0 [ 3278.114685][T19181] anon_cost 0 [ 3278.119074][T19181] file_cost 0 [ 3278.122418][T19181] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19181,uid=0 [ 3278.141985][T19181] Memory cgroup out of memory: Killed process 19181 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:44:56 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x15}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3278.335315][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3278.468499][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3278.487499][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3278.505545][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3278.514649][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3278.555472][ T8615] usb 3-1: config 0 descriptor?? [ 3278.649873][T19187] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3278.660267][T19187] CPU: 0 PID: 19187 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3278.670748][T19187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3278.680842][T19187] Call Trace: [ 3278.684160][T19187] [ 3278.687131][T19187] dump_stack_lvl+0x1e7/0x2e0 [ 3278.691851][T19187] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3278.697092][T19187] ? __pfx__printk+0x10/0x10 [ 3278.701743][T19187] ? ___ratelimit+0x4c4/0x670 [ 3278.706449][T19187] ? __pfx____ratelimit+0x10/0x10 [ 3278.711505][T19187] dump_header+0xda/0x6a0 [ 3278.715868][T19187] oom_kill_process+0x3a7/0x930 [ 3278.720766][T19187] out_of_memory+0xf67/0x1320 [ 3278.725482][T19187] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3278.731152][T19187] ? __pfx___mutex_lock+0x10/0x10 [ 3278.736208][T19187] ? __pfx_out_of_memory+0x10/0x10 [ 3278.741354][T19187] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3278.746917][T19187] ? __pfx_lock_release+0x10/0x10 [ 3278.751975][T19187] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3278.758069][T19187] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3278.763306][T19187] ? mem_cgroup_iter+0x422/0x560 [ 3278.768289][T19187] try_charge_memcg+0xda2/0x18a0 [ 3278.773298][T19187] ? __pfx_try_charge_memcg+0x10/0x10 [ 3278.778698][T19187] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3278.784447][T19187] ? __pfx_lock_release+0x10/0x10 [ 3278.789525][T19187] ? memcg_account_kmem+0x1e7/0x210 [ 3278.794855][T19187] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3278.800673][T19187] __memcg_kmem_charge_page+0xe1/0x250 [ 3278.806164][T19187] memcg_charge_kernel_stack+0x210/0x550 [ 3278.811857][T19187] dup_task_struct+0x40d/0x7d0 [ 3278.816673][T19187] copy_process+0x5d5/0x3fc0 [ 3278.821339][T19187] ? __might_fault+0xa9/0x120 [ 3278.826058][T19187] ? __pfx_lock_release+0x10/0x10 [ 3278.831137][T19187] ? __pfx_copy_process+0x10/0x10 [ 3278.836202][T19187] ? __might_fault+0xc5/0x120 [ 3278.841109][T19187] ? __asan_memset+0x23/0x50 [ 3278.845766][T19187] kernel_clone+0x21d/0x8d0 [ 3278.850337][T19187] ? __pfx_kernel_clone+0x10/0x10 [ 3278.855427][T19187] __se_sys_clone3+0x2cb/0x350 [ 3278.860236][T19187] ? __pfx___se_sys_clone3+0x10/0x10 [ 3278.865594][T19187] ? do_syscall_64+0x108/0x240 [ 3278.870423][T19187] ? do_syscall_64+0xb4/0x240 [ 3278.875143][T19187] do_syscall_64+0xf9/0x240 [ 3278.879695][T19187] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3278.885636][T19187] RIP: 0033:0x7f080fca9b99 [ 3278.890074][T19187] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3278.909693][T19187] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3278.918139][T19187] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3278.926161][T19187] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3278.934164][T19187] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3278.943047][T19187] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3278.951056][T19187] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3278.959086][T19187] [ 3278.972422][T19187] memory: usage 307200kB, limit 307200kB, failcnt 124683 [ 3278.979586][T19187] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3278.988358][T19187] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3278.996106][T19187] Memory cgroup stats for /syz0: [ 3278.996255][T19187] cache 0 [ 3279.006321][T19187] rss 12288 [ 3279.009451][T19187] rss_huge 0 [ 3279.012655][T19187] shmem 0 [ 3279.024634][T19187] mapped_file 0 [ 3279.029318][T19187] dirty 0 [ 3279.032282][T19187] writeback 0 [ 3279.036125][T19187] workingset_refault_anon 39790 [ 3279.041071][T19187] workingset_refault_file 0 [ 3279.045880][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3279.049414][T19187] swap 1359872 [ 3279.052769][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3279.060656][T19187] swapcached 12288 [ 3279.064385][ T8615] usb 3-1: USB disconnect, device number 39 [ 3279.069421][T19187] pgpgin 283087 [ 3279.075819][T19187] pgpgout 283084 [ 3279.079554][T19187] pgfault 530710 [ 3279.097687][T19187] pgmajfault 38521 [ 3279.107342][T19187] inactive_anon 0 [ 3279.121228][T19187] active_anon 12288 [ 3279.134222][T19187] inactive_file 0 [ 3279.144084][T19187] active_file 0 [ 3279.150931][T19187] unevictable 0 [ 3279.157869][T19187] hierarchical_memory_limit 314572800 [ 3279.170133][T19187] hierarchical_memsw_limit 9223372036854771712 [ 3279.183348][T19187] total_cache 0 [ 3279.190462][T19187] total_rss 12288 [ 3279.198725][T19187] total_rss_huge 0 [ 3279.207058][T19187] total_shmem 0 [ 3279.215197][T19187] total_mapped_file 0 [ 3279.223778][T19187] total_dirty 0 [ 3279.230806][T19187] total_writeback 0 [ 3279.239222][T19187] total_workingset_refault_anon 39790 [ 3279.255265][T19187] total_workingset_refault_file 0 [ 3279.260475][T19187] total_swap 1359872 [ 3279.268935][T19187] total_swapcached 12288 [ 3279.278885][T19187] total_pgpgin 283087 [ 3279.287553][T19187] total_pgpgout 283084 [ 3279.296196][T19187] total_pgfault 530710 [ 3279.304864][T19187] total_pgmajfault 38521 [ 3279.313871][T19187] total_inactive_anon 0 [ 3279.332657][T19187] total_active_anon 12288 [ 3279.346639][T19187] total_inactive_file 0 [ 3279.359931][T19187] total_active_file 0 [ 3279.373372][T19187] total_unevictable 0 [ 3279.388084][T19187] anon_cost 0 [ 3279.398302][T19187] file_cost 0 [ 3279.408437][T19187] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19187,uid=0 [ 3279.425785][T19187] Memory cgroup out of memory: Killed process 19187 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3279.465329][ T8615] usb 3-1: new high-speed USB device number 40 using dummy_hcd 17:44:57 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x1a}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3279.745278][ T8615] usb 3-1: Using ep0 maxpacket: 8 17:44:58 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3279.865458][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3279.897833][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3279.919608][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3279.950673][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3279.978754][ T8615] usb 3-1: config 0 descriptor?? [ 3280.128193][T19190] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3280.139218][T19190] CPU: 0 PID: 19190 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3280.149675][T19190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3280.159758][T19190] Call Trace: [ 3280.163063][T19190] [ 3280.166016][T19190] dump_stack_lvl+0x1e7/0x2e0 [ 3280.170728][T19190] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3280.175952][T19190] ? __pfx__printk+0x10/0x10 [ 3280.180569][T19190] ? ___ratelimit+0x4c4/0x670 [ 3280.185266][T19190] ? __pfx____ratelimit+0x10/0x10 [ 3280.190314][T19190] dump_header+0xda/0x6a0 [ 3280.194656][T19190] oom_kill_process+0x3a7/0x930 [ 3280.199531][T19190] out_of_memory+0xf67/0x1320 [ 3280.204239][T19190] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3280.209890][T19190] ? __pfx___mutex_lock+0x10/0x10 [ 3280.214963][T19190] ? __pfx_out_of_memory+0x10/0x10 [ 3280.220134][T19190] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3280.225739][T19190] ? __pfx_lock_release+0x10/0x10 [ 3280.230797][T19190] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3280.236892][T19190] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3280.242123][T19190] ? mem_cgroup_iter+0x422/0x560 [ 3280.247094][T19190] try_charge_memcg+0xda2/0x18a0 [ 3280.252078][T19190] ? __pfx_try_charge_memcg+0x10/0x10 [ 3280.257472][T19190] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3280.263217][T19190] ? __pfx_lock_release+0x10/0x10 [ 3280.268288][T19190] ? memcg_account_kmem+0x1e7/0x210 [ 3280.273521][T19190] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3280.279345][T19190] __memcg_kmem_charge_page+0xe1/0x250 [ 3280.284856][T19190] memcg_charge_kernel_stack+0x210/0x550 [ 3280.290530][T19190] dup_task_struct+0x15d/0x7d0 [ 3280.295319][T19190] copy_process+0x5d5/0x3fc0 [ 3280.299962][T19190] ? __might_fault+0xa9/0x120 [ 3280.304690][T19190] ? __pfx_lock_release+0x10/0x10 [ 3280.309754][T19190] ? __pfx_copy_process+0x10/0x10 [ 3280.314791][T19190] ? __might_fault+0xc5/0x120 [ 3280.319492][T19190] ? __asan_memset+0x23/0x50 [ 3280.324128][T19190] kernel_clone+0x21d/0x8d0 [ 3280.328676][T19190] ? __pfx_kernel_clone+0x10/0x10 [ 3280.333768][T19190] __se_sys_clone3+0x2cb/0x350 [ 3280.338573][T19190] ? __pfx___se_sys_clone3+0x10/0x10 [ 3280.343886][T19190] ? rcu_is_watching+0x15/0xb0 [ 3280.348693][T19190] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3280.354715][T19190] ? exc_page_fault+0x587/0x870 [ 3280.359595][T19190] ? do_syscall_64+0xb4/0x240 [ 3280.364308][T19190] do_syscall_64+0xf9/0x240 [ 3280.368843][T19190] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3280.374768][T19190] RIP: 0033:0x7f080fca9b99 [ 3280.379195][T19190] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3280.398838][T19190] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3280.407288][T19190] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3280.415300][T19190] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3280.423301][T19190] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3280.431282][T19190] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3280.439270][T19190] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3280.447293][T19190] [ 3280.451042][T19190] memory: usage 307180kB, limit 307200kB, failcnt 125094 [ 3280.459217][T19190] memory+swap: usage 308556kB, limit 9007199254740988kB, failcnt 0 [ 3280.467859][T19190] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3280.475544][T19190] Memory cgroup stats for /syz0: [ 3280.475694][T19190] cache 0 [ 3280.483741][T19190] rss 8192 [ 3280.486985][T19190] rss_huge 0 [ 3280.490370][T19190] shmem 0 [ 3280.493420][T19190] mapped_file 0 [ 3280.497176][T19190] dirty 0 [ 3280.500254][T19190] writeback 0 [ 3280.503616][T19190] workingset_refault_anon 39939 [ 3280.508717][T19190] workingset_refault_file 0 [ 3280.513397][T19190] swap 1400832 [ 3280.517112][T19190] swapcached 8192 [ 3280.520904][T19190] pgpgin 283248 [ 3280.524504][T19190] pgpgout 283246 [ 3280.528422][T19190] pgfault 530946 [ 3280.532121][T19190] pgmajfault 38668 [ 3280.536063][T19190] inactive_anon 0 [ 3280.539804][T19190] active_anon 4096 [ 3280.543604][T19190] inactive_file 0 [ 3280.547474][T19190] active_file 0 [ 3280.551073][T19190] unevictable 0 [ 3280.554633][T19190] hierarchical_memory_limit 314572800 [ 3280.560257][T19190] hierarchical_memsw_limit 9223372036854771712 [ 3280.566672][T19190] total_cache 0 [ 3280.570349][T19190] total_rss 8192 [ 3280.574099][T19190] total_rss_huge 0 [ 3280.578375][T19190] total_shmem 0 [ 3280.582027][T19190] total_mapped_file 0 [ 3280.586264][T19190] total_dirty 0 [ 3280.589756][T19190] total_writeback 0 [ 3280.593564][T19190] total_workingset_refault_anon 39939 [ 3280.600127][T19190] total_workingset_refault_file 0 [ 3280.605610][T19190] total_swap 1400832 [ 3280.609643][T19190] total_swapcached 8192 [ 3280.613881][T19190] total_pgpgin 283248 [ 3280.618106][T19190] total_pgpgout 283246 [ 3280.622314][T19190] total_pgfault 530946 [ 3280.626610][T19190] total_pgmajfault 38668 [ 3280.631032][T19190] total_inactive_anon 0 [ 3280.635539][T19190] total_active_anon 4096 [ 3280.639878][T19190] total_inactive_file 0 [ 3280.644125][T19190] total_active_file 0 [ 3280.648241][T19190] total_unevictable 0 [ 3280.652464][T19190] anon_cost 0 [ 3280.661046][T19190] file_cost 0 [ 3280.664397][T19190] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19190,uid=0 [ 3280.680072][T19190] Memory cgroup out of memory: Killed process 19190 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3280.706048][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3280.712132][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3280.735878][ T8615] usb 3-1: USB disconnect, device number 40 17:44:59 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x38}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) 17:44:59 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0xa, {[@main=@item_4={0x3, 0x0, 0xb, "757274ec"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3281.236289][ T5101] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 3281.246205][ T5101] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 3281.254883][ T5101] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 3281.267783][ T5101] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 3281.283391][ T5101] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 3281.292622][ T5101] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 3281.441625][T19194] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3281.453025][T19194] CPU: 0 PID: 19194 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3281.463487][T19194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3281.473564][T19194] Call Trace: [ 3281.476857][T19194] [ 3281.479811][T19194] dump_stack_lvl+0x1e7/0x2e0 [ 3281.484520][T19194] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3281.489743][T19194] ? __pfx__printk+0x10/0x10 [ 3281.494339][T19194] ? ___ratelimit+0x4c4/0x670 [ 3281.499041][T19194] ? __pfx____ratelimit+0x10/0x10 [ 3281.504091][T19194] dump_header+0xda/0x6a0 [ 3281.508430][T19194] oom_kill_process+0x3a7/0x930 [ 3281.513288][T19194] out_of_memory+0xf67/0x1320 [ 3281.517983][T19194] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3281.523629][T19194] ? __pfx___mutex_lock+0x10/0x10 [ 3281.528663][T19194] ? __pfx_out_of_memory+0x10/0x10 [ 3281.533819][T19194] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3281.539398][T19194] ? __pfx_lock_release+0x10/0x10 [ 3281.544455][T19194] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3281.550571][T19194] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3281.555804][T19194] ? mem_cgroup_iter+0x422/0x560 [ 3281.560765][T19194] try_charge_memcg+0xda2/0x18a0 [ 3281.565751][T19194] ? __pfx_try_charge_memcg+0x10/0x10 [ 3281.571141][T19194] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3281.576895][T19194] ? __pfx_lock_release+0x10/0x10 [ 3281.581958][T19194] ? memcg_account_kmem+0x1e7/0x210 [ 3281.587190][T19194] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3281.593033][T19194] __memcg_kmem_charge_page+0xe1/0x250 [ 3281.598541][T19194] memcg_charge_kernel_stack+0x210/0x550 [ 3281.604199][T19194] dup_task_struct+0x40d/0x7d0 [ 3281.608987][T19194] copy_process+0x5d5/0x3fc0 [ 3281.613609][T19194] ? __might_fault+0xa9/0x120 [ 3281.618320][T19194] ? __pfx_lock_release+0x10/0x10 [ 3281.623369][T19194] ? __pfx_copy_process+0x10/0x10 [ 3281.628406][T19194] ? __might_fault+0xc5/0x120 [ 3281.633100][T19194] ? __asan_memset+0x23/0x50 [ 3281.637708][T19194] kernel_clone+0x21d/0x8d0 [ 3281.642232][T19194] ? __pfx_kernel_clone+0x10/0x10 [ 3281.647280][T19194] __se_sys_clone3+0x2cb/0x350 [ 3281.652056][T19194] ? __pfx___se_sys_clone3+0x10/0x10 [ 3281.657376][T19194] ? do_syscall_64+0x108/0x240 [ 3281.662160][T19194] ? do_syscall_64+0xb4/0x240 [ 3281.666869][T19194] do_syscall_64+0xf9/0x240 [ 3281.671390][T19194] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3281.677319][T19194] RIP: 0033:0x7f080fca9b99 [ 3281.681740][T19194] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3281.701352][T19194] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3281.709795][T19194] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3281.717778][T19194] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3281.725758][T19194] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3281.733732][T19194] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3281.741726][T19194] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3281.749731][T19194] [ 3281.754045][ T8615] usb 3-1: new high-speed USB device number 41 using dummy_hcd [ 3281.761873][T19194] memory: usage 307200kB, limit 307200kB, failcnt 125576 [ 3281.774983][T19194] memory+swap: usage 308508kB, limit 9007199254740988kB, failcnt 0 [ 3281.789072][T19194] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3281.796624][T19194] Memory cgroup stats for /syz0: [ 3281.796767][T19194] cache 0 [ 3281.804644][T19194] rss 20480 [ 3281.812495][T19194] rss_huge 0 [ 3281.819170][T19194] shmem 0 [ 3281.822199][T19194] mapped_file 0 [ 3281.825796][T19194] dirty 0 [ 3281.828754][T19194] writeback 0 [ 3281.832052][T19194] workingset_refault_anon 40109 [ 3281.837043][T19194] workingset_refault_file 0 [ 3281.841569][T19194] swap 1318912 [ 3281.844952][T19194] swapcached 20480 [ 3281.848919][T19194] pgpgin 283428 [ 3281.852393][T19194] pgpgout 283423 [ 3281.856087][T19194] pgfault 531209 [ 3281.859643][T19194] pgmajfault 38832 [ 3281.863366][T19194] inactive_anon 0 [ 3281.871799][T19194] active_anon 20480 [ 3281.877441][T19194] inactive_file 0 [ 3281.881197][T19194] active_file 0 [ 3281.884753][T19194] unevictable 0 [ 3281.892818][T19194] hierarchical_memory_limit 314572800 [ 3281.898795][T19194] hierarchical_memsw_limit 9223372036854771712 [ 3281.905055][T19194] total_cache 0 [ 3281.909784][T19194] total_rss 20480 [ 3281.913512][T19194] total_rss_huge 0 [ 3281.922294][T19194] total_shmem 0 [ 3281.926126][T19194] total_mapped_file 0 [ 3281.930224][T19194] total_dirty 0 [ 3281.933689][T19194] total_writeback 0 [ 3281.945603][T19194] total_workingset_refault_anon 40109 [ 3281.951027][T19194] total_workingset_refault_file 0 [ 3281.956154][T19194] total_swap 1318912 [ 3281.960065][T19194] total_swapcached 20480 [ 3281.964304][T19194] total_pgpgin 283428 [ 3281.968485][T19194] total_pgpgout 283423 [ 3281.972572][T19194] total_pgfault 531209 [ 3281.983696][T19194] total_pgmajfault 38832 [ 3281.988093][T19194] total_inactive_anon 0 [ 3281.992288][T19194] total_active_anon 20480 [ 3281.996725][T19194] total_inactive_file 0 [ 3282.000899][T19194] total_active_file 0 [ 3282.004927][T19194] total_unevictable 0 [ 3282.009022][T19194] anon_cost 0 [ 3282.012321][T19194] file_cost 0 [ 3282.019034][T19194] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19194,uid=0 [ 3282.035487][ T8615] usb 3-1: Using ep0 maxpacket: 8 17:45:00 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x3a}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3282.036082][T19194] Memory cgroup out of memory: Killed process 19194 (syz-executor.0) total-vm:54508kB, anon-rss:356kB, file-rss:8720kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3282.185819][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3282.208760][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3282.230416][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3282.248703][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3282.269896][ T8615] usb 3-1: config 0 descriptor?? [ 3282.456267][T19201] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3282.466569][T19201] CPU: 1 PID: 19201 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3282.477020][T19201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3282.487096][T19201] Call Trace: [ 3282.490395][T19201] [ 3282.493328][T19201] dump_stack_lvl+0x1e7/0x2e0 [ 3282.498025][T19201] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3282.503239][T19201] ? __pfx__printk+0x10/0x10 [ 3282.507836][T19201] ? ___ratelimit+0x4c4/0x670 [ 3282.512529][T19201] ? __pfx____ratelimit+0x10/0x10 [ 3282.517581][T19201] dump_header+0xda/0x6a0 [ 3282.521925][T19201] oom_kill_process+0x3a7/0x930 [ 3282.526799][T19201] out_of_memory+0xf67/0x1320 [ 3282.531504][T19201] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3282.537235][T19201] ? __pfx___mutex_lock+0x10/0x10 [ 3282.542272][T19201] ? __pfx_out_of_memory+0x10/0x10 [ 3282.547404][T19201] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3282.552964][T19201] ? __pfx_lock_release+0x10/0x10 [ 3282.558008][T19201] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3282.564090][T19201] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3282.569296][T19201] ? mem_cgroup_iter+0x422/0x560 [ 3282.574264][T19201] try_charge_memcg+0xda2/0x18a0 [ 3282.579234][T19201] ? __pfx_try_charge_memcg+0x10/0x10 [ 3282.584612][T19201] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3282.590336][T19201] ? __pfx_lock_release+0x10/0x10 [ 3282.595375][T19201] ? memcg_account_kmem+0x1e7/0x210 [ 3282.600590][T19201] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3282.606405][T19201] __memcg_kmem_charge_page+0xe1/0x250 [ 3282.611878][T19201] memcg_charge_kernel_stack+0x210/0x550 [ 3282.617526][T19201] dup_task_struct+0x15d/0x7d0 [ 3282.622305][T19201] copy_process+0x5d5/0x3fc0 [ 3282.626924][T19201] ? __might_fault+0xa9/0x120 [ 3282.631657][T19201] ? __pfx_lock_release+0x10/0x10 [ 3282.636724][T19201] ? __pfx_copy_process+0x10/0x10 [ 3282.641760][T19201] ? __might_fault+0xc5/0x120 [ 3282.646453][T19201] ? __asan_memset+0x23/0x50 [ 3282.651059][T19201] kernel_clone+0x21d/0x8d0 [ 3282.655589][T19201] ? __pfx_kernel_clone+0x10/0x10 [ 3282.660649][T19201] __se_sys_clone3+0x2cb/0x350 [ 3282.665429][T19201] ? __pfx___se_sys_clone3+0x10/0x10 [ 3282.670722][T19201] ? rcu_is_watching+0x15/0xb0 [ 3282.675511][T19201] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3282.681521][T19201] ? exc_page_fault+0x587/0x870 [ 3282.686405][T19201] ? do_syscall_64+0xb4/0x240 [ 3282.691106][T19201] do_syscall_64+0xf9/0x240 [ 3282.695672][T19201] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3282.701609][T19201] RIP: 0033:0x7f080fca9b99 [ 3282.706043][T19201] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3282.725677][T19201] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3282.734101][T19201] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3282.742102][T19201] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3282.750170][T19201] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3282.758150][T19201] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3282.766142][T19201] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3282.774144][T19201] [ 3282.781756][T19201] memory: usage 307200kB, limit 307200kB, failcnt 126006 [ 3282.791180][T19201] memory+swap: usage 308532kB, limit 9007199254740988kB, failcnt 0 [ 3282.814096][T19201] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3282.821918][T19201] Memory cgroup stats for /syz0: [ 3282.822149][T19201] cache 0 [ 3282.830779][T19201] rss 4096 [ 3282.833924][T19201] rss_huge 0 [ 3282.837659][T19201] shmem 0 [ 3282.840711][T19201] mapped_file 0 [ 3282.844253][T19201] dirty 0 [ 3282.850170][T19201] writeback 0 [ 3282.853510][T19201] workingset_refault_anon 40269 [ 3282.858689][T19201] workingset_refault_file 0 [ 3282.863218][T19201] swap 1372160 [ 3282.867039][T19201] swapcached 4096 [ 3282.870928][T19201] pgpgin 283603 [ 3282.874404][T19201] pgpgout 283602 [ 3282.878025][T19201] pgfault 531465 [ 3282.881594][T19201] pgmajfault 38980 [ 3282.885426][T19201] inactive_anon 0 [ 3282.889076][T19201] active_anon 0 [ 3282.892550][T19201] inactive_file 0 [ 3282.895837][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3282.896437][T19201] active_file 0 [ 3282.902242][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3282.905625][T19201] unevictable 0 [ 3282.905637][T19201] hierarchical_memory_limit 314572800 [ 3282.905647][T19201] hierarchical_memsw_limit 9223372036854771712 [ 3282.905658][T19201] total_cache 0 [ 3282.905667][T19201] total_rss 4096 [ 3282.905676][T19201] total_rss_huge 0 [ 3282.905686][T19201] total_shmem 0 [ 3282.905695][T19201] total_mapped_file 0 [ 3282.905705][T19201] total_dirty 0 [ 3282.905714][T19201] total_writeback 0 [ 3282.905724][T19201] total_workingset_refault_anon 40269 [ 3282.905734][T19201] total_workingset_refault_file 0 17:45:01 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3282.905745][T19201] total_swap 1372160 [ 3282.905753][T19201] total_swapcached 4096 [ 3282.905763][T19201] total_pgpgin 283603 [ 3282.945647][ T8615] usb 3-1: USB disconnect, device number 41 [ 3282.981306][T19201] total_pgpgout 283602 [ 3282.992565][T19201] total_pgfault 531465 [ 3283.004269][T19201] total_pgmajfault 38980 [ 3283.013043][T19201] total_inactive_anon 0 [ 3283.022117][T19201] total_active_anon 0 [ 3283.034433][T19201] total_inactive_file 0 [ 3283.046552][T19201] total_active_file 0 [ 3283.053515][T19201] total_unevictable 0 [ 3283.062680][T19201] anon_cost 0 [ 3283.070861][T19201] file_cost 0 [ 3283.074266][T19201] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19201,uid=0 [ 3283.090505][T19201] Memory cgroup out of memory: Killed process 19201 (syz-executor.0) total-vm:54508kB, anon-rss:380kB, file-rss:8736kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:01 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x96}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3283.335528][ T5100] Bluetooth: hci6: command 0x0409 tx timeout [ 3283.572416][T19204] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3283.583088][T19204] CPU: 1 PID: 19204 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3283.593569][T19204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3283.603636][T19204] Call Trace: [ 3283.606926][T19204] [ 3283.609952][T19204] dump_stack_lvl+0x1e7/0x2e0 [ 3283.614656][T19204] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3283.619865][T19204] ? __pfx__printk+0x10/0x10 [ 3283.624462][T19204] ? ___ratelimit+0x4c4/0x670 [ 3283.629149][T19204] ? __pfx____ratelimit+0x10/0x10 [ 3283.634207][T19204] dump_header+0xda/0x6a0 [ 3283.635968][ T8615] usb 3-1: new high-speed USB device number 42 using dummy_hcd [ 3283.638629][T19204] oom_kill_process+0x3a7/0x930 [ 3283.651045][T19204] out_of_memory+0xf67/0x1320 [ 3283.655870][T19204] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3283.661554][T19204] ? __pfx___mutex_lock+0x10/0x10 [ 3283.666605][T19204] ? __pfx_out_of_memory+0x10/0x10 [ 3283.671732][T19204] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3283.677301][T19204] ? __pfx_lock_release+0x10/0x10 [ 3283.682366][T19204] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3283.688456][T19204] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3283.693683][T19204] ? mem_cgroup_iter+0x422/0x560 [ 3283.698652][T19204] try_charge_memcg+0xda2/0x18a0 [ 3283.703623][T19204] ? __pfx_try_charge_memcg+0x10/0x10 [ 3283.709033][T19204] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3283.714762][T19204] ? __pfx_lock_release+0x10/0x10 [ 3283.719810][T19204] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3283.725626][T19204] __memcg_kmem_charge_page+0xe1/0x250 [ 3283.731211][T19204] memcg_charge_kernel_stack+0xa7/0x550 [ 3283.736786][T19204] dup_task_struct+0x15d/0x7d0 [ 3283.741590][T19204] copy_process+0x5d5/0x3fc0 [ 3283.746230][T19204] ? __might_fault+0xa9/0x120 [ 3283.750947][T19204] ? __pfx_lock_release+0x10/0x10 [ 3283.755997][T19204] ? __pfx_copy_process+0x10/0x10 [ 3283.761021][T19204] ? __might_fault+0xc5/0x120 [ 3283.765707][T19204] ? __asan_memset+0x23/0x50 [ 3283.770314][T19204] kernel_clone+0x21d/0x8d0 [ 3283.774830][T19204] ? __pfx_kernel_clone+0x10/0x10 [ 3283.779989][T19204] __se_sys_clone3+0x2cb/0x350 [ 3283.784762][T19204] ? __pfx___se_sys_clone3+0x10/0x10 [ 3283.790092][T19204] ? do_syscall_64+0x108/0x240 [ 3283.794892][T19204] ? do_syscall_64+0xb4/0x240 [ 3283.799603][T19204] do_syscall_64+0xf9/0x240 [ 3283.804152][T19204] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3283.810061][T19204] RIP: 0033:0x7f080fca9b99 [ 3283.814489][T19204] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3283.834207][T19204] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3283.842649][T19204] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3283.850741][T19204] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3283.858828][T19204] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3283.866902][T19204] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3283.874965][T19204] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3283.882954][T19204] [ 3283.887119][T19204] memory: usage 307200kB, limit 307200kB, failcnt 126443 [ 3283.894279][T19204] memory+swap: usage 308560kB, limit 9007199254740988kB, failcnt 0 [ 3283.902359][T19204] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3283.909838][T19204] Memory cgroup stats for /syz0: [ 3283.909989][T19204] cache 0 [ 3283.918149][T19204] rss 12288 [ 3283.921446][T19204] rss_huge 0 [ 3283.924752][T19204] shmem 0 [ 3283.927848][T19204] mapped_file 0 [ 3283.931421][T19204] dirty 0 [ 3283.934455][T19204] writeback 0 [ 3283.937909][T19204] workingset_refault_anon 40433 [ 3283.942838][T19204] workingset_refault_file 0 [ 3283.947760][T19204] swap 1392640 [ 3283.951239][T19204] swapcached 8192 [ 3283.954929][T19204] pgpgin 283777 [ 3283.959085][T19204] pgpgout 283774 [ 3283.962744][T19204] pgfault 531710 [ 3283.965656][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3283.966964][T19204] pgmajfault 39126 [ 3283.975557][T19204] inactive_anon 0 [ 3283.979340][T19204] active_anon 12288 [ 3283.983254][T19204] inactive_file 0 [ 3283.987616][T19204] active_file 0 [ 3283.991145][T19204] unevictable 0 [ 3283.994621][T19204] hierarchical_memory_limit 314572800 [ 3284.001134][T19204] hierarchical_memsw_limit 9223372036854771712 [ 3284.007811][T19204] total_cache 0 [ 3284.011416][T19204] total_rss 12288 [ 3284.015650][T19204] total_rss_huge 0 [ 3284.019529][T19204] total_shmem 0 [ 3284.023120][T19204] total_mapped_file 0 [ 3284.027889][T19204] total_dirty 0 [ 3284.031479][T19204] total_writeback 0 [ 3284.035807][T19204] total_workingset_refault_anon 40433 [ 3284.041284][T19204] total_workingset_refault_file 0 [ 3284.046937][T19204] total_swap 1392640 [ 3284.050962][T19204] total_swapcached 8192 [ 3284.055720][T19204] total_pgpgin 283777 [ 3284.059827][T19204] total_pgpgout 283774 [ 3284.063969][T19204] total_pgfault 531710 [ 3284.068664][T19204] total_pgmajfault 39126 [ 3284.072979][T19204] total_inactive_anon 0 [ 3284.077735][T19204] total_active_anon 12288 [ 3284.082191][T19204] total_inactive_file 0 [ 3284.086935][T19204] total_active_file 0 [ 3284.091080][T19204] total_unevictable 0 [ 3284.095594][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3284.095928][T19204] anon_cost 0 [ 3284.114022][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3284.115523][T19204] file_cost 0 [ 3284.124132][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3284.139245][T19204] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19204,uid=0 [ 3284.139535][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3284.155864][T19204] Memory cgroup out of memory: Killed process 19204 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3284.183989][ T8615] usb 3-1: config 0 descriptor?? 17:45:02 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async, rerun: 32) syz_usb_disconnect(0xffffffffffffffff) (async, rerun: 32) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0xa, {[@main=@item_4={0x3, 0x0, 0xb, "757274ec"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3284.265640][ T8615] usb 3-1: can't set config #0, error -71 [ 3284.291577][ T8615] usb 3-1: USB disconnect, device number 42 17:45:02 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xaa}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3284.654290][T19207] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3284.673373][T19207] CPU: 1 PID: 19207 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3284.683847][T19207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3284.693934][T19207] Call Trace: [ 3284.697226][T19207] [ 3284.700172][T19207] dump_stack_lvl+0x1e7/0x2e0 [ 3284.704886][T19207] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3284.710096][T19207] ? __pfx__printk+0x10/0x10 [ 3284.714700][T19207] ? ___ratelimit+0x4c4/0x670 [ 3284.719492][T19207] ? __pfx____ratelimit+0x10/0x10 [ 3284.724541][T19207] dump_header+0xda/0x6a0 [ 3284.728894][T19207] oom_kill_process+0x3a7/0x930 [ 3284.733780][T19207] out_of_memory+0xf67/0x1320 [ 3284.738484][T19207] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3284.744143][T19207] ? __pfx___mutex_lock+0x10/0x10 [ 3284.749188][T19207] ? __pfx_out_of_memory+0x10/0x10 [ 3284.754321][T19207] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3284.759887][T19207] ? __pfx_lock_release+0x10/0x10 [ 3284.764938][T19207] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3284.771027][T19207] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3284.776246][T19207] ? mem_cgroup_iter+0x422/0x560 [ 3284.781219][T19207] try_charge_memcg+0xda2/0x18a0 [ 3284.786190][T19207] ? __pfx_try_charge_memcg+0x10/0x10 [ 3284.791587][T19207] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3284.797333][T19207] ? __pfx_lock_release+0x10/0x10 [ 3284.802423][T19207] ? memcg_account_kmem+0x1e7/0x210 [ 3284.807661][T19207] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3284.813533][T19207] __memcg_kmem_charge_page+0xe1/0x250 [ 3284.819027][T19207] memcg_charge_kernel_stack+0x210/0x550 [ 3284.824680][T19207] dup_task_struct+0x40d/0x7d0 [ 3284.829460][T19207] copy_process+0x5d5/0x3fc0 [ 3284.834077][T19207] ? __might_fault+0xa9/0x120 [ 3284.838768][T19207] ? __pfx_lock_release+0x10/0x10 [ 3284.843813][T19207] ? __pfx_copy_process+0x10/0x10 [ 3284.848874][T19207] ? __might_fault+0xc5/0x120 [ 3284.853578][T19207] ? __asan_memset+0x23/0x50 [ 3284.858279][T19207] kernel_clone+0x21d/0x8d0 [ 3284.862836][T19207] ? __pfx_kernel_clone+0x10/0x10 [ 3284.867895][T19207] __se_sys_clone3+0x2cb/0x350 [ 3284.872711][T19207] ? __pfx___se_sys_clone3+0x10/0x10 [ 3284.878035][T19207] ? do_syscall_64+0x108/0x240 [ 3284.882992][T19207] ? do_syscall_64+0xb4/0x240 [ 3284.887687][T19207] do_syscall_64+0xf9/0x240 [ 3284.892221][T19207] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3284.898134][T19207] RIP: 0033:0x7f080fca9b99 [ 3284.902560][T19207] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3284.922180][T19207] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3284.930603][T19207] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3284.938582][T19207] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3284.946563][T19207] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3284.954542][T19207] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3284.962528][T19207] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3284.970519][T19207] [ 3284.975305][ T8615] usb 3-1: new high-speed USB device number 43 using dummy_hcd [ 3284.983219][T19207] memory: usage 307200kB, limit 307200kB, failcnt 126939 [ 3284.990613][T19207] memory+swap: usage 308532kB, limit 9007199254740988kB, failcnt 0 [ 3284.999096][T19207] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3285.006952][T19207] Memory cgroup stats for /syz0: [ 3285.007111][T19207] cache 0 [ 3285.015079][T19207] rss 0 [ 3285.018431][T19207] rss_huge 0 [ 3285.021801][T19207] shmem 0 [ 3285.024913][T19207] mapped_file 0 [ 3285.030118][T19207] dirty 0 [ 3285.033156][T19207] writeback 0 [ 3285.036818][T19207] workingset_refault_anon 40596 [ 3285.041751][T19207] workingset_refault_file 0 [ 3285.046449][T19207] swap 1363968 [ 3285.049846][T19207] swapcached 0 [ 3285.053239][T19207] pgpgin 283953 [ 3285.056838][T19207] pgpgout 283953 [ 3285.060404][T19207] pgfault 531958 [ 3285.063961][T19207] pgmajfault 39273 [ 3285.067741][T19207] inactive_anon 0 [ 3285.071391][T19207] active_anon 0 [ 3285.074855][T19207] inactive_file 0 [ 3285.078583][T19207] active_file 0 [ 3285.082061][T19207] unevictable 0 [ 3285.085595][T19207] hierarchical_memory_limit 314572800 [ 3285.090990][T19207] hierarchical_memsw_limit 9223372036854771712 [ 3285.097337][T19207] total_cache 0 [ 3285.100825][T19207] total_rss 0 [ 3285.104120][T19207] total_rss_huge 0 [ 3285.108651][T19207] total_shmem 0 [ 3285.112184][T19207] total_mapped_file 0 [ 3285.116784][T19207] total_dirty 0 [ 3285.120279][T19207] total_writeback 0 [ 3285.124108][T19207] total_workingset_refault_anon 40596 [ 3285.129588][T19207] total_workingset_refault_file 0 [ 3285.134666][T19207] total_swap 1363968 [ 3285.138665][T19207] total_swapcached 0 [ 3285.142583][T19207] total_pgpgin 283953 [ 3285.146841][T19207] total_pgpgout 283953 [ 3285.151145][T19207] total_pgfault 531958 [ 3285.155298][T19207] total_pgmajfault 39273 [ 3285.159766][T19207] total_inactive_anon 0 [ 3285.164014][T19207] total_active_anon 0 [ 3285.168083][T19207] total_inactive_file 0 [ 3285.172255][T19207] total_active_file 0 [ 3285.176316][T19207] total_unevictable 0 [ 3285.180324][T19207] anon_cost 0 [ 3285.183634][T19207] file_cost 0 [ 3285.187062][T19207] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19207,uid=0 [ 3285.202641][T19207] Memory cgroup out of memory: Killed process 19207 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3285.225634][ T8615] usb 3-1: Using ep0 maxpacket: 8 17:45:03 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xe6}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3285.345464][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3285.359519][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3285.381119][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3285.396683][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3285.416403][ T8615] usb 3-1: config 0 descriptor?? [ 3285.434221][ T5100] Bluetooth: hci6: command 0x041b tx timeout [ 3285.554180][T19208] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3285.564512][T19208] CPU: 1 PID: 19208 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3285.574961][T19208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3285.585028][T19208] Call Trace: [ 3285.588342][T19208] [ 3285.591278][T19208] dump_stack_lvl+0x1e7/0x2e0 [ 3285.595981][T19208] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3285.601200][T19208] ? __pfx__printk+0x10/0x10 [ 3285.605803][T19208] ? ___ratelimit+0x4c4/0x670 [ 3285.610498][T19208] ? __pfx____ratelimit+0x10/0x10 [ 3285.615540][T19208] dump_header+0xda/0x6a0 [ 3285.619891][T19208] oom_kill_process+0x3a7/0x930 [ 3285.624771][T19208] out_of_memory+0xf67/0x1320 [ 3285.629465][T19208] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3285.635112][T19208] ? __pfx___mutex_lock+0x10/0x10 [ 3285.640155][T19208] ? __pfx_out_of_memory+0x10/0x10 [ 3285.645284][T19208] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3285.650838][T19208] ? __pfx_lock_release+0x10/0x10 [ 3285.655908][T19208] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3285.661990][T19208] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3285.667205][T19208] ? mem_cgroup_iter+0x422/0x560 [ 3285.672163][T19208] try_charge_memcg+0xda2/0x18a0 [ 3285.677135][T19208] ? __pfx_try_charge_memcg+0x10/0x10 [ 3285.682516][T19208] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3285.688244][T19208] ? __pfx_lock_release+0x10/0x10 [ 3285.693296][T19208] ? memcg_account_kmem+0x1e7/0x210 [ 3285.698535][T19208] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3285.704372][T19208] __memcg_kmem_charge_page+0xe1/0x250 [ 3285.709859][T19208] memcg_charge_kernel_stack+0x210/0x550 [ 3285.715518][T19208] dup_task_struct+0x40d/0x7d0 [ 3285.720305][T19208] copy_process+0x5d5/0x3fc0 [ 3285.724924][T19208] ? __might_fault+0xa9/0x120 [ 3285.729616][T19208] ? __pfx_lock_release+0x10/0x10 [ 3285.734663][T19208] ? __pfx_copy_process+0x10/0x10 [ 3285.739697][T19208] ? __might_fault+0xc5/0x120 [ 3285.744390][T19208] ? __asan_memset+0x23/0x50 [ 3285.749160][T19208] kernel_clone+0x21d/0x8d0 [ 3285.753678][T19208] ? __pfx_kernel_clone+0x10/0x10 [ 3285.758725][T19208] __se_sys_clone3+0x2cb/0x350 [ 3285.763504][T19208] ? __pfx___se_sys_clone3+0x10/0x10 [ 3285.768826][T19208] ? do_syscall_64+0x108/0x240 [ 3285.773635][T19208] ? do_syscall_64+0xb4/0x240 [ 3285.778323][T19208] do_syscall_64+0xf9/0x240 [ 3285.782848][T19208] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3285.788774][T19208] RIP: 0033:0x7f080fca9b99 [ 3285.793212][T19208] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3285.812825][T19208] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3285.821253][T19208] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3285.829229][T19208] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3285.837296][T19208] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3285.845282][T19208] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3285.853264][T19208] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3285.861259][T19208] [ 3285.871348][T19208] memory: usage 307200kB, limit 307200kB, failcnt 127251 [ 3285.893507][T19208] memory+swap: usage 308544kB, limit 9007199254740988kB, failcnt 0 [ 3285.902267][T19208] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3285.916360][T19208] Memory cgroup stats for /syz0: [ 3285.916646][T19208] cache 0 [ 3285.924615][T19208] rss 20480 [ 3285.928362][T19208] rss_huge 0 [ 3285.931656][T19208] shmem 0 [ 3285.934685][T19208] mapped_file 0 [ 3285.939274][T19208] dirty 0 [ 3285.942348][T19208] writeback 0 [ 3285.950326][T19208] workingset_refault_anon 40709 [ 3285.955541][T19208] workingset_refault_file 0 [ 3285.960067][T19208] swap 1355776 [ 3285.963532][T19208] swapcached 16384 [ 3285.972733][T19208] pgpgin 284081 [ 3285.976287][T19208] pgpgout 284076 [ 3285.979847][T19208] pgfault 532140 [ 3285.983388][T19208] pgmajfault 39376 [ 3285.993910][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3285.995029][T19208] inactive_anon 0 [ 3286.003550][T19208] active_anon 20480 [ 3286.004699][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3286.007753][T19208] inactive_file 0 [ 3286.016971][ T8615] usb 3-1: USB disconnect, device number 43 [ 3286.035506][T19208] active_file 0 [ 3286.039019][T19208] unevictable 0 [ 3286.042508][T19208] hierarchical_memory_limit 314572800 17:45:04 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) syz_usb_disconnect(0xffffffffffffffff) (async, rerun: 64) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (rerun: 64) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3286.058931][T19208] hierarchical_memsw_limit 9223372036854771712 [ 3286.073126][T19208] total_cache 0 [ 3286.076998][T19208] total_rss 20480 [ 3286.080660][T19208] total_rss_huge 0 [ 3286.094354][T19208] total_shmem 0 [ 3286.099108][T19208] total_mapped_file 0 [ 3286.103144][T19208] total_dirty 0 [ 3286.114613][T19208] total_writeback 0 [ 3286.118940][T19208] total_workingset_refault_anon 40709 [ 3286.124410][T19208] total_workingset_refault_file 0 [ 3286.130002][T19208] total_swap 1355776 [ 3286.133929][T19208] total_swapcached 16384 [ 3286.138910][T19208] total_pgpgin 284081 [ 3286.143063][T19208] total_pgpgout 284076 [ 3286.147921][T19208] total_pgfault 532140 [ 3286.152184][T19208] total_pgmajfault 39376 [ 3286.156937][T19208] total_inactive_anon 0 [ 3286.161259][T19208] total_active_anon 20480 [ 3286.165867][T19208] total_inactive_file 0 [ 3286.170129][T19208] total_active_file 0 [ 3286.174185][T19208] total_unevictable 0 [ 3286.178464][T19208] anon_cost 0 [ 3286.181903][T19208] file_cost 0 [ 3286.185365][T19208] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19208,uid=0 [ 3286.202785][T19208] Memory cgroup out of memory: Killed process 19208 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:04 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0xa, {[@main=@item_4={0x3, 0x0, 0xb, "757274ec"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) 17:45:04 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xf2}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3286.635277][ T8615] usb 3-1: new high-speed USB device number 44 using dummy_hcd [ 3286.686175][T19216] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3286.696638][T19216] CPU: 1 PID: 19216 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3286.707370][T19216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3286.717471][T19216] Call Trace: [ 3286.720773][T19216] [ 3286.723711][T19216] dump_stack_lvl+0x1e7/0x2e0 [ 3286.728411][T19216] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3286.733626][T19216] ? __pfx__printk+0x10/0x10 [ 3286.738274][T19216] ? ___ratelimit+0x4c4/0x670 [ 3286.742981][T19216] ? __pfx____ratelimit+0x10/0x10 [ 3286.748030][T19216] dump_header+0xda/0x6a0 [ 3286.752377][T19216] oom_kill_process+0x3a7/0x930 [ 3286.757265][T19216] out_of_memory+0xf67/0x1320 [ 3286.761994][T19216] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3286.767666][T19216] ? __pfx___mutex_lock+0x10/0x10 [ 3286.772716][T19216] ? __pfx_out_of_memory+0x10/0x10 [ 3286.777863][T19216] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3286.783411][T19216] ? __pfx_lock_release+0x10/0x10 [ 3286.788442][T19216] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3286.794514][T19216] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3286.799729][T19216] ? mem_cgroup_iter+0x422/0x560 [ 3286.804670][T19216] try_charge_memcg+0xda2/0x18a0 [ 3286.809655][T19216] ? __pfx_try_charge_memcg+0x10/0x10 [ 3286.815073][T19216] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3286.820820][T19216] ? __pfx_lock_release+0x10/0x10 [ 3286.825871][T19216] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3286.831682][T19216] __memcg_kmem_charge_page+0xe1/0x250 [ 3286.837158][T19216] memcg_charge_kernel_stack+0xa7/0x550 [ 3286.842715][T19216] dup_task_struct+0x15d/0x7d0 [ 3286.847489][T19216] copy_process+0x5d5/0x3fc0 [ 3286.852095][T19216] ? __might_fault+0xa9/0x120 [ 3286.856793][T19216] ? __pfx_lock_release+0x10/0x10 [ 3286.861862][T19216] ? __pfx_copy_process+0x10/0x10 [ 3286.866922][T19216] ? __might_fault+0xc5/0x120 [ 3286.871638][T19216] ? __asan_memset+0x23/0x50 [ 3286.876244][T19216] kernel_clone+0x21d/0x8d0 [ 3286.880757][T19216] ? __pfx_kernel_clone+0x10/0x10 [ 3286.885800][T19216] __se_sys_clone3+0x2cb/0x350 [ 3286.890598][T19216] ? __pfx___se_sys_clone3+0x10/0x10 [ 3286.895912][T19216] ? do_syscall_64+0x108/0x240 [ 3286.900705][T19216] ? do_syscall_64+0xb4/0x240 [ 3286.905410][T19216] do_syscall_64+0xf9/0x240 [ 3286.909969][T19216] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3286.915907][T19216] RIP: 0033:0x7f080fca9b99 [ 3286.920341][T19216] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3286.939961][T19216] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3286.948382][T19216] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3286.956000][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3286.956348][T19216] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3286.969382][T19216] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3286.977383][T19216] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3286.985388][T19216] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3286.993390][T19216] [ 3286.997216][T19216] memory: usage 307200kB, limit 307200kB, failcnt 127755 [ 3287.009133][T19216] memory+swap: usage 308568kB, limit 9007199254740988kB, failcnt 0 [ 3287.017642][T19216] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3287.024959][T19216] Memory cgroup stats for /syz0: [ 3287.025073][T19216] cache 0 [ 3287.033483][T19216] rss 12288 [ 3287.036713][T19216] rss_huge 0 [ 3287.039950][T19216] shmem 0 [ 3287.042911][T19216] mapped_file 0 [ 3287.046734][T19216] dirty 0 [ 3287.049716][T19216] writeback 0 [ 3287.053026][T19216] workingset_refault_anon 40890 [ 3287.058043][T19216] workingset_refault_file 0 [ 3287.062589][T19216] swap 1400832 [ 3287.068922][T19216] swapcached 8192 [ 3287.072590][T19216] pgpgin 284282 [ 3287.076142][T19216] pgpgout 284279 [ 3287.079714][T19216] pgfault 532413 [ 3287.083270][T19216] pgmajfault 39543 [ 3287.087203][T19216] inactive_anon 8192 [ 3287.091122][T19216] active_anon 4096 [ 3287.094859][T19216] inactive_file 0 [ 3287.098612][T19216] active_file 0 [ 3287.102091][T19216] unevictable 0 [ 3287.105834][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3287.115429][T19216] hierarchical_memory_limit 314572800 [ 3287.116821][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3287.122370][T19216] hierarchical_memsw_limit 9223372036854771712 [ 3287.131978][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3287.132008][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3287.140150][ T8615] usb 3-1: config 0 descriptor?? [ 3287.149076][T19216] total_cache 0 [ 3287.165529][T19216] total_rss 12288 [ 3287.169357][T19216] total_rss_huge 0 [ 3287.173238][T19216] total_shmem 0 [ 3287.177453][T19216] total_mapped_file 0 [ 3287.181612][T19216] total_dirty 0 [ 3287.194201][T19216] total_writeback 0 [ 3287.198337][T19216] total_workingset_refault_anon 40890 [ 3287.203792][T19216] total_workingset_refault_file 0 [ 3287.209404][T19216] total_swap 1400832 [ 3287.213413][T19216] total_swapcached 8192 [ 3287.218814][T19216] total_pgpgin 284282 [ 3287.223002][T19216] total_pgpgout 284279 [ 3287.227511][T19216] total_pgfault 532413 [ 3287.231601][T19216] total_pgmajfault 39543 [ 3287.236783][T19216] total_inactive_anon 8192 [ 3287.241428][T19216] total_active_anon 4096 [ 3287.246377][T19216] total_inactive_file 0 [ 3287.250678][T19216] total_active_file 0 [ 3287.254802][T19216] total_unevictable 0 [ 3287.259869][T19216] anon_cost 0 [ 3287.263365][T19216] file_cost 0 [ 3287.266857][T19216] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19216,uid=0 [ 3287.286649][T19216] Memory cgroup out of memory: Killed process 19216 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:05 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x126}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3287.495778][ T5100] Bluetooth: hci6: command 0x040f tx timeout [ 3287.525586][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3287.534354][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3287.553109][ T8615] usb 3-1: USB disconnect, device number 44 [ 3287.749605][T19217] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3287.759894][T19217] CPU: 1 PID: 19217 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3287.770360][T19217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3287.780435][T19217] Call Trace: [ 3287.783718][T19217] [ 3287.786656][T19217] dump_stack_lvl+0x1e7/0x2e0 [ 3287.791352][T19217] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3287.796601][T19217] ? __pfx__printk+0x10/0x10 [ 3287.801241][T19217] ? ___ratelimit+0x4c4/0x670 [ 3287.805950][T19217] ? __pfx____ratelimit+0x10/0x10 [ 3287.811075][T19217] dump_header+0xda/0x6a0 [ 3287.815434][T19217] oom_kill_process+0x3a7/0x930 [ 3287.820337][T19217] out_of_memory+0xf67/0x1320 [ 3287.825059][T19217] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3287.830832][T19217] ? __pfx___mutex_lock+0x10/0x10 [ 3287.835881][T19217] ? __pfx_out_of_memory+0x10/0x10 [ 3287.841035][T19217] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3287.846789][T19217] ? __pfx_lock_release+0x10/0x10 [ 3287.851838][T19217] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3287.857937][T19217] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3287.863248][T19217] ? mem_cgroup_iter+0x422/0x560 [ 3287.868235][T19217] try_charge_memcg+0xda2/0x18a0 [ 3287.873242][T19217] ? __pfx_try_charge_memcg+0x10/0x10 [ 3287.878628][T19217] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3287.884362][T19217] ? __pfx_lock_release+0x10/0x10 [ 3287.889402][T19217] ? memcg_account_kmem+0x1e7/0x210 [ 3287.894624][T19217] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3287.900445][T19217] __memcg_kmem_charge_page+0xe1/0x250 [ 3287.905923][T19217] memcg_charge_kernel_stack+0x210/0x550 [ 3287.911571][T19217] dup_task_struct+0x40d/0x7d0 [ 3287.916353][T19217] copy_process+0x5d5/0x3fc0 [ 3287.920963][T19217] ? __might_fault+0xa9/0x120 [ 3287.925675][T19217] ? __pfx_lock_release+0x10/0x10 [ 3287.930745][T19217] ? __pfx_copy_process+0x10/0x10 [ 3287.935781][T19217] ? __might_fault+0xc5/0x120 [ 3287.940472][T19217] ? __asan_memset+0x23/0x50 [ 3287.945077][T19217] kernel_clone+0x21d/0x8d0 [ 3287.949588][T19217] ? __pfx_kernel_clone+0x10/0x10 [ 3287.954635][T19217] __se_sys_clone3+0x2cb/0x350 [ 3287.959442][T19217] ? __pfx___se_sys_clone3+0x10/0x10 [ 3287.964752][T19217] ? do_syscall_64+0x108/0x240 [ 3287.969528][T19217] ? do_syscall_64+0xb4/0x240 [ 3287.974232][T19217] do_syscall_64+0xf9/0x240 [ 3287.978748][T19217] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3287.984663][T19217] RIP: 0033:0x7f080fca9b99 [ 3287.989082][T19217] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3288.008693][T19217] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3288.017125][T19217] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3288.025102][T19217] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3288.033092][T19217] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3288.041070][T19217] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3288.049051][T19217] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3288.057061][T19217] [ 3288.060626][T19217] memory: usage 307200kB, limit 307200kB, failcnt 128199 [ 3288.069199][T19217] memory+swap: usage 308516kB, limit 9007199254740988kB, failcnt 0 [ 3288.086160][T19217] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3288.093534][T19217] Memory cgroup stats for /syz0: [ 3288.093654][T19217] cache 0 [ 3288.101596][T19217] rss 20480 [ 3288.104707][T19217] rss_huge 0 [ 3288.107973][T19217] shmem 0 [ 3288.110927][T19217] mapped_file 0 [ 3288.114426][T19217] dirty 0 [ 3288.117463][T19217] writeback 0 [ 3288.120771][T19217] workingset_refault_anon 41020 [ 3288.125706][T19217] workingset_refault_file 0 [ 3288.130310][T19217] swap 1327104 [ 3288.133705][T19217] swapcached 16384 [ 3288.137765][T19217] pgpgin 284423 [ 3288.141260][T19217] pgpgout 284418 [ 3288.144813][T19217] pgfault 532619 [ 3288.148622][T19217] pgmajfault 39669 [ 3288.152373][T19217] inactive_anon 0 [ 3288.156118][T19217] active_anon 20480 [ 3288.159971][T19217] inactive_file 0 [ 3288.163657][T19217] active_file 0 [ 3288.167349][T19217] unevictable 0 [ 3288.170836][T19217] hierarchical_memory_limit 314572800 [ 3288.176383][T19217] hierarchical_memsw_limit 9223372036854771712 [ 3288.182558][T19217] total_cache 0 [ 3288.188082][T19217] total_rss 20480 [ 3288.191877][T19217] total_rss_huge 0 [ 3288.197405][T19217] total_shmem 0 [ 3288.200890][T19217] total_mapped_file 0 [ 3288.204867][T19217] total_dirty 0 [ 3288.208624][ T8615] usb 3-1: new high-speed USB device number 45 using dummy_hcd [ 3288.210360][T19217] total_writeback 0 [ 3288.220547][T19217] total_workingset_refault_anon 41020 [ 3288.233766][T19217] total_workingset_refault_file 0 [ 3288.239113][T19217] total_swap 1327104 [ 3288.243167][T19217] total_swapcached 16384 [ 3288.247628][T19217] total_pgpgin 284423 [ 3288.251716][T19217] total_pgpgout 284418 [ 3288.256515][T19217] total_pgfault 532619 [ 3288.260756][T19217] total_pgmajfault 39669 [ 3288.265218][T19217] total_inactive_anon 0 [ 3288.269412][T19217] total_active_anon 20480 [ 3288.273759][T19217] total_inactive_file 0 [ 3288.279100][T19217] total_active_file 0 [ 3288.283116][T19217] total_unevictable 0 [ 3288.287634][T19217] anon_cost 0 [ 3288.290940][T19217] file_cost 0 [ 3288.294231][T19217] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19217,uid=0 [ 3288.310409][T19217] Memory cgroup out of memory: Killed process 19217 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:06 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x132}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3288.455354][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3288.577045][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3288.596719][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3288.614273][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3288.629313][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3288.657955][ T8615] usb 3-1: config 0 descriptor?? [ 3288.914744][T19219] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3288.925542][T19219] CPU: 1 PID: 19219 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3288.936095][T19219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3288.946172][T19219] Call Trace: [ 3288.949477][T19219] [ 3288.952415][T19219] dump_stack_lvl+0x1e7/0x2e0 [ 3288.957122][T19219] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3288.962339][T19219] ? __pfx__printk+0x10/0x10 [ 3288.967033][T19219] ? ___ratelimit+0x4c4/0x670 [ 3288.971743][T19219] ? __pfx____ratelimit+0x10/0x10 [ 3288.976786][T19219] dump_header+0xda/0x6a0 [ 3288.981156][T19219] oom_kill_process+0x3a7/0x930 [ 3288.986024][T19219] out_of_memory+0xf67/0x1320 [ 3288.990714][T19219] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3288.996357][T19219] ? __pfx___mutex_lock+0x10/0x10 [ 3289.001392][T19219] ? __pfx_out_of_memory+0x10/0x10 [ 3289.006533][T19219] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3289.012090][T19219] ? __pfx_lock_release+0x10/0x10 [ 3289.017137][T19219] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3289.023238][T19219] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3289.028475][T19219] ? mem_cgroup_iter+0x422/0x560 [ 3289.033439][T19219] try_charge_memcg+0xda2/0x18a0 [ 3289.038404][T19219] ? __pfx_try_charge_memcg+0x10/0x10 [ 3289.043783][T19219] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3289.049509][T19219] ? __pfx_lock_release+0x10/0x10 [ 3289.054561][T19219] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3289.060378][T19219] __memcg_kmem_charge_page+0xe1/0x250 [ 3289.065853][T19219] memcg_charge_kernel_stack+0xa7/0x550 [ 3289.071413][T19219] dup_task_struct+0x15d/0x7d0 [ 3289.076191][T19219] copy_process+0x5d5/0x3fc0 [ 3289.080811][T19219] ? __might_fault+0xa9/0x120 [ 3289.085500][T19219] ? __pfx_lock_release+0x10/0x10 [ 3289.090542][T19219] ? __pfx_copy_process+0x10/0x10 [ 3289.095581][T19219] ? __might_fault+0xc5/0x120 [ 3289.100271][T19219] ? __asan_memset+0x23/0x50 [ 3289.104876][T19219] kernel_clone+0x21d/0x8d0 [ 3289.109394][T19219] ? __pfx_kernel_clone+0x10/0x10 [ 3289.114436][T19219] __se_sys_clone3+0x2cb/0x350 [ 3289.119212][T19219] ? __pfx___se_sys_clone3+0x10/0x10 [ 3289.124530][T19219] ? do_syscall_64+0x108/0x240 [ 3289.129398][T19219] ? do_syscall_64+0xb4/0x240 [ 3289.134109][T19219] do_syscall_64+0xf9/0x240 [ 3289.138631][T19219] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3289.144625][T19219] RIP: 0033:0x7f080fca9b99 [ 3289.149047][T19219] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3289.168657][T19219] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3289.177084][T19219] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3289.185062][T19219] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3289.193034][T19219] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3289.201010][T19219] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 17:45:07 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x94, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x1000, 0x0, 0x1, {0x22, 0x7}}, {{}, [{{0x9, 0x5, 0x2, 0x3, 0x220, 0x1f, 0x3d, 0x8}}]}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3289.208988][T19219] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3289.216971][T19219] [ 3289.225473][T19219] memory: usage 307200kB, limit 307200kB, failcnt 128735 [ 3289.258467][T19219] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3289.268356][ T8615] wacom 0003:056A:0059.01E9: item fetching failed at offset 5/7 [ 3289.276102][T19219] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3289.276123][T19219] Memory cgroup stats for /syz0: [ 3289.276247][T19219] cache 0 [ 3289.292164][T19219] rss 12288 [ 3289.295741][T19219] rss_huge 0 [ 3289.299050][T19219] shmem 0 [ 3289.301767][ T8615] wacom 0003:056A:0059.01E9: parse failed [ 3289.305863][T19219] mapped_file 0 [ 3289.313410][T19219] dirty 0 [ 3289.316189][ T8615] wacom: probe of 0003:056A:0059.01E9 failed with error -22 [ 3289.318894][T19219] writeback 0 [ 3289.338997][T19219] workingset_refault_anon 41225 [ 3289.360397][T19219] workingset_refault_file 0 [ 3289.365826][T19219] swap 1372160 [ 3289.369310][T19219] swapcached 8192 [ 3289.373014][T19219] pgpgin 284640 [ 3289.377146][T19219] pgpgout 284637 [ 3289.380772][T19219] pgfault 532948 [ 3289.384394][T19219] pgmajfault 39870 [ 3289.388888][T19219] inactive_anon 8192 [ 3289.392859][T19219] active_anon 4096 [ 3289.402363][T19219] inactive_file 0 [ 3289.406366][T19219] active_file 0 [ 3289.410010][T19219] unevictable 0 [ 3289.413678][T19219] hierarchical_memory_limit 314572800 [ 3289.423033][T19219] hierarchical_memsw_limit 9223372036854771712 [ 3289.435854][ T8615] usb 3-1: USB disconnect, device number 45 [ 3289.445027][T19219] total_cache 0 [ 3289.452022][T19219] total_rss 12288 [ 3289.459108][T19219] total_rss_huge 0 [ 3289.465020][T19219] total_shmem 0 [ 3289.477136][T19219] total_mapped_file 0 [ 3289.482668][T19219] total_dirty 0 [ 3289.487906][T19219] total_writeback 0 [ 3289.491843][T19219] total_workingset_refault_anon 41225 [ 3289.497575][T19219] total_workingset_refault_file 0 [ 3289.502718][T19219] total_swap 1372160 [ 3289.509923][T19219] total_swapcached 8192 [ 3289.514282][T19219] total_pgpgin 284640 [ 3289.518914][T19219] total_pgpgout 284637 [ 3289.523181][T19219] total_pgfault 532948 [ 3289.527826][T19219] total_pgmajfault 39870 [ 3289.532252][T19219] total_inactive_anon 8192 [ 3289.537321][T19219] total_active_anon 4096 [ 3289.541604][T19219] total_inactive_file 0 [ 3289.546047][T19219] total_active_file 0 [ 3289.550060][T19219] total_unevictable 0 [ 3289.554057][T19219] anon_cost 0 [ 3289.557577][T19219] file_cost 0 [ 3289.560890][T19219] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19219,uid=0 [ 3289.583590][T19219] Memory cgroup out of memory: Killed process 19219 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3289.585972][ T5100] Bluetooth: hci6: command 0x0419 tx timeout 17:45:07 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x14a}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3289.869028][T19222] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3289.879446][T19222] CPU: 1 PID: 19222 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3289.889909][T19222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3289.900003][T19222] Call Trace: [ 3289.903313][T19222] [ 3289.906273][T19222] dump_stack_lvl+0x1e7/0x2e0 [ 3289.910998][T19222] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3289.916244][T19222] ? __pfx__printk+0x10/0x10 [ 3289.920868][T19222] ? ___ratelimit+0x4c4/0x670 [ 3289.925583][T19222] ? __pfx____ratelimit+0x10/0x10 [ 3289.930653][T19222] dump_header+0xda/0x6a0 [ 3289.935029][T19222] oom_kill_process+0x3a7/0x930 [ 3289.939922][T19222] out_of_memory+0xf67/0x1320 [ 3289.944615][T19222] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3289.950269][T19222] ? __pfx___mutex_lock+0x10/0x10 [ 3289.955305][T19222] ? __pfx_out_of_memory+0x10/0x10 [ 3289.960435][T19222] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3289.965992][T19222] ? __pfx_lock_release+0x10/0x10 [ 3289.971029][T19222] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3289.977129][T19222] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3289.982343][T19222] ? mem_cgroup_iter+0x422/0x560 [ 3289.987318][T19222] try_charge_memcg+0xda2/0x18a0 [ 3289.992286][T19222] ? __pfx_try_charge_memcg+0x10/0x10 [ 3289.997667][T19222] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3290.003397][T19222] ? __pfx_lock_release+0x10/0x10 [ 3290.008433][T19222] ? memcg_account_kmem+0x1e7/0x210 [ 3290.013651][T19222] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3290.019467][T19222] __memcg_kmem_charge_page+0xe1/0x250 [ 3290.024957][T19222] memcg_charge_kernel_stack+0x210/0x550 [ 3290.030610][T19222] dup_task_struct+0x15d/0x7d0 [ 3290.035384][T19222] copy_process+0x5d5/0x3fc0 [ 3290.039996][T19222] ? __might_fault+0xa9/0x120 [ 3290.044682][T19222] ? __pfx_lock_release+0x10/0x10 [ 3290.049719][T19222] ? __pfx_copy_process+0x10/0x10 [ 3290.054838][T19222] ? __might_fault+0xc5/0x120 [ 3290.059534][T19222] ? __asan_memset+0x23/0x50 [ 3290.064139][T19222] kernel_clone+0x21d/0x8d0 [ 3290.068654][T19222] ? __pfx_kernel_clone+0x10/0x10 [ 3290.073704][T19222] __se_sys_clone3+0x2cb/0x350 [ 3290.078481][T19222] ? __pfx___se_sys_clone3+0x10/0x10 [ 3290.083783][T19222] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3290.089786][T19222] ? exc_page_fault+0x587/0x870 [ 3290.094658][T19222] ? do_syscall_64+0xb4/0x240 [ 3290.099352][T19222] do_syscall_64+0xf9/0x240 [ 3290.103871][T19222] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3290.109778][T19222] RIP: 0033:0x7f080fca9b99 [ 3290.114197][T19222] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3290.133817][T19222] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3290.142256][T19222] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3290.150317][T19222] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3290.158291][T19222] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 17:45:08 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_connect$hid(0x5, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x97, 0x5ac, 0x236, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x5, 0x50, 0x1, [{{0x9, 0x4, 0x0, 0x80, 0x2, 0x3, 0x1, 0x3, 0x81, {0x9, 0x21, 0x2, 0x1f, 0x1, {0x22, 0x644}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0x7, 0x7f}}, [{{0x9, 0x5, 0x2, 0x3, 0x10, 0xa, 0x3f, 0x4}}]}}}]}}]}}, &(0x7f00000002c0)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x110, 0x9, 0x62, 0x5c, 0x10, 0x51}, 0x38, &(0x7f00000000c0)={0x5, 0xf, 0x38, 0x3, [@ss_container_id={0x14, 0x10, 0x4, 0x21, "87e06deaf17ea036116788f765ffe13e"}, @wireless={0xb, 0x10, 0x1, 0x2, 0x40, 0x0, 0x4, 0x7f}, @ss_container_id={0x14, 0x10, 0x4, 0x28, "5410227e8a13005f1345525d24eb5d56"}]}, 0x5, [{0x3e, &(0x7f0000000100)=@string={0x3e, 0x3, "167710a82af2e13ec8b9e2bce007f45d389a85669c439cb2fd3cfcd30aac5f7688f1025705f2b7c3d86967354fddbf79ca4784bc428738f4c59a0750"}}, {0x17, &(0x7f0000000140)=@string={0x17, 0x3, "c2fe73f57a990c37b7867ea75e09f0589e27dedaa7"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x419}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0xf8ff}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x408}}]}) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3290.166262][T19222] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3290.174241][T19222] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3290.182318][T19222] [ 3290.197154][T19222] memory: usage 307200kB, limit 307200kB, failcnt 129050 [ 3290.204322][T19222] memory+swap: usage 308548kB, limit 9007199254740988kB, failcnt 0 [ 3290.225044][T19222] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3290.232667][T19222] Memory cgroup stats for /syz0: [ 3290.232818][T19222] cache 0 [ 3290.241118][T19222] rss 4096 [ 3290.244243][T19222] rss_huge 0 [ 3290.248998][T19222] shmem 0 [ 3290.252061][T19222] mapped_file 0 [ 3290.255925][T19222] dirty 0 [ 3290.258971][T19222] writeback 0 [ 3290.262358][T19222] workingset_refault_anon 41334 [ 3290.267734][T19222] workingset_refault_file 0 [ 3290.272348][T19222] swap 1372160 [ 3290.279059][T19222] swapcached 8192 [ 3290.282803][T19222] pgpgin 284762 [ 3290.286873][T19222] pgpgout 284760 [ 3290.290538][T19222] pgfault 533124 [ 3290.294180][T19222] pgmajfault 39972 [ 3290.298666][T19222] inactive_anon 0 [ 3290.302412][T19222] active_anon 4096 [ 3290.306313][T19222] inactive_file 0 [ 3290.309986][T19222] active_file 0 [ 3290.313442][T19222] unevictable 0 [ 3290.318163][T19222] hierarchical_memory_limit 314572800 [ 3290.326740][T19222] hierarchical_memsw_limit 9223372036854771712 [ 3290.333030][T19222] total_cache 0 [ 3290.337191][T19222] total_rss 4096 [ 3290.340852][T19222] total_rss_huge 0 [ 3290.344677][T19222] total_shmem 0 [ 3290.348901][T19222] total_mapped_file 0 [ 3290.353002][T19222] total_dirty 0 [ 3290.357213][T19222] total_writeback 0 [ 3290.361134][T19222] total_workingset_refault_anon 41334 [ 3290.367229][T19222] total_workingset_refault_file 0 [ 3290.372342][T19222] total_swap 1372160 [ 3290.377263][T19222] total_swapcached 8192 [ 3290.381543][T19222] total_pgpgin 284762 [ 3290.386130][T19222] total_pgpgout 284760 [ 3290.390382][T19222] total_pgfault 533124 [ 3290.394564][T19222] total_pgmajfault 39972 [ 3290.399630][T19222] total_inactive_anon 0 [ 3290.403859][T19222] total_active_anon 4096 [ 3290.408585][T19222] total_inactive_file 0 [ 3290.412815][T19222] total_active_file 0 [ 3290.417458][T19222] total_unevictable 0 [ 3290.421597][T19222] anon_cost 0 17:45:08 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x15a}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3290.424993][T19222] file_cost 0 [ 3290.429264][T19222] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19222,uid=0 [ 3290.453009][T19222] Memory cgroup out of memory: Killed process 19222 (syz-executor.0) total-vm:54508kB, anon-rss:380kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3290.515663][ T8615] usb 3-1: new high-speed USB device number 46 using dummy_hcd [ 3290.755629][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3290.795296][T19226] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3290.813295][T19226] CPU: 0 PID: 19226 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3290.823767][T19226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3290.833824][T19226] Call Trace: [ 3290.837136][T19226] [ 3290.840070][T19226] dump_stack_lvl+0x1e7/0x2e0 [ 3290.844762][T19226] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3290.849972][T19226] ? __pfx__printk+0x10/0x10 [ 3290.854566][T19226] ? ___ratelimit+0x4c4/0x670 [ 3290.859272][T19226] ? __pfx____ratelimit+0x10/0x10 [ 3290.864335][T19226] dump_header+0xda/0x6a0 [ 3290.868680][T19226] oom_kill_process+0x3a7/0x930 [ 3290.873537][T19226] out_of_memory+0xf67/0x1320 [ 3290.878262][T19226] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3290.883897][T19226] ? __pfx___mutex_lock+0x10/0x10 [ 3290.888924][T19226] ? __pfx_out_of_memory+0x10/0x10 [ 3290.894046][T19226] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3290.899595][T19226] ? __pfx_lock_release+0x10/0x10 [ 3290.904653][T19226] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3290.910746][T19226] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3290.915976][T19226] ? mem_cgroup_iter+0x422/0x560 [ 3290.920921][T19226] try_charge_memcg+0xda2/0x18a0 [ 3290.925883][T19226] ? __pfx_try_charge_memcg+0x10/0x10 [ 3290.931261][T19226] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3290.936986][T19226] ? __pfx_lock_release+0x10/0x10 [ 3290.942038][T19226] ? memcg_account_kmem+0x1e7/0x210 [ 3290.947248][T19226] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3290.953058][T19226] __memcg_kmem_charge_page+0xe1/0x250 [ 3290.958550][T19226] memcg_charge_kernel_stack+0x210/0x550 [ 3290.964230][T19226] dup_task_struct+0x15d/0x7d0 [ 3290.969017][T19226] copy_process+0x5d5/0x3fc0 [ 3290.973620][T19226] ? __might_fault+0xa9/0x120 [ 3290.978300][T19226] ? __pfx_lock_release+0x10/0x10 [ 3290.983339][T19226] ? __pfx_copy_process+0x10/0x10 [ 3290.988362][T19226] ? __might_fault+0xc5/0x120 [ 3290.993040][T19226] ? __asan_memset+0x23/0x50 [ 3290.997641][T19226] kernel_clone+0x21d/0x8d0 [ 3291.002148][T19226] ? __pfx_kernel_clone+0x10/0x10 [ 3291.007211][T19226] __se_sys_clone3+0x2cb/0x350 [ 3291.012016][T19226] ? __pfx___se_sys_clone3+0x10/0x10 [ 3291.017351][T19226] ? do_syscall_64+0x108/0x240 [ 3291.022150][T19226] ? do_syscall_64+0xb4/0x240 [ 3291.026837][T19226] do_syscall_64+0xf9/0x240 [ 3291.031352][T19226] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3291.037274][T19226] RIP: 0033:0x7f080fca9b99 [ 3291.041696][T19226] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3291.061324][T19226] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3291.069774][T19226] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3291.077752][T19226] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3291.085745][T19226] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3291.093716][T19226] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3291.101688][T19226] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3291.109695][T19226] [ 3291.116741][T19226] memory: usage 307200kB, limit 307200kB, failcnt 129406 [ 3291.123989][T19226] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3291.132692][T19226] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3291.140284][T19226] Memory cgroup stats for /syz0: [ 3291.140443][T19226] cache 0 [ 3291.148700][T19226] rss 0 [ 3291.151531][T19226] rss_huge 0 [ 3291.154757][T19226] shmem 0 [ 3291.158813][T19226] mapped_file 0 [ 3291.162309][T19226] dirty 0 [ 3291.166004][T19226] writeback 0 [ 3291.169322][T19226] workingset_refault_anon 41486 [ 3291.174187][T19226] workingset_refault_file 0 [ 3291.179473][T19226] swap 1368064 [ 3291.182869][T19226] swapcached 4096 [ 3291.185773][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3291.186859][T19226] pgpgin 284926 [ 3291.201411][T19226] pgpgout 284925 [ 3291.204981][T19226] pgfault 533368 [ 3291.209091][T19226] pgmajfault 40115 [ 3291.212906][T19226] inactive_anon 0 [ 3291.214895][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3291.217702][T19226] active_anon 0 [ 3291.230616][T19226] inactive_file 0 [ 3291.234303][T19226] active_file 0 [ 3291.238182][T19226] unevictable 0 [ 3291.241667][T19226] hierarchical_memory_limit 314572800 [ 3291.242095][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3291.247916][T19226] hierarchical_memsw_limit 9223372036854771712 [ 3291.262923][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3291.265701][T19226] total_cache 0 [ 3291.277409][ T8615] usb 3-1: config 0 descriptor?? [ 3291.280394][T19226] total_rss 0 [ 3291.291617][T19226] total_rss_huge 0 [ 3291.301705][T19226] total_shmem 0 [ 3291.305387][T19226] total_mapped_file 0 [ 3291.309484][T19226] total_dirty 0 [ 3291.313003][T19226] total_writeback 0 [ 3291.317271][T19226] total_workingset_refault_anon 41486 [ 3291.322759][T19226] total_workingset_refault_file 0 [ 3291.328078][T19226] total_swap 1368064 [ 3291.332114][T19226] total_swapcached 4096 [ 3291.336577][T19226] total_pgpgin 284926 [ 3291.342987][T19226] total_pgpgout 284925 [ 3291.347244][T19226] total_pgfault 533368 [ 3291.351549][T19226] total_pgmajfault 40115 [ 3291.356024][T19226] total_inactive_anon 0 [ 3291.360286][T19226] total_active_anon 0 [ 3291.364332][T19226] total_inactive_file 0 [ 3291.368737][T19226] total_active_file 0 [ 3291.372889][T19226] total_unevictable 0 [ 3291.377109][T19226] anon_cost 0 [ 3291.380549][T19226] file_cost 0 [ 3291.384008][T19226] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19226,uid=0 17:45:09 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x15e}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3291.400105][T19226] Memory cgroup out of memory: Killed process 19226 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3291.615470][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3291.621554][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3291.653235][ T8615] usb 3-1: USB disconnect, device number 46 [ 3291.870895][T19227] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3291.882376][T19227] CPU: 0 PID: 19227 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3291.892842][T19227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3291.902942][T19227] Call Trace: [ 3291.906236][T19227] [ 3291.909190][T19227] dump_stack_lvl+0x1e7/0x2e0 [ 3291.913906][T19227] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3291.919151][T19227] ? __pfx__printk+0x10/0x10 [ 3291.923779][T19227] ? ___ratelimit+0x4c4/0x670 [ 3291.928513][T19227] ? __pfx____ratelimit+0x10/0x10 [ 3291.933566][T19227] dump_header+0xda/0x6a0 [ 3291.937934][T19227] oom_kill_process+0x3a7/0x930 [ 3291.942837][T19227] out_of_memory+0xf67/0x1320 [ 3291.947565][T19227] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3291.953235][T19227] ? __pfx___mutex_lock+0x10/0x10 [ 3291.958285][T19227] ? __pfx_out_of_memory+0x10/0x10 [ 3291.963412][T19227] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3291.968967][T19227] ? __pfx_lock_release+0x10/0x10 [ 3291.974005][T19227] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3291.980083][T19227] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3291.985322][T19227] ? mem_cgroup_iter+0x422/0x560 [ 3291.990291][T19227] try_charge_memcg+0xda2/0x18a0 [ 3291.995275][T19227] ? __pfx_try_charge_memcg+0x10/0x10 [ 3292.000657][T19227] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3292.006383][T19227] ? __pfx_lock_release+0x10/0x10 [ 3292.011447][T19227] ? memcg_account_kmem+0x1e7/0x210 [ 3292.016666][T19227] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3292.022478][T19227] __memcg_kmem_charge_page+0xe1/0x250 [ 3292.027963][T19227] memcg_charge_kernel_stack+0x210/0x550 [ 3292.033611][T19227] dup_task_struct+0x15d/0x7d0 [ 3292.038387][T19227] copy_process+0x5d5/0x3fc0 [ 3292.042993][T19227] ? __might_fault+0xa9/0x120 [ 3292.047683][T19227] ? __pfx_lock_release+0x10/0x10 [ 3292.052727][T19227] ? __lock_acquire+0x1345/0x1fd0 [ 3292.057767][T19227] ? __pfx_copy_process+0x10/0x10 [ 3292.062809][T19227] ? __might_fault+0xc5/0x120 [ 3292.067504][T19227] ? __asan_memset+0x23/0x50 [ 3292.072133][T19227] kernel_clone+0x21d/0x8d0 [ 3292.076674][T19227] ? __pfx_kernel_clone+0x10/0x10 [ 3292.081717][T19227] ? __pfx_lock_release+0x10/0x10 [ 3292.086765][T19227] __se_sys_clone3+0x2cb/0x350 [ 3292.091545][T19227] ? __might_fault+0xa9/0x120 [ 3292.096241][T19227] ? __pfx___se_sys_clone3+0x10/0x10 [ 3292.101535][T19227] ? rcu_is_watching+0x15/0xb0 [ 3292.106328][T19227] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3292.112333][T19227] ? exc_page_fault+0x587/0x870 [ 3292.117209][T19227] ? do_syscall_64+0xb4/0x240 [ 3292.121925][T19227] do_syscall_64+0xf9/0x240 [ 3292.126448][T19227] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3292.132879][T19227] RIP: 0033:0x7f080fca9b99 [ 3292.137317][T19227] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3292.157051][T19227] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3292.165480][T19227] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3292.173461][T19227] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3292.181443][T19227] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3292.189446][T19227] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3292.197429][T19227] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3292.205424][T19227] [ 3292.228490][T19227] memory: usage 307200kB, limit 307200kB, failcnt 129900 [ 3292.241221][T19227] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3292.251163][T19227] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3292.259234][T19227] Memory cgroup stats for /syz0: [ 3292.259382][T19227] cache 0 [ 3292.268145][T19227] rss 8192 [ 3292.271339][T19227] rss_huge 0 [ 3292.274634][T19227] shmem 0 [ 3292.278441][T19227] mapped_file 0 [ 3292.281980][T19227] dirty 0 [ 3292.284947][T19227] writeback 0 [ 3292.288889][T19227] workingset_refault_anon 41679 [ 3292.293763][T19227] workingset_refault_file 0 [ 3292.298941][T19227] swap 1327104 [ 3292.302352][T19227] swapcached 4096 [ 3292.306394][T19227] pgpgin 285133 [ 3292.309873][T19227] pgpgout 285131 [ 3292.313434][T19227] pgfault 533659 [ 3292.320535][T19227] pgmajfault 40292 [ 3292.324295][T19227] inactive_anon 0 17:45:10 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x94, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x1000, 0x0, 0x1, {0x22, 0x7}}, {{}, [{{0x9, 0x5, 0x2, 0x3, 0x220, 0x1f, 0x3d, 0x8}}]}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3292.332259][T19227] active_anon 8192 [ 3292.338174][T19227] inactive_file 0 [ 3292.341851][T19227] active_file 0 [ 3292.346362][T19227] unevictable 0 [ 3292.349885][T19227] hierarchical_memory_limit 314572800 [ 3292.355594][T19227] hierarchical_memsw_limit 9223372036854771712 [ 3292.361767][T19227] total_cache 0 [ 3292.365581][T19227] total_rss 8192 [ 3292.369163][T19227] total_rss_huge 0 [ 3292.372906][T19227] total_shmem 0 [ 3292.385361][T19227] total_mapped_file 0 [ 3292.391260][T19227] total_dirty 0 [ 3292.401593][T19227] total_writeback 0 [ 3292.406281][T19227] total_workingset_refault_anon 41679 [ 3292.411693][T19227] total_workingset_refault_file 0 [ 3292.417264][T19227] total_swap 1327104 [ 3292.421217][T19227] total_swapcached 4096 [ 3292.428213][T19227] total_pgpgin 285133 [ 3292.432238][T19227] total_pgpgout 285131 [ 3292.436998][T19227] total_pgfault 533659 [ 3292.441280][T19227] total_pgmajfault 40292 [ 3292.446308][T19227] total_inactive_anon 0 [ 3292.450624][T19227] total_active_anon 8192 [ 3292.455016][T19227] total_inactive_file 0 [ 3292.459916][T19227] total_active_file 0 [ 3292.464020][T19227] total_unevictable 0 [ 3292.468424][T19227] anon_cost 0 [ 3292.471872][T19227] file_cost 0 17:45:10 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x16e}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3292.476447][T19227] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19227,uid=0 [ 3292.492389][T19227] Memory cgroup out of memory: Killed process 19227 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3292.495618][T15001] usb 3-1: new high-speed USB device number 47 using dummy_hcd [ 3292.767345][T15001] usb 3-1: Using ep0 maxpacket: 8 [ 3292.844985][T19231] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3292.855381][T19231] CPU: 1 PID: 19231 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3292.865837][T19231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3292.875925][T19231] Call Trace: [ 3292.879330][T19231] [ 3292.882304][T19231] dump_stack_lvl+0x1e7/0x2e0 [ 3292.887032][T19231] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3292.892287][T19231] ? __pfx__printk+0x10/0x10 [ 3292.896134][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3292.896888][T19231] ? ___ratelimit+0x4c4/0x670 [ 3292.912447][T19231] ? __pfx____ratelimit+0x10/0x10 [ 3292.917061][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3292.917512][T19231] dump_header+0xda/0x6a0 [ 3292.931592][T19231] oom_kill_process+0x3a7/0x930 [ 3292.936487][T19231] out_of_memory+0xf67/0x1320 [ 3292.938433][T15001] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3292.941183][T19231] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3292.941214][T19231] ? __pfx___mutex_lock+0x10/0x10 [ 3292.959145][T15001] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3292.960870][T19231] ? __pfx_out_of_memory+0x10/0x10 [ 3292.960927][T19231] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3292.975045][T15001] usb 3-1: config 0 descriptor?? [ 3292.979536][T19231] ? __pfx_lock_release+0x10/0x10 [ 3292.979570][T19231] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3292.979603][T19231] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3292.979628][T19231] ? mem_cgroup_iter+0x422/0x560 [ 3292.979659][T19231] try_charge_memcg+0xda2/0x18a0 [ 3292.979709][T19231] ? __pfx_try_charge_memcg+0x10/0x10 [ 3292.979732][T19231] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3292.979756][T19231] ? __pfx_lock_release+0x10/0x10 [ 3292.979787][T19231] ? memcg_account_kmem+0x1e7/0x210 [ 3292.979824][T19231] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3292.979850][T19231] __memcg_kmem_charge_page+0xe1/0x250 [ 3292.979883][T19231] memcg_charge_kernel_stack+0x210/0x550 [ 3292.979914][T19231] dup_task_struct+0x15d/0x7d0 [ 3292.979941][T19231] copy_process+0x5d5/0x3fc0 [ 3292.979978][T19231] ? __might_fault+0xa9/0x120 [ 3292.980004][T19231] ? __pfx_lock_release+0x10/0x10 [ 3292.980039][T19231] ? __pfx_copy_process+0x10/0x10 [ 3293.073896][T19231] ? __might_fault+0xc5/0x120 [ 3293.078599][T19231] ? __asan_memset+0x23/0x50 [ 3293.083218][T19231] kernel_clone+0x21d/0x8d0 [ 3293.087748][T19231] ? __pfx_kernel_clone+0x10/0x10 [ 3293.092837][T19231] __se_sys_clone3+0x2cb/0x350 [ 3293.097626][T19231] ? __pfx___se_sys_clone3+0x10/0x10 [ 3293.102951][T19231] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3293.108982][T19231] ? exc_page_fault+0x587/0x870 [ 3293.113875][T19231] ? do_syscall_64+0xb4/0x240 [ 3293.118591][T19231] do_syscall_64+0xf9/0x240 [ 3293.123134][T19231] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3293.129051][T19231] RIP: 0033:0x7f080fca9b99 [ 3293.133486][T19231] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3293.153097][T19231] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3293.161520][T19231] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3293.169495][T19231] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3293.177479][T19231] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3293.185484][T19231] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3293.193472][T19231] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3293.201501][T19231] [ 3293.205592][T19231] memory: usage 307200kB, limit 307200kB, failcnt 130282 [ 3293.220660][T19231] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3293.228787][T19231] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3293.236291][T19231] Memory cgroup stats for /syz0: [ 3293.236417][T19231] cache 0 [ 3293.244302][T19231] rss 12288 [ 3293.247484][T19231] rss_huge 0 [ 3293.250707][T19231] shmem 0 [ 3293.253661][T19231] mapped_file 0 [ 3293.257237][T19231] dirty 0 [ 3293.260215][T19231] writeback 0 [ 3293.263526][T19231] workingset_refault_anon 41842 [ 3293.268481][T19231] workingset_refault_file 0 [ 3293.272998][T19231] swap 1323008 [ 3293.276452][T19231] swapcached 12288 [ 3293.280196][T19231] pgpgin 285309 [ 3293.283759][T19231] pgpgout 285306 [ 3293.287400][T19231] pgfault 533916 [ 3293.290959][T19231] pgmajfault 40449 [ 3293.294673][T19231] inactive_anon 0 [ 3293.298366][T19231] active_anon 8192 [ 3293.302108][T19231] inactive_file 0 [ 3293.305829][T19231] active_file 0 [ 3293.309319][T19231] unevictable 0 [ 3293.312774][T19231] hierarchical_memory_limit 314572800 [ 3293.318720][T19231] hierarchical_memsw_limit 9223372036854771712 [ 3293.324998][T19231] total_cache 0 [ 3293.331267][T19231] total_rss 12288 [ 3293.334966][T19231] total_rss_huge 0 [ 3293.339049][T19231] total_shmem 0 [ 3293.342529][T19231] total_mapped_file 0 [ 3293.346747][T19231] total_dirty 0 [ 3293.350257][T19231] total_writeback 0 [ 3293.354083][T19231] total_workingset_refault_anon 41842 [ 3293.359529][T19231] total_workingset_refault_file 0 [ 3293.364563][T19231] total_swap 1323008 [ 3293.368683][T19231] total_swapcached 12288 [ 3293.372947][T19231] total_pgpgin 285309 [ 3293.377167][T19231] total_pgpgout 285306 [ 3293.381368][T19231] total_pgfault 533916 [ 3293.385639][T19231] total_pgmajfault 40449 [ 3293.389979][T19231] total_inactive_anon 0 [ 3293.394184][T19231] total_active_anon 8192 [ 3293.398565][T19231] total_inactive_file 0 [ 3293.402834][T19231] total_active_file 0 [ 3293.407074][T19231] total_unevictable 0 [ 3293.411182][T19231] anon_cost 0 [ 3293.414540][T19231] file_cost 0 [ 3293.418126][T19231] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19231,uid=0 [ 3293.433975][T19231] Memory cgroup out of memory: Killed process 19231 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3293.459498][T19224] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3293.472874][T19224] misc raw-gadget: fail, usb_gadget_register_driver returned -16 17:45:11 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x17a}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3293.505966][T15001] wacom 0003:056A:0059.01EA: unbalanced collection at end of report description [ 3293.518368][T15001] wacom 0003:056A:0059.01EA: parse failed [ 3293.524348][T15001] wacom: probe of 0003:056A:0059.01EA failed with error -22 [ 3293.701359][T15001] usb 3-1: USB disconnect, device number 47 [ 3293.825495][T19233] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3293.836346][T19233] CPU: 0 PID: 19233 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3293.846800][T19233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3293.856891][T19233] Call Trace: [ 3293.860187][T19233] [ 3293.863145][T19233] dump_stack_lvl+0x1e7/0x2e0 [ 3293.867865][T19233] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3293.873078][T19233] ? __pfx__printk+0x10/0x10 [ 3293.877677][T19233] ? ___ratelimit+0x4c4/0x670 [ 3293.882457][T19233] ? __pfx____ratelimit+0x10/0x10 [ 3293.887507][T19233] dump_header+0xda/0x6a0 [ 3293.891874][T19233] oom_kill_process+0x3a7/0x930 [ 3293.896760][T19233] out_of_memory+0xf67/0x1320 [ 3293.901479][T19233] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3293.907148][T19233] ? __pfx___mutex_lock+0x10/0x10 [ 3293.912199][T19233] ? __pfx_out_of_memory+0x10/0x10 [ 3293.917346][T19233] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3293.922921][T19233] ? __pfx_lock_release+0x10/0x10 [ 3293.927963][T19233] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3293.934058][T19233] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3293.939270][T19233] ? mem_cgroup_iter+0x422/0x560 [ 3293.944228][T19233] try_charge_memcg+0xda2/0x18a0 [ 3293.949223][T19233] ? __pfx_try_charge_memcg+0x10/0x10 [ 3293.954723][T19233] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3293.960465][T19233] ? __pfx_lock_release+0x10/0x10 [ 3293.965508][T19233] ? memcg_account_kmem+0x1e7/0x210 [ 3293.970733][T19233] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3293.976567][T19233] __memcg_kmem_charge_page+0xe1/0x250 [ 3293.982059][T19233] memcg_charge_kernel_stack+0x210/0x550 [ 3293.987720][T19233] dup_task_struct+0x40d/0x7d0 [ 3293.992502][T19233] copy_process+0x5d5/0x3fc0 [ 3293.997121][T19233] ? __might_fault+0xa9/0x120 [ 3294.001817][T19233] ? __pfx_lock_release+0x10/0x10 [ 3294.006866][T19233] ? __pfx_copy_process+0x10/0x10 [ 3294.011903][T19233] ? __might_fault+0xc5/0x120 [ 3294.016596][T19233] ? __asan_memset+0x23/0x50 [ 3294.021201][T19233] kernel_clone+0x21d/0x8d0 [ 3294.025716][T19233] ? __pfx_kernel_clone+0x10/0x10 [ 3294.030766][T19233] __se_sys_clone3+0x2cb/0x350 [ 3294.035563][T19233] ? __pfx___se_sys_clone3+0x10/0x10 [ 3294.040874][T19233] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3294.046880][T19233] ? exc_page_fault+0x587/0x870 [ 3294.051751][T19233] ? do_syscall_64+0xb4/0x240 [ 3294.056481][T19233] do_syscall_64+0xf9/0x240 [ 3294.061002][T19233] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3294.066914][T19233] RIP: 0033:0x7f080fca9b99 [ 3294.071362][T19233] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3294.090996][T19233] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3294.099420][T19233] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3294.107405][T19233] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3294.115384][T19233] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3294.123370][T19233] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3294.131343][T19233] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3294.139335][T19233] [ 3294.153287][T19233] memory: usage 307200kB, limit 307200kB, failcnt 130644 [ 3294.162813][T19233] memory+swap: usage 308532kB, limit 9007199254740988kB, failcnt 0 [ 3294.171031][T19233] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3294.178803][T19233] Memory cgroup stats for /syz0: [ 3294.178948][T19233] cache 0 [ 3294.186975][T19233] rss 4096 [ 3294.190045][T19233] rss_huge 0 [ 3294.193296][T19233] shmem 0 [ 3294.196775][T19233] mapped_file 0 [ 3294.200279][T19233] dirty 0 [ 3294.203232][T19233] writeback 0 [ 3294.207661][T19233] workingset_refault_anon 41991 [ 3294.212543][T19233] workingset_refault_file 0 [ 3294.217959][T19233] swap 1359872 [ 3294.221381][T19233] swapcached 0 [ 3294.224772][T19233] pgpgin 285469 [ 3294.228950][T19233] pgpgout 285468 [ 3294.232552][T19233] pgfault 534135 [ 3294.236894][T19233] pgmajfault 40580 [ 3294.240628][T19233] inactive_anon 0 [ 3294.244282][T19233] active_anon 4096 [ 3294.248728][T19233] inactive_file 0 [ 3294.252382][T19233] active_file 0 [ 3294.256465][T19233] unevictable 0 [ 3294.260874][T19233] hierarchical_memory_limit 314572800 [ 3294.267486][T19233] hierarchical_memsw_limit 9223372036854771712 [ 3294.273681][T19233] total_cache 0 [ 3294.277734][T19233] total_rss 4096 [ 3294.281308][T19233] total_rss_huge 0 [ 3294.285043][T19233] total_shmem 0 [ 3294.289388][T19233] total_mapped_file 0 [ 3294.293410][T19233] total_dirty 0 [ 3294.300709][T19233] total_writeback 0 [ 3294.304543][T19233] total_workingset_refault_anon 41991 [ 3294.310395][T19233] total_workingset_refault_file 0 [ 3294.315841][T19233] total_swap 1359872 [ 3294.319764][T19233] total_swapcached 0 [ 3294.323650][T19233] total_pgpgin 285469 [ 3294.327990][T19233] total_pgpgout 285468 [ 3294.332099][T19233] total_pgfault 534135 [ 3294.336245][T19233] total_pgmajfault 40580 [ 3294.340533][T19233] total_inactive_anon 0 [ 3294.344700][T19233] total_active_anon 4096 [ 3294.349006][T19233] total_inactive_file 0 [ 3294.353186][T19233] total_active_file 0 [ 3294.357305][T19233] total_unevictable 0 [ 3294.361383][T19233] anon_cost 0 [ 3294.364681][T19233] file_cost 0 [ 3294.368132][T19233] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19233,uid=0 [ 3294.383829][T19233] Memory cgroup out of memory: Killed process 19233 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:12 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x1a2}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) 17:45:12 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_connect$hid(0x5, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x97, 0x5ac, 0x236, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x5, 0x50, 0x1, [{{0x9, 0x4, 0x0, 0x80, 0x2, 0x3, 0x1, 0x3, 0x81, {0x9, 0x21, 0x2, 0x1f, 0x1, {0x22, 0x644}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0x7, 0x7f}}, [{{0x9, 0x5, 0x2, 0x3, 0x10, 0xa, 0x3f, 0x4}}]}}}]}}]}}, &(0x7f00000002c0)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x110, 0x9, 0x62, 0x5c, 0x10, 0x51}, 0x38, &(0x7f00000000c0)={0x5, 0xf, 0x38, 0x3, [@ss_container_id={0x14, 0x10, 0x4, 0x21, "87e06deaf17ea036116788f765ffe13e"}, @wireless={0xb, 0x10, 0x1, 0x2, 0x40, 0x0, 0x4, 0x7f}, @ss_container_id={0x14, 0x10, 0x4, 0x28, "5410227e8a13005f1345525d24eb5d56"}]}, 0x5, [{0x3e, &(0x7f0000000100)=@string={0x3e, 0x3, "167710a82af2e13ec8b9e2bce007f45d389a85669c439cb2fd3cfcd30aac5f7688f1025705f2b7c3d86967354fddbf79ca4784bc428738f4c59a0750"}}, {0x17, &(0x7f0000000140)=@string={0x17, 0x3, "c2fe73f57a990c37b7867ea75e09f0589e27dedaa7"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x419}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0xf8ff}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x408}}]}) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3294.815285][T19168] usb 3-1: new high-speed USB device number 48 using dummy_hcd [ 3294.843293][T19234] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3294.856314][T19234] CPU: 1 PID: 19234 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3294.866781][T19234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3294.876870][T19234] Call Trace: [ 3294.880160][T19234] [ 3294.883096][T19234] dump_stack_lvl+0x1e7/0x2e0 [ 3294.887909][T19234] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3294.893160][T19234] ? __pfx__printk+0x10/0x10 [ 3294.897780][T19234] ? ___ratelimit+0x4c4/0x670 [ 3294.902475][T19234] ? __pfx____ratelimit+0x10/0x10 [ 3294.907532][T19234] dump_header+0xda/0x6a0 [ 3294.911910][T19234] oom_kill_process+0x3a7/0x930 [ 3294.916808][T19234] out_of_memory+0xf67/0x1320 [ 3294.921630][T19234] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3294.927292][T19234] ? __pfx___mutex_lock+0x10/0x10 [ 3294.932712][T19234] ? __pfx_out_of_memory+0x10/0x10 [ 3294.937852][T19234] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3294.943435][T19234] ? __pfx_lock_release+0x10/0x10 [ 3294.948590][T19234] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3294.954685][T19234] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3294.959893][T19234] ? mem_cgroup_iter+0x422/0x560 [ 3294.964845][T19234] try_charge_memcg+0xda2/0x18a0 [ 3294.969830][T19234] ? __pfx_try_charge_memcg+0x10/0x10 [ 3294.975238][T19234] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3294.980986][T19234] ? __pfx_lock_release+0x10/0x10 [ 3294.986059][T19234] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3294.991914][T19234] __memcg_kmem_charge_page+0xe1/0x250 [ 3294.997420][T19234] memcg_charge_kernel_stack+0xa7/0x550 [ 3295.003013][T19234] dup_task_struct+0x40d/0x7d0 [ 3295.007815][T19234] copy_process+0x5d5/0x3fc0 [ 3295.012442][T19234] ? __might_fault+0xa9/0x120 [ 3295.017228][T19234] ? __pfx_lock_release+0x10/0x10 [ 3295.022305][T19234] ? __pfx_copy_process+0x10/0x10 [ 3295.027358][T19234] ? __might_fault+0xc5/0x120 [ 3295.032079][T19234] ? __asan_memset+0x23/0x50 [ 3295.036716][T19234] kernel_clone+0x21d/0x8d0 [ 3295.041246][T19234] ? __pfx_kernel_clone+0x10/0x10 [ 3295.046314][T19234] __se_sys_clone3+0x2cb/0x350 [ 3295.051130][T19234] ? __pfx___se_sys_clone3+0x10/0x10 [ 3295.056473][T19234] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3295.062503][T19234] ? exc_page_fault+0x587/0x870 [ 3295.067395][T19234] ? do_syscall_64+0xb4/0x240 [ 3295.072113][T19234] do_syscall_64+0xf9/0x240 [ 3295.076647][T19234] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3295.082589][T19234] RIP: 0033:0x7f080fca9b99 [ 3295.087038][T19234] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3295.106785][T19234] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3295.115244][T19234] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3295.123238][T19234] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3295.131666][T19234] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3295.139657][T19234] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3295.147642][T19234] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3295.155662][T19234] [ 3295.164473][T19234] memory: usage 307200kB, limit 307200kB, failcnt 131061 [ 3295.171860][T19234] memory+swap: usage 308492kB, limit 9007199254740988kB, failcnt 0 [ 3295.180013][T19234] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3295.187620][T19234] Memory cgroup stats for /syz0: [ 3295.187773][T19234] cache 0 [ 3295.195975][T19234] rss 12288 [ 3295.199112][T19234] rss_huge 0 [ 3295.202340][T19234] shmem 0 [ 3295.205600][T19234] mapped_file 0 [ 3295.209131][T19234] dirty 0 [ 3295.212088][T19234] writeback 0 [ 3295.216631][T19234] workingset_refault_anon 42148 [ 3295.221518][T19234] workingset_refault_file 0 [ 3295.226510][T19234] swap 1323008 [ 3295.229907][T19234] swapcached 12288 [ 3295.233648][T19234] pgpgin 285637 [ 3295.237470][T19234] pgpgout 285634 [ 3295.241045][T19234] pgfault 534373 [ 3295.244598][T19234] pgmajfault 40727 [ 3295.248944][T19234] inactive_anon 4096 [ 3295.252859][T19234] active_anon 8192 [ 3295.261230][T19234] inactive_file 0 [ 3295.264885][T19234] active_file 0 [ 3295.269212][T19234] unevictable 0 [ 3295.272874][T19234] hierarchical_memory_limit 314572800 [ 3295.279707][T19234] hierarchical_memsw_limit 9223372036854771712 [ 3295.286542][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3295.291778][T19234] total_cache 0 [ 3295.295795][T19234] total_rss 12288 [ 3295.299445][T19234] total_rss_huge 0 [ 3295.303172][T19234] total_shmem 0 [ 3295.307715][T19234] total_mapped_file 0 [ 3295.311729][T19234] total_dirty 0 [ 3295.315326][T19234] total_writeback 0 [ 3295.319357][T19234] total_workingset_refault_anon 42148 [ 3295.324771][T19234] total_workingset_refault_file 0 [ 3295.331016][T19234] total_swap 1323008 [ 3295.339599][T19234] total_swapcached 12288 [ 3295.344837][T19234] total_pgpgin 285637 [ 3295.349448][T19234] total_pgpgout 285634 [ 3295.353545][T19234] total_pgfault 534373 [ 3295.361962][T19234] total_pgmajfault 40727 [ 3295.366494][T19234] total_inactive_anon 4096 [ 3295.370915][T19234] total_active_anon 8192 [ 3295.375249][T19234] total_inactive_file 0 [ 3295.379634][T19234] total_active_file 0 [ 3295.383865][T19234] total_unevictable 0 [ 3295.395242][T19234] anon_cost 0 [ 3295.398573][T19234] file_cost 0 [ 3295.401978][T19234] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19234,uid=0 17:45:13 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x94, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x1000, 0x0, 0x1, {0x22, 0x7}}, {{}, [{{0x9, 0x5, 0x2, 0x3, 0x220, 0x1f, 0x3d, 0x8}}]}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3295.425905][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3295.438699][T19234] Memory cgroup out of memory: Killed process 19234 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3295.466122][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3295.505565][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3295.514670][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3295.533618][T19168] usb 3-1: config 0 descriptor?? 17:45:13 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x1b6}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3295.885769][T19168] usbhid 3-1:0.0: can't add hid device: -71 [ 3295.891862][T19168] usbhid: probe of 3-1:0.0 failed with error -71 [ 3295.909926][T19168] usb 3-1: USB disconnect, device number 48 [ 3296.028957][T19239] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3296.039811][T19239] CPU: 1 PID: 19239 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3296.050271][T19239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3296.060395][T19239] Call Trace: [ 3296.063691][T19239] [ 3296.066648][T19239] dump_stack_lvl+0x1e7/0x2e0 [ 3296.071363][T19239] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3296.076589][T19239] ? __pfx__printk+0x10/0x10 [ 3296.081216][T19239] ? ___ratelimit+0x4c4/0x670 [ 3296.085925][T19239] ? __pfx____ratelimit+0x10/0x10 [ 3296.091003][T19239] dump_header+0xda/0x6a0 [ 3296.095401][T19239] oom_kill_process+0x3a7/0x930 [ 3296.100281][T19239] out_of_memory+0xf67/0x1320 [ 3296.104967][T19239] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3296.110603][T19239] ? __pfx___mutex_lock+0x10/0x10 [ 3296.115643][T19239] ? __pfx_out_of_memory+0x10/0x10 [ 3296.120799][T19239] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3296.126402][T19239] ? __pfx_lock_release+0x10/0x10 [ 3296.131829][T19239] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3296.138010][T19239] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3296.143263][T19239] ? mem_cgroup_iter+0x422/0x560 [ 3296.148219][T19239] try_charge_memcg+0xda2/0x18a0 [ 3296.153202][T19239] ? __pfx_try_charge_memcg+0x10/0x10 [ 3296.158583][T19239] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3296.164307][T19239] ? __pfx_lock_release+0x10/0x10 [ 3296.169343][T19239] ? memcg_account_kmem+0x1e7/0x210 [ 3296.174654][T19239] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3296.180489][T19239] __memcg_kmem_charge_page+0xe1/0x250 [ 3296.185967][T19239] memcg_charge_kernel_stack+0x210/0x550 [ 3296.191617][T19239] dup_task_struct+0x40d/0x7d0 [ 3296.196395][T19239] copy_process+0x5d5/0x3fc0 [ 3296.201024][T19239] ? __might_fault+0xa9/0x120 [ 3296.205713][T19239] ? __pfx_lock_release+0x10/0x10 [ 3296.210768][T19239] ? __pfx_copy_process+0x10/0x10 [ 3296.215800][T19239] ? __might_fault+0xc5/0x120 [ 3296.220487][T19239] ? __asan_memset+0x23/0x50 [ 3296.225094][T19239] kernel_clone+0x21d/0x8d0 [ 3296.229613][T19239] ? __pfx_kernel_clone+0x10/0x10 [ 3296.235099][T19239] __se_sys_clone3+0x2cb/0x350 [ 3296.239898][T19239] ? __pfx___se_sys_clone3+0x10/0x10 [ 3296.245206][T19239] ? rcu_is_watching+0x15/0xb0 [ 3296.250099][T19239] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3296.256109][T19239] ? exc_page_fault+0x587/0x870 [ 3296.260978][T19239] ? do_syscall_64+0xb4/0x240 [ 3296.265672][T19239] do_syscall_64+0xf9/0x240 [ 3296.270196][T19239] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3296.276105][T19239] RIP: 0033:0x7f080fca9b99 [ 3296.280532][T19239] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3296.300145][T19239] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3296.308575][T19239] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3296.316550][T19239] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3296.324528][T19239] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3296.332505][T19239] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3296.340480][T19239] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3296.348474][T19239] [ 3296.370120][T19239] memory: usage 307200kB, limit 307200kB, failcnt 131561 [ 3296.377422][T19239] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3296.385946][T19239] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3296.393376][T19239] Memory cgroup stats for /syz0: [ 3296.393530][T19239] cache 0 [ 3296.404338][T19239] rss 12288 [ 3296.407744][T19239] rss_huge 0 [ 3296.411087][T19239] shmem 0 [ 3296.414103][T19239] mapped_file 0 [ 3296.417988][T19239] dirty 0 [ 3296.420958][T19239] writeback 0 [ 3296.424261][T19239] workingset_refault_anon 42319 [ 3296.429169][T19239] workingset_refault_file 0 [ 3296.433675][T19239] swap 1359872 [ 3296.437225][T19239] swapcached 8192 [ 3296.440885][T19239] pgpgin 285822 [ 3296.444359][T19239] pgpgout 285819 [ 3296.448042][T19239] pgfault 534629 [ 3296.451633][T19239] pgmajfault 40877 [ 3296.455518][T19239] inactive_anon 12288 [ 3296.459523][T19239] active_anon 0 [ 3296.463007][T19239] inactive_file 0 [ 3296.466757][T19239] active_file 0 [ 3296.470227][T19239] unevictable 0 [ 3296.473696][T19239] hierarchical_memory_limit 314572800 [ 3296.479607][T19239] hierarchical_memsw_limit 9223372036854771712 [ 3296.486632][T19239] total_cache 0 [ 3296.490095][T19239] total_rss 12288 [ 3296.493763][T19239] total_rss_huge 0 [ 3296.498164][T19239] total_shmem 0 [ 3296.501714][T19239] total_mapped_file 0 [ 3296.509864][T19239] total_dirty 0 [ 3296.513491][T19239] total_writeback 0 [ 3296.517901][T19239] total_workingset_refault_anon 42319 [ 3296.523303][T19239] total_workingset_refault_file 0 [ 3296.528749][T19239] total_swap 1359872 [ 3296.532681][T19239] total_swapcached 8192 [ 3296.537132][T19239] total_pgpgin 285822 [ 3296.541174][T19239] total_pgpgout 285819 [ 3296.545751][T19239] total_pgfault 534629 [ 3296.549944][T19239] total_pgmajfault 40877 [ 3296.554318][T19239] total_inactive_anon 12288 [ 3296.559056][T19239] total_active_anon 0 [ 3296.563774][T19239] total_inactive_file 0 [ 3296.565343][T19168] usb 3-1: new high-speed USB device number 49 using dummy_hcd [ 3296.568587][T19239] total_active_file 0 [ 3296.580024][T19239] total_unevictable 0 [ 3296.584580][T19239] anon_cost 0 [ 3296.589634][T19239] file_cost 0 [ 3296.593014][T19239] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19239,uid=0 [ 3296.610625][T19239] Memory cgroup out of memory: Killed process 19239 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:15 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x203}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3296.845327][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3296.937871][T19242] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3296.948324][T19242] CPU: 0 PID: 19242 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3296.958793][T19242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3296.968874][T19242] Call Trace: [ 3296.972156][T19242] [ 3296.975087][T19242] dump_stack_lvl+0x1e7/0x2e0 [ 3296.979788][T19242] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3296.985006][T19242] ? __pfx__printk+0x10/0x10 [ 3296.989603][T19242] ? ___ratelimit+0x4c4/0x670 [ 3296.994291][T19242] ? __pfx____ratelimit+0x10/0x10 [ 3296.999325][T19242] dump_header+0xda/0x6a0 [ 3297.003660][T19242] oom_kill_process+0x3a7/0x930 [ 3297.008555][T19242] out_of_memory+0xf67/0x1320 [ 3297.013250][T19242] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3297.018893][T19242] ? __pfx___mutex_lock+0x10/0x10 [ 3297.023933][T19242] ? __pfx_out_of_memory+0x10/0x10 [ 3297.029078][T19242] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3297.034634][T19242] ? __pfx_lock_release+0x10/0x10 [ 3297.039684][T19242] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3297.045768][T19242] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3297.050979][T19242] ? mem_cgroup_iter+0x422/0x560 [ 3297.055933][T19242] try_charge_memcg+0xda2/0x18a0 [ 3297.060902][T19242] ? __pfx_try_charge_memcg+0x10/0x10 [ 3297.066285][T19242] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3297.072014][T19242] ? __pfx_lock_release+0x10/0x10 [ 3297.077116][T19242] ? memcg_account_kmem+0x1e7/0x210 [ 3297.082365][T19242] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3297.088201][T19242] __memcg_kmem_charge_page+0xe1/0x250 [ 3297.093715][T19242] memcg_charge_kernel_stack+0x210/0x550 [ 3297.099422][T19242] dup_task_struct+0x40d/0x7d0 [ 3297.104211][T19242] copy_process+0x5d5/0x3fc0 [ 3297.108865][T19242] ? __might_fault+0xa9/0x120 [ 3297.113554][T19242] ? __pfx_lock_release+0x10/0x10 [ 3297.118603][T19242] ? __pfx_copy_process+0x10/0x10 [ 3297.123632][T19242] ? __might_fault+0xc5/0x120 [ 3297.128356][T19242] ? __asan_memset+0x23/0x50 [ 3297.132988][T19242] kernel_clone+0x21d/0x8d0 [ 3297.137507][T19242] ? __pfx_kernel_clone+0x10/0x10 [ 3297.142584][T19242] __se_sys_clone3+0x2cb/0x350 [ 3297.147404][T19242] ? __pfx___se_sys_clone3+0x10/0x10 [ 3297.152728][T19242] ? do_syscall_64+0x108/0x240 [ 3297.157513][T19242] ? do_syscall_64+0xb4/0x240 [ 3297.162222][T19242] do_syscall_64+0xf9/0x240 [ 3297.166745][T19242] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3297.172651][T19242] RIP: 0033:0x7f080fca9b99 [ 3297.177087][T19242] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3297.196698][T19242] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3297.205212][T19242] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3297.213200][T19242] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3297.221176][T19242] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3297.229154][T19242] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3297.237133][T19242] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3297.245125][T19242] [ 3297.251892][T19242] memory: usage 307200kB, limit 307200kB, failcnt 131956 [ 3297.259206][T19242] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3297.264451][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3297.279359][T19242] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3297.288722][T19242] Memory cgroup stats for /syz0: [ 3297.288864][T19242] cache 0 [ 3297.295555][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3297.297298][T19242] rss 20480 [ 3297.310093][T19242] rss_huge 0 [ 3297.313493][T19242] shmem 0 [ 3297.316975][T19242] mapped_file 0 [ 3297.320617][T19242] dirty 0 [ 3297.323710][T19242] writeback 0 [ 3297.324475][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3297.328007][T19242] workingset_refault_anon 42431 [ 3297.341447][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3297.342080][T19242] workingset_refault_file 0 [ 3297.354569][T19242] swap 1351680 [ 3297.358168][T19168] usb 3-1: config 0 descriptor?? [ 3297.365896][T19242] swapcached 16384 [ 3297.370383][T19242] pgpgin 285946 [ 3297.373960][T19242] pgpgout 285941 [ 3297.378312][T19242] pgfault 534805 [ 3297.382012][T19242] pgmajfault 40978 [ 3297.386434][T19242] inactive_anon 0 [ 3297.390161][T19242] active_anon 20480 [ 3297.394006][T19242] inactive_file 0 [ 3297.398990][T19242] active_file 0 [ 3297.402482][T19242] unevictable 0 [ 3297.406636][T19242] hierarchical_memory_limit 314572800 [ 3297.412144][T19242] hierarchical_memsw_limit 9223372036854771712 [ 3297.419015][T19242] total_cache 0 [ 3297.422561][T19242] total_rss 20480 [ 3297.426835][T19242] total_rss_huge 0 [ 3297.430727][T19242] total_shmem 0 [ 3297.434311][T19242] total_mapped_file 0 [ 3297.439015][T19242] total_dirty 0 [ 3297.442580][T19242] total_writeback 0 [ 3297.446965][T19242] total_workingset_refault_anon 42431 [ 3297.452422][T19242] total_workingset_refault_file 0 [ 3297.458126][T19242] total_swap 1351680 [ 3297.462106][T19242] total_swapcached 16384 [ 3297.468294][T19242] total_pgpgin 285946 [ 3297.472361][T19242] total_pgpgout 285941 [ 3297.476976][T19242] total_pgfault 534805 [ 3297.481093][T19242] total_pgmajfault 40978 [ 3297.491340][T19242] total_inactive_anon 0 [ 3297.496091][T19242] total_active_anon 20480 [ 3297.500449][T19242] total_inactive_file 0 [ 3297.504616][T19242] total_active_file 0 [ 3297.509149][T19242] total_unevictable 0 [ 3297.513347][T19242] anon_cost 0 [ 3297.517557][T19242] file_cost 0 [ 3297.520960][T19242] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19242,uid=0 17:45:15 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_connect$hid(0x5, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x97, 0x5ac, 0x236, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x5, 0x50, 0x1, [{{0x9, 0x4, 0x0, 0x80, 0x2, 0x3, 0x1, 0x3, 0x81, {0x9, 0x21, 0x2, 0x1f, 0x1, {0x22, 0x644}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0x7, 0x7f}}, [{{0x9, 0x5, 0x2, 0x3, 0x10, 0xa, 0x3f, 0x4}}]}}}]}}]}}, &(0x7f00000002c0)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x110, 0x9, 0x62, 0x5c, 0x10, 0x51}, 0x38, &(0x7f00000000c0)={0x5, 0xf, 0x38, 0x3, [@ss_container_id={0x14, 0x10, 0x4, 0x21, "87e06deaf17ea036116788f765ffe13e"}, @wireless={0xb, 0x10, 0x1, 0x2, 0x40, 0x0, 0x4, 0x7f}, @ss_container_id={0x14, 0x10, 0x4, 0x28, "5410227e8a13005f1345525d24eb5d56"}]}, 0x5, [{0x3e, &(0x7f0000000100)=@string={0x3e, 0x3, "167710a82af2e13ec8b9e2bce007f45d389a85669c439cb2fd3cfcd30aac5f7688f1025705f2b7c3d86967354fddbf79ca4784bc428738f4c59a0750"}}, {0x17, &(0x7f0000000140)=@string={0x17, 0x3, "c2fe73f57a990c37b7867ea75e09f0589e27dedaa7"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x419}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0xf8ff}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x408}}]}) (async) syz_usb_connect$hid(0x5, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x97, 0x5ac, 0x236, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x5, 0x50, 0x1, [{{0x9, 0x4, 0x0, 0x80, 0x2, 0x3, 0x1, 0x3, 0x81, {0x9, 0x21, 0x2, 0x1f, 0x1, {0x22, 0x644}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0x7, 0x7f}}, [{{0x9, 0x5, 0x2, 0x3, 0x10, 0xa, 0x3f, 0x4}}]}}}]}}]}}, &(0x7f00000002c0)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x110, 0x9, 0x62, 0x5c, 0x10, 0x51}, 0x38, &(0x7f00000000c0)={0x5, 0xf, 0x38, 0x3, [@ss_container_id={0x14, 0x10, 0x4, 0x21, "87e06deaf17ea036116788f765ffe13e"}, @wireless={0xb, 0x10, 0x1, 0x2, 0x40, 0x0, 0x4, 0x7f}, @ss_container_id={0x14, 0x10, 0x4, 0x28, "5410227e8a13005f1345525d24eb5d56"}]}, 0x5, [{0x3e, &(0x7f0000000100)=@string={0x3e, 0x3, "167710a82af2e13ec8b9e2bce007f45d389a85669c439cb2fd3cfcd30aac5f7688f1025705f2b7c3d86967354fddbf79ca4784bc428738f4c59a0750"}}, {0x17, &(0x7f0000000140)=@string={0x17, 0x3, "c2fe73f57a990c37b7867ea75e09f0589e27dedaa7"}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x419}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0xf8ff}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x408}}]}) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3297.543141][T19242] Memory cgroup out of memory: Killed process 19242 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:15 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x20a}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3297.666067][T19168] usbhid 3-1:0.0: can't add hid device: -71 [ 3297.672190][T19168] usbhid: probe of 3-1:0.0 failed with error -71 [ 3297.689307][T19168] usb 3-1: USB disconnect, device number 49 [ 3297.835778][T19246] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3297.846062][T19246] CPU: 1 PID: 19246 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3297.856539][T19246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3297.866632][T19246] Call Trace: [ 3297.869941][T19246] [ 3297.872914][T19246] dump_stack_lvl+0x1e7/0x2e0 [ 3297.877682][T19246] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3297.882928][T19246] ? __pfx__printk+0x10/0x10 [ 3297.887560][T19246] ? ___ratelimit+0x4c4/0x670 [ 3297.892275][T19246] ? __pfx____ratelimit+0x10/0x10 [ 3297.897333][T19246] dump_header+0xda/0x6a0 [ 3297.901701][T19246] oom_kill_process+0x3a7/0x930 [ 3297.906579][T19246] out_of_memory+0xf67/0x1320 [ 3297.911292][T19246] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3297.916949][T19246] ? __pfx___mutex_lock+0x10/0x10 [ 3297.922006][T19246] ? __pfx_out_of_memory+0x10/0x10 [ 3297.927175][T19246] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3297.932771][T19246] ? __pfx_lock_release+0x10/0x10 [ 3297.937817][T19246] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3297.943917][T19246] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3297.949157][T19246] ? mem_cgroup_iter+0x422/0x560 [ 3297.954105][T19246] try_charge_memcg+0xda2/0x18a0 [ 3297.959115][T19246] ? __pfx_try_charge_memcg+0x10/0x10 [ 3297.964508][T19246] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3297.970231][T19246] ? __pfx_lock_release+0x10/0x10 [ 3297.975373][T19246] ? memcg_account_kmem+0x1e7/0x210 [ 3297.980627][T19246] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3297.986463][T19246] __memcg_kmem_charge_page+0xe1/0x250 [ 3297.991960][T19246] memcg_charge_kernel_stack+0x210/0x550 [ 3297.997617][T19246] dup_task_struct+0x15d/0x7d0 [ 3298.002414][T19246] copy_process+0x5d5/0x3fc0 [ 3298.007080][T19246] ? __might_fault+0xa9/0x120 [ 3298.011791][T19246] ? __pfx_lock_release+0x10/0x10 [ 3298.016874][T19246] ? __pfx_copy_process+0x10/0x10 [ 3298.021926][T19246] ? __might_fault+0xc5/0x120 [ 3298.026638][T19246] ? __asan_memset+0x23/0x50 [ 3298.031283][T19246] kernel_clone+0x21d/0x8d0 [ 3298.035834][T19246] ? __pfx_kernel_clone+0x10/0x10 [ 3298.040913][T19246] __se_sys_clone3+0x2cb/0x350 [ 3298.045716][T19246] ? __pfx___se_sys_clone3+0x10/0x10 [ 3298.051061][T19246] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3298.057111][T19246] ? exc_page_fault+0x587/0x870 [ 3298.062000][T19246] ? do_syscall_64+0xb4/0x240 [ 3298.066704][T19246] do_syscall_64+0xf9/0x240 [ 3298.071247][T19246] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3298.077165][T19246] RIP: 0033:0x7f080fca9b99 [ 3298.081614][T19246] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3298.101269][T19246] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3298.109719][T19246] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3298.117714][T19246] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3298.125716][T19246] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3298.133708][T19246] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3298.141691][T19246] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3298.149696][T19246] [ 3298.163041][T19246] memory: usage 307200kB, limit 307200kB, failcnt 132256 [ 3298.173020][T19246] memory+swap: usage 308516kB, limit 9007199254740988kB, failcnt 0 [ 3298.181160][T19246] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3298.188635][T19246] Memory cgroup stats for /syz0: [ 3298.188753][T19246] cache 0 [ 3298.197241][T19246] rss 0 [ 3298.200102][T19246] rss_huge 0 [ 3298.203318][T19246] shmem 0 [ 3298.206453][T19246] mapped_file 0 [ 3298.209959][T19246] dirty 0 [ 3298.212893][T19246] writeback 0 [ 3298.219706][T19246] workingset_refault_anon 42545 [ 3298.224624][T19246] workingset_refault_file 0 [ 3298.229297][T19246] swap 1343488 [ 3298.232694][T19246] swapcached 4096 [ 3298.236468][T19246] pgpgin 286075 [ 3298.239951][T19246] pgpgout 286074 [ 3298.243515][T19246] pgfault 534991 [ 3298.247257][T19246] pgmajfault 41086 [ 3298.251001][T19246] inactive_anon 0 [ 3298.254642][T19246] active_anon 0 [ 3298.258323][T19246] inactive_file 0 [ 3298.261967][T19246] active_file 0 [ 3298.266006][T19246] unevictable 0 [ 3298.269491][T19246] hierarchical_memory_limit 314572800 [ 3298.274878][T19246] hierarchical_memsw_limit 9223372036854771712 [ 3298.281147][T19246] total_cache 0 [ 3298.284626][T19246] total_rss 0 [ 3298.288101][T19246] total_rss_huge 0 [ 3298.291869][T19246] total_shmem 0 [ 3298.296054][T19246] total_mapped_file 0 [ 3298.300070][T19246] total_dirty 0 [ 3298.303547][T19246] total_writeback 0 [ 3298.307541][T19246] total_workingset_refault_anon 42545 [ 3298.312932][T19246] total_workingset_refault_file 0 [ 3298.318025][T19246] total_swap 1343488 [ 3298.321941][T19246] total_swapcached 4096 [ 3298.326308][T19246] total_pgpgin 286075 [ 3298.330303][T19246] total_pgpgout 286074 [ 3298.334367][T19246] total_pgfault 534991 [ 3298.338518][T19246] total_pgmajfault 41086 [ 3298.342848][T19246] total_inactive_anon 0 [ 3298.350635][T19246] total_active_anon 0 [ 3298.354648][T19246] total_inactive_file 0 [ 3298.358874][T19246] total_active_file 0 [ 3298.362869][T19246] total_unevictable 0 [ 3298.367217][T19168] usb 3-1: new high-speed USB device number 50 using dummy_hcd [ 3298.374140][T19246] anon_cost 0 [ 3298.378578][T19246] file_cost 0 [ 3298.381888][T19246] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19246,uid=0 [ 3298.398060][T19246] Memory cgroup out of memory: Killed process 19246 (syz-executor.0) total-vm:54508kB, anon-rss:396kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:16 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_connect$cdc_ncm(0x4, 0x87, &(0x7f00000001c0)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x75, 0x2, 0x1, 0x1, 0x30, 0x50, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xa, 0x24, 0x6, 0x0, 0x1, "7a20bb9b40"}, {0x5, 0x24, 0x0, 0x8de}, {0xd, 0x24, 0xf, 0x1, 0x8, 0xddd, 0x7, 0x20}, {0x6, 0x24, 0x1a, 0x6c64, 0x10}, [@mbim_extended={0x8, 0x24, 0x1c, 0xf2, 0x2, 0x2}, @mbim={0xc, 0x24, 0x1b, 0x4, 0x16, 0x2a, 0x40, 0x6, 0x3}]}, {{0x9, 0x5, 0x81, 0x3, 0x20, 0x20, 0xdd, 0x98}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0x3f, 0x4, 0x4}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0xc8, 0x1, 0xfe}}}}}}}]}}, &(0x7f0000000300)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x201, 0x1, 0x7f, 0x0, 0xff, 0x96}, 0x1a, &(0x7f0000000100)={0x5, 0xf, 0x1a, 0x2, [@wireless={0xb, 0x10, 0x1, 0x2, 0x0, 0x7f, 0x7, 0x3, 0x5}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0xa, 0x2, 0x7, 0x1000}]}, 0x1, [{0x19, &(0x7f0000000280)=@string={0x19, 0x3, "94f73b625feb2fdc9dd8036fb62dd0510d4abd98a36695"}}]}) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) 17:45:16 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x20e}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3298.625443][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3298.755366][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3298.766389][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3298.777408][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3298.786909][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3298.797678][T19168] usb 3-1: config 0 descriptor?? [ 3299.091575][T19249] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3299.102696][T19249] CPU: 1 PID: 19249 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3299.113153][T19249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3299.123224][T19249] Call Trace: [ 3299.126513][T19249] [ 3299.129467][T19249] dump_stack_lvl+0x1e7/0x2e0 [ 3299.134531][T19249] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3299.139767][T19249] ? __pfx__printk+0x10/0x10 [ 3299.144386][T19249] ? ___ratelimit+0x4c4/0x670 [ 3299.149101][T19249] ? __pfx____ratelimit+0x10/0x10 [ 3299.154183][T19249] dump_header+0xda/0x6a0 [ 3299.158547][T19249] oom_kill_process+0x3a7/0x930 [ 3299.163412][T19249] out_of_memory+0xf67/0x1320 [ 3299.168119][T19249] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3299.173790][T19249] ? __pfx___mutex_lock+0x10/0x10 [ 3299.178847][T19249] ? __pfx_out_of_memory+0x10/0x10 [ 3299.183989][T19249] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3299.189555][T19249] ? __pfx_lock_release+0x10/0x10 [ 3299.194617][T19249] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3299.200712][T19249] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3299.205942][T19249] ? mem_cgroup_iter+0x422/0x560 [ 3299.210939][T19249] try_charge_memcg+0xda2/0x18a0 [ 3299.215946][T19249] ? __pfx_try_charge_memcg+0x10/0x10 [ 3299.221344][T19249] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3299.227121][T19249] ? __pfx_lock_release+0x10/0x10 [ 3299.232180][T19249] ? memcg_account_kmem+0x1e7/0x210 [ 3299.237407][T19249] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3299.243213][T19249] __memcg_kmem_charge_page+0xe1/0x250 [ 3299.248692][T19249] memcg_charge_kernel_stack+0x210/0x550 [ 3299.254356][T19249] dup_task_struct+0x15d/0x7d0 [ 3299.259155][T19249] copy_process+0x5d5/0x3fc0 [ 3299.263774][T19249] ? __might_fault+0xa9/0x120 [ 3299.268483][T19249] ? __pfx_lock_release+0x10/0x10 [ 3299.273544][T19249] ? __pfx_copy_process+0x10/0x10 [ 3299.278594][T19249] ? __might_fault+0xc5/0x120 [ 3299.283301][T19249] ? __asan_memset+0x23/0x50 [ 3299.288083][T19249] kernel_clone+0x21d/0x8d0 [ 3299.292611][T19249] ? __pfx_kernel_clone+0x10/0x10 [ 3299.297673][T19249] __se_sys_clone3+0x2cb/0x350 [ 3299.302439][T19249] ? __pfx___se_sys_clone3+0x10/0x10 [ 3299.307768][T19249] ? do_syscall_64+0x108/0x240 [ 3299.312563][T19249] ? do_syscall_64+0xb4/0x240 [ 3299.317263][T19249] do_syscall_64+0xf9/0x240 [ 3299.321803][T19249] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3299.327721][T19249] RIP: 0033:0x7f080fca9b99 [ 3299.332164][T19249] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3299.351790][T19249] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3299.360242][T19249] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3299.368230][T19249] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3299.376239][T19249] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3299.384220][T19249] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3299.392204][T19249] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3299.400222][T19249] [ 3299.411202][T19249] memory: usage 307200kB, limit 307200kB, failcnt 132893 [ 3299.418821][T19249] memory+swap: usage 308552kB, limit 9007199254740988kB, failcnt 0 [ 3299.427368][T19249] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3299.434829][T19249] Memory cgroup stats for /syz0: [ 3299.434997][T19249] cache 0 [ 3299.443213][T19249] rss 20480 [ 3299.446449][T19249] rss_huge 0 [ 3299.449660][T19249] shmem 0 [ 3299.452608][T19249] mapped_file 0 [ 3299.456996][T19168] usbhid 3-1:0.0: can't add hid device: -71 [ 3299.463187][T19168] usbhid: probe of 3-1:0.0 failed with error -71 [ 3299.470837][T19250] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3299.480590][T19249] dirty 0 [ 3299.484698][T19249] writeback 0 [ 3299.488283][T19250] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3299.489718][T19168] usb 3-1: USB disconnect, device number 50 [ 3299.513327][T19249] workingset_refault_anon 42783 [ 3299.516928][T19250] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3299.524214][T19249] workingset_refault_file 0 [ 3299.535269][T19249] swap 1363968 [ 3299.539193][T19250] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3299.539749][T19251] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3299.556441][T19249] swapcached 20480 [ 3299.560291][T19249] pgpgin 286323 [ 3299.563945][T19251] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3299.565387][T19249] pgpgout 286318 [ 3299.576474][T19249] pgfault 535357 [ 3299.580949][T19249] pgmajfault 41317 [ 3299.584765][T19249] inactive_anon 0 [ 3299.589710][T19249] active_anon 20480 [ 3299.593631][T19249] inactive_file 0 [ 3299.597538][T19249] active_file 0 [ 3299.601277][T19249] unevictable 0 [ 3299.604824][T19249] hierarchical_memory_limit 314572800 [ 3299.610340][T19249] hierarchical_memsw_limit 9223372036854771712 [ 3299.616683][T19249] total_cache 0 [ 3299.620241][T19249] total_rss 20480 [ 3299.623984][T19249] total_rss_huge 0 [ 3299.628269][T19249] total_shmem 0 [ 3299.631845][T19249] total_mapped_file 0 [ 3299.636204][T19249] total_dirty 0 [ 3299.639764][T19249] total_writeback 0 [ 3299.643648][T19249] total_workingset_refault_anon 42783 [ 3299.649419][T19249] total_workingset_refault_file 0 [ 3299.654563][T19249] total_swap 1363968 [ 3299.658923][T19249] total_swapcached 20480 [ 3299.663386][T19249] total_pgpgin 286323 [ 3299.667745][T19249] total_pgpgout 286318 [ 3299.671932][T19249] total_pgfault 535357 [ 3299.676725][T19249] total_pgmajfault 41317 [ 3299.681090][T19249] total_inactive_anon 0 [ 3299.685597][T19249] total_active_anon 20480 [ 3299.690028][T19249] total_inactive_file 0 [ 3299.694260][T19249] total_active_file 0 [ 3299.698685][T19249] total_unevictable 0 [ 3299.702758][T19249] anon_cost 0 [ 3299.706432][T19249] file_cost 0 [ 3299.709828][T19249] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19249,uid=0 [ 3299.726592][T19249] Memory cgroup out of memory: Killed process 19249 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:18 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x22e}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3299.885328][T19168] usb 3-1: new high-speed USB device number 51 using dummy_hcd [ 3300.054766][T19252] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3300.065298][T19252] CPU: 1 PID: 19252 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3300.075742][T19252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3300.085810][T19252] Call Trace: [ 3300.089111][T19252] [ 3300.092062][T19252] dump_stack_lvl+0x1e7/0x2e0 [ 3300.096777][T19252] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3300.101987][T19252] ? __pfx__printk+0x10/0x10 [ 3300.106590][T19252] ? ___ratelimit+0x4c4/0x670 [ 3300.111303][T19252] ? __pfx____ratelimit+0x10/0x10 [ 3300.116366][T19252] dump_header+0xda/0x6a0 [ 3300.120754][T19252] oom_kill_process+0x3a7/0x930 [ 3300.125636][T19252] out_of_memory+0xf67/0x1320 [ 3300.130352][T19252] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3300.136367][T19252] ? __pfx___mutex_lock+0x10/0x10 [ 3300.141402][T19252] ? __pfx_out_of_memory+0x10/0x10 [ 3300.146626][T19252] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3300.152222][T19252] ? __pfx_lock_release+0x10/0x10 [ 3300.157293][T19252] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3300.163389][T19252] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3300.168606][T19252] ? mem_cgroup_iter+0x422/0x560 [ 3300.173568][T19252] try_charge_memcg+0xda2/0x18a0 [ 3300.178530][T19252] ? __pfx_try_charge_memcg+0x10/0x10 [ 3300.183901][T19252] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3300.189656][T19252] ? __pfx_lock_release+0x10/0x10 [ 3300.194712][T19252] ? memcg_account_kmem+0x1e7/0x210 [ 3300.199931][T19252] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3300.205753][T19252] __memcg_kmem_charge_page+0xe1/0x250 [ 3300.211248][T19252] memcg_charge_kernel_stack+0x210/0x550 [ 3300.216919][T19252] dup_task_struct+0x15d/0x7d0 [ 3300.221713][T19252] copy_process+0x5d5/0x3fc0 [ 3300.226340][T19252] ? __might_fault+0xa9/0x120 [ 3300.231071][T19252] ? __pfx_lock_release+0x10/0x10 [ 3300.236133][T19252] ? __lock_acquire+0x1345/0x1fd0 [ 3300.241186][T19252] ? __pfx_copy_process+0x10/0x10 [ 3300.246227][T19252] ? __might_fault+0xc5/0x120 [ 3300.250937][T19252] ? __asan_memset+0x23/0x50 [ 3300.255570][T19252] kernel_clone+0x21d/0x8d0 [ 3300.260090][T19252] ? __pfx_kernel_clone+0x10/0x10 [ 3300.265117][T19252] ? __pfx_lock_release+0x10/0x10 [ 3300.270173][T19252] __se_sys_clone3+0x2cb/0x350 [ 3300.274952][T19252] ? __might_fault+0xa9/0x120 [ 3300.279656][T19252] ? __pfx___se_sys_clone3+0x10/0x10 [ 3300.284970][T19252] ? rcu_is_watching+0x15/0xb0 [ 3300.289767][T19252] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3300.295793][T19252] ? exc_page_fault+0x587/0x870 [ 3300.300674][T19252] ? do_syscall_64+0xb4/0x240 [ 3300.305373][T19252] do_syscall_64+0xf9/0x240 [ 3300.309913][T19252] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3300.315840][T19252] RIP: 0033:0x7f080fca9b99 [ 3300.320268][T19252] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3300.339879][T19252] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3300.348326][T19252] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3300.356423][T19252] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3300.364416][T19252] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3300.372496][T19252] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3300.380480][T19252] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3300.388493][T19252] [ 3300.392102][T19252] memory: usage 307200kB, limit 307200kB, failcnt 133248 [ 3300.404151][T19252] memory+swap: usage 308548kB, limit 9007199254740988kB, failcnt 0 [ 3300.415336][T19252] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3300.422669][T19252] Memory cgroup stats for /syz0: [ 3300.422817][T19252] cache 0 [ 3300.430935][T19252] rss 0 [ 3300.433720][T19252] rss_huge 0 [ 3300.437075][T19252] shmem 0 [ 3300.440021][T19252] mapped_file 0 [ 3300.443496][T19252] dirty 0 [ 3300.446507][T19252] writeback 0 [ 3300.449804][T19252] workingset_refault_anon 42916 [ 3300.454667][T19252] workingset_refault_file 0 [ 3300.458974][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3300.462924][T19252] swap 1380352 [ 3300.467785][T19252] swapcached 0 [ 3300.471187][T19252] pgpgin 286467 [ 3300.474680][T19252] pgpgout 286467 [ 3300.478448][T19252] pgfault 535563 [ 3300.482021][T19252] pgmajfault 41434 [ 3300.485867][T19252] inactive_anon 0 [ 3300.489535][T19252] active_anon 0 [ 3300.493018][T19252] inactive_file 0 [ 3300.496852][T19252] active_file 0 [ 3300.500340][T19252] unevictable 0 [ 3300.503818][T19252] hierarchical_memory_limit 314572800 [ 3300.509886][T19252] hierarchical_memsw_limit 9223372036854771712 [ 3300.516301][T19252] total_cache 0 [ 3300.519877][T19252] total_rss 0 [ 3300.523251][T19252] total_rss_huge 0 [ 3300.527179][T19252] total_shmem 0 [ 3300.530766][T19252] total_mapped_file 0 [ 3300.534815][T19252] total_dirty 0 [ 3300.538614][T19252] total_writeback 0 [ 3300.542500][T19252] total_workingset_refault_anon 42916 [ 3300.548030][T19252] total_workingset_refault_file 0 [ 3300.553107][T19252] total_swap 1380352 [ 3300.557153][T19252] total_swapcached 0 [ 3300.561060][T19252] total_pgpgin 286467 [ 3300.565060][T19252] total_pgpgout 286467 [ 3300.570208][T19252] total_pgfault 535563 [ 3300.574411][T19252] total_pgmajfault 41434 [ 3300.583693][T19252] total_inactive_anon 0 [ 3300.588466][T19252] total_active_anon 0 [ 3300.592598][T19252] total_inactive_file 0 [ 3300.597216][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3300.601409][T19252] total_active_file 0 [ 3300.609557][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3300.625392][T19252] total_unevictable 0 [ 3300.628738][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3300.638462][T19252] anon_cost 0 [ 3300.638477][T19252] file_cost 0 17:45:19 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x22f}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3300.638487][T19252] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0 [ 3300.646582][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3300.659018][T19252] ,task=syz-executor.0,pid=19252,uid=0 [ 3300.680815][T19168] usb 3-1: config 0 descriptor?? [ 3300.683390][T19252] Memory cgroup out of memory: Killed process 19252 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:19 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000086a05590000000000000109022400010000000009040000010300000019213d831bd4f161282e0581030000000000"], 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_connect$cdc_ecm(0x4, 0x159, &(0x7f0000000240)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x147, 0x1, 0x1, 0x2, 0x10, 0x2, [{{0x9, 0x4, 0x0, 0x7f, 0x2, 0x2, 0x6, 0x0, 0xfa, {{0x6, 0x24, 0x6, 0x0, 0x0, '\"'}, {0x5, 0x24, 0x0, 0x7fff}, {0xd, 0x24, 0xf, 0x1, 0x7f, 0x3, 0x1, 0x9}, [@call_mgmt={0x5, 0x24, 0x1, 0x3, 0x1f}, @mbim={0xc, 0x24, 0x1b, 0x9, 0x0, 0x1, 0x4, 0x7fff, 0x20}, @mbim={0xc, 0x24, 0x1b, 0x7, 0x5, 0x20, 0x9, 0x38, 0x80}, @mdlm_detail={0xde, 0x24, 0x13, 0x7, "3d4fb54bbad62a84818577920caca26dac7866f27ccbff69c15b278e317cfcb3ee43fcdfd9b5928f81ab55eef6cfabd922c640dd049fc7e4f2cb1a918ade2266d4f7c733dbc5a21b2eb8b507e974e35289c58eb5d6f0671e59bba199e3f583fe0efe8d8073def0ec18e6f43963ec6658f05b83f854a73e22b6058050706f62f4f8131ffe5ce0e1064448440b6e2030689215d46967bd330f77098a8121b45cce7fb9b98f8d6a53ab3e41eeef489833c7f7a1d2c44b3eba05550394125c444139d6aa509287556519b99ada1501ec2f08f4aa64e5e443d1a37276"}, @network_terminal={0x7, 0x24, 0xa, 0x5, 0x3c, 0xbf, 0x1}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x200, 0x81, 0x9}}], {{0x9, 0x5, 0x82, 0x2, 0x40, 0x0, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x0, 0x0, 0x81}}}}}]}}]}}, &(0x7f0000000400)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x110, 0xff, 0xff, 0x0, 0x8, 0x6}, 0x2c, &(0x7f00000000c0)={0x5, 0xf, 0x2c, 0x4, [@wireless={0xb, 0x10, 0x1, 0xc, 0x8, 0xff, 0xff, 0x200, 0x80}, @wireless={0xb, 0x10, 0x1, 0x8, 0x40, 0x0, 0x3f, 0xadc, 0x81}, @ext_cap={0x7, 0x10, 0x2, 0x8, 0x7, 0x5, 0xb9d}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x9, 0x80, 0x6, 0x178}]}, 0x4, [{0x71, &(0x7f0000000100)=@string={0x71, 0x3, "579d23de2177ddead2dcb436e626010c11dc9b44ca2f4d58c8fc3514af4e95093e42964b92cb674752839e87b6229421702f93cd92acdf6794b330826e149dbcfe8c0045c0e9c671530b2131de99ba33dc080bf5e9549fca5ab4489cff6ad5441d8ae35a634161cf6cf8bfa877f95b"}}, {0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x7830}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x180c}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x240a}}]}) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x8, {[@global=@item_4={0x3, 0x1, 0xa, "fa323ac5"}, @global=@item_012={0x2, 0x1, 0x4, "6eab"}]}}, 0x0}, 0x0) [ 3300.915387][T19168] usbhid 3-1:0.0: can't add hid device: -71 [ 3300.924615][T19168] usbhid: probe of 3-1:0.0 failed with error -71 [ 3300.941413][T19168] usb 3-1: USB disconnect, device number 51 [ 3301.118428][T19254] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3301.129146][T19254] CPU: 1 PID: 19254 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3301.139622][T19254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3301.149703][T19254] Call Trace: [ 3301.153006][T19254] [ 3301.155955][T19254] dump_stack_lvl+0x1e7/0x2e0 [ 3301.160664][T19254] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3301.165881][T19254] ? __pfx__printk+0x10/0x10 [ 3301.170520][T19254] ? ___ratelimit+0x4c4/0x670 [ 3301.175239][T19254] ? __pfx____ratelimit+0x10/0x10 [ 3301.180381][T19254] dump_header+0xda/0x6a0 [ 3301.184730][T19254] oom_kill_process+0x3a7/0x930 [ 3301.189602][T19254] out_of_memory+0xf67/0x1320 [ 3301.194348][T19254] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3301.200006][T19254] ? __pfx___mutex_lock+0x10/0x10 [ 3301.205047][T19254] ? __pfx_out_of_memory+0x10/0x10 [ 3301.210182][T19254] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3301.215753][T19254] ? __pfx_lock_release+0x10/0x10 [ 3301.220818][T19254] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3301.226922][T19254] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3301.232580][T19254] ? mem_cgroup_iter+0x422/0x560 [ 3301.237621][T19254] try_charge_memcg+0xda2/0x18a0 [ 3301.242590][T19254] ? __pfx_try_charge_memcg+0x10/0x10 [ 3301.247977][T19254] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3301.253707][T19254] ? __pfx_lock_release+0x10/0x10 [ 3301.258751][T19254] ? memcg_account_kmem+0x1e7/0x210 [ 3301.263972][T19254] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3301.269790][T19254] __memcg_kmem_charge_page+0xe1/0x250 [ 3301.275266][T19254] memcg_charge_kernel_stack+0x210/0x550 [ 3301.280908][T19254] dup_task_struct+0x40d/0x7d0 [ 3301.285682][T19254] copy_process+0x5d5/0x3fc0 [ 3301.290290][T19254] ? __might_fault+0xa9/0x120 [ 3301.294977][T19254] ? __pfx_lock_release+0x10/0x10 [ 3301.300018][T19254] ? __pfx_copy_process+0x10/0x10 [ 3301.305044][T19254] ? __might_fault+0xc5/0x120 [ 3301.309724][T19254] ? __asan_memset+0x23/0x50 [ 3301.314350][T19254] kernel_clone+0x21d/0x8d0 [ 3301.318868][T19254] ? __pfx_kernel_clone+0x10/0x10 [ 3301.323913][T19254] __se_sys_clone3+0x2cb/0x350 [ 3301.328686][T19254] ? __pfx___se_sys_clone3+0x10/0x10 [ 3301.333985][T19254] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3301.339985][T19254] ? exc_page_fault+0x587/0x870 [ 3301.344842][T19254] ? do_syscall_64+0xb4/0x240 [ 3301.349531][T19254] do_syscall_64+0xf9/0x240 [ 3301.354044][T19254] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3301.359947][T19254] RIP: 0033:0x7f080fca9b99 [ 3301.364363][T19254] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3301.384003][T19254] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3301.392431][T19254] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3301.400425][T19254] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3301.408421][T19254] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3301.416427][T19254] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3301.424428][T19254] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3301.432435][T19254] [ 3301.444433][T19254] memory: usage 307200kB, limit 307200kB, failcnt 133611 [ 3301.452888][T19254] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3301.461950][T19254] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3301.469744][T19254] Memory cgroup stats for /syz0: [ 3301.469912][T19254] cache 0 [ 3301.478749][T19254] rss 20480 [ 3301.481883][T19254] rss_huge 0 [ 3301.485100][T19254] shmem 0 [ 3301.488557][T19254] mapped_file 0 [ 3301.492018][T19254] dirty 0 [ 3301.494971][T19254] writeback 0 [ 3301.499104][T19254] workingset_refault_anon 43072 [ 3301.503984][T19254] workingset_refault_file 0 [ 3301.508612][T19254] swap 1351680 [ 3301.512713][T19254] swapcached 8192 17:45:19 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_connect$cdc_ncm(0x4, 0x87, &(0x7f00000001c0)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x75, 0x2, 0x1, 0x1, 0x30, 0x50, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xa, 0x24, 0x6, 0x0, 0x1, "7a20bb9b40"}, {0x5, 0x24, 0x0, 0x8de}, {0xd, 0x24, 0xf, 0x1, 0x8, 0xddd, 0x7, 0x20}, {0x6, 0x24, 0x1a, 0x6c64, 0x10}, [@mbim_extended={0x8, 0x24, 0x1c, 0xf2, 0x2, 0x2}, @mbim={0xc, 0x24, 0x1b, 0x4, 0x16, 0x2a, 0x40, 0x6, 0x3}]}, {{0x9, 0x5, 0x81, 0x3, 0x20, 0x20, 0xdd, 0x98}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0x3f, 0x4, 0x4}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0xc8, 0x1, 0xfe}}}}}}}]}}, &(0x7f0000000300)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x201, 0x1, 0x7f, 0x0, 0xff, 0x96}, 0x1a, &(0x7f0000000100)={0x5, 0xf, 0x1a, 0x2, [@wireless={0xb, 0x10, 0x1, 0x2, 0x0, 0x7f, 0x7, 0x3, 0x5}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0xa, 0x2, 0x7, 0x1000}]}, 0x1, [{0x19, &(0x7f0000000280)=@string={0x19, 0x3, "94f73b625feb2fdc9dd8036fb62dd0510d4abd98a36695"}}]}) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) (async) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) syz_usb_connect$cdc_ncm(0x4, 0x87, &(0x7f00000001c0)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x75, 0x2, 0x1, 0x1, 0x30, 0x50, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xa, 0x24, 0x6, 0x0, 0x1, "7a20bb9b40"}, {0x5, 0x24, 0x0, 0x8de}, {0xd, 0x24, 0xf, 0x1, 0x8, 0xddd, 0x7, 0x20}, {0x6, 0x24, 0x1a, 0x6c64, 0x10}, [@mbim_extended={0x8, 0x24, 0x1c, 0xf2, 0x2, 0x2}, @mbim={0xc, 0x24, 0x1b, 0x4, 0x16, 0x2a, 0x40, 0x6, 0x3}]}, {{0x9, 0x5, 0x81, 0x3, 0x20, 0x20, 0xdd, 0x98}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0x3f, 0x4, 0x4}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0xc8, 0x1, 0xfe}}}}}}}]}}, &(0x7f0000000300)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x201, 0x1, 0x7f, 0x0, 0xff, 0x96}, 0x1a, &(0x7f0000000100)={0x5, 0xf, 0x1a, 0x2, [@wireless={0xb, 0x10, 0x1, 0x2, 0x0, 0x7f, 0x7, 0x3, 0x5}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0xa, 0x2, 0x7, 0x1000}]}, 0x1, [{0x19, &(0x7f0000000280)=@string={0x19, 0x3, "94f73b625feb2fdc9dd8036fb62dd0510d4abd98a36695"}}]}) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) (async) [ 3301.517461][T19254] pgpgin 286633 [ 3301.520950][T19254] pgpgout 286628 [ 3301.524519][T19254] pgfault 535807 [ 3301.530342][T19254] pgmajfault 41572 [ 3301.534249][T19254] inactive_anon 16384 [ 3301.546967][T19254] active_anon 4096 [ 3301.550757][T19254] inactive_file 0 [ 3301.554419][T19254] active_file 0 [ 3301.559577][T19254] unevictable 0 [ 3301.563080][T19254] hierarchical_memory_limit 314572800 [ 3301.569083][T19254] hierarchical_memsw_limit 9223372036854771712 [ 3301.575815][T19254] total_cache 0 [ 3301.579360][T19254] total_rss 20480 [ 3301.583040][T19254] total_rss_huge 0 [ 3301.587479][T19168] usb 3-1: new high-speed USB device number 52 using dummy_hcd [ 3301.602963][T19254] total_shmem 0 [ 3301.608718][T19254] total_mapped_file 0 [ 3301.612767][T19254] total_dirty 0 [ 3301.617089][T19254] total_writeback 0 [ 3301.620930][T19254] total_workingset_refault_anon 43072 [ 3301.626935][T19254] total_workingset_refault_file 0 [ 3301.632043][T19254] total_swap 1351680 [ 3301.636457][T19254] total_swapcached 8192 [ 3301.640741][T19254] total_pgpgin 286633 [ 3301.644818][T19254] total_pgpgout 286628 [ 3301.649252][T19254] total_pgfault 535807 [ 3301.653397][T19254] total_pgmajfault 41572 [ 3301.657841][T19254] total_inactive_anon 16384 [ 3301.662410][T19254] total_active_anon 4096 [ 3301.668637][T19254] total_inactive_file 0 [ 3301.672923][T19254] total_active_file 0 [ 3301.678616][T19254] total_unevictable 0 [ 3301.682715][T19254] anon_cost 0 [ 3301.686153][T19254] file_cost 0 [ 3301.689525][T19254] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19254,uid=0 [ 3301.705207][T19254] Memory cgroup out of memory: Killed process 19254 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:20 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x26e}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3301.880065][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3302.053524][T19168] usb 3-1: config 0 has an invalid descriptor of length 25, skipping remainder of the config [ 3302.069835][T19168] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 3302.071728][T19259] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3302.093639][T19259] CPU: 0 PID: 19259 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3302.104092][T19259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3302.105267][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3302.114155][T19259] Call Trace: [ 3302.114168][T19259] [ 3302.126370][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3302.126443][T19259] dump_stack_lvl+0x1e7/0x2e0 [ 3302.133471][T19168] usb 3-1: config 0 descriptor?? [ 3302.137371][T19259] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3302.137413][T19259] ? __pfx__printk+0x10/0x10 [ 3302.156894][T19259] ? ___ratelimit+0x4c4/0x670 [ 3302.161626][T19259] ? __pfx____ratelimit+0x10/0x10 [ 3302.166821][T19259] dump_header+0xda/0x6a0 [ 3302.171202][T19259] oom_kill_process+0x3a7/0x930 [ 3302.176069][T19259] out_of_memory+0xf67/0x1320 [ 3302.180755][T19259] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3302.186390][T19259] ? __pfx___mutex_lock+0x10/0x10 [ 3302.191429][T19259] ? __pfx_out_of_memory+0x10/0x10 [ 3302.196578][T19259] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3302.198806][T19168] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 3302.202155][T19259] ? __pfx_lock_release+0x10/0x10 [ 3302.214484][T19259] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3302.220601][T19259] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3302.225839][T19259] ? mem_cgroup_iter+0x422/0x560 [ 3302.230823][T19259] try_charge_memcg+0xda2/0x18a0 [ 3302.235814][T19259] ? __pfx_try_charge_memcg+0x10/0x10 [ 3302.241189][T19259] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3302.246919][T19259] ? __pfx_lock_release+0x10/0x10 [ 3302.251974][T19259] ? memcg_account_kmem+0x1e7/0x210 [ 3302.257221][T19259] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3302.263035][T19259] __memcg_kmem_charge_page+0xe1/0x250 [ 3302.268502][T19259] memcg_charge_kernel_stack+0x210/0x550 [ 3302.274136][T19259] dup_task_struct+0x40d/0x7d0 [ 3302.278911][T19259] copy_process+0x5d5/0x3fc0 [ 3302.283524][T19259] ? __might_fault+0xa9/0x120 [ 3302.288201][T19259] ? __pfx_lock_release+0x10/0x10 [ 3302.293262][T19259] ? __pfx_copy_process+0x10/0x10 [ 3302.298301][T19259] ? __might_fault+0xc5/0x120 [ 3302.303026][T19259] ? __asan_memset+0x23/0x50 [ 3302.307674][T19259] kernel_clone+0x21d/0x8d0 [ 3302.312231][T19259] ? __pfx_kernel_clone+0x10/0x10 [ 3302.317293][T19259] __se_sys_clone3+0x2cb/0x350 [ 3302.322069][T19259] ? __pfx___se_sys_clone3+0x10/0x10 [ 3302.327369][T19259] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3302.333404][T19259] ? exc_page_fault+0x587/0x870 [ 3302.338280][T19259] ? do_syscall_64+0xb4/0x240 [ 3302.342993][T19259] do_syscall_64+0xf9/0x240 [ 3302.347529][T19259] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3302.353463][T19259] RIP: 0033:0x7f080fca9b99 [ 3302.357898][T19259] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3302.377509][T19259] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3302.385925][T19259] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3302.393907][T19259] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3302.401897][T19259] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3302.409900][T19259] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3302.413420][T19168] usb 3-1: USB disconnect, device number 52 [ 3302.417875][T19259] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3302.417916][T19259] [ 3302.431987][T19259] memory: usage 307200kB, limit 307200kB, failcnt 134033 [ 3302.432011][T19259] memory+swap: usage 308520kB, limit 9007199254740988kB, failcnt 0 [ 3302.432028][T19259] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3302.432044][T19259] Memory cgroup stats for /syz0: [ 3302.432175][T19259] cache 0 [ 3302.432184][T19259] rss 16384 [ 3302.432194][T19259] rss_huge 0 [ 3302.432203][T19259] shmem 0 [ 3302.432212][T19259] mapped_file 0 [ 3302.480252][T19259] dirty 0 [ 3302.483371][T19259] writeback 0 [ 3302.487015][T19259] workingset_refault_anon 43223 [ 3302.492010][T19259] workingset_refault_file 0 [ 3302.496760][T19259] swap 1335296 [ 3302.500309][T19259] swapcached 12288 [ 3302.504198][T19259] pgpgin 286795 [ 3302.509309][T19259] pgpgout 286791 [ 3302.512883][T19259] pgfault 536040 [ 3302.517853][T19259] pgmajfault 41713 [ 3302.521689][T19259] inactive_anon 0 [ 3302.525931][T19259] active_anon 12288 [ 3302.529766][T19259] inactive_file 0 [ 3302.533411][T19259] active_file 0 [ 3302.538441][T19259] unevictable 0 [ 3302.541911][T19259] hierarchical_memory_limit 314572800 [ 3302.548169][T19259] hierarchical_memsw_limit 9223372036854771712 [ 3302.554349][T19259] total_cache 0 [ 3302.558249][T19259] total_rss 16384 [ 3302.561928][T19259] total_rss_huge 0 [ 3302.565764][T19259] total_shmem 0 [ 3302.569296][T19259] total_mapped_file 0 [ 3302.573294][T19259] total_dirty 0 [ 3302.577095][T19259] total_writeback 0 [ 3302.580927][T19259] total_workingset_refault_anon 43223 [ 3302.587028][T19259] total_workingset_refault_file 0 [ 3302.592139][T19259] total_swap 1335296 [ 3302.596473][T19259] total_swapcached 12288 [ 3302.600752][T19259] total_pgpgin 286795 [ 3302.604759][T19259] total_pgpgout 286791 [ 3302.609094][T19259] total_pgfault 536040 [ 3302.613197][T19259] total_pgmajfault 41713 [ 3302.617992][T19259] total_inactive_anon 0 [ 3302.622212][T19259] total_active_anon 12288 [ 3302.626656][T19259] total_inactive_file 0 [ 3302.630884][T19259] total_active_file 0 [ 3302.634888][T19259] total_unevictable 0 [ 3302.641746][T19259] anon_cost 0 [ 3302.645091][T19259] file_cost 0 17:45:21 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x2b2}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3302.648458][T19259] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19259,uid=0 [ 3302.664022][T19259] Memory cgroup out of memory: Killed process 19259 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3303.017207][T19260] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3303.028345][T19260] CPU: 0 PID: 19260 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3303.038901][T19260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3303.048999][T19260] Call Trace: [ 3303.052299][T19260] [ 3303.055253][T19260] dump_stack_lvl+0x1e7/0x2e0 [ 3303.059949][T19260] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3303.065165][T19260] ? __pfx__printk+0x10/0x10 [ 3303.069857][T19260] ? ___ratelimit+0x4c4/0x670 [ 3303.074549][T19260] ? __pfx____ratelimit+0x10/0x10 [ 3303.079597][T19260] dump_header+0xda/0x6a0 [ 3303.084029][T19260] oom_kill_process+0x3a7/0x930 [ 3303.088894][T19260] out_of_memory+0xf67/0x1320 [ 3303.093590][T19260] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3303.099230][T19260] ? __pfx___mutex_lock+0x10/0x10 [ 3303.104274][T19260] ? __pfx_out_of_memory+0x10/0x10 [ 3303.109399][T19260] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3303.114949][T19260] ? __pfx_lock_release+0x10/0x10 [ 3303.119986][T19260] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3303.126064][T19260] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3303.131277][T19260] ? mem_cgroup_iter+0x422/0x560 [ 3303.136227][T19260] try_charge_memcg+0xda2/0x18a0 [ 3303.141192][T19260] ? __pfx_try_charge_memcg+0x10/0x10 [ 3303.146572][T19260] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3303.152293][T19260] ? __pfx_lock_release+0x10/0x10 [ 3303.157331][T19260] ? memcg_account_kmem+0x1e7/0x210 [ 3303.162545][T19260] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3303.168382][T19260] __memcg_kmem_charge_page+0xe1/0x250 [ 3303.173859][T19260] memcg_charge_kernel_stack+0x210/0x550 [ 3303.179506][T19260] dup_task_struct+0x40d/0x7d0 [ 3303.184281][T19260] copy_process+0x5d5/0x3fc0 [ 3303.188893][T19260] ? __might_fault+0xa9/0x120 [ 3303.193591][T19260] ? __pfx_lock_release+0x10/0x10 [ 3303.198631][T19260] ? __lock_acquire+0x1345/0x1fd0 [ 3303.203667][T19260] ? __pfx_copy_process+0x10/0x10 [ 3303.208694][T19260] ? __might_fault+0xc5/0x120 [ 3303.213387][T19260] ? __asan_memset+0x23/0x50 [ 3303.217994][T19260] kernel_clone+0x21d/0x8d0 [ 3303.222510][T19260] ? __pfx_kernel_clone+0x10/0x10 [ 3303.227559][T19260] ? __pfx_lock_release+0x10/0x10 [ 3303.232645][T19260] __se_sys_clone3+0x2cb/0x350 [ 3303.237428][T19260] ? __might_fault+0xa9/0x120 [ 3303.242128][T19260] ? __pfx___se_sys_clone3+0x10/0x10 [ 3303.247426][T19260] ? rcu_is_watching+0x15/0xb0 [ 3303.252225][T19260] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3303.258229][T19260] ? exc_page_fault+0x587/0x870 [ 3303.263107][T19260] ? do_syscall_64+0xb4/0x240 [ 3303.267801][T19260] do_syscall_64+0xf9/0x240 [ 3303.272326][T19260] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3303.278237][T19260] RIP: 0033:0x7f080fca9b99 [ 3303.282672][T19260] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3303.302286][T19260] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3303.310709][T19260] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3303.318686][T19260] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3303.326663][T19260] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3303.334633][T19260] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3303.342602][T19260] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3303.350590][T19260] [ 3303.356882][T19260] memory: usage 307200kB, limit 307200kB, failcnt 134436 [ 3303.364895][T19260] memory+swap: usage 308556kB, limit 9007199254740988kB, failcnt 0 [ 3303.373099][T19260] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3303.380571][T19260] Memory cgroup stats for /syz0: [ 3303.380708][T19260] cache 0 [ 3303.388921][T19260] rss 16384 [ 3303.392047][T19260] rss_huge 0 [ 3303.395778][T19260] shmem 0 [ 3303.398736][T19260] mapped_file 0 [ 3303.402193][T19260] dirty 0 [ 3303.405186][T19260] writeback 0 [ 3303.408594][T19260] workingset_refault_anon 43391 [ 3303.413468][T19260] workingset_refault_file 0 [ 3303.418430][T19260] swap 1368064 [ 3303.426685][T19260] swapcached 16384 [ 3303.430611][T19260] pgpgin 286975 [ 3303.434215][T19260] pgpgout 286970 [ 3303.435252][T19168] usb 3-1: new high-speed USB device number 53 using dummy_hcd [ 3303.438881][T19260] pgfault 536297 [ 3303.449022][T19260] pgmajfault 41871 [ 3303.452736][T19260] inactive_anon 0 [ 3303.456489][T19260] active_anon 16384 [ 3303.460374][T19260] inactive_file 0 [ 3303.464088][T19260] active_file 0 [ 3303.470132][T19260] unevictable 0 [ 3303.473613][T19260] hierarchical_memory_limit 314572800 [ 3303.479124][T19260] hierarchical_memsw_limit 9223372036854771712 [ 3303.485524][T19260] total_cache 0 [ 3303.489119][T19260] total_rss 16384 [ 3303.492850][T19260] total_rss_huge 0 [ 3303.496855][T19260] total_shmem 0 [ 3303.500447][T19260] total_mapped_file 0 [ 3303.504537][T19260] total_dirty 0 [ 3303.508235][T19260] total_writeback 0 [ 3303.512153][T19260] total_workingset_refault_anon 43391 [ 3303.518068][T19260] total_workingset_refault_file 0 [ 3303.523177][T19260] total_swap 1368064 [ 3303.527633][T19260] total_swapcached 16384 [ 3303.531937][T19260] total_pgpgin 286975 [ 3303.536322][T19260] total_pgpgout 286970 [ 3303.540417][T19260] total_pgfault 536297 [ 3303.544542][T19260] total_pgmajfault 41871 [ 3303.551519][T19260] total_inactive_anon 0 [ 3303.556074][T19260] total_active_anon 16384 [ 3303.560499][T19260] total_inactive_file 0 [ 3303.564723][T19260] total_active_file 0 [ 3303.569528][T19260] total_unevictable 0 [ 3303.573602][T19260] anon_cost 0 [ 3303.580816][T19260] file_cost 0 [ 3303.584605][T19260] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19260,uid=0 [ 3303.600353][T19260] Memory cgroup out of memory: Killed process 19260 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:21 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x2ba}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3303.691598][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3303.835502][T19168] usb 3-1: config 0 has an invalid descriptor of length 25, skipping remainder of the config [ 3303.854176][T19168] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 3303.868488][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 17:45:22 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000086a05590000000000000109022400010000000009040000010300000019213d831bd4f161282e0581030000000000"], 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_connect$cdc_ecm(0x4, 0x159, &(0x7f0000000240)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x147, 0x1, 0x1, 0x2, 0x10, 0x2, [{{0x9, 0x4, 0x0, 0x7f, 0x2, 0x2, 0x6, 0x0, 0xfa, {{0x6, 0x24, 0x6, 0x0, 0x0, '\"'}, {0x5, 0x24, 0x0, 0x7fff}, {0xd, 0x24, 0xf, 0x1, 0x7f, 0x3, 0x1, 0x9}, [@call_mgmt={0x5, 0x24, 0x1, 0x3, 0x1f}, @mbim={0xc, 0x24, 0x1b, 0x9, 0x0, 0x1, 0x4, 0x7fff, 0x20}, @mbim={0xc, 0x24, 0x1b, 0x7, 0x5, 0x20, 0x9, 0x38, 0x80}, @mdlm_detail={0xde, 0x24, 0x13, 0x7, "3d4fb54bbad62a84818577920caca26dac7866f27ccbff69c15b278e317cfcb3ee43fcdfd9b5928f81ab55eef6cfabd922c640dd049fc7e4f2cb1a918ade2266d4f7c733dbc5a21b2eb8b507e974e35289c58eb5d6f0671e59bba199e3f583fe0efe8d8073def0ec18e6f43963ec6658f05b83f854a73e22b6058050706f62f4f8131ffe5ce0e1064448440b6e2030689215d46967bd330f77098a8121b45cce7fb9b98f8d6a53ab3e41eeef489833c7f7a1d2c44b3eba05550394125c444139d6aa509287556519b99ada1501ec2f08f4aa64e5e443d1a37276"}, @network_terminal={0x7, 0x24, 0xa, 0x5, 0x3c, 0xbf, 0x1}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x200, 0x81, 0x9}}], {{0x9, 0x5, 0x82, 0x2, 0x40, 0x0, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x0, 0x0, 0x81}}}}}]}}]}}, &(0x7f0000000400)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x110, 0xff, 0xff, 0x0, 0x8, 0x6}, 0x2c, &(0x7f00000000c0)={0x5, 0xf, 0x2c, 0x4, [@wireless={0xb, 0x10, 0x1, 0xc, 0x8, 0xff, 0xff, 0x200, 0x80}, @wireless={0xb, 0x10, 0x1, 0x8, 0x40, 0x0, 0x3f, 0xadc, 0x81}, @ext_cap={0x7, 0x10, 0x2, 0x8, 0x7, 0x5, 0xb9d}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x9, 0x80, 0x6, 0x178}]}, 0x4, [{0x71, &(0x7f0000000100)=@string={0x71, 0x3, "579d23de2177ddead2dcb436e626010c11dc9b44ca2f4d58c8fc3514af4e95093e42964b92cb674752839e87b6229421702f93cd92acdf6794b330826e149dbcfe8c0045c0e9c671530b2131de99ba33dc080bf5e9549fca5ab4489cff6ad5441d8ae35a634161cf6cf8bfa877f95b"}}, {0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x7830}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x180c}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x240a}}]}) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x8, {[@global=@item_4={0x3, 0x1, 0xa, "fa323ac5"}, @global=@item_012={0x2, 0x1, 0x4, "6eab"}]}}, 0x0}, 0x0) [ 3303.897378][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3303.924545][T19168] usb 3-1: config 0 descriptor?? [ 3303.975683][T19168] usb 3-1: can't set config #0, error -71 [ 3303.988839][T19168] usb 3-1: USB disconnect, device number 53 [ 3304.193406][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3304.205176][ T5110] CPU: 1 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3304.215545][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3304.225618][ T5110] Call Trace: [ 3304.228902][ T5110] [ 3304.231834][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3304.236538][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3304.241758][ T5110] ? __pfx__printk+0x10/0x10 [ 3304.246363][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3304.251077][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3304.256123][ T5110] dump_header+0xda/0x6a0 [ 3304.260474][ T5110] oom_kill_process+0x3a7/0x930 [ 3304.265355][ T5110] out_of_memory+0xf67/0x1320 [ 3304.270061][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3304.275729][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3304.280781][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3304.286007][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3304.291567][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3304.296619][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3304.302714][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3304.307932][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3304.312892][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3304.317847][ T5110] ? mark_lock+0x9a/0x350 [ 3304.322211][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3304.327626][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3304.333807][ T5110] charge_memcg+0xa2/0x160 [ 3304.338268][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3304.344349][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3304.349827][ T5110] ? mark_lock+0x9a/0x350 [ 3304.354186][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3304.360186][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3304.365575][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3304.371514][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3304.376556][ T5110] ? xas_descend+0x37e/0x470 [ 3304.381191][ T5110] swapin_readahead+0x1ea/0x1070 [ 3304.386150][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3304.391303][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3304.396710][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3304.402018][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3304.407329][ T5110] do_swap_page+0x791/0x3f40 [ 3304.411942][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3304.416738][ T5110] ? do_swap_page+0x154/0x3f40 [ 3304.421533][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3304.426565][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3304.432037][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3304.438029][ T5110] ? __pfx_validate_chain+0x10/0x10 [ 3304.443247][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3304.448393][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3304.453870][ T5110] ? mt_find+0x226/0x850 [ 3304.458222][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3304.463285][ T5110] ? mt_find+0x62d/0x850 [ 3304.467549][ T5110] ? mt_find+0x226/0x850 [ 3304.471838][ T5110] ? find_vma+0x142/0x1c0 [ 3304.476182][ T5110] ? __pfx_find_vma+0x10/0x10 [ 3304.480868][ T5110] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3304.486866][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3304.491647][ T5110] exc_page_fault+0x2ad/0x870 [ 3304.496340][ T5110] asm_exc_page_fault+0x26/0x30 [ 3304.501199][ T5110] RIP: 0010:__get_user_8+0x11/0x20 [ 3304.506320][ T5110] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3304.525938][ T5110] RSP: 0018:ffffc90003b0fd98 EFLAGS: 00050202 [ 3304.532012][ T5110] RAX: 0000555556ab4da8 RBX: ffff88807cdd6e78 RCX: ffffc90003b0fc03 [ 3304.539987][ T5110] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0 [ 3304.547968][ T5110] RBP: ffffc90003b0fec8 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d [ 3304.555953][ T5110] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b0fda0 [ 3304.563932][ T5110] R13: ffffc90003b0ffd8 R14: dffffc0000000000 R15: ffff88807cdd5940 [ 3304.571949][ T5110] __rseq_handle_notify_resume+0x158/0x1490 [ 3304.577889][ T5110] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3304.584262][ T5110] ? syscall_exit_to_user_mode+0xa2/0x360 [ 3304.590005][ T5110] syscall_exit_to_user_mode+0x113/0x360 [ 3304.595661][ T5110] do_syscall_64+0x108/0x240 [ 3304.600293][ T5110] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3304.606247][ T5110] RIP: 0033:0x7f080fca91b5 [ 3304.610691][ T5110] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 3304.630311][ T5110] RSP: 002b:00007f080fecfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 17:45:23 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_connect$cdc_ncm(0x4, 0x87, &(0x7f00000001c0)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x75, 0x2, 0x1, 0x1, 0x30, 0x50, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xa, 0x24, 0x6, 0x0, 0x1, "7a20bb9b40"}, {0x5, 0x24, 0x0, 0x8de}, {0xd, 0x24, 0xf, 0x1, 0x8, 0xddd, 0x7, 0x20}, {0x6, 0x24, 0x1a, 0x6c64, 0x10}, [@mbim_extended={0x8, 0x24, 0x1c, 0xf2, 0x2, 0x2}, @mbim={0xc, 0x24, 0x1b, 0x4, 0x16, 0x2a, 0x40, 0x6, 0x3}]}, {{0x9, 0x5, 0x81, 0x3, 0x20, 0x20, 0xdd, 0x98}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0x3f, 0x4, 0x4}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0xc8, 0x1, 0xfe}}}}}}}]}}, &(0x7f0000000300)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x201, 0x1, 0x7f, 0x0, 0xff, 0x96}, 0x1a, &(0x7f0000000100)={0x5, 0xf, 0x1a, 0x2, [@wireless={0xb, 0x10, 0x1, 0x2, 0x0, 0x7f, 0x7, 0x3, 0x5}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0xa, 0x2, 0x7, 0x1000}]}, 0x1, [{0x19, &(0x7f0000000280)=@string={0x19, 0x3, "94f73b625feb2fdc9dd8036fb62dd0510d4abd98a36695"}}]}) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3304.638751][ T5110] RAX: 0000000000000000 RBX: 0000000000004320 RCX: 00007f080fca91b5 [ 3304.646734][ T5110] RDX: 00007f080fecfd30 RSI: 0000000000000000 RDI: 0000000000000000 [ 3304.654711][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000000 R09: 00007ffde33aa0b0 [ 3304.662691][ T5110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3304.670667][ T5110] R13: 0000000000326910 R14: 0000000000326910 R15: 0000000000000000 [ 3304.678658][ T5110] [ 3304.722293][ T5110] memory: usage 307188kB, limit 307200kB, failcnt 134921 [ 3304.729461][ T5110] memory+swap: usage 308484kB, limit 9007199254740988kB, failcnt 0 [ 3304.753156][ T5110] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3304.764834][ T5110] Memory cgroup stats for /syz0: [ 3304.764996][ T5110] cache 0 [ 3304.773350][ T5110] rss 16384 [ 3304.776919][ T5110] rss_huge 0 [ 3304.780826][ T5110] shmem 0 [ 3304.783866][ T5110] mapped_file 0 [ 3304.789287][ T5110] dirty 0 [ 3304.792257][ T5110] writeback 0 [ 3304.796234][ T5110] workingset_refault_anon 43571 [ 3304.811664][ T5110] workingset_refault_file 0 [ 3304.816474][ T5110] swap 1318912 [ 3304.819945][ T5110] swapcached 12288 [ 3304.823736][ T5110] pgpgin 287167 [ 3304.827415][ T5110] pgpgout 287163 [ 3304.831073][ T5110] pgfault 536577 [ 3304.834717][ T5110] pgmajfault 42048 [ 3304.838610][ T5110] inactive_anon 0 [ 3304.842262][ T5110] active_anon 12288 [ 3304.846463][ T5110] inactive_file 0 [ 3304.850138][ T5110] active_file 0 [ 3304.853625][ T5110] unevictable 0 [ 3304.857367][T19168] usb 3-1: new high-speed USB device number 54 using dummy_hcd [ 3304.865242][ T5110] hierarchical_memory_limit 314572800 [ 3304.870652][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3304.876988][ T5110] total_cache 0 [ 3304.880488][ T5110] total_rss 16384 [ 3304.884129][ T5110] total_rss_huge 0 [ 3304.888054][ T5110] total_shmem 0 [ 3304.891530][ T5110] total_mapped_file 0 [ 3304.896173][ T5110] total_dirty 0 [ 3304.899677][ T5110] total_writeback 0 [ 3304.903494][ T5110] total_workingset_refault_anon 43571 [ 3304.909047][ T5110] total_workingset_refault_file 0 [ 3304.914145][ T5110] total_swap 1318912 [ 3304.918167][ T5110] total_swapcached 12288 [ 3304.922443][ T5110] total_pgpgin 287167 [ 3304.929585][ T5110] total_pgpgout 287163 [ 3304.933810][ T5110] total_pgfault 536577 [ 3304.941290][ T5110] total_pgmajfault 42048 [ 3304.945989][ T5110] total_inactive_anon 0 [ 3304.950180][ T5110] total_active_anon 12288 [ 3304.954530][ T5110] total_inactive_file 0 [ 3304.958809][ T5110] total_active_file 0 [ 3304.962816][ T5110] total_unevictable 0 [ 3304.966914][ T5110] anon_cost 0 [ 3304.970246][ T5110] file_cost 0 17:45:23 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x2bc}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3304.973541][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19261,uid=0 [ 3304.989690][ T5110] Memory cgroup out of memory: Killed process 19261 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3305.115358][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3305.235523][T19168] usb 3-1: config 0 has an invalid descriptor of length 25, skipping remainder of the config [ 3305.258846][T19168] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 3305.279120][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3305.288802][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3305.317898][T19168] usb 3-1: config 0 descriptor?? [ 3305.370209][T19168] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 3305.559794][T15001] usb 3-1: USB disconnect, device number 54 [ 3305.596550][T19266] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3305.607173][T19266] CPU: 0 PID: 19266 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3305.617719][T19266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3305.627899][T19266] Call Trace: [ 3305.631207][T19266] [ 3305.634156][T19266] dump_stack_lvl+0x1e7/0x2e0 [ 3305.638867][T19266] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3305.644123][T19266] ? __pfx__printk+0x10/0x10 [ 3305.648727][T19266] ? ___ratelimit+0x4c4/0x670 [ 3305.653428][T19266] ? __pfx____ratelimit+0x10/0x10 [ 3305.658489][T19266] dump_header+0xda/0x6a0 [ 3305.662857][T19266] oom_kill_process+0x3a7/0x930 [ 3305.667735][T19266] out_of_memory+0xf67/0x1320 [ 3305.672454][T19266] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3305.678111][T19266] ? __pfx___mutex_lock+0x10/0x10 [ 3305.683164][T19266] ? __pfx_out_of_memory+0x10/0x10 [ 3305.688299][T19266] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3305.693852][T19266] ? __pfx_lock_release+0x10/0x10 [ 3305.698902][T19266] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3305.705002][T19266] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3305.710213][T19266] ? mem_cgroup_iter+0x422/0x560 [ 3305.715175][T19266] try_charge_memcg+0xda2/0x18a0 [ 3305.720175][T19266] ? __pfx_try_charge_memcg+0x10/0x10 [ 3305.725590][T19266] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3305.731334][T19266] ? __pfx_lock_release+0x10/0x10 [ 3305.736379][T19266] ? memcg_account_kmem+0x1e7/0x210 [ 3305.741617][T19266] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3305.747442][T19266] __memcg_kmem_charge_page+0xe1/0x250 [ 3305.752996][T19266] memcg_charge_kernel_stack+0x210/0x550 [ 3305.758657][T19266] dup_task_struct+0x40d/0x7d0 [ 3305.763450][T19266] copy_process+0x5d5/0x3fc0 [ 3305.768070][T19266] ? __might_fault+0xa9/0x120 [ 3305.772753][T19266] ? __pfx_lock_release+0x10/0x10 [ 3305.777812][T19266] ? __pfx_copy_process+0x10/0x10 [ 3305.782858][T19266] ? __might_fault+0xc5/0x120 [ 3305.787635][T19266] ? __asan_memset+0x23/0x50 [ 3305.792235][T19266] kernel_clone+0x21d/0x8d0 [ 3305.796760][T19266] ? __pfx_kernel_clone+0x10/0x10 [ 3305.801857][T19266] __se_sys_clone3+0x2cb/0x350 [ 3305.806643][T19266] ? __pfx___se_sys_clone3+0x10/0x10 [ 3305.811967][T19266] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3305.817981][T19266] ? exc_page_fault+0x587/0x870 [ 3305.822864][T19266] ? do_syscall_64+0xb4/0x240 [ 3305.827567][T19266] do_syscall_64+0xf9/0x240 [ 3305.832119][T19266] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3305.838072][T19266] RIP: 0033:0x7f080fca9b99 [ 3305.842599][T19266] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3305.862731][T19266] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3305.871168][T19266] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3305.879153][T19266] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3305.887158][T19266] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3305.895178][T19266] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3305.903172][T19266] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3305.911185][T19266] [ 3305.922993][T19266] memory: usage 307180kB, limit 307200kB, failcnt 135512 [ 3305.930338][T19266] memory+swap: usage 308520kB, limit 9007199254740988kB, failcnt 0 [ 3305.938462][T19266] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3305.946019][T19266] Memory cgroup stats for /syz0: [ 3305.946178][T19266] cache 0 [ 3305.954233][T19266] rss 0 [ 3305.957329][T19266] rss_huge 0 [ 3305.960710][T19266] shmem 0 [ 3305.963820][T19266] mapped_file 0 [ 3305.968001][T19266] dirty 0 [ 3305.971117][T19266] writeback 0 [ 3305.974554][T19266] workingset_refault_anon 43793 [ 3305.979651][T19266] workingset_refault_file 0 [ 3305.984279][T19266] swap 1372160 [ 3305.987895][T19266] swapcached 0 [ 3305.991434][T19266] pgpgin 287400 [ 3305.995001][T19266] pgpgout 287400 [ 3305.998730][T19266] pgfault 536906 [ 3306.002437][T19266] pgmajfault 42258 [ 3306.006436][T19266] inactive_anon 0 [ 3306.010242][T19266] active_anon 0 [ 3306.013864][T19266] inactive_file 0 [ 3306.017972][T19266] active_file 0 [ 3306.021531][T19266] unevictable 0 [ 3306.025062][T19266] hierarchical_memory_limit 314572800 [ 3306.033532][T19266] hierarchical_memsw_limit 9223372036854771712 [ 3306.039918][T19266] total_cache 0 [ 3306.043491][T19266] total_rss 0 [ 3306.047006][T19266] total_rss_huge 0 [ 3306.050896][T19266] total_shmem 0 [ 3306.054488][T19266] total_mapped_file 0 [ 3306.058990][T19266] total_dirty 0 [ 3306.062637][T19266] total_writeback 0 [ 3306.067016][T19266] total_workingset_refault_anon 43793 [ 3306.072579][T19266] total_workingset_refault_file 0 [ 3306.077833][T19266] total_swap 1372160 [ 3306.081898][T19266] total_swapcached 0 [ 3306.086069][T19266] total_pgpgin 287400 [ 3306.090175][T19266] total_pgpgout 287400 [ 3306.094324][T19266] total_pgfault 536906 [ 3306.098676][T19266] total_pgmajfault 42258 [ 3306.103082][T19266] total_inactive_anon 0 [ 3306.107514][T19266] total_active_anon 0 [ 3306.111608][T19266] total_inactive_file 0 [ 3306.116199][T19266] total_active_file 0 [ 3306.120340][T19266] total_unevictable 0 [ 3306.124460][T19266] anon_cost 0 [ 3306.128051][T19266] file_cost 0 [ 3306.131488][T19266] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19266,uid=0 [ 3306.154620][T19266] Memory cgroup out of memory: Killed process 19266 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:24 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x2be}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3306.325381][T15001] usb 3-1: new high-speed USB device number 55 using dummy_hcd [ 3306.518840][T19269] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3306.531422][T19269] CPU: 0 PID: 19269 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3306.541883][T19269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3306.551963][T19269] Call Trace: [ 3306.555262][T19269] [ 3306.558215][T19269] dump_stack_lvl+0x1e7/0x2e0 [ 3306.562927][T19269] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3306.568149][T19269] ? __pfx__printk+0x10/0x10 [ 3306.572756][T19269] ? ___ratelimit+0x4c4/0x670 [ 3306.577450][T19269] ? __pfx____ratelimit+0x10/0x10 [ 3306.582534][T19269] dump_header+0xda/0x6a0 [ 3306.586889][T19269] oom_kill_process+0x3a7/0x930 [ 3306.591756][T19269] out_of_memory+0xf67/0x1320 [ 3306.596445][T19269] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3306.602105][T19269] ? __pfx___mutex_lock+0x10/0x10 [ 3306.607168][T19269] ? __pfx_out_of_memory+0x10/0x10 [ 3306.612327][T19269] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3306.617885][T19269] ? __pfx_lock_release+0x10/0x10 [ 3306.623018][T19269] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3306.629097][T19269] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3306.634312][T19269] ? mem_cgroup_iter+0x422/0x560 [ 3306.639279][T19269] try_charge_memcg+0xda2/0x18a0 [ 3306.644252][T19269] ? __pfx_try_charge_memcg+0x10/0x10 [ 3306.649661][T19269] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3306.655390][T19269] ? __pfx_lock_release+0x10/0x10 [ 3306.660431][T19269] ? memcg_account_kmem+0x1e7/0x210 [ 3306.665644][T19269] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3306.671465][T19269] __memcg_kmem_charge_page+0xe1/0x250 [ 3306.676953][T19269] memcg_charge_kernel_stack+0x210/0x550 [ 3306.682635][T19269] dup_task_struct+0x15d/0x7d0 [ 3306.687422][T19269] copy_process+0x5d5/0x3fc0 [ 3306.692057][T19269] ? __might_fault+0xa9/0x120 [ 3306.696766][T19269] ? __pfx_lock_release+0x10/0x10 [ 3306.701808][T19269] ? __pfx_copy_process+0x10/0x10 [ 3306.706850][T19269] ? __might_fault+0xc5/0x120 [ 3306.711554][T19269] ? __asan_memset+0x23/0x50 [ 3306.716174][T19269] kernel_clone+0x21d/0x8d0 [ 3306.720712][T19269] ? __pfx_kernel_clone+0x10/0x10 [ 3306.725767][T19269] __se_sys_clone3+0x2cb/0x350 [ 3306.730549][T19269] ? __pfx___se_sys_clone3+0x10/0x10 [ 3306.735874][T19269] ? do_syscall_64+0x108/0x240 [ 3306.740666][T19269] ? do_syscall_64+0xb4/0x240 [ 3306.745373][T19269] do_syscall_64+0xf9/0x240 [ 3306.749980][T19269] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3306.755886][T19269] RIP: 0033:0x7f080fca9b99 [ 3306.760305][T19269] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3306.779915][T19269] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3306.788335][T19269] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3306.796420][T19269] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3306.804393][T19269] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3306.812366][T19269] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3306.820344][T19269] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3306.828334][T19269] [ 3306.834969][T19269] memory: usage 307200kB, limit 307200kB, failcnt 135902 [ 3306.842090][T19269] memory+swap: usage 308536kB, limit 9007199254740988kB, failcnt 0 [ 3306.850305][T19269] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3306.857677][T19269] Memory cgroup stats for /syz0: [ 3306.857827][T19269] cache 0 [ 3306.865798][T19269] rss 4096 [ 3306.868844][T19269] rss_huge 0 [ 3306.872066][T19269] shmem 0 [ 3306.875023][T19269] mapped_file 0 [ 3306.878613][T15001] usb 3-1: Using ep0 maxpacket: 8 [ 3306.883789][T19269] dirty 0 [ 3306.886874][T19269] writeback 0 [ 3306.890186][T19269] workingset_refault_anon 43922 [ 3306.895073][T19269] workingset_refault_file 0 [ 3306.899894][T19269] swap 1363968 [ 3306.903532][T19269] swapcached 4096 [ 3306.907303][T19269] pgpgin 287541 [ 3306.910787][T19269] pgpgout 287540 [ 3306.914398][T19269] pgfault 537115 [ 3306.918478][T19269] pgmajfault 42382 [ 3306.922310][T19269] inactive_anon 0 [ 3306.928759][T19269] active_anon 0 [ 3306.932387][T19269] inactive_file 0 [ 3306.937210][T19269] active_file 0 [ 3306.940808][T19269] unevictable 0 [ 3306.944407][T19269] hierarchical_memory_limit 314572800 [ 3306.953007][T19269] hierarchical_memsw_limit 9223372036854771712 [ 3306.959818][T19269] total_cache 0 [ 3306.963296][T19269] total_rss 4096 17:45:25 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000086a05590000000000000109022400010000000009040000010300000019213d831bd4f161282e0581030000000000"], 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_connect$cdc_ecm(0x4, 0x159, &(0x7f0000000240)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x147, 0x1, 0x1, 0x2, 0x10, 0x2, [{{0x9, 0x4, 0x0, 0x7f, 0x2, 0x2, 0x6, 0x0, 0xfa, {{0x6, 0x24, 0x6, 0x0, 0x0, '\"'}, {0x5, 0x24, 0x0, 0x7fff}, {0xd, 0x24, 0xf, 0x1, 0x7f, 0x3, 0x1, 0x9}, [@call_mgmt={0x5, 0x24, 0x1, 0x3, 0x1f}, @mbim={0xc, 0x24, 0x1b, 0x9, 0x0, 0x1, 0x4, 0x7fff, 0x20}, @mbim={0xc, 0x24, 0x1b, 0x7, 0x5, 0x20, 0x9, 0x38, 0x80}, @mdlm_detail={0xde, 0x24, 0x13, 0x7, "3d4fb54bbad62a84818577920caca26dac7866f27ccbff69c15b278e317cfcb3ee43fcdfd9b5928f81ab55eef6cfabd922c640dd049fc7e4f2cb1a918ade2266d4f7c733dbc5a21b2eb8b507e974e35289c58eb5d6f0671e59bba199e3f583fe0efe8d8073def0ec18e6f43963ec6658f05b83f854a73e22b6058050706f62f4f8131ffe5ce0e1064448440b6e2030689215d46967bd330f77098a8121b45cce7fb9b98f8d6a53ab3e41eeef489833c7f7a1d2c44b3eba05550394125c444139d6aa509287556519b99ada1501ec2f08f4aa64e5e443d1a37276"}, @network_terminal={0x7, 0x24, 0xa, 0x5, 0x3c, 0xbf, 0x1}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x200, 0x81, 0x9}}], {{0x9, 0x5, 0x82, 0x2, 0x40, 0x0, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x0, 0x0, 0x81}}}}}]}}]}}, &(0x7f0000000400)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x110, 0xff, 0xff, 0x0, 0x8, 0x6}, 0x2c, &(0x7f00000000c0)={0x5, 0xf, 0x2c, 0x4, [@wireless={0xb, 0x10, 0x1, 0xc, 0x8, 0xff, 0xff, 0x200, 0x80}, @wireless={0xb, 0x10, 0x1, 0x8, 0x40, 0x0, 0x3f, 0xadc, 0x81}, @ext_cap={0x7, 0x10, 0x2, 0x8, 0x7, 0x5, 0xb9d}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x9, 0x80, 0x6, 0x178}]}, 0x4, [{0x71, &(0x7f0000000100)=@string={0x71, 0x3, "579d23de2177ddead2dcb436e626010c11dc9b44ca2f4d58c8fc3514af4e95093e42964b92cb674752839e87b6229421702f93cd92acdf6794b330826e149dbcfe8c0045c0e9c671530b2131de99ba33dc080bf5e9549fca5ab4489cff6ad5441d8ae35a634161cf6cf8bfa877f95b"}}, {0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x7830}}, {0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x180c}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x240a}}]}) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x8, {[@global=@item_4={0x3, 0x1, 0xa, "fa323ac5"}, @global=@item_012={0x2, 0x1, 0x4, "6eab"}]}}, 0x0}, 0x0) [ 3306.967382][T19269] total_rss_huge 0 [ 3306.971502][T19269] total_shmem 0 [ 3306.976280][T19269] total_mapped_file 0 [ 3306.984412][T19269] total_dirty 0 [ 3306.988530][T19269] total_writeback 0 [ 3306.996891][T19269] total_workingset_refault_anon 43922 [ 3307.002292][T19269] total_workingset_refault_file 0 [ 3307.009529][T19269] total_swap 1363968 [ 3307.013447][T19269] total_swapcached 4096 [ 3307.018472][T19269] total_pgpgin 287541 [ 3307.022479][T19269] total_pgpgout 287540 [ 3307.027411][T19269] total_pgfault 537115 [ 3307.034055][T19269] total_pgmajfault 42382 [ 3307.045191][T19269] total_inactive_anon 0 [ 3307.049379][T19269] total_active_anon 0 [ 3307.053387][T19269] total_inactive_file 0 [ 3307.060631][T15001] usb 3-1: unable to read config index 0 descriptor/all [ 3307.068091][T19269] total_active_file 0 [ 3307.072126][T19269] total_unevictable 0 [ 3307.076569][T15001] usb 3-1: can't read configurations, error -71 [ 3307.081605][T19269] anon_cost 0 [ 3307.086463][T19269] file_cost 0 [ 3307.089772][T19269] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19269,uid=0 [ 3307.113251][T19269] Memory cgroup out of memory: Killed process 19269 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:25 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x2da}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3307.465290][T15001] usb 3-1: new high-speed USB device number 56 using dummy_hcd [ 3307.547619][T19272] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3307.557969][T19272] CPU: 0 PID: 19272 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3307.568442][T19272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3307.578532][T19272] Call Trace: [ 3307.581874][T19272] [ 3307.584821][T19272] dump_stack_lvl+0x1e7/0x2e0 [ 3307.589523][T19272] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3307.594747][T19272] ? __pfx__printk+0x10/0x10 [ 3307.599355][T19272] ? ___ratelimit+0x4c4/0x670 [ 3307.604059][T19272] ? __pfx____ratelimit+0x10/0x10 [ 3307.609371][T19272] dump_header+0xda/0x6a0 [ 3307.613743][T19272] oom_kill_process+0x3a7/0x930 [ 3307.618612][T19272] out_of_memory+0xf67/0x1320 [ 3307.623311][T19272] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3307.628956][T19272] ? __pfx___mutex_lock+0x10/0x10 [ 3307.633999][T19272] ? __pfx_out_of_memory+0x10/0x10 [ 3307.639223][T19272] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3307.644801][T19272] ? __pfx_lock_release+0x10/0x10 [ 3307.649856][T19272] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3307.655958][T19272] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3307.661175][T19272] ? mem_cgroup_iter+0x422/0x560 [ 3307.666132][T19272] try_charge_memcg+0xda2/0x18a0 [ 3307.671100][T19272] ? __pfx_try_charge_memcg+0x10/0x10 [ 3307.676496][T19272] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3307.682257][T19272] ? __pfx_lock_release+0x10/0x10 [ 3307.687324][T19272] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3307.693170][T19272] __memcg_kmem_charge_page+0xe1/0x250 [ 3307.698664][T19272] memcg_charge_kernel_stack+0xa7/0x550 [ 3307.704230][T19272] dup_task_struct+0x40d/0x7d0 [ 3307.709013][T19272] copy_process+0x5d5/0x3fc0 [ 3307.713645][T19272] ? __might_fault+0xa9/0x120 [ 3307.718337][T19272] ? __pfx_lock_release+0x10/0x10 [ 3307.723379][T19272] ? __lock_acquire+0x1345/0x1fd0 [ 3307.728422][T19272] ? __pfx_copy_process+0x10/0x10 [ 3307.733466][T19272] ? __might_fault+0xc5/0x120 [ 3307.738165][T19272] ? __asan_memset+0x23/0x50 [ 3307.742777][T19272] kernel_clone+0x21d/0x8d0 [ 3307.747303][T19272] ? __pfx_kernel_clone+0x10/0x10 [ 3307.752350][T19272] ? __pfx_lock_release+0x10/0x10 [ 3307.757399][T19272] __se_sys_clone3+0x2cb/0x350 [ 3307.762175][T19272] ? __might_fault+0xa9/0x120 [ 3307.766870][T19272] ? __pfx___se_sys_clone3+0x10/0x10 [ 3307.772162][T19272] ? rcu_is_watching+0x15/0xb0 [ 3307.776957][T19272] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3307.782966][T19272] ? exc_page_fault+0x587/0x870 [ 3307.787837][T19272] ? do_syscall_64+0xb4/0x240 [ 3307.792537][T19272] do_syscall_64+0xf9/0x240 [ 3307.797064][T19272] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3307.802979][T19272] RIP: 0033:0x7f080fca9b99 [ 3307.807413][T19272] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3307.827043][T19272] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3307.835478][T19272] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 17:45:26 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, &(0x7f00000001c0)={0x20, 0x4, 0xf1, {0xf1, 0x22, "d6c10fa6851c96c7fc21ae792b504d0c32b0260e5c4fe9242791ed0ca87bb145fb8000101548dfc59e3cffbcbb8a6d214709682b04977756249b2ea4dba4bfd029d0f082cfd63d0b4ceb1d90d83e5e66ffae15492f6ed1f47ae162d701c31b9f8486eeb3bfa8940717dbe53a3adabbb0ba3e51bbd21ab66d7d150efe08fbc246fe55347bb276b0179dd0d1896f54810ec3ded2b2c918526ca961540e26af39f12299de9e9e9c903b10c2668dd3f81e32f92a9f1b81e6e38793f29adef0b169ec3b22db5ac165e002a6b586edd03b9dc88dfabfef26344c67c5c4a8758057f888f56803af902d634bd368fe391978d8"}}, &(0x7f00000002c0)={0x0, 0x3, 0xcd, @string={0xcd, 0x3, "957d480974e3c43e57cf4982bd6046ef050b279d450ce3b19048a15eabe37463ba3f9518c0bbce390e4ab0546be24803fdbba682dd0e9699d033d3eeacea2bd514b40f3903875d3437ec3b2d7eeff39b50dcdf50f52cb83973cedd26e5699cae6c5265488277acd98eb20af675a4e852a1a2c5ebfb46d58ddfe3c90ae2c87bcd652778c8edf171f13692adc6670c0e0f02a1b94f400541769cc3d4eec546337563bdeda19d301eb30ee822fa7dbf22dac5e92fcb094c015edb9d51d018408a6ee75d9ab2f75e6506164410"}}, &(0x7f00000000c0)={0x0, 0x22, 0x1c, {[@main=@item_012={0x2, 0x0, 0x9, "e871"}, @global=@item_4={0x3, 0x1, 0xb, "9f6d0919"}, @local=@item_012={0x0, 0x2, 0x1}, @local=@item_4={0x3, 0x2, 0x1, "82f1ee87"}, @main=@item_012={0x0, 0x0, 0x8}, @main=@item_4={0x3, 0x0, 0x9, "3998f7dc"}, @main=@item_012={0x2, 0x0, 0xc, "d345"}, @global=@item_012={0x1, 0x1, 0x3, "c2"}, @global=@item_012={0x2, 0x1, 0x5, "d921"}]}}, &(0x7f0000000100)={0x0, 0x21, 0x9, {0x9, 0x21, 0x0, 0x8d, 0x1, {0x22, 0x824}}}}, &(0x7f0000000640)={0x2c, &(0x7f0000000400)={0x40, 0x12, 0x50, "e7f40f21ca021a616a30f0d82adcbe3da69bb244a18ac7ec7de9537e089028c48be3d8901645ec1704ecae2d7ca3b4f5d0cf3713a679f8deea6faa1d1b5b93fdbeb5c8034ca1c93a8cbbc0f6f26c4f22"}, &(0x7f0000000480)={0x0, 0xa, 0x1, 0x9}, &(0x7f00000004c0)={0x0, 0x8, 0x1}, &(0x7f0000000500)={0x20, 0x1, 0xdf, "3dd55607f449177b64b18edd98a0e1d2f5cb245fd7c8b8d75fbce1376ef06dbddd6f489dee301808b70ad9eb65fa8f6947adb324372391fb1d624bc2ac18312be0a9265ecf69ff2cfa1ac38b64abad841cc4114655a44c4eb281e21eadcbbabf9af4cfd3746242733b3fad63d5d7e17201a7f99cf6f979ae5b35f2fd8ceefaab4bdebdded69e5ecd10c27e2109f29a7d6ca3364a968d92604482e6a5c6c8733c0e24b69a60932b63c94b83dd617ef93fc690975c57ca605f1bdb1d3969ff22db302920ef9eb000480da4fb138323b1dc7fd5afb6b9ed44257fef9f6221e519"}, &(0x7f0000000600)={0x20, 0x3, 0x1, 0x3a}}) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3307.843463][T19272] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3307.851455][T19272] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3307.859442][T19272] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3307.867437][T19272] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3307.875442][T19272] [ 3307.918059][T19272] memory: usage 307200kB, limit 307200kB, failcnt 136356 [ 3307.933352][T19272] memory+swap: usage 308560kB, limit 9007199254740988kB, failcnt 0 [ 3307.942851][T19272] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3307.950976][T19272] Memory cgroup stats for /syz0: [ 3307.951124][T19272] cache 0 [ 3307.963570][T19272] rss 12288 [ 3307.967913][T19272] rss_huge 0 [ 3307.971293][T19272] shmem 0 [ 3307.974403][T19272] mapped_file 0 [ 3307.978042][T19272] dirty 0 [ 3307.981036][T19272] writeback 0 [ 3307.984361][T19272] workingset_refault_anon 44090 [ 3307.989562][T19272] workingset_refault_file 0 [ 3307.994092][T19272] swap 1392640 [ 3307.997930][T19272] swapcached 8192 [ 3308.001589][T19272] pgpgin 287722 [ 3308.005068][T19272] pgpgout 287719 [ 3308.005282][T15001] usb 3-1: Using ep0 maxpacket: 8 [ 3308.008666][T19272] pgfault 537369 [ 3308.017375][T19272] pgmajfault 42531 [ 3308.021124][T19272] inactive_anon 0 [ 3308.024777][T19272] active_anon 12288 [ 3308.028687][T19272] inactive_file 0 [ 3308.032343][T19272] active_file 0 [ 3308.036213][T19272] unevictable 0 [ 3308.039904][T19272] hierarchical_memory_limit 314572800 [ 3308.046310][T19272] hierarchical_memsw_limit 9223372036854771712 [ 3308.052672][T19272] total_cache 0 [ 3308.056788][T19272] total_rss 12288 [ 3308.060632][T19272] total_rss_huge 0 [ 3308.064537][T19272] total_shmem 0 [ 3308.069004][T19272] total_mapped_file 0 [ 3308.073227][T19272] total_dirty 0 [ 3308.077347][T19272] total_writeback 0 [ 3308.081308][T19272] total_workingset_refault_anon 44090 [ 3308.087626][T19272] total_workingset_refault_file 0 [ 3308.092819][T19272] total_swap 1392640 [ 3308.100162][T19272] total_swapcached 8192 [ 3308.104546][T19272] total_pgpgin 287722 [ 3308.110469][T19272] total_pgpgout 287719 [ 3308.114760][T19272] total_pgfault 537369 [ 3308.119480][T19272] total_pgmajfault 42531 [ 3308.123868][T19272] total_inactive_anon 0 [ 3308.128293][T15001] usb 3-1: config 0 has an invalid descriptor of length 25, skipping remainder of the config [ 3308.128346][T19272] total_active_anon 12288 [ 3308.145679][T19272] total_inactive_file 0 [ 3308.146950][T15001] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 3308.149848][T19272] total_active_file 0 [ 3308.149861][T19272] total_unevictable 0 [ 3308.149871][T19272] anon_cost 0 [ 3308.149881][T19272] file_cost 0 [ 3308.149891][T19272] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset= [ 3308.163801][T15001] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3308.182942][T19272] syz0 [ 3308.186172][T15001] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3308.205509][T19272] ,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19272,uid=0 [ 3308.222354][T19272] Memory cgroup out of memory: Killed process 19272 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3308.246484][T15001] usb 3-1: config 0 descriptor?? 17:45:26 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x300}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3308.303337][T15001] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 3308.497385][T19168] usb 3-1: USB disconnect, device number 56 [ 3308.664557][T19276] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3308.675330][T19276] CPU: 1 PID: 19276 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3308.685794][T19276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3308.696146][T19276] Call Trace: [ 3308.699449][T19276] [ 3308.702395][T19276] dump_stack_lvl+0x1e7/0x2e0 [ 3308.707101][T19276] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3308.712321][T19276] ? __pfx__printk+0x10/0x10 [ 3308.716926][T19276] ? ___ratelimit+0x4c4/0x670 [ 3308.721632][T19276] ? __pfx____ratelimit+0x10/0x10 [ 3308.726693][T19276] dump_header+0xda/0x6a0 [ 3308.731064][T19276] oom_kill_process+0x3a7/0x930 [ 3308.736025][T19276] out_of_memory+0xf67/0x1320 [ 3308.740734][T19276] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3308.746385][T19276] ? __pfx___mutex_lock+0x10/0x10 [ 3308.751430][T19276] ? __pfx_out_of_memory+0x10/0x10 [ 3308.756571][T19276] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3308.762145][T19276] ? __pfx_lock_release+0x10/0x10 [ 3308.767191][T19276] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3308.773282][T19276] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3308.778523][T19276] ? mem_cgroup_iter+0x422/0x560 [ 3308.783570][T19276] try_charge_memcg+0xda2/0x18a0 [ 3308.789063][T19276] ? __pfx_try_charge_memcg+0x10/0x10 [ 3308.794449][T19276] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3308.800201][T19276] ? __pfx_lock_release+0x10/0x10 [ 3308.805288][T19276] ? memcg_account_kmem+0x1e7/0x210 [ 3308.810533][T19276] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3308.816383][T19276] __memcg_kmem_charge_page+0xe1/0x250 [ 3308.821881][T19276] memcg_charge_kernel_stack+0x210/0x550 [ 3308.827547][T19276] dup_task_struct+0x15d/0x7d0 [ 3308.832343][T19276] copy_process+0x5d5/0x3fc0 [ 3308.836984][T19276] ? __might_fault+0xa9/0x120 [ 3308.841697][T19276] ? __pfx_lock_release+0x10/0x10 [ 3308.846786][T19276] ? __lock_acquire+0x1345/0x1fd0 [ 3308.851926][T19276] ? __pfx_copy_process+0x10/0x10 [ 3308.857057][T19276] ? __might_fault+0xc5/0x120 [ 3308.861795][T19276] ? __asan_memset+0x23/0x50 [ 3308.866431][T19276] kernel_clone+0x21d/0x8d0 [ 3308.870979][T19276] ? __pfx_kernel_clone+0x10/0x10 [ 3308.876210][T19276] ? __pfx_lock_release+0x10/0x10 [ 3308.881273][T19276] __se_sys_clone3+0x2cb/0x350 [ 3308.886057][T19276] ? __might_fault+0xa9/0x120 [ 3308.890758][T19276] ? __pfx___se_sys_clone3+0x10/0x10 [ 3308.896064][T19276] ? rcu_is_watching+0x15/0xb0 [ 3308.900881][T19276] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3308.906892][T19276] ? exc_page_fault+0x587/0x870 [ 3308.911764][T19276] ? do_syscall_64+0xb4/0x240 [ 3308.916459][T19276] do_syscall_64+0xf9/0x240 [ 3308.920993][T19276] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3308.926926][T19276] RIP: 0033:0x7f080fca9b99 [ 3308.931353][T19276] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3308.950980][T19276] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3308.959409][T19276] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3308.967391][T19276] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3308.975415][T19276] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3308.983399][T19276] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3308.991484][T19276] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3308.999492][T19276] [ 3309.007885][T19276] memory: usage 307200kB, limit 307200kB, failcnt 136774 [ 3309.022051][T19276] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3309.030336][T19276] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3309.037824][T19276] Memory cgroup stats for /syz0: [ 3309.037971][T19276] cache 0 [ 3309.046119][T19276] rss 0 [ 3309.048912][T19276] rss_huge 0 [ 3309.052156][T19276] shmem 0 [ 3309.055240][T19276] mapped_file 0 [ 3309.058744][T19276] dirty 0 [ 3309.061707][T19276] writeback 0 [ 3309.065009][T19276] workingset_refault_anon 44258 [ 3309.069933][T19276] workingset_refault_file 0 [ 3309.074455][T19276] swap 1372160 [ 3309.077982][T19276] swapcached 0 [ 3309.081377][T19276] pgpgin 287901 [ 3309.084842][T19276] pgpgout 287901 [ 3309.088589][T19276] pgfault 537627 [ 3309.092258][T19276] pgmajfault 42693 [ 3309.096460][T19276] inactive_anon 0 [ 3309.100247][T19276] active_anon 0 [ 3309.103789][T19276] inactive_file 0 [ 3309.107626][T19276] active_file 0 [ 3309.111207][T19276] unevictable 0 [ 3309.114784][T19276] hierarchical_memory_limit 314572800 [ 3309.121531][T19276] hierarchical_memsw_limit 9223372036854771712 [ 3309.128147][T19276] total_cache 0 [ 3309.131780][T19276] total_rss 0 [ 3309.135097][T19276] total_rss_huge 0 [ 3309.140005][T19276] total_shmem 0 [ 3309.143744][T19276] total_mapped_file 0 [ 3309.147985][T19276] total_dirty 0 [ 3309.151493][T19276] total_writeback 0 [ 3309.155867][T19276] total_workingset_refault_anon 44258 [ 3309.161267][T19276] total_workingset_refault_file 0 [ 3309.166368][T19276] total_swap 1372160 [ 3309.170295][T19276] total_swapcached 0 [ 3309.174317][T19276] total_pgpgin 287901 [ 3309.178841][T19276] total_pgpgout 287901 [ 3309.182948][T19276] total_pgfault 537627 [ 3309.187199][T19276] total_pgmajfault 42693 [ 3309.191465][T19276] total_inactive_anon 0 [ 3309.195806][T19276] total_active_anon 0 [ 3309.199805][T19276] total_inactive_file 0 [ 3309.204059][T19276] total_active_file 0 [ 3309.209570][T19276] total_unevictable 0 [ 3309.213958][T19276] anon_cost 0 [ 3309.217626][T19276] file_cost 0 [ 3309.221612][T19276] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19276,uid=0 [ 3309.224195][T19271] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3309.255375][T19276] Memory cgroup out of memory: Killed process 19276 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3309.257382][T19271] misc raw-gadget: fail, usb_gadget_register_driver returned -16 17:45:27 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x302}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3309.475296][T15001] usb 3-1: new high-speed USB device number 57 using dummy_hcd [ 3309.562297][T19278] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3309.572661][T19278] CPU: 0 PID: 19278 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3309.583114][T19278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3309.593183][T19278] Call Trace: [ 3309.596471][T19278] [ 3309.599412][T19278] dump_stack_lvl+0x1e7/0x2e0 [ 3309.604167][T19278] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3309.609395][T19278] ? __pfx__printk+0x10/0x10 [ 3309.614006][T19278] ? ___ratelimit+0x4c4/0x670 [ 3309.618885][T19278] ? __pfx____ratelimit+0x10/0x10 [ 3309.623956][T19278] dump_header+0xda/0x6a0 [ 3309.628434][T19278] oom_kill_process+0x3a7/0x930 [ 3309.633307][T19278] out_of_memory+0xf67/0x1320 [ 3309.638008][T19278] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3309.643656][T19278] ? __pfx___mutex_lock+0x10/0x10 [ 3309.648715][T19278] ? __pfx_out_of_memory+0x10/0x10 [ 3309.653852][T19278] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3309.659415][T19278] ? __pfx_lock_release+0x10/0x10 [ 3309.664463][T19278] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3309.670552][T19278] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3309.675783][T19278] ? mem_cgroup_iter+0x422/0x560 [ 3309.680740][T19278] try_charge_memcg+0xda2/0x18a0 [ 3309.685717][T19278] ? __pfx_try_charge_memcg+0x10/0x10 [ 3309.691129][T19278] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3309.696874][T19278] ? __pfx_lock_release+0x10/0x10 [ 3309.701927][T19278] ? memcg_account_kmem+0x1e7/0x210 [ 3309.707179][T19278] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3309.713016][T19278] __memcg_kmem_charge_page+0xe1/0x250 [ 3309.718512][T19278] memcg_charge_kernel_stack+0x210/0x550 [ 3309.724202][T19278] dup_task_struct+0x15d/0x7d0 [ 3309.729000][T19278] copy_process+0x5d5/0x3fc0 [ 3309.733670][T19278] ? __might_fault+0xa9/0x120 [ 3309.738377][T19278] ? __pfx_lock_release+0x10/0x10 [ 3309.743438][T19278] ? __pfx_copy_process+0x10/0x10 [ 3309.748483][T19278] ? __might_fault+0xc5/0x120 [ 3309.753183][T19278] ? __asan_memset+0x23/0x50 [ 3309.757797][T19278] kernel_clone+0x21d/0x8d0 [ 3309.762322][T19278] ? __pfx_kernel_clone+0x10/0x10 [ 3309.767381][T19278] __se_sys_clone3+0x2cb/0x350 [ 3309.772184][T19278] ? __pfx___se_sys_clone3+0x10/0x10 [ 3309.777512][T19278] ? do_syscall_64+0x108/0x240 [ 3309.782320][T19278] ? do_syscall_64+0xb4/0x240 [ 3309.787112][T19278] do_syscall_64+0xf9/0x240 [ 3309.791642][T19278] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3309.797643][T19278] RIP: 0033:0x7f080fca9b99 [ 3309.802073][T19278] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3309.821696][T19278] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3309.830128][T19278] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3309.838113][T19278] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3309.846098][T19278] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3309.854085][T19278] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3309.862070][T19278] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3309.870076][T19278] [ 3309.876355][T19278] memory: usage 307200kB, limit 307200kB, failcnt 137098 [ 3309.883580][T19278] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3309.911214][T19278] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3309.918941][T19278] Memory cgroup stats for /syz0: [ 3309.919118][T19278] cache 0 [ 3309.927536][T19278] rss 4096 [ 3309.930599][T19278] rss_huge 0 [ 3309.933830][T19278] shmem 0 [ 3309.947867][T19278] mapped_file 0 [ 3309.951436][T19278] dirty 0 [ 3309.954406][T19278] writeback 0 [ 3309.963056][T19278] workingset_refault_anon 44367 [ 3309.968333][T19278] workingset_refault_file 0 [ 3309.972872][T19278] swap 1368064 [ 3309.983894][T19278] swapcached 4096 [ 3310.005875][T19278] pgpgin 288022 [ 3310.009382][T19278] pgpgout 288021 [ 3310.014801][T19278] pgfault 537800 [ 3310.018753][T15001] usb 3-1: Using ep0 maxpacket: 8 [ 3310.032380][T19278] pgmajfault 42795 [ 3310.037865][T19278] inactive_anon 0 [ 3310.041545][T19278] active_anon 4096 [ 3310.054686][T19278] inactive_file 0 [ 3310.058759][T19278] active_file 0 [ 3310.062254][T19278] unevictable 0 [ 3310.075234][T19278] hierarchical_memory_limit 314572800 [ 3310.080651][T19278] hierarchical_memsw_limit 9223372036854771712 [ 3310.095615][T19278] total_cache 0 [ 3310.099133][T19278] total_rss 4096 [ 3310.102726][T19278] total_rss_huge 0 [ 3310.119844][T19278] total_shmem 0 [ 3310.123353][T19278] total_mapped_file 0 [ 3310.134921][T19278] total_dirty 0 [ 3310.139184][T19278] total_writeback 0 [ 3310.143018][T19278] total_workingset_refault_anon 44367 [ 3310.148738][T15001] usb 3-1: config 0 has an invalid descriptor of length 25, skipping remainder of the config [ 3310.170772][T19278] total_workingset_refault_file 0 [ 3310.176359][T15001] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 3310.195235][T19278] total_swap 1368064 [ 3310.199171][T19278] total_swapcached 4096 [ 3310.203344][T19278] total_pgpgin 288022 17:45:28 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x5, {[@main=@item_012={0x2, 0x0, 0xb, "1901"}, @main=@item_012={0x1, 0x0, 0xc, "12"}]}}, 0x0}, 0x0) [ 3310.228079][T15001] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3310.245236][T19278] total_pgpgout 288021 [ 3310.249353][T19278] total_pgfault 537800 [ 3310.263170][T15001] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3310.271341][T19278] total_pgmajfault 42795 [ 3310.285682][T19278] total_inactive_anon 0 [ 3310.289898][T19278] total_active_anon 4096 [ 3310.294162][T19278] total_inactive_file 0 [ 3310.306436][T15001] usb 3-1: config 0 descriptor?? [ 3310.325588][T19278] total_active_file 0 [ 3310.329639][T19278] total_unevictable 0 [ 3310.333652][T19278] anon_cost 0 [ 3310.346079][T15001] usb 3-1: can't set config #0, error -71 [ 3310.374885][T15001] usb 3-1: USB disconnect, device number 57 [ 3310.384671][T19278] file_cost 0 [ 3310.397074][T19278] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19278,uid=0 [ 3310.443815][T19278] Memory cgroup out of memory: Killed process 19278 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:28 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x306}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3310.775362][T15001] usb 3-1: new high-speed USB device number 58 using dummy_hcd 17:45:29 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async, rerun: 64) syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, &(0x7f00000001c0)={0x20, 0x4, 0xf1, {0xf1, 0x22, "d6c10fa6851c96c7fc21ae792b504d0c32b0260e5c4fe9242791ed0ca87bb145fb8000101548dfc59e3cffbcbb8a6d214709682b04977756249b2ea4dba4bfd029d0f082cfd63d0b4ceb1d90d83e5e66ffae15492f6ed1f47ae162d701c31b9f8486eeb3bfa8940717dbe53a3adabbb0ba3e51bbd21ab66d7d150efe08fbc246fe55347bb276b0179dd0d1896f54810ec3ded2b2c918526ca961540e26af39f12299de9e9e9c903b10c2668dd3f81e32f92a9f1b81e6e38793f29adef0b169ec3b22db5ac165e002a6b586edd03b9dc88dfabfef26344c67c5c4a8758057f888f56803af902d634bd368fe391978d8"}}, &(0x7f00000002c0)={0x0, 0x3, 0xcd, @string={0xcd, 0x3, "957d480974e3c43e57cf4982bd6046ef050b279d450ce3b19048a15eabe37463ba3f9518c0bbce390e4ab0546be24803fdbba682dd0e9699d033d3eeacea2bd514b40f3903875d3437ec3b2d7eeff39b50dcdf50f52cb83973cedd26e5699cae6c5265488277acd98eb20af675a4e852a1a2c5ebfb46d58ddfe3c90ae2c87bcd652778c8edf171f13692adc6670c0e0f02a1b94f400541769cc3d4eec546337563bdeda19d301eb30ee822fa7dbf22dac5e92fcb094c015edb9d51d018408a6ee75d9ab2f75e6506164410"}}, &(0x7f00000000c0)={0x0, 0x22, 0x1c, {[@main=@item_012={0x2, 0x0, 0x9, "e871"}, @global=@item_4={0x3, 0x1, 0xb, "9f6d0919"}, @local=@item_012={0x0, 0x2, 0x1}, @local=@item_4={0x3, 0x2, 0x1, "82f1ee87"}, @main=@item_012={0x0, 0x0, 0x8}, @main=@item_4={0x3, 0x0, 0x9, "3998f7dc"}, @main=@item_012={0x2, 0x0, 0xc, "d345"}, @global=@item_012={0x1, 0x1, 0x3, "c2"}, @global=@item_012={0x2, 0x1, 0x5, "d921"}]}}, &(0x7f0000000100)={0x0, 0x21, 0x9, {0x9, 0x21, 0x0, 0x8d, 0x1, {0x22, 0x824}}}}, &(0x7f0000000640)={0x2c, &(0x7f0000000400)={0x40, 0x12, 0x50, "e7f40f21ca021a616a30f0d82adcbe3da69bb244a18ac7ec7de9537e089028c48be3d8901645ec1704ecae2d7ca3b4f5d0cf3713a679f8deea6faa1d1b5b93fdbeb5c8034ca1c93a8cbbc0f6f26c4f22"}, &(0x7f0000000480)={0x0, 0xa, 0x1, 0x9}, &(0x7f00000004c0)={0x0, 0x8, 0x1}, &(0x7f0000000500)={0x20, 0x1, 0xdf, "3dd55607f449177b64b18edd98a0e1d2f5cb245fd7c8b8d75fbce1376ef06dbddd6f489dee301808b70ad9eb65fa8f6947adb324372391fb1d624bc2ac18312be0a9265ecf69ff2cfa1ac38b64abad841cc4114655a44c4eb281e21eadcbbabf9af4cfd3746242733b3fad63d5d7e17201a7f99cf6f979ae5b35f2fd8ceefaab4bdebdded69e5ecd10c27e2109f29a7d6ca3364a968d92604482e6a5c6c8733c0e24b69a60932b63c94b83dd617ef93fc690975c57ca605f1bdb1d3969ff22db302920ef9eb000480da4fb138323b1dc7fd5afb6b9ed44257fef9f6221e519"}, &(0x7f0000000600)={0x20, 0x3, 0x1, 0x3a}}) (async, rerun: 64) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3311.045593][T15001] usb 3-1: Using ep0 maxpacket: 8 [ 3311.062412][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3311.074846][ T5110] CPU: 1 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3311.085254][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3311.095360][ T5110] Call Trace: [ 3311.098644][ T5110] [ 3311.101669][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3311.106366][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3311.111575][ T5110] ? __pfx__printk+0x10/0x10 [ 3311.116202][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3311.120986][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3311.126140][ T5110] dump_header+0xda/0x6a0 [ 3311.130506][ T5110] oom_kill_process+0x3a7/0x930 [ 3311.135382][ T5110] out_of_memory+0xf67/0x1320 [ 3311.140072][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3311.145714][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3311.150743][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3311.155878][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3311.161439][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3311.166500][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3311.172618][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3311.177851][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3311.182804][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3311.187747][ T5110] ? mark_lock+0x9a/0x350 [ 3311.192098][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3311.197501][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3311.203662][ T5110] charge_memcg+0xa2/0x160 [ 3311.208117][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3311.214194][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3311.219672][ T5110] ? mark_lock+0x9a/0x350 [ 3311.224019][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3311.230023][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3311.235416][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3311.241318][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3311.246357][ T5110] ? xas_descend+0x37e/0x470 [ 3311.250998][ T5110] swapin_readahead+0x1ea/0x1070 [ 3311.255948][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3311.261076][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3311.266503][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3311.271837][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3311.277159][ T5110] do_swap_page+0x791/0x3f40 [ 3311.281763][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3311.286550][ T5110] ? do_swap_page+0x154/0x3f40 [ 3311.291321][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3311.296351][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3311.301821][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3311.307638][ T5110] ? __pfx_validate_chain+0x10/0x10 [ 3311.312866][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3311.315849][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3311.318015][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3311.331761][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3311.334278][ T5110] ? mt_find+0x226/0x850 [ 3311.348318][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3311.348955][T15001] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3311.353522][ T5110] ? mt_find+0x62d/0x850 [ 3311.366833][ T5110] ? mt_find+0x226/0x850 [ 3311.371162][ T5110] ? find_vma+0x142/0x1c0 [ 3311.372687][T15001] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3311.375518][ T5110] ? __pfx_find_vma+0x10/0x10 [ 3311.375546][ T5110] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3311.375585][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3311.387514][T15001] usb 3-1: config 0 descriptor?? [ 3311.388241][ T5110] exc_page_fault+0x2ad/0x870 [ 3311.408643][ T5110] asm_exc_page_fault+0x26/0x30 [ 3311.413501][ T5110] RIP: 0010:__get_user_8+0x11/0x20 [ 3311.418655][ T5110] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3311.438312][ T5110] RSP: 0018:ffffc90003b0fd98 EFLAGS: 00050202 [ 3311.444438][ T5110] RAX: 0000555556ab4da8 RBX: ffff88807cdd6e78 RCX: ffffc90003b0fc03 [ 3311.452431][ T5110] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0 [ 3311.460419][ T5110] RBP: ffffc90003b0fec8 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d [ 3311.468500][ T5110] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b0fda0 [ 3311.476520][ T5110] R13: ffffc90003b0ffd8 R14: dffffc0000000000 R15: ffff88807cdd5940 [ 3311.484534][ T5110] __rseq_handle_notify_resume+0x158/0x1490 [ 3311.490459][ T5110] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3311.496809][ T5110] ? syscall_exit_to_user_mode+0xa2/0x360 [ 3311.502559][ T5110] syscall_exit_to_user_mode+0x113/0x360 [ 3311.508217][ T5110] do_syscall_64+0x108/0x240 [ 3311.512863][ T5110] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3311.518789][ T5110] RIP: 0033:0x7f080fca91b5 [ 3311.523232][ T5110] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 3311.542962][ T5110] RSP: 002b:00007f080fecfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 3311.551491][ T5110] RAX: 0000000000000000 RBX: 0000000000004327 RCX: 00007f080fca91b5 [ 3311.559571][ T5110] RDX: 00007f080fecfd30 RSI: 0000000000000000 RDI: 0000000000000000 [ 3311.567556][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000000 R09: 00007ffde33aa0b0 [ 3311.575542][ T5110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3311.583608][ T5110] R13: 000000000032844e R14: 000000000032844e R15: 0000000000000000 [ 3311.591606][ T5110] [ 3311.596435][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 137518 [ 3311.603834][ T5110] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3311.612089][ T5110] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3311.619623][ T5110] Memory cgroup stats for /syz0: [ 3311.619798][ T5110] cache 0 [ 3311.627952][ T5110] rss 0 [ 3311.630928][ T5110] rss_huge 0 [ 3311.634310][ T5110] shmem 0 [ 3311.637693][ T5110] mapped_file 0 [ 3311.641343][ T5110] dirty 0 [ 3311.644445][ T5110] writeback 0 [ 3311.647980][ T5110] workingset_refault_anon 44523 [ 3311.652999][ T5110] workingset_refault_file 0 [ 3311.657786][ T5110] swap 1372160 [ 3311.661289][ T5110] swapcached 0 [ 3311.664750][ T5110] pgpgin 288188 [ 3311.671485][ T5110] pgpgout 288188 [ 3311.675102][ T5110] pgfault 538042 [ 3311.681503][ T5110] pgmajfault 42938 [ 3311.685479][ T5110] inactive_anon 0 [ 3311.689252][ T5110] active_anon 0 [ 3311.692803][ T5110] inactive_file 0 [ 3311.696775][ T5110] active_file 0 [ 3311.700401][ T5110] unevictable 0 [ 3311.704027][ T5110] hierarchical_memory_limit 314572800 [ 3311.709825][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3311.716696][ T5110] total_cache 0 [ 3311.720308][ T5110] total_rss 0 [ 3311.723716][ T5110] total_rss_huge 0 [ 3311.727745][ T5110] total_shmem 0 [ 3311.731372][ T5110] total_mapped_file 0 [ 3311.735614][ T5110] total_dirty 0 [ 3311.739200][ T5110] total_writeback 0 [ 3311.743097][ T5110] total_workingset_refault_anon 44523 [ 3311.748728][ T5110] total_workingset_refault_file 0 [ 3311.753952][ T5110] total_swap 1372160 [ 3311.758071][ T5110] total_swapcached 0 [ 3311.762119][ T5110] total_pgpgin 288188 [ 3311.766315][ T5110] total_pgpgout 288188 [ 3311.776452][ T5110] total_pgfault 538042 [ 3311.785324][ T5110] total_pgmajfault 42938 [ 3311.789770][ T5110] total_inactive_anon 0 [ 3311.794104][ T5110] total_active_anon 0 [ 3311.798386][ T5110] total_inactive_file 0 [ 3311.802709][ T5110] total_active_file 0 [ 3311.807361][T15001] usbhid 3-1:0.0: can't add hid device: -71 [ 3311.807473][ T5110] total_unevictable 0 [ 3311.825637][ T5110] anon_cost 0 [ 3311.828392][T15001] usbhid: probe of 3-1:0.0 failed with error -71 [ 3311.829100][ T5110] file_cost 0 [ 3311.838845][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19281,uid=0 [ 3311.854710][ T5110] Memory cgroup out of memory: Killed process 19281 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3311.863836][T15001] usb 3-1: USB disconnect, device number 58 17:45:30 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x357}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3312.298813][ T5101] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 3312.310538][ T5101] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 3312.327511][ T5101] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 3312.336739][ T5101] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 3312.344509][ T5101] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 3312.352467][ T5101] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 3312.462674][T15001] usb 3-1: new high-speed USB device number 59 using dummy_hcd [ 3312.530032][T19285] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3312.548912][T19285] CPU: 0 PID: 19285 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3312.559389][T19285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3312.569486][T19285] Call Trace: [ 3312.572789][T19285] [ 3312.575729][T19285] dump_stack_lvl+0x1e7/0x2e0 [ 3312.580439][T19285] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3312.585661][T19285] ? __pfx__printk+0x10/0x10 [ 3312.590268][T19285] ? ___ratelimit+0x4c4/0x670 [ 3312.594963][T19285] ? __pfx____ratelimit+0x10/0x10 [ 3312.600008][T19285] dump_header+0xda/0x6a0 [ 3312.604362][T19285] oom_kill_process+0x3a7/0x930 [ 3312.609234][T19285] out_of_memory+0xf67/0x1320 [ 3312.613956][T19285] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3312.619605][T19285] ? __pfx___mutex_lock+0x10/0x10 [ 3312.624651][T19285] ? __pfx_out_of_memory+0x10/0x10 [ 3312.629789][T19285] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3312.635438][T19285] ? __pfx_lock_release+0x10/0x10 [ 3312.640479][T19285] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3312.646564][T19285] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3312.651776][T19285] ? mem_cgroup_iter+0x422/0x560 [ 3312.656736][T19285] try_charge_memcg+0xda2/0x18a0 [ 3312.661725][T19285] ? __pfx_try_charge_memcg+0x10/0x10 [ 3312.667121][T19285] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3312.672852][T19285] ? __pfx_lock_release+0x10/0x10 [ 3312.677894][T19285] ? memcg_account_kmem+0x1e7/0x210 [ 3312.683112][T19285] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3312.688950][T19285] __memcg_kmem_charge_page+0xe1/0x250 [ 3312.694488][T19285] memcg_charge_kernel_stack+0x210/0x550 [ 3312.700187][T19285] dup_task_struct+0x15d/0x7d0 [ 3312.704991][T19285] copy_process+0x5d5/0x3fc0 [ 3312.709625][T19285] ? __might_fault+0xa9/0x120 [ 3312.714327][T19285] ? __pfx_lock_release+0x10/0x10 [ 3312.719385][T19285] ? __pfx_copy_process+0x10/0x10 [ 3312.724423][T19285] ? __might_fault+0xc5/0x120 [ 3312.729119][T19285] ? __asan_memset+0x23/0x50 [ 3312.733736][T19285] kernel_clone+0x21d/0x8d0 [ 3312.738263][T19285] ? __pfx_kernel_clone+0x10/0x10 [ 3312.743350][T19285] __se_sys_clone3+0x2cb/0x350 [ 3312.748158][T19285] ? __pfx___se_sys_clone3+0x10/0x10 [ 3312.753506][T19285] ? rcu_is_watching+0x15/0xb0 [ 3312.758301][T19285] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3312.764332][T19285] ? exc_page_fault+0x587/0x870 [ 3312.769203][T19285] ? do_syscall_64+0xb4/0x240 [ 3312.773901][T19285] do_syscall_64+0xf9/0x240 [ 3312.778426][T19285] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3312.784334][T19285] RIP: 0033:0x7f080fca9b99 [ 3312.788776][T19285] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3312.808395][T19285] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3312.816821][T19285] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3312.824806][T19285] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3312.832874][T19285] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3312.840943][T19285] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3312.849098][T19285] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3312.857100][T19285] [ 3312.874617][T19285] memory: usage 307200kB, limit 307200kB, failcnt 137943 [ 3312.886918][T19285] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3312.894851][T19285] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3312.902592][T19285] Memory cgroup stats for /syz0: [ 3312.902743][T19285] cache 0 [ 3312.911162][T19285] rss 20480 [ 3312.914556][T19285] rss_huge 0 [ 3312.918281][T19285] shmem 0 [ 3312.921266][T19285] mapped_file 0 [ 3312.924754][T19285] dirty 0 [ 3312.928345][T19285] writeback 0 [ 3312.931654][T19285] workingset_refault_anon 44640 [ 3312.937232][T19285] workingset_refault_file 0 [ 3312.941760][T19285] swap 1314816 [ 3312.945203][T19285] swapcached 12288 [ 3312.949235][T19285] pgpgin 288328 [ 3312.952741][T19285] pgpgout 288323 [ 3312.956773][T19285] pgfault 538236 [ 3312.960409][T19285] pgmajfault 43052 [ 3312.964254][T19285] inactive_anon 0 [ 3312.971427][T19285] active_anon 20480 [ 3312.975378][T19285] inactive_file 0 [ 3312.979228][T19285] active_file 0 [ 3312.982705][T19285] unevictable 0 [ 3312.986315][T15001] usb 3-1: Using ep0 maxpacket: 8 [ 3312.990892][T19285] hierarchical_memory_limit 314572800 [ 3312.997280][T19285] hierarchical_memsw_limit 9223372036854771712 [ 3313.003450][T19285] total_cache 0 [ 3313.007142][T19285] total_rss 20480 [ 3313.010806][T19285] total_rss_huge 0 [ 3313.014547][T19285] total_shmem 0 [ 3313.018243][T19285] total_mapped_file 0 [ 3313.022262][T19285] total_dirty 0 [ 3313.025811][T19285] total_writeback 0 [ 3313.029645][T19285] total_workingset_refault_anon 44640 [ 3313.035056][T19285] total_workingset_refault_file 0 [ 3313.040286][T19285] total_swap 1314816 [ 3313.044211][T19285] total_swapcached 12288 [ 3313.048531][T19285] total_pgpgin 288328 [ 3313.052531][T19285] total_pgpgout 288323 [ 3313.056711][T19285] total_pgfault 538236 [ 3313.060798][T19285] total_pgmajfault 43052 [ 3313.065093][T19285] total_inactive_anon 0 [ 3313.069364][T19285] total_active_anon 20480 [ 3313.073715][T19285] total_inactive_file 0 [ 3313.077971][T19285] total_active_file 0 [ 3313.081969][T19285] total_unevictable 0 [ 3313.086173][T19285] anon_cost 0 [ 3313.089491][T19285] file_cost 0 [ 3313.092802][T19285] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19285,uid=0 [ 3313.108794][T19285] Memory cgroup out of memory: Killed process 19285 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3313.127204][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3313.138427][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3313.153358][T15001] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3313.174719][T15001] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3313.191893][T15001] usb 3-1: config 0 descriptor?? 17:45:31 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x366}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) 17:45:31 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x5, {[@main=@item_012={0x2, 0x0, 0xb, "1901"}, @main=@item_012={0x1, 0x0, 0xc, "12"}]}}, 0x0}, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) (async) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x5, {[@main=@item_012={0x2, 0x0, 0xb, "1901"}, @main=@item_012={0x1, 0x0, 0xc, "12"}]}}, 0x0}, 0x0) (async) [ 3313.435428][T15001] usbhid 3-1:0.0: can't add hid device: -71 [ 3313.441542][T15001] usbhid: probe of 3-1:0.0 failed with error -71 [ 3313.462664][T15001] usb 3-1: USB disconnect, device number 59 [ 3313.653225][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3313.665603][ T5110] CPU: 0 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3313.675982][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3313.686067][ T5110] Call Trace: [ 3313.689403][ T5110] [ 3313.692381][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3313.697099][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3313.702347][ T5110] ? __pfx__printk+0x10/0x10 [ 3313.706968][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3313.711697][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3313.716752][ T5110] dump_header+0xda/0x6a0 [ 3313.721213][ T5110] oom_kill_process+0x3a7/0x930 [ 3313.726090][ T5110] out_of_memory+0xf67/0x1320 [ 3313.730787][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3313.736440][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3313.741487][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3313.746629][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3313.752193][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3313.757237][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3313.763325][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3313.768544][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3313.773500][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3313.778449][ T5110] ? mark_lock+0x9a/0x350 [ 3313.782806][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3313.788223][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3313.794384][ T5110] charge_memcg+0xa2/0x160 [ 3313.798822][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3313.804900][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3313.810383][ T5110] ? mark_lock+0x9a/0x350 [ 3313.814745][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3313.820752][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3313.826170][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3313.832085][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3313.837157][ T5110] ? xas_descend+0x37e/0x470 [ 3313.841772][ T5110] swapin_readahead+0x1ea/0x1070 [ 3313.846725][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3313.851867][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3313.857289][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3313.862595][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3313.867900][ T5110] do_swap_page+0x791/0x3f40 [ 3313.872506][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3313.877298][ T5110] ? do_swap_page+0x154/0x3f40 [ 3313.882093][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3313.887131][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3313.892608][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3313.898432][ T5110] ? __pfx_validate_chain+0x10/0x10 [ 3313.903669][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3313.908823][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3313.914304][ T5110] ? mt_find+0x226/0x850 [ 3313.918565][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3313.923618][ T5110] ? mt_find+0x62d/0x850 [ 3313.927874][ T5110] ? mt_find+0x226/0x850 [ 3313.932176][ T5110] ? find_vma+0x142/0x1c0 [ 3313.936519][ T5110] ? __pfx_find_vma+0x10/0x10 [ 3313.941209][ T5110] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3313.947210][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3313.951997][ T5110] exc_page_fault+0x2ad/0x870 [ 3313.956702][ T5110] asm_exc_page_fault+0x26/0x30 [ 3313.961558][ T5110] RIP: 0010:__get_user_8+0x11/0x20 [ 3313.966703][ T5110] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3313.986316][ T5110] RSP: 0018:ffffc90003b0fd98 EFLAGS: 00050202 [ 3313.992390][ T5110] RAX: 0000555556ab4da8 RBX: ffff88807cdd6e78 RCX: ffffc90003b0fc03 [ 3314.000368][ T5110] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0 [ 3314.008350][ T5110] RBP: ffffc90003b0fec8 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d [ 3314.016331][ T5110] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b0fda0 [ 3314.024311][ T5110] R13: ffffc90003b0ffd8 R14: dffffc0000000000 R15: ffff88807cdd5940 [ 3314.032306][ T5110] __rseq_handle_notify_resume+0x158/0x1490 [ 3314.038241][ T5110] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3314.044609][ T5110] ? syscall_exit_to_user_mode+0xa2/0x360 [ 3314.050355][ T5110] syscall_exit_to_user_mode+0x113/0x360 [ 3314.056031][ T5110] do_syscall_64+0x108/0x240 [ 3314.060644][ T5110] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3314.066558][ T5110] RIP: 0033:0x7f080fca91b5 [ 3314.070985][ T5110] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 3314.090616][ T5110] RSP: 002b:00007f080fecfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 3314.099041][ T5110] RAX: 0000000000000000 RBX: 0000000000004329 RCX: 00007f080fca91b5 [ 3314.107020][ T5110] RDX: 00007f080fecfd30 RSI: 0000000000000000 RDI: 0000000000000000 [ 3314.115087][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000000 R09: 00007ffde33aa0b0 [ 3314.123071][ T5110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3314.131047][ T5110] R13: 0000000000328e6f R14: 0000000000328e6f R15: 0000000000000000 [ 3314.139050][ T5110] 17:45:32 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, &(0x7f00000001c0)={0x20, 0x4, 0xf1, {0xf1, 0x22, "d6c10fa6851c96c7fc21ae792b504d0c32b0260e5c4fe9242791ed0ca87bb145fb8000101548dfc59e3cffbcbb8a6d214709682b04977756249b2ea4dba4bfd029d0f082cfd63d0b4ceb1d90d83e5e66ffae15492f6ed1f47ae162d701c31b9f8486eeb3bfa8940717dbe53a3adabbb0ba3e51bbd21ab66d7d150efe08fbc246fe55347bb276b0179dd0d1896f54810ec3ded2b2c918526ca961540e26af39f12299de9e9e9c903b10c2668dd3f81e32f92a9f1b81e6e38793f29adef0b169ec3b22db5ac165e002a6b586edd03b9dc88dfabfef26344c67c5c4a8758057f888f56803af902d634bd368fe391978d8"}}, &(0x7f00000002c0)={0x0, 0x3, 0xcd, @string={0xcd, 0x3, "957d480974e3c43e57cf4982bd6046ef050b279d450ce3b19048a15eabe37463ba3f9518c0bbce390e4ab0546be24803fdbba682dd0e9699d033d3eeacea2bd514b40f3903875d3437ec3b2d7eeff39b50dcdf50f52cb83973cedd26e5699cae6c5265488277acd98eb20af675a4e852a1a2c5ebfb46d58ddfe3c90ae2c87bcd652778c8edf171f13692adc6670c0e0f02a1b94f400541769cc3d4eec546337563bdeda19d301eb30ee822fa7dbf22dac5e92fcb094c015edb9d51d018408a6ee75d9ab2f75e6506164410"}}, &(0x7f00000000c0)={0x0, 0x22, 0x1c, {[@main=@item_012={0x2, 0x0, 0x9, "e871"}, @global=@item_4={0x3, 0x1, 0xb, "9f6d0919"}, @local=@item_012={0x0, 0x2, 0x1}, @local=@item_4={0x3, 0x2, 0x1, "82f1ee87"}, @main=@item_012={0x0, 0x0, 0x8}, @main=@item_4={0x3, 0x0, 0x9, "3998f7dc"}, @main=@item_012={0x2, 0x0, 0xc, "d345"}, @global=@item_012={0x1, 0x1, 0x3, "c2"}, @global=@item_012={0x2, 0x1, 0x5, "d921"}]}}, &(0x7f0000000100)={0x0, 0x21, 0x9, {0x9, 0x21, 0x0, 0x8d, 0x1, {0x22, 0x824}}}}, &(0x7f0000000640)={0x2c, &(0x7f0000000400)={0x40, 0x12, 0x50, "e7f40f21ca021a616a30f0d82adcbe3da69bb244a18ac7ec7de9537e089028c48be3d8901645ec1704ecae2d7ca3b4f5d0cf3713a679f8deea6faa1d1b5b93fdbeb5c8034ca1c93a8cbbc0f6f26c4f22"}, &(0x7f0000000480)={0x0, 0xa, 0x1, 0x9}, &(0x7f00000004c0)={0x0, 0x8, 0x1}, &(0x7f0000000500)={0x20, 0x1, 0xdf, "3dd55607f449177b64b18edd98a0e1d2f5cb245fd7c8b8d75fbce1376ef06dbddd6f489dee301808b70ad9eb65fa8f6947adb324372391fb1d624bc2ac18312be0a9265ecf69ff2cfa1ac38b64abad841cc4114655a44c4eb281e21eadcbbabf9af4cfd3746242733b3fad63d5d7e17201a7f99cf6f979ae5b35f2fd8ceefaab4bdebdded69e5ecd10c27e2109f29a7d6ca3364a968d92604482e6a5c6c8733c0e24b69a60932b63c94b83dd617ef93fc690975c57ca605f1bdb1d3969ff22db302920ef9eb000480da4fb138323b1dc7fd5afb6b9ed44257fef9f6221e519"}, &(0x7f0000000600)={0x20, 0x3, 0x1, 0x3a}}) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3314.163926][ T5110] memory: usage 307180kB, limit 307200kB, failcnt 138414 [ 3314.171465][ T5110] memory+swap: usage 308484kB, limit 9007199254740988kB, failcnt 0 [ 3314.179951][ T5110] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3314.187627][ T5110] Memory cgroup stats for /syz0: [ 3314.187780][ T5110] cache 0 [ 3314.195935][ T5110] rss 4096 [ 3314.199143][ T5110] rss_huge 0 [ 3314.202538][ T5110] shmem 0 [ 3314.223861][ T5110] mapped_file 0 [ 3314.227588][ T5110] dirty 0 [ 3314.230651][ T5110] writeback 0 [ 3314.234055][ T5110] workingset_refault_anon 44808 [ 3314.239273][ T5110] workingset_refault_file 0 [ 3314.243914][ T5110] swap 1331200 [ 3314.250041][ T5110] swapcached 4096 [ 3314.253762][ T5110] pgpgin 288508 [ 3314.260016][ T5110] pgpgout 288507 [ 3314.263741][ T5110] pgfault 538495 [ 3314.267475][ T5110] pgmajfault 43204 [ 3314.271289][ T5110] inactive_anon 0 [ 3314.275033][ T5110] active_anon 0 [ 3314.278751][ T5110] inactive_file 0 [ 3314.282497][ T5110] active_file 0 [ 3314.286671][ T5110] unevictable 0 [ 3314.290217][ T5110] hierarchical_memory_limit 314572800 [ 3314.296473][T15001] usb 3-1: new high-speed USB device number 60 using dummy_hcd [ 3314.304804][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3314.311289][ T5110] total_cache 0 [ 3314.314862][ T5110] total_rss 4096 [ 3314.318714][ T5110] total_rss_huge 0 [ 3314.322550][ T5110] total_shmem 0 [ 3314.326210][ T5110] total_mapped_file 0 [ 3314.330299][ T5110] total_dirty 0 [ 3314.333874][ T5110] total_writeback 0 [ 3314.337959][ T5110] total_workingset_refault_anon 44808 [ 3314.343513][ T5110] total_workingset_refault_file 0 [ 3314.349131][ T5110] total_swap 1331200 [ 3314.353119][ T5110] total_swapcached 4096 [ 3314.357423][ T5110] total_pgpgin 288508 [ 3314.361441][ T5110] total_pgpgout 288507 [ 3314.365735][ T5110] total_pgfault 538495 [ 3314.369911][ T5110] total_pgmajfault 43204 [ 3314.374209][ T5110] total_inactive_anon 0 [ 3314.381394][ T5110] total_active_anon 0 [ 3314.385512][ T5110] total_inactive_file 0 [ 3314.389685][ T5110] total_active_file 0 [ 3314.393681][ T5110] total_unevictable 0 [ 3314.398043][ T5110] anon_cost 0 [ 3314.401355][ T5110] file_cost 0 [ 3314.404649][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19288,uid=0 17:45:32 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x36a}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3314.421030][ T5110] Memory cgroup out of memory: Killed process 19288 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3314.455442][ T5101] Bluetooth: hci7: command 0x0409 tx timeout [ 3314.545565][T15001] usb 3-1: Using ep0 maxpacket: 8 [ 3314.665799][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3314.683517][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3314.694255][T15001] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3314.703976][T15001] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3314.735242][T15001] usb 3-1: config 0 descriptor?? [ 3314.802191][T19293] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3314.812642][T19293] CPU: 0 PID: 19293 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3314.823138][T19293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3314.833210][T19293] Call Trace: [ 3314.836518][T19293] [ 3314.839456][T19293] dump_stack_lvl+0x1e7/0x2e0 [ 3314.844155][T19293] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3314.849409][T19293] ? __pfx__printk+0x10/0x10 [ 3314.854023][T19293] ? ___ratelimit+0x4c4/0x670 [ 3314.858725][T19293] ? __pfx____ratelimit+0x10/0x10 [ 3314.863771][T19293] dump_header+0xda/0x6a0 [ 3314.868116][T19293] oom_kill_process+0x3a7/0x930 [ 3314.873019][T19293] out_of_memory+0xf67/0x1320 [ 3314.877719][T19293] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3314.883381][T19293] ? __pfx___mutex_lock+0x10/0x10 [ 3314.888424][T19293] ? __pfx_out_of_memory+0x10/0x10 [ 3314.893552][T19293] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3314.899107][T19293] ? __pfx_lock_release+0x10/0x10 [ 3314.904143][T19293] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3314.910242][T19293] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3314.915464][T19293] ? mem_cgroup_iter+0x422/0x560 [ 3314.920427][T19293] try_charge_memcg+0xda2/0x18a0 [ 3314.925424][T19293] ? __pfx_try_charge_memcg+0x10/0x10 [ 3314.930813][T19293] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3314.936541][T19293] ? __pfx_lock_release+0x10/0x10 [ 3314.941617][T19293] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3314.947436][T19293] __memcg_kmem_charge_page+0xe1/0x250 [ 3314.952915][T19293] memcg_charge_kernel_stack+0xa7/0x550 [ 3314.958554][T19293] dup_task_struct+0x40d/0x7d0 [ 3314.963346][T19293] copy_process+0x5d5/0x3fc0 [ 3314.967990][T19293] ? __might_fault+0xa9/0x120 [ 3314.972692][T19293] ? __pfx_lock_release+0x10/0x10 [ 3314.977752][T19293] ? __lock_acquire+0x1345/0x1fd0 [ 3314.982820][T19293] ? __pfx_copy_process+0x10/0x10 [ 3314.987860][T19293] ? __might_fault+0xc5/0x120 [ 3314.992551][T19293] ? __asan_memset+0x23/0x50 [ 3314.997162][T19293] kernel_clone+0x21d/0x8d0 [ 3315.001682][T19293] ? __pfx_kernel_clone+0x10/0x10 [ 3315.006722][T19293] ? __pfx_lock_release+0x10/0x10 [ 3315.011763][T19293] __se_sys_clone3+0x2cb/0x350 [ 3315.016533][T19293] ? __might_fault+0xa9/0x120 [ 3315.021226][T19293] ? __pfx___se_sys_clone3+0x10/0x10 [ 3315.026524][T19293] ? rcu_is_watching+0x15/0xb0 [ 3315.031317][T19293] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3315.037321][T19293] ? exc_page_fault+0x587/0x870 [ 3315.042192][T19293] ? do_syscall_64+0xb4/0x240 [ 3315.046887][T19293] do_syscall_64+0xf9/0x240 [ 3315.051433][T19293] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3315.057370][T19293] RIP: 0033:0x7f080fca9b99 [ 3315.061799][T19293] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3315.081439][T19293] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3315.089865][T19293] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3315.097852][T19293] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3315.105839][T19293] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3315.113847][T19293] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3315.121832][T19293] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3315.129851][T19293] [ 3315.147245][T19293] memory: usage 307200kB, limit 307200kB, failcnt 138780 [ 3315.154508][T19293] memory+swap: usage 308528kB, limit 9007199254740988kB, failcnt 0 [ 3315.162717][T19293] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3315.170871][T19293] Memory cgroup stats for /syz0: [ 3315.171003][T19293] cache 0 [ 3315.180535][T19293] rss 12288 [ 3315.183885][T19293] rss_huge 0 [ 3315.187910][T19293] shmem 0 [ 3315.191034][T19293] mapped_file 0 [ 3315.194632][T19293] dirty 0 [ 3315.198540][T19293] writeback 0 [ 3315.202000][T19293] workingset_refault_anon 44948 [ 3315.207549][T19293] workingset_refault_file 0 [ 3315.212205][T19293] swap 1359872 [ 3315.216267][T19293] swapcached 8192 [ 3315.220138][T19293] pgpgin 288659 [ 3315.223831][T19293] pgpgout 288656 [ 3315.228439][T19293] pgfault 538718 [ 3315.232182][T19293] pgmajfault 43335 [ 3315.236700][T19293] inactive_anon 12288 [ 3315.240904][T19293] active_anon 0 [ 3315.244814][T19293] inactive_file 0 [ 3315.245490][T15001] usbhid 3-1:0.0: can't add hid device: -71 [ 3315.256138][T19293] active_file 0 [ 3315.258311][T15001] usbhid: probe of 3-1:0.0 failed with error -71 [ 3315.260326][T19293] unevictable 0 [ 3315.270283][T19293] hierarchical_memory_limit 314572800 [ 3315.276239][T19293] hierarchical_memsw_limit 9223372036854771712 [ 3315.282628][T19293] total_cache 0 [ 3315.285678][T15001] usb 3-1: USB disconnect, device number 60 [ 3315.286900][T19293] total_rss 12288 [ 3315.296200][T19293] total_rss_huge 0 [ 3315.300152][T19293] total_shmem 0 [ 3315.303902][T19293] total_mapped_file 0 [ 3315.308719][T19293] total_dirty 0 [ 3315.312413][T19293] total_writeback 0 [ 3315.316862][T19293] total_workingset_refault_anon 44948 [ 3315.322460][T19293] total_workingset_refault_file 0 [ 3315.328230][T19293] total_swap 1359872 [ 3315.332347][T19293] total_swapcached 8192 [ 3315.338366][T19293] total_pgpgin 288659 [ 3315.342509][T19293] total_pgpgout 288656 [ 3315.347682][T19293] total_pgfault 538718 [ 3315.351787][T19293] total_pgmajfault 43335 [ 3315.356148][T19293] total_inactive_anon 12288 [ 3315.360665][T19293] total_active_anon 0 [ 3315.364643][T19293] total_inactive_file 0 [ 3315.371878][T19293] total_active_file 0 [ 3315.376185][T19293] total_unevictable 0 [ 3315.380184][T19293] anon_cost 0 [ 3315.383469][T19293] file_cost 0 [ 3315.387450][T19293] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19293,uid=0 [ 3315.403812][T19293] Memory cgroup out of memory: Killed process 19293 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:33 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x36e}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3315.825470][T15001] usb 3-1: new high-speed USB device number 61 using dummy_hcd [ 3315.888207][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3315.899516][ T5110] CPU: 1 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3315.909888][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3315.919982][ T5110] Call Trace: [ 3315.923290][ T5110] [ 3315.926224][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3315.930914][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3315.936118][ T5110] ? __pfx__printk+0x10/0x10 [ 3315.940712][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3315.945395][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3315.950687][ T5110] dump_header+0xda/0x6a0 [ 3315.955036][ T5110] oom_kill_process+0x3a7/0x930 [ 3315.959924][ T5110] out_of_memory+0xf67/0x1320 [ 3315.964657][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3315.970320][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3315.975362][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3315.980484][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3315.986027][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3315.991058][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3315.997158][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3316.002362][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3316.007319][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3316.012298][ T5110] ? mark_lock+0x9a/0x350 [ 3316.016681][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3316.022076][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3316.028266][ T5110] charge_memcg+0xa2/0x160 [ 3316.032689][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3316.038757][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3316.044231][ T5110] ? mark_lock+0x9a/0x350 [ 3316.048573][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3316.054564][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3316.059966][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3316.065901][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3316.070956][ T5110] ? xas_descend+0x37e/0x470 [ 3316.075574][ T5110] swapin_readahead+0x1ea/0x1070 [ 3316.080515][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3316.085655][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3316.091037][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3316.096347][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3316.101637][ T5110] do_swap_page+0x791/0x3f40 [ 3316.106242][ T5110] ? __lock_acquire+0x1345/0x1fd0 [ 3316.111310][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3316.116127][ T5110] ? do_swap_page+0x154/0x3f40 [ 3316.120913][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3316.125938][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3316.131395][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3316.137199][ T5110] ? __pfx_validate_chain+0x10/0x10 [ 3316.142397][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3316.147532][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3316.152996][ T5110] ? mt_find+0x226/0x850 [ 3316.155774][T15001] usb 3-1: Using ep0 maxpacket: 8 [ 3316.157236][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3316.167330][ T5110] ? mt_find+0x62d/0x850 [ 3316.171612][ T5110] ? mt_find+0x226/0x850 [ 3316.175911][ T5110] ? find_vma+0x142/0x1c0 [ 3316.180273][ T5110] ? __pfx_find_vma+0x10/0x10 [ 3316.185109][ T5110] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3316.191124][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3316.195903][ T5110] exc_page_fault+0x2ad/0x870 [ 3316.200590][ T5110] asm_exc_page_fault+0x26/0x30 [ 3316.205452][ T5110] RIP: 0010:__get_user_8+0x11/0x20 [ 3316.210594][ T5110] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3316.230237][ T5110] RSP: 0018:ffffc90003b0fd78 EFLAGS: 00050202 [ 3316.236325][ T5110] RAX: 0000555556ab4da8 RBX: ffff88807cdd6e78 RCX: ffffc90003b0fc03 [ 3316.244295][ T5110] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0 [ 3316.252266][ T5110] RBP: ffffc90003b0fec0 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d [ 3316.260259][ T5110] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b0fd80 [ 3316.268273][ T5110] R13: ffffc90003b0ffd8 R14: dffffc0000000000 R15: ffff88807cdd5940 [ 3316.276310][ T5110] __rseq_handle_notify_resume+0x158/0x1490 [ 3316.282254][ T5110] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3316.288599][ T5110] ? irqentry_exit_to_user_mode+0x52/0x270 [ 3316.294433][ T5110] irqentry_exit_to_user_mode+0xbb/0x270 [ 3316.300095][ T5110] exc_page_fault+0x587/0x870 [ 3316.304784][ T5110] asm_exc_page_fault+0x26/0x30 [ 3316.309650][ T5110] RIP: 0033:0x7f080fca91b8 [ 3316.314095][ T5110] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f [ 3316.333719][ T5110] RSP: 002b:00007f080fecfcf0 EFLAGS: 00010293 [ 3316.339789][ T5110] RAX: 0000000000000000 RBX: 000000000000432b RCX: 00007f080fca91b5 [ 3316.347760][ T5110] RDX: 00007f080fecfd30 RSI: 0000000000000000 RDI: 0000000000000000 [ 3316.355740][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000000 R09: 00007ffde33aa0b0 [ 3316.363747][ T5110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3316.371749][ T5110] R13: 000000000032973f R14: 000000000032973f R15: 0000000000000000 [ 3316.380178][ T5110] [ 3316.384183][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 139277 [ 3316.391495][ T5110] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3316.405587][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3316.407963][ T5110] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3316.424416][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3316.432415][ T5110] Memory cgroup stats for /syz0: [ 3316.434406][ T5110] cache 0 [ 3316.435218][T15001] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3316.441881][ T5110] rss 4096 [ 3316.442826][T15001] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3316.461479][ T5110] rss_huge 0 [ 3316.471999][ T5110] shmem 0 [ 3316.475110][ T5110] mapped_file 0 [ 3316.479005][ T5110] dirty 0 [ 3316.482467][T15001] usb 3-1: config 0 descriptor?? [ 3316.483263][ T5110] writeback 0 [ 3316.491949][ T5110] workingset_refault_anon 45124 [ 3316.499982][ T5110] workingset_refault_file 0 [ 3316.504517][ T5110] swap 1368064 [ 3316.509678][ T5110] swapcached 4096 [ 3316.513347][ T5110] pgpgin 288847 [ 3316.517413][ T5110] pgpgout 288846 [ 3316.521153][ T5110] pgfault 538981 [ 3316.524860][ T5110] pgmajfault 43486 [ 3316.529486][ T5110] inactive_anon 0 [ 3316.533308][ T5110] active_anon 4096 [ 3316.537616][ T5110] inactive_file 0 17:45:34 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x5, {[@main=@item_012={0x2, 0x0, 0xb, "1901"}, @main=@item_012={0x1, 0x0, 0xc, "12"}]}}, 0x0}, 0x0) [ 3316.545524][ T5101] Bluetooth: hci7: command 0x041b tx timeout [ 3316.549355][ T5110] active_file 0 [ 3316.558049][ T5110] unevictable 0 [ 3316.561540][ T5110] hierarchical_memory_limit 314572800 [ 3316.574337][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3316.581360][ T5110] total_cache 0 [ 3316.587571][ T5110] total_rss 4096 [ 3316.593992][ T5110] total_rss_huge 0 [ 3316.608238][ T5110] total_shmem 0 [ 3316.612086][ T5110] total_mapped_file 0 [ 3316.625219][ T5110] total_dirty 0 [ 3316.628736][ T5110] total_writeback 0 [ 3316.632571][ T5110] total_workingset_refault_anon 45124 [ 3316.638567][ T5110] total_workingset_refault_file 0 [ 3316.643629][ T5110] total_swap 1368064 [ 3316.648090][ T5110] total_swapcached 4096 [ 3316.652269][ T5110] total_pgpgin 288847 [ 3316.656949][T15001] usbhid 3-1:0.0: can't add hid device: -71 [ 3316.663019][T15001] usbhid: probe of 3-1:0.0 failed with error -71 [ 3316.663070][ T5110] total_pgpgout 288846 [ 3316.679294][T15001] usb 3-1: USB disconnect, device number 61 [ 3316.683008][ T5110] total_pgfault 538981 [ 3316.690010][ T5110] total_pgmajfault 43486 [ 3316.695589][ T5110] total_inactive_anon 0 [ 3316.704336][ T5110] total_active_anon 4096 [ 3316.714399][ T5110] total_inactive_file 0 [ 3316.721089][ T5110] total_active_file 0 [ 3316.728224][ T5110] total_unevictable 0 [ 3316.732319][ T5110] anon_cost 0 [ 3316.739562][ T5110] file_cost 0 [ 3316.742978][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19294,uid=0 [ 3316.759484][ T5110] Memory cgroup out of memory: Killed process 19294 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:35 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x38a}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3317.095923][T15001] usb 3-1: new high-speed USB device number 62 using dummy_hcd [ 3317.194030][T19297] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3317.204413][T19297] CPU: 1 PID: 19297 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3317.214946][T19297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3317.225024][T19297] Call Trace: [ 3317.228305][T19297] [ 3317.231232][T19297] dump_stack_lvl+0x1e7/0x2e0 [ 3317.235921][T19297] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3317.241144][T19297] ? __pfx__printk+0x10/0x10 [ 3317.245736][T19297] ? ___ratelimit+0x4c4/0x670 [ 3317.250432][T19297] ? __pfx____ratelimit+0x10/0x10 [ 3317.255472][T19297] dump_header+0xda/0x6a0 [ 3317.259837][T19297] oom_kill_process+0x3a7/0x930 [ 3317.264710][T19297] out_of_memory+0xf67/0x1320 [ 3317.269405][T19297] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3317.275052][T19297] ? __pfx___mutex_lock+0x10/0x10 [ 3317.280081][T19297] ? __pfx_out_of_memory+0x10/0x10 [ 3317.285208][T19297] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3317.290774][T19297] ? __pfx_lock_release+0x10/0x10 [ 3317.295816][T19297] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3317.301896][T19297] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3317.307194][T19297] ? mem_cgroup_iter+0x422/0x560 [ 3317.312150][T19297] try_charge_memcg+0xda2/0x18a0 [ 3317.317125][T19297] ? __pfx_try_charge_memcg+0x10/0x10 [ 3317.322508][T19297] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3317.328238][T19297] ? __pfx_lock_release+0x10/0x10 [ 3317.333292][T19297] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3317.339197][T19297] __memcg_kmem_charge_page+0xe1/0x250 [ 3317.344674][T19297] memcg_charge_kernel_stack+0xa7/0x550 [ 3317.350233][T19297] dup_task_struct+0x40d/0x7d0 [ 3317.355009][T19297] copy_process+0x5d5/0x3fc0 [ 3317.359623][T19297] ? __might_fault+0xa9/0x120 [ 3317.364406][T19297] ? __pfx_lock_release+0x10/0x10 [ 3317.369474][T19297] ? __pfx_copy_process+0x10/0x10 [ 3317.374534][T19297] ? __might_fault+0xc5/0x120 [ 3317.379285][T19297] ? __asan_memset+0x23/0x50 [ 3317.383907][T19297] kernel_clone+0x21d/0x8d0 [ 3317.388436][T19297] ? __pfx_kernel_clone+0x10/0x10 [ 3317.393499][T19297] __se_sys_clone3+0x2cb/0x350 [ 3317.398287][T19297] ? __pfx___se_sys_clone3+0x10/0x10 [ 3317.403616][T19297] ? do_syscall_64+0x108/0x240 [ 3317.408403][T19297] ? do_syscall_64+0xb4/0x240 [ 3317.413108][T19297] do_syscall_64+0xf9/0x240 [ 3317.417643][T19297] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3317.423554][T19297] RIP: 0033:0x7f080fca9b99 [ 3317.427977][T19297] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3317.447591][T19297] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3317.456029][T19297] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3317.464010][T19297] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3317.471989][T19297] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3317.479987][T19297] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 17:45:35 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000100)={0x14, &(0x7f00000001c0)={0x0, 0x1, 0xc0, {0xc0, 0x24, "59708f4452a300cecf338e995cd7336fd96a7226a0c222ae0bb442aca2b57c1252ee05a9543af89e74e2b164c46cd5fffc0cc1c727af4c2187b682fbf8eab0ccb7c799dff27829917befbd6a2be107e475958b19dcf1ca90a8622bb302674e74cc02af7c551a389ebd0fca47532c53169faa3398cad2e57f7ddc8238cb0f8841725e68cd349956d56fdc656313dd58b001b88051c951c1ad1c762ce9063d5777f2ccc35ba5348a8337b7133ea3976aa1b9bed08d70f28adc1cc20c2f0c50"}}, &(0x7f00000000c0)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000540)={0x44, &(0x7f00000002c0)={0x20, 0x3, 0xb2, "0767a6ccd128532960770f071470800d25a473e3a7b3f5fdc39df8544686d1ad696c767c2e377013547ca211bf2b673a0a6079d68735bbfcffc3440002930faf8c037762ea9f5da7493e512d4a73e784692c0f4615536251110f6c40ca66483f6b587e805ff3b8403610fbee90e132d40e5774264993ea6b7493d34f437ef3585200def9e4332c4b6ecf10c9724de4898e8bb8d09d4df548fb1360bbfe66409afc9f567e8dd4b9ba554180322e265677fa78"}, &(0x7f0000000380)={0x0, 0xa, 0x1, 0x6}, &(0x7f00000003c0)={0x0, 0x8, 0x1, 0x7f}, &(0x7f0000000400)={0x20, 0x80, 0x1c, {0x6, 0xfffa, 0x1, 0x9, 0x6, 0x938, 0xc593, 0x3, 0x6, 0x400, 0x0, 0xaf9e}}, &(0x7f0000000440)={0x20, 0x85, 0x4, 0x4}, &(0x7f0000000480)={0x20, 0x83, 0x2}, &(0x7f00000004c0)={0x20, 0x87, 0x2, 0xb08}, &(0x7f0000000500)={0x20, 0x89, 0x2}}) [ 3317.488060][T19297] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3317.496086][T19297] [ 3317.510785][T19297] memory: usage 307200kB, limit 307200kB, failcnt 139730 [ 3317.521704][T19297] memory+swap: usage 308516kB, limit 9007199254740988kB, failcnt 0 [ 3317.549850][T19297] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0 [ 3317.557851][T15001] usb 3-1: Using ep0 maxpacket: 8 [ 3317.565374][T19297] Memory cgroup stats for /syz0: [ 3317.565526][T19297] cache 0 [ 3317.573570][T19297] rss 12288 [ 3317.586543][T19297] rss_huge 0 [ 3317.589868][T19297] shmem 0 [ 3317.592998][T19297] mapped_file 0 [ 3317.598801][T19297] dirty 0 [ 3317.611518][T19297] writeback 0 [ 3317.614896][T19297] workingset_refault_anon 45287 [ 3317.620910][T19297] workingset_refault_file 0 [ 3317.630926][T19297] swap 1359872 [ 3317.634452][T19297] swapcached 8192 [ 3317.638654][T19297] pgpgin 289022 [ 3317.642191][T19297] pgpgout 289019 [ 3317.645872][T19297] pgfault 539232 [ 3317.649436][T19297] pgmajfault 43639 [ 3317.653170][T19297] inactive_anon 0 [ 3317.657979][T19297] active_anon 12288 [ 3317.661977][T19297] inactive_file 0 [ 3317.666439][T19297] active_file 0 [ 3317.670107][T19297] unevictable 0 [ 3317.673703][T19297] hierarchical_memory_limit 314572800 [ 3317.679776][T19297] hierarchical_memsw_limit 9223372036854771712 [ 3317.685521][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3317.687265][T19297] total_cache 0 [ 3317.700714][T19297] total_rss 12288 [ 3317.704834][T19297] total_rss_huge 0 [ 3317.705208][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3317.709293][T19297] total_shmem 0 [ 3317.722029][T19297] total_mapped_file 0 [ 3317.722516][T15001] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3317.726467][T19297] total_dirty 0 [ 3317.739784][T19297] total_writeback 0 [ 3317.743800][T19297] total_workingset_refault_anon 45287 [ 3317.757659][T19297] total_workingset_refault_file 0 [ 3317.762917][T19297] total_swap 1359872 [ 3317.765988][T15001] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3317.767117][T19297] total_swapcached 8192 [ 3317.780845][T19297] total_pgpgin 289022 [ 3317.782040][T15001] usb 3-1: config 0 descriptor?? [ 3317.786390][T19297] total_pgpgout 289019 [ 3317.794092][T19297] total_pgfault 539232 [ 3317.798832][T19297] total_pgmajfault 43639 [ 3317.803289][T19297] total_inactive_anon 0 [ 3317.808067][T19297] total_active_anon 12288 [ 3317.814955][T19297] total_inactive_file 0 [ 3317.819491][T19297] total_active_file 0 [ 3317.823594][T19297] total_unevictable 0 [ 3317.827858][T19297] anon_cost 0 [ 3317.831170][T19297] file_cost 0 [ 3317.834480][T19297] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19297,uid=0 [ 3317.850994][T19297] Memory cgroup out of memory: Killed process 19297 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8896kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:36 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x3e7}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3318.135596][T15001] usbhid 3-1:0.0: can't add hid device: -71 [ 3318.141871][T15001] usbhid: probe of 3-1:0.0 failed with error -71 [ 3318.170501][T15001] usb 3-1: USB disconnect, device number 62 [ 3318.258175][T19300] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3318.268960][T19300] CPU: 1 PID: 19300 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3318.279440][T19300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3318.289522][T19300] Call Trace: [ 3318.292813][T19300] [ 3318.295765][T19300] dump_stack_lvl+0x1e7/0x2e0 [ 3318.300455][T19300] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3318.305661][T19300] ? __pfx__printk+0x10/0x10 [ 3318.310255][T19300] ? ___ratelimit+0x4c4/0x670 [ 3318.314958][T19300] ? __pfx____ratelimit+0x10/0x10 [ 3318.320003][T19300] dump_header+0xda/0x6a0 [ 3318.324355][T19300] oom_kill_process+0x3a7/0x930 [ 3318.329236][T19300] out_of_memory+0xf67/0x1320 [ 3318.333963][T19300] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3318.339629][T19300] ? __pfx___mutex_lock+0x10/0x10 [ 3318.344685][T19300] ? __pfx_out_of_memory+0x10/0x10 [ 3318.349829][T19300] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3318.355559][T19300] ? __pfx_lock_release+0x10/0x10 [ 3318.360612][T19300] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3318.366702][T19300] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3318.371909][T19300] ? mem_cgroup_iter+0x422/0x560 [ 3318.376873][T19300] try_charge_memcg+0xda2/0x18a0 [ 3318.381883][T19300] ? __pfx_try_charge_memcg+0x10/0x10 [ 3318.387285][T19300] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3318.393029][T19300] ? __pfx_lock_release+0x10/0x10 [ 3318.398082][T19300] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3318.403908][T19300] __memcg_kmem_charge_page+0xe1/0x250 [ 3318.409402][T19300] memcg_charge_kernel_stack+0xa7/0x550 [ 3318.414968][T19300] dup_task_struct+0x40d/0x7d0 [ 3318.419744][T19300] copy_process+0x5d5/0x3fc0 [ 3318.424352][T19300] ? __might_fault+0xa9/0x120 [ 3318.429051][T19300] ? __pfx_lock_release+0x10/0x10 [ 3318.434125][T19300] ? __pfx_copy_process+0x10/0x10 [ 3318.439191][T19300] ? __might_fault+0xc5/0x120 [ 3318.443914][T19300] ? __asan_memset+0x23/0x50 [ 3318.448534][T19300] kernel_clone+0x21d/0x8d0 [ 3318.453064][T19300] ? __pfx_kernel_clone+0x10/0x10 [ 3318.458133][T19300] __se_sys_clone3+0x2cb/0x350 [ 3318.462911][T19300] ? __pfx___se_sys_clone3+0x10/0x10 [ 3318.468249][T19300] ? do_syscall_64+0x108/0x240 [ 3318.473031][T19300] ? do_syscall_64+0xb4/0x240 [ 3318.477738][T19300] do_syscall_64+0xf9/0x240 [ 3318.482298][T19300] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3318.488223][T19300] RIP: 0033:0x7f080fca9b99 [ 3318.492682][T19300] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3318.512314][T19300] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3318.520758][T19300] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3318.528764][T19300] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3318.536761][T19300] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3318.544748][T19300] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3318.552716][T19300] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3318.560695][T19300] [ 3318.577382][T19300] memory: usage 307200kB, limit 307200kB, failcnt 140103 [ 3318.587737][T19300] memory+swap: usage 308528kB, limit 9007199254740988kB, failcnt 0 [ 3318.596147][T19300] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3318.603770][T19300] Memory cgroup stats for /syz0: [ 3318.603906][T19300] cache 0 [ 3318.612560][T19300] rss 12288 [ 3318.616189][T19300] rss_huge 0 [ 3318.619927][T19300] shmem 0 [ 3318.623035][T19300] mapped_file 0 [ 3318.625347][ T5101] Bluetooth: hci7: command 0x040f tx timeout [ 3318.627738][T19300] dirty 0 [ 3318.635918][T19300] writeback 0 [ 3318.639377][T19300] workingset_refault_anon 45433 [ 3318.644389][T19300] workingset_refault_file 0 [ 3318.649782][T19300] swap 1359872 [ 3318.653309][T19300] swapcached 8192 [ 3318.657571][T19300] pgpgin 289179 [ 3318.661133][T19300] pgpgout 289176 [ 3318.664761][T19300] pgfault 539461 [ 3318.669121][T19300] pgmajfault 43774 [ 3318.672980][T19300] inactive_anon 12288 [ 3318.677806][T19300] active_anon 0 [ 3318.681403][T19300] inactive_file 0 [ 3318.686698][T19300] active_file 0 [ 3318.690292][T19300] unevictable 0 [ 3318.693845][T19300] hierarchical_memory_limit 314572800 [ 3318.699525][T19300] hierarchical_memsw_limit 9223372036854771712 [ 3318.705995][T19300] total_cache 0 [ 3318.709668][T19300] total_rss 12288 [ 3318.713508][T19300] total_rss_huge 0 [ 3318.717485][T19300] total_shmem 0 [ 3318.721139][T19300] total_mapped_file 0 [ 3318.725403][T19300] total_dirty 0 [ 3318.729038][T19300] total_writeback 0 [ 3318.733033][T19300] total_workingset_refault_anon 45433 [ 3318.738868][T19300] total_workingset_refault_file 0 [ 3318.744093][T19300] total_swap 1359872 [ 3318.748458][T19300] total_swapcached 8192 [ 3318.752721][T19300] total_pgpgin 289179 [ 3318.757316][T19300] total_pgpgout 289176 [ 3318.761607][T19300] total_pgfault 539461 [ 3318.766958][T19300] total_pgmajfault 43774 [ 3318.771496][T19300] total_inactive_anon 12288 [ 3318.776721][T19300] total_active_anon 0 [ 3318.780941][T19300] total_inactive_file 0 [ 3318.786057][T19300] total_active_file 0 [ 3318.790250][T19300] total_unevictable 0 [ 3318.794381][T19300] anon_cost 0 [ 3318.798314][T19300] file_cost 0 [ 3318.802285][T19300] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19300,uid=0 [ 3318.818113][T19300] Memory cgroup out of memory: Killed process 19300 (syz-executor.0) total-vm:54508kB, anon-rss:368kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3318.835254][T19168] usb 3-1: new high-speed USB device number 63 using dummy_hcd 17:45:37 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x3f6}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3319.075229][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3319.195448][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3319.217130][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3319.233173][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3319.257933][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3319.280989][T19168] usb 3-1: config 0 descriptor?? [ 3319.430882][T19301] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3319.452176][T19301] CPU: 1 PID: 19301 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3319.462654][T19301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3319.472724][T19301] Call Trace: [ 3319.476012][T19301] [ 3319.478949][T19301] dump_stack_lvl+0x1e7/0x2e0 [ 3319.483668][T19301] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3319.488892][T19301] ? __pfx__printk+0x10/0x10 [ 3319.493503][T19301] ? ___ratelimit+0x4c4/0x670 [ 3319.498194][T19301] ? __pfx____ratelimit+0x10/0x10 [ 3319.503235][T19301] dump_header+0xda/0x6a0 [ 3319.507590][T19301] oom_kill_process+0x3a7/0x930 [ 3319.512466][T19301] out_of_memory+0xf67/0x1320 [ 3319.517160][T19301] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3319.522808][T19301] ? __pfx___mutex_lock+0x10/0x10 [ 3319.527866][T19301] ? __pfx_out_of_memory+0x10/0x10 [ 3319.533103][T19301] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3319.538681][T19301] ? __pfx_lock_release+0x10/0x10 [ 3319.543751][T19301] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3319.549852][T19301] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3319.555077][T19301] ? mem_cgroup_iter+0x422/0x560 [ 3319.560041][T19301] try_charge_memcg+0xda2/0x18a0 [ 3319.565018][T19301] ? __pfx_try_charge_memcg+0x10/0x10 [ 3319.570403][T19301] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3319.576134][T19301] ? __pfx_lock_release+0x10/0x10 [ 3319.581175][T19301] ? memcg_account_kmem+0x1e7/0x210 [ 3319.586394][T19301] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3319.592210][T19301] __memcg_kmem_charge_page+0xe1/0x250 [ 3319.597687][T19301] memcg_charge_kernel_stack+0x210/0x550 [ 3319.603337][T19301] dup_task_struct+0x15d/0x7d0 [ 3319.608123][T19301] copy_process+0x5d5/0x3fc0 [ 3319.612736][T19301] ? __might_fault+0xa9/0x120 [ 3319.617428][T19301] ? __pfx_lock_release+0x10/0x10 [ 3319.622473][T19301] ? __pfx_copy_process+0x10/0x10 [ 3319.627504][T19301] ? __might_fault+0xc5/0x120 [ 3319.632198][T19301] ? __asan_memset+0x23/0x50 [ 3319.636817][T19301] kernel_clone+0x21d/0x8d0 [ 3319.641338][T19301] ? __pfx_kernel_clone+0x10/0x10 [ 3319.646394][T19301] __se_sys_clone3+0x2cb/0x350 [ 3319.651173][T19301] ? __pfx___se_sys_clone3+0x10/0x10 [ 3319.656484][T19301] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3319.662507][T19301] ? exc_page_fault+0x587/0x870 [ 3319.667379][T19301] ? do_syscall_64+0xb4/0x240 [ 3319.672108][T19301] do_syscall_64+0xf9/0x240 [ 3319.676648][T19301] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3319.682574][T19301] RIP: 0033:0x7f080fca9b99 [ 3319.687008][T19301] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3319.706633][T19301] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3319.715056][T19301] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3319.723032][T19301] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3319.731031][T19301] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3319.739019][T19301] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3319.747022][T19301] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3319.755040][T19301] [ 3319.766442][T19301] memory: usage 307200kB, limit 307200kB, failcnt 140698 17:45:38 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, &(0x7f0000000000)={0x0, 0x4, 0x14, {0x14, 0x1, "1019e88fa4c67edd39728fe149c41ae7bde9"}}, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x432}}, &(0x7f00000000c0)={0x0, 0x22, 0x9, {[@global=@item_012={0x1, 0x1, 0x3, 'f'}, @global=@item_012={0x1, 0x1, 0x2, "a2"}, @global=@item_4={0x3, 0x1, 0xb, "73c3a52a"}]}}, &(0x7f0000000100)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3, 0x7, 0x1, {0x22, 0x599}}}}, &(0x7f0000000480)={0x2c, &(0x7f0000000240)={0x0, 0x12, 0xf1, "15fa86ebc3ddcaebc2260178917417e97bdcf25b2643b0bb9a17e75dcb6b9ff26dcca255508d37aabab5b540de6d2e1f14a09e4ef0c4832621ff61ebcee843da82521e0a36067c27ae9e93a2a7764a9a2a375a91764c753fcc21719a4087e670a482ef905cb924369d20b16c6e5f3ad50615c12017b79a0ca20482ca102b192e96f0db384b54110f85ac479dd7a82e4b58144b9fc0dc9a75fc0b7f25978fcadf1d120c09390de391d216acbd86e8107dcbdb4a493d523cc10fd07b436c9c9f26fb2bb695137453ee8a6ee8644321d045d50d34a6b751c2bf268903af1720782c5d09cadf6a2823d820b491899b340cc03d"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0xcc}, &(0x7f0000000380)={0x20, 0x1, 0xb8, "2498eaab1b34562d172e7c3a4097b54548deb4c012df9b11bc0ab6d30b627c464339aeaae23772bcab09cefafe6d8519ab09ea04beba19cf53723e6b6d74e0fd6610a2fce5b505baba94c8d7f439c4d7f2e864eb4e18261874d8bf315aa5fe6b992afd6e0b1eb6c57d5c20dc76a2546561f6389a3bc56ede700be637cf0ac31b95b3ef66324b5cb2b62ec98dcc720aa3a7b38f3054396a19cc1c325110cf237a403cc950e9dd99ec3edd7d2427d75a3665e21b50caff5fc4"}, &(0x7f0000000440)={0x20, 0x3, 0x1, 0x8}}) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3319.787516][T19301] memory+swap: usage 308576kB, limit 9007199254740988kB, failcnt 0 [ 3319.796206][T19301] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3319.803622][T19301] Memory cgroup stats for /syz0: [ 3319.803769][T19301] cache 0 [ 3319.812424][T19301] rss 0 [ 3319.815902][T19301] rss_huge 0 [ 3319.819221][T19301] shmem 0 [ 3319.822264][T19301] mapped_file 0 [ 3319.828217][T19301] dirty 0 [ 3319.833527][T19301] writeback 0 [ 3319.839576][T19301] workingset_refault_anon 45641 [ 3319.850230][T19301] workingset_refault_file 0 [ 3319.856082][T19301] swap 1409024 [ 3319.859571][T19301] swapcached 0 [ 3319.863050][T19301] pgpgin 289406 [ 3319.866754][T19301] pgpgout 289406 [ 3319.870318][T19301] pgfault 539782 [ 3319.873874][T19301] pgmajfault 43959 [ 3319.878421][T19168] usbhid 3-1:0.0: can't add hid device: -71 [ 3319.884470][T19168] usbhid: probe of 3-1:0.0 failed with error -71 [ 3319.890892][T19301] inactive_anon 0 [ 3319.895353][T19301] active_anon 0 [ 3319.901210][T19168] usb 3-1: USB disconnect, device number 63 [ 3319.908319][T19301] inactive_file 0 [ 3319.912090][T19301] active_file 0 [ 3319.918847][T19301] unevictable 0 [ 3319.924945][T19301] hierarchical_memory_limit 314572800 [ 3319.930934][T19301] hierarchical_memsw_limit 9223372036854771712 [ 3319.937318][T19301] total_cache 0 [ 3319.940895][T19301] total_rss 0 [ 3319.948820][T19301] total_rss_huge 0 [ 3319.952614][T19301] total_shmem 0 [ 3319.956227][T19301] total_mapped_file 0 [ 3319.960630][T19301] total_dirty 0 [ 3319.964458][T19301] total_writeback 0 [ 3319.968580][T19301] total_workingset_refault_anon 45641 [ 3319.973968][T19301] total_workingset_refault_file 0 [ 3319.979427][T19301] total_swap 1409024 [ 3319.983350][T19301] total_swapcached 0 [ 3319.988208][T19301] total_pgpgin 289406 [ 3319.992219][T19301] total_pgpgout 289406 [ 3319.996473][T19301] total_pgfault 539782 [ 3320.000569][T19301] total_pgmajfault 43959 [ 3320.004850][T19301] total_inactive_anon 0 [ 3320.009380][T19301] total_active_anon 0 [ 3320.013384][T19301] total_inactive_file 0 [ 3320.017637][T19301] total_active_file 0 [ 3320.021633][T19301] total_unevictable 0 [ 3320.026119][T19301] anon_cost 0 [ 3320.029525][T19301] file_cost 0 [ 3320.032919][T19301] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19301,uid=0 [ 3320.048812][T19301] Memory cgroup out of memory: Killed process 19301 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8864kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:38 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x448}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3320.275274][T19168] usb 3-1: new high-speed USB device number 64 using dummy_hcd [ 3320.515251][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3320.519384][T19304] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3320.531695][T19304] CPU: 0 PID: 19304 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3320.542135][T19304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3320.552203][T19304] Call Trace: [ 3320.555512][T19304] [ 3320.558486][T19304] dump_stack_lvl+0x1e7/0x2e0 [ 3320.563201][T19304] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3320.568435][T19304] ? __pfx__printk+0x10/0x10 [ 3320.573081][T19304] ? ___ratelimit+0x4c4/0x670 [ 3320.577797][T19304] ? __pfx____ratelimit+0x10/0x10 [ 3320.582860][T19304] dump_header+0xda/0x6a0 [ 3320.587215][T19304] oom_kill_process+0x3a7/0x930 [ 3320.592116][T19304] out_of_memory+0xf67/0x1320 [ 3320.596830][T19304] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3320.602488][T19304] ? __pfx___mutex_lock+0x10/0x10 [ 3320.607535][T19304] ? __pfx_out_of_memory+0x10/0x10 [ 3320.612692][T19304] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3320.618275][T19304] ? __pfx_lock_release+0x10/0x10 [ 3320.623308][T19304] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3320.629395][T19304] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3320.634701][T19304] ? mem_cgroup_iter+0x422/0x560 [ 3320.635385][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3320.639643][T19304] try_charge_memcg+0xda2/0x18a0 [ 3320.655483][T19304] ? __pfx_try_charge_memcg+0x10/0x10 [ 3320.660897][T19304] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3320.663167][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3320.666632][T19304] ? __pfx_lock_release+0x10/0x10 [ 3320.666669][T19304] ? memcg_account_kmem+0x1e7/0x210 [ 3320.666707][T19304] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3320.666734][T19304] __memcg_kmem_charge_page+0xe1/0x250 [ 3320.666771][T19304] memcg_charge_kernel_stack+0x210/0x550 [ 3320.666803][T19304] dup_task_struct+0x15d/0x7d0 [ 3320.666832][T19304] copy_process+0x5d5/0x3fc0 [ 3320.685228][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3320.686769][T19304] ? __might_fault+0xa9/0x120 [ 3320.692566][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3320.698014][T19304] ? __pfx_lock_release+0x10/0x10 [ 3320.698060][T19304] ? __lock_acquire+0x1345/0x1fd0 [ 3320.698094][T19304] ? __pfx_copy_process+0x10/0x10 [ 3320.698119][T19304] ? __might_fault+0xc5/0x120 [ 3320.698150][T19304] ? __asan_memset+0x23/0x50 [ 3320.698199][T19304] kernel_clone+0x21d/0x8d0 [ 3320.698231][T19304] ? __pfx_kernel_clone+0x10/0x10 [ 3320.698267][T19304] ? __pfx_lock_release+0x10/0x10 [ 3320.698366][T19304] __se_sys_clone3+0x2cb/0x350 [ 3320.698392][T19304] ? __might_fault+0xa9/0x120 [ 3320.698418][T19304] ? __pfx___se_sys_clone3+0x10/0x10 [ 3320.717474][T19168] usb 3-1: config 0 descriptor?? [ 3320.722416][T19304] ? rcu_is_watching+0x15/0xb0 [ 3320.798477][T19304] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3320.804513][T19304] ? exc_page_fault+0x587/0x870 [ 3320.809388][T19304] ? do_syscall_64+0xb4/0x240 [ 3320.814099][T19304] do_syscall_64+0xf9/0x240 [ 3320.818635][T19304] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3320.824562][T19304] RIP: 0033:0x7f080fca9b99 [ 3320.828997][T19304] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3320.848723][T19304] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3320.857176][T19304] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3320.865182][T19304] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3320.873284][T19304] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3320.881259][T19304] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3320.889249][T19304] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3320.897273][T19304] [ 3320.900875][ T5101] Bluetooth: hci7: command 0x0419 tx timeout 17:45:39 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async, rerun: 32) syz_usb_disconnect(0xffffffffffffffff) (async, rerun: 32) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000100)={0x14, &(0x7f00000001c0)={0x0, 0x1, 0xc0, {0xc0, 0x24, "59708f4452a300cecf338e995cd7336fd96a7226a0c222ae0bb442aca2b57c1252ee05a9543af89e74e2b164c46cd5fffc0cc1c727af4c2187b682fbf8eab0ccb7c799dff27829917befbd6a2be107e475958b19dcf1ca90a8622bb302674e74cc02af7c551a389ebd0fca47532c53169faa3398cad2e57f7ddc8238cb0f8841725e68cd349956d56fdc656313dd58b001b88051c951c1ad1c762ce9063d5777f2ccc35ba5348a8337b7133ea3976aa1b9bed08d70f28adc1cc20c2f0c50"}}, &(0x7f00000000c0)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000540)={0x44, &(0x7f00000002c0)={0x20, 0x3, 0xb2, "0767a6ccd128532960770f071470800d25a473e3a7b3f5fdc39df8544686d1ad696c767c2e377013547ca211bf2b673a0a6079d68735bbfcffc3440002930faf8c037762ea9f5da7493e512d4a73e784692c0f4615536251110f6c40ca66483f6b587e805ff3b8403610fbee90e132d40e5774264993ea6b7493d34f437ef3585200def9e4332c4b6ecf10c9724de4898e8bb8d09d4df548fb1360bbfe66409afc9f567e8dd4b9ba554180322e265677fa78"}, &(0x7f0000000380)={0x0, 0xa, 0x1, 0x6}, &(0x7f00000003c0)={0x0, 0x8, 0x1, 0x7f}, &(0x7f0000000400)={0x20, 0x80, 0x1c, {0x6, 0xfffa, 0x1, 0x9, 0x6, 0x938, 0xc593, 0x3, 0x6, 0x400, 0x0, 0xaf9e}}, &(0x7f0000000440)={0x20, 0x85, 0x4, 0x4}, &(0x7f0000000480)={0x20, 0x83, 0x2}, &(0x7f00000004c0)={0x20, 0x87, 0x2, 0xb08}, &(0x7f0000000500)={0x20, 0x89, 0x2}}) [ 3320.930945][T19304] memory: usage 307188kB, limit 307200kB, failcnt 141186 [ 3320.938680][T19304] memory+swap: usage 308556kB, limit 9007199254740988kB, failcnt 0 [ 3320.947265][T19304] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3320.954592][T19304] Memory cgroup stats for /syz0: [ 3320.954749][T19304] cache 0 [ 3320.963167][T19304] rss 20480 [ 3320.967029][T19304] rss_huge 0 [ 3320.970251][T19304] shmem 0 [ 3320.973211][T19304] mapped_file 0 [ 3320.987740][T19304] dirty 0 [ 3320.991212][T19304] writeback 0 [ 3320.994569][T19304] workingset_refault_anon 45808 [ 3320.999662][T19304] workingset_refault_file 0 [ 3321.004198][T19304] swap 1388544 [ 3321.007883][T19304] swapcached 12288 [ 3321.011642][T19304] pgpgin 289585 [ 3321.019930][T19304] pgpgout 289580 [ 3321.023514][T19304] pgfault 540038 [ 3321.028596][T19304] pgmajfault 44119 [ 3321.032350][T19304] inactive_anon 20480 [ 3321.036486][T19304] active_anon 0 [ 3321.039998][T19304] inactive_file 0 [ 3321.043650][T19304] active_file 0 [ 3321.047505][T19304] unevictable 0 [ 3321.051007][T19304] hierarchical_memory_limit 314572800 [ 3321.056604][T19304] hierarchical_memsw_limit 9223372036854771712 [ 3321.062804][T19304] total_cache 0 [ 3321.066624][T19304] total_rss 20480 [ 3321.070293][T19304] total_rss_huge 0 [ 3321.074031][T19304] total_shmem 0 [ 3321.077587][T19304] total_mapped_file 0 [ 3321.081585][T19304] total_dirty 0 [ 3321.085043][T19304] total_writeback 0 [ 3321.089414][T19168] usbhid 3-1:0.0: can't add hid device: -71 [ 3321.089428][T19304] total_workingset_refault_anon 45808 [ 3321.089443][T19304] total_workingset_refault_file 0 [ 3321.095803][T19168] usbhid: probe of 3-1:0.0 failed with error -71 [ 3321.101723][T19304] total_swap 1388544 [ 3321.124794][T19304] total_swapcached 12288 [ 3321.128528][T19168] usb 3-1: USB disconnect, device number 64 [ 3321.130882][T19304] total_pgpgin 289585 [ 3321.147713][T19304] total_pgpgout 289580 [ 3321.151821][T19304] total_pgfault 540038 [ 3321.156406][T19304] total_pgmajfault 44119 [ 3321.160700][T19304] total_inactive_anon 20480 [ 3321.166520][T19304] total_active_anon 0 [ 3321.170820][T19304] total_inactive_file 0 [ 3321.175002][T19304] total_active_file 0 [ 3321.179517][T19304] total_unevictable 0 [ 3321.183537][T19304] anon_cost 0 [ 3321.186937][T19304] file_cost 0 [ 3321.190264][T19304] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19304,uid=0 [ 3321.205978][T19304] Memory cgroup out of memory: Killed process 19304 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:39 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x44c}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3321.628487][T19308] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3321.640469][T19308] CPU: 1 PID: 19308 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3321.650914][T19308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3321.660975][T19308] Call Trace: [ 3321.664268][T19308] [ 3321.667216][T19308] dump_stack_lvl+0x1e7/0x2e0 [ 3321.672032][T19308] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3321.677260][T19308] ? __pfx__printk+0x10/0x10 [ 3321.681886][T19308] ? ___ratelimit+0x4c4/0x670 [ 3321.686579][T19308] ? __pfx____ratelimit+0x10/0x10 [ 3321.691618][T19308] dump_header+0xda/0x6a0 [ 3321.695983][T19308] oom_kill_process+0x3a7/0x930 [ 3321.700872][T19308] out_of_memory+0xf67/0x1320 [ 3321.705572][T19308] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3321.711214][T19308] ? __pfx___mutex_lock+0x10/0x10 [ 3321.716264][T19308] ? __pfx_out_of_memory+0x10/0x10 [ 3321.721429][T19308] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3321.727008][T19308] ? __pfx_lock_release+0x10/0x10 [ 3321.732077][T19308] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3321.738168][T19308] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3321.743489][T19308] ? mem_cgroup_iter+0x422/0x560 [ 3321.748448][T19308] try_charge_memcg+0xda2/0x18a0 [ 3321.753434][T19308] ? __pfx_try_charge_memcg+0x10/0x10 [ 3321.758843][T19308] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3321.764579][T19308] ? __pfx_lock_release+0x10/0x10 [ 3321.769647][T19308] ? memcg_account_kmem+0x1e7/0x210 [ 3321.774873][T19308] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3321.780715][T19308] __memcg_kmem_charge_page+0xe1/0x250 [ 3321.786205][T19308] memcg_charge_kernel_stack+0x210/0x550 [ 3321.791866][T19308] dup_task_struct+0x15d/0x7d0 [ 3321.796663][T19308] copy_process+0x5d5/0x3fc0 [ 3321.801281][T19308] ? __might_fault+0xa9/0x120 [ 3321.805997][T19308] ? __pfx_lock_release+0x10/0x10 [ 3321.811051][T19308] ? __pfx_copy_process+0x10/0x10 [ 3321.816101][T19308] ? __might_fault+0xc5/0x120 [ 3321.820810][T19308] ? __asan_memset+0x23/0x50 [ 3321.825430][T19308] kernel_clone+0x21d/0x8d0 [ 3321.829956][T19308] ? __pfx_kernel_clone+0x10/0x10 [ 3321.835011][T19308] __se_sys_clone3+0x2cb/0x350 [ 3321.839798][T19308] ? __pfx___se_sys_clone3+0x10/0x10 [ 3321.845103][T19308] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3321.851131][T19308] ? exc_page_fault+0x587/0x870 [ 3321.856023][T19308] ? do_syscall_64+0xb4/0x240 [ 3321.860725][T19308] do_syscall_64+0xf9/0x240 [ 3321.865250][T19308] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3321.871178][T19308] RIP: 0033:0x7f080fca9b99 [ 3321.875608][T19308] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3321.895276][T19308] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3321.903705][T19308] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3321.911689][T19308] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3321.919667][T19308] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3321.927648][T19308] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3321.935622][T19308] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3321.943612][T19308] [ 3321.955282][T19168] usb 3-1: new high-speed USB device number 65 using dummy_hcd [ 3321.962973][T19308] memory: usage 307200kB, limit 307200kB, failcnt 141624 [ 3321.972167][T19308] memory+swap: usage 308536kB, limit 9007199254740988kB, failcnt 0 [ 3321.980614][T19308] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3321.988286][T19308] Memory cgroup stats for /syz0: [ 3321.988455][T19308] cache 0 [ 3321.996478][T19308] rss 0 [ 3321.999262][T19308] rss_huge 0 [ 3322.002482][T19308] shmem 0 [ 3322.006217][T19308] mapped_file 0 [ 3322.009711][T19308] dirty 0 [ 3322.012665][T19308] writeback 0 [ 3322.016104][T19308] workingset_refault_anon 45953 [ 3322.020978][T19308] workingset_refault_file 0 [ 3322.025560][T19308] swap 1368064 [ 3322.028954][T19308] swapcached 0 [ 3322.032343][T19308] pgpgin 289742 [ 3322.035966][T19308] pgpgout 289742 [ 3322.039580][T19308] pgfault 540255 [ 3322.043140][T19308] pgmajfault 44250 [ 3322.046962][T19308] inactive_anon 0 [ 3322.050619][T19308] active_anon 0 [ 3322.054120][T19308] inactive_file 0 [ 3322.058017][T19308] active_file 0 [ 3322.061508][T19308] unevictable 0 [ 3322.065000][T19308] hierarchical_memory_limit 314572800 [ 3322.070506][T19308] hierarchical_memsw_limit 9223372036854771712 [ 3322.076815][T19308] total_cache 0 [ 3322.080291][T19308] total_rss 0 [ 3322.083578][T19308] total_rss_huge 0 [ 3322.088546][T19308] total_shmem 0 [ 3322.092039][T19308] total_mapped_file 0 [ 3322.096146][T19308] total_dirty 0 [ 3322.099619][T19308] total_writeback 0 [ 3322.103427][T19308] total_workingset_refault_anon 45953 [ 3322.108874][T19308] total_workingset_refault_file 0 [ 3322.113930][T19308] total_swap 1368064 [ 3322.117923][T19308] total_swapcached 0 [ 3322.121900][T19308] total_pgpgin 289742 [ 3322.127669][T19308] total_pgpgout 289742 [ 3322.131764][T19308] total_pgfault 540255 [ 3322.136378][T19308] total_pgmajfault 44250 [ 3322.140647][T19308] total_inactive_anon 0 [ 3322.144806][T19308] total_active_anon 0 [ 3322.148964][T19308] total_inactive_file 0 [ 3322.153142][T19308] total_active_file 0 [ 3322.157436][T19308] total_unevictable 0 [ 3322.161436][T19308] anon_cost 0 [ 3322.164717][T19308] file_cost 0 17:45:40 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x500}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3322.168271][T19308] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19308,uid=0 [ 3322.184599][T19308] Memory cgroup out of memory: Killed process 19308 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3322.215485][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3322.335433][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3322.347168][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3322.365795][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3322.375684][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3322.386786][T19168] usb 3-1: config 0 descriptor?? [ 3322.532134][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3322.544405][ T5110] CPU: 1 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3322.554776][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3322.564876][ T5110] Call Trace: [ 3322.568163][ T5110] [ 3322.571109][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3322.575844][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3322.581054][ T5110] ? __pfx__printk+0x10/0x10 [ 3322.585654][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3322.590347][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3322.595392][ T5110] dump_header+0xda/0x6a0 [ 3322.599739][ T5110] oom_kill_process+0x3a7/0x930 [ 3322.604602][ T5110] out_of_memory+0xf67/0x1320 [ 3322.609292][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3322.614932][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3322.619965][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3322.625095][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3322.630690][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3322.635745][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3322.641845][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3322.647054][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3322.652001][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3322.656941][ T5110] ? mark_lock+0x9a/0x350 [ 3322.661317][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3322.666733][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3322.672888][ T5110] charge_memcg+0xa2/0x160 [ 3322.677317][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3322.683390][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3322.688879][ T5110] ? mark_lock+0x9a/0x350 [ 3322.693245][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3322.699266][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3322.704676][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3322.710596][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3322.715635][ T5110] ? xas_descend+0x37e/0x470 [ 3322.720241][ T5110] swapin_readahead+0x1ea/0x1070 [ 3322.725220][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3322.730358][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3322.735748][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3322.741067][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3322.746381][ T5110] do_swap_page+0x791/0x3f40 [ 3322.751000][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3322.755806][ T5110] ? do_swap_page+0x154/0x3f40 [ 3322.760591][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3322.765617][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3322.771101][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3322.776920][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3322.782073][ T5110] ? reacquire_held_locks+0x3eb/0x690 [ 3322.787480][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3322.792985][ T5110] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3322.798721][ T5110] ? mtree_range_walk+0x6fd/0x8e0 [ 3322.803752][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3322.808958][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3322.813994][ T5110] ? lock_vma_under_rcu+0x2f9/0x730 [ 3322.819216][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3322.824420][ T5110] ? __pfx_lock_vma_under_rcu+0x10/0x10 17:45:41 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, &(0x7f0000000000)={0x0, 0x4, 0x14, {0x14, 0x1, "1019e88fa4c67edd39728fe149c41ae7bde9"}}, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x432}}, &(0x7f00000000c0)={0x0, 0x22, 0x9, {[@global=@item_012={0x1, 0x1, 0x3, 'f'}, @global=@item_012={0x1, 0x1, 0x2, "a2"}, @global=@item_4={0x3, 0x1, 0xb, "73c3a52a"}]}}, &(0x7f0000000100)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3, 0x7, 0x1, {0x22, 0x599}}}}, &(0x7f0000000480)={0x2c, &(0x7f0000000240)={0x0, 0x12, 0xf1, "15fa86ebc3ddcaebc2260178917417e97bdcf25b2643b0bb9a17e75dcb6b9ff26dcca255508d37aabab5b540de6d2e1f14a09e4ef0c4832621ff61ebcee843da82521e0a36067c27ae9e93a2a7764a9a2a375a91764c753fcc21719a4087e670a482ef905cb924369d20b16c6e5f3ad50615c12017b79a0ca20482ca102b192e96f0db384b54110f85ac479dd7a82e4b58144b9fc0dc9a75fc0b7f25978fcadf1d120c09390de391d216acbd86e8107dcbdb4a493d523cc10fd07b436c9c9f26fb2bb695137453ee8a6ee8644321d045d50d34a6b751c2bf268903af1720782c5d09cadf6a2823d820b491899b340cc03d"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0xcc}, &(0x7f0000000380)={0x20, 0x1, 0xb8, "2498eaab1b34562d172e7c3a4097b54548deb4c012df9b11bc0ab6d30b627c464339aeaae23772bcab09cefafe6d8519ab09ea04beba19cf53723e6b6d74e0fd6610a2fce5b505baba94c8d7f439c4d7f2e864eb4e18261874d8bf315aa5fe6b992afd6e0b1eb6c57d5c20dc76a2546561f6389a3bc56ede700be637cf0ac31b95b3ef66324b5cb2b62ec98dcc720aa3a7b38f3054396a19cc1c325110cf237a403cc950e9dd99ec3edd7d2427d75a3665e21b50caff5fc4"}, &(0x7f0000000440)={0x20, 0x3, 0x1, 0x8}}) (async, rerun: 64) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (rerun: 64) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3322.830001][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3322.834811][ T5110] exc_page_fault+0x456/0x870 [ 3322.839538][ T5110] asm_exc_page_fault+0x26/0x30 [ 3322.844433][ T5110] RIP: 0033:0x7f080fc7a780 [ 3322.848885][ T5110] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 [ 3322.868536][ T5110] RSP: 002b:00007f080fecfd58 EFLAGS: 00010246 [ 3322.874646][ T5110] RAX: 00000000000000cf RBX: 0000000000004331 RCX: 0000000000000000 [ 3322.882646][ T5110] RDX: 0000000040000001 RSI: 00007f080fecfdbc RDI: 00000000ffffffff [ 3322.890651][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000010 R09: 00007ffde33aa0b0 [ 3322.898653][ T5110] R10: 00007ffde33aa080 R11: 000000000009c03c R12: 0000000000000032 [ 3322.906627][ T5110] R13: 000000000032b18c R14: 000000000032b18c R15: 0000000000000000 [ 3322.914637][ T5110] [ 3322.938730][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 141958 [ 3322.946438][ T5110] memory+swap: usage 308572kB, limit 9007199254740988kB, failcnt 0 [ 3322.954549][ T5110] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3322.964795][ T5110] Memory cgroup stats for /syz0: [ 3322.964945][ T5110] cache 0 [ 3322.973357][ T5110] rss 20480 [ 3322.976668][ T5110] rss_huge 0 [ 3322.979944][ T5110] shmem 0 [ 3322.982900][ T5110] mapped_file 0 [ 3322.986565][ T5110] dirty 0 [ 3322.989532][ T5110] writeback 0 [ 3322.992832][ T5110] workingset_refault_anon 46072 [ 3322.997988][ T5110] workingset_refault_file 0 [ 3323.002520][ T5110] swap 1384448 [ 3323.006124][ T5110] swapcached 16384 [ 3323.009868][ T5110] pgpgin 289873 [ 3323.013346][ T5110] pgpgout 289868 [ 3323.015718][T19168] usbhid 3-1:0.0: can't add hid device: -71 [ 3323.017568][ T5110] pgfault 540446 [ 3323.022934][T19168] usbhid: probe of 3-1:0.0 failed with error -71 [ 3323.035154][ T5110] pgmajfault 44368 [ 3323.044694][ T5110] inactive_anon 12288 [ 3323.045714][T19168] usb 3-1: USB disconnect, device number 65 [ 3323.056926][ T5110] active_anon 8192 [ 3323.063013][ T5110] inactive_file 0 [ 3323.068375][ T5110] active_file 0 [ 3323.077759][ T5110] unevictable 0 [ 3323.081435][ T5110] hierarchical_memory_limit 314572800 [ 3323.090182][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3323.096929][ T5110] total_cache 0 [ 3323.100537][ T5110] total_rss 20480 [ 3323.104314][ T5110] total_rss_huge 0 [ 3323.108478][ T5110] total_shmem 0 [ 3323.112094][ T5110] total_mapped_file 0 [ 3323.116291][ T5110] total_dirty 0 [ 3323.119850][ T5110] total_writeback 0 [ 3323.123822][ T5110] total_workingset_refault_anon 46072 [ 3323.130378][ T5110] total_workingset_refault_file 0 [ 3323.135617][ T5110] total_swap 1384448 [ 3323.139668][ T5110] total_swapcached 16384 [ 3323.144011][ T5110] total_pgpgin 289873 [ 3323.148287][ T5110] total_pgpgout 289868 [ 3323.152510][ T5110] total_pgfault 540446 [ 3323.158509][ T5110] total_pgmajfault 44368 [ 3323.162905][ T5110] total_inactive_anon 12288 [ 3323.167625][ T5110] total_active_anon 8192 [ 3323.171981][ T5110] total_inactive_file 0 [ 3323.177775][ T5110] total_active_file 0 [ 3323.181911][ T5110] total_unevictable 0 [ 3323.186135][ T5110] anon_cost 0 [ 3323.189592][ T5110] file_cost 0 17:45:41 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x600}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3323.193045][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19309,uid=0 [ 3323.208802][ T5110] Memory cgroup out of memory: Killed process 19309 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8736kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3323.435417][T19168] usb 3-1: new high-speed USB device number 66 using dummy_hcd [ 3323.470469][T19312] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3323.481322][T19312] CPU: 0 PID: 19312 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3323.491777][T19312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3323.501839][T19312] Call Trace: [ 3323.505119][T19312] [ 3323.508065][T19312] dump_stack_lvl+0x1e7/0x2e0 [ 3323.512766][T19312] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3323.517981][T19312] ? __pfx__printk+0x10/0x10 [ 3323.522581][T19312] ? ___ratelimit+0x4c4/0x670 [ 3323.527276][T19312] ? __pfx____ratelimit+0x10/0x10 [ 3323.532317][T19312] dump_header+0xda/0x6a0 [ 3323.536662][T19312] oom_kill_process+0x3a7/0x930 [ 3323.541529][T19312] out_of_memory+0xf67/0x1320 [ 3323.546219][T19312] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3323.551863][T19312] ? __pfx___mutex_lock+0x10/0x10 [ 3323.556899][T19312] ? __pfx_out_of_memory+0x10/0x10 [ 3323.562027][T19312] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3323.567588][T19312] ? __pfx_lock_release+0x10/0x10 [ 3323.572643][T19312] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3323.578722][T19312] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3323.583926][T19312] ? mem_cgroup_iter+0x422/0x560 [ 3323.588880][T19312] try_charge_memcg+0xda2/0x18a0 [ 3323.593877][T19312] ? __pfx_try_charge_memcg+0x10/0x10 [ 3323.599261][T19312] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3323.605009][T19312] ? __pfx_lock_release+0x10/0x10 [ 3323.610064][T19312] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3323.615879][T19312] __memcg_kmem_charge_page+0xe1/0x250 [ 3323.621353][T19312] memcg_charge_kernel_stack+0xa7/0x550 [ 3323.626913][T19312] dup_task_struct+0x15d/0x7d0 [ 3323.631691][T19312] copy_process+0x5d5/0x3fc0 [ 3323.636302][T19312] ? __might_fault+0xa9/0x120 [ 3323.641027][T19312] ? __pfx_lock_release+0x10/0x10 [ 3323.646100][T19312] ? __pfx_copy_process+0x10/0x10 [ 3323.651147][T19312] ? __might_fault+0xc5/0x120 [ 3323.655847][T19312] ? __asan_memset+0x23/0x50 [ 3323.660494][T19312] kernel_clone+0x21d/0x8d0 [ 3323.665035][T19312] ? __pfx_kernel_clone+0x10/0x10 [ 3323.670086][T19312] __se_sys_clone3+0x2cb/0x350 [ 3323.674869][T19312] ? __pfx___se_sys_clone3+0x10/0x10 [ 3323.680182][T19312] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3323.686190][T19312] ? exc_page_fault+0x587/0x870 [ 3323.691093][T19312] ? do_syscall_64+0xb4/0x240 [ 3323.695788][T19312] do_syscall_64+0xf9/0x240 [ 3323.700309][T19312] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3323.706242][T19312] RIP: 0033:0x7f080fca9b99 [ 3323.710664][T19312] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3323.730290][T19312] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3323.738722][T19312] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3323.746704][T19312] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3323.754687][T19312] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3323.762668][T19312] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3323.770648][T19312] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3323.778638][T19312] [ 3323.784922][T19312] memory: usage 307200kB, limit 307200kB, failcnt 142231 [ 3323.801157][T19312] memory+swap: usage 308496kB, limit 9007199254740988kB, failcnt 0 [ 3323.810807][T19312] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3323.818631][T19312] Memory cgroup stats for /syz0: [ 3323.818782][T19312] cache 0 [ 3323.827220][T19312] rss 12288 [ 3323.830371][T19312] rss_huge 0 [ 3323.833584][T19312] shmem 0 [ 3323.837391][T19312] mapped_file 0 [ 3323.840881][T19312] dirty 0 [ 3323.843833][T19312] writeback 0 [ 3323.847857][T19312] workingset_refault_anon 46188 [ 3323.852727][T19312] workingset_refault_file 0 [ 3323.857760][T19312] swap 1327104 [ 3323.861175][T19312] swapcached 8192 [ 3323.864834][T19312] pgpgin 290000 [ 3323.868946][T19312] pgpgout 289997 [ 3323.872534][T19312] pgfault 540627 [ 3323.876611][T19312] pgmajfault 44472 [ 3323.880355][T19312] inactive_anon 0 [ 3323.883996][T19312] active_anon 12288 [ 3323.889080][T19312] inactive_file 0 [ 3323.892868][T19312] active_file 0 [ 3323.896894][T19312] unevictable 0 [ 3323.900379][T19312] hierarchical_memory_limit 314572800 [ 3323.906011][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3323.911135][T19312] hierarchical_memsw_limit 9223372036854771712 [ 3323.919931][T19312] total_cache 0 [ 3323.923427][T19312] total_rss 12288 [ 3323.927149][T19312] total_rss_huge 0 [ 3323.930913][T19312] total_shmem 0 [ 3323.934391][T19312] total_mapped_file 0 [ 3323.938528][T19312] total_dirty 0 [ 3323.942005][T19312] total_writeback 0 [ 3323.945898][T19312] total_workingset_refault_anon 46188 [ 3323.951281][T19312] total_workingset_refault_file 0 [ 3323.956717][T19312] total_swap 1327104 [ 3323.960633][T19312] total_swapcached 8192 [ 3323.964792][T19312] total_pgpgin 290000 [ 3323.969291][T19312] total_pgpgout 289997 [ 3323.973399][T19312] total_pgfault 540627 [ 3323.977664][T19312] total_pgmajfault 44472 [ 3323.981928][T19312] total_inactive_anon 0 17:45:42 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000100)={0x14, &(0x7f00000001c0)={0x0, 0x1, 0xc0, {0xc0, 0x24, "59708f4452a300cecf338e995cd7336fd96a7226a0c222ae0bb442aca2b57c1252ee05a9543af89e74e2b164c46cd5fffc0cc1c727af4c2187b682fbf8eab0ccb7c799dff27829917befbd6a2be107e475958b19dcf1ca90a8622bb302674e74cc02af7c551a389ebd0fca47532c53169faa3398cad2e57f7ddc8238cb0f8841725e68cd349956d56fdc656313dd58b001b88051c951c1ad1c762ce9063d5777f2ccc35ba5348a8337b7133ea3976aa1b9bed08d70f28adc1cc20c2f0c50"}}, &(0x7f00000000c0)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000540)={0x44, &(0x7f00000002c0)={0x20, 0x3, 0xb2, "0767a6ccd128532960770f071470800d25a473e3a7b3f5fdc39df8544686d1ad696c767c2e377013547ca211bf2b673a0a6079d68735bbfcffc3440002930faf8c037762ea9f5da7493e512d4a73e784692c0f4615536251110f6c40ca66483f6b587e805ff3b8403610fbee90e132d40e5774264993ea6b7493d34f437ef3585200def9e4332c4b6ecf10c9724de4898e8bb8d09d4df548fb1360bbfe66409afc9f567e8dd4b9ba554180322e265677fa78"}, &(0x7f0000000380)={0x0, 0xa, 0x1, 0x6}, &(0x7f00000003c0)={0x0, 0x8, 0x1, 0x7f}, &(0x7f0000000400)={0x20, 0x80, 0x1c, {0x6, 0xfffa, 0x1, 0x9, 0x6, 0x938, 0xc593, 0x3, 0x6, 0x400, 0x0, 0xaf9e}}, &(0x7f0000000440)={0x20, 0x85, 0x4, 0x4}, &(0x7f0000000480)={0x20, 0x83, 0x2}, &(0x7f00000004c0)={0x20, 0x87, 0x2, 0xb08}, &(0x7f0000000500)={0x20, 0x89, 0x2}}) [ 3323.986610][T19312] total_active_anon 12288 [ 3323.990963][T19312] total_inactive_file 0 [ 3323.995896][T19312] total_active_file 0 [ 3323.999903][T19312] total_unevictable 0 [ 3324.003903][T19312] anon_cost 0 [ 3324.008315][T19312] file_cost 0 [ 3324.011635][T19312] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19312,uid=0 [ 3324.035417][T19312] Memory cgroup out of memory: Killed process 19312 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3324.065360][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3324.088638][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3324.116600][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 17:45:42 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x603}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3324.136006][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3324.160828][T19168] usb 3-1: config 0 descriptor?? [ 3324.485007][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3324.496329][ T5110] CPU: 0 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3324.506701][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3324.515472][T19168] usbhid 3-1:0.0: can't add hid device: -71 [ 3324.516761][ T5110] Call Trace: [ 3324.516774][ T5110] [ 3324.516784][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3324.522820][T19168] usbhid: probe of 3-1:0.0 failed with error -71 [ 3324.525955][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3324.525990][ T5110] ? __pfx__printk+0x10/0x10 [ 3324.526017][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3324.526053][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3324.526108][ T5110] dump_header+0xda/0x6a0 [ 3324.526143][ T5110] oom_kill_process+0x3a7/0x930 [ 3324.526178][ T5110] out_of_memory+0xf67/0x1320 [ 3324.526212][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3324.544205][T19168] usb 3-1: USB disconnect, device number 66 [ 3324.545319][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3324.545356][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3324.545397][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3324.545426][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3324.545457][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3324.545491][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3324.545520][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3324.545551][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3324.545574][ T5110] ? mark_lock+0x9a/0x350 [ 3324.545621][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3324.636910][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3324.643094][ T5110] charge_memcg+0xa2/0x160 [ 3324.647550][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3324.653643][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3324.659127][ T5110] ? mark_lock+0x9a/0x350 [ 3324.663490][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3324.669495][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3324.674911][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3324.680849][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3324.685924][ T5110] ? xas_descend+0x37e/0x470 [ 3324.690554][ T5110] swapin_readahead+0x1ea/0x1070 [ 3324.695511][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3324.700665][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3324.706077][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3324.711425][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3324.716827][ T5110] do_swap_page+0x791/0x3f40 [ 3324.721469][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3324.726281][ T5110] ? do_swap_page+0x154/0x3f40 [ 3324.731080][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3324.736124][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3324.741613][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3324.747463][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3324.752625][ T5110] ? reacquire_held_locks+0x3eb/0x690 [ 3324.758014][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3324.763505][ T5110] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3324.769258][ T5110] ? mtree_range_walk+0x6fd/0x8e0 [ 3324.774294][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3324.779511][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3324.784561][ T5110] ? lock_vma_under_rcu+0x2f9/0x730 [ 3324.789783][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3324.794992][ T5110] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3324.800555][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3324.805368][ T5110] exc_page_fault+0x456/0x870 [ 3324.810079][ T5110] asm_exc_page_fault+0x26/0x30 [ 3324.814933][ T5110] RIP: 0033:0x7f080fc7a780 [ 3324.819356][ T5110] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 [ 3324.838997][ T5110] RSP: 002b:00007f080fecfd58 EFLAGS: 00010246 [ 3324.845089][ T5110] RAX: 00000000000000d0 RBX: 0000000000004333 RCX: 0000000000000000 [ 3324.853076][ T5110] RDX: 0000000040000001 RSI: 00007f080fecfdbc RDI: 00000000ffffffff [ 3324.861064][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000010 R09: 00007ffde33aa0b0 [ 3324.869055][ T5110] R10: 00007ffde33aa080 R11: 000000000009c182 R12: 0000000000000032 [ 3324.877061][ T5110] R13: 000000000032b922 R14: 000000000032b922 R15: 0000000000000000 [ 3324.885067][ T5110] [ 3324.893393][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 142583 [ 3324.906023][ T5110] memory+swap: usage 308544kB, limit 9007199254740988kB, failcnt 0 [ 3324.915882][T19168] usb 3-1: new high-speed USB device number 67 using dummy_hcd [ 3324.923530][ T5110] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3324.931006][ T5110] Memory cgroup stats for /syz0: [ 3324.931154][ T5110] cache 0 [ 3324.939134][ T5110] rss 20480 [ 3324.942257][ T5110] rss_huge 0 [ 3324.945881][ T5110] shmem 0 [ 3324.948844][ T5110] mapped_file 0 [ 3324.952322][ T5110] dirty 0 [ 3324.955345][ T5110] writeback 0 [ 3324.958662][ T5110] workingset_refault_anon 46319 [ 3324.963525][ T5110] workingset_refault_file 0 [ 3324.968139][ T5110] swap 1355776 [ 3324.971538][ T5110] swapcached 12288 [ 3324.975374][ T5110] pgpgin 290144 [ 3324.978864][ T5110] pgpgout 290139 [ 3324.982439][ T5110] pgfault 540835 [ 3324.986098][ T5110] pgmajfault 44601 [ 3324.989836][ T5110] inactive_anon 0 [ 3324.993478][ T5110] active_anon 20480 [ 3325.000451][ T5110] inactive_file 0 [ 3325.004244][ T5110] active_file 0 [ 3325.008703][ T5110] unevictable 0 [ 3325.012323][ T5110] hierarchical_memory_limit 314572800 [ 3325.018285][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3325.024560][ T5110] total_cache 0 [ 3325.028696][ T5110] total_rss 20480 [ 3325.032455][ T5110] total_rss_huge 0 [ 3325.036754][ T5110] total_shmem 0 [ 3325.040365][ T5110] total_mapped_file 0 [ 3325.044442][ T5110] total_dirty 0 [ 3325.048699][ T5110] total_writeback 0 [ 3325.052697][ T5110] total_workingset_refault_anon 46319 [ 3325.058283][ T5110] total_workingset_refault_file 0 [ 3325.063421][ T5110] total_swap 1355776 [ 3325.067549][ T5110] total_swapcached 12288 [ 3325.071943][ T5110] total_pgpgin 290144 [ 3325.076159][ T5110] total_pgpgout 290139 [ 3325.080393][ T5110] total_pgfault 540835 [ 3325.084633][ T5110] total_pgmajfault 44601 [ 3325.089161][ T5110] total_inactive_anon 0 [ 3325.093443][ T5110] total_active_anon 20480 [ 3325.098598][ T5110] total_inactive_file 0 [ 3325.102902][ T5110] total_active_file 0 [ 3325.107386][ T5110] total_unevictable 0 [ 3325.111509][ T5110] anon_cost 0 [ 3325.114927][ T5110] file_cost 0 [ 3325.118761][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19315,uid=0 [ 3325.134490][ T5110] Memory cgroup out of memory: Killed process 19315 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:43 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x700}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3325.182436][T19168] usb 3-1: Using ep0 maxpacket: 8 [ 3325.305373][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3325.319117][T19168] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3325.335324][T19168] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3325.344400][T19168] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3325.355995][T19168] usb 3-1: config 0 descriptor?? [ 3325.456294][T19318] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3325.466644][T19318] CPU: 1 PID: 19318 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3325.477169][T19318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3325.487386][T19318] Call Trace: [ 3325.490675][T19318] [ 3325.493609][T19318] dump_stack_lvl+0x1e7/0x2e0 [ 3325.498311][T19318] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3325.503539][T19318] ? __pfx__printk+0x10/0x10 [ 3325.508148][T19318] ? ___ratelimit+0x4c4/0x670 [ 3325.512845][T19318] ? __pfx____ratelimit+0x10/0x10 [ 3325.517887][T19318] dump_header+0xda/0x6a0 [ 3325.522237][T19318] oom_kill_process+0x3a7/0x930 [ 3325.527167][T19318] out_of_memory+0xf67/0x1320 [ 3325.531866][T19318] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3325.537512][T19318] ? __pfx___mutex_lock+0x10/0x10 [ 3325.542544][T19318] ? __pfx_out_of_memory+0x10/0x10 [ 3325.547677][T19318] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3325.553249][T19318] ? __pfx_lock_release+0x10/0x10 [ 3325.558308][T19318] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3325.564396][T19318] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3325.569621][T19318] ? mem_cgroup_iter+0x422/0x560 [ 3325.574580][T19318] try_charge_memcg+0xda2/0x18a0 [ 3325.579551][T19318] ? __pfx_try_charge_memcg+0x10/0x10 [ 3325.584939][T19318] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3325.590677][T19318] ? __pfx_lock_release+0x10/0x10 [ 3325.595723][T19318] ? memcg_account_kmem+0x1e7/0x210 [ 3325.600975][T19318] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3325.606796][T19318] __memcg_kmem_charge_page+0xe1/0x250 [ 3325.612280][T19318] memcg_charge_kernel_stack+0x210/0x550 [ 3325.617932][T19318] dup_task_struct+0x40d/0x7d0 [ 3325.622709][T19318] copy_process+0x5d5/0x3fc0 [ 3325.627322][T19318] ? __might_fault+0xa9/0x120 [ 3325.632096][T19318] ? __pfx_lock_release+0x10/0x10 [ 3325.637152][T19318] ? __pfx_copy_process+0x10/0x10 [ 3325.642186][T19318] ? __might_fault+0xc5/0x120 [ 3325.646878][T19318] ? __asan_memset+0x23/0x50 [ 3325.651482][T19318] kernel_clone+0x21d/0x8d0 [ 3325.655998][T19318] ? __pfx_kernel_clone+0x10/0x10 [ 3325.661043][T19318] __se_sys_clone3+0x2cb/0x350 [ 3325.665820][T19318] ? __pfx___se_sys_clone3+0x10/0x10 [ 3325.671139][T19318] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3325.677145][T19318] ? exc_page_fault+0x587/0x870 [ 3325.682019][T19318] ? do_syscall_64+0xb4/0x240 [ 3325.686722][T19318] do_syscall_64+0xf9/0x240 [ 3325.691249][T19318] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3325.697162][T19318] RIP: 0033:0x7f080fca9b99 [ 3325.701598][T19318] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3325.721208][T19318] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3325.729632][T19318] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3325.737608][T19318] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3325.745581][T19318] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3325.753555][T19318] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3325.761623][T19318] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3325.769624][T19318] [ 3325.780952][T19318] memory: usage 307200kB, limit 307200kB, failcnt 142935 [ 3325.789027][T19318] memory+swap: usage 308576kB, limit 9007199254740988kB, failcnt 0 [ 3325.797498][T19318] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3325.804870][T19318] Memory cgroup stats for /syz0: [ 3325.804975][T19318] cache 0 [ 3325.813160][T19318] rss 20480 [ 3325.816553][T19318] rss_huge 0 [ 3325.819825][T19318] shmem 0 [ 3325.822773][T19318] mapped_file 0 [ 3325.826693][T19318] dirty 0 [ 3325.829672][T19318] writeback 0 [ 3325.832977][T19318] workingset_refault_anon 46447 [ 3325.837958][T19318] workingset_refault_file 0 [ 3325.842547][T19318] swap 1388544 [ 3325.846003][T19318] swapcached 12288 [ 3325.849753][T19318] pgpgin 290285 [ 3325.853227][T19318] pgpgout 290280 [ 3325.857001][T19318] pgfault 541030 [ 3325.860660][T19318] pgmajfault 44722 [ 3325.864455][T19318] inactive_anon 0 [ 3325.868184][T19318] active_anon 20480 [ 3325.872007][T19318] inactive_file 0 [ 3325.876054][T19318] active_file 0 [ 3325.879542][T19318] unevictable 0 [ 3325.883147][T19318] hierarchical_memory_limit 314572800 [ 3325.891530][T19318] hierarchical_memsw_limit 9223372036854771712 [ 3325.900575][T19318] total_cache 0 [ 3325.904066][T19318] total_rss 20480 [ 3325.907890][T19318] total_rss_huge 0 [ 3325.911653][T19318] total_shmem 0 [ 3325.915702][T19318] total_mapped_file 0 [ 3325.919714][T19318] total_dirty 0 [ 3325.923193][T19318] total_writeback 0 [ 3325.927254][T19318] total_workingset_refault_anon 46447 [ 3325.932643][T19318] total_workingset_refault_file 0 [ 3325.937837][T19318] total_swap 1388544 [ 3325.941759][T19318] total_swapcached 12288 [ 3325.945422][T19168] usbhid 3-1:0.0: can't add hid device: -32 [ 3325.946325][T19318] total_pgpgin 290285 [ 3325.956000][T19318] total_pgpgout 290280 [ 3325.958888][T19168] usbhid: probe of 3-1:0.0 failed with error -32 [ 3325.960069][T19318] total_pgfault 541030 [ 3325.960082][T19318] total_pgmajfault 44722 [ 3325.960093][T19318] total_inactive_anon 0 [ 3325.960103][T19318] total_active_anon 20480 [ 3325.960113][T19318] total_inactive_file 0 [ 3325.960123][T19318] total_active_file 0 [ 3325.993090][T19318] total_unevictable 0 [ 3326.000110][T19318] anon_cost 0 [ 3326.003465][T19318] file_cost 0 [ 3326.008656][T19318] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19318,uid=0 [ 3326.024374][T19318] Memory cgroup out of memory: Killed process 19318 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:44 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x900}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3326.337227][T19319] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3326.350374][T19319] CPU: 0 PID: 19319 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3326.360829][T19319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3326.370905][T19319] Call Trace: [ 3326.374199][T19319] [ 3326.377157][T19319] dump_stack_lvl+0x1e7/0x2e0 [ 3326.381879][T19319] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3326.387109][T19319] ? __pfx__printk+0x10/0x10 [ 3326.391745][T19319] ? ___ratelimit+0x4c4/0x670 [ 3326.396481][T19319] ? __pfx____ratelimit+0x10/0x10 [ 3326.401539][T19319] dump_header+0xda/0x6a0 [ 3326.405898][T19319] oom_kill_process+0x3a7/0x930 [ 3326.410799][T19319] out_of_memory+0xf67/0x1320 [ 3326.415518][T19319] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3326.421180][T19319] ? __pfx___mutex_lock+0x10/0x10 [ 3326.426226][T19319] ? __pfx_out_of_memory+0x10/0x10 [ 3326.431388][T19319] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3326.436968][T19319] ? __pfx_lock_release+0x10/0x10 [ 3326.442027][T19319] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3326.448132][T19319] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3326.453367][T19319] ? mem_cgroup_iter+0x422/0x560 [ 3326.458331][T19319] try_charge_memcg+0xda2/0x18a0 [ 3326.463319][T19319] ? __pfx_try_charge_memcg+0x10/0x10 [ 3326.468721][T19319] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3326.474475][T19319] ? __pfx_lock_release+0x10/0x10 [ 3326.479549][T19319] ? memcg_account_kmem+0x1e7/0x210 [ 3326.484785][T19319] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3326.490614][T19319] __memcg_kmem_charge_page+0xe1/0x250 [ 3326.496123][T19319] memcg_charge_kernel_stack+0x210/0x550 [ 3326.501804][T19319] dup_task_struct+0x40d/0x7d0 [ 3326.506593][T19319] copy_process+0x5d5/0x3fc0 [ 3326.511229][T19319] ? __might_fault+0xa9/0x120 [ 3326.515933][T19319] ? __pfx_lock_release+0x10/0x10 [ 3326.521008][T19319] ? __lock_acquire+0x1345/0x1fd0 [ 3326.526079][T19319] ? __pfx_copy_process+0x10/0x10 [ 3326.531144][T19319] ? __might_fault+0xc5/0x120 [ 3326.535857][T19319] ? __asan_memset+0x23/0x50 [ 3326.540471][T19319] kernel_clone+0x21d/0x8d0 [ 3326.544993][T19319] ? __pfx_kernel_clone+0x10/0x10 [ 3326.550045][T19319] ? __pfx_lock_release+0x10/0x10 [ 3326.555173][T19319] __se_sys_clone3+0x2cb/0x350 [ 3326.559975][T19319] ? __might_fault+0xa9/0x120 [ 3326.564672][T19319] ? __pfx___se_sys_clone3+0x10/0x10 [ 3326.569971][T19319] ? rcu_is_watching+0x15/0xb0 [ 3326.574810][T19319] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3326.580858][T19319] ? exc_page_fault+0x587/0x870 [ 3326.585737][T19319] ? do_syscall_64+0xb4/0x240 [ 3326.590472][T19319] do_syscall_64+0xf9/0x240 [ 3326.595030][T19319] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3326.600939][T19319] RIP: 0033:0x7f080fca9b99 [ 3326.605370][T19319] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3326.625002][T19319] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3326.633436][T19319] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3326.641430][T19319] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3326.649414][T19319] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3326.657424][T19319] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3326.665426][T19319] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3326.673437][T19319] [ 3326.681525][T19319] memory: usage 307200kB, limit 307200kB, failcnt 143304 [ 3326.694692][T19319] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3326.702961][T19319] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3326.710743][T19319] Memory cgroup stats for /syz0: [ 3326.710896][T19319] cache 0 [ 3326.719051][T19319] rss 8192 [ 3326.725288][T19319] rss_huge 0 [ 3326.731888][T19319] shmem 0 [ 3326.734859][T19319] mapped_file 0 [ 3326.738438][T19319] dirty 0 [ 3326.741401][T19319] writeback 0 [ 3326.744708][T19319] workingset_refault_anon 46570 [ 3326.749604][T19319] workingset_refault_file 0 [ 3326.754116][T19319] swap 1363968 [ 3326.757738][T19319] swapcached 4096 [ 3326.761399][T19319] pgpgin 290420 [ 3326.764868][T19319] pgpgout 290418 [ 3326.768520][T19319] pgfault 541219 [ 3326.772091][T19319] pgmajfault 44838 [ 3326.776014][T19319] inactive_anon 0 [ 3326.784479][T19319] active_anon 4096 17:45:45 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, &(0x7f0000000000)={0x0, 0x4, 0x14, {0x14, 0x1, "1019e88fa4c67edd39728fe149c41ae7bde9"}}, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x432}}, &(0x7f00000000c0)={0x0, 0x22, 0x9, {[@global=@item_012={0x1, 0x1, 0x3, 'f'}, @global=@item_012={0x1, 0x1, 0x2, "a2"}, @global=@item_4={0x3, 0x1, 0xb, "73c3a52a"}]}}, &(0x7f0000000100)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3, 0x7, 0x1, {0x22, 0x599}}}}, &(0x7f0000000480)={0x2c, &(0x7f0000000240)={0x0, 0x12, 0xf1, "15fa86ebc3ddcaebc2260178917417e97bdcf25b2643b0bb9a17e75dcb6b9ff26dcca255508d37aabab5b540de6d2e1f14a09e4ef0c4832621ff61ebcee843da82521e0a36067c27ae9e93a2a7764a9a2a375a91764c753fcc21719a4087e670a482ef905cb924369d20b16c6e5f3ad50615c12017b79a0ca20482ca102b192e96f0db384b54110f85ac479dd7a82e4b58144b9fc0dc9a75fc0b7f25978fcadf1d120c09390de391d216acbd86e8107dcbdb4a493d523cc10fd07b436c9c9f26fb2bb695137453ee8a6ee8644321d045d50d34a6b751c2bf268903af1720782c5d09cadf6a2823d820b491899b340cc03d"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0xcc}, &(0x7f0000000380)={0x20, 0x1, 0xb8, "2498eaab1b34562d172e7c3a4097b54548deb4c012df9b11bc0ab6d30b627c464339aeaae23772bcab09cefafe6d8519ab09ea04beba19cf53723e6b6d74e0fd6610a2fce5b505baba94c8d7f439c4d7f2e864eb4e18261874d8bf315aa5fe6b992afd6e0b1eb6c57d5c20dc76a2546561f6389a3bc56ede700be637cf0ac31b95b3ef66324b5cb2b62ec98dcc720aa3a7b38f3054396a19cc1c325110cf237a403cc950e9dd99ec3edd7d2427d75a3665e21b50caff5fc4"}, &(0x7f0000000440)={0x20, 0x3, 0x1, 0x8}}) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) (async) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, &(0x7f0000000000)={0x0, 0x4, 0x14, {0x14, 0x1, "1019e88fa4c67edd39728fe149c41ae7bde9"}}, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x432}}, &(0x7f00000000c0)={0x0, 0x22, 0x9, {[@global=@item_012={0x1, 0x1, 0x3, 'f'}, @global=@item_012={0x1, 0x1, 0x2, "a2"}, @global=@item_4={0x3, 0x1, 0xb, "73c3a52a"}]}}, &(0x7f0000000100)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3, 0x7, 0x1, {0x22, 0x599}}}}, &(0x7f0000000480)={0x2c, &(0x7f0000000240)={0x0, 0x12, 0xf1, "15fa86ebc3ddcaebc2260178917417e97bdcf25b2643b0bb9a17e75dcb6b9ff26dcca255508d37aabab5b540de6d2e1f14a09e4ef0c4832621ff61ebcee843da82521e0a36067c27ae9e93a2a7764a9a2a375a91764c753fcc21719a4087e670a482ef905cb924369d20b16c6e5f3ad50615c12017b79a0ca20482ca102b192e96f0db384b54110f85ac479dd7a82e4b58144b9fc0dc9a75fc0b7f25978fcadf1d120c09390de391d216acbd86e8107dcbdb4a493d523cc10fd07b436c9c9f26fb2bb695137453ee8a6ee8644321d045d50d34a6b751c2bf268903af1720782c5d09cadf6a2823d820b491899b340cc03d"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0xcc}, &(0x7f0000000380)={0x20, 0x1, 0xb8, "2498eaab1b34562d172e7c3a4097b54548deb4c012df9b11bc0ab6d30b627c464339aeaae23772bcab09cefafe6d8519ab09ea04beba19cf53723e6b6d74e0fd6610a2fce5b505baba94c8d7f439c4d7f2e864eb4e18261874d8bf315aa5fe6b992afd6e0b1eb6c57d5c20dc76a2546561f6389a3bc56ede700be637cf0ac31b95b3ef66324b5cb2b62ec98dcc720aa3a7b38f3054396a19cc1c325110cf237a403cc950e9dd99ec3edd7d2427d75a3665e21b50caff5fc4"}, &(0x7f0000000440)={0x20, 0x3, 0x1, 0x8}}) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) (async) [ 3326.789885][T18973] usb 3-1: USB disconnect, device number 67 [ 3326.796083][T19319] inactive_file 0 [ 3326.800347][T19319] active_file 0 [ 3326.804715][T19319] unevictable 0 [ 3326.808892][T19319] hierarchical_memory_limit 314572800 [ 3326.814435][T19319] hierarchical_memsw_limit 9223372036854771712 [ 3326.832157][T19319] total_cache 0 [ 3326.838183][T19319] total_rss 8192 [ 3326.843499][T19319] total_rss_huge 0 [ 3326.847984][T19319] total_shmem 0 [ 3326.851471][T19319] total_mapped_file 0 [ 3326.866392][T19319] total_dirty 0 [ 3326.869998][T19319] total_writeback 0 [ 3326.873889][T19319] total_workingset_refault_anon 46570 [ 3326.881981][T19319] total_workingset_refault_file 0 [ 3326.887848][T19319] total_swap 1363968 [ 3326.891976][T19319] total_swapcached 4096 [ 3326.898555][T19319] total_pgpgin 290420 [ 3326.902724][T19319] total_pgpgout 290418 [ 3326.907245][T19319] total_pgfault 541219 [ 3326.911359][T19319] total_pgmajfault 44838 [ 3326.916287][T19319] total_inactive_anon 0 [ 3326.920616][T19319] total_active_anon 4096 [ 3326.924969][T19319] total_inactive_file 0 [ 3326.930011][T19319] total_active_file 0 [ 3326.934163][T19319] total_unevictable 0 [ 3326.938749][T19319] anon_cost 0 [ 3326.942195][T19319] file_cost 0 17:45:45 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xa00}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3326.946080][T19319] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19319,uid=0 [ 3326.962159][T19319] Memory cgroup out of memory: Killed process 19319 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:45 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f00000000c0)={0x20, 0xc, 0x1c, {0x1c, 0x9, "60f7134667b2de13e45e42bc64a7101e4d46ab60364702441a69"}}, &(0x7f00000001c0)={0x0, 0x3, 0xc4, @string={0xc4, 0x3, "1d4f5cb5b88a2bc3e8c0a6c6bbb3d610dd04f26fa54a988d44f79ba03d1e1b5915c35cf68dd6352e7f13f724d4386a73777eef6e9edffd01e64160c1fa923a1073950a1ec26b704012e25078b2a96d927e0ef54ddff415df8a1be4cf7760846961ef452fae06b433a4b5160ef696b9da7d4cfaba5179f1405e230b7c3ea892876947f3ff78a7ef928f1288074f7ebc68e25e1e42a7c7712ff10ce78b562e0e4e00e5d865eefc545900d9fa752c982ce7a4bb493427eea33509b35a170200ecdf8336"}}, &(0x7f0000000100)={0x0, 0xf, 0x5, {0x5, 0xf, 0x5}}, &(0x7f00000002c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x80, 0x60, 0x6, 0x0, "7effad1b", "6a026441"}}, &(0x7f0000000300)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x7f, 0x2, 0x20, 0x5, 0x4, 0x1f, 0x400}}}, &(0x7f0000000780)={0x84, &(0x7f0000000380)={0x20, 0x18, 0x2c, "2d1d42eaeb4724328094816575ffc74f581577c554d6551586a0f68f6a45dd0b166e87bfd8c81bc0bd419ce9"}, &(0x7f00000003c0)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000400)={0x0, 0x8, 0x1, 0x1e}, &(0x7f0000000440)={0x20, 0x0, 0x4, {0x3}}, &(0x7f0000000480)={0x20, 0x0, 0x8, {0x302, 0x10, [0xf0]}}, &(0x7f00000004c0)={0x40, 0x7, 0x2, 0x9}, &(0x7f0000000500)={0x40, 0x9, 0x1, 0x7}, &(0x7f0000000540)={0x40, 0xb, 0x2, "88d0"}, &(0x7f0000000580)={0x40, 0xf, 0x2, 0x1000}, &(0x7f00000005c0)={0x40, 0x13, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}}, &(0x7f0000000600)={0x40, 0x17, 0x6, @random="edc7a7ec854b"}, &(0x7f0000000640)={0x40, 0x19, 0x2, "e4e3"}, &(0x7f0000000680)={0x40, 0x1a, 0x2, 0xec13}, &(0x7f00000006c0)={0x40, 0x1c, 0x1}, &(0x7f0000000700)={0x40, 0x1e, 0x1, 0x92}, &(0x7f0000000740)={0x40, 0x21, 0x1, 0x73}}) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io(r0, &(0x7f0000000c80)={0x2c, &(0x7f00000008c0)={0x40, 0x9, 0x9d, {0x9d, 0x0, "1f4ac66d1981eccc57855d5fb516f25e20783f9354c06636b6ffd1912249573f4e9496374d28cd07a86d7e2a3c4ed2d22ecff615616c1d78e3ec96ffee7d04063dab03ecbe3a5d028a50ba792743f683cf22792ac524c33ad4fe1a3f4f39b077111a083230cc10efb41f03bb831b892e734e4064155abbeb81c4ad162aada95688ec681edb831dbf2bb720127e046488f46fd08418857f938bb578"}}, &(0x7f0000000980)={0x0, 0x3, 0xf9, @string={0xf9, 0x3, "87682ac72a13205e18d249c69c6efa6f2248b5d164efccc027eb41bf6afb4c34a687ba9ed4b797cd4facc67050fcaf11905a3f3af3b3d146ddb7d1f4038888b622cfe7ff8c0121b9879bca4b262c7fa1838282e2bf41ec43364d1def623d714c254c4331f81c365d7bd5ffac4ded60bbb6f2b2e8e325a523fab8494d59647d705ece9303d10f2a689af7ca3973ab6460df14c3090d19703ca334d49977415c6060290975dab71f911faafb00becb8e44506944e3da13445c1387c00ca64486e16f1746abaa59a528b0d4c6699764b076cbe8701db9d1c3a05afafd0ed2f1a249063c69012256f6a43d664afd8499b5b83c254eedc352e1"}}, &(0x7f0000000a80)={0x0, 0xf, 0x1be, {0x5, 0xf, 0x1be, 0x5, [@generic={0x98, 0x10, 0x4, "194285a208c2ef68d3691056e4b2be9ef63c004a439211e2c05f407b9177d539086ea1ee6f739087fdb52e6e2e48282a2e571ff928720edb7eda512230828b64067d77d99228a734a55fbe794f8b877ff9b4cb71e464c05e98212a4f0094edd908ebb85d07779727d2ac9bfdef50709c7d2dfc4f1e7c5094d89df40ce1c2511993c7231362922d03e1d5457fe278ff5778822f368e"}, @generic={0xb7, 0x10, 0xb, "02ff3e058ad0ce62ac8850de3cfa07c27bca205afa54f9dce54d564616ce2982aeae8f17d65e65c6df9be170e6762399a2a659aeaa9b6c10905b288166e8b2efa3fe0b6120bd4686d86c0ed824395da4c4d118fd51cb6d40ced991d465397a89a0f36340120c2821546bfa4c5c5fe144d0cc989e4307a9664397ee8312b849075bc4d9a7296dcd5b334731e67be25c05c0ea247a6d84fba95af5553413dfdc1785d115934c32a216e79dc6fb91585587b977fa34"}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x1, 0x7, 0x9b, 0xfd1f}, @generic={0x4c, 0x10, 0xa, "83689216964924f6f7571b02b3e6eccbfd5a49eef0bcf352ab58cdbbd6e5a970e5d5d6d9ce07989ace3f780e305747ca08fd5849ae0b1e8581c1e84912bba6e3d66ece9f37790fa116"}, @ssp_cap={0x14, 0x10, 0xa, 0x8, 0x2, 0x10001, 0xff00, 0x400, [0xff3f30, 0x95ce48fb11b2dd9e]}]}}, &(0x7f0000000000)={0x20, 0x29, 0xf, {0xf, 0x29, 0x1, 0x4, 0x40, 0x1f, "5803a367", "de4aee61"}}, &(0x7f0000000040)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x6, 0x0, 0x5d, 0x80, 0x6, 0x7, 0x3}}}, &(0x7f0000001180)={0x84, &(0x7f0000000cc0)={0x40, 0x10, 0xe1, "0f8583c07881fe98dea552fdde913dba2c9dbf488e86c5bde0cf2c35990a2cab0c2171a3243cf2e8da4f0f1fa9bfa430c8bf1cbb4e9c39970145df714e244f76142a26f5c74ad7ab6b1e7347575828d0a74eff8cdd1644934f28598e1894830aeaf29518a6632927a84a42f8f78e6d7a46508a53cdb5820acb8e88e9ac1e4460db11ed80ce39bf4a00447edc57f96864121c1537edbc29713d22529f617af71ce80aed03ab377674465695178e899c9f3990833f135adddd795ef684267ff5776c0868da28359a5bfea7b3b75c08330689b3ff0860d8d9317b9c460e7fee8f79b6"}, &(0x7f0000000dc0)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000e00)={0x0, 0x8, 0x1, 0xc1}, &(0x7f0000000e40)={0x20, 0x0, 0x4, {0x3, 0x2}}, &(0x7f0000000e80)={0x20, 0x0, 0x4, {0x60, 0x2}}, &(0x7f0000000ec0)={0x40, 0x7, 0x2, 0xf75f}, &(0x7f0000000f00)={0x40, 0x9, 0x1, 0x4}, &(0x7f0000000f40)={0x40, 0xb, 0x2, 'Dc'}, &(0x7f0000000f80)={0x40, 0xf, 0x2, 0x40}, &(0x7f0000000fc0)={0x40, 0x13, 0x6, @random="413399786855"}, &(0x7f0000001000)={0x40, 0x17, 0x6, @broadcast}, &(0x7f0000001040)={0x40, 0x19, 0x2, "0ffa"}, &(0x7f0000001080)={0x40, 0x1a, 0x2, 0x8}, &(0x7f00000010c0)={0x40, 0x1c, 0x1}, &(0x7f0000001100)={0x40, 0x1e, 0x1}, &(0x7f0000001140)={0x40, 0x21, 0x1, 0x1}}) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000840)=ANY=[@ANYBLOB="000066000000660012f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aabbc3341ca722cb75208569ade601d9e9d77f50437d58ad46b21cdf46093d4e15ddcd5712a7f6c88e02078030e1381361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c"], &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3327.181743][T19322] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 3327.193639][T19322] CPU: 1 PID: 19322 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3327.204082][T19322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3327.214142][T19322] Call Trace: [ 3327.217424][T19322] [ 3327.220357][T19322] dump_stack_lvl+0x1e7/0x2e0 [ 3327.225051][T19322] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3327.230261][T19322] ? __pfx__printk+0x10/0x10 [ 3327.234883][T19322] ? ___ratelimit+0x4c4/0x670 [ 3327.239577][T19322] ? __pfx____ratelimit+0x10/0x10 [ 3327.244616][T19322] dump_header+0xda/0x6a0 [ 3327.248957][T19322] oom_kill_process+0x3a7/0x930 [ 3327.253826][T19322] out_of_memory+0xf67/0x1320 [ 3327.258530][T19322] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3327.264172][T19322] ? __pfx___mutex_lock+0x10/0x10 [ 3327.269212][T19322] ? __pfx_out_of_memory+0x10/0x10 [ 3327.274346][T19322] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3327.279903][T19322] ? __pfx_lock_release+0x10/0x10 [ 3327.284941][T19322] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3327.291037][T19322] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3327.296275][T19322] ? mem_cgroup_iter+0x422/0x560 [ 3327.301231][T19322] try_charge_memcg+0xda2/0x18a0 [ 3327.306177][T19322] ? mark_lock+0x9a/0x350 [ 3327.310541][T19322] ? __pfx_try_charge_memcg+0x10/0x10 [ 3327.315947][T19322] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3327.322111][T19322] charge_memcg+0xa2/0x160 [ 3327.326548][T19322] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3327.332626][T19322] __read_swap_cache_async+0x480/0x8b0 [ 3327.338103][T19322] ? mark_lock+0x9a/0x350 [ 3327.342451][T19322] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3327.348457][T19322] swap_cluster_readahead+0x67c/0x810 [ 3327.353873][T19322] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3327.359800][T19322] ? __pfx_lock_release+0x10/0x10 [ 3327.364851][T19322] ? xas_descend+0x37e/0x470 [ 3327.369471][T19322] swapin_readahead+0x1ea/0x1070 [ 3327.374426][T19322] ? filemap_get_entry+0x127/0x4e0 [ 3327.379565][T19322] ? __pfx_swapin_readahead+0x10/0x10 [ 3327.384969][T19322] ? __filemap_get_folio+0x935/0xbc0 [ 3327.390273][T19322] ? swap_cache_get_folio+0x9f/0x570 [ 3327.395580][T19322] do_swap_page+0x791/0x3f40 [ 3327.400197][T19322] ? rcu_is_watching+0x15/0xb0 [ 3327.404988][T19322] ? do_swap_page+0x154/0x3f40 [ 3327.409759][T19322] ? __pfx_do_swap_page+0x10/0x10 [ 3327.414789][T19322] ? pte_offset_map_nolock+0x137/0x1f0 [ 3327.420261][T19322] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3327.426082][T19322] ? __pfx_validate_chain+0x10/0x10 [ 3327.431302][T19322] ? seqcount_lockdep_reader_access+0x1d7/0x220 [ 3327.437559][T19322] __handle_mm_fault+0x15e8/0x72d0 [ 3327.442710][T19322] ? __pfx___handle_mm_fault+0x10/0x10 [ 3327.448205][T19322] ? mt_find+0x226/0x850 [ 3327.452463][T19322] ? __pfx_lock_release+0x10/0x10 [ 3327.457540][T19322] ? mt_find+0x62d/0x850 [ 3327.461799][T19322] ? mt_find+0x226/0x850 [ 3327.466079][T19322] ? find_vma+0x142/0x1c0 [ 3327.470422][T19322] ? __pfx_find_vma+0x10/0x10 [ 3327.475131][T19322] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3327.481136][T19322] handle_mm_fault+0x3c1/0x8a0 [ 3327.485925][T19322] exc_page_fault+0x2ad/0x870 [ 3327.490624][T19322] asm_exc_page_fault+0x26/0x30 [ 3327.495485][T19322] RIP: 0010:__get_user_8+0x11/0x20 [ 3327.500621][T19322] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3327.520263][T19322] RSP: 0018:ffffc90003547d78 EFLAGS: 00050202 [ 3327.526384][T19322] RAX: 0000555556ab4da8 RBX: ffff88807f011538 RCX: ffffc90003547c03 [ 3327.534381][T19322] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0 [ 3327.542361][T19322] RBP: ffffc90003547ec0 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d [ 3327.550381][T19322] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003547d80 [ 3327.558366][T19322] R13: ffffc90003547fd8 R14: dffffc0000000000 R15: ffff88807f010000 [ 3327.566377][T19322] __rseq_handle_notify_resume+0x158/0x1490 [ 3327.572327][T19322] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3327.578696][T19322] ? irqentry_exit_to_user_mode+0x52/0x270 [ 3327.584542][T19322] irqentry_exit_to_user_mode+0xbb/0x270 [ 3327.590201][T19322] exc_page_fault+0x587/0x870 [ 3327.594904][T19322] asm_exc_page_fault+0x26/0x30 [ 3327.599771][T19322] RIP: 0033:0x7f080fc28266 [ 3327.604207][T19322] Code: 1f 44 00 00 48 8b 0d 91 d4 ca 00 4c 63 05 7a d4 ca 00 48 8b 05 7b d4 ca 00 49 01 c8 48 39 c8 72 13 4c 39 c0 73 0e 48 8d 50 04 <89> 38 48 89 15 61 d4 ca 00 c3 52 48 8d 35 c3 0e 0a 00 48 89 c2 48 [ 3327.623842][T19322] RSP: 002b:00007f080fecfb28 EFLAGS: 00010287 [ 3327.629925][T19322] RAX: 0000001b31a20000 RBX: 0000000000000003 RCX: 0000001b31a20000 [ 3327.637905][T19322] RDX: 0000001b31a20004 RSI: 0000000000000000 RDI: 0000000000000000 [ 3327.645885][T19322] RBP: 0000000000000001 R08: 0000001b31e20000 R09: 0000000000040000 [ 3327.653874][T19322] R10: 0000000000000011 R11: 0000000000000293 R12: 0000000000000000 [ 3327.661887][T19322] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001 [ 3327.669892][T19322] [ 3327.682470][T19322] memory: usage 307180kB, limit 307200kB, failcnt 143458 [ 3327.685216][T18973] usb 3-1: new high-speed USB device number 68 using dummy_hcd [ 3327.689718][T19322] memory+swap: usage 308532kB, limit 9007199254740988kB, failcnt 0 [ 3327.705294][T19322] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0 [ 3327.714843][T19322] Memory cgroup stats for /syz0: [ 3327.715027][T19322] cache 0 [ 3327.723735][T19322] rss 12288 [ 3327.727196][T19322] rss_huge 0 [ 3327.730609][T19322] shmem 0 [ 3327.733675][T19322] mapped_file 0 [ 3327.737662][T19322] dirty 0 [ 3327.740742][T19322] writeback 0 [ 3327.744158][T19322] workingset_refault_anon 46627 [ 3327.749722][T19322] workingset_refault_file 0 [ 3327.754346][T19322] swap 1384448 [ 3327.757892][T19322] swapcached 8192 [ 3327.761629][T19322] pgpgin 290486 [ 3327.765246][T19322] pgpgout 290483 [ 3327.768963][T19322] pgfault 541317 [ 3327.772649][T19322] pgmajfault 44888 [ 3327.776532][T19322] inactive_anon 12288 [ 3327.781567][T19322] active_anon 0 [ 3327.785434][T19322] inactive_file 0 [ 3327.789224][T19322] active_file 0 [ 3327.792816][T19322] unevictable 0 [ 3327.796444][T19322] hierarchical_memory_limit 314572800 [ 3327.801915][T19322] hierarchical_memsw_limit 9223372036854771712 [ 3327.808416][T19322] total_cache 0 [ 3327.812051][T19322] total_rss 12288 [ 3327.816601][T19322] total_rss_huge 0 [ 3327.820481][T19322] total_shmem 0 [ 3327.824049][T19322] total_mapped_file 0 [ 3327.828199][T19322] total_dirty 0 [ 3327.831754][T19322] total_writeback 0 [ 3327.844186][T19322] total_workingset_refault_anon 46627 [ 3327.849719][T19322] total_workingset_refault_file 0 [ 3327.854765][T19322] total_swap 1384448 [ 3327.858852][T19322] total_swapcached 8192 [ 3327.863035][T19322] total_pgpgin 290486 [ 3327.867150][T19322] total_pgpgout 290483 [ 3327.871237][T19322] total_pgfault 541317 [ 3327.875864][T19322] total_pgmajfault 44888 [ 3327.880133][T19322] total_inactive_anon 12288 [ 3327.884689][T19322] total_active_anon 0 [ 3327.888752][T19322] total_inactive_file 0 [ 3327.892944][T19322] total_active_file 0 [ 3327.899663][T19322] total_unevictable 0 [ 3327.903675][T19322] anon_cost 0 [ 3327.907061][T19322] file_cost 0 [ 3327.910377][T19322] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19322,uid=0 17:45:46 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xa02}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3327.926124][T19322] Memory cgroup out of memory: Killed process 19322 (syz-executor.0) total-vm:54376kB, anon-rss:376kB, file-rss:8704kB, shmem-rss:0kB, UID:0 pgtables:80kB oom_score_adj:1000 [ 3327.945253][T18973] usb 3-1: Using ep0 maxpacket: 8 [ 3327.978554][ T1240] ieee802154 phy0 wpan0: encryption failed: -22 [ 3327.984900][ T1240] ieee802154 phy1 wpan1: encryption failed: -22 [ 3328.065396][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3328.076574][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3328.090946][T18973] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3328.100145][T18973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3328.111230][T18973] usb 3-1: config 0 descriptor?? [ 3328.349848][T19325] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3328.367582][T19325] CPU: 0 PID: 19325 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3328.378056][T19325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3328.388139][T19325] Call Trace: [ 3328.391460][T19325] [ 3328.394395][T19325] dump_stack_lvl+0x1e7/0x2e0 [ 3328.399107][T19325] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3328.404325][T19325] ? __pfx__printk+0x10/0x10 [ 3328.408933][T19325] ? ___ratelimit+0x4c4/0x670 [ 3328.413635][T19325] ? __pfx____ratelimit+0x10/0x10 [ 3328.418686][T19325] dump_header+0xda/0x6a0 [ 3328.423044][T19325] oom_kill_process+0x3a7/0x930 [ 3328.427923][T19325] out_of_memory+0xf67/0x1320 [ 3328.432616][T19325] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3328.438267][T19325] ? __pfx___mutex_lock+0x10/0x10 [ 3328.443314][T19325] ? __pfx_out_of_memory+0x10/0x10 [ 3328.448460][T19325] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3328.454021][T19325] ? __pfx_lock_release+0x10/0x10 [ 3328.459061][T19325] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3328.465149][T19325] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3328.470371][T19325] ? mem_cgroup_iter+0x422/0x560 [ 3328.475326][T19325] try_charge_memcg+0xda2/0x18a0 [ 3328.480294][T19325] ? __pfx_try_charge_memcg+0x10/0x10 [ 3328.485674][T19325] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3328.491402][T19325] ? __pfx_lock_release+0x10/0x10 [ 3328.496564][T19325] ? memcg_account_kmem+0x1e7/0x210 [ 3328.501807][T19325] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3328.507636][T19325] __memcg_kmem_charge_page+0xe1/0x250 [ 3328.513145][T19325] memcg_charge_kernel_stack+0x210/0x550 [ 3328.518798][T19325] dup_task_struct+0x40d/0x7d0 [ 3328.523577][T19325] copy_process+0x5d5/0x3fc0 [ 3328.528189][T19325] ? __might_fault+0xa9/0x120 [ 3328.532880][T19325] ? __pfx_lock_release+0x10/0x10 [ 3328.537928][T19325] ? __pfx_copy_process+0x10/0x10 [ 3328.542965][T19325] ? __might_fault+0xc5/0x120 [ 3328.547668][T19325] ? __asan_memset+0x23/0x50 [ 3328.552275][T19325] kernel_clone+0x21d/0x8d0 [ 3328.556799][T19325] ? __pfx_kernel_clone+0x10/0x10 [ 3328.561847][T19325] __se_sys_clone3+0x2cb/0x350 [ 3328.566676][T19325] ? __pfx___se_sys_clone3+0x10/0x10 [ 3328.572000][T19325] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3328.578015][T19325] ? exc_page_fault+0x587/0x870 [ 3328.582891][T19325] ? do_syscall_64+0xb4/0x240 [ 3328.587590][T19325] do_syscall_64+0xf9/0x240 [ 3328.592123][T19325] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3328.598040][T19325] RIP: 0033:0x7f080fca9b99 [ 3328.602469][T19325] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3328.622090][T19325] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3328.630517][T19325] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3328.638517][T19325] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3328.646507][T19325] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3328.654494][T19325] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3328.662479][T19325] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3328.670480][T19325] [ 3328.690072][T19325] memory: usage 307200kB, limit 307200kB, failcnt 143864 [ 3328.699153][T19325] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3328.707318][T19325] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3328.714753][T19325] Memory cgroup stats for /syz0: [ 3328.714860][T19325] cache 0 [ 3328.723783][T19325] rss 0 [ 3328.729638][T19325] rss_huge 0 [ 3328.732886][T19325] shmem 0 [ 3328.736173][T18973] usbhid 3-1:0.0: can't add hid device: -71 [ 3328.742243][T18973] usbhid: probe of 3-1:0.0 failed with error -71 [ 3328.744896][T19325] mapped_file 0 [ 3328.755434][T19325] dirty 0 [ 3328.759292][T18973] usb 3-1: USB disconnect, device number 68 [ 3328.761996][T19325] writeback 0 [ 3328.779106][T19325] workingset_refault_anon 46797 [ 3328.784169][T19325] workingset_refault_file 0 [ 3328.788938][T19325] swap 1331200 [ 3328.792481][T19325] swapcached 4096 [ 3328.796312][T19325] pgpgin 290669 [ 3328.799950][T19325] pgpgout 290668 [ 3328.803641][T19325] pgfault 541576 [ 3328.807908][T19325] pgmajfault 45043 [ 3328.811688][T19325] inactive_anon 0 [ 3328.816241][T19325] active_anon 0 [ 3328.819920][T19325] inactive_file 0 [ 3328.827459][T19325] active_file 0 [ 3328.831010][T19325] unevictable 0 [ 3328.834522][T19325] hierarchical_memory_limit 314572800 [ 3328.840928][T19325] hierarchical_memsw_limit 9223372036854771712 [ 3328.847649][T19325] total_cache 0 [ 3328.851235][T19325] total_rss 0 [ 3328.854647][T19325] total_rss_huge 0 [ 3328.859550][T19325] total_shmem 0 [ 3328.863107][T19325] total_mapped_file 0 [ 3328.867658][T19325] total_dirty 0 [ 3328.871222][T19325] total_writeback 0 [ 3328.875841][T19325] total_workingset_refault_anon 46797 [ 3328.883260][T19325] total_workingset_refault_file 0 [ 3328.888705][T19325] total_swap 1331200 [ 3328.892718][T19325] total_swapcached 4096 [ 3328.898693][T19325] total_pgpgin 290669 [ 3328.903194][T19325] total_pgpgout 290668 [ 3328.907876][T19325] total_pgfault 541576 [ 3328.912050][T19325] total_pgmajfault 45043 [ 3328.916987][T19325] total_inactive_anon 0 [ 3328.921259][T19325] total_active_anon 0 [ 3328.926228][T19325] total_inactive_file 0 [ 3328.930463][T19325] total_active_file 0 [ 3328.934518][T19325] total_unevictable 0 [ 3328.939437][T19325] anon_cost 0 [ 3328.942852][T19325] file_cost 0 17:45:47 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xb00}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3328.946973][T19325] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19325,uid=0 [ 3328.963012][T19325] Memory cgroup out of memory: Killed process 19325 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3329.197395][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3329.208789][ T5110] CPU: 0 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3329.219154][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3329.229236][ T5110] Call Trace: [ 3329.232524][ T5110] [ 3329.235464][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3329.240165][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3329.245385][ T5110] ? __pfx__printk+0x10/0x10 [ 3329.249987][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3329.254680][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3329.259926][ T5110] dump_header+0xda/0x6a0 [ 3329.264356][ T5110] oom_kill_process+0x3a7/0x930 [ 3329.269228][ T5110] out_of_memory+0xf67/0x1320 [ 3329.273930][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3329.279584][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3329.284613][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3329.289742][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3329.295305][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3329.300345][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3329.306518][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3329.311754][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3329.318011][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3329.323048][ T5110] ? mark_lock+0x9a/0x350 [ 3329.327411][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3329.332819][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3329.339018][ T5110] charge_memcg+0xa2/0x160 [ 3329.343476][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3329.349598][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3329.355106][ T5110] ? mark_lock+0x9a/0x350 [ 3329.359469][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3329.365483][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3329.370890][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3329.376913][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3329.381977][ T5110] ? xas_descend+0x37e/0x470 [ 3329.386612][ T5110] swapin_readahead+0x1ea/0x1070 [ 3329.391678][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3329.396830][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3329.402255][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3329.407602][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3329.412926][ T5110] do_swap_page+0x791/0x3f40 [ 3329.417533][ T5110] ? __lock_acquire+0x1345/0x1fd0 [ 3329.422581][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3329.427479][ T5110] ? do_swap_page+0x154/0x3f40 [ 3329.432267][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3329.437412][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3329.442925][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3329.448756][ T5110] ? __pfx_validate_chain+0x10/0x10 [ 3329.454089][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3329.459272][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3329.464787][ T5110] ? mt_find+0x226/0x850 [ 3329.469139][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3329.474195][ T5110] ? mt_find+0x62d/0x850 [ 3329.478454][ T5110] ? mt_find+0x226/0x850 [ 3329.482747][ T5110] ? find_vma+0x142/0x1c0 [ 3329.487103][ T5110] ? __pfx_find_vma+0x10/0x10 [ 3329.491792][ T5110] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3329.497795][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3329.502579][ T5110] exc_page_fault+0x2ad/0x870 [ 3329.507276][ T5110] asm_exc_page_fault+0x26/0x30 [ 3329.512142][ T5110] RIP: 0010:__get_user_8+0x11/0x20 [ 3329.517274][ T5110] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3329.536903][ T5110] RSP: 0000:ffffc90003b0fd78 EFLAGS: 00050202 [ 3329.543009][ T5110] RAX: 0000555556ab4da8 RBX: ffff88807cdd6e78 RCX: ffffc90003b0fc03 [ 3329.551084][ T5110] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0 [ 3329.559061][ T5110] RBP: ffffc90003b0fec0 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d [ 3329.567038][ T5110] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b0fd80 [ 3329.575016][ T5110] R13: ffffc90003b0ffd8 R14: dffffc0000000000 R15: ffff88807cdd5940 [ 3329.583011][ T5110] __rseq_handle_notify_resume+0x158/0x1490 [ 3329.588952][ T5110] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3329.595370][ T5110] ? irqentry_exit_to_user_mode+0x52/0x270 [ 3329.601212][ T5110] irqentry_exit_to_user_mode+0xbb/0x270 [ 3329.606883][ T5110] exc_page_fault+0x587/0x870 [ 3329.611612][ T5110] asm_exc_page_fault+0x26/0x30 [ 3329.616477][ T5110] RIP: 0033:0x7f080fc7a7a4 [ 3329.620906][ T5110] Code: 84 00 00 00 00 00 80 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 f0 ff ff 77 5d c3 0f 1f 40 00 48 83 ec 28 <89> 54 24 14 48 89 74 24 08 89 7c 24 10 48 89 4c 24 18 e8 d5 a3 02 [ 3329.640545][ T5110] RSP: 002b:00007f080fecfd30 EFLAGS: 00010206 [ 3329.646642][ T5110] RAX: 000000000000002a RBX: 0000000000004338 RCX: 0000000000000000 [ 3329.654639][ T5110] RDX: 0000000040000001 RSI: 00007f080fecfdbc RDI: 00000000ffffffff [ 3329.662620][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000010 R09: 00007ffde33aa0b0 [ 3329.670621][ T5110] R10: 0000000000000000 R11: 000000000009c49c R12: 0000000000000032 [ 3329.678603][ T5110] R13: 000000000032cc20 R14: 000000000032cc20 R15: 0000000000000000 [ 3329.686601][ T5110] [ 3329.708164][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 144165 [ 3329.722502][ T5110] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3329.725391][T18973] usb 3-1: new high-speed USB device number 69 using dummy_hcd [ 3329.732942][ T5110] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3329.746066][ T5110] Memory cgroup stats for /syz0: [ 3329.746206][ T5110] cache 0 [ 3329.754164][ T5110] rss 16384 [ 3329.757863][ T5110] rss_huge 0 [ 3329.761090][ T5110] shmem 0 [ 3329.764047][ T5110] mapped_file 0 [ 3329.768379][ T5110] dirty 0 [ 3329.771352][ T5110] writeback 0 [ 3329.774705][ T5110] workingset_refault_anon 46908 [ 3329.780265][ T5110] workingset_refault_file 0 [ 3329.784797][ T5110] swap 1351680 [ 3329.788503][ T5110] swapcached 16384 [ 3329.792355][ T5110] pgpgin 290793 [ 3329.796429][ T5110] pgpgout 290788 [ 3329.800002][ T5110] pgfault 541747 [ 3329.803557][ T5110] pgmajfault 45148 [ 3329.807499][ T5110] inactive_anon 0 [ 3329.811170][ T5110] active_anon 16384 [ 3329.814992][ T5110] inactive_file 0 [ 3329.819064][ T5110] active_file 0 [ 3329.822572][ T5110] unevictable 0 [ 3329.826259][ T5110] hierarchical_memory_limit 314572800 [ 3329.831683][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3329.838091][ T5110] total_cache 0 [ 3329.841577][ T5110] total_rss 16384 [ 3329.845391][ T5110] total_rss_huge 0 [ 3329.849138][ T5110] total_shmem 0 [ 3329.852671][ T5110] total_mapped_file 0 [ 3329.856877][ T5110] total_dirty 0 [ 3329.860450][ T5110] total_writeback 0 [ 3329.864324][ T5110] total_workingset_refault_anon 46908 [ 3329.870412][ T5110] total_workingset_refault_file 0 [ 3329.876091][ T5110] total_swap 1351680 [ 3329.880017][ T5110] total_swapcached 16384 [ 3329.884276][ T5110] total_pgpgin 290793 [ 3329.888477][ T5110] total_pgpgout 290788 [ 3329.892575][ T5110] total_pgfault 541747 [ 3329.904100][ T5110] total_pgmajfault 45148 17:45:48 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io(r1, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x40, 0x3, 0x38, {0x38, 0x22, "e1132d70743e505c72f5e33d77f15a8331a70112924473d25f4ef37e26bf96c46006f30e606c3b177138c8c4cb346a15d25d3ad2fa86"}}, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x813}}, &(0x7f0000000240)={0x0, 0xf, 0x222, {0x5, 0xf, 0x222, 0x6, [@generic={0x85, 0x10, 0xb, "fd52360491f5a7457278a200450a6899467f41bea4975c08c4472a0881c4dd490be8d6d283bb8e153577a06cebcb272518391bc30a334ac3b6c62fd7113f2891054cd71bd582f1c7c06dae2aa6359e2348c8c0cfe36ef6bbb2837044f67b241e4f781556e4aa626a8577728d534abe9e84170c674fc428aedeb90b5703d7fdbc7393"}, @generic={0xc9, 0x10, 0xa, "3f8fb5ff0a877f656394cb5949c6c29b4087682011308464361e107d837a0bf51ac25ebd9d27faa8b1fa686a72c157c68454b68b12f2fefaad342ccaa0d841dc77561039f099d5e0265213f649812a6766c27917bf50cb5ce2dd19cfc870fde8002115c489a4d9d8b69734f37b6048df68c0e7a9bb5fca4a82dd766b32db8ab678f59e608465ca1eca62629bc086b09b9c7a20fa9bf1347a8c02fca57d2d2543e1a24a28e4281b61814d5a0fe02600e092d5c318e256a2537ab3794f7c287777d80e7222fc33"}, @ext_cap={0x7, 0x10, 0x2, 0x5, 0x2, 0x9, 0x3}, @generic={0xc2, 0x10, 0xb, "975cbae68937e110730c815c27920e0452675c0b462c26b61112c908247e1c4cd67ca5ee23eaa5a1a90825945d457b7c66a75bdb06e930bb3fff5dd706f646911c17bb3440e22c13366a7227661f1173ccf0877523050c122650871bbdbed0572e254f0a7d58a60adca292c655effc78ce17f907feac4a5c2c9d7b3266223d2dc34b14654a9f73c306efb2a4ba3d72ad073ba5aa312ebdfeedd38c10488a3cd00ddeb21e3831afed32b86bcaa566129ed5c13d13aea0d98c1b0ae2429d8db3"}, @ptm_cap={0x3}, @ptm_cap={0x3}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x6, 0x10, 0x0, 0x0, "444b3cd2", "be9f0b08"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3f, 0x3, 0x1, 0x8, 0x5, 0x0, 0xfffa}}}, &(0x7f0000000880)={0x84, &(0x7f0000000480)={0x40, 0x6, 0x6c, "7f328c6945c5f746eaadee48f3ba341d8c831f157a76e96cd741a11964a7ad512253c1c3a5dc6c6117b64f3a93e39fc52f672bbf75e0ec6dc370a2cd821a64e0952c1218ea459699addcff7bb1ddb0f8e3fdefc4e72ebaf0df5cdf1e95bc8dcbc2a23b4485d6b1c065e1217c"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x3f}, &(0x7f0000000500)={0x0, 0x8, 0x1, 0x1}, &(0x7f0000000540)={0x20, 0x0, 0x4, {0x3, 0x1}}, &(0x7f0000000580)={0x20, 0x0, 0x4, {0x2, 0x1}}, &(0x7f00000005c0)={0x40, 0x7, 0x2, 0x6}, &(0x7f0000000600)={0x40, 0x9, 0x1, 0x6}, &(0x7f0000000640)={0x40, 0xb, 0x2, "74b6"}, &(0x7f0000000680)={0x40, 0xf, 0x2, 0x6}, &(0x7f00000006c0)={0x40, 0x13, 0x6, @random="bbb54c03096c"}, &(0x7f0000000700)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000740)={0x40, 0x19, 0x2, "fcf2"}, &(0x7f0000000780)={0x40, 0x1a, 0x2, 0xbc0}, &(0x7f00000007c0)={0x40, 0x1c, 0x1, 0x1}, &(0x7f0000000800)={0x40, 0x1e, 0x1, 0x7}, &(0x7f0000000840)={0x40, 0x21, 0x1, 0x8}}) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3329.911252][ T5110] total_inactive_anon 0 [ 3329.920339][ T5110] total_active_anon 16384 [ 3329.924729][ T5110] total_inactive_file 0 [ 3329.928986][ T5110] total_active_file 0 [ 3329.932992][ T5110] total_unevictable 0 [ 3329.937161][ T5110] anon_cost 0 [ 3329.940476][ T5110] file_cost 0 [ 3329.943785][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19326,uid=0 [ 3329.960486][ T5110] Memory cgroup out of memory: Killed process 19326 (syz-executor.0) total-vm:54508kB, anon-rss:360kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:48 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xe02}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) 17:45:48 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f00000000c0)={0x20, 0xc, 0x1c, {0x1c, 0x9, "60f7134667b2de13e45e42bc64a7101e4d46ab60364702441a69"}}, &(0x7f00000001c0)={0x0, 0x3, 0xc4, @string={0xc4, 0x3, "1d4f5cb5b88a2bc3e8c0a6c6bbb3d610dd04f26fa54a988d44f79ba03d1e1b5915c35cf68dd6352e7f13f724d4386a73777eef6e9edffd01e64160c1fa923a1073950a1ec26b704012e25078b2a96d927e0ef54ddff415df8a1be4cf7760846961ef452fae06b433a4b5160ef696b9da7d4cfaba5179f1405e230b7c3ea892876947f3ff78a7ef928f1288074f7ebc68e25e1e42a7c7712ff10ce78b562e0e4e00e5d865eefc545900d9fa752c982ce7a4bb493427eea33509b35a170200ecdf8336"}}, &(0x7f0000000100)={0x0, 0xf, 0x5, {0x5, 0xf, 0x5}}, &(0x7f00000002c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x80, 0x60, 0x6, 0x0, "7effad1b", "6a026441"}}, &(0x7f0000000300)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x7f, 0x2, 0x20, 0x5, 0x4, 0x1f, 0x400}}}, &(0x7f0000000780)={0x84, &(0x7f0000000380)={0x20, 0x18, 0x2c, "2d1d42eaeb4724328094816575ffc74f581577c554d6551586a0f68f6a45dd0b166e87bfd8c81bc0bd419ce9"}, &(0x7f00000003c0)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000400)={0x0, 0x8, 0x1, 0x1e}, &(0x7f0000000440)={0x20, 0x0, 0x4, {0x3}}, &(0x7f0000000480)={0x20, 0x0, 0x8, {0x302, 0x10, [0xf0]}}, &(0x7f00000004c0)={0x40, 0x7, 0x2, 0x9}, &(0x7f0000000500)={0x40, 0x9, 0x1, 0x7}, &(0x7f0000000540)={0x40, 0xb, 0x2, "88d0"}, &(0x7f0000000580)={0x40, 0xf, 0x2, 0x1000}, &(0x7f00000005c0)={0x40, 0x13, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}}, &(0x7f0000000600)={0x40, 0x17, 0x6, @random="edc7a7ec854b"}, &(0x7f0000000640)={0x40, 0x19, 0x2, "e4e3"}, &(0x7f0000000680)={0x40, 0x1a, 0x2, 0xec13}, &(0x7f00000006c0)={0x40, 0x1c, 0x1}, &(0x7f0000000700)={0x40, 0x1e, 0x1, 0x92}, &(0x7f0000000740)={0x40, 0x21, 0x1, 0x73}}) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io(r0, &(0x7f0000000c80)={0x2c, &(0x7f00000008c0)={0x40, 0x9, 0x9d, {0x9d, 0x0, "1f4ac66d1981eccc57855d5fb516f25e20783f9354c06636b6ffd1912249573f4e9496374d28cd07a86d7e2a3c4ed2d22ecff615616c1d78e3ec96ffee7d04063dab03ecbe3a5d028a50ba792743f683cf22792ac524c33ad4fe1a3f4f39b077111a083230cc10efb41f03bb831b892e734e4064155abbeb81c4ad162aada95688ec681edb831dbf2bb720127e046488f46fd08418857f938bb578"}}, &(0x7f0000000980)={0x0, 0x3, 0xf9, @string={0xf9, 0x3, "87682ac72a13205e18d249c69c6efa6f2248b5d164efccc027eb41bf6afb4c34a687ba9ed4b797cd4facc67050fcaf11905a3f3af3b3d146ddb7d1f4038888b622cfe7ff8c0121b9879bca4b262c7fa1838282e2bf41ec43364d1def623d714c254c4331f81c365d7bd5ffac4ded60bbb6f2b2e8e325a523fab8494d59647d705ece9303d10f2a689af7ca3973ab6460df14c3090d19703ca334d49977415c6060290975dab71f911faafb00becb8e44506944e3da13445c1387c00ca64486e16f1746abaa59a528b0d4c6699764b076cbe8701db9d1c3a05afafd0ed2f1a249063c69012256f6a43d664afd8499b5b83c254eedc352e1"}}, &(0x7f0000000a80)={0x0, 0xf, 0x1be, {0x5, 0xf, 0x1be, 0x5, [@generic={0x98, 0x10, 0x4, "194285a208c2ef68d3691056e4b2be9ef63c004a439211e2c05f407b9177d539086ea1ee6f739087fdb52e6e2e48282a2e571ff928720edb7eda512230828b64067d77d99228a734a55fbe794f8b877ff9b4cb71e464c05e98212a4f0094edd908ebb85d07779727d2ac9bfdef50709c7d2dfc4f1e7c5094d89df40ce1c2511993c7231362922d03e1d5457fe278ff5778822f368e"}, @generic={0xb7, 0x10, 0xb, "02ff3e058ad0ce62ac8850de3cfa07c27bca205afa54f9dce54d564616ce2982aeae8f17d65e65c6df9be170e6762399a2a659aeaa9b6c10905b288166e8b2efa3fe0b6120bd4686d86c0ed824395da4c4d118fd51cb6d40ced991d465397a89a0f36340120c2821546bfa4c5c5fe144d0cc989e4307a9664397ee8312b849075bc4d9a7296dcd5b334731e67be25c05c0ea247a6d84fba95af5553413dfdc1785d115934c32a216e79dc6fb91585587b977fa34"}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x1, 0x7, 0x9b, 0xfd1f}, @generic={0x4c, 0x10, 0xa, "83689216964924f6f7571b02b3e6eccbfd5a49eef0bcf352ab58cdbbd6e5a970e5d5d6d9ce07989ace3f780e305747ca08fd5849ae0b1e8581c1e84912bba6e3d66ece9f37790fa116"}, @ssp_cap={0x14, 0x10, 0xa, 0x8, 0x2, 0x10001, 0xff00, 0x400, [0xff3f30, 0x95ce48fb11b2dd9e]}]}}, &(0x7f0000000000)={0x20, 0x29, 0xf, {0xf, 0x29, 0x1, 0x4, 0x40, 0x1f, "5803a367", "de4aee61"}}, &(0x7f0000000040)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x6, 0x0, 0x5d, 0x80, 0x6, 0x7, 0x3}}}, &(0x7f0000001180)={0x84, &(0x7f0000000cc0)={0x40, 0x10, 0xe1, "0f8583c07881fe98dea552fdde913dba2c9dbf488e86c5bde0cf2c35990a2cab0c2171a3243cf2e8da4f0f1fa9bfa430c8bf1cbb4e9c39970145df714e244f76142a26f5c74ad7ab6b1e7347575828d0a74eff8cdd1644934f28598e1894830aeaf29518a6632927a84a42f8f78e6d7a46508a53cdb5820acb8e88e9ac1e4460db11ed80ce39bf4a00447edc57f96864121c1537edbc29713d22529f617af71ce80aed03ab377674465695178e899c9f3990833f135adddd795ef684267ff5776c0868da28359a5bfea7b3b75c08330689b3ff0860d8d9317b9c460e7fee8f79b6"}, &(0x7f0000000dc0)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000e00)={0x0, 0x8, 0x1, 0xc1}, &(0x7f0000000e40)={0x20, 0x0, 0x4, {0x3, 0x2}}, &(0x7f0000000e80)={0x20, 0x0, 0x4, {0x60, 0x2}}, &(0x7f0000000ec0)={0x40, 0x7, 0x2, 0xf75f}, &(0x7f0000000f00)={0x40, 0x9, 0x1, 0x4}, &(0x7f0000000f40)={0x40, 0xb, 0x2, 'Dc'}, &(0x7f0000000f80)={0x40, 0xf, 0x2, 0x40}, &(0x7f0000000fc0)={0x40, 0x13, 0x6, @random="413399786855"}, &(0x7f0000001000)={0x40, 0x17, 0x6, @broadcast}, &(0x7f0000001040)={0x40, 0x19, 0x2, "0ffa"}, &(0x7f0000001080)={0x40, 0x1a, 0x2, 0x8}, &(0x7f00000010c0)={0x40, 0x1c, 0x1}, &(0x7f0000001100)={0x40, 0x1e, 0x1}, &(0x7f0000001140)={0x40, 0x21, 0x1, 0x1}}) (async, rerun: 64) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async, rerun: 64) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000840)=ANY=[@ANYBLOB="000066000000660012f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aabbc3341ca722cb75208569ade601d9e9d77f50437d58ad46b21cdf46093d4e15ddcd5712a7f6c88e02078030e1381361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c"], &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3330.175388][T18973] usb 3-1: device not accepting address 69, error -71 [ 3330.438091][T19329] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3330.448505][T19329] CPU: 1 PID: 19329 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3330.458956][T19329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3330.469024][T19329] Call Trace: [ 3330.472308][T19329] [ 3330.475247][T19329] dump_stack_lvl+0x1e7/0x2e0 [ 3330.479952][T19329] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3330.485173][T19329] ? __pfx__printk+0x10/0x10 [ 3330.489784][T19329] ? ___ratelimit+0x4c4/0x670 [ 3330.494480][T19329] ? __pfx____ratelimit+0x10/0x10 [ 3330.499532][T19329] dump_header+0xda/0x6a0 [ 3330.503898][T19329] oom_kill_process+0x3a7/0x930 [ 3330.508771][T19329] out_of_memory+0xf67/0x1320 [ 3330.513463][T19329] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3330.519128][T19329] ? __pfx___mutex_lock+0x10/0x10 [ 3330.524166][T19329] ? __pfx_out_of_memory+0x10/0x10 [ 3330.529297][T19329] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3330.534853][T19329] ? __pfx_lock_release+0x10/0x10 [ 3330.539915][T19329] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3330.545997][T19329] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3330.551304][T19329] ? mem_cgroup_iter+0x422/0x560 [ 3330.556313][T19329] try_charge_memcg+0xda2/0x18a0 [ 3330.561308][T19329] ? __pfx_try_charge_memcg+0x10/0x10 [ 3330.566715][T19329] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3330.572451][T19329] ? __pfx_lock_release+0x10/0x10 [ 3330.577584][T19329] ? memcg_account_kmem+0x1e7/0x210 [ 3330.582807][T19329] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3330.588646][T19329] __memcg_kmem_charge_page+0xe1/0x250 [ 3330.594169][T19329] memcg_charge_kernel_stack+0x210/0x550 [ 3330.599822][T19329] dup_task_struct+0x15d/0x7d0 [ 3330.604688][T19329] copy_process+0x5d5/0x3fc0 [ 3330.609307][T19329] ? __might_fault+0xa9/0x120 [ 3330.614011][T19329] ? __pfx_lock_release+0x10/0x10 [ 3330.619101][T19329] ? __pfx_copy_process+0x10/0x10 [ 3330.624143][T19329] ? __might_fault+0xc5/0x120 [ 3330.628928][T19329] ? __asan_memset+0x23/0x50 [ 3330.633536][T19329] kernel_clone+0x21d/0x8d0 [ 3330.638057][T19329] ? __pfx_kernel_clone+0x10/0x10 [ 3330.643112][T19329] __se_sys_clone3+0x2cb/0x350 [ 3330.647903][T19329] ? __pfx___se_sys_clone3+0x10/0x10 [ 3330.653230][T19329] ? do_syscall_64+0x108/0x240 [ 3330.658018][T19329] ? do_syscall_64+0xb4/0x240 [ 3330.662723][T19329] do_syscall_64+0xf9/0x240 [ 3330.667248][T19329] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3330.673161][T19329] RIP: 0033:0x7f080fca9b99 [ 3330.677586][T19329] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3330.697389][T19329] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3330.705839][T19329] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3330.713819][T19329] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3330.721801][T19329] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3330.729782][T19329] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3330.737762][T19329] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3330.745844][T19329] [ 3330.755505][T19329] memory: usage 307200kB, limit 307200kB, failcnt 144658 [ 3330.764517][T19329] memory+swap: usage 308576kB, limit 9007199254740988kB, failcnt 0 [ 3330.772745][T19329] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3330.790327][T19329] Memory cgroup stats for /syz0: [ 3330.790490][T19329] cache 0 [ 3330.799930][T19329] rss 20480 [ 3330.803159][T19329] rss_huge 0 [ 3330.806571][T19329] shmem 0 [ 3330.809631][T19329] mapped_file 0 [ 3330.813210][T19329] dirty 0 [ 3330.816312][T19329] writeback 0 [ 3330.819775][T19329] workingset_refault_anon 47063 [ 3330.824897][T19329] workingset_refault_file 0 [ 3330.829666][T19329] swap 1388544 [ 3330.833167][T19329] swapcached 16384 [ 3330.837243][T18973] usb 3-1: new high-speed USB device number 70 using dummy_hcd [ 3330.837772][T19329] pgpgin 290960 [ 3330.848514][T19329] pgpgout 290955 [ 3330.852173][T19329] pgfault 541992 [ 3330.858716][T19329] pgmajfault 45298 [ 3330.862550][T19329] inactive_anon 0 [ 3330.866716][T19329] active_anon 20480 [ 3330.870641][T19329] inactive_file 0 [ 3330.874401][T19329] active_file 0 [ 3330.878602][T19329] unevictable 0 [ 3330.882083][T19329] hierarchical_memory_limit 314572800 [ 3330.892132][T19329] hierarchical_memsw_limit 9223372036854771712 [ 3330.899018][T19329] total_cache 0 [ 3330.902674][T19329] total_rss 20480 [ 3330.907025][T19329] total_rss_huge 0 [ 3330.910877][T19329] total_shmem 0 [ 3330.914474][T19329] total_mapped_file 0 [ 3330.919028][T19329] total_dirty 0 [ 3330.922586][T19329] total_writeback 0 [ 3330.927070][T19329] total_workingset_refault_anon 47063 [ 3330.932590][T19329] total_workingset_refault_file 0 [ 3330.938330][T19329] total_swap 1388544 [ 3330.942433][T19329] total_swapcached 16384 [ 3330.947359][T19329] total_pgpgin 290960 [ 3330.951503][T19329] total_pgpgout 290955 [ 3330.956334][T19329] total_pgfault 541992 [ 3330.960687][T19329] total_pgmajfault 45298 [ 3330.965049][T19329] total_inactive_anon 0 [ 3330.973387][T19329] total_active_anon 20480 [ 3330.978567][T19329] total_inactive_file 0 [ 3330.982976][T19329] total_active_file 0 [ 3330.987627][T19329] total_unevictable 0 [ 3330.991786][T19329] anon_cost 0 [ 3330.995724][T19329] file_cost 0 [ 3330.999139][T19329] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19329,uid=0 [ 3331.014863][T19329] Memory cgroup out of memory: Killed process 19329 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3331.085304][T18973] usb 3-1: Using ep0 maxpacket: 8 17:45:49 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x1100}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3331.220125][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3331.231297][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3331.241215][T18973] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3331.250410][T18973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3331.261065][T18973] usb 3-1: config 0 descriptor?? [ 3331.423694][T19332] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3331.434121][T19332] CPU: 1 PID: 19332 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3331.444581][T19332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3331.454647][T19332] Call Trace: [ 3331.457939][T19332] [ 3331.460881][T19332] dump_stack_lvl+0x1e7/0x2e0 [ 3331.465607][T19332] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3331.470825][T19332] ? __pfx__printk+0x10/0x10 [ 3331.475427][T19332] ? ___ratelimit+0x4c4/0x670 [ 3331.480123][T19332] ? __pfx____ratelimit+0x10/0x10 [ 3331.485173][T19332] dump_header+0xda/0x6a0 [ 3331.489525][T19332] oom_kill_process+0x3a7/0x930 [ 3331.494397][T19332] out_of_memory+0xf67/0x1320 [ 3331.499177][T19332] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3331.504820][T19332] ? __pfx___mutex_lock+0x10/0x10 [ 3331.509858][T19332] ? __pfx_out_of_memory+0x10/0x10 [ 3331.515000][T19332] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3331.520565][T19332] ? __pfx_lock_release+0x10/0x10 [ 3331.525612][T19332] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3331.531726][T19332] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3331.536949][T19332] ? mem_cgroup_iter+0x422/0x560 [ 3331.541912][T19332] try_charge_memcg+0xda2/0x18a0 [ 3331.546882][T19332] ? __pfx_try_charge_memcg+0x10/0x10 [ 3331.552265][T19332] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3331.557994][T19332] ? __pfx_lock_release+0x10/0x10 [ 3331.563123][T19332] ? memcg_account_kmem+0x1e7/0x210 [ 3331.568344][T19332] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3331.574165][T19332] __memcg_kmem_charge_page+0xe1/0x250 [ 3331.579668][T19332] memcg_charge_kernel_stack+0x210/0x550 [ 3331.585332][T19332] dup_task_struct+0x15d/0x7d0 [ 3331.590121][T19332] copy_process+0x5d5/0x3fc0 [ 3331.594744][T19332] ? __might_fault+0xa9/0x120 [ 3331.599456][T19332] ? __pfx_lock_release+0x10/0x10 [ 3331.604527][T19332] ? __pfx_copy_process+0x10/0x10 [ 3331.609570][T19332] ? __might_fault+0xc5/0x120 [ 3331.614484][T19332] ? __asan_memset+0x23/0x50 [ 3331.619097][T19332] kernel_clone+0x21d/0x8d0 [ 3331.623622][T19332] ? __pfx_kernel_clone+0x10/0x10 [ 3331.628677][T19332] __se_sys_clone3+0x2cb/0x350 [ 3331.633458][T19332] ? __pfx___se_sys_clone3+0x10/0x10 [ 3331.638786][T19332] ? do_syscall_64+0x108/0x240 [ 3331.643582][T19332] ? do_syscall_64+0xb4/0x240 [ 3331.648288][T19332] do_syscall_64+0xf9/0x240 [ 3331.652904][T19332] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3331.658831][T19332] RIP: 0033:0x7f080fca9b99 [ 3331.663268][T19332] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3331.682892][T19332] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3331.691320][T19332] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3331.699390][T19332] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3331.707371][T19332] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3331.715349][T19332] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3331.723323][T19332] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3331.731414][T19332] [ 3331.735564][T19332] memory: usage 307200kB, limit 307200kB, failcnt 145055 [ 3331.742828][T19332] memory+swap: usage 308524kB, limit 9007199254740988kB, failcnt 0 [ 3331.761441][T19332] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3331.772811][T19332] Memory cgroup stats for /syz0: [ 3331.772962][T19332] cache 0 [ 3331.780916][T19332] rss 4096 [ 3331.783973][T19332] rss_huge 0 [ 3331.787794][T19332] shmem 0 [ 3331.790763][T19332] mapped_file 0 [ 3331.794301][T19332] dirty 0 [ 3331.797471][T19332] writeback 0 [ 3331.800877][T19332] workingset_refault_anon 47175 [ 3331.806415][T19332] workingset_refault_file 0 [ 3331.810959][T19332] swap 1351680 [ 3331.814343][T19332] swapcached 4096 [ 3331.819107][T19332] pgpgin 291084 [ 3331.830374][T19332] pgpgout 291083 [ 3331.834051][T19332] pgfault 542170 [ 3331.839705][T19332] pgmajfault 45404 [ 3331.843554][T19332] inactive_anon 0 [ 3331.847890][T19332] active_anon 4096 [ 3331.851764][T19332] inactive_file 0 [ 3331.855806][T18973] usbhid 3-1:0.0: can't add hid device: -71 [ 3331.861927][T18973] usbhid: probe of 3-1:0.0 failed with error -71 [ 3331.864596][T19332] active_file 0 [ 3331.872106][T19332] unevictable 0 [ 3331.883507][T19332] hierarchical_memory_limit 314572800 [ 3331.885329][T18973] usb 3-1: USB disconnect, device number 70 [ 3331.894993][T19332] hierarchical_memsw_limit 9223372036854771712 [ 3331.901503][T19332] total_cache 0 [ 3331.905095][T19332] total_rss 4096 [ 3331.908947][T19332] total_rss_huge 0 [ 3331.912755][T19332] total_shmem 0 [ 3331.916579][T19332] total_mapped_file 0 [ 3331.920688][T19332] total_dirty 0 [ 3331.924316][T19332] total_writeback 0 [ 3331.928770][T19332] total_workingset_refault_anon 47175 [ 3331.934254][T19332] total_workingset_refault_file 0 [ 3331.942219][T19332] total_swap 1351680 [ 3331.946331][T19332] total_swapcached 4096 [ 3331.950572][T19332] total_pgpgin 291084 [ 3331.954603][T19332] total_pgpgout 291083 [ 3331.960203][T19332] total_pgfault 542170 [ 3331.964345][T19332] total_pgmajfault 45404 [ 3331.969017][T19332] total_inactive_anon 0 [ 3331.973237][T19332] total_active_anon 4096 [ 3331.978184][T19332] total_inactive_file 0 [ 3331.982396][T19332] total_active_file 0 [ 3331.986502][T19332] total_unevictable 0 [ 3331.990504][T19332] anon_cost 0 [ 3331.993804][T19332] file_cost 0 [ 3331.997232][T19332] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19332,uid=0 [ 3332.012836][T19332] Memory cgroup out of memory: Killed process 19332 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:50 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x1400}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3332.376527][T19333] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3332.387529][T19333] CPU: 0 PID: 19333 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3332.397992][T19333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3332.408075][T19333] Call Trace: [ 3332.411360][T19333] [ 3332.414305][T19333] dump_stack_lvl+0x1e7/0x2e0 [ 3332.419013][T19333] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3332.424237][T19333] ? __pfx__printk+0x10/0x10 [ 3332.428858][T19333] ? ___ratelimit+0x4c4/0x670 [ 3332.433560][T19333] ? __pfx____ratelimit+0x10/0x10 [ 3332.438594][T19333] dump_header+0xda/0x6a0 [ 3332.442935][T19333] oom_kill_process+0x3a7/0x930 [ 3332.447815][T19333] out_of_memory+0xf67/0x1320 [ 3332.452538][T19333] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3332.458200][T19333] ? __pfx___mutex_lock+0x10/0x10 [ 3332.463256][T19333] ? __pfx_out_of_memory+0x10/0x10 [ 3332.468485][T19333] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3332.474041][T19333] ? __pfx_lock_release+0x10/0x10 [ 3332.479092][T19333] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3332.485177][T19333] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3332.490387][T19333] ? mem_cgroup_iter+0x422/0x560 [ 3332.495350][T19333] try_charge_memcg+0xda2/0x18a0 [ 3332.500375][T19333] ? __pfx_try_charge_memcg+0x10/0x10 [ 3332.505758][T19333] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3332.511490][T19333] ? __pfx_lock_release+0x10/0x10 [ 3332.516619][T19333] ? memcg_account_kmem+0x1e7/0x210 [ 3332.521954][T19333] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3332.527776][T19333] __memcg_kmem_charge_page+0xe1/0x250 [ 3332.533272][T19333] memcg_charge_kernel_stack+0x210/0x550 [ 3332.538963][T19333] dup_task_struct+0x15d/0x7d0 [ 3332.543747][T19333] copy_process+0x5d5/0x3fc0 [ 3332.548376][T19333] ? __might_fault+0xa9/0x120 [ 3332.553189][T19333] ? __pfx_lock_release+0x10/0x10 [ 3332.558258][T19333] ? __pfx_copy_process+0x10/0x10 [ 3332.563345][T19333] ? __might_fault+0xc5/0x120 [ 3332.568052][T19333] ? __asan_memset+0x23/0x50 [ 3332.572671][T19333] kernel_clone+0x21d/0x8d0 [ 3332.577197][T19333] ? __pfx_kernel_clone+0x10/0x10 [ 3332.582256][T19333] __se_sys_clone3+0x2cb/0x350 [ 3332.587040][T19333] ? __pfx___se_sys_clone3+0x10/0x10 [ 3332.592361][T19333] ? rcu_is_watching+0x15/0xb0 [ 3332.597166][T19333] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3332.603189][T19333] ? exc_page_fault+0x587/0x870 [ 3332.608063][T19333] ? do_syscall_64+0xb4/0x240 [ 3332.612780][T19333] do_syscall_64+0xf9/0x240 [ 3332.617308][T19333] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3332.623234][T19333] RIP: 0033:0x7f080fca9b99 [ 3332.627671][T19333] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3332.647296][T19333] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3332.655721][T19333] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3332.663792][T19333] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3332.671787][T19333] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3332.679781][T19333] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3332.687764][T19333] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3332.695762][T19333] [ 3332.710920][T19333] memory: usage 307200kB, limit 307200kB, failcnt 145453 [ 3332.718309][T19333] memory+swap: usage 308560kB, limit 9007199254740988kB, failcnt 0 [ 3332.731769][T19333] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3332.739343][T19333] Memory cgroup stats for /syz0: [ 3332.739492][T19333] cache 0 [ 3332.747676][T19333] rss 0 [ 3332.750472][T19333] rss_huge 0 [ 3332.753779][T19333] shmem 0 [ 3332.756866][T19333] mapped_file 0 [ 3332.760343][T19333] dirty 0 [ 3332.763305][T19333] writeback 0 [ 3332.766705][T19333] workingset_refault_anon 47331 [ 3332.771583][T19333] workingset_refault_file 0 [ 3332.776301][T18973] usb 3-1: new high-speed USB device number 71 using dummy_hcd [ 3332.780496][T19333] swap 1392640 [ 3332.788024][T19333] swapcached 0 [ 3332.791502][T19333] pgpgin 291251 [ 3332.795707][T19333] pgpgout 291251 [ 3332.799487][T19333] pgfault 542407 [ 3332.803182][T19333] pgmajfault 45554 [ 3332.807979][T19333] inactive_anon 0 [ 3332.811746][T19333] active_anon 0 [ 3332.815874][T19333] inactive_file 0 [ 3332.819547][T19333] active_file 0 [ 3332.823023][T19333] unevictable 0 [ 3332.827977][T19333] hierarchical_memory_limit 314572800 [ 3332.833379][T19333] hierarchical_memsw_limit 9223372036854771712 [ 3332.840758][T19333] total_cache 0 [ 3332.844251][T19333] total_rss 0 [ 3332.848119][T19333] total_rss_huge 0 [ 3332.851876][T19333] total_shmem 0 [ 3332.856055][T19333] total_mapped_file 0 [ 3332.860061][T19333] total_dirty 0 [ 3332.863545][T19333] total_writeback 0 [ 3332.868247][T19333] total_workingset_refault_anon 47331 [ 3332.873761][T19333] total_workingset_refault_file 0 [ 3332.879372][T19333] total_swap 1392640 [ 3332.883386][T19333] total_swapcached 0 [ 3332.887816][T19333] total_pgpgin 291251 [ 3332.891901][T19333] total_pgpgout 291251 [ 3332.896521][T19333] total_pgfault 542407 [ 3332.900677][T19333] total_pgmajfault 45554 [ 3332.904973][T19333] total_inactive_anon 0 [ 3332.910611][T19333] total_active_anon 0 [ 3332.914723][T19333] total_inactive_file 0 [ 3332.919450][T19333] total_active_file 0 [ 3332.923837][T19333] total_unevictable 0 [ 3332.928403][T19333] anon_cost 0 17:45:51 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x1500}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3332.931812][T19333] file_cost 0 [ 3332.935749][T19333] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19333,uid=0 [ 3332.951983][T19333] Memory cgroup out of memory: Killed process 19333 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3333.056341][T18973] usb 3-1: Using ep0 maxpacket: 8 17:45:51 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io(r1, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x40, 0x3, 0x38, {0x38, 0x22, "e1132d70743e505c72f5e33d77f15a8331a70112924473d25f4ef37e26bf96c46006f30e606c3b177138c8c4cb346a15d25d3ad2fa86"}}, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x813}}, &(0x7f0000000240)={0x0, 0xf, 0x222, {0x5, 0xf, 0x222, 0x6, [@generic={0x85, 0x10, 0xb, "fd52360491f5a7457278a200450a6899467f41bea4975c08c4472a0881c4dd490be8d6d283bb8e153577a06cebcb272518391bc30a334ac3b6c62fd7113f2891054cd71bd582f1c7c06dae2aa6359e2348c8c0cfe36ef6bbb2837044f67b241e4f781556e4aa626a8577728d534abe9e84170c674fc428aedeb90b5703d7fdbc7393"}, @generic={0xc9, 0x10, 0xa, "3f8fb5ff0a877f656394cb5949c6c29b4087682011308464361e107d837a0bf51ac25ebd9d27faa8b1fa686a72c157c68454b68b12f2fefaad342ccaa0d841dc77561039f099d5e0265213f649812a6766c27917bf50cb5ce2dd19cfc870fde8002115c489a4d9d8b69734f37b6048df68c0e7a9bb5fca4a82dd766b32db8ab678f59e608465ca1eca62629bc086b09b9c7a20fa9bf1347a8c02fca57d2d2543e1a24a28e4281b61814d5a0fe02600e092d5c318e256a2537ab3794f7c287777d80e7222fc33"}, @ext_cap={0x7, 0x10, 0x2, 0x5, 0x2, 0x9, 0x3}, @generic={0xc2, 0x10, 0xb, "975cbae68937e110730c815c27920e0452675c0b462c26b61112c908247e1c4cd67ca5ee23eaa5a1a90825945d457b7c66a75bdb06e930bb3fff5dd706f646911c17bb3440e22c13366a7227661f1173ccf0877523050c122650871bbdbed0572e254f0a7d58a60adca292c655effc78ce17f907feac4a5c2c9d7b3266223d2dc34b14654a9f73c306efb2a4ba3d72ad073ba5aa312ebdfeedd38c10488a3cd00ddeb21e3831afed32b86bcaa566129ed5c13d13aea0d98c1b0ae2429d8db3"}, @ptm_cap={0x3}, @ptm_cap={0x3}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x6, 0x10, 0x0, 0x0, "444b3cd2", "be9f0b08"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3f, 0x3, 0x1, 0x8, 0x5, 0x0, 0xfffa}}}, &(0x7f0000000880)={0x84, &(0x7f0000000480)={0x40, 0x6, 0x6c, "7f328c6945c5f746eaadee48f3ba341d8c831f157a76e96cd741a11964a7ad512253c1c3a5dc6c6117b64f3a93e39fc52f672bbf75e0ec6dc370a2cd821a64e0952c1218ea459699addcff7bb1ddb0f8e3fdefc4e72ebaf0df5cdf1e95bc8dcbc2a23b4485d6b1c065e1217c"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x3f}, &(0x7f0000000500)={0x0, 0x8, 0x1, 0x1}, &(0x7f0000000540)={0x20, 0x0, 0x4, {0x3, 0x1}}, &(0x7f0000000580)={0x20, 0x0, 0x4, {0x2, 0x1}}, &(0x7f00000005c0)={0x40, 0x7, 0x2, 0x6}, &(0x7f0000000600)={0x40, 0x9, 0x1, 0x6}, &(0x7f0000000640)={0x40, 0xb, 0x2, "74b6"}, &(0x7f0000000680)={0x40, 0xf, 0x2, 0x6}, &(0x7f00000006c0)={0x40, 0x13, 0x6, @random="bbb54c03096c"}, &(0x7f0000000700)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000740)={0x40, 0x19, 0x2, "fcf2"}, &(0x7f0000000780)={0x40, 0x1a, 0x2, 0xbc0}, &(0x7f00000007c0)={0x40, 0x1c, 0x1, 0x1}, &(0x7f0000000800)={0x40, 0x1e, 0x1, 0x7}, &(0x7f0000000840)={0x40, 0x21, 0x1, 0x8}}) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) 17:45:51 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f00000000c0)={0x20, 0xc, 0x1c, {0x1c, 0x9, "60f7134667b2de13e45e42bc64a7101e4d46ab60364702441a69"}}, &(0x7f00000001c0)={0x0, 0x3, 0xc4, @string={0xc4, 0x3, "1d4f5cb5b88a2bc3e8c0a6c6bbb3d610dd04f26fa54a988d44f79ba03d1e1b5915c35cf68dd6352e7f13f724d4386a73777eef6e9edffd01e64160c1fa923a1073950a1ec26b704012e25078b2a96d927e0ef54ddff415df8a1be4cf7760846961ef452fae06b433a4b5160ef696b9da7d4cfaba5179f1405e230b7c3ea892876947f3ff78a7ef928f1288074f7ebc68e25e1e42a7c7712ff10ce78b562e0e4e00e5d865eefc545900d9fa752c982ce7a4bb493427eea33509b35a170200ecdf8336"}}, &(0x7f0000000100)={0x0, 0xf, 0x5, {0x5, 0xf, 0x5}}, &(0x7f00000002c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x80, 0x60, 0x6, 0x0, "7effad1b", "6a026441"}}, &(0x7f0000000300)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x7f, 0x2, 0x20, 0x5, 0x4, 0x1f, 0x400}}}, &(0x7f0000000780)={0x84, &(0x7f0000000380)={0x20, 0x18, 0x2c, "2d1d42eaeb4724328094816575ffc74f581577c554d6551586a0f68f6a45dd0b166e87bfd8c81bc0bd419ce9"}, &(0x7f00000003c0)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000400)={0x0, 0x8, 0x1, 0x1e}, &(0x7f0000000440)={0x20, 0x0, 0x4, {0x3}}, &(0x7f0000000480)={0x20, 0x0, 0x8, {0x302, 0x10, [0xf0]}}, &(0x7f00000004c0)={0x40, 0x7, 0x2, 0x9}, &(0x7f0000000500)={0x40, 0x9, 0x1, 0x7}, &(0x7f0000000540)={0x40, 0xb, 0x2, "88d0"}, &(0x7f0000000580)={0x40, 0xf, 0x2, 0x1000}, &(0x7f00000005c0)={0x40, 0x13, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}}, &(0x7f0000000600)={0x40, 0x17, 0x6, @random="edc7a7ec854b"}, &(0x7f0000000640)={0x40, 0x19, 0x2, "e4e3"}, &(0x7f0000000680)={0x40, 0x1a, 0x2, 0xec13}, &(0x7f00000006c0)={0x40, 0x1c, 0x1}, &(0x7f0000000700)={0x40, 0x1e, 0x1, 0x92}, &(0x7f0000000740)={0x40, 0x21, 0x1, 0x73}}) (async) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io(r0, &(0x7f0000000c80)={0x2c, &(0x7f00000008c0)={0x40, 0x9, 0x9d, {0x9d, 0x0, "1f4ac66d1981eccc57855d5fb516f25e20783f9354c06636b6ffd1912249573f4e9496374d28cd07a86d7e2a3c4ed2d22ecff615616c1d78e3ec96ffee7d04063dab03ecbe3a5d028a50ba792743f683cf22792ac524c33ad4fe1a3f4f39b077111a083230cc10efb41f03bb831b892e734e4064155abbeb81c4ad162aada95688ec681edb831dbf2bb720127e046488f46fd08418857f938bb578"}}, &(0x7f0000000980)={0x0, 0x3, 0xf9, @string={0xf9, 0x3, "87682ac72a13205e18d249c69c6efa6f2248b5d164efccc027eb41bf6afb4c34a687ba9ed4b797cd4facc67050fcaf11905a3f3af3b3d146ddb7d1f4038888b622cfe7ff8c0121b9879bca4b262c7fa1838282e2bf41ec43364d1def623d714c254c4331f81c365d7bd5ffac4ded60bbb6f2b2e8e325a523fab8494d59647d705ece9303d10f2a689af7ca3973ab6460df14c3090d19703ca334d49977415c6060290975dab71f911faafb00becb8e44506944e3da13445c1387c00ca64486e16f1746abaa59a528b0d4c6699764b076cbe8701db9d1c3a05afafd0ed2f1a249063c69012256f6a43d664afd8499b5b83c254eedc352e1"}}, &(0x7f0000000a80)={0x0, 0xf, 0x1be, {0x5, 0xf, 0x1be, 0x5, [@generic={0x98, 0x10, 0x4, "194285a208c2ef68d3691056e4b2be9ef63c004a439211e2c05f407b9177d539086ea1ee6f739087fdb52e6e2e48282a2e571ff928720edb7eda512230828b64067d77d99228a734a55fbe794f8b877ff9b4cb71e464c05e98212a4f0094edd908ebb85d07779727d2ac9bfdef50709c7d2dfc4f1e7c5094d89df40ce1c2511993c7231362922d03e1d5457fe278ff5778822f368e"}, @generic={0xb7, 0x10, 0xb, "02ff3e058ad0ce62ac8850de3cfa07c27bca205afa54f9dce54d564616ce2982aeae8f17d65e65c6df9be170e6762399a2a659aeaa9b6c10905b288166e8b2efa3fe0b6120bd4686d86c0ed824395da4c4d118fd51cb6d40ced991d465397a89a0f36340120c2821546bfa4c5c5fe144d0cc989e4307a9664397ee8312b849075bc4d9a7296dcd5b334731e67be25c05c0ea247a6d84fba95af5553413dfdc1785d115934c32a216e79dc6fb91585587b977fa34"}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x1, 0x7, 0x9b, 0xfd1f}, @generic={0x4c, 0x10, 0xa, "83689216964924f6f7571b02b3e6eccbfd5a49eef0bcf352ab58cdbbd6e5a970e5d5d6d9ce07989ace3f780e305747ca08fd5849ae0b1e8581c1e84912bba6e3d66ece9f37790fa116"}, @ssp_cap={0x14, 0x10, 0xa, 0x8, 0x2, 0x10001, 0xff00, 0x400, [0xff3f30, 0x95ce48fb11b2dd9e]}]}}, &(0x7f0000000000)={0x20, 0x29, 0xf, {0xf, 0x29, 0x1, 0x4, 0x40, 0x1f, "5803a367", "de4aee61"}}, &(0x7f0000000040)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x6, 0x0, 0x5d, 0x80, 0x6, 0x7, 0x3}}}, &(0x7f0000001180)={0x84, &(0x7f0000000cc0)={0x40, 0x10, 0xe1, "0f8583c07881fe98dea552fdde913dba2c9dbf488e86c5bde0cf2c35990a2cab0c2171a3243cf2e8da4f0f1fa9bfa430c8bf1cbb4e9c39970145df714e244f76142a26f5c74ad7ab6b1e7347575828d0a74eff8cdd1644934f28598e1894830aeaf29518a6632927a84a42f8f78e6d7a46508a53cdb5820acb8e88e9ac1e4460db11ed80ce39bf4a00447edc57f96864121c1537edbc29713d22529f617af71ce80aed03ab377674465695178e899c9f3990833f135adddd795ef684267ff5776c0868da28359a5bfea7b3b75c08330689b3ff0860d8d9317b9c460e7fee8f79b6"}, &(0x7f0000000dc0)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000e00)={0x0, 0x8, 0x1, 0xc1}, &(0x7f0000000e40)={0x20, 0x0, 0x4, {0x3, 0x2}}, &(0x7f0000000e80)={0x20, 0x0, 0x4, {0x60, 0x2}}, &(0x7f0000000ec0)={0x40, 0x7, 0x2, 0xf75f}, &(0x7f0000000f00)={0x40, 0x9, 0x1, 0x4}, &(0x7f0000000f40)={0x40, 0xb, 0x2, 'Dc'}, &(0x7f0000000f80)={0x40, 0xf, 0x2, 0x40}, &(0x7f0000000fc0)={0x40, 0x13, 0x6, @random="413399786855"}, &(0x7f0000001000)={0x40, 0x17, 0x6, @broadcast}, &(0x7f0000001040)={0x40, 0x19, 0x2, "0ffa"}, &(0x7f0000001080)={0x40, 0x1a, 0x2, 0x8}, &(0x7f00000010c0)={0x40, 0x1c, 0x1}, &(0x7f0000001100)={0x40, 0x1e, 0x1}, &(0x7f0000001140)={0x40, 0x21, 0x1, 0x1}}) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000840)=ANY=[@ANYBLOB="000066000000660012f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aabbc3341ca722cb75208569ade601d9e9d77f50437d58ad46b21cdf46093d4e15ddcd5712a7f6c88e02078030e1381361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c"], &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3333.225688][T18973] usb 3-1: unable to read config index 0 descriptor/start: -71 [ 3333.243275][T18973] usb 3-1: can't read configurations, error -71 [ 3333.493890][T19334] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3333.504380][T19334] CPU: 0 PID: 19334 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3333.514846][T19334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3333.524938][T19334] Call Trace: [ 3333.528246][T19334] [ 3333.531209][T19334] dump_stack_lvl+0x1e7/0x2e0 [ 3333.535927][T19334] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3333.541160][T19334] ? __pfx__printk+0x10/0x10 [ 3333.545778][T19334] ? ___ratelimit+0x4c4/0x670 [ 3333.550501][T19334] ? __pfx____ratelimit+0x10/0x10 [ 3333.555583][T19334] dump_header+0xda/0x6a0 [ 3333.559983][T19334] oom_kill_process+0x3a7/0x930 [ 3333.564870][T19334] out_of_memory+0xf67/0x1320 [ 3333.569583][T19334] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3333.575251][T19334] ? __pfx___mutex_lock+0x10/0x10 [ 3333.580310][T19334] ? __pfx_out_of_memory+0x10/0x10 [ 3333.585461][T19334] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3333.591034][T19334] ? __pfx_lock_release+0x10/0x10 [ 3333.596099][T19334] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3333.602204][T19334] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3333.607455][T19334] ? mem_cgroup_iter+0x422/0x560 [ 3333.612437][T19334] try_charge_memcg+0xda2/0x18a0 [ 3333.617440][T19334] ? __pfx_try_charge_memcg+0x10/0x10 [ 3333.622845][T19334] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3333.628592][T19334] ? __pfx_lock_release+0x10/0x10 [ 3333.633667][T19334] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3333.639867][T19334] __memcg_kmem_charge_page+0xe1/0x250 [ 3333.645368][T19334] memcg_charge_kernel_stack+0xa7/0x550 [ 3333.650960][T19334] dup_task_struct+0x15d/0x7d0 [ 3333.655759][T19334] copy_process+0x5d5/0x3fc0 [ 3333.660392][T19334] ? __might_fault+0xa9/0x120 [ 3333.665105][T19334] ? __pfx_lock_release+0x10/0x10 [ 3333.670168][T19334] ? __pfx_copy_process+0x10/0x10 [ 3333.675240][T19334] ? __might_fault+0xc5/0x120 [ 3333.679945][T19334] ? __asan_memset+0x23/0x50 [ 3333.684572][T19334] kernel_clone+0x21d/0x8d0 [ 3333.689148][T19334] ? __pfx_kernel_clone+0x10/0x10 [ 3333.694241][T19334] __se_sys_clone3+0x2cb/0x350 [ 3333.699043][T19334] ? __pfx___se_sys_clone3+0x10/0x10 [ 3333.704362][T19334] ? rcu_is_watching+0x15/0xb0 [ 3333.705592][T18973] usb 3-1: new high-speed USB device number 72 using dummy_hcd [ 3333.709159][T19334] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3333.722712][T19334] ? exc_page_fault+0x587/0x870 [ 3333.727606][T19334] ? do_syscall_64+0xb4/0x240 [ 3333.732320][T19334] do_syscall_64+0xf9/0x240 [ 3333.736860][T19334] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3333.742788][T19334] RIP: 0033:0x7f080fca9b99 [ 3333.747227][T19334] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3333.766858][T19334] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3333.775298][T19334] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3333.783300][T19334] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3333.791299][T19334] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3333.799290][T19334] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3333.807286][T19334] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3333.815303][T19334] [ 3333.824087][T19334] memory: usage 307200kB, limit 307200kB, failcnt 145798 [ 3333.833874][T19334] memory+swap: usage 308492kB, limit 9007199254740988kB, failcnt 0 [ 3333.842220][T19334] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3333.849991][T19334] Memory cgroup stats for /syz0: [ 3333.850145][T19334] cache 0 [ 3333.858473][T19334] rss 12288 [ 3333.861792][T19334] rss_huge 0 [ 3333.865299][T19334] shmem 0 [ 3333.868670][T19334] mapped_file 0 [ 3333.872315][T19334] dirty 0 [ 3333.875828][T19334] writeback 0 [ 3333.879309][T19334] workingset_refault_anon 47479 [ 3333.884332][T19334] workingset_refault_file 0 [ 3333.889310][T19334] swap 1323008 [ 3333.892885][T19334] swapcached 8192 [ 3333.905847][T19334] pgpgin 291413 [ 3333.909522][T19334] pgpgout 291410 [ 3333.913373][T19334] pgfault 542633 [ 3333.917569][T19334] pgmajfault 45686 [ 3333.921523][T19334] inactive_anon 0 [ 3333.928225][T19334] active_anon 12288 [ 3333.932247][T19334] inactive_file 0 [ 3333.936221][T19334] active_file 0 [ 3333.940117][T19334] unevictable 0 [ 3333.943780][T19334] hierarchical_memory_limit 314572800 [ 3333.949422][T19334] hierarchical_memsw_limit 9223372036854771712 [ 3333.955893][T19334] total_cache 0 [ 3333.959492][T19334] total_rss 12288 [ 3333.963229][T19334] total_rss_huge 0 [ 3333.967261][T19334] total_shmem 0 [ 3333.970930][T19334] total_mapped_file 0 [ 3333.975303][T19334] total_dirty 0 [ 3333.978959][T19334] total_writeback 0 [ 3333.982954][T19334] total_workingset_refault_anon 47479 [ 3333.988579][T19334] total_workingset_refault_file 0 [ 3333.993745][T19334] total_swap 1323008 [ 3333.998000][T19334] total_swapcached 8192 [ 3334.002303][T19334] total_pgpgin 291413 [ 3334.006603][T19334] total_pgpgout 291410 [ 3334.010900][T19334] total_pgfault 542633 [ 3334.015236][T19334] total_pgmajfault 45686 [ 3334.015379][T18973] usb 3-1: Using ep0 maxpacket: 8 [ 3334.019671][T19334] total_inactive_anon 0 [ 3334.028922][T19334] total_active_anon 12288 [ 3334.033469][T19334] total_inactive_file 0 [ 3334.040383][T19334] total_active_file 0 [ 3334.044575][T19334] total_unevictable 0 [ 3334.049012][T19334] anon_cost 0 [ 3334.052442][T19334] file_cost 0 [ 3334.056388][T19334] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19334,uid=0 [ 3334.072209][T19334] Memory cgroup out of memory: Killed process 19334 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8880kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:52 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x1a00}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3334.165554][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3334.181647][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3334.197774][T18973] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3334.213739][T18973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3334.232578][T18973] usb 3-1: config 0 descriptor?? [ 3334.492053][T19339] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3334.508936][T19339] CPU: 1 PID: 19339 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3334.519430][T19339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3334.529507][T19339] Call Trace: [ 3334.532790][T19339] [ 3334.535730][T19339] dump_stack_lvl+0x1e7/0x2e0 [ 3334.540432][T19339] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3334.545662][T19339] ? __pfx__printk+0x10/0x10 [ 3334.550275][T19339] ? ___ratelimit+0x4c4/0x670 [ 3334.554970][T19339] ? __pfx____ratelimit+0x10/0x10 [ 3334.560022][T19339] dump_header+0xda/0x6a0 [ 3334.564379][T19339] oom_kill_process+0x3a7/0x930 [ 3334.569267][T19339] out_of_memory+0xf67/0x1320 [ 3334.573958][T19339] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3334.579604][T19339] ? __pfx___mutex_lock+0x10/0x10 [ 3334.584659][T19339] ? __pfx_out_of_memory+0x10/0x10 [ 3334.589814][T19339] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3334.595381][T19339] ? __pfx_lock_release+0x10/0x10 [ 3334.600451][T19339] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3334.606558][T19339] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3334.611780][T19339] ? mem_cgroup_iter+0x422/0x560 [ 3334.616751][T19339] try_charge_memcg+0xda2/0x18a0 [ 3334.621726][T19339] ? __pfx_try_charge_memcg+0x10/0x10 [ 3334.627112][T19339] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3334.632848][T19339] ? __pfx_lock_release+0x10/0x10 [ 3334.637888][T19339] ? memcg_account_kmem+0x1e7/0x210 [ 3334.643108][T19339] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3334.648963][T19339] __memcg_kmem_charge_page+0xe1/0x250 [ 3334.654466][T19339] memcg_charge_kernel_stack+0x210/0x550 [ 3334.660130][T19339] dup_task_struct+0x15d/0x7d0 [ 3334.664917][T19339] copy_process+0x5d5/0x3fc0 [ 3334.669536][T19339] ? __might_fault+0xa9/0x120 [ 3334.674234][T19339] ? __pfx_lock_release+0x10/0x10 [ 3334.679280][T19339] ? __lock_acquire+0x1345/0x1fd0 [ 3334.684411][T19339] ? __pfx_copy_process+0x10/0x10 [ 3334.689448][T19339] ? __might_fault+0xc5/0x120 [ 3334.694143][T19339] ? __asan_memset+0x23/0x50 [ 3334.698750][T19339] kernel_clone+0x21d/0x8d0 [ 3334.703265][T19339] ? __pfx_kernel_clone+0x10/0x10 [ 3334.708307][T19339] ? __pfx_lock_release+0x10/0x10 [ 3334.713353][T19339] __se_sys_clone3+0x2cb/0x350 [ 3334.718126][T19339] ? __might_fault+0xa9/0x120 [ 3334.722841][T19339] ? __pfx___se_sys_clone3+0x10/0x10 [ 3334.728139][T19339] ? rcu_is_watching+0x15/0xb0 [ 3334.732927][T19339] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3334.738935][T19339] ? exc_page_fault+0x587/0x870 [ 3334.743808][T19339] ? do_syscall_64+0xb4/0x240 [ 3334.748499][T19339] do_syscall_64+0xf9/0x240 [ 3334.753014][T19339] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3334.758918][T19339] RIP: 0033:0x7f080fca9b99 [ 3334.763358][T19339] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3334.782970][T19339] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3334.791426][T19339] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3334.799402][T19339] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3334.807378][T19339] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3334.815359][T19339] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3334.823350][T19339] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3334.831453][T19339] [ 3334.835920][T19339] memory: usage 307200kB, limit 307200kB, failcnt 146235 [ 3334.843199][T19339] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3334.852575][T19339] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3334.861986][T19339] Memory cgroup stats for /syz0: [ 3334.862140][T19339] cache 0 [ 3334.870659][T19339] rss 4096 [ 3334.873801][T19339] rss_huge 0 [ 3334.882091][T19339] shmem 0 [ 3334.885535][T19339] mapped_file 0 [ 3334.889144][T19339] dirty 0 [ 3334.892171][T19339] writeback 0 [ 3334.895925][T18973] usbhid 3-1:0.0: can't add hid device: -71 [ 3334.901989][T18973] usbhid: probe of 3-1:0.0 failed with error -71 [ 3334.903336][T19339] workingset_refault_anon 47625 [ 3334.918031][T18973] usb 3-1: USB disconnect, device number 72 [ 3334.928074][T19339] workingset_refault_file 0 [ 3334.932613][T19339] swap 1368064 [ 3334.948638][T19339] swapcached 0 [ 3334.952172][T19339] pgpgin 291575 [ 3334.956447][T19339] pgpgout 291574 [ 3334.960171][T19339] pgfault 542877 [ 3334.963856][T19339] pgmajfault 45826 [ 3334.968366][T19339] inactive_anon 0 [ 3334.972161][T19339] active_anon 4096 [ 3334.977431][T19339] inactive_file 0 [ 3334.981230][T19339] active_file 0 [ 3334.984834][T19339] unevictable 0 [ 3334.989207][T19339] hierarchical_memory_limit 314572800 [ 3334.994699][T19339] hierarchical_memsw_limit 9223372036854771712 [ 3335.001408][T19339] total_cache 0 [ 3335.004979][T19339] total_rss 4096 [ 3335.009437][T19339] total_rss_huge 0 [ 3335.013316][T19339] total_shmem 0 [ 3335.018010][T19339] total_mapped_file 0 [ 3335.022152][T19339] total_dirty 0 [ 3335.026129][T19339] total_writeback 0 [ 3335.030086][T19339] total_workingset_refault_anon 47625 [ 3335.036505][T19339] total_workingset_refault_file 0 [ 3335.041690][T19339] total_swap 1368064 [ 3335.046150][T19339] total_swapcached 0 [ 3335.050153][T19339] total_pgpgin 291575 [ 3335.054208][T19339] total_pgpgout 291574 [ 3335.059238][T19339] total_pgfault 542877 [ 3335.063556][T19339] total_pgmajfault 45826 [ 3335.068499][T19339] total_inactive_anon 0 [ 3335.072828][T19339] total_active_anon 4096 [ 3335.077728][T19339] total_inactive_file 0 [ 3335.082044][T19339] total_active_file 0 [ 3335.086806][T19339] total_unevictable 0 [ 3335.090937][T19339] anon_cost 0 [ 3335.094359][T19339] file_cost 0 17:45:53 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x2601}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3335.098707][T19339] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19339,uid=0 [ 3335.114550][T19339] Memory cgroup out of memory: Killed process 19339 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3335.295442][T18973] usb 3-1: new high-speed USB device number 73 using dummy_hcd [ 3335.466252][T19343] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3335.476656][T19343] CPU: 1 PID: 19343 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3335.487146][T19343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3335.497233][T19343] Call Trace: [ 3335.500539][T19343] [ 3335.503490][T19343] dump_stack_lvl+0x1e7/0x2e0 [ 3335.508225][T19343] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3335.513466][T19343] ? __pfx__printk+0x10/0x10 [ 3335.518080][T19343] ? ___ratelimit+0x4c4/0x670 [ 3335.522810][T19343] ? __pfx____ratelimit+0x10/0x10 [ 3335.527884][T19343] dump_header+0xda/0x6a0 [ 3335.532247][T19343] oom_kill_process+0x3a7/0x930 [ 3335.537137][T19343] out_of_memory+0xf67/0x1320 [ 3335.541833][T19343] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3335.547490][T19343] ? __pfx___mutex_lock+0x10/0x10 [ 3335.552539][T19343] ? __pfx_out_of_memory+0x10/0x10 [ 3335.557679][T19343] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3335.563274][T19343] ? __pfx_lock_release+0x10/0x10 [ 3335.568326][T19343] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3335.574449][T19343] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3335.579675][T19343] ? mem_cgroup_iter+0x422/0x560 [ 3335.584648][T19343] try_charge_memcg+0xda2/0x18a0 [ 3335.589657][T19343] ? __pfx_try_charge_memcg+0x10/0x10 [ 3335.595051][T19343] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3335.600806][T19343] ? __pfx_lock_release+0x10/0x10 [ 3335.605882][T19343] ? memcg_account_kmem+0x1e7/0x210 [ 3335.611118][T19343] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3335.616949][T19343] __memcg_kmem_charge_page+0xe1/0x250 [ 3335.622444][T19343] memcg_charge_kernel_stack+0x210/0x550 [ 3335.628193][T19343] dup_task_struct+0x15d/0x7d0 [ 3335.633065][T19343] copy_process+0x5d5/0x3fc0 [ 3335.637689][T19343] ? __might_fault+0xa9/0x120 [ 3335.642387][T19343] ? __pfx_lock_release+0x10/0x10 [ 3335.647437][T19343] ? __lock_acquire+0x1345/0x1fd0 [ 3335.652479][T19343] ? __pfx_copy_process+0x10/0x10 [ 3335.657516][T19343] ? __might_fault+0xc5/0x120 [ 3335.662211][T19343] ? __asan_memset+0x23/0x50 [ 3335.666840][T19343] kernel_clone+0x21d/0x8d0 [ 3335.671386][T19343] ? __pfx_kernel_clone+0x10/0x10 [ 3335.676450][T19343] ? __pfx_lock_release+0x10/0x10 [ 3335.681508][T19343] __se_sys_clone3+0x2cb/0x350 [ 3335.686290][T19343] ? __might_fault+0xa9/0x120 [ 3335.690986][T19343] ? __pfx___se_sys_clone3+0x10/0x10 [ 3335.696280][T19343] ? rcu_is_watching+0x15/0xb0 [ 3335.701076][T19343] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3335.707090][T19343] ? exc_page_fault+0x587/0x870 [ 3335.711969][T19343] ? do_syscall_64+0xb4/0x240 [ 3335.716686][T19343] do_syscall_64+0xf9/0x240 [ 3335.721222][T19343] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3335.727155][T19343] RIP: 0033:0x7f080fca9b99 [ 3335.731582][T19343] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3335.751204][T19343] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3335.759626][T19343] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3335.767602][T19343] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3335.775578][T19343] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3335.783557][T19343] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3335.791534][T19343] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3335.799542][T19343] [ 3335.803500][T19343] memory: usage 307200kB, limit 307200kB, failcnt 146604 [ 3335.810715][T19343] memory+swap: usage 308576kB, limit 9007199254740988kB, failcnt 0 [ 3335.829649][T19343] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3335.837356][T19343] Memory cgroup stats for /syz0: [ 3335.837511][T19343] cache 0 [ 3335.845528][T18973] usb 3-1: Using ep0 maxpacket: 8 [ 3335.850191][T19343] rss 12288 [ 3335.853729][T19343] rss_huge 0 [ 3335.857268][T19343] shmem 0 [ 3335.860221][T19343] mapped_file 0 [ 3335.863701][T19343] dirty 0 [ 3335.867153][T19343] writeback 0 [ 3335.870465][T19343] workingset_refault_anon 47783 [ 3335.875720][T19343] workingset_refault_file 0 [ 3335.880682][T19343] swap 1396736 [ 3335.884090][T19343] swapcached 8192 [ 3335.888254][T19343] pgpgin 291745 [ 3335.891726][T19343] pgpgout 291742 [ 3335.896254][T19343] pgfault 543115 [ 3335.899826][T19343] pgmajfault 45970 [ 3335.903604][T19343] inactive_anon 4096 [ 3335.908725][T19343] active_anon 8192 [ 3335.912509][T19343] inactive_file 0 [ 3335.919049][T19343] active_file 0 [ 3335.922534][T19343] unevictable 0 [ 3335.926584][T19343] hierarchical_memory_limit 314572800 [ 3335.931975][T19343] hierarchical_memsw_limit 9223372036854771712 [ 3335.938584][T19343] total_cache 0 [ 3335.942071][T19343] total_rss 12288 [ 3335.946370][T19343] total_rss_huge 0 [ 3335.950108][T19343] total_shmem 0 [ 3335.953573][T19343] total_mapped_file 0 [ 3335.958261][T19343] total_dirty 0 [ 3335.961747][T19343] total_writeback 0 [ 3335.966028][T19343] total_workingset_refault_anon 47783 [ 3335.971450][T19343] total_workingset_refault_file 0 [ 3335.985122][T19343] total_swap 1396736 [ 3335.989542][T19343] total_swapcached 8192 [ 3335.993735][T19343] total_pgpgin 291745 [ 3335.997834][T19343] total_pgpgout 291742 [ 3336.001929][T19343] total_pgfault 543115 [ 3336.006214][T19343] total_pgmajfault 45970 [ 3336.010475][T19343] total_inactive_anon 4096 [ 3336.014921][T19343] total_active_anon 8192 [ 3336.015558][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3336.020351][T19343] total_inactive_file 0 [ 3336.036597][T19343] total_active_file 0 [ 3336.039855][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3336.040605][T19343] total_unevictable 0 [ 3336.040619][T19343] anon_cost 0 [ 3336.058273][T19343] file_cost 0 [ 3336.061791][T19343] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19343,uid=0 [ 3336.062707][T18973] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3336.077448][T19343] Memory cgroup out of memory: Killed process 19343 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:54 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x2e02}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3336.124727][T18973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3336.146100][T18973] usb 3-1: config 0 descriptor?? 17:45:54 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io(r1, &(0x7f0000000140)={0x2c, &(0x7f0000000000)={0x40, 0x3, 0x38, {0x38, 0x22, "e1132d70743e505c72f5e33d77f15a8331a70112924473d25f4ef37e26bf96c46006f30e606c3b177138c8c4cb346a15d25d3ad2fa86"}}, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x813}}, &(0x7f0000000240)={0x0, 0xf, 0x222, {0x5, 0xf, 0x222, 0x6, [@generic={0x85, 0x10, 0xb, "fd52360491f5a7457278a200450a6899467f41bea4975c08c4472a0881c4dd490be8d6d283bb8e153577a06cebcb272518391bc30a334ac3b6c62fd7113f2891054cd71bd582f1c7c06dae2aa6359e2348c8c0cfe36ef6bbb2837044f67b241e4f781556e4aa626a8577728d534abe9e84170c674fc428aedeb90b5703d7fdbc7393"}, @generic={0xc9, 0x10, 0xa, "3f8fb5ff0a877f656394cb5949c6c29b4087682011308464361e107d837a0bf51ac25ebd9d27faa8b1fa686a72c157c68454b68b12f2fefaad342ccaa0d841dc77561039f099d5e0265213f649812a6766c27917bf50cb5ce2dd19cfc870fde8002115c489a4d9d8b69734f37b6048df68c0e7a9bb5fca4a82dd766b32db8ab678f59e608465ca1eca62629bc086b09b9c7a20fa9bf1347a8c02fca57d2d2543e1a24a28e4281b61814d5a0fe02600e092d5c318e256a2537ab3794f7c287777d80e7222fc33"}, @ext_cap={0x7, 0x10, 0x2, 0x5, 0x2, 0x9, 0x3}, @generic={0xc2, 0x10, 0xb, "975cbae68937e110730c815c27920e0452675c0b462c26b61112c908247e1c4cd67ca5ee23eaa5a1a90825945d457b7c66a75bdb06e930bb3fff5dd706f646911c17bb3440e22c13366a7227661f1173ccf0877523050c122650871bbdbed0572e254f0a7d58a60adca292c655effc78ce17f907feac4a5c2c9d7b3266223d2dc34b14654a9f73c306efb2a4ba3d72ad073ba5aa312ebdfeedd38c10488a3cd00ddeb21e3831afed32b86bcaa566129ed5c13d13aea0d98c1b0ae2429d8db3"}, @ptm_cap={0x3}, @ptm_cap={0x3}]}}, &(0x7f00000000c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x6, 0x10, 0x0, 0x0, "444b3cd2", "be9f0b08"}}, &(0x7f0000000100)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3f, 0x3, 0x1, 0x8, 0x5, 0x0, 0xfffa}}}, &(0x7f0000000880)={0x84, &(0x7f0000000480)={0x40, 0x6, 0x6c, "7f328c6945c5f746eaadee48f3ba341d8c831f157a76e96cd741a11964a7ad512253c1c3a5dc6c6117b64f3a93e39fc52f672bbf75e0ec6dc370a2cd821a64e0952c1218ea459699addcff7bb1ddb0f8e3fdefc4e72ebaf0df5cdf1e95bc8dcbc2a23b4485d6b1c065e1217c"}, &(0x7f00000001c0)={0x0, 0xa, 0x1, 0x3f}, &(0x7f0000000500)={0x0, 0x8, 0x1, 0x1}, &(0x7f0000000540)={0x20, 0x0, 0x4, {0x3, 0x1}}, &(0x7f0000000580)={0x20, 0x0, 0x4, {0x2, 0x1}}, &(0x7f00000005c0)={0x40, 0x7, 0x2, 0x6}, &(0x7f0000000600)={0x40, 0x9, 0x1, 0x6}, &(0x7f0000000640)={0x40, 0xb, 0x2, "74b6"}, &(0x7f0000000680)={0x40, 0xf, 0x2, 0x6}, &(0x7f00000006c0)={0x40, 0x13, 0x6, @random="bbb54c03096c"}, &(0x7f0000000700)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000740)={0x40, 0x19, 0x2, "fcf2"}, &(0x7f0000000780)={0x40, 0x1a, 0x2, 0xbc0}, &(0x7f00000007c0)={0x40, 0x1c, 0x1, 0x1}, &(0x7f0000000800)={0x40, 0x1e, 0x1, 0x7}, &(0x7f0000000840)={0x40, 0x21, 0x1, 0x8}}) (async) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) 17:45:54 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000100)={0x2c, &(0x7f00000002c0)={0x20, 0x22, 0x7f, {0x7f, 0x23, "30ac31b7e9440c57f4fadec22c939deed701e30bf7becb8936a4dc76a198506b42e6ddb5ee0be1dc26f59015af42e1771de101e148b60374c7c3a6b222d5c3ecfe439c0165529e570716d80864e3fb03ff05a9442ed521d29fbc041ebfb26cb1b4489205e98ca7ea6280069ceb8a45b95bbad553f0b57b7f460f5b8c48"}}, &(0x7f0000000000)={0x0, 0x3, 0x4, @lang_id={0x4}}, &(0x7f0000000380)={0x0, 0xf, 0xd6, {0x5, 0xf, 0xd6, 0x3, [@generic={0xc2, 0x10, 0xb, "5b1e594f9e379d36d01164b8d3b6317d3e2c66c50fcd49df808700a3307a4d713ab7c50355d3eeccae038f29b0806e723b84a29c6056e12b99d3d382f1abdcf8e358f81b34d1380a664a6da907cab7373c48031d988cf50b9edc19b5dfebe6fad71c1001bcca294296653d12bf021b0a9fca8a9686fcd53d5fbb07c17a8989161151235473207703c7ce77cda9f72e8a620240ee7acc515fda8f1d3dc001a3ac4551caceebc7418d916c4a1315e2afa98f1d0f1abba9987d47f0c7a592ed7e"}, @ssp_cap={0xc, 0x10, 0xa, 0x8, 0x0, 0x100, 0xff00, 0x401}, @ptm_cap={0x3}]}}, &(0x7f0000000040)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3f, 0x60, 0xe, 0x3, "863250c4", "e38013d3"}}, &(0x7f00000000c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3, 0x80, 0x80, 0x5, 0x5, 0x1, 0x9}}}, &(0x7f0000000980)={0x84, &(0x7f0000000480)={0x20, 0x8, 0xfe, "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"}, &(0x7f00000005c0)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000600)={0x0, 0x8, 0x1, 0xf7}, &(0x7f0000000640)={0x20, 0x0, 0x4, {0x1}}, &(0x7f0000000680)={0x20, 0x0, 0x8, {0x0, 0x80, [0xf00f]}}, &(0x7f00000006c0)={0x40, 0x7, 0x2, 0x6}, &(0x7f0000000700)={0x40, 0x9, 0x1, 0xf0}, &(0x7f0000000740)={0x40, 0xb, 0x2, "c0ed"}, &(0x7f0000000780)={0x40, 0xf, 0x2, 0x6}, &(0x7f00000007c0)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000000800)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000840)={0x40, 0x19, 0x2, "9d6d"}, &(0x7f0000000880)={0x40, 0x1a, 0x2, 0x3}, &(0x7f00000008c0)={0x40, 0x1c, 0x1, 0x20}, &(0x7f0000000900)={0x40, 0x1e, 0x1, 0x40}, &(0x7f0000000940)={0x40, 0x21, 0x1, 0x5}}) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="000066000000660012f9811b036fbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d112ab4ec2e6c0f1baf92e8668be22701829d6364899a015b27fe103394714c2feb97d2882ad3bbc37d187b0c6243bf8c5861cc292033f45bbed6ea0f2054d4052b80ba990bf2352751b995071e6b2f436671681297c15f26d979a8a0be8e99c42c8fd7f29fe"], &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3336.404121][T18973] usbhid 3-1:0.0: can't add hid device: -71 [ 3336.413769][T18973] usbhid: probe of 3-1:0.0 failed with error -71 [ 3336.423196][T18973] usb 3-1: USB disconnect, device number 73 [ 3336.494575][T19344] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3336.505077][T19344] CPU: 0 PID: 19344 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3336.515524][T19344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3336.525578][T19344] Call Trace: [ 3336.528857][T19344] [ 3336.531785][T19344] dump_stack_lvl+0x1e7/0x2e0 [ 3336.536478][T19344] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3336.541686][T19344] ? __pfx__printk+0x10/0x10 [ 3336.546279][T19344] ? ___ratelimit+0x4c4/0x670 [ 3336.550963][T19344] ? __pfx____ratelimit+0x10/0x10 [ 3336.556052][T19344] dump_header+0xda/0x6a0 [ 3336.560402][T19344] oom_kill_process+0x3a7/0x930 [ 3336.565273][T19344] out_of_memory+0xf67/0x1320 [ 3336.569999][T19344] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3336.575660][T19344] ? __pfx___mutex_lock+0x10/0x10 [ 3336.580709][T19344] ? __pfx_out_of_memory+0x10/0x10 [ 3336.585936][T19344] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3336.591499][T19344] ? __pfx_lock_release+0x10/0x10 [ 3336.596563][T19344] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3336.602663][T19344] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3336.607903][T19344] ? mem_cgroup_iter+0x422/0x560 [ 3336.612867][T19344] try_charge_memcg+0xda2/0x18a0 [ 3336.617844][T19344] ? __pfx_try_charge_memcg+0x10/0x10 [ 3336.623252][T19344] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3336.628989][T19344] ? __pfx_lock_release+0x10/0x10 [ 3336.634064][T19344] ? memcg_account_kmem+0x1e7/0x210 [ 3336.639306][T19344] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3336.645476][T19344] __memcg_kmem_charge_page+0xe1/0x250 [ 3336.650963][T19344] memcg_charge_kernel_stack+0x210/0x550 [ 3336.656629][T19344] dup_task_struct+0x15d/0x7d0 [ 3336.661416][T19344] copy_process+0x5d5/0x3fc0 [ 3336.666028][T19344] ? __might_fault+0xa9/0x120 [ 3336.670723][T19344] ? __pfx_lock_release+0x10/0x10 [ 3336.675771][T19344] ? __pfx_copy_process+0x10/0x10 [ 3336.680805][T19344] ? __might_fault+0xc5/0x120 [ 3336.685513][T19344] ? __asan_memset+0x23/0x50 [ 3336.690142][T19344] kernel_clone+0x21d/0x8d0 [ 3336.694679][T19344] ? __pfx_kernel_clone+0x10/0x10 [ 3336.699756][T19344] __se_sys_clone3+0x2cb/0x350 [ 3336.704549][T19344] ? __pfx___se_sys_clone3+0x10/0x10 [ 3336.709864][T19344] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3336.715981][T19344] ? exc_page_fault+0x587/0x870 [ 3336.720851][T19344] ? do_syscall_64+0xb4/0x240 [ 3336.725548][T19344] do_syscall_64+0xf9/0x240 [ 3336.730087][T19344] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3336.735999][T19344] RIP: 0033:0x7f080fca9b99 [ 3336.740441][T19344] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3336.760056][T19344] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3336.768572][T19344] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3336.776562][T19344] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3336.784544][T19344] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3336.792520][T19344] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3336.800497][T19344] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3336.808490][T19344] [ 3336.832473][T19344] memory: usage 307200kB, limit 307200kB, failcnt 146945 [ 3336.839804][T19344] memory+swap: usage 308536kB, limit 9007199254740988kB, failcnt 0 [ 3336.847942][T19344] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3336.855512][T19344] Memory cgroup stats for /syz0: [ 3336.855668][T19344] cache 0 [ 3336.863751][T19344] rss 16384 [ 3336.867200][T19344] rss_huge 0 [ 3336.870554][T19344] shmem 0 [ 3336.873658][T19344] mapped_file 0 [ 3336.877469][T19344] dirty 0 [ 3336.880519][T19344] writeback 0 [ 3336.883885][T19344] workingset_refault_anon 47919 [ 3336.888948][T19344] workingset_refault_file 0 [ 3336.893612][T19344] swap 1351680 [ 3336.897299][T19344] swapcached 8192 [ 3336.901104][T19344] pgpgin 291894 [ 3336.904960][T19344] pgpgout 291890 [ 3336.908794][T19344] pgfault 543327 [ 3336.912491][T19344] pgmajfault 46090 [ 3336.916689][T19344] inactive_anon 0 [ 3336.920349][T19344] active_anon 12288 [ 3336.924156][T19344] inactive_file 0 [ 3336.935478][T19344] active_file 0 [ 3336.938979][T19344] unevictable 0 [ 3336.942460][T19344] hierarchical_memory_limit 314572800 [ 3336.950855][T19344] hierarchical_memsw_limit 9223372036854771712 [ 3336.957277][T19344] total_cache 0 [ 3336.960881][T19344] total_rss 16384 [ 3336.964679][T19344] total_rss_huge 0 [ 3336.968688][T19344] total_shmem 0 [ 3336.972326][T19344] total_mapped_file 0 [ 3336.976514][T19344] total_dirty 0 [ 3336.980126][T19344] total_writeback 0 [ 3336.984033][T19344] total_workingset_refault_anon 47919 [ 3336.989593][T19344] total_workingset_refault_file 0 [ 3336.994799][T19344] total_swap 1351680 [ 3336.999002][T19344] total_swapcached 8192 [ 3337.003279][T19344] total_pgpgin 291894 [ 3337.007491][T19344] total_pgpgout 291890 [ 3337.011717][T19344] total_pgfault 543327 [ 3337.023093][T19344] total_pgmajfault 46090 [ 3337.029837][T19344] total_inactive_anon 0 [ 3337.034217][T19344] total_active_anon 12288 [ 3337.038763][T19344] total_inactive_file 0 [ 3337.043105][T19344] total_active_file 0 [ 3337.047355][T19344] total_unevictable 0 [ 3337.051461][T19344] anon_cost 0 [ 3337.054826][T19344] file_cost 0 [ 3337.060767][T19344] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19344,uid=0 [ 3337.076898][T19344] Memory cgroup out of memory: Killed process 19344 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3337.094166][T18973] usb 3-1: new high-speed USB device number 74 using dummy_hcd 17:45:55 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x2f02}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3337.334403][T18973] usb 3-1: Using ep0 maxpacket: 8 [ 3337.405475][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3337.417022][ T5110] CPU: 1 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3337.427412][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3337.437503][ T5110] Call Trace: [ 3337.440797][ T5110] [ 3337.443733][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3337.448429][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3337.453643][ T5110] ? __pfx__printk+0x10/0x10 [ 3337.458259][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3337.462963][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3337.468012][ T5110] dump_header+0xda/0x6a0 [ 3337.472365][ T5110] oom_kill_process+0x3a7/0x930 [ 3337.477283][ T5110] out_of_memory+0xf67/0x1320 [ 3337.481993][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3337.487897][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3337.493032][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3337.498183][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3337.503763][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3337.508813][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3337.514894][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3337.520114][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3337.525086][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3337.530056][ T5110] ? mark_lock+0x9a/0x350 [ 3337.534441][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3337.539858][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3337.546045][ T5110] charge_memcg+0xa2/0x160 [ 3337.550484][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3337.556631][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3337.562127][ T5110] ? mark_lock+0x9a/0x350 [ 3337.566488][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3337.572502][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3337.577906][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3337.583823][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3337.588864][ T5110] ? xas_descend+0x37e/0x470 [ 3337.593559][ T5110] swapin_readahead+0x1ea/0x1070 [ 3337.598510][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3337.603648][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3337.609076][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3337.614379][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3337.619697][ T5110] do_swap_page+0x791/0x3f40 [ 3337.624304][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3337.629097][ T5110] ? do_swap_page+0x154/0x3f40 [ 3337.633871][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3337.638903][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3337.644379][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3337.650205][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3337.655355][ T5110] ? reacquire_held_locks+0x3eb/0x690 [ 3337.660738][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3337.666219][ T5110] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3337.671985][ T5110] ? mtree_range_walk+0x6fd/0x8e0 [ 3337.677032][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3337.682265][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3337.687305][ T5110] ? lock_vma_under_rcu+0x2f9/0x730 [ 3337.692538][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3337.697778][ T5110] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3337.703338][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3337.708125][ T5110] exc_page_fault+0x456/0x870 [ 3337.712822][ T5110] asm_exc_page_fault+0x26/0x30 [ 3337.717686][ T5110] RIP: 0033:0x7f080fc7a780 [ 3337.722110][ T5110] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 [ 3337.741725][ T5110] RSP: 002b:00007f080fecfd58 EFLAGS: 00010246 [ 3337.747822][ T5110] RAX: 00000000000000a2 RBX: 0000000000004341 RCX: 0000000000000000 [ 3337.755800][ T5110] RDX: 0000000040000001 RSI: 00007f080fecfdbc RDI: 00000000ffffffff [ 3337.763777][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000010 R09: 00007ffde33aa0b0 [ 3337.771754][ T5110] R10: 00007ffde33aa080 R11: 000000000009ca5a R12: 0000000000000032 [ 3337.779735][ T5110] R13: 000000000032ebb8 R14: 000000000032ebb8 R15: 0000000000000000 [ 3337.787728][ T5110] [ 3337.802166][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 147331 [ 3337.809427][ T5110] memory+swap: usage 308572kB, limit 9007199254740988kB, failcnt 0 [ 3337.817712][ T5110] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3337.825504][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3337.829517][ T5110] Memory cgroup stats for /syz0: [ 3337.836962][ T5110] cache 0 [ 3337.845002][ T5110] rss 0 [ 3337.848478][ T5110] rss_huge 0 [ 3337.851816][ T5110] shmem 0 [ 3337.854866][ T5110] mapped_file 0 [ 3337.857337][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3337.859230][ T5110] dirty 0 [ 3337.871539][ T5110] writeback 0 [ 3337.874927][ T5110] workingset_refault_anon 48053 [ 3337.878717][T18973] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3337.880601][ T5110] workingset_refault_file 0 [ 3337.889061][T18973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3337.894010][ T5110] swap 1400832 [ 3337.908349][ T5110] swapcached 4096 [ 3337.912106][ T5110] pgpgin 292040 [ 3337.916339][ T5110] pgpgout 292039 [ 3337.920041][ T5110] pgfault 543525 [ 3337.923687][ T5110] pgmajfault 46213 [ 3337.926695][T18973] usb 3-1: config 0 descriptor?? [ 3337.932622][ T5110] inactive_anon 0 [ 3337.936778][ T5110] active_anon 0 [ 3337.940357][ T5110] inactive_file 0 [ 3337.944060][ T5110] active_file 0 [ 3337.948223][ T5110] unevictable 0 [ 3337.951806][ T5110] hierarchical_memory_limit 314572800 [ 3337.957785][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3337.964114][ T5110] total_cache 0 [ 3337.968323][ T5110] total_rss 0 [ 3337.971731][ T5110] total_rss_huge 0 [ 3337.976469][ T5110] total_shmem 0 [ 3337.980097][ T5110] total_mapped_file 0 [ 3337.984330][ T5110] total_dirty 0 [ 3337.988369][ T5110] total_writeback 0 [ 3337.992304][ T5110] total_workingset_refault_anon 48053 [ 3337.998354][ T5110] total_workingset_refault_file 0 [ 3338.003490][ T5110] total_swap 1400832 [ 3338.007977][ T5110] total_swapcached 4096 [ 3338.012301][ T5110] total_pgpgin 292040 [ 3338.019527][ T5110] total_pgpgout 292039 [ 3338.023763][ T5110] total_pgfault 543525 [ 3338.028463][ T5110] total_pgmajfault 46213 [ 3338.032855][ T5110] total_inactive_anon 0 [ 3338.037687][ T5110] total_active_anon 0 [ 3338.041716][ T5110] total_inactive_file 0 [ 3338.046366][ T5110] total_active_file 0 [ 3338.050377][ T5110] total_unevictable 0 [ 3338.054369][ T5110] anon_cost 0 [ 3338.058301][ T5110] file_cost 0 [ 3338.061611][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19349,uid=0 [ 3338.077341][ T5110] Memory cgroup out of memory: Killed process 19349 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:45:56 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x3201}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3338.285658][T18973] usbhid 3-1:0.0: can't add hid device: -71 [ 3338.291888][T18973] usbhid: probe of 3-1:0.0 failed with error -71 [ 3338.310603][T18973] usb 3-1: USB disconnect, device number 74 [ 3338.449943][T19350] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3338.462450][T19350] CPU: 0 PID: 19350 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3338.472992][T19350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3338.483064][T19350] Call Trace: [ 3338.486355][T19350] [ 3338.489295][T19350] dump_stack_lvl+0x1e7/0x2e0 [ 3338.494008][T19350] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3338.499293][T19350] ? __pfx__printk+0x10/0x10 [ 3338.503901][T19350] ? ___ratelimit+0x4c4/0x670 [ 3338.508693][T19350] ? __pfx____ratelimit+0x10/0x10 [ 3338.513750][T19350] dump_header+0xda/0x6a0 [ 3338.518102][T19350] oom_kill_process+0x3a7/0x930 [ 3338.522981][T19350] out_of_memory+0xf67/0x1320 [ 3338.527679][T19350] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3338.533337][T19350] ? __pfx___mutex_lock+0x10/0x10 [ 3338.538375][T19350] ? __pfx_out_of_memory+0x10/0x10 [ 3338.543537][T19350] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3338.549116][T19350] ? __pfx_lock_release+0x10/0x10 [ 3338.554277][T19350] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3338.560398][T19350] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3338.565618][T19350] ? mem_cgroup_iter+0x422/0x560 [ 3338.570580][T19350] try_charge_memcg+0xda2/0x18a0 [ 3338.575559][T19350] ? __pfx_try_charge_memcg+0x10/0x10 [ 3338.580962][T19350] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3338.586731][T19350] ? __pfx_lock_release+0x10/0x10 [ 3338.591780][T19350] ? memcg_account_kmem+0x1e7/0x210 [ 3338.597009][T19350] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3338.602841][T19350] __memcg_kmem_charge_page+0xe1/0x250 [ 3338.608331][T19350] memcg_charge_kernel_stack+0x210/0x550 [ 3338.613991][T19350] dup_task_struct+0x40d/0x7d0 [ 3338.618774][T19350] copy_process+0x5d5/0x3fc0 [ 3338.623392][T19350] ? __might_fault+0xa9/0x120 [ 3338.628088][T19350] ? __pfx_lock_release+0x10/0x10 [ 3338.633159][T19350] ? __pfx_copy_process+0x10/0x10 [ 3338.638193][T19350] ? __might_fault+0xc5/0x120 [ 3338.642885][T19350] ? __asan_memset+0x23/0x50 [ 3338.647491][T19350] kernel_clone+0x21d/0x8d0 [ 3338.652010][T19350] ? __pfx_kernel_clone+0x10/0x10 [ 3338.657079][T19350] __se_sys_clone3+0x2cb/0x350 [ 3338.661868][T19350] ? __might_fault+0xa9/0x120 [ 3338.666560][T19350] ? __pfx___se_sys_clone3+0x10/0x10 [ 3338.671882][T19350] ? do_syscall_64+0x108/0x240 [ 3338.676668][T19350] ? do_syscall_64+0xb4/0x240 [ 3338.681378][T19350] do_syscall_64+0xf9/0x240 [ 3338.685896][T19350] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3338.691815][T19350] RIP: 0033:0x7f080fca9b99 [ 3338.696259][T19350] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3338.715876][T19350] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3338.724310][T19350] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3338.732291][T19350] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3338.740267][T19350] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3338.748245][T19350] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3338.756220][T19350] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3338.764209][T19350] [ 3338.778126][T19350] memory: usage 307200kB, limit 307200kB, failcnt 147694 [ 3338.785394][T19350] memory+swap: usage 308576kB, limit 9007199254740988kB, failcnt 0 [ 3338.793376][T19350] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3338.801549][T19350] Memory cgroup stats for /syz0: [ 3338.801694][T19350] cache 0 [ 3338.810134][T19350] rss 0 [ 3338.812977][T19350] rss_huge 0 [ 3338.816771][T19350] shmem 0 [ 3338.819789][T19350] mapped_file 0 [ 3338.823292][T19350] dirty 0 [ 3338.827045][T19350] writeback 0 [ 3338.830421][T19350] workingset_refault_anon 48184 [ 3338.835829][T19350] workingset_refault_file 0 [ 3338.840415][T19350] swap 1409024 [ 3338.843846][T19350] swapcached 0 [ 3338.848074][T19350] pgpgin 292181 [ 3338.851654][T19350] pgpgout 292181 [ 3338.856509][T19350] pgfault 543732 [ 3338.860246][T19350] pgmajfault 46332 [ 3338.864073][T19350] inactive_anon 0 [ 3338.868394][T19350] active_anon 0 [ 3338.871947][T19350] inactive_file 0 [ 3338.876443][T19350] active_file 0 [ 3338.879992][T19350] unevictable 0 [ 3338.883474][T19350] hierarchical_memory_limit 314572800 [ 3338.890149][T19350] hierarchical_memsw_limit 9223372036854771712 [ 3338.896742][T19350] total_cache 0 [ 3338.900228][T19350] total_rss 0 [ 3338.903526][T19350] total_rss_huge 0 [ 3338.907396][T19350] total_shmem 0 [ 3338.910877][T19350] total_mapped_file 0 [ 3338.920150][T19350] total_dirty 0 [ 3338.923773][T19350] total_writeback 0 [ 3338.931136][T19350] total_workingset_refault_anon 48184 [ 3338.937122][T19350] total_workingset_refault_file 0 [ 3338.942163][T19350] total_swap 1409024 [ 3338.946483][T19350] total_swapcached 0 [ 3338.950395][T19350] total_pgpgin 292181 [ 3338.954390][T19350] total_pgpgout 292181 [ 3338.958737][T19350] total_pgfault 543732 [ 3338.962829][T19350] total_pgmajfault 46332 [ 3338.968097][T19350] total_inactive_anon 0 [ 3338.972293][T19350] total_active_anon 0 [ 3338.976391][T19350] total_inactive_file 0 [ 3338.980568][T19350] total_active_file 0 [ 3338.984582][T19350] total_unevictable 0 [ 3338.988687][T19350] anon_cost 0 [ 3338.991995][T19350] file_cost 0 [ 3338.995482][T19350] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19350,uid=0 [ 3339.011028][T19350] Memory cgroup out of memory: Killed process 19350 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3339.035258][T18973] usb 3-1: new high-speed USB device number 75 using dummy_hcd 17:45:57 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x3800}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3339.325289][T18973] usb 3-1: Using ep0 maxpacket: 8 [ 3339.377336][T19352] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3339.387662][T19352] CPU: 0 PID: 19352 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3339.398118][T19352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3339.408216][T19352] Call Trace: [ 3339.411566][T19352] [ 3339.414531][T19352] dump_stack_lvl+0x1e7/0x2e0 [ 3339.419299][T19352] ? __pfx_dump_stack_lvl+0x10/0x10 17:45:57 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) 17:45:57 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000100)={0x2c, &(0x7f00000002c0)={0x20, 0x22, 0x7f, {0x7f, 0x23, "30ac31b7e9440c57f4fadec22c939deed701e30bf7becb8936a4dc76a198506b42e6ddb5ee0be1dc26f59015af42e1771de101e148b60374c7c3a6b222d5c3ecfe439c0165529e570716d80864e3fb03ff05a9442ed521d29fbc041ebfb26cb1b4489205e98ca7ea6280069ceb8a45b95bbad553f0b57b7f460f5b8c48"}}, &(0x7f0000000000)={0x0, 0x3, 0x4, @lang_id={0x4}}, &(0x7f0000000380)={0x0, 0xf, 0xd6, {0x5, 0xf, 0xd6, 0x3, [@generic={0xc2, 0x10, 0xb, "5b1e594f9e379d36d01164b8d3b6317d3e2c66c50fcd49df808700a3307a4d713ab7c50355d3eeccae038f29b0806e723b84a29c6056e12b99d3d382f1abdcf8e358f81b34d1380a664a6da907cab7373c48031d988cf50b9edc19b5dfebe6fad71c1001bcca294296653d12bf021b0a9fca8a9686fcd53d5fbb07c17a8989161151235473207703c7ce77cda9f72e8a620240ee7acc515fda8f1d3dc001a3ac4551caceebc7418d916c4a1315e2afa98f1d0f1abba9987d47f0c7a592ed7e"}, @ssp_cap={0xc, 0x10, 0xa, 0x8, 0x0, 0x100, 0xff00, 0x401}, @ptm_cap={0x3}]}}, &(0x7f0000000040)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3f, 0x60, 0xe, 0x3, "863250c4", "e38013d3"}}, &(0x7f00000000c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3, 0x80, 0x80, 0x5, 0x5, 0x1, 0x9}}}, &(0x7f0000000980)={0x84, &(0x7f0000000480)={0x20, 0x8, 0xfe, "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"}, &(0x7f00000005c0)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000600)={0x0, 0x8, 0x1, 0xf7}, &(0x7f0000000640)={0x20, 0x0, 0x4, {0x1}}, &(0x7f0000000680)={0x20, 0x0, 0x8, {0x0, 0x80, [0xf00f]}}, &(0x7f00000006c0)={0x40, 0x7, 0x2, 0x6}, &(0x7f0000000700)={0x40, 0x9, 0x1, 0xf0}, &(0x7f0000000740)={0x40, 0xb, 0x2, "c0ed"}, &(0x7f0000000780)={0x40, 0xf, 0x2, 0x6}, &(0x7f00000007c0)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000000800)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000840)={0x40, 0x19, 0x2, "9d6d"}, &(0x7f0000000880)={0x40, 0x1a, 0x2, 0x3}, &(0x7f00000008c0)={0x40, 0x1c, 0x1, 0x20}, &(0x7f0000000900)={0x40, 0x1e, 0x1, 0x40}, &(0x7f0000000940)={0x40, 0x21, 0x1, 0x5}}) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="000066000000660012f9811b036fbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d112ab4ec2e6c0f1baf92e8668be22701829d6364899a015b27fe103394714c2feb97d2882ad3bbc37d187b0c6243bf8c5861cc292033f45bbed6ea0f2054d4052b80ba990bf2352751b995071e6b2f436671681297c15f26d979a8a0be8e99c42c8fd7f29fe"], &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) (async) syz_usb_control_io(r0, &(0x7f0000000100)={0x2c, &(0x7f00000002c0)={0x20, 0x22, 0x7f, {0x7f, 0x23, "30ac31b7e9440c57f4fadec22c939deed701e30bf7becb8936a4dc76a198506b42e6ddb5ee0be1dc26f59015af42e1771de101e148b60374c7c3a6b222d5c3ecfe439c0165529e570716d80864e3fb03ff05a9442ed521d29fbc041ebfb26cb1b4489205e98ca7ea6280069ceb8a45b95bbad553f0b57b7f460f5b8c48"}}, &(0x7f0000000000)={0x0, 0x3, 0x4, @lang_id={0x4}}, &(0x7f0000000380)={0x0, 0xf, 0xd6, {0x5, 0xf, 0xd6, 0x3, [@generic={0xc2, 0x10, 0xb, "5b1e594f9e379d36d01164b8d3b6317d3e2c66c50fcd49df808700a3307a4d713ab7c50355d3eeccae038f29b0806e723b84a29c6056e12b99d3d382f1abdcf8e358f81b34d1380a664a6da907cab7373c48031d988cf50b9edc19b5dfebe6fad71c1001bcca294296653d12bf021b0a9fca8a9686fcd53d5fbb07c17a8989161151235473207703c7ce77cda9f72e8a620240ee7acc515fda8f1d3dc001a3ac4551caceebc7418d916c4a1315e2afa98f1d0f1abba9987d47f0c7a592ed7e"}, @ssp_cap={0xc, 0x10, 0xa, 0x8, 0x0, 0x100, 0xff00, 0x401}, @ptm_cap={0x3}]}}, &(0x7f0000000040)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3f, 0x60, 0xe, 0x3, "863250c4", "e38013d3"}}, &(0x7f00000000c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3, 0x80, 0x80, 0x5, 0x5, 0x1, 0x9}}}, &(0x7f0000000980)={0x84, &(0x7f0000000480)={0x20, 0x8, 0xfe, "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"}, &(0x7f00000005c0)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000600)={0x0, 0x8, 0x1, 0xf7}, &(0x7f0000000640)={0x20, 0x0, 0x4, {0x1}}, &(0x7f0000000680)={0x20, 0x0, 0x8, {0x0, 0x80, [0xf00f]}}, &(0x7f00000006c0)={0x40, 0x7, 0x2, 0x6}, &(0x7f0000000700)={0x40, 0x9, 0x1, 0xf0}, &(0x7f0000000740)={0x40, 0xb, 0x2, "c0ed"}, &(0x7f0000000780)={0x40, 0xf, 0x2, 0x6}, &(0x7f00000007c0)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000000800)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000840)={0x40, 0x19, 0x2, "9d6d"}, &(0x7f0000000880)={0x40, 0x1a, 0x2, 0x3}, &(0x7f00000008c0)={0x40, 0x1c, 0x1, 0x20}, &(0x7f0000000900)={0x40, 0x1e, 0x1, 0x40}, &(0x7f0000000940)={0x40, 0x21, 0x1, 0x5}}) (async) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="000066000000660012f9811b036fbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d112ab4ec2e6c0f1baf92e8668be22701829d6364899a015b27fe103394714c2feb97d2882ad3bbc37d187b0c6243bf8c5861cc292033f45bbed6ea0f2054d4052b80ba990bf2352751b995071e6b2f436671681297c15f26d979a8a0be8e99c42c8fd7f29fe"], &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) (async) [ 3339.424554][T19352] ? __pfx__printk+0x10/0x10 [ 3339.429188][T19352] ? ___ratelimit+0x4c4/0x670 [ 3339.433961][T19352] ? __pfx____ratelimit+0x10/0x10 [ 3339.439042][T19352] dump_header+0xda/0x6a0 [ 3339.443423][T19352] oom_kill_process+0x3a7/0x930 [ 3339.448327][T19352] out_of_memory+0xf67/0x1320 [ 3339.453048][T19352] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3339.458719][T19352] ? __pfx___mutex_lock+0x10/0x10 [ 3339.463791][T19352] ? __pfx_out_of_memory+0x10/0x10 [ 3339.468957][T19352] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3339.474540][T19352] ? __pfx_lock_release+0x10/0x10 [ 3339.479618][T19352] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3339.485730][T19352] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3339.490968][T19352] ? mem_cgroup_iter+0x422/0x560 [ 3339.495952][T19352] try_charge_memcg+0xda2/0x18a0 [ 3339.500954][T19352] ? __pfx_try_charge_memcg+0x10/0x10 [ 3339.506359][T19352] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3339.512113][T19352] ? __pfx_lock_release+0x10/0x10 [ 3339.517178][T19352] ? memcg_account_kmem+0x1e7/0x210 [ 3339.522414][T19352] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3339.528234][T19352] __memcg_kmem_charge_page+0xe1/0x250 [ 3339.533753][T19352] memcg_charge_kernel_stack+0x210/0x550 [ 3339.539403][T19352] dup_task_struct+0x40d/0x7d0 [ 3339.544176][T19352] copy_process+0x5d5/0x3fc0 [ 3339.545594][T18973] usb 3-1: unable to read config index 0 descriptor/start: -71 [ 3339.548784][T19352] ? __might_fault+0xa9/0x120 [ 3339.548816][T19352] ? __pfx_lock_release+0x10/0x10 [ 3339.565294][T18973] usb 3-1: can't read configurations, error -71 [ 3339.566071][T19352] ? __pfx_copy_process+0x10/0x10 [ 3339.577385][T19352] ? __might_fault+0xc5/0x120 [ 3339.582112][T19352] ? __asan_memset+0x23/0x50 [ 3339.586763][T19352] kernel_clone+0x21d/0x8d0 [ 3339.591298][T19352] ? __pfx_kernel_clone+0x10/0x10 [ 3339.596371][T19352] __se_sys_clone3+0x2cb/0x350 [ 3339.601177][T19352] ? __pfx___se_sys_clone3+0x10/0x10 [ 3339.606488][T19352] ? rcu_is_watching+0x15/0xb0 [ 3339.611327][T19352] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3339.617339][T19352] ? exc_page_fault+0x587/0x870 [ 3339.622207][T19352] ? do_syscall_64+0xb4/0x240 [ 3339.626928][T19352] do_syscall_64+0xf9/0x240 [ 3339.631453][T19352] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3339.637366][T19352] RIP: 0033:0x7f080fca9b99 [ 3339.641787][T19352] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3339.661490][T19352] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3339.669913][T19352] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3339.677896][T19352] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3339.685889][T19352] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3339.693897][T19352] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3339.701968][T19352] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3339.709985][T19352] [ 3339.731226][T19352] memory: usage 307200kB, limit 307200kB, failcnt 148098 [ 3339.738381][T19352] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3339.746451][T19352] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3339.753766][T19352] Memory cgroup stats for /syz0: [ 3339.753904][T19352] cache 0 [ 3339.761871][T19352] rss 0 [ 3339.764644][T19352] rss_huge 0 [ 3339.767930][T19352] shmem 0 [ 3339.770883][T19352] mapped_file 0 [ 3339.774349][T19352] dirty 0 [ 3339.777356][T19352] writeback 0 [ 3339.780666][T19352] workingset_refault_anon 48324 [ 3339.785602][T19352] workingset_refault_file 0 [ 3339.790113][T19352] swap 1327104 [ 3339.793482][T19352] swapcached 8192 [ 3339.797203][T19352] pgpgin 292334 [ 3339.800689][T19352] pgpgout 292332 [ 3339.804237][T19352] pgfault 543946 [ 3339.807878][T19352] pgmajfault 46460 [ 3339.811614][T19352] inactive_anon 0 [ 3339.815351][T19352] active_anon 4096 [ 3339.819097][T19352] inactive_file 0 [ 3339.822751][T19352] active_file 0 [ 3339.826753][T19352] unevictable 0 [ 3339.830283][T19352] hierarchical_memory_limit 314572800 [ 3339.837003][T19352] hierarchical_memsw_limit 9223372036854771712 [ 3339.843196][T19352] total_cache 0 [ 3339.849282][T19352] total_rss 0 [ 3339.852777][T19352] total_rss_huge 0 [ 3339.856995][T19352] total_shmem 0 [ 3339.860659][T19352] total_mapped_file 0 [ 3339.864738][T19352] total_dirty 0 [ 3339.868385][T19352] total_writeback 0 [ 3339.872262][T19352] total_workingset_refault_anon 48324 [ 3339.877869][T19352] total_workingset_refault_file 0 [ 3339.883013][T19352] total_swap 1327104 [ 3339.887053][T19352] total_swapcached 8192 [ 3339.891345][T19352] total_pgpgin 292334 [ 3339.895483][T19352] total_pgpgout 292332 [ 3339.899674][T19352] total_pgfault 543946 [ 3339.903835][T19352] total_pgmajfault 46460 [ 3339.911495][T19352] total_inactive_anon 0 [ 3339.916059][T19352] total_active_anon 4096 [ 3339.924441][T19352] total_inactive_file 0 [ 3339.931976][T19352] total_active_file 0 [ 3339.936316][T18973] usb 3-1: new high-speed USB device number 76 using dummy_hcd [ 3339.944028][T19352] total_unevictable 0 [ 3339.948854][T19352] anon_cost 0 [ 3339.952264][T19352] file_cost 0 [ 3339.955777][T19352] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19352,uid=0 17:45:58 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x3a00}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3339.971710][T19352] Memory cgroup out of memory: Killed process 19352 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3340.185224][T18973] usb 3-1: Using ep0 maxpacket: 8 [ 3340.295772][ T5100] Bluetooth: hci4: command 0x0406 tx timeout [ 3340.305528][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3340.325686][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3340.335934][T18973] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3340.345453][T18973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3340.366271][T18973] usb 3-1: config 0 descriptor?? [ 3340.513984][T19357] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3340.524564][T19357] CPU: 1 PID: 19357 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3340.534999][T19357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3340.545063][T19357] Call Trace: [ 3340.548349][T19357] [ 3340.551290][T19357] dump_stack_lvl+0x1e7/0x2e0 [ 3340.556022][T19357] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3340.561238][T19357] ? __pfx__printk+0x10/0x10 [ 3340.565862][T19357] ? ___ratelimit+0x4c4/0x670 [ 3340.570561][T19357] ? __pfx____ratelimit+0x10/0x10 [ 3340.575619][T19357] dump_header+0xda/0x6a0 [ 3340.579978][T19357] oom_kill_process+0x3a7/0x930 [ 3340.584865][T19357] out_of_memory+0xf67/0x1320 [ 3340.589557][T19357] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3340.595208][T19357] ? __pfx___mutex_lock+0x10/0x10 [ 3340.600337][T19357] ? __pfx_out_of_memory+0x10/0x10 [ 3340.605481][T19357] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3340.611070][T19357] ? __pfx_lock_release+0x10/0x10 [ 3340.616219][T19357] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3340.622323][T19357] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3340.627547][T19357] ? mem_cgroup_iter+0x422/0x560 [ 3340.632518][T19357] try_charge_memcg+0xda2/0x18a0 [ 3340.637514][T19357] ? __pfx_try_charge_memcg+0x10/0x10 [ 3340.642907][T19357] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3340.648658][T19357] ? __pfx_lock_release+0x10/0x10 [ 3340.653705][T19357] ? memcg_account_kmem+0x1e7/0x210 [ 3340.658929][T19357] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3340.664758][T19357] __memcg_kmem_charge_page+0xe1/0x250 [ 3340.670252][T19357] memcg_charge_kernel_stack+0x210/0x550 [ 3340.675929][T19357] dup_task_struct+0x15d/0x7d0 [ 3340.680717][T19357] copy_process+0x5d5/0x3fc0 [ 3340.685432][T19357] ? __might_fault+0xa9/0x120 [ 3340.690124][T19357] ? __pfx_lock_release+0x10/0x10 [ 3340.695197][T19357] ? __pfx_copy_process+0x10/0x10 [ 3340.700229][T19357] ? __might_fault+0xc5/0x120 [ 3340.704921][T19357] ? __asan_memset+0x23/0x50 [ 3340.709529][T19357] kernel_clone+0x21d/0x8d0 [ 3340.714049][T19357] ? __pfx_kernel_clone+0x10/0x10 [ 3340.719114][T19357] __se_sys_clone3+0x2cb/0x350 [ 3340.723927][T19357] ? __pfx___se_sys_clone3+0x10/0x10 [ 3340.729281][T19357] ? do_syscall_64+0x108/0x240 [ 3340.734087][T19357] ? do_syscall_64+0xb4/0x240 [ 3340.738804][T19357] do_syscall_64+0xf9/0x240 [ 3340.743357][T19357] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3340.749296][T19357] RIP: 0033:0x7f080fca9b99 [ 3340.753726][T19357] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3340.773362][T19357] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3340.781800][T19357] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3340.789785][T19357] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3340.797764][T19357] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3340.805766][T19357] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3340.813745][T19357] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3340.821738][T19357] [ 3340.837074][T19357] memory: usage 307200kB, limit 307200kB, failcnt 148612 [ 3340.847820][T19357] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3340.860264][T19357] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3340.872568][T19357] Memory cgroup stats for /syz0: [ 3340.872676][T19357] cache 0 [ 3340.882279][T19357] rss 0 [ 3340.885473][T19357] rss_huge 0 [ 3340.888840][T19357] shmem 0 [ 3340.891792][T19357] mapped_file 0 [ 3340.896278][T19357] dirty 0 [ 3340.899390][T19357] writeback 0 [ 3340.902752][T19357] workingset_refault_anon 48528 [ 3340.908584][T18973] usbhid 3-1:0.0: can't add hid device: -71 [ 3340.909225][T19357] workingset_refault_file 0 [ 3340.915086][T18973] usbhid: probe of 3-1:0.0 failed with error -71 [ 3340.928608][T18973] usb 3-1: USB disconnect, device number 76 [ 3340.934365][T19357] swap 1335296 [ 3340.939672][T19357] swapcached 0 [ 3340.943082][T19357] pgpgin 292549 [ 3340.960012][T19357] pgpgout 292549 [ 3340.963951][T19357] pgfault 544258 [ 3340.968177][T19357] pgmajfault 46649 [ 3340.972065][T19357] inactive_anon 0 [ 3340.976225][T19357] active_anon 0 [ 3340.979729][T19357] inactive_file 0 [ 3340.983386][T19357] active_file 0 [ 3340.986941][T19357] unevictable 0 [ 3340.990534][T19357] hierarchical_memory_limit 314572800 [ 3340.996008][T19357] hierarchical_memsw_limit 9223372036854771712 [ 3341.002286][T19357] total_cache 0 [ 3341.005875][T19357] total_rss 0 [ 3341.009198][T19357] total_rss_huge 0 [ 3341.012916][T19357] total_shmem 0 [ 3341.016459][T19357] total_mapped_file 0 [ 3341.020462][T19357] total_dirty 0 [ 3341.023945][T19357] total_writeback 0 [ 3341.028252][T19357] total_workingset_refault_anon 48528 [ 3341.033688][T19357] total_workingset_refault_file 0 [ 3341.039099][T19357] total_swap 1335296 [ 3341.043032][T19357] total_swapcached 0 [ 3341.047107][T19357] total_pgpgin 292549 [ 3341.051113][T19357] total_pgpgout 292549 [ 3341.055579][T19357] total_pgfault 544258 [ 3341.059679][T19357] total_pgmajfault 46649 [ 3341.063959][T19357] total_inactive_anon 0 [ 3341.068359][T19357] total_active_anon 0 [ 3341.072389][T19357] total_inactive_file 0 [ 3341.076697][T19357] total_active_file 0 [ 3341.080701][T19357] total_unevictable 0 [ 3341.084696][T19357] anon_cost 0 [ 3341.088107][T19357] file_cost 0 [ 3341.091415][T19357] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19357,uid=0 17:45:59 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x3f00}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3341.107812][T19357] Memory cgroup out of memory: Killed process 19357 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3341.416812][T19359] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3341.427096][T19359] CPU: 1 PID: 19359 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3341.437541][T19359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3341.447636][T19359] Call Trace: [ 3341.450928][T19359] [ 3341.453866][T19359] dump_stack_lvl+0x1e7/0x2e0 [ 3341.458568][T19359] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3341.463784][T19359] ? __pfx__printk+0x10/0x10 [ 3341.468387][T19359] ? ___ratelimit+0x4c4/0x670 [ 3341.473085][T19359] ? __pfx____ratelimit+0x10/0x10 [ 3341.478135][T19359] dump_header+0xda/0x6a0 [ 3341.482485][T19359] oom_kill_process+0x3a7/0x930 [ 3341.487358][T19359] out_of_memory+0xf67/0x1320 [ 3341.492166][T19359] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3341.497842][T19359] ? __pfx___mutex_lock+0x10/0x10 [ 3341.502893][T19359] ? __pfx_out_of_memory+0x10/0x10 [ 3341.508040][T19359] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3341.513606][T19359] ? __pfx_lock_release+0x10/0x10 [ 3341.518650][T19359] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3341.524738][T19359] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3341.529977][T19359] ? mem_cgroup_iter+0x422/0x560 [ 3341.534941][T19359] try_charge_memcg+0xda2/0x18a0 [ 3341.539915][T19359] ? __pfx_try_charge_memcg+0x10/0x10 [ 3341.545300][T19359] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3341.551033][T19359] ? __pfx_lock_release+0x10/0x10 [ 3341.556091][T19359] ? memcg_account_kmem+0x1e7/0x210 [ 3341.561332][T19359] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3341.567164][T19359] __memcg_kmem_charge_page+0xe1/0x250 [ 3341.572653][T19359] memcg_charge_kernel_stack+0x210/0x550 [ 3341.578309][T19359] dup_task_struct+0x15d/0x7d0 [ 3341.583089][T19359] copy_process+0x5d5/0x3fc0 [ 3341.587706][T19359] ? __might_fault+0xa9/0x120 [ 3341.592403][T19359] ? __pfx_lock_release+0x10/0x10 [ 3341.597460][T19359] ? __pfx_copy_process+0x10/0x10 [ 3341.602500][T19359] ? __might_fault+0xc5/0x120 [ 3341.607199][T19359] ? __asan_memset+0x23/0x50 [ 3341.611826][T19359] kernel_clone+0x21d/0x8d0 [ 3341.616482][T19359] ? __pfx_kernel_clone+0x10/0x10 [ 3341.621538][T19359] __se_sys_clone3+0x2cb/0x350 [ 3341.626362][T19359] ? __pfx___se_sys_clone3+0x10/0x10 [ 3341.631802][T19359] ? do_syscall_64+0x108/0x240 [ 3341.636592][T19359] ? do_syscall_64+0xb4/0x240 [ 3341.641313][T19359] do_syscall_64+0xf9/0x240 [ 3341.645849][T19359] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3341.651767][T19359] RIP: 0033:0x7f080fca9b99 [ 3341.656194][T19359] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3341.675936][T19359] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3341.684370][T19359] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3341.692403][T19359] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3341.700428][T19359] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3341.708414][T19359] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3341.716396][T19359] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3341.724392][T19359] [ 3341.735668][T19359] memory: usage 307200kB, limit 307200kB, failcnt 148957 [ 3341.742739][T19359] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3341.756069][T19359] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3341.763469][T19359] Memory cgroup stats for /syz0: [ 3341.763581][T19359] cache 0 [ 3341.772038][T19359] rss 12288 [ 3341.775459][T19359] rss_huge 0 [ 3341.778711][T19359] shmem 0 [ 3341.781724][T19359] mapped_file 0 [ 3341.785964][T19359] dirty 0 [ 3341.788932][T19359] writeback 0 [ 3341.792251][T19359] workingset_refault_anon 48679 [ 3341.797718][T19359] workingset_refault_file 0 [ 3341.802312][T19359] swap 1359872 [ 3341.806429][T19359] swapcached 8192 [ 3341.810111][T19359] pgpgin 292718 [ 3341.813760][T19359] pgpgout 292715 [ 3341.815659][T15001] usb 3-1: new high-speed USB device number 77 using dummy_hcd [ 3341.818076][T19359] pgfault 544499 [ 3341.828813][T19359] pgmajfault 46784 [ 3341.832558][T19359] inactive_anon 0 [ 3341.845558][T19359] active_anon 12288 [ 3341.849405][T19359] inactive_file 0 [ 3341.853045][T19359] active_file 0 [ 3341.868259][T19359] unevictable 0 [ 3341.871732][T19359] hierarchical_memory_limit 314572800 [ 3341.880520][T19359] hierarchical_memsw_limit 9223372036854771712 [ 3341.892166][T19359] total_cache 0 [ 3341.903208][T19359] total_rss 12288 [ 3341.907155][T19359] total_rss_huge 0 [ 3341.910910][T19359] total_shmem 0 [ 3341.914592][T19359] total_mapped_file 0 [ 3341.918699][T19359] total_dirty 0 [ 3341.922181][T19359] total_writeback 0 [ 3341.926101][T19359] total_workingset_refault_anon 48679 [ 3341.931502][T19359] total_workingset_refault_file 0 [ 3341.940747][T19359] total_swap 1359872 [ 3341.944691][T19359] total_swapcached 8192 [ 3341.949054][T19359] total_pgpgin 292718 [ 3341.953070][T19359] total_pgpgout 292715 [ 3341.957218][T19359] total_pgfault 544499 [ 3341.961319][T19359] total_pgmajfault 46784 [ 3341.965730][T19359] total_inactive_anon 0 [ 3341.969910][T19359] total_active_anon 12288 [ 3341.974255][T19359] total_inactive_file 0 [ 3341.978626][T19359] total_active_file 0 [ 3341.982642][T19359] total_unevictable 0 [ 3342.001219][T19359] anon_cost 0 [ 3342.004541][T19359] file_cost 0 17:46:00 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x4000}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3342.008083][T19359] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19359,uid=0 [ 3342.023804][T19359] Memory cgroup out of memory: Killed process 19359 (syz-executor.0) total-vm:54508kB, anon-rss:356kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3342.077923][T15001] usb 3-1: Using ep0 maxpacket: 8 [ 3342.225448][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3342.248508][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3342.273758][T15001] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3342.291454][T15001] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3342.316225][T15001] usb 3-1: config 0 descriptor?? 17:46:00 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) syz_usb_disconnect(0xffffffffffffffff) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) 17:46:00 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io(r0, &(0x7f0000000100)={0x2c, &(0x7f00000002c0)={0x20, 0x22, 0x7f, {0x7f, 0x23, "30ac31b7e9440c57f4fadec22c939deed701e30bf7becb8936a4dc76a198506b42e6ddb5ee0be1dc26f59015af42e1771de101e148b60374c7c3a6b222d5c3ecfe439c0165529e570716d80864e3fb03ff05a9442ed521d29fbc041ebfb26cb1b4489205e98ca7ea6280069ceb8a45b95bbad553f0b57b7f460f5b8c48"}}, &(0x7f0000000000)={0x0, 0x3, 0x4, @lang_id={0x4}}, &(0x7f0000000380)={0x0, 0xf, 0xd6, {0x5, 0xf, 0xd6, 0x3, [@generic={0xc2, 0x10, 0xb, "5b1e594f9e379d36d01164b8d3b6317d3e2c66c50fcd49df808700a3307a4d713ab7c50355d3eeccae038f29b0806e723b84a29c6056e12b99d3d382f1abdcf8e358f81b34d1380a664a6da907cab7373c48031d988cf50b9edc19b5dfebe6fad71c1001bcca294296653d12bf021b0a9fca8a9686fcd53d5fbb07c17a8989161151235473207703c7ce77cda9f72e8a620240ee7acc515fda8f1d3dc001a3ac4551caceebc7418d916c4a1315e2afa98f1d0f1abba9987d47f0c7a592ed7e"}, @ssp_cap={0xc, 0x10, 0xa, 0x8, 0x0, 0x100, 0xff00, 0x401}, @ptm_cap={0x3}]}}, &(0x7f0000000040)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3f, 0x60, 0xe, 0x3, "863250c4", "e38013d3"}}, &(0x7f00000000c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3, 0x80, 0x80, 0x5, 0x5, 0x1, 0x9}}}, &(0x7f0000000980)={0x84, &(0x7f0000000480)={0x20, 0x8, 0xfe, "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"}, &(0x7f00000005c0)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000600)={0x0, 0x8, 0x1, 0xf7}, &(0x7f0000000640)={0x20, 0x0, 0x4, {0x1}}, &(0x7f0000000680)={0x20, 0x0, 0x8, {0x0, 0x80, [0xf00f]}}, &(0x7f00000006c0)={0x40, 0x7, 0x2, 0x6}, &(0x7f0000000700)={0x40, 0x9, 0x1, 0xf0}, &(0x7f0000000740)={0x40, 0xb, 0x2, "c0ed"}, &(0x7f0000000780)={0x40, 0xf, 0x2, 0x6}, &(0x7f00000007c0)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000000800)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000840)={0x40, 0x19, 0x2, "9d6d"}, &(0x7f0000000880)={0x40, 0x1a, 0x2, 0x3}, &(0x7f00000008c0)={0x40, 0x1c, 0x1, 0x20}, &(0x7f0000000900)={0x40, 0x1e, 0x1, 0x40}, &(0x7f0000000940)={0x40, 0x21, 0x1, 0x5}}) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="000066000000660012f9811b036fbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d112ab4ec2e6c0f1baf92e8668be22701829d6364899a015b27fe103394714c2feb97d2882ad3bbc37d187b0c6243bf8c5861cc292033f45bbed6ea0f2054d4052b80ba990bf2352751b995071e6b2f436671681297c15f26d979a8a0be8e99c42c8fd7f29fe"], &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) (async) syz_usb_control_io(r0, &(0x7f0000000100)={0x2c, &(0x7f00000002c0)={0x20, 0x22, 0x7f, {0x7f, 0x23, "30ac31b7e9440c57f4fadec22c939deed701e30bf7becb8936a4dc76a198506b42e6ddb5ee0be1dc26f59015af42e1771de101e148b60374c7c3a6b222d5c3ecfe439c0165529e570716d80864e3fb03ff05a9442ed521d29fbc041ebfb26cb1b4489205e98ca7ea6280069ceb8a45b95bbad553f0b57b7f460f5b8c48"}}, &(0x7f0000000000)={0x0, 0x3, 0x4, @lang_id={0x4}}, &(0x7f0000000380)={0x0, 0xf, 0xd6, {0x5, 0xf, 0xd6, 0x3, [@generic={0xc2, 0x10, 0xb, "5b1e594f9e379d36d01164b8d3b6317d3e2c66c50fcd49df808700a3307a4d713ab7c50355d3eeccae038f29b0806e723b84a29c6056e12b99d3d382f1abdcf8e358f81b34d1380a664a6da907cab7373c48031d988cf50b9edc19b5dfebe6fad71c1001bcca294296653d12bf021b0a9fca8a9686fcd53d5fbb07c17a8989161151235473207703c7ce77cda9f72e8a620240ee7acc515fda8f1d3dc001a3ac4551caceebc7418d916c4a1315e2afa98f1d0f1abba9987d47f0c7a592ed7e"}, @ssp_cap={0xc, 0x10, 0xa, 0x8, 0x0, 0x100, 0xff00, 0x401}, @ptm_cap={0x3}]}}, &(0x7f0000000040)={0x20, 0x29, 0xf, {0xf, 0x29, 0x3f, 0x60, 0xe, 0x3, "863250c4", "e38013d3"}}, &(0x7f00000000c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x3, 0x80, 0x80, 0x5, 0x5, 0x1, 0x9}}}, &(0x7f0000000980)={0x84, &(0x7f0000000480)={0x20, 0x8, 0xfe, "fe7388df85d5e1a398461b0d6e4d6ee6ee6c2c3b9063a74e065196d75394582df60447de1b912ac45f79f312c5ec284f661e3a65322d0abd1dbd1def26ffa8f8909a38846a05e57a67ededd9e33e13d025e74d28893c1af84c2aa8b480d6c969ca5ccce43343c978e268c83f8faa23c1c918c217f6e144cd722aa848a9ea3fef0d4e4af7e9dfca73aac3e71b036c4346697a9ab2d6b5b4248f7334459e12cc39b459877b42bb55c6a20646d0663dd6ac83a25d2163505df001df1fd03e08ff2d473a0a6214681557b76cfab5a6ea2160226d1e6c0318b6260376fafa136a5bc612a76c1217c94ecc7bc96106c01bee2ebc10f6630d1dc0ab1bec2727a101"}, &(0x7f00000005c0)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000600)={0x0, 0x8, 0x1, 0xf7}, &(0x7f0000000640)={0x20, 0x0, 0x4, {0x1}}, &(0x7f0000000680)={0x20, 0x0, 0x8, {0x0, 0x80, [0xf00f]}}, &(0x7f00000006c0)={0x40, 0x7, 0x2, 0x6}, &(0x7f0000000700)={0x40, 0x9, 0x1, 0xf0}, &(0x7f0000000740)={0x40, 0xb, 0x2, "c0ed"}, &(0x7f0000000780)={0x40, 0xf, 0x2, 0x6}, &(0x7f00000007c0)={0x40, 0x13, 0x6, @broadcast}, &(0x7f0000000800)={0x40, 0x17, 0x6, @remote}, &(0x7f0000000840)={0x40, 0x19, 0x2, "9d6d"}, &(0x7f0000000880)={0x40, 0x1a, 0x2, 0x3}, &(0x7f00000008c0)={0x40, 0x1c, 0x1, 0x20}, &(0x7f0000000900)={0x40, 0x1e, 0x1, 0x40}, &(0x7f0000000940)={0x40, 0x21, 0x1, 0x5}}) (async) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="000066000000660012f9811b036fbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d112ab4ec2e6c0f1baf92e8668be22701829d6364899a015b27fe103394714c2feb97d2882ad3bbc37d187b0c6243bf8c5861cc292033f45bbed6ea0f2054d4052b80ba990bf2352751b995071e6b2f436671681297c15f26d979a8a0be8e99c42c8fd7f29fe"], &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) (async) [ 3342.606100][T15001] usbhid 3-1:0.0: can't add hid device: -71 [ 3342.612238][T15001] usbhid: probe of 3-1:0.0 failed with error -71 [ 3342.647169][T19361] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3342.650080][T15001] usb 3-1: USB disconnect, device number 77 [ 3342.673841][T19361] CPU: 1 PID: 19361 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3342.684314][T19361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3342.694392][T19361] Call Trace: [ 3342.697678][T19361] [ 3342.700612][T19361] dump_stack_lvl+0x1e7/0x2e0 [ 3342.705354][T19361] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3342.710601][T19361] ? __pfx__printk+0x10/0x10 [ 3342.715225][T19361] ? ___ratelimit+0x4c4/0x670 [ 3342.719933][T19361] ? __pfx____ratelimit+0x10/0x10 [ 3342.724981][T19361] dump_header+0xda/0x6a0 [ 3342.729363][T19361] oom_kill_process+0x3a7/0x930 [ 3342.734315][T19361] out_of_memory+0xf67/0x1320 [ 3342.739060][T19361] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3342.744720][T19361] ? __pfx___mutex_lock+0x10/0x10 [ 3342.749752][T19361] ? __pfx_out_of_memory+0x10/0x10 [ 3342.754973][T19361] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3342.760546][T19361] ? __pfx_lock_release+0x10/0x10 [ 3342.765583][T19361] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3342.771696][T19361] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3342.776940][T19361] ? mem_cgroup_iter+0x422/0x560 [ 3342.782090][T19361] try_charge_memcg+0xda2/0x18a0 [ 3342.787130][T19361] ? __pfx_try_charge_memcg+0x10/0x10 [ 3342.792549][T19361] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3342.798297][T19361] ? __pfx_lock_release+0x10/0x10 [ 3342.803362][T19361] ? memcg_account_kmem+0x1e7/0x210 [ 3342.808576][T19361] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3342.814409][T19361] __memcg_kmem_charge_page+0xe1/0x250 [ 3342.819901][T19361] memcg_charge_kernel_stack+0x210/0x550 [ 3342.825602][T19361] dup_task_struct+0x15d/0x7d0 [ 3342.830401][T19361] copy_process+0x5d5/0x3fc0 [ 3342.835028][T19361] ? __might_fault+0xa9/0x120 [ 3342.839730][T19361] ? __pfx_lock_release+0x10/0x10 [ 3342.844771][T19361] ? __pfx_copy_process+0x10/0x10 [ 3342.849800][T19361] ? __might_fault+0xc5/0x120 [ 3342.854501][T19361] ? __asan_memset+0x23/0x50 [ 3342.859099][T19361] kernel_clone+0x21d/0x8d0 [ 3342.863606][T19361] ? __pfx_kernel_clone+0x10/0x10 [ 3342.868652][T19361] __se_sys_clone3+0x2cb/0x350 [ 3342.873420][T19361] ? __pfx___se_sys_clone3+0x10/0x10 [ 3342.878716][T19361] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3342.884712][T19361] ? exc_page_fault+0x587/0x870 [ 3342.889581][T19361] ? do_syscall_64+0xb4/0x240 [ 3342.894280][T19361] do_syscall_64+0xf9/0x240 [ 3342.898807][T19361] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3342.904708][T19361] RIP: 0033:0x7f080fca9b99 [ 3342.909119][T19361] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3342.928723][T19361] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3342.937135][T19361] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3342.945115][T19361] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3342.953101][T19361] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3342.961070][T19361] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3342.969039][T19361] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3342.977065][T19361] [ 3342.981429][T19361] memory: usage 307200kB, limit 307200kB, failcnt 149511 [ 3342.988938][T19361] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3342.997004][T19361] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3343.004454][T19361] Memory cgroup stats for /syz0: [ 3343.004598][T19361] cache 0 [ 3343.012709][T19361] rss 0 [ 3343.015648][T19361] rss_huge 0 [ 3343.018991][T19361] shmem 0 [ 3343.022004][T19361] mapped_file 0 [ 3343.025635][T19361] dirty 0 [ 3343.028623][T19361] writeback 0 [ 3343.031940][T19361] workingset_refault_anon 48857 [ 3343.036922][T19361] workingset_refault_file 0 [ 3343.041454][T19361] swap 1335296 [ 3343.044823][T19361] swapcached 0 [ 3343.048284][T19361] pgpgin 292962 [ 3343.051761][T19361] pgpgout 292962 [ 3343.055366][T19361] pgfault 544856 [ 3343.056403][T15001] usb 3-1: new high-speed USB device number 78 using dummy_hcd [ 3343.058965][T19361] pgmajfault 46956 [ 3343.058978][T19361] inactive_anon 0 [ 3343.058987][T19361] active_anon 0 [ 3343.077653][T19361] inactive_file 0 [ 3343.081308][T19361] active_file 0 [ 3343.084779][T19361] unevictable 0 [ 3343.088428][T19361] hierarchical_memory_limit 314572800 [ 3343.093799][T19361] hierarchical_memsw_limit 9223372036854771712 [ 3343.100832][T19361] total_cache 0 [ 3343.104307][T19361] total_rss 0 [ 3343.107882][T19361] total_rss_huge 0 [ 3343.111635][T19361] total_shmem 0 [ 3343.115458][T19361] total_mapped_file 0 [ 3343.119468][T19361] total_dirty 0 [ 3343.122944][T19361] total_writeback 0 [ 3343.127166][T19361] total_workingset_refault_anon 48857 [ 3343.132620][T19361] total_workingset_refault_file 0 [ 3343.137901][T19361] total_swap 1335296 [ 3343.141824][T19361] total_swapcached 0 [ 3343.145974][T19361] total_pgpgin 292962 [ 3343.149988][T19361] total_pgpgout 292962 [ 3343.154064][T19361] total_pgfault 544856 [ 3343.160258][T19361] total_pgmajfault 46956 [ 3343.164521][T19361] total_inactive_anon 0 [ 3343.168976][T19361] total_active_anon 0 [ 3343.172981][T19361] total_inactive_file 0 [ 3343.177820][T19361] total_active_file 0 [ 3343.181825][T19361] total_unevictable 0 [ 3343.186538][T19361] anon_cost 0 [ 3343.189843][T19361] file_cost 0 17:46:01 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x4804}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3343.193123][T19361] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19361,uid=0 [ 3343.209188][T19361] Memory cgroup out of memory: Killed process 19361 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3343.378133][T15001] usb 3-1: Using ep0 maxpacket: 8 [ 3343.512442][T19367] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3343.522998][T19367] CPU: 1 PID: 19367 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3343.525984][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3343.533434][T19367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3343.552931][T15001] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3343.554313][T19367] Call Trace: [ 3343.554326][T19367] [ 3343.564132][T15001] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3343.567298][T19367] dump_stack_lvl+0x1e7/0x2e0 [ 3343.567344][T19367] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3343.570257][T15001] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3343.579253][T19367] ? __pfx__printk+0x10/0x10 [ 3343.579281][T19367] ? ___ratelimit+0x4c4/0x670 [ 3343.579312][T19367] ? __pfx____ratelimit+0x10/0x10 [ 3343.579343][T19367] dump_header+0xda/0x6a0 [ 3343.579375][T19367] oom_kill_process+0x3a7/0x930 [ 3343.579405][T19367] out_of_memory+0xf67/0x1320 [ 3343.579436][T19367] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3343.579462][T19367] ? __pfx___mutex_lock+0x10/0x10 [ 3343.579487][T19367] ? __pfx_out_of_memory+0x10/0x10 [ 3343.579522][T19367] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3343.579547][T19367] ? __pfx_lock_release+0x10/0x10 [ 3343.579578][T19367] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3343.579607][T19367] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3343.579651][T19367] ? mem_cgroup_iter+0x422/0x560 [ 3343.587775][T15001] usb 3-1: config 0 descriptor?? [ 3343.589497][T19367] try_charge_memcg+0xda2/0x18a0 [ 3343.678091][T19367] ? __pfx_try_charge_memcg+0x10/0x10 [ 3343.683510][T19367] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3343.689273][T19367] ? __pfx_lock_release+0x10/0x10 [ 3343.694338][T19367] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3343.700150][T19367] __memcg_kmem_charge_page+0xe1/0x250 [ 3343.705634][T19367] memcg_charge_kernel_stack+0xa7/0x550 [ 3343.711187][T19367] dup_task_struct+0x40d/0x7d0 [ 3343.715956][T19367] copy_process+0x5d5/0x3fc0 [ 3343.720555][T19367] ? __might_fault+0xa9/0x120 [ 3343.725247][T19367] ? __pfx_lock_release+0x10/0x10 [ 3343.730416][T19367] ? __pfx_copy_process+0x10/0x10 [ 3343.735485][T19367] ? __might_fault+0xc5/0x120 [ 3343.740184][T19367] ? __asan_memset+0x23/0x50 [ 3343.744825][T19367] kernel_clone+0x21d/0x8d0 [ 3343.749347][T19367] ? __pfx_kernel_clone+0x10/0x10 [ 3343.754385][T19367] __se_sys_clone3+0x2cb/0x350 [ 3343.759153][T19367] ? __pfx___se_sys_clone3+0x10/0x10 [ 3343.764449][T19367] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3343.770454][T19367] ? exc_page_fault+0x587/0x870 [ 3343.775354][T19367] ? do_syscall_64+0xb4/0x240 [ 3343.780076][T19367] do_syscall_64+0xf9/0x240 [ 3343.784623][T19367] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3343.790543][T19367] RIP: 0033:0x7f080fca9b99 [ 3343.794971][T19367] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3343.814606][T19367] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3343.823056][T19367] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3343.831039][T19367] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3343.839032][T19367] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3343.847017][T19367] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3343.854986][T19367] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3343.862969][T19367] [ 3343.866969][T19367] memory: usage 307200kB, limit 307200kB, failcnt 149823 [ 3343.886476][T19367] memory+swap: usage 308528kB, limit 9007199254740988kB, failcnt 0 [ 3343.895632][T19367] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3343.903429][T19367] Memory cgroup stats for /syz0: [ 3343.903584][T19367] cache 0 [ 3343.912332][T19367] rss 12288 [ 3343.916421][T19367] rss_huge 0 [ 3343.919740][T19367] shmem 0 [ 3343.922783][T19367] mapped_file 0 [ 3343.926557][T19367] dirty 0 [ 3343.929515][T19367] writeback 0 [ 3343.932809][T19367] workingset_refault_anon 49002 [ 3343.938031][T19367] workingset_refault_file 0 [ 3343.942564][T19367] swap 1359872 [ 3343.946118][T19367] swapcached 8192 [ 3343.949776][T19367] pgpgin 293119 [ 3343.953246][T19367] pgpgout 293116 [ 3343.957159][T19367] pgfault 545078 [ 3343.960735][T19367] pgmajfault 47095 [ 3343.964472][T19367] inactive_anon 0 [ 3343.968221][T19367] active_anon 12288 [ 3343.972055][T19367] inactive_file 0 [ 3343.976200][T15001] usbhid 3-1:0.0: can't add hid device: -71 [ 3343.982242][T15001] usbhid: probe of 3-1:0.0 failed with error -71 [ 3343.990702][T15001] usb 3-1: USB disconnect, device number 78 [ 3343.997695][T19367] active_file 0 [ 3344.001327][T19367] unevictable 0 [ 3344.004939][T19367] hierarchical_memory_limit 314572800 [ 3344.010956][T19367] hierarchical_memsw_limit 9223372036854771712 [ 3344.017433][T19367] total_cache 0 [ 3344.021043][T19367] total_rss 12288 [ 3344.024818][T19367] total_rss_huge 0 [ 3344.028836][T19367] total_shmem 0 [ 3344.032457][T19367] total_mapped_file 0 [ 3344.037084][T19367] total_dirty 0 [ 3344.044111][T19367] total_writeback 0 [ 3344.051343][T19367] total_workingset_refault_anon 49002 [ 3344.057296][T19367] total_workingset_refault_file 0 [ 3344.062465][T19367] total_swap 1359872 [ 3344.066622][T19367] total_swapcached 8192 [ 3344.070882][T19367] total_pgpgin 293119 [ 3344.074958][T19367] total_pgpgout 293116 [ 3344.080757][T19367] total_pgfault 545078 [ 3344.084977][T19367] total_pgmajfault 47095 [ 3344.089624][T19367] total_inactive_anon 0 [ 3344.093934][T19367] total_active_anon 12288 [ 3344.098539][T19367] total_inactive_file 0 [ 3344.102796][T19367] total_active_file 0 [ 3344.107236][T19367] total_unevictable 0 [ 3344.111368][T19367] anon_cost 0 [ 3344.114999][T19367] file_cost 0 [ 3344.118506][T19367] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19367,uid=0 [ 3344.134183][T19367] Memory cgroup out of memory: Killed process 19367 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:02 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x4a01}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3344.497940][T19368] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3344.523652][T19368] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3344.603016][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3344.614854][ T5110] CPU: 0 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3344.625230][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3344.635411][ T5110] Call Trace: [ 3344.639069][ T5110] [ 3344.642043][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3344.646787][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3344.652023][ T5110] ? __pfx__printk+0x10/0x10 [ 3344.656633][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3344.661375][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3344.666425][ T5110] dump_header+0xda/0x6a0 [ 3344.670784][ T5110] oom_kill_process+0x3a7/0x930 [ 3344.675659][ T5110] out_of_memory+0xf67/0x1320 [ 3344.680372][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3344.686057][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3344.691152][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3344.696325][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3344.701903][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3344.706960][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3344.713076][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3344.718306][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3344.723278][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3344.728242][ T5110] ? mark_lock+0x9a/0x350 [ 3344.732602][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3344.738025][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3344.744210][ T5110] charge_memcg+0xa2/0x160 [ 3344.748664][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3344.754764][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3344.760249][ T5110] ? mark_lock+0x9a/0x350 [ 3344.764618][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3344.770621][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3344.776039][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3344.781972][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3344.787027][ T5110] ? xas_descend+0x37e/0x470 [ 3344.791653][ T5110] swapin_readahead+0x1ea/0x1070 [ 3344.796609][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3344.801778][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3344.807208][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3344.812536][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3344.817844][ T5110] do_swap_page+0x791/0x3f40 [ 3344.822500][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3344.827306][ T5110] ? do_swap_page+0x154/0x3f40 [ 3344.832093][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3344.837152][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3344.842646][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3344.848491][ T5110] ? __pfx_validate_chain+0x10/0x10 [ 3344.853734][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3344.858911][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3344.864404][ T5110] ? mt_find+0x226/0x850 [ 3344.868664][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3344.873715][ T5110] ? mt_find+0x62d/0x850 [ 3344.877980][ T5110] ? mt_find+0x226/0x850 [ 3344.882277][ T5110] ? find_vma+0x142/0x1c0 [ 3344.886649][ T5110] ? __pfx_find_vma+0x10/0x10 [ 3344.891353][ T5110] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3344.897365][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3344.902162][ T5110] exc_page_fault+0x2ad/0x870 [ 3344.906880][ T5110] asm_exc_page_fault+0x26/0x30 [ 3344.911752][ T5110] RIP: 0010:__get_user_8+0x11/0x20 [ 3344.916886][ T5110] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3344.936532][ T5110] RSP: 0018:ffffc90003b0fd98 EFLAGS: 00050202 [ 3344.942625][ T5110] RAX: 0000555556ab4da8 RBX: ffff88807cdd6e78 RCX: ffffc90003b0fc03 [ 3344.950602][ T5110] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0 [ 3344.958590][ T5110] RBP: ffffc90003b0fec8 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d [ 3344.966591][ T5110] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b0fda0 [ 3344.974588][ T5110] R13: ffffc90003b0ffd8 R14: dffffc0000000000 R15: ffff88807cdd5940 [ 3344.982596][ T5110] __rseq_handle_notify_resume+0x158/0x1490 [ 3344.988553][ T5110] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3344.994900][ T5110] ? syscall_exit_to_user_mode+0xa2/0x360 [ 3345.000705][ T5110] syscall_exit_to_user_mode+0x113/0x360 [ 3345.006393][ T5110] do_syscall_64+0x108/0x240 [ 3345.011045][ T5110] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3345.016968][ T5110] RIP: 0033:0x7f080fca91b5 [ 3345.021426][ T5110] Code: 24 0c 89 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 <44> 89 c7 48 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 [ 3345.041074][ T5110] RSP: 002b:00007f080fecfcf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6 [ 3345.049519][ T5110] RAX: 0000000000000000 RBX: 000000000000434b RCX: 00007f080fca91b5 [ 3345.057508][ T5110] RDX: 00007f080fecfd30 RSI: 0000000000000000 RDI: 0000000000000000 [ 3345.065512][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000000 R09: 00007ffde33aa0b0 [ 3345.073506][ T5110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3345.081486][ T5110] R13: 000000000033075a R14: 000000000033075a R15: 0000000000000000 [ 3345.089491][ T5110] [ 3345.107001][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 150312 [ 3345.114241][ T5110] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3345.122290][ T5110] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3345.129777][ T5110] Memory cgroup stats for /syz0: [ 3345.129924][ T5110] cache 0 [ 3345.142585][ T5110] rss 0 [ 3345.148781][ T5110] rss_huge 0 [ 3345.152071][ T5110] shmem 0 [ 3345.155063][ T5110] mapped_file 0 [ 3345.158672][ T5110] dirty 0 [ 3345.161689][ T5110] writeback 0 [ 3345.165026][ T5110] workingset_refault_anon 49183 [ 3345.170069][ T5110] workingset_refault_file 0 [ 3345.174664][ T5110] swap 1335296 [ 3345.179027][ T5110] swapcached 0 [ 3345.182505][ T5110] pgpgin 293311 [ 3345.186197][ T5110] pgpgout 293311 [ 3345.189857][ T5110] pgfault 545354 [ 3345.193472][ T5110] pgmajfault 47260 [ 3345.199121][ T5110] inactive_anon 0 [ 3345.203403][ T5110] active_anon 0 [ 3345.207543][ T5110] inactive_file 0 [ 3345.211346][ T5110] active_file 0 [ 3345.214966][ T5110] unevictable 0 [ 3345.219187][ T5110] hierarchical_memory_limit 314572800 [ 3345.224711][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3345.231590][ T5110] total_cache 0 [ 3345.235481][ T5110] total_rss 0 [ 3345.238901][ T5110] total_rss_huge 0 [ 3345.242769][ T5110] total_shmem 0 [ 3345.246453][ T5110] total_mapped_file 0 [ 3345.250812][ T5110] total_dirty 0 [ 3345.254311][ T5110] total_writeback 0 [ 3345.258779][ T8615] usb 3-1: new high-speed USB device number 79 using dummy_hcd [ 3345.259144][ T5110] total_workingset_refault_anon 49183 [ 3345.271845][ T5110] total_workingset_refault_file 0 [ 3345.277060][ T5110] total_swap 1335296 [ 3345.280979][ T5110] total_swapcached 0 [ 3345.284932][ T5110] total_pgpgin 293311 [ 3345.289266][ T5110] total_pgpgout 293311 [ 3345.293416][ T5110] total_pgfault 545354 [ 3345.298041][ T5110] total_pgmajfault 47260 [ 3345.302395][ T5110] total_inactive_anon 0 [ 3345.306788][ T5110] total_active_anon 0 [ 3345.310841][ T5110] total_inactive_file 0 [ 3345.315064][ T5110] total_active_file 0 [ 3345.319762][ T5110] total_unevictable 0 [ 3345.323859][ T5110] anon_cost 0 [ 3345.327529][ T5110] file_cost 0 [ 3345.330923][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19369,uid=0 [ 3345.347427][ T5110] Memory cgroup out of memory: Killed process 19369 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:03 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x4c04}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3345.506241][ T8615] usb 3-1: Using ep0 maxpacket: 8 17:46:03 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) r1 = syz_usb_connect$cdc_ecm(0x6, 0x8b, &(0x7f0000001080)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x79, 0x1, 0x1, 0x7, 0xa0, 0x3, [{{0x9, 0x4, 0x0, 0x6, 0x3, 0x2, 0x6, 0x0, 0x81, {{0x6, 0x24, 0x6, 0x0, 0x0, "dd"}, {0x5, 0x24, 0x0, 0x100}, {0xd, 0x24, 0xf, 0x1, 0x400, 0x8426, 0x5, 0x1}, [@call_mgmt={0x5, 0x24, 0x1, 0x3, 0x27}, @network_terminal={0x7, 0x24, 0xa, 0xe0, 0x28, 0x1, 0x28}, @dmm={0x7, 0x24, 0x14, 0x1f, 0x7}, @mbim={0xc, 0x24, 0x1b, 0x81, 0xd0, 0x1, 0x0, 0xfffe, 0x9}, @mdlm={0x15, 0x24, 0x12, 0x401}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x4, 0x4, 0x1}}], {{0x9, 0x5, 0x82, 0x2, 0x40, 0x9, 0x4, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0xd0d6d0dc4dd1d549, 0x0, 0xc7, 0x5}}}}}]}}]}}, &(0x7f0000001400)={0xa, &(0x7f0000001140)={0xa, 0x6, 0x110, 0x3, 0x5, 0x1, 0x10, 0x4}, 0x19, &(0x7f0000001180)={0x5, 0xf, 0x19, 0x2, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x0, 0x9, 0x7f, 0x5}, @generic={0xa, 0x10, 0x4, "70660e2e39fb15"}]}, 0x4, [{0xf1, &(0x7f00000011c0)=@string={0xf1, 0x3, "ce28a03885c064879a7e90a767b1ba885f05157b66bcefb5aae35cc4596fe1121a710e6d8bd55263dd5c28b93b2427331dec26b055ddb3367448faa114b078ee532982a29dab89dbd5c3721fe1994ff99396ec7cb3acc3a84c243baceba8bb6d8632669c5c3220e779fe32916e42c9193be02232faaf60313a4e5fb4b7ee0b6681449510f4979f293b762c66416b095d21d8f0556f1846aae415ad31f0039cfdc38243cc8b6d07ec0c1700ffbda184d7a6b4c2b9a581eadf4717b7f2f1f4a902d3a805e0a79ea920b9c4aaa32f1e74a9615bfa3f747fba3896aee03ac905af19dffda360187b2ed15ffe133ba77276"}}, {0x7, &(0x7f00000012c0)=@string={0x7, 0x3, "faccb8d5e4"}}, {0x13, &(0x7f0000001300)=@string={0x13, 0x3, "5d274f62416bfdee9fb4585d89915bcf5e"}}, {0x93, &(0x7f0000001340)=@string={0x93, 0x3, "796ab91473ff20a1ec705dd7bf6e01b521cef0f00e6d7767122e2155e1c26ea30d2f94ee2328061d2b85fb875943652600539c3287f83acb77b670c01bb8720dec07082658d53f51fe85354065ec16b14517990ef84939ec6cc71898528e579b590bb022028ed2a9d2458782b19c9ede24b828d21c3492f5ee83d5ac665b70f2ce9c7f7979c3262fde41263e3ccdfaa473"}}]}) syz_usb_control_io(r1, &(0x7f0000001700)={0x2c, &(0x7f0000001480)={0x40, 0x5, 0x97, {0x97, 0x0, "271f333176def6089629aa8f59679f08d009659c20986e2d8f78203534b773cf8efe86ed1b7848e4362c5d39305b69d20b33ea1900837d28a0b189763f9097b0eb2a2d26efa14fc533db4755f049f2df42c191fa6db1fcc7c384e04a74bf09c01a0e376276ab4435594b51f2894f01626053d9fa5214ea30aa89e60bbfb60bb7e39dbfe250fc1d7548770922b5cfa5c3f799de4829"}}, &(0x7f0000001540)={0x0, 0x3, 0xd3, @string={0xd3, 0x3, "56530e34e7a0e5c40341b53236e075364c75aa869bad258dc88be06fbee2a5ede7fbee4c1bc7c17e56feadf41c493021887a64a8c9aac6968675666b2fd28b80aca9e4ba8b04d40e068552a8daf09097862554af9a75703a2b025599e9a1fe23bf8d36619091ef19e6fd4963e06c496ff59c75c0aee21283515419f0dc299a056b74a99547c13acab9c5cd5be6cde146662b9cb6fc08df8296261757ef754b77976796513359287b4c30c4e4982a5990b425730312db7c77983413fcb950c5f17ccb2c96feb598e7437bd9b5c9b4bab579"}}, &(0x7f0000001640)={0x0, 0xf, 0x1c, {0x5, 0xf, 0x1c, 0x3, [@ptm_cap={0x3}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x3, 0x1, 0x2}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0xa, 0x4, 0xd0, 0x3}]}}, &(0x7f0000001680)={0x20, 0x29, 0xf, {0xf, 0x29, 0x80, 0x3, 0x56, 0x2, "05663900", '\\.@}'}}, &(0x7f00000016c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x7b, 0x60, 0x80, 0x20, 0x1, 0xa077, 0x8}}}, &(0x7f0000001b80)={0x84, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f00000017c0)={0x0, 0xa, 0x1, 0xa3}, &(0x7f0000001800)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000001840)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f0000001880)={0x20, 0x0, 0x8, {0x120, 0x10, [0xff00]}}, &(0x7f00000018c0)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000001900)={0x40, 0x9, 0x1, 0x5}, &(0x7f0000001940)={0x40, 0xb, 0x2, "c859"}, &(0x7f0000001980)={0x40, 0xf, 0x2, 0xfff}, &(0x7f00000019c0)={0x40, 0x13, 0x6, @multicast}, &(0x7f0000001a00)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, &(0x7f0000001a40)={0x40, 0x19, 0x2, "f4ea"}, &(0x7f0000001a80)={0x40, 0x1a, 0x2, 0x1}, &(0x7f0000001ac0)={0x40, 0x1c, 0x1, 0x8}, &(0x7f0000001b00)={0x40, 0x1e, 0x1, 0x1f}, &(0x7f0000001b40)={0x40, 0x21, 0x1, 0x3}}) syz_usb_disconnect(0xffffffffffffffff) r2 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io(r0, &(0x7f0000000a80)={0x2c, &(0x7f0000000940)={0x0, 0x9, 0x36, {0x36, 0xa, "3aeb39668df8e164e311973b4504db4de129b2b3b2ceac27b58b7cacc2a12a425bdeabedd0c197e6bde7a5e7e5c6e7fbcd7d6c6c"}}, &(0x7f0000000980)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xf0ff}}, &(0x7f00000009c0)={0x0, 0xf, 0x24, {0x5, 0xf, 0x24, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x2f, "dfb1188f3074689620808756a36cb44f"}, @wireless={0xb, 0x10, 0x1, 0xc, 0x11, 0x2, 0x0, 0x8, 0x1}]}}, &(0x7f0000000a00)={0x20, 0x29, 0xf, {0xf, 0x29, 0x7, 0x14, 0x3f, 0x40, "21351019", "2803166b"}}, &(0x7f0000000a40)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x93, 0xfa, 0x1, 0x1, 0x4, 0x400}}}, &(0x7f0000000fc0)={0x84, &(0x7f0000000ac0)={0x0, 0x17, 0xfb, "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"}, &(0x7f0000000c00)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000c40)={0x0, 0x8, 0x1, 0x3f}, &(0x7f0000000c80)={0x20, 0x0, 0x4, {0x2, 0x2}}, &(0x7f0000000cc0)={0x20, 0x0, 0x4, {0x20, 0x8}}, &(0x7f0000000d00)={0x40, 0x7, 0x2, 0x5}, &(0x7f0000000d40)={0x40, 0x9, 0x1, 0xf5}, &(0x7f0000000d80)={0x40, 0xb, 0x2, "52b7"}, &(0x7f0000000dc0)={0x40, 0xf, 0x2, 0x200}, &(0x7f0000000e00)={0x40, 0x13, 0x6, @multicast}, &(0x7f0000000e40)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, &(0x7f0000000e80)={0x40, 0x19, 0x2, "2a8d"}, &(0x7f0000000ec0)={0x40, 0x1a, 0x2, 0xffbf}, &(0x7f0000000f00)={0x40, 0x1c, 0x1, 0x2e}, &(0x7f0000000f40)={0x40, 0x1e, 0x1}, &(0x7f0000000f80)={0x40, 0x21, 0x1}}) syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r2, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_connect(0x5, 0x3d8, &(0x7f00000001c0)={{0x12, 0x1, 0x10, 0xc8, 0x8, 0x9c, 0x20, 0x45e, 0x4c9, 0x318d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3c6, 0x3, 0x1, 0x4, 0x40, 0x6, [{{0x9, 0x4, 0x41, 0x20, 0x7, 0x66, 0xb9, 0x97, 0x7f, [], [{{0x9, 0x5, 0xb, 0x1, 0x20, 0x1, 0x7f}}, {{0x9, 0x5, 0x6, 0x0, 0x0, 0x0, 0x8, 0x7, [@generic={0xc1, 0x22, "5635c019400bf39e057262b50660d540b58653b02db0ea016aea78fd2766d169c48953504799bb0b5d6644b978a89b588c648a0bc007be37fbfd48bf21b7c9ab0b273ee903b0056aea4d15fbf8972c91b0fd4a8de7db7a92a0a2574911bbdea0a0d59f2ab51b38d3467375e153da4c2f259e0cbbb53c68049ffcd806b104db3f62a66fe8e9a6b026a9c4ac304701098dda9d347f1f174d8aff4ce47b17c09cde04173193d89b51f53893751a05a6dd1d9f96672849de32f51d288bd3a10b61"}]}}, {{0x9, 0x5, 0x6, 0x4, 0x3ff, 0x6, 0x7f, 0x5}}, {{0x9, 0x5, 0xc, 0x10, 0x200, 0x9, 0x3f, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x7f, 0x80}]}}, {{0x9, 0x5, 0xe, 0x2, 0x8, 0x5, 0x3, 0x9}}, {{0x9, 0x5, 0xd, 0x10, 0x200, 0x5, 0x2, 0xc3, [@generic={0x31, 0x11, "67861965a40d15110eee32920d11e85ad7316c16604e5b32bba3b219b8d79e4b8d4a2537803e6011905cf0b799e56b"}, @generic={0x93, 0x2, "d00a253461f588bbd7956d24921f12b766a45310583a65e046d8602df5c8283ffe92832a22da84e178aa73ce7ab907fbf628a87e5dcc9b54c9cd3859e5e54505acceeeb06fbb0cdebda2e152f33ec03241a88fd730b62796e84eba7fd40bc80b3c95cfa4f0fb99a607d08d7750a3fd96158bd877c5224ab7edcc0eda6baa572e3a289ec762c9731d9456b666e4bca27712"}]}}, {{0x9, 0x5, 0x6, 0x10, 0x200, 0x4, 0x3f, 0x3f, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x9}]}}]}}, {{0x9, 0x4, 0x4, 0xd9, 0x3, 0xbe, 0x7e, 0x34, 0x3, [], [{{0x9, 0x5, 0x6, 0x8, 0x3ff, 0x5, 0x1, 0x20}}, {{0x9, 0x5, 0xf, 0xc, 0x3ff, 0x6, 0x1, 0xd6, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x4}, @generic={0x5f, 0x7, "54a5208f67d2d81d6dff1b80794fe3f6deca1843dd233896bf15da1f2511c85325066e1c10500cb107481f336cc509e5060c9f595a2759861a1ed60ec8c894f90be5f2f016c7e34583cf39d6260f808efee02998b8f8533e9f5d7e8e30"}]}}, {{0x9, 0x5, 0xd, 0xf9aeec770535faf0, 0x20, 0x6, 0x9a, 0x2, [@generic={0x12, 0x9, "ac840c4875191ef3c4a546787454790c"}]}}]}}, {{0x9, 0x4, 0x88, 0x7f, 0x9, 0x3, 0x1, 0x2, 0xf7, [@cdc_ecm={{0x8, 0x24, 0x6, 0x0, 0x0, "7a19ba"}, {0x5, 0x24, 0x0, 0x5}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x800, 0x4, 0x15}, [@mdlm_detail={0xd, 0x24, 0x13, 0x5, "455db031504f214ec2"}]}, @cdc_ncm={{0x9, 0x24, 0x6, 0x0, 0x1, "af63ca1b"}, {0x5, 0x24, 0x0, 0x8001}, {0xd, 0x24, 0xf, 0x1, 0x8000, 0x2, 0x0, 0x8}, {0x6, 0x24, 0x1a, 0x2, 0x14}, [@mbim_extended={0x8, 0x24, 0x1c, 0x5, 0x7}, @mdlm_detail={0x6a, 0x24, 0x13, 0xc1, "261563f52b679f10dfdb48d8cdb2be719f12795c86ac7d22e069a1bee1049fc41f220e820cca682b327fba7b135ec99f5e011d9d0504a87d6c3755dc099fb66de8e0bbf4a851d7b68ad768c138036fa9c339ed98d17e987da15654868217301eabc8e304ea58"}, @acm={0x4, 0x24, 0x2, 0xc}, @acm={0x4, 0x24, 0x2, 0x4}, @mbim_extended={0x8, 0x24, 0x1c, 0x9, 0x48, 0x5}, @country_functional={0x6, 0x24, 0x7, 0x39, 0x1}]}], [{{0x9, 0x5, 0x4, 0x4, 0x20, 0x1, 0x9, 0x6}}, {{0x9, 0x5, 0xb, 0x0, 0x8, 0x3f, 0x8, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x42, 0x3, 0x401}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0xf0, 0x1}]}}, {{0x9, 0x5, 0x4, 0x3, 0x200, 0x3, 0x5, 0x3b}}, {{0x9, 0x5, 0xf, 0x0, 0x40, 0xff, 0xfb, 0x6}}, {{0x9, 0x5, 0xa, 0x8, 0x8, 0x0, 0x2, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x1, 0x400}]}}, {{0x9, 0x5, 0x3, 0x0, 0x20, 0xfc, 0xfd, 0x24, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x28, 0x2}]}}, {{0x9, 0x5, 0x7, 0x8, 0x10, 0x7f, 0x9, 0x80}}, {{0x9, 0x5, 0x9, 0x18, 0x240, 0x2, 0x7, 0x91}}, {{0x9, 0x5, 0x6, 0x10, 0xf295dad8db799da7, 0xe, 0x3f, 0x4}}]}}]}}]}}, &(0x7f0000000740)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x300, 0xa3, 0x1, 0xff, 0x40, 0x60}, 0x20, &(0x7f0000000100)={0x5, 0xf, 0x20, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0xff, "7f0aee48766cf06cd1e6b748ebdb449d"}, @ext_cap={0x7, 0x10, 0x2, 0x38, 0x1, 0x8, 0xff}]}, 0x2, [{0xa5, &(0x7f00000005c0)=ANY=[@ANYBLOB="a503fc5c1133cf4dc670b2de0ed555c84dde996d05e833bb157f7959247e81cfb110c53dabb497755056e1e4c2b1eaaa8a8b758e55afbdac8b63a124046a62334cae8e36fa7aabd075369da20936b056b2c2f99b12e6d544cdf858237919f2d50f13c76092406ec0d9092ef493ab5359b7310ef0e6c3fd00a2b0dea9c00d6d1b99caaa50038923fd69d78226f11761eb3a80d6d27f04e9e02791c36151ee9348c6c308369e"]}, {0x9a, &(0x7f0000000680)=@string={0x9a, 0x3, "b89a34f289085d1d0d58982663a29dd1b99cb52a51cb86f354ab2b649eef315b111b30b040c2925dde38200f09db03e74f6ccb4165db0a0c790a73e6c8d6588099f0b9c4a41ef5569007949c3ac6a6d839c5ac469b9330293bcca97ec346f2389ff13e27664fb3ab6a32a4a69833fab5158adc8917e9bb935c4c144415a092961a539095db04bd4b748de87feb1dea60a32ad1069247bfc2"}}]}) syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000780)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x42, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x20, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0xff, 0x1, 0x3, 0x1, 0x3, 0x8, {0x9, 0x21, 0xfcc4, 0x5, 0x1, {0x22, 0xff1}}, {{{0x9, 0x5, 0x81, 0x3, 0x20, 0x40, 0xdc, 0x5}}}}}]}}]}}, &(0x7f0000000900)={0xa, &(0x7f00000007c0)={0xa, 0x6, 0x250, 0x4, 0xf8, 0x8, 0x8, 0x3f}, 0x7c, &(0x7f0000000800)={0x5, 0xf, 0x7c, 0x3, [@ssp_cap={0x14, 0x10, 0xa, 0x40, 0x2, 0x1ff, 0xff0f, 0xfff7, [0x3f0f, 0xf]}, @generic={0x5c, 0x10, 0x4, "594508152c2a31d07bb1e679d5a3db9e8161e45fa22943d0d296acd5499458d0a83d8b4825fbcbde1bab4c97f3a9dcd3b805b0e7874ade062ed433a05ad3fb3c49bfbac2b3404c394d8bfc3116740cfea394ba97a42b4062b1"}, @ext_cap={0x7, 0x10, 0x2, 0x10, 0x8, 0x2, 0x4}]}, 0x2, [{0x2, &(0x7f0000000880)=@string={0x2}}, {0x24, &(0x7f00000008c0)=@string={0x24, 0x3, "cb25d191e54fc1809bedd59ac14246a096652dea1074ac8c3ddc9cbc4b70c3f88a57"}}]}) [ 3345.637276][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3345.662874][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3345.692341][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3345.710840][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3345.728811][ T8615] usb 3-1: config 0 descriptor?? [ 3346.037269][T19370] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3346.085079][T19370] CPU: 0 PID: 19370 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3346.095568][T19370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3346.105669][T19370] Call Trace: [ 3346.108977][T19370] [ 3346.111934][T19370] dump_stack_lvl+0x1e7/0x2e0 [ 3346.116667][T19370] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3346.121904][T19370] ? __pfx__printk+0x10/0x10 [ 3346.126526][T19370] ? ___ratelimit+0x4c4/0x670 [ 3346.131245][T19370] ? __pfx____ratelimit+0x10/0x10 [ 3346.136310][T19370] dump_header+0xda/0x6a0 [ 3346.140707][T19370] oom_kill_process+0x3a7/0x930 [ 3346.145602][T19370] out_of_memory+0xf67/0x1320 [ 3346.150324][T19370] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3346.155984][T19370] ? __pfx___mutex_lock+0x10/0x10 [ 3346.161034][T19370] ? __pfx_out_of_memory+0x10/0x10 [ 3346.166182][T19370] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3346.171761][T19370] ? __pfx_lock_release+0x10/0x10 [ 3346.176822][T19370] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3346.182927][T19370] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3346.188163][T19370] ? mem_cgroup_iter+0x422/0x560 [ 3346.193140][T19370] try_charge_memcg+0xda2/0x18a0 [ 3346.198140][T19370] ? __pfx_try_charge_memcg+0x10/0x10 [ 3346.203546][T19370] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3346.209300][T19370] ? __pfx_lock_release+0x10/0x10 [ 3346.214360][T19370] ? memcg_account_kmem+0x1e7/0x210 [ 3346.219609][T19370] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3346.225464][T19370] __memcg_kmem_charge_page+0xe1/0x250 [ 3346.230978][T19370] memcg_charge_kernel_stack+0x210/0x550 [ 3346.236664][T19370] dup_task_struct+0x40d/0x7d0 [ 3346.241465][T19370] copy_process+0x5d5/0x3fc0 [ 3346.246103][T19370] ? __might_fault+0xa9/0x120 [ 3346.250815][T19370] ? __pfx_lock_release+0x10/0x10 [ 3346.255886][T19370] ? __lock_acquire+0x1345/0x1fd0 [ 3346.260954][T19370] ? __pfx_copy_process+0x10/0x10 [ 3346.266019][T19370] ? __might_fault+0xc5/0x120 [ 3346.270748][T19370] ? __asan_memset+0x23/0x50 [ 3346.275378][T19370] kernel_clone+0x21d/0x8d0 [ 3346.279924][T19370] ? __pfx_kernel_clone+0x10/0x10 [ 3346.284992][T19370] ? __pfx_lock_release+0x10/0x10 [ 3346.290059][T19370] __se_sys_clone3+0x2cb/0x350 [ 3346.294854][T19370] ? __might_fault+0xa9/0x120 [ 3346.299573][T19370] ? __pfx___se_sys_clone3+0x10/0x10 [ 3346.304986][T19370] ? rcu_is_watching+0x15/0xb0 [ 3346.309814][T19370] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3346.315936][T19370] ? exc_page_fault+0x587/0x870 [ 3346.320829][T19370] ? do_syscall_64+0xb4/0x240 [ 3346.325551][T19370] do_syscall_64+0xf9/0x240 [ 3346.330114][T19370] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3346.336055][T19370] RIP: 0033:0x7f080fca9b99 [ 3346.340495][T19370] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3346.360129][T19370] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3346.368580][T19370] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3346.376587][T19370] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3346.384586][T19370] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3346.392592][T19370] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3346.400599][T19370] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3346.408643][T19370] [ 3346.425332][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3346.431401][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3346.454437][ T8615] usb 3-1: USB disconnect, device number 79 17:46:04 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async, rerun: 32) syz_usb_disconnect(0xffffffffffffffff) (async, rerun: 32) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3346.481896][T19370] memory: usage 307200kB, limit 307200kB, failcnt 150792 [ 3346.508167][T19370] memory+swap: usage 308520kB, limit 9007199254740988kB, failcnt 0 [ 3346.517015][T19370] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0 [ 3346.524657][T19370] Memory cgroup stats for /syz0: [ 3346.524833][T19370] cache 0 [ 3346.565917][T19370] rss 0 [ 3346.569073][T19370] rss_huge 0 [ 3346.573513][T19370] shmem 0 [ 3346.600795][T19370] mapped_file 0 [ 3346.608871][T19370] dirty 0 [ 3346.614158][T19370] writeback 0 [ 3346.622641][T19370] workingset_refault_anon 49355 [ 3346.641708][T19370] workingset_refault_file 0 [ 3346.649175][T19370] swap 1372160 [ 3346.652701][T19370] swapcached 0 [ 3346.657043][T19370] pgpgin 293494 [ 3346.660692][T19370] pgpgout 293494 [ 3346.664381][T19370] pgfault 545622 [ 3346.669320][T19370] pgmajfault 47420 [ 3346.673207][T19370] inactive_anon 0 [ 3346.678084][T19370] active_anon 0 [ 3346.681722][T19370] inactive_file 0 [ 3346.686549][T19370] active_file 0 [ 3346.690171][T19370] unevictable 0 [ 3346.701829][T19370] hierarchical_memory_limit 314572800 [ 3346.707776][T19370] hierarchical_memsw_limit 9223372036854771712 [ 3346.714087][T19370] total_cache 0 [ 3346.718210][T19370] total_rss 0 [ 3346.721629][T19370] total_rss_huge 0 [ 3346.728607][T19370] total_shmem 0 [ 3346.732230][T19370] total_mapped_file 0 [ 3346.737017][T19370] total_dirty 0 [ 3346.740711][T19370] total_writeback 0 [ 3346.744734][T19370] total_workingset_refault_anon 49355 [ 3346.750943][T19370] total_workingset_refault_file 0 [ 3346.757552][T19370] total_swap 1372160 [ 3346.761478][T19370] total_swapcached 0 [ 3346.765904][T19370] total_pgpgin 293494 [ 3346.769906][T19370] total_pgpgout 293494 [ 3346.773981][T19370] total_pgfault 545622 [ 3346.781383][T19370] total_pgmajfault 47420 [ 3346.789695][T19370] total_inactive_anon 0 [ 3346.793890][T19370] total_active_anon 0 [ 3346.798041][T19370] total_inactive_file 0 [ 3346.802217][T19370] total_active_file 0 [ 3346.806440][T19370] total_unevictable 0 [ 3346.810439][T19370] anon_cost 0 [ 3346.813726][T19370] file_cost 0 [ 3346.817103][T19370] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19370,uid=0 [ 3346.832674][T19370] Memory cgroup out of memory: Killed process 19370 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:05 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x5703}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3346.975789][ T8615] usb 3-1: new high-speed USB device number 80 using dummy_hcd [ 3347.166916][T19375] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3347.195476][T19375] CPU: 1 PID: 19375 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3347.205949][T19375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3347.216213][T19375] Call Trace: [ 3347.219518][T19375] [ 3347.222485][T19375] dump_stack_lvl+0x1e7/0x2e0 [ 3347.227226][T19375] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3347.232475][T19375] ? __pfx__printk+0x10/0x10 [ 3347.237153][T19375] ? ___ratelimit+0x4c4/0x670 [ 3347.241873][T19375] ? __pfx____ratelimit+0x10/0x10 [ 3347.246945][T19375] dump_header+0xda/0x6a0 [ 3347.251324][T19375] oom_kill_process+0x3a7/0x930 [ 3347.256233][T19375] out_of_memory+0xf67/0x1320 [ 3347.260963][T19375] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3347.266640][T19375] ? __pfx___mutex_lock+0x10/0x10 [ 3347.271719][T19375] ? __pfx_out_of_memory+0x10/0x10 [ 3347.276895][T19375] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3347.282478][T19375] ? __pfx_lock_release+0x10/0x10 [ 3347.287612][T19375] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3347.293727][T19375] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3347.298963][T19375] ? mem_cgroup_iter+0x422/0x560 [ 3347.303939][T19375] try_charge_memcg+0xda2/0x18a0 [ 3347.308489][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3347.308915][T19375] ? __pfx_try_charge_memcg+0x10/0x10 [ 3347.319314][T19375] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3347.325072][T19375] ? __pfx_lock_release+0x10/0x10 [ 3347.330139][T19375] ? memcg_account_kmem+0x1e7/0x210 [ 3347.335386][T19375] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3347.341227][T19375] __memcg_kmem_charge_page+0xe1/0x250 [ 3347.346733][T19375] memcg_charge_kernel_stack+0x196/0x550 [ 3347.352412][T19375] dup_task_struct+0x15d/0x7d0 [ 3347.357220][T19375] copy_process+0x5d5/0x3fc0 [ 3347.361868][T19375] ? __might_fault+0xa9/0x120 [ 3347.366583][T19375] ? __pfx_lock_release+0x10/0x10 [ 3347.371658][T19375] ? __pfx_copy_process+0x10/0x10 [ 3347.376714][T19375] ? __might_fault+0xc5/0x120 [ 3347.381429][T19375] ? __asan_memset+0x23/0x50 [ 3347.386072][T19375] kernel_clone+0x21d/0x8d0 [ 3347.390623][T19375] ? __pfx_kernel_clone+0x10/0x10 [ 3347.395708][T19375] __se_sys_clone3+0x2cb/0x350 [ 3347.400514][T19375] ? __pfx___se_sys_clone3+0x10/0x10 [ 3347.405945][T19375] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3347.411991][T19375] ? exc_page_fault+0x587/0x870 [ 3347.416895][T19375] ? do_syscall_64+0xb4/0x240 [ 3347.421621][T19375] do_syscall_64+0xf9/0x240 [ 3347.426191][T19375] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3347.432136][T19375] RIP: 0033:0x7f080fca9b99 [ 3347.436585][T19375] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3347.456350][T19375] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3347.464804][T19375] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3347.472810][T19375] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3347.480833][T19375] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3347.488835][T19375] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3347.496842][T19375] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3347.504869][T19375] [ 3347.516385][T19375] memory: usage 307200kB, limit 307200kB, failcnt 151435 [ 3347.523536][T19375] memory+swap: usage 308496kB, limit 9007199254740988kB, failcnt 0 [ 3347.531945][T19375] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0 [ 3347.545513][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3347.546889][T19375] Memory cgroup stats for /syz0: [ 3347.556891][T19375] cache 0 [ 3347.560069][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3347.561829][T19375] rss 0 [ 3347.561840][T19375] rss_huge 0 [ 3347.561850][T19375] shmem 0 [ 3347.561859][T19375] mapped_file 0 [ 3347.561868][T19375] dirty 0 [ 3347.561877][T19375] writeback 0 [ 3347.561885][T19375] workingset_refault_anon 49543 [ 3347.567258][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3347.576565][T19375] workingset_refault_file 0 [ 3347.588595][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3347.591212][T19375] swap 1351680 [ 3347.611681][ T8615] usb 3-1: config 0 descriptor?? [ 3347.617837][T19375] swapcached 0 [ 3347.636431][T19375] pgpgin 293698 [ 3347.640077][T19375] pgpgout 293698 [ 3347.643766][T19375] pgfault 545912 [ 3347.648092][T19375] pgmajfault 47597 [ 3347.652199][T19375] inactive_anon 0 [ 3347.656579][T19375] active_anon 0 [ 3347.660218][T19375] inactive_file 0 [ 3347.663956][T19375] active_file 0 [ 3347.673291][T19375] unevictable 0 [ 3347.677802][T19375] hierarchical_memory_limit 314572800 [ 3347.683422][T19375] hierarchical_memsw_limit 9223372036854771712 [ 3347.690347][T19375] total_cache 0 [ 3347.693846][T19375] total_rss 0 [ 3347.700492][T19375] total_rss_huge 0 [ 3347.704403][T19375] total_shmem 0 [ 3347.708268][T19375] total_mapped_file 0 [ 3347.713568][T19375] total_dirty 0 [ 3347.723362][T19375] total_writeback 0 [ 3347.732024][T19375] total_workingset_refault_anon 49543 [ 3347.743856][T19375] total_workingset_refault_file 0 [ 3347.749443][T19375] total_swap 1351680 [ 3347.753694][T19375] total_swapcached 0 [ 3347.760053][T19375] total_pgpgin 293698 [ 3347.764137][T19375] total_pgpgout 293698 [ 3347.768767][T19375] total_pgfault 545912 [ 3347.772933][T19375] total_pgmajfault 47597 [ 3347.777932][T19375] total_inactive_anon 0 [ 3347.789724][T19375] total_active_anon 0 [ 3347.793765][T19375] total_inactive_file 0 [ 3347.798337][T19375] total_active_file 0 [ 3347.802421][T19375] total_unevictable 0 [ 3347.806803][T19375] anon_cost 0 [ 3347.810197][T19375] file_cost 0 [ 3347.813583][T19375] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19375,uid=0 [ 3347.829669][T19375] Memory cgroup out of memory: Killed process 19375 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:06 executing program 2: syz_usb_disconnect(0xffffffffffffffff) syz_usb_disconnect(0xffffffffffffffff) r0 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_disconnect(r0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3347.985441][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3347.995088][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3348.018098][ T8615] usb 3-1: USB disconnect, device number 80 17:46:06 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x5a01}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3348.197035][ T5100] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 3348.207460][ T5100] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 3348.225346][ T5100] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 3348.236671][ T5100] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 3348.246868][ T5100] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 3348.254437][ T5100] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 3348.411937][T19382] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3348.423018][T19382] CPU: 0 PID: 19382 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3348.433565][T19382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3348.443623][T19382] Call Trace: [ 3348.446915][T19382] [ 3348.449870][T19382] dump_stack_lvl+0x1e7/0x2e0 [ 3348.454610][T19382] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3348.459834][T19382] ? __pfx__printk+0x10/0x10 [ 3348.464459][T19382] ? ___ratelimit+0x4c4/0x670 [ 3348.469168][T19382] ? __pfx____ratelimit+0x10/0x10 [ 3348.474227][T19382] dump_header+0xda/0x6a0 [ 3348.478572][T19382] oom_kill_process+0x3a7/0x930 [ 3348.483439][T19382] out_of_memory+0xf67/0x1320 [ 3348.488148][T19382] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3348.493806][T19382] ? __pfx___mutex_lock+0x10/0x10 [ 3348.498841][T19382] ? __pfx_out_of_memory+0x10/0x10 [ 3348.503971][T19382] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3348.509634][T19382] ? __pfx_lock_release+0x10/0x10 [ 3348.514718][T19382] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3348.520903][T19382] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3348.526125][T19382] ? mem_cgroup_iter+0x422/0x560 [ 3348.531081][T19382] try_charge_memcg+0xda2/0x18a0 [ 3348.536087][T19382] ? __pfx_try_charge_memcg+0x10/0x10 [ 3348.541469][T19382] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3348.547202][T19382] ? __pfx_lock_release+0x10/0x10 [ 3348.552242][T19382] ? memcg_account_kmem+0x1e7/0x210 [ 3348.557456][T19382] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3348.563276][T19382] __memcg_kmem_charge_page+0xe1/0x250 [ 3348.568751][T19382] memcg_charge_kernel_stack+0x210/0x550 [ 3348.574397][T19382] dup_task_struct+0x40d/0x7d0 [ 3348.579174][T19382] copy_process+0x5d5/0x3fc0 [ 3348.583784][T19382] ? __might_fault+0xa9/0x120 [ 3348.588503][T19382] ? __pfx_lock_release+0x10/0x10 [ 3348.593546][T19382] ? __lock_acquire+0x1345/0x1fd0 [ 3348.598597][T19382] ? __pfx_copy_process+0x10/0x10 [ 3348.603630][T19382] ? __might_fault+0xc5/0x120 [ 3348.608323][T19382] ? __asan_memset+0x23/0x50 [ 3348.612943][T19382] kernel_clone+0x21d/0x8d0 [ 3348.617474][T19382] ? __pfx_kernel_clone+0x10/0x10 [ 3348.622522][T19382] ? __pfx_lock_release+0x10/0x10 [ 3348.627569][T19382] __se_sys_clone3+0x2cb/0x350 [ 3348.632343][T19382] ? __might_fault+0xa9/0x120 [ 3348.637034][T19382] ? __pfx___se_sys_clone3+0x10/0x10 [ 3348.642329][T19382] ? rcu_is_watching+0x15/0xb0 [ 3348.647120][T19382] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3348.653130][T19382] ? exc_page_fault+0x587/0x870 [ 3348.658031][T19382] ? do_syscall_64+0xb4/0x240 [ 3348.662735][T19382] do_syscall_64+0xf9/0x240 [ 3348.667262][T19382] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3348.673175][T19382] RIP: 0033:0x7f080fca9b99 [ 3348.677594][T19382] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3348.697209][T19382] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3348.705640][T19382] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3348.713643][T19382] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3348.721619][T19382] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3348.729595][T19382] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3348.737573][T19382] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3348.745570][T19382] 17:46:07 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) r1 = syz_usb_connect$cdc_ecm(0x6, 0x8b, &(0x7f0000001080)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x79, 0x1, 0x1, 0x7, 0xa0, 0x3, [{{0x9, 0x4, 0x0, 0x6, 0x3, 0x2, 0x6, 0x0, 0x81, {{0x6, 0x24, 0x6, 0x0, 0x0, "dd"}, {0x5, 0x24, 0x0, 0x100}, {0xd, 0x24, 0xf, 0x1, 0x400, 0x8426, 0x5, 0x1}, [@call_mgmt={0x5, 0x24, 0x1, 0x3, 0x27}, @network_terminal={0x7, 0x24, 0xa, 0xe0, 0x28, 0x1, 0x28}, @dmm={0x7, 0x24, 0x14, 0x1f, 0x7}, @mbim={0xc, 0x24, 0x1b, 0x81, 0xd0, 0x1, 0x0, 0xfffe, 0x9}, @mdlm={0x15, 0x24, 0x12, 0x401}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x4, 0x4, 0x1}}], {{0x9, 0x5, 0x82, 0x2, 0x40, 0x9, 0x4, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0xd0d6d0dc4dd1d549, 0x0, 0xc7, 0x5}}}}}]}}]}}, &(0x7f0000001400)={0xa, &(0x7f0000001140)={0xa, 0x6, 0x110, 0x3, 0x5, 0x1, 0x10, 0x4}, 0x19, &(0x7f0000001180)={0x5, 0xf, 0x19, 0x2, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x0, 0x9, 0x7f, 0x5}, @generic={0xa, 0x10, 0x4, "70660e2e39fb15"}]}, 0x4, [{0xf1, &(0x7f00000011c0)=@string={0xf1, 0x3, "ce28a03885c064879a7e90a767b1ba885f05157b66bcefb5aae35cc4596fe1121a710e6d8bd55263dd5c28b93b2427331dec26b055ddb3367448faa114b078ee532982a29dab89dbd5c3721fe1994ff99396ec7cb3acc3a84c243baceba8bb6d8632669c5c3220e779fe32916e42c9193be02232faaf60313a4e5fb4b7ee0b6681449510f4979f293b762c66416b095d21d8f0556f1846aae415ad31f0039cfdc38243cc8b6d07ec0c1700ffbda184d7a6b4c2b9a581eadf4717b7f2f1f4a902d3a805e0a79ea920b9c4aaa32f1e74a9615bfa3f747fba3896aee03ac905af19dffda360187b2ed15ffe133ba77276"}}, {0x7, &(0x7f00000012c0)=@string={0x7, 0x3, "faccb8d5e4"}}, {0x13, &(0x7f0000001300)=@string={0x13, 0x3, "5d274f62416bfdee9fb4585d89915bcf5e"}}, {0x93, &(0x7f0000001340)=@string={0x93, 0x3, "796ab91473ff20a1ec705dd7bf6e01b521cef0f00e6d7767122e2155e1c26ea30d2f94ee2328061d2b85fb875943652600539c3287f83acb77b670c01bb8720dec07082658d53f51fe85354065ec16b14517990ef84939ec6cc71898528e579b590bb022028ed2a9d2458782b19c9ede24b828d21c3492f5ee83d5ac665b70f2ce9c7f7979c3262fde41263e3ccdfaa473"}}]}) syz_usb_control_io(r1, &(0x7f0000001700)={0x2c, &(0x7f0000001480)={0x40, 0x5, 0x97, {0x97, 0x0, "271f333176def6089629aa8f59679f08d009659c20986e2d8f78203534b773cf8efe86ed1b7848e4362c5d39305b69d20b33ea1900837d28a0b189763f9097b0eb2a2d26efa14fc533db4755f049f2df42c191fa6db1fcc7c384e04a74bf09c01a0e376276ab4435594b51f2894f01626053d9fa5214ea30aa89e60bbfb60bb7e39dbfe250fc1d7548770922b5cfa5c3f799de4829"}}, &(0x7f0000001540)={0x0, 0x3, 0xd3, @string={0xd3, 0x3, "56530e34e7a0e5c40341b53236e075364c75aa869bad258dc88be06fbee2a5ede7fbee4c1bc7c17e56feadf41c493021887a64a8c9aac6968675666b2fd28b80aca9e4ba8b04d40e068552a8daf09097862554af9a75703a2b025599e9a1fe23bf8d36619091ef19e6fd4963e06c496ff59c75c0aee21283515419f0dc299a056b74a99547c13acab9c5cd5be6cde146662b9cb6fc08df8296261757ef754b77976796513359287b4c30c4e4982a5990b425730312db7c77983413fcb950c5f17ccb2c96feb598e7437bd9b5c9b4bab579"}}, &(0x7f0000001640)={0x0, 0xf, 0x1c, {0x5, 0xf, 0x1c, 0x3, [@ptm_cap={0x3}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x3, 0x1, 0x2}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0xa, 0x4, 0xd0, 0x3}]}}, &(0x7f0000001680)={0x20, 0x29, 0xf, {0xf, 0x29, 0x80, 0x3, 0x56, 0x2, "05663900", '\\.@}'}}, &(0x7f00000016c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x7b, 0x60, 0x80, 0x20, 0x1, 0xa077, 0x8}}}, &(0x7f0000001b80)={0x84, &(0x7f0000001c40)=ANY=[@ANYBLOB="0010420000007d97930041a6976fd63e89aca4e7a6a82afe11303736d0a885e1c184f41019b9933485e026c3c221b11cb6081387b9ffea0de6ed58c24a6aa38eadc19c8f849888588df5947ee464bf10baf4c7e7f007e3741ddd02c6ddd6a1896059403452dc96b307b827886b0d085b51887795dcbf938a4ec274a8b81a8ecbac911cfee3c0e93c6dfd2466e724f7aca0a3a4484b31f7fe94c7acc65dc5330fc02f4522747000883d5cbe3a78f9c0af682680fcbf24537f01c90d5c262cbdbae05019aaec4b55954ea15ec69bc29e8c8d0df092389533b2da022ab402703604f5d2b35b51f336e734545a17eac6f2ccb4b37a6166c7cd62ca8b6dd70daf4fd28abd4c04c2ffee349f54e5e3296b7a8ed99878c450befb15c49f930787643ec9f679a34dc6204840601eb29e59ec555fe7327abdb2b8af"], &(0x7f00000017c0)={0x0, 0xa, 0x1, 0xa3}, &(0x7f0000001800)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000001840)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f0000001880)={0x20, 0x0, 0x8, {0x120, 0x10, [0xff00]}}, &(0x7f00000018c0)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000001900)={0x40, 0x9, 0x1, 0x5}, &(0x7f0000001940)={0x40, 0xb, 0x2, "c859"}, &(0x7f0000001980)={0x40, 0xf, 0x2, 0xfff}, &(0x7f00000019c0)={0x40, 0x13, 0x6, @multicast}, &(0x7f0000001a00)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, &(0x7f0000001a40)={0x40, 0x19, 0x2, "f4ea"}, &(0x7f0000001a80)={0x40, 0x1a, 0x2, 0x1}, &(0x7f0000001ac0)={0x40, 0x1c, 0x1, 0x8}, &(0x7f0000001b00)={0x40, 0x1e, 0x1, 0x1f}, &(0x7f0000001b40)={0x40, 0x21, 0x1, 0x3}}) (async, rerun: 32) syz_usb_disconnect(0xffffffffffffffff) (rerun: 32) r2 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async, rerun: 32) syz_usb_control_io(r0, &(0x7f0000000a80)={0x2c, &(0x7f0000000940)={0x0, 0x9, 0x36, {0x36, 0xa, "3aeb39668df8e164e311973b4504db4de129b2b3b2ceac27b58b7cacc2a12a425bdeabedd0c197e6bde7a5e7e5c6e7fbcd7d6c6c"}}, &(0x7f0000000980)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xf0ff}}, &(0x7f00000009c0)={0x0, 0xf, 0x24, {0x5, 0xf, 0x24, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x2f, "dfb1188f3074689620808756a36cb44f"}, @wireless={0xb, 0x10, 0x1, 0xc, 0x11, 0x2, 0x0, 0x8, 0x1}]}}, &(0x7f0000000a00)={0x20, 0x29, 0xf, {0xf, 0x29, 0x7, 0x14, 0x3f, 0x40, "21351019", "2803166b"}}, &(0x7f0000000a40)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x93, 0xfa, 0x1, 0x1, 0x4, 0x400}}}, &(0x7f0000000fc0)={0x84, &(0x7f0000000ac0)={0x0, 0x17, 0xfb, "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"}, &(0x7f0000000c00)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000c40)={0x0, 0x8, 0x1, 0x3f}, &(0x7f0000000c80)={0x20, 0x0, 0x4, {0x2, 0x2}}, &(0x7f0000000cc0)={0x20, 0x0, 0x4, {0x20, 0x8}}, &(0x7f0000000d00)={0x40, 0x7, 0x2, 0x5}, &(0x7f0000000d40)={0x40, 0x9, 0x1, 0xf5}, &(0x7f0000000d80)={0x40, 0xb, 0x2, "52b7"}, &(0x7f0000000dc0)={0x40, 0xf, 0x2, 0x200}, &(0x7f0000000e00)={0x40, 0x13, 0x6, @multicast}, &(0x7f0000000e40)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, &(0x7f0000000e80)={0x40, 0x19, 0x2, "2a8d"}, &(0x7f0000000ec0)={0x40, 0x1a, 0x2, 0xffbf}, &(0x7f0000000f00)={0x40, 0x1c, 0x1, 0x2e}, &(0x7f0000000f40)={0x40, 0x1e, 0x1}, &(0x7f0000000f80)={0x40, 0x21, 0x1}}) (rerun: 32) syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r2, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_connect(0x5, 0x3d8, &(0x7f00000001c0)={{0x12, 0x1, 0x10, 0xc8, 0x8, 0x9c, 0x20, 0x45e, 0x4c9, 0x318d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3c6, 0x3, 0x1, 0x4, 0x40, 0x6, [{{0x9, 0x4, 0x41, 0x20, 0x7, 0x66, 0xb9, 0x97, 0x7f, [], [{{0x9, 0x5, 0xb, 0x1, 0x20, 0x1, 0x7f}}, {{0x9, 0x5, 0x6, 0x0, 0x0, 0x0, 0x8, 0x7, [@generic={0xc1, 0x22, "5635c019400bf39e057262b50660d540b58653b02db0ea016aea78fd2766d169c48953504799bb0b5d6644b978a89b588c648a0bc007be37fbfd48bf21b7c9ab0b273ee903b0056aea4d15fbf8972c91b0fd4a8de7db7a92a0a2574911bbdea0a0d59f2ab51b38d3467375e153da4c2f259e0cbbb53c68049ffcd806b104db3f62a66fe8e9a6b026a9c4ac304701098dda9d347f1f174d8aff4ce47b17c09cde04173193d89b51f53893751a05a6dd1d9f96672849de32f51d288bd3a10b61"}]}}, {{0x9, 0x5, 0x6, 0x4, 0x3ff, 0x6, 0x7f, 0x5}}, {{0x9, 0x5, 0xc, 0x10, 0x200, 0x9, 0x3f, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x7f, 0x80}]}}, {{0x9, 0x5, 0xe, 0x2, 0x8, 0x5, 0x3, 0x9}}, {{0x9, 0x5, 0xd, 0x10, 0x200, 0x5, 0x2, 0xc3, [@generic={0x31, 0x11, "67861965a40d15110eee32920d11e85ad7316c16604e5b32bba3b219b8d79e4b8d4a2537803e6011905cf0b799e56b"}, @generic={0x93, 0x2, "d00a253461f588bbd7956d24921f12b766a45310583a65e046d8602df5c8283ffe92832a22da84e178aa73ce7ab907fbf628a87e5dcc9b54c9cd3859e5e54505acceeeb06fbb0cdebda2e152f33ec03241a88fd730b62796e84eba7fd40bc80b3c95cfa4f0fb99a607d08d7750a3fd96158bd877c5224ab7edcc0eda6baa572e3a289ec762c9731d9456b666e4bca27712"}]}}, {{0x9, 0x5, 0x6, 0x10, 0x200, 0x4, 0x3f, 0x3f, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x9}]}}]}}, {{0x9, 0x4, 0x4, 0xd9, 0x3, 0xbe, 0x7e, 0x34, 0x3, [], [{{0x9, 0x5, 0x6, 0x8, 0x3ff, 0x5, 0x1, 0x20}}, {{0x9, 0x5, 0xf, 0xc, 0x3ff, 0x6, 0x1, 0xd6, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x4}, @generic={0x5f, 0x7, "54a5208f67d2d81d6dff1b80794fe3f6deca1843dd233896bf15da1f2511c85325066e1c10500cb107481f336cc509e5060c9f595a2759861a1ed60ec8c894f90be5f2f016c7e34583cf39d6260f808efee02998b8f8533e9f5d7e8e30"}]}}, {{0x9, 0x5, 0xd, 0xf9aeec770535faf0, 0x20, 0x6, 0x9a, 0x2, [@generic={0x12, 0x9, "ac840c4875191ef3c4a546787454790c"}]}}]}}, {{0x9, 0x4, 0x88, 0x7f, 0x9, 0x3, 0x1, 0x2, 0xf7, [@cdc_ecm={{0x8, 0x24, 0x6, 0x0, 0x0, "7a19ba"}, {0x5, 0x24, 0x0, 0x5}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x800, 0x4, 0x15}, [@mdlm_detail={0xd, 0x24, 0x13, 0x5, "455db031504f214ec2"}]}, @cdc_ncm={{0x9, 0x24, 0x6, 0x0, 0x1, "af63ca1b"}, {0x5, 0x24, 0x0, 0x8001}, {0xd, 0x24, 0xf, 0x1, 0x8000, 0x2, 0x0, 0x8}, {0x6, 0x24, 0x1a, 0x2, 0x14}, [@mbim_extended={0x8, 0x24, 0x1c, 0x5, 0x7}, @mdlm_detail={0x6a, 0x24, 0x13, 0xc1, "261563f52b679f10dfdb48d8cdb2be719f12795c86ac7d22e069a1bee1049fc41f220e820cca682b327fba7b135ec99f5e011d9d0504a87d6c3755dc099fb66de8e0bbf4a851d7b68ad768c138036fa9c339ed98d17e987da15654868217301eabc8e304ea58"}, @acm={0x4, 0x24, 0x2, 0xc}, @acm={0x4, 0x24, 0x2, 0x4}, @mbim_extended={0x8, 0x24, 0x1c, 0x9, 0x48, 0x5}, @country_functional={0x6, 0x24, 0x7, 0x39, 0x1}]}], [{{0x9, 0x5, 0x4, 0x4, 0x20, 0x1, 0x9, 0x6}}, {{0x9, 0x5, 0xb, 0x0, 0x8, 0x3f, 0x8, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x42, 0x3, 0x401}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0xf0, 0x1}]}}, {{0x9, 0x5, 0x4, 0x3, 0x200, 0x3, 0x5, 0x3b}}, {{0x9, 0x5, 0xf, 0x0, 0x40, 0xff, 0xfb, 0x6}}, {{0x9, 0x5, 0xa, 0x8, 0x8, 0x0, 0x2, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x1, 0x400}]}}, {{0x9, 0x5, 0x3, 0x0, 0x20, 0xfc, 0xfd, 0x24, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x28, 0x2}]}}, {{0x9, 0x5, 0x7, 0x8, 0x10, 0x7f, 0x9, 0x80}}, {{0x9, 0x5, 0x9, 0x18, 0x240, 0x2, 0x7, 0x91}}, {{0x9, 0x5, 0x6, 0x10, 0xf295dad8db799da7, 0xe, 0x3f, 0x4}}]}}]}}]}}, &(0x7f0000000740)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x300, 0xa3, 0x1, 0xff, 0x40, 0x60}, 0x20, &(0x7f0000000100)={0x5, 0xf, 0x20, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0xff, "7f0aee48766cf06cd1e6b748ebdb449d"}, @ext_cap={0x7, 0x10, 0x2, 0x38, 0x1, 0x8, 0xff}]}, 0x2, [{0xa5, &(0x7f00000005c0)=ANY=[@ANYBLOB="a503fc5c1133cf4dc670b2de0ed555c84dde996d05e833bb157f7959247e81cfb110c53dabb497755056e1e4c2b1eaaa8a8b758e55afbdac8b63a124046a62334cae8e36fa7aabd075369da20936b056b2c2f99b12e6d544cdf858237919f2d50f13c76092406ec0d9092ef493ab5359b7310ef0e6c3fd00a2b0dea9c00d6d1b99caaa50038923fd69d78226f11761eb3a80d6d27f04e9e02791c36151ee9348c6c308369e"]}, {0x9a, &(0x7f0000000680)=@string={0x9a, 0x3, "b89a34f289085d1d0d58982663a29dd1b99cb52a51cb86f354ab2b649eef315b111b30b040c2925dde38200f09db03e74f6ccb4165db0a0c790a73e6c8d6588099f0b9c4a41ef5569007949c3ac6a6d839c5ac469b9330293bcca97ec346f2389ff13e27664fb3ab6a32a4a69833fab5158adc8917e9bb935c4c144415a092961a539095db04bd4b748de87feb1dea60a32ad1069247bfc2"}}]}) syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000780)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x42, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x20, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0xff, 0x1, 0x3, 0x1, 0x3, 0x8, {0x9, 0x21, 0xfcc4, 0x5, 0x1, {0x22, 0xff1}}, {{{0x9, 0x5, 0x81, 0x3, 0x20, 0x40, 0xdc, 0x5}}}}}]}}]}}, &(0x7f0000000900)={0xa, &(0x7f00000007c0)={0xa, 0x6, 0x250, 0x4, 0xf8, 0x8, 0x8, 0x3f}, 0x7c, &(0x7f0000000800)={0x5, 0xf, 0x7c, 0x3, [@ssp_cap={0x14, 0x10, 0xa, 0x40, 0x2, 0x1ff, 0xff0f, 0xfff7, [0x3f0f, 0xf]}, @generic={0x5c, 0x10, 0x4, "594508152c2a31d07bb1e679d5a3db9e8161e45fa22943d0d296acd5499458d0a83d8b4825fbcbde1bab4c97f3a9dcd3b805b0e7874ade062ed433a05ad3fb3c49bfbac2b3404c394d8bfc3116740cfea394ba97a42b4062b1"}, @ext_cap={0x7, 0x10, 0x2, 0x10, 0x8, 0x2, 0x4}]}, 0x2, [{0x2, &(0x7f0000000880)=@string={0x2}}, {0x24, &(0x7f00000008c0)=@string={0x24, 0x3, "cb25d191e54fc1809bedd59ac14246a096652dea1074ac8c3ddc9cbc4b70c3f88a57"}}]}) [ 3348.772110][T19382] memory: usage 307200kB, limit 307200kB, failcnt 151800 [ 3348.788878][T19382] memory+swap: usage 308556kB, limit 9007199254740988kB, failcnt 0 [ 3348.796898][T19382] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3348.804211][T19382] Memory cgroup stats for /syz0: [ 3348.804337][T19382] cache 0 [ 3348.812424][T19382] rss 4096 [ 3348.815883][T19382] rss_huge 0 [ 3348.819164][T19382] shmem 0 [ 3348.822129][T19382] mapped_file 0 [ 3348.826058][T19382] dirty 0 [ 3348.829059][T19382] writeback 0 [ 3348.832430][T19382] workingset_refault_anon 49645 [ 3348.837558][T19382] workingset_refault_file 0 [ 3348.842092][T19382] swap 1384448 [ 3348.850795][T19382] swapcached 4096 [ 3348.865194][T19382] pgpgin 293830 [ 3348.868724][T19382] pgpgout 293829 [ 3348.872311][T19382] pgfault 546101 [ 3348.876079][T19382] pgmajfault 47705 [ 3348.879824][T19382] inactive_anon 0 [ 3348.883483][T19382] active_anon 4096 [ 3348.887441][T19382] inactive_file 0 [ 3348.891109][T19382] active_file 0 [ 3348.894648][T19382] unevictable 0 [ 3348.899123][T19382] hierarchical_memory_limit 314572800 [ 3348.904661][T19382] hierarchical_memsw_limit 9223372036854771712 [ 3348.911521][T19382] total_cache 0 [ 3348.915486][T19382] total_rss 4096 [ 3348.915494][ T8615] usb 3-1: new high-speed USB device number 81 using dummy_hcd [ 3348.919173][T19382] total_rss_huge 0 [ 3348.931160][T19382] total_shmem 0 [ 3348.934776][T19382] total_mapped_file 0 [ 3348.939132][T19382] total_dirty 0 [ 3348.942618][T19382] total_writeback 0 [ 3348.954964][T19382] total_workingset_refault_anon 49645 [ 3348.960418][T19382] total_workingset_refault_file 0 [ 3348.969224][T19382] total_swap 1384448 [ 3348.973147][T19382] total_swapcached 4096 [ 3348.977377][T19382] total_pgpgin 293830 [ 3348.981372][T19382] total_pgpgout 293829 [ 3348.985620][T19382] total_pgfault 546101 [ 3348.989742][T19382] total_pgmajfault 47705 [ 3348.994027][T19382] total_inactive_anon 0 [ 3348.998358][T19382] total_active_anon 4096 [ 3349.002649][T19382] total_inactive_file 0 [ 3349.006949][T19382] total_active_file 0 [ 3349.010963][T19382] total_unevictable 0 [ 3349.014968][T19382] anon_cost 0 [ 3349.018372][T19382] file_cost 0 [ 3349.021722][T19382] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19382,uid=0 [ 3349.037407][T19382] Memory cgroup out of memory: Killed process 19382 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8896kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:07 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x5e01}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3349.135413][ T8615] usb 3-1: device descriptor read/64, error -71 [ 3349.415604][ T8615] usb 3-1: new high-speed USB device number 82 using dummy_hcd [ 3349.502326][T19387] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3349.512913][T19387] CPU: 0 PID: 19387 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3349.523426][T19387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3349.533498][T19387] Call Trace: [ 3349.536801][T19387] [ 3349.539757][T19387] dump_stack_lvl+0x1e7/0x2e0 [ 3349.544472][T19387] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3349.549696][T19387] ? __pfx__printk+0x10/0x10 [ 3349.554329][T19387] ? ___ratelimit+0x4c4/0x670 [ 3349.559040][T19387] ? __pfx____ratelimit+0x10/0x10 [ 3349.564186][T19387] dump_header+0xda/0x6a0 [ 3349.568545][T19387] oom_kill_process+0x3a7/0x930 [ 3349.573429][T19387] out_of_memory+0xf67/0x1320 [ 3349.578126][T19387] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3349.583796][T19387] ? __pfx___mutex_lock+0x10/0x10 [ 3349.588832][T19387] ? __pfx_out_of_memory+0x10/0x10 [ 3349.593958][T19387] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3349.599516][T19387] ? __pfx_lock_release+0x10/0x10 [ 3349.604557][T19387] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3349.610637][T19387] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3349.615849][T19387] ? mem_cgroup_iter+0x422/0x560 [ 3349.620803][T19387] try_charge_memcg+0xda2/0x18a0 [ 3349.625773][T19387] ? __pfx_try_charge_memcg+0x10/0x10 [ 3349.631190][T19387] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3349.636918][T19387] ? __pfx_lock_release+0x10/0x10 [ 3349.641959][T19387] ? memcg_account_kmem+0x1e7/0x210 [ 3349.647179][T19387] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3349.652998][T19387] __memcg_kmem_charge_page+0xe1/0x250 [ 3349.658472][T19387] memcg_charge_kernel_stack+0x210/0x550 [ 3349.664117][T19387] dup_task_struct+0x15d/0x7d0 [ 3349.668893][T19387] copy_process+0x5d5/0x3fc0 [ 3349.673589][T19387] ? __might_fault+0xa9/0x120 [ 3349.678367][T19387] ? __pfx_lock_release+0x10/0x10 [ 3349.683410][T19387] ? __pfx_copy_process+0x10/0x10 [ 3349.688469][T19387] ? __might_fault+0xc5/0x120 [ 3349.693181][T19387] ? __asan_memset+0x23/0x50 [ 3349.697811][T19387] kernel_clone+0x21d/0x8d0 [ 3349.702350][T19387] ? __pfx_kernel_clone+0x10/0x10 [ 3349.707413][T19387] __se_sys_clone3+0x2cb/0x350 [ 3349.712197][T19387] ? __pfx___se_sys_clone3+0x10/0x10 [ 3349.717495][T19387] ? rcu_is_watching+0x15/0xb0 [ 3349.722294][T19387] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3349.728306][T19387] ? exc_page_fault+0x587/0x870 [ 3349.734057][T19387] ? do_syscall_64+0xb4/0x240 [ 3349.738752][T19387] do_syscall_64+0xf9/0x240 [ 3349.743270][T19387] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3349.749176][T19387] RIP: 0033:0x7f080fca9b99 [ 3349.753601][T19387] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3349.773216][T19387] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3349.781640][T19387] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3349.789617][T19387] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3349.797595][T19387] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3349.805689][T19387] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3349.813669][T19387] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3349.821669][T19387] [ 3349.836922][T19387] memory: usage 307200kB, limit 307200kB, failcnt 152253 [ 3349.848660][T19387] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3349.858550][T19387] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3349.866273][T19387] Memory cgroup stats for /syz0: [ 3349.866425][T19387] cache 0 [ 3349.874623][T19387] rss 4096 [ 3349.878117][T19387] rss_huge 0 [ 3349.881438][T19387] shmem 0 [ 3349.884444][T19387] mapped_file 0 [ 3349.888031][T19387] dirty 0 [ 3349.891248][T19387] writeback 0 [ 3349.894623][T19387] workingset_refault_anon 49793 [ 3349.900541][T19387] workingset_refault_file 0 [ 3349.905244][T19387] swap 1331200 [ 3349.905679][ T8615] usb 3-1: device descriptor read/64, error -71 [ 3349.908710][T19387] swapcached 4096 [ 3349.919736][T19387] pgpgin 294009 [ 3349.923402][T19387] pgpgout 294008 [ 3349.927411][T19387] pgfault 546367 [ 3349.931065][T19387] pgmajfault 47867 [ 3349.934880][T19387] inactive_anon 4096 [ 3349.939249][T19387] active_anon 0 [ 3349.942803][T19387] inactive_file 0 [ 3349.946636][T19387] active_file 0 [ 3349.950396][T19387] unevictable 0 [ 3349.953923][T19387] hierarchical_memory_limit 314572800 [ 3349.959451][T19387] hierarchical_memsw_limit 9223372036854771712 [ 3349.966247][T19387] total_cache 0 [ 3349.969804][T19387] total_rss 4096 [ 3349.973422][T19387] total_rss_huge 0 [ 3349.979757][T19387] total_shmem 0 [ 3349.983232][T19387] total_mapped_file 0 [ 3349.987283][T19387] total_dirty 0 [ 3349.990975][T19387] total_writeback 0 [ 3349.994794][T19387] total_workingset_refault_anon 49793 [ 3350.000319][T19387] total_workingset_refault_file 0 [ 3350.005661][T19387] total_swap 1331200 [ 3350.009600][T19387] total_swapcached 4096 [ 3350.013777][T19387] total_pgpgin 294009 [ 3350.017855][T19387] total_pgpgout 294008 [ 3350.022247][T19387] total_pgfault 546367 [ 3350.026449][T19387] total_pgmajfault 47867 [ 3350.030899][T19387] total_inactive_anon 4096 [ 3350.035391][T19387] total_active_anon 0 [ 3350.035733][ T8615] usb usb3-port1: attempt power cycle [ 3350.039370][T19387] total_inactive_file 0 [ 3350.039383][T19387] total_active_file 0 17:46:08 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x6603}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3350.053444][T19387] total_unevictable 0 [ 3350.057733][T19387] anon_cost 0 [ 3350.061130][T19387] file_cost 0 [ 3350.064500][T19387] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19387,uid=0 [ 3350.080352][T19387] Memory cgroup out of memory: Killed process 19387 (syz-executor.0) total-vm:54508kB, anon-rss:360kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3350.305560][ T5101] Bluetooth: hci8: command 0x0409 tx timeout [ 3350.473891][T19389] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3350.484211][T19389] CPU: 1 PID: 19389 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3350.494657][T19389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3350.504736][T19389] Call Trace: [ 3350.508033][T19389] [ 3350.510969][T19389] dump_stack_lvl+0x1e7/0x2e0 [ 3350.515669][T19389] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3350.520879][T19389] ? __pfx__printk+0x10/0x10 [ 3350.525476][T19389] ? ___ratelimit+0x4c4/0x670 [ 3350.530166][T19389] ? __pfx____ratelimit+0x10/0x10 [ 3350.535221][T19389] dump_header+0xda/0x6a0 [ 3350.538625][ T8615] usb 3-1: new high-speed USB device number 83 using dummy_hcd [ 3350.539613][T19389] oom_kill_process+0x3a7/0x930 [ 3350.552035][T19389] out_of_memory+0xf67/0x1320 [ 3350.556763][T19389] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3350.562424][T19389] ? __pfx___mutex_lock+0x10/0x10 [ 3350.567460][T19389] ? __pfx_out_of_memory+0x10/0x10 [ 3350.572606][T19389] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3350.578183][T19389] ? __pfx_lock_release+0x10/0x10 [ 3350.583228][T19389] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3350.589329][T19389] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3350.594655][T19389] ? mem_cgroup_iter+0x422/0x560 [ 3350.599631][T19389] try_charge_memcg+0xda2/0x18a0 [ 3350.604595][T19389] ? __pfx_try_charge_memcg+0x10/0x10 [ 3350.609975][T19389] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3350.615706][T19389] ? __pfx_lock_release+0x10/0x10 [ 3350.620778][T19389] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3350.626620][T19389] __memcg_kmem_charge_page+0xe1/0x250 [ 3350.632108][T19389] memcg_charge_kernel_stack+0xa7/0x550 [ 3350.637682][T19389] dup_task_struct+0x15d/0x7d0 [ 3350.642497][T19389] copy_process+0x5d5/0x3fc0 [ 3350.647229][T19389] ? __might_fault+0xa9/0x120 [ 3350.652057][T19389] ? __pfx_lock_release+0x10/0x10 [ 3350.657116][T19389] ? __pfx_copy_process+0x10/0x10 [ 3350.662148][T19389] ? __might_fault+0xc5/0x120 [ 3350.666846][T19389] ? __asan_memset+0x23/0x50 [ 3350.671459][T19389] kernel_clone+0x21d/0x8d0 [ 3350.675980][T19389] ? __pfx_kernel_clone+0x10/0x10 [ 3350.681054][T19389] __se_sys_clone3+0x2cb/0x350 [ 3350.685849][T19389] ? __pfx___se_sys_clone3+0x10/0x10 [ 3350.691170][T19389] ? rcu_is_watching+0x15/0xb0 [ 3350.695997][T19389] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3350.702020][T19389] ? exc_page_fault+0x587/0x870 [ 3350.706888][T19389] ? do_syscall_64+0xb4/0x240 [ 3350.711578][T19389] do_syscall_64+0xf9/0x240 [ 3350.716117][T19389] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3350.722206][T19389] RIP: 0033:0x7f080fca9b99 [ 3350.726789][T19389] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3350.735681][ T8615] usb 3-1: device descriptor read/8, error -71 [ 3350.746394][T19389] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3350.746423][T19389] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3350.746441][T19389] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3350.777045][T19389] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3350.785103][T19389] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3350.793141][T19389] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3350.801164][T19389] [ 3350.805777][T19389] memory: usage 307200kB, limit 307200kB, failcnt 152633 [ 3350.812987][T19389] memory+swap: usage 308528kB, limit 9007199254740988kB, failcnt 0 [ 3350.821382][T19389] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 3350.828927][T19389] Memory cgroup stats for /syz0: [ 3350.829077][T19389] cache 0 [ 3350.837236][T19389] rss 12288 [ 3350.844416][T19389] rss_huge 0 [ 3350.850680][T19389] shmem 0 [ 3350.853792][T19389] mapped_file 0 [ 3350.857910][T19389] dirty 0 [ 3350.860949][T19389] writeback 0 [ 3350.864332][T19389] workingset_refault_anon 49965 [ 3350.869428][T19389] workingset_refault_file 0 [ 3350.874046][T19389] swap 1359872 [ 3350.877645][T19389] swapcached 8192 [ 3350.881362][T19389] pgpgin 294199 [ 3350.884859][T19389] pgpgout 294196 [ 3350.888765][T19389] pgfault 546636 [ 3350.892335][T19389] pgmajfault 48036 [ 3350.896147][T19389] inactive_anon 8192 [ 3350.900062][T19389] active_anon 4096 [ 3350.903795][T19389] inactive_file 0 [ 3350.907502][T19389] active_file 0 [ 3350.910987][T19389] unevictable 0 [ 3350.914701][T19389] hierarchical_memory_limit 314572800 [ 3350.920508][T19389] hierarchical_memsw_limit 9223372036854771712 [ 3350.934109][T19389] total_cache 0 [ 3350.939907][T19389] total_rss 12288 [ 3350.943595][T19389] total_rss_huge 0 [ 3350.947893][T19389] total_shmem 0 [ 3350.951497][T19389] total_mapped_file 0 [ 3350.956012][T19389] total_dirty 0 [ 3350.959680][T19389] total_writeback 0 [ 3350.963639][T19389] total_workingset_refault_anon 49965 [ 3350.969522][T19389] total_workingset_refault_file 0 17:46:09 executing program 2: syz_usb_disconnect(0xffffffffffffffff) syz_usb_disconnect(0xffffffffffffffff) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) r0 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_disconnect(r0) (async) syz_usb_disconnect(r0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3350.974716][T19389] total_swap 1359872 [ 3350.982427][T19389] total_swapcached 8192 [ 3350.998373][T19389] total_pgpgin 294199 [ 3351.005348][T19389] total_pgpgout 294196 [ 3351.014135][T19389] total_pgfault 546636 [ 3351.023810][T19389] total_pgmajfault 48036 [ 3351.029341][T19389] total_inactive_anon 8192 [ 3351.033930][T19389] total_active_anon 4096 [ 3351.035578][ T8615] usb 3-1: new high-speed USB device number 84 using dummy_hcd [ 3351.039625][T19389] total_inactive_file 0 [ 3351.050531][T19389] total_active_file 0 [ 3351.054648][T19389] total_unevictable 0 [ 3351.059120][T19389] anon_cost 0 [ 3351.062584][T19389] file_cost 0 [ 3351.066379][T19389] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19389,uid=0 [ 3351.082265][T19389] Memory cgroup out of memory: Killed process 19389 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:09 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x6a03}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3351.301489][ T8615] usb 3-1: device not accepting address 84, error -71 [ 3351.308757][ T8615] usb usb3-port1: unable to enumerate USB device [ 3351.466887][T19393] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3351.478822][T19393] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3351.617031][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3351.628410][ T5110] CPU: 0 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3351.638767][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3351.648852][ T5110] Call Trace: [ 3351.652152][ T5110] [ 3351.655111][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3351.659830][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3351.665041][ T5110] ? __pfx__printk+0x10/0x10 [ 3351.669681][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3351.674393][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3351.679433][ T5110] dump_header+0xda/0x6a0 [ 3351.683771][ T5110] oom_kill_process+0x3a7/0x930 [ 3351.688651][ T5110] out_of_memory+0xf67/0x1320 [ 3351.693356][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3351.698993][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3351.704041][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3351.709196][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3351.714768][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3351.719811][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3351.725907][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3351.731143][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3351.736124][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3351.741082][ T5110] ? mark_lock+0x9a/0x350 [ 3351.745450][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3351.750894][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3351.757089][ T5110] charge_memcg+0xa2/0x160 [ 3351.761543][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3351.767644][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3351.773145][ T5110] ? mark_lock+0x9a/0x350 [ 3351.777521][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3351.783544][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3351.788952][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3351.794875][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3351.799916][ T5110] ? xas_descend+0x37e/0x470 [ 3351.804520][ T5110] swapin_readahead+0x1ea/0x1070 [ 3351.809475][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3351.814632][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3351.820030][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3351.825365][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3351.830696][ T5110] do_swap_page+0x791/0x3f40 [ 3351.835324][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3351.840127][ T5110] ? do_swap_page+0x154/0x3f40 [ 3351.844894][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3351.849943][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3351.855445][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3351.861291][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3351.866468][ T5110] ? reacquire_held_locks+0x3eb/0x690 [ 3351.871881][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3351.877376][ T5110] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3351.883111][ T5110] ? mtree_range_walk+0x6fd/0x8e0 [ 3351.888157][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3351.893384][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3351.898505][ T5110] ? lock_vma_under_rcu+0x2f9/0x730 [ 3351.903729][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3351.908944][ T5110] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3351.914528][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3351.919324][ T5110] exc_page_fault+0x456/0x870 [ 3351.924014][ T5110] asm_exc_page_fault+0x26/0x30 [ 3351.928877][ T5110] RIP: 0033:0x7f080fca4bc6 [ 3351.933341][ T5110] Code: 03 00 00 48 8d b9 08 03 00 00 89 d6 83 ce 02 39 d6 74 21 89 d0 f0 0f b1 37 89 c6 75 1b 83 e2 3b 83 ca 02 83 fa 0a 74 14 89 f0 66 0f 1f 84 00 00 00 00 00 89 d6 eb f0 89 c2 eb ce 50 48 c7 81 [ 3351.952978][ T5110] RSP: 002b:00007f080fecfd28 EFLAGS: 00010293 [ 3351.959059][ T5110] RAX: 0000000000000000 RBX: 0000000000004352 RCX: 0000555556ab4480 [ 3351.967042][ T5110] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000555556ab4788 [ 3351.975054][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000010 R09: 00007ffde33aa0b0 [ 3351.983064][ T5110] R10: 0000000000000000 R11: 000000000009d3b6 R12: 0000000000000032 [ 3351.991052][ T5110] R13: 000000000033228e R14: 000000000033228e R15: 0000000000000000 [ 3351.999054][ T5110] 17:46:10 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async) r1 = syz_usb_connect$cdc_ecm(0x6, 0x8b, &(0x7f0000001080)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x79, 0x1, 0x1, 0x7, 0xa0, 0x3, [{{0x9, 0x4, 0x0, 0x6, 0x3, 0x2, 0x6, 0x0, 0x81, {{0x6, 0x24, 0x6, 0x0, 0x0, "dd"}, {0x5, 0x24, 0x0, 0x100}, {0xd, 0x24, 0xf, 0x1, 0x400, 0x8426, 0x5, 0x1}, [@call_mgmt={0x5, 0x24, 0x1, 0x3, 0x27}, @network_terminal={0x7, 0x24, 0xa, 0xe0, 0x28, 0x1, 0x28}, @dmm={0x7, 0x24, 0x14, 0x1f, 0x7}, @mbim={0xc, 0x24, 0x1b, 0x81, 0xd0, 0x1, 0x0, 0xfffe, 0x9}, @mdlm={0x15, 0x24, 0x12, 0x401}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x4, 0x4, 0x1}}], {{0x9, 0x5, 0x82, 0x2, 0x40, 0x9, 0x4, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0xd0d6d0dc4dd1d549, 0x0, 0xc7, 0x5}}}}}]}}]}}, &(0x7f0000001400)={0xa, &(0x7f0000001140)={0xa, 0x6, 0x110, 0x3, 0x5, 0x1, 0x10, 0x4}, 0x19, &(0x7f0000001180)={0x5, 0xf, 0x19, 0x2, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x0, 0x9, 0x7f, 0x5}, @generic={0xa, 0x10, 0x4, "70660e2e39fb15"}]}, 0x4, [{0xf1, &(0x7f00000011c0)=@string={0xf1, 0x3, "ce28a03885c064879a7e90a767b1ba885f05157b66bcefb5aae35cc4596fe1121a710e6d8bd55263dd5c28b93b2427331dec26b055ddb3367448faa114b078ee532982a29dab89dbd5c3721fe1994ff99396ec7cb3acc3a84c243baceba8bb6d8632669c5c3220e779fe32916e42c9193be02232faaf60313a4e5fb4b7ee0b6681449510f4979f293b762c66416b095d21d8f0556f1846aae415ad31f0039cfdc38243cc8b6d07ec0c1700ffbda184d7a6b4c2b9a581eadf4717b7f2f1f4a902d3a805e0a79ea920b9c4aaa32f1e74a9615bfa3f747fba3896aee03ac905af19dffda360187b2ed15ffe133ba77276"}}, {0x7, &(0x7f00000012c0)=@string={0x7, 0x3, "faccb8d5e4"}}, {0x13, &(0x7f0000001300)=@string={0x13, 0x3, "5d274f62416bfdee9fb4585d89915bcf5e"}}, {0x93, &(0x7f0000001340)=@string={0x93, 0x3, "796ab91473ff20a1ec705dd7bf6e01b521cef0f00e6d7767122e2155e1c26ea30d2f94ee2328061d2b85fb875943652600539c3287f83acb77b670c01bb8720dec07082658d53f51fe85354065ec16b14517990ef84939ec6cc71898528e579b590bb022028ed2a9d2458782b19c9ede24b828d21c3492f5ee83d5ac665b70f2ce9c7f7979c3262fde41263e3ccdfaa473"}}]}) syz_usb_control_io(r1, &(0x7f0000001700)={0x2c, &(0x7f0000001480)={0x40, 0x5, 0x97, {0x97, 0x0, "271f333176def6089629aa8f59679f08d009659c20986e2d8f78203534b773cf8efe86ed1b7848e4362c5d39305b69d20b33ea1900837d28a0b189763f9097b0eb2a2d26efa14fc533db4755f049f2df42c191fa6db1fcc7c384e04a74bf09c01a0e376276ab4435594b51f2894f01626053d9fa5214ea30aa89e60bbfb60bb7e39dbfe250fc1d7548770922b5cfa5c3f799de4829"}}, &(0x7f0000001540)={0x0, 0x3, 0xd3, @string={0xd3, 0x3, "56530e34e7a0e5c40341b53236e075364c75aa869bad258dc88be06fbee2a5ede7fbee4c1bc7c17e56feadf41c493021887a64a8c9aac6968675666b2fd28b80aca9e4ba8b04d40e068552a8daf09097862554af9a75703a2b025599e9a1fe23bf8d36619091ef19e6fd4963e06c496ff59c75c0aee21283515419f0dc299a056b74a99547c13acab9c5cd5be6cde146662b9cb6fc08df8296261757ef754b77976796513359287b4c30c4e4982a5990b425730312db7c77983413fcb950c5f17ccb2c96feb598e7437bd9b5c9b4bab579"}}, &(0x7f0000001640)={0x0, 0xf, 0x1c, {0x5, 0xf, 0x1c, 0x3, [@ptm_cap={0x3}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x3, 0x1, 0x2}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0xa, 0x4, 0xd0, 0x3}]}}, &(0x7f0000001680)={0x20, 0x29, 0xf, {0xf, 0x29, 0x80, 0x3, 0x56, 0x2, "05663900", '\\.@}'}}, &(0x7f00000016c0)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x7b, 0x60, 0x80, 0x20, 0x1, 0xa077, 0x8}}}, &(0x7f0000001b80)={0x84, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"], &(0x7f00000017c0)={0x0, 0xa, 0x1, 0xa3}, &(0x7f0000001800)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000001840)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f0000001880)={0x20, 0x0, 0x8, {0x120, 0x10, [0xff00]}}, &(0x7f00000018c0)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000001900)={0x40, 0x9, 0x1, 0x5}, &(0x7f0000001940)={0x40, 0xb, 0x2, "c859"}, &(0x7f0000001980)={0x40, 0xf, 0x2, 0xfff}, &(0x7f00000019c0)={0x40, 0x13, 0x6, @multicast}, &(0x7f0000001a00)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, &(0x7f0000001a40)={0x40, 0x19, 0x2, "f4ea"}, &(0x7f0000001a80)={0x40, 0x1a, 0x2, 0x1}, &(0x7f0000001ac0)={0x40, 0x1c, 0x1, 0x8}, &(0x7f0000001b00)={0x40, 0x1e, 0x1, 0x1f}, &(0x7f0000001b40)={0x40, 0x21, 0x1, 0x3}}) (async) syz_usb_disconnect(0xffffffffffffffff) (async) r2 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io(r0, &(0x7f0000000a80)={0x2c, &(0x7f0000000940)={0x0, 0x9, 0x36, {0x36, 0xa, "3aeb39668df8e164e311973b4504db4de129b2b3b2ceac27b58b7cacc2a12a425bdeabedd0c197e6bde7a5e7e5c6e7fbcd7d6c6c"}}, &(0x7f0000000980)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xf0ff}}, &(0x7f00000009c0)={0x0, 0xf, 0x24, {0x5, 0xf, 0x24, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x2f, "dfb1188f3074689620808756a36cb44f"}, @wireless={0xb, 0x10, 0x1, 0xc, 0x11, 0x2, 0x0, 0x8, 0x1}]}}, &(0x7f0000000a00)={0x20, 0x29, 0xf, {0xf, 0x29, 0x7, 0x14, 0x3f, 0x40, "21351019", "2803166b"}}, &(0x7f0000000a40)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x93, 0xfa, 0x1, 0x1, 0x4, 0x400}}}, &(0x7f0000000fc0)={0x84, &(0x7f0000000ac0)={0x0, 0x17, 0xfb, "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"}, &(0x7f0000000c00)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000c40)={0x0, 0x8, 0x1, 0x3f}, &(0x7f0000000c80)={0x20, 0x0, 0x4, {0x2, 0x2}}, &(0x7f0000000cc0)={0x20, 0x0, 0x4, {0x20, 0x8}}, &(0x7f0000000d00)={0x40, 0x7, 0x2, 0x5}, &(0x7f0000000d40)={0x40, 0x9, 0x1, 0xf5}, &(0x7f0000000d80)={0x40, 0xb, 0x2, "52b7"}, &(0x7f0000000dc0)={0x40, 0xf, 0x2, 0x200}, &(0x7f0000000e00)={0x40, 0x13, 0x6, @multicast}, &(0x7f0000000e40)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, &(0x7f0000000e80)={0x40, 0x19, 0x2, "2a8d"}, &(0x7f0000000ec0)={0x40, 0x1a, 0x2, 0xffbf}, &(0x7f0000000f00)={0x40, 0x1c, 0x1, 0x2e}, &(0x7f0000000f40)={0x40, 0x1e, 0x1}, &(0x7f0000000f80)={0x40, 0x21, 0x1}}) (async) syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r2, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_connect(0x5, 0x3d8, &(0x7f00000001c0)={{0x12, 0x1, 0x10, 0xc8, 0x8, 0x9c, 0x20, 0x45e, 0x4c9, 0x318d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3c6, 0x3, 0x1, 0x4, 0x40, 0x6, [{{0x9, 0x4, 0x41, 0x20, 0x7, 0x66, 0xb9, 0x97, 0x7f, [], [{{0x9, 0x5, 0xb, 0x1, 0x20, 0x1, 0x7f}}, {{0x9, 0x5, 0x6, 0x0, 0x0, 0x0, 0x8, 0x7, [@generic={0xc1, 0x22, "5635c019400bf39e057262b50660d540b58653b02db0ea016aea78fd2766d169c48953504799bb0b5d6644b978a89b588c648a0bc007be37fbfd48bf21b7c9ab0b273ee903b0056aea4d15fbf8972c91b0fd4a8de7db7a92a0a2574911bbdea0a0d59f2ab51b38d3467375e153da4c2f259e0cbbb53c68049ffcd806b104db3f62a66fe8e9a6b026a9c4ac304701098dda9d347f1f174d8aff4ce47b17c09cde04173193d89b51f53893751a05a6dd1d9f96672849de32f51d288bd3a10b61"}]}}, {{0x9, 0x5, 0x6, 0x4, 0x3ff, 0x6, 0x7f, 0x5}}, {{0x9, 0x5, 0xc, 0x10, 0x200, 0x9, 0x3f, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x7f, 0x80}]}}, {{0x9, 0x5, 0xe, 0x2, 0x8, 0x5, 0x3, 0x9}}, {{0x9, 0x5, 0xd, 0x10, 0x200, 0x5, 0x2, 0xc3, [@generic={0x31, 0x11, "67861965a40d15110eee32920d11e85ad7316c16604e5b32bba3b219b8d79e4b8d4a2537803e6011905cf0b799e56b"}, @generic={0x93, 0x2, "d00a253461f588bbd7956d24921f12b766a45310583a65e046d8602df5c8283ffe92832a22da84e178aa73ce7ab907fbf628a87e5dcc9b54c9cd3859e5e54505acceeeb06fbb0cdebda2e152f33ec03241a88fd730b62796e84eba7fd40bc80b3c95cfa4f0fb99a607d08d7750a3fd96158bd877c5224ab7edcc0eda6baa572e3a289ec762c9731d9456b666e4bca27712"}]}}, {{0x9, 0x5, 0x6, 0x10, 0x200, 0x4, 0x3f, 0x3f, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x9}]}}]}}, {{0x9, 0x4, 0x4, 0xd9, 0x3, 0xbe, 0x7e, 0x34, 0x3, [], [{{0x9, 0x5, 0x6, 0x8, 0x3ff, 0x5, 0x1, 0x20}}, {{0x9, 0x5, 0xf, 0xc, 0x3ff, 0x6, 0x1, 0xd6, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x4}, @generic={0x5f, 0x7, "54a5208f67d2d81d6dff1b80794fe3f6deca1843dd233896bf15da1f2511c85325066e1c10500cb107481f336cc509e5060c9f595a2759861a1ed60ec8c894f90be5f2f016c7e34583cf39d6260f808efee02998b8f8533e9f5d7e8e30"}]}}, {{0x9, 0x5, 0xd, 0xf9aeec770535faf0, 0x20, 0x6, 0x9a, 0x2, [@generic={0x12, 0x9, "ac840c4875191ef3c4a546787454790c"}]}}]}}, {{0x9, 0x4, 0x88, 0x7f, 0x9, 0x3, 0x1, 0x2, 0xf7, [@cdc_ecm={{0x8, 0x24, 0x6, 0x0, 0x0, "7a19ba"}, {0x5, 0x24, 0x0, 0x5}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x800, 0x4, 0x15}, [@mdlm_detail={0xd, 0x24, 0x13, 0x5, "455db031504f214ec2"}]}, @cdc_ncm={{0x9, 0x24, 0x6, 0x0, 0x1, "af63ca1b"}, {0x5, 0x24, 0x0, 0x8001}, {0xd, 0x24, 0xf, 0x1, 0x8000, 0x2, 0x0, 0x8}, {0x6, 0x24, 0x1a, 0x2, 0x14}, [@mbim_extended={0x8, 0x24, 0x1c, 0x5, 0x7}, @mdlm_detail={0x6a, 0x24, 0x13, 0xc1, "261563f52b679f10dfdb48d8cdb2be719f12795c86ac7d22e069a1bee1049fc41f220e820cca682b327fba7b135ec99f5e011d9d0504a87d6c3755dc099fb66de8e0bbf4a851d7b68ad768c138036fa9c339ed98d17e987da15654868217301eabc8e304ea58"}, @acm={0x4, 0x24, 0x2, 0xc}, @acm={0x4, 0x24, 0x2, 0x4}, @mbim_extended={0x8, 0x24, 0x1c, 0x9, 0x48, 0x5}, @country_functional={0x6, 0x24, 0x7, 0x39, 0x1}]}], [{{0x9, 0x5, 0x4, 0x4, 0x20, 0x1, 0x9, 0x6}}, {{0x9, 0x5, 0xb, 0x0, 0x8, 0x3f, 0x8, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x42, 0x3, 0x401}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0xf0, 0x1}]}}, {{0x9, 0x5, 0x4, 0x3, 0x200, 0x3, 0x5, 0x3b}}, {{0x9, 0x5, 0xf, 0x0, 0x40, 0xff, 0xfb, 0x6}}, {{0x9, 0x5, 0xa, 0x8, 0x8, 0x0, 0x2, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x1, 0x400}]}}, {{0x9, 0x5, 0x3, 0x0, 0x20, 0xfc, 0xfd, 0x24, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x28, 0x2}]}}, {{0x9, 0x5, 0x7, 0x8, 0x10, 0x7f, 0x9, 0x80}}, {{0x9, 0x5, 0x9, 0x18, 0x240, 0x2, 0x7, 0x91}}, {{0x9, 0x5, 0x6, 0x10, 0xf295dad8db799da7, 0xe, 0x3f, 0x4}}]}}]}}]}}, &(0x7f0000000740)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x300, 0xa3, 0x1, 0xff, 0x40, 0x60}, 0x20, &(0x7f0000000100)={0x5, 0xf, 0x20, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0xff, "7f0aee48766cf06cd1e6b748ebdb449d"}, @ext_cap={0x7, 0x10, 0x2, 0x38, 0x1, 0x8, 0xff}]}, 0x2, [{0xa5, &(0x7f00000005c0)=ANY=[@ANYBLOB="a503fc5c1133cf4dc670b2de0ed555c84dde996d05e833bb157f7959247e81cfb110c53dabb497755056e1e4c2b1eaaa8a8b758e55afbdac8b63a124046a62334cae8e36fa7aabd075369da20936b056b2c2f99b12e6d544cdf858237919f2d50f13c76092406ec0d9092ef493ab5359b7310ef0e6c3fd00a2b0dea9c00d6d1b99caaa50038923fd69d78226f11761eb3a80d6d27f04e9e02791c36151ee9348c6c308369e"]}, {0x9a, &(0x7f0000000680)=@string={0x9a, 0x3, "b89a34f289085d1d0d58982663a29dd1b99cb52a51cb86f354ab2b649eef315b111b30b040c2925dde38200f09db03e74f6ccb4165db0a0c790a73e6c8d6588099f0b9c4a41ef5569007949c3ac6a6d839c5ac469b9330293bcca97ec346f2389ff13e27664fb3ab6a32a4a69833fab5158adc8917e9bb935c4c144415a092961a539095db04bd4b748de87feb1dea60a32ad1069247bfc2"}}]}) (async) syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000780)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x42, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x20, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0xff, 0x1, 0x3, 0x1, 0x3, 0x8, {0x9, 0x21, 0xfcc4, 0x5, 0x1, {0x22, 0xff1}}, {{{0x9, 0x5, 0x81, 0x3, 0x20, 0x40, 0xdc, 0x5}}}}}]}}]}}, &(0x7f0000000900)={0xa, &(0x7f00000007c0)={0xa, 0x6, 0x250, 0x4, 0xf8, 0x8, 0x8, 0x3f}, 0x7c, &(0x7f0000000800)={0x5, 0xf, 0x7c, 0x3, [@ssp_cap={0x14, 0x10, 0xa, 0x40, 0x2, 0x1ff, 0xff0f, 0xfff7, [0x3f0f, 0xf]}, @generic={0x5c, 0x10, 0x4, "594508152c2a31d07bb1e679d5a3db9e8161e45fa22943d0d296acd5499458d0a83d8b4825fbcbde1bab4c97f3a9dcd3b805b0e7874ade062ed433a05ad3fb3c49bfbac2b3404c394d8bfc3116740cfea394ba97a42b4062b1"}, @ext_cap={0x7, 0x10, 0x2, 0x10, 0x8, 0x2, 0x4}]}, 0x2, [{0x2, &(0x7f0000000880)=@string={0x2}}, {0x24, &(0x7f00000008c0)=@string={0x24, 0x3, "cb25d191e54fc1809bedd59ac14246a096652dea1074ac8c3ddc9cbc4b70c3f88a57"}}]}) [ 3352.023948][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 153192 [ 3352.031298][ T5110] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3352.039977][ T5110] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3352.066963][ T5110] Memory cgroup stats for /syz0: [ 3352.067140][ T5110] cache 0 [ 3352.075075][ T5110] rss 4096 [ 3352.081911][ T5110] rss_huge 0 [ 3352.090252][ T5110] shmem 0 [ 3352.093454][ T5110] mapped_file 0 [ 3352.100266][ T5110] dirty 0 [ 3352.103332][ T5110] writeback 0 [ 3352.108681][ T5110] workingset_refault_anon 50148 [ 3352.113716][ T5110] workingset_refault_file 0 [ 3352.120913][ T5110] swap 1331200 [ 3352.124397][ T5110] swapcached 4096 [ 3352.129486][ T5110] pgpgin 294418 [ 3352.134914][ T5110] pgpgout 294417 [ 3352.141636][ T5110] pgfault 546953 [ 3352.150400][ T5110] pgmajfault 48217 [ 3352.154139][ T5110] inactive_anon 0 [ 3352.157976][ T5110] active_anon 4096 [ 3352.161710][ T5110] inactive_file 0 [ 3352.165675][ T5110] active_file 0 [ 3352.169154][ T5110] unevictable 0 [ 3352.172629][ T5110] hierarchical_memory_limit 314572800 [ 3352.178157][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3352.184325][ T5110] total_cache 0 [ 3352.187966][ T5110] total_rss 4096 [ 3352.191524][ T5110] total_rss_huge 0 [ 3352.195386][ T5110] total_shmem 0 [ 3352.198910][ T5110] total_mapped_file 0 [ 3352.202902][ T5110] total_dirty 0 [ 3352.206450][ T5110] total_writeback 0 [ 3352.210285][ T5110] total_workingset_refault_anon 50148 [ 3352.215839][ T5110] total_workingset_refault_file 0 [ 3352.220887][ T5110] total_swap 1331200 [ 3352.224792][ T5110] total_swapcached 4096 [ 3352.225849][ T8615] usb 3-1: new high-speed USB device number 85 using dummy_hcd [ 3352.229032][ T5110] total_pgpgin 294418 [ 3352.240626][ T5110] total_pgpgout 294417 [ 3352.244715][ T5110] total_pgfault 546953 [ 3352.249053][ T5110] total_pgmajfault 48217 [ 3352.253327][ T5110] total_inactive_anon 0 [ 3352.257596][ T5110] total_active_anon 4096 [ 3352.261866][ T5110] total_inactive_file 0 [ 3352.266337][ T5110] total_active_file 0 [ 3352.283401][ T5110] total_unevictable 0 [ 3352.287524][ T5110] anon_cost 0 [ 3352.290826][ T5110] file_cost 0 [ 3352.294129][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19392,uid=0 [ 3352.309975][ T5110] Memory cgroup out of memory: Killed process 19392 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:10 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x6e01}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3352.375221][ T5101] Bluetooth: hci8: command 0x041b tx timeout [ 3352.455527][ T8615] usb 3-1: device descriptor read/64, error -71 [ 3352.721806][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3352.733506][ T8615] usb 3-1: new high-speed USB device number 86 using dummy_hcd [ 3352.733548][ T5110] CPU: 1 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3352.751585][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3352.761641][ T5110] Call Trace: [ 3352.764921][ T5110] [ 3352.767855][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3352.772550][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3352.777795][ T5110] ? __pfx__printk+0x10/0x10 [ 3352.782404][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3352.787104][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3352.792150][ T5110] dump_header+0xda/0x6a0 [ 3352.796519][ T5110] oom_kill_process+0x3a7/0x930 [ 3352.801414][ T5110] out_of_memory+0xf67/0x1320 [ 3352.806203][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3352.811849][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3352.817321][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3352.822463][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3352.828050][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3352.833116][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3352.839199][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3352.844407][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3352.849362][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3352.854311][ T5110] ? mark_lock+0x9a/0x350 [ 3352.858676][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3352.864082][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3352.870266][ T5110] charge_memcg+0xa2/0x160 [ 3352.874704][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3352.880786][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3352.886281][ T5110] ? mark_lock+0x9a/0x350 [ 3352.890643][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3352.896676][ T5110] ? blk_start_plug+0x6f/0x1b0 [ 3352.901465][ T5110] swap_cluster_readahead+0x398/0x810 [ 3352.906879][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3352.912796][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3352.917845][ T5110] ? xas_descend+0x37e/0x470 [ 3352.922468][ T5110] swapin_readahead+0x1ea/0x1070 [ 3352.927423][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3352.932587][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3352.937996][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3352.943340][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3352.948997][ T5110] do_swap_page+0x791/0x3f40 [ 3352.953610][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3352.958407][ T5110] ? do_swap_page+0x154/0x3f40 [ 3352.963186][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3352.968232][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3352.973718][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3352.979548][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3352.984717][ T5110] ? reacquire_held_locks+0x3eb/0x690 [ 3352.990117][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3352.995603][ T5110] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3353.001347][ T5110] ? mtree_range_walk+0x6fd/0x8e0 [ 3353.006382][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3353.011593][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3353.016713][ T5110] ? lock_vma_under_rcu+0x2f9/0x730 [ 3353.021940][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3353.027152][ T5110] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3353.032720][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3353.037508][ T5110] exc_page_fault+0x456/0x870 [ 3353.042208][ T5110] asm_exc_page_fault+0x26/0x30 [ 3353.047070][ T5110] RIP: 0033:0x7f080fc7a780 [ 3353.051498][ T5110] Code: ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 <80> 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 [ 3353.071110][ T5110] RSP: 002b:00007f080fecfd58 EFLAGS: 00010246 [ 3353.077186][ T5110] RAX: 00000000000000dd RBX: 0000000000004353 RCX: 0000000000000000 [ 3353.085174][ T5110] RDX: 0000000040000001 RSI: 00007f080fecfdbc RDI: 00000000ffffffff [ 3353.093163][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000010 R09: 00007ffde33aa0b0 [ 3353.101140][ T5110] R10: 00007ffde33aa080 R11: 000000000009d48c R12: 0000000000000032 [ 3353.109206][ T5110] R13: 0000000000332752 R14: 0000000000332752 R15: 0000000000000000 [ 3353.117200][ T5110] [ 3353.125300][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 153581 [ 3353.145290][ T5110] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3353.153228][ T5110] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3353.160789][ T5110] Memory cgroup stats for /syz0: [ 3353.160925][ T5110] cache 0 [ 3353.168941][ T5110] rss 8192 [ 3353.171984][ T5110] rss_huge 0 [ 3353.175682][ T5110] shmem 0 [ 3353.178665][ T5110] mapped_file 0 [ 3353.182145][ T5110] dirty 0 [ 3353.185283][ T5110] writeback 0 [ 3353.188631][ T5110] workingset_refault_anon 50258 [ 3353.193548][ T5110] workingset_refault_file 0 [ 3353.198244][ T5110] swap 1323008 [ 3353.201643][ T5110] swapcached 8192 [ 3353.205569][ T5110] pgpgin 294558 [ 3353.209061][ T5110] pgpgout 294555 [ 3353.212712][ T5110] pgfault 547165 [ 3353.216403][ T5110] pgmajfault 48342 [ 3353.220151][ T5110] inactive_anon 0 [ 3353.223807][ T5110] active_anon 0 [ 3353.227510][ T5110] inactive_file 0 [ 3353.231182][ T5110] active_file 0 [ 3353.234663][ T5110] unevictable 0 [ 3353.238303][ T5110] hierarchical_memory_limit 314572800 [ 3353.243694][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3353.249996][ T5110] total_cache 0 [ 3353.253485][ T5110] total_rss 8192 [ 3353.257206][ T5110] total_rss_huge 0 [ 3353.260965][ T5110] total_shmem 0 [ 3353.264456][ T5110] total_mapped_file 0 [ 3353.268830][ T5110] total_dirty 0 [ 3353.272305][ T5110] total_writeback 0 [ 3353.279773][ T5110] total_workingset_refault_anon 50258 [ 3353.285294][ T5110] total_workingset_refault_file 0 [ 3353.285643][ T8615] usb 3-1: device descriptor read/64, error -71 [ 3353.290409][ T5110] total_swap 1323008 [ 3353.290421][ T5110] total_swapcached 8192 [ 3353.290431][ T5110] total_pgpgin 294558 [ 3353.290441][ T5110] total_pgpgout 294555 [ 3353.290451][ T5110] total_pgfault 547165 [ 3353.290460][ T5110] total_pgmajfault 48342 [ 3353.290469][ T5110] total_inactive_anon 0 [ 3353.290479][ T5110] total_active_anon 0 [ 3353.329595][ T5110] total_inactive_file 0 [ 3353.333752][ T5110] total_active_file 0 [ 3353.338084][ T5110] total_unevictable 0 [ 3353.342120][ T5110] anon_cost 0 [ 3353.345472][ T5110] file_cost 0 [ 3353.348817][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19397,uid=0 17:46:11 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x6e02}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3353.364376][ T5110] Memory cgroup out of memory: Killed process 19397 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3353.416423][ T8615] usb usb3-port1: attempt power cycle [ 3353.631072][T19399] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3353.643178][T19399] CPU: 1 PID: 19399 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3353.653641][T19399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3353.663705][T19399] Call Trace: [ 3353.667003][T19399] [ 3353.670041][T19399] dump_stack_lvl+0x1e7/0x2e0 [ 3353.674740][T19399] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3353.679956][T19399] ? __pfx__printk+0x10/0x10 [ 3353.684612][T19399] ? ___ratelimit+0x4c4/0x670 [ 3353.689330][T19399] ? __pfx____ratelimit+0x10/0x10 [ 3353.694400][T19399] dump_header+0xda/0x6a0 [ 3353.698765][T19399] oom_kill_process+0x3a7/0x930 [ 3353.703666][T19399] out_of_memory+0xf67/0x1320 [ 3353.708391][T19399] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3353.714057][T19399] ? __pfx___mutex_lock+0x10/0x10 [ 3353.719128][T19399] ? __pfx_out_of_memory+0x10/0x10 [ 3353.724276][T19399] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3353.729830][T19399] ? __pfx_lock_release+0x10/0x10 [ 3353.734868][T19399] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3353.740966][T19399] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3353.746188][T19399] ? mem_cgroup_iter+0x422/0x560 [ 3353.751168][T19399] try_charge_memcg+0xda2/0x18a0 [ 3353.756175][T19399] ? __pfx_try_charge_memcg+0x10/0x10 [ 3353.761553][T19399] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3353.767314][T19399] ? __pfx_lock_release+0x10/0x10 [ 3353.772404][T19399] ? memcg_account_kmem+0x1e7/0x210 [ 3353.777633][T19399] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3353.783465][T19399] __memcg_kmem_charge_page+0xe1/0x250 [ 3353.788960][T19399] memcg_charge_kernel_stack+0x210/0x550 [ 3353.794611][T19399] dup_task_struct+0x15d/0x7d0 [ 3353.799402][T19399] copy_process+0x5d5/0x3fc0 [ 3353.804042][T19399] ? __might_fault+0xa9/0x120 [ 3353.808755][T19399] ? __pfx_lock_release+0x10/0x10 [ 3353.813810][T19399] ? __pfx_copy_process+0x10/0x10 [ 3353.818852][T19399] ? __might_fault+0xc5/0x120 [ 3353.823570][T19399] ? __asan_memset+0x23/0x50 [ 3353.828193][T19399] kernel_clone+0x21d/0x8d0 [ 3353.832708][T19399] ? __pfx_kernel_clone+0x10/0x10 [ 3353.837785][T19399] __se_sys_clone3+0x2cb/0x350 [ 3353.842566][T19399] ? __pfx___se_sys_clone3+0x10/0x10 [ 3353.847894][T19399] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3353.853931][T19399] ? exc_page_fault+0x587/0x870 [ 3353.858847][T19399] ? do_syscall_64+0xb4/0x240 [ 3353.863566][T19399] do_syscall_64+0xf9/0x240 [ 3353.868088][T19399] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3353.873998][T19399] RIP: 0033:0x7f080fca9b99 [ 3353.878471][T19399] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3353.895767][ T8615] usb 3-1: new high-speed USB device number 87 using dummy_hcd [ 3353.898076][T19399] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3353.914092][T19399] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3353.922093][T19399] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3353.930084][T19399] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3353.938064][T19399] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3353.946052][T19399] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3353.954070][T19399] [ 3353.958040][T19399] memory: usage 307200kB, limit 307200kB, failcnt 153849 [ 3353.973706][T19399] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3353.981699][T19399] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3353.994357][T19399] Memory cgroup stats for /syz0: [ 3353.994487][T19399] cache 0 [ 3354.002449][T19399] rss 0 [ 3354.005541][T19399] rss_huge 0 [ 3354.015204][T19399] shmem 0 [ 3354.018200][T19399] mapped_file 0 [ 3354.021662][T19399] dirty 0 [ 3354.024612][T19399] writeback 0 17:46:12 executing program 2: syz_usb_disconnect(0xffffffffffffffff) syz_usb_disconnect(0xffffffffffffffff) r0 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_disconnect(r0) (async) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x22, 0x7, {[@main=@item_012={0x1, 0x0, 0xb, "d9"}, @main=@item_4={0x3, 0x0, 0xa, "e5adecc4"}]}}, 0x0}, 0x0) [ 3354.038925][T19399] workingset_refault_anon 50371 [ 3354.044335][T19399] workingset_refault_file 0 [ 3354.049146][T19399] swap 1372160 [ 3354.052550][T19399] swapcached 0 [ 3354.065264][T19399] pgpgin 294695 [ 3354.065428][ T8615] usb 3-1: device descriptor read/8, error -71 [ 3354.068740][T19399] pgpgout 294695 [ 3354.068752][T19399] pgfault 547358 [ 3354.068762][T19399] pgmajfault 48451 [ 3354.068772][T19399] inactive_anon 0 [ 3354.068782][T19399] active_anon 0 [ 3354.103959][T19399] inactive_file 0 [ 3354.109360][T19399] active_file 0 [ 3354.112842][T19399] unevictable 0 [ 3354.121152][T19399] hierarchical_memory_limit 314572800 [ 3354.127812][T19399] hierarchical_memsw_limit 9223372036854771712 [ 3354.134054][T19399] total_cache 0 [ 3354.143421][T19399] total_rss 0 [ 3354.146920][T19399] total_rss_huge 0 [ 3354.150660][T19399] total_shmem 0 [ 3354.154221][T19399] total_mapped_file 0 [ 3354.167686][T19399] total_dirty 0 [ 3354.171171][T19399] total_writeback 0 [ 3354.174996][T19399] total_workingset_refault_anon 50371 [ 3354.185255][T19399] total_workingset_refault_file 0 [ 3354.193105][T19399] total_swap 1372160 [ 3354.199505][T19399] total_swapcached 0 [ 3354.203438][T19399] total_pgpgin 294695 [ 3354.207710][T19399] total_pgpgout 294695 [ 3354.211796][T19399] total_pgfault 547358 [ 3354.216625][T19399] total_pgmajfault 48451 [ 3354.220906][T19399] total_inactive_anon 0 [ 3354.225086][T19399] total_active_anon 0 [ 3354.229169][T19399] total_inactive_file 0 [ 3354.233357][T19399] total_active_file 0 [ 3354.237422][T19399] total_unevictable 0 [ 3354.241438][T19399] anon_cost 0 [ 3354.244741][T19399] file_cost 0 [ 3354.248154][T19399] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19399,uid=0 [ 3354.263796][T19399] Memory cgroup out of memory: Killed process 19399 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:12 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x6e03}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3354.455467][ T5101] Bluetooth: hci8: command 0x040f tx timeout [ 3354.600230][T19402] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3354.610580][T19402] CPU: 0 PID: 19402 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3354.621026][T19402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3354.631109][T19402] Call Trace: [ 3354.634411][T19402] [ 3354.637373][T19402] dump_stack_lvl+0x1e7/0x2e0 [ 3354.642195][T19402] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3354.647424][T19402] ? __pfx__printk+0x10/0x10 [ 3354.652044][T19402] ? ___ratelimit+0x4c4/0x670 [ 3354.656753][T19402] ? __pfx____ratelimit+0x10/0x10 [ 3354.661815][T19402] dump_header+0xda/0x6a0 [ 3354.666177][T19402] oom_kill_process+0x3a7/0x930 [ 3354.671337][T19402] out_of_memory+0xf67/0x1320 [ 3354.676053][T19402] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3354.681736][T19402] ? __pfx___mutex_lock+0x10/0x10 [ 3354.686787][T19402] ? __pfx_out_of_memory+0x10/0x10 [ 3354.691938][T19402] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3354.697504][T19402] ? __pfx_lock_release+0x10/0x10 [ 3354.702548][T19402] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3354.708638][T19402] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3354.713858][T19402] ? mem_cgroup_iter+0x422/0x560 [ 3354.718815][T19402] try_charge_memcg+0xda2/0x18a0 [ 3354.723789][T19402] ? __pfx_try_charge_memcg+0x10/0x10 [ 3354.729196][T19402] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3354.734929][T19402] ? __pfx_lock_release+0x10/0x10 [ 3354.739971][T19402] ? memcg_account_kmem+0x1e7/0x210 [ 3354.745194][T19402] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3354.751009][T19402] __memcg_kmem_charge_page+0xe1/0x250 [ 3354.756484][T19402] memcg_charge_kernel_stack+0x210/0x550 [ 3354.762128][T19402] dup_task_struct+0x15d/0x7d0 [ 3354.766904][T19402] copy_process+0x5d5/0x3fc0 [ 3354.771514][T19402] ? __might_fault+0xa9/0x120 [ 3354.776203][T19402] ? __pfx_lock_release+0x10/0x10 [ 3354.781244][T19402] ? __lock_acquire+0x1345/0x1fd0 [ 3354.786293][T19402] ? __pfx_copy_process+0x10/0x10 [ 3354.791334][T19402] ? __might_fault+0xc5/0x120 [ 3354.796024][T19402] ? __asan_memset+0x23/0x50 [ 3354.800628][T19402] kernel_clone+0x21d/0x8d0 [ 3354.805150][T19402] ? __pfx_kernel_clone+0x10/0x10 [ 3354.810192][T19402] ? __pfx_lock_release+0x10/0x10 [ 3354.815235][T19402] __se_sys_clone3+0x2cb/0x350 [ 3354.820031][T19402] ? __might_fault+0xa9/0x120 [ 3354.824735][T19402] ? __pfx___se_sys_clone3+0x10/0x10 [ 3354.830029][T19402] ? rcu_is_watching+0x15/0xb0 [ 3354.834823][T19402] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3354.840837][T19402] ? exc_page_fault+0x587/0x870 [ 3354.845708][T19402] ? do_syscall_64+0xb4/0x240 [ 3354.850409][T19402] do_syscall_64+0xf9/0x240 [ 3354.854931][T19402] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3354.860843][T19402] RIP: 0033:0x7f080fca9b99 [ 3354.865276][T19402] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3354.884889][T19402] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3354.893313][T19402] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3354.901323][T19402] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3354.909303][T19402] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3354.917286][T19402] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3354.925269][T19402] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3354.933369][T19402] [ 3354.950763][T19402] memory: usage 307200kB, limit 307200kB, failcnt 154197 [ 3354.962494][T19402] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3354.970652][T19402] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3354.978414][T19402] Memory cgroup stats for /syz0: [ 3354.978561][T19402] cache 0 [ 3354.986597][T19402] rss 20480 [ 3354.989776][T19402] rss_huge 0 [ 3354.993023][T19402] shmem 0 [ 3354.996114][T19402] mapped_file 0 [ 3354.999605][T19402] dirty 0 [ 3355.002557][T19402] writeback 0 [ 3355.006019][T19402] workingset_refault_anon 50499 [ 3355.010896][T19402] workingset_refault_file 0 [ 3355.015233][ T8615] usb 3-1: new high-speed USB device number 88 using dummy_hcd [ 3355.015541][T19402] swap 1314816 [ 3355.026435][T19402] swapcached 12288 [ 3355.030186][T19402] pgpgin 294842 [ 3355.033644][T19402] pgpgout 294837 [ 3355.037305][T19402] pgfault 547571 [ 3355.040882][T19402] pgmajfault 48581 [ 3355.044610][T19402] inactive_anon 16384 [ 3355.048722][T19402] active_anon 4096 [ 3355.052469][T19402] inactive_file 0 [ 3355.056351][T19402] active_file 0 [ 3355.059931][T19402] unevictable 0 [ 3355.063406][T19402] hierarchical_memory_limit 314572800 [ 3355.069112][T19402] hierarchical_memsw_limit 9223372036854771712 [ 3355.075623][T19402] total_cache 0 [ 3355.079110][T19402] total_rss 20480 [ 3355.093590][T19402] total_rss_huge 0 17:46:13 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) r1 = syz_usb_connect$hid(0x1, 0x3f, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x1aad, 0xf, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x90, 0x80, [{{0x9, 0x4, 0x0, 0x8, 0x1, 0x3, 0x1, 0x2, 0x9, {0x9, 0x21, 0x8000, 0xff, 0x1, {0x22, 0x59d}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x6, 0xdc, 0x4}}, [{{0x9, 0x5, 0x2, 0x3, 0x0, 0x1f, 0x8, 0x7}}]}}}]}}]}}, &(0x7f0000000300)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x300, 0x0, 0x6, 0x40, 0xff, 0x1}, 0x40, &(0x7f00000001c0)={0x5, 0xf, 0x40, 0x6, [@wireless={0xb, 0x10, 0x1, 0x2, 0x8, 0x1, 0x81, 0x9, 0x84}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x2, 0xd4, 0x6, 0x24, 0x7ff, 0xf3}, @ptm_cap={0x3}, @ptm_cap={0x3}, @ssp_cap={0x1c, 0x10, 0xa, 0x0, 0x4, 0x8000, 0xf0f, 0xffc0, [0xff0000, 0xc0, 0xc0c0, 0x1bf3f]}]}, 0x1, [{0xd9, &(0x7f0000000200)=@string={0xd9, 0x3, "b971a8f44e02e9d1348587bd55be7180d82fa335540d174e841f522edc477ed0020d0d07ccff1266b02df80a070c2592b62e82e964aad3e7f04474213f78b933deb08f03055d79615e308473d3fa8f471693ee890ead510886c76372cd521d21d2ddef214a554a8cbff1122e8073cc07c7afd9249d80c8037bad57007b81d6c078af84cfec1c983ff507731e88d8aa5a7e692f78811b10b24482a7af953eb2886a79b8fb50c5e268e3074fc5da1bdfa905aac6f1d1f48bce3601bcdef16166a36eacb5a5770a0358c17c98d00b1fd431de81847f7a75a9"}}]}) syz_usb_control_io$hid(r1, &(0x7f0000000500)={0x24, &(0x7f0000000340)={0x0, 0x11, 0xd2, {0xd2, 0x7, "96b5829e553a3c8024f3894a76963c9f22c1ce3fc76e6a4574d4b89bf3b7f50e2dc3e91f01277a0132a7ad3ca33d0a5af9f8f8845b4a261ca2c8186332c059bea3eb7efbabf7fb71aa782e7f9e4db8ae7990c18ba33759bf8b95bd88c5c94f2faef17fe3f6ec07d343fa1cbeca99b80e52365018fa83002be6be0212689df37650e49a35a98e433ed2c67916d404b2a7f35795f3bae9c637d47dd0f1cb49840c90e4736727e8f073bc2258f98a06200c4e4da2003ed13f64488f9f5b8c7d712e92584d2c126c472c5acc0eb115d80d1d"}}, &(0x7f0000000440)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x1009}}, &(0x7f0000000480)={0x0, 0x22, 0x7, {[@local=@item_4={0x3, 0x2, 0x8, "8c581969"}, @global=@item_012={0x1, 0x1, 0x2, 'G'}]}}, &(0x7f00000004c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0xa1, 0x2, 0x1, {0x22, 0x40e}}}}, &(0x7f0000000680)={0x2c, &(0x7f0000000540)={0x0, 0x16, 0x3a, "a789b17ebe00e0c352810eb82256802ebbb8b9241d7df267475c802fe911349493a33b81bee8b7d472e7abb9f137071b1fd45e1c82a86fea3d4f"}, &(0x7f0000000580)={0x0, 0xa, 0x1, 0x3}, &(0x7f00000005c0)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000000600)={0x20, 0x1, 0x33, "8cd2219063f848c36eee7bbf76ad0989a3dcb546935ada4586a5797c37481ea89bce3e950f8c0f8a7b5b2fcf1b130f29b72212"}, &(0x7f0000000640)={0x20, 0x3, 0x1, 0x1}}) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r2 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) r3 = syz_usb_connect$hid(0x4, 0x3f, &(0x7f00000006c0)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0xff, 0x56a, 0xbc, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x29, 0x0, 0x6, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x6c, {0x9, 0x21, 0x2ee, 0x7f, 0x1, {0x22, 0x970}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x5, 0x1, 0x1f}}, [{{0x9, 0x5, 0x2, 0x3, 0x20, 0xb3, 0x0, 0x1}}]}}}]}}]}}, &(0x7f00000009c0)={0xa, &(0x7f0000000700)={0xa, 0x6, 0x310, 0x4, 0x6, 0x80, 0x20, 0x74}, 0x5b, &(0x7f0000000740)={0x5, 0xf, 0x5b, 0x6, [@ptm_cap={0x3}, @ssp_cap={0x24, 0x10, 0xa, 0x7f, 0x6, 0x9, 0xff0f, 0x8, [0xff000f, 0xff00, 0x3f00, 0x14000, 0xc000, 0x7f7fff]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x4, 0x81, 0x7, 0x6}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x4e, 0xd9, 0x8001}, @ext_cap={0x7, 0x10, 0x2, 0xe, 0x1, 0x0, 0xe43a}, @ss_container_id={0x14, 0x10, 0x4, 0x65, "4058e3a010013b43aac006827aa566bc"}]}, 0x4, [{0x4, &(0x7f00000007c0)=@lang_id={0x4, 0x3, 0x140c}}, {0xca, &(0x7f0000000800)=@string={0xca, 0x3, "42c3b8c5bac6faf373504dbff8008d83a39d4dfb85cd2007cb187585ad86b21c45bb777ce9e4173ae0d27c6fe7d980cd6a79e81c00e1f38a6447efa5fb099609e1485e435dafb96e96af072e0eb480a0576a83200a51ca77093af3a9d8c7e877ddf8bd98037a9169a94d71c8eecca23780d04b20c9297b13dbdaa17da1aa42e33f278d1f6a90c713f164977bbf80eaa6650dbd0cb3d3d5de0fee49bfdebdec7e0dba261d8de98ab56788dcb158acf77b349564c291096fb564c6bac0b4c44e13fc55a8db45cbf825"}}, {0x4, &(0x7f0000000900)=@lang_id={0x4, 0x3, 0x80c}}, {0x6c, &(0x7f0000000940)=@string={0x6c, 0x3, "8c4ea8fbfd35658dc660650ebc862cd94a72d3b7f45a9f9d2781e8d3164561753183d3164403796805ede2ca292bdb2fdbaf625c7f8ef05fdd7aba99e00000ef930158ac591614ae15c6ff085f9e48e54d45e071488534ee173722b925f64211b04dfffeb37b2bf1c7a4"}}]}) syz_usb_control_io$hid(r3, &(0x7f0000000c80)={0x24, &(0x7f0000000a40)={0x40, 0x31, 0xb9, {0xb9, 0x4, "ba0ace67410a83b8d4341d7486fa6450f590dd3fe27c5d0646b16d460536fb9df52ddf9cd8d2e98de6da34295f7b262b3f44b4d8414ffd2a42592e6fdd992955c2d5b6cf9bd983e7a01e5cfa4b142f79b7686aec359033d2b21a504ae99f35fba83646afd39c104bfe4a14b742fbe8dde1233e2378aa47a94b0a04d03cefe8cb4fe5cd044d81a293ccadd24179f34517ea7d00307b2c59fe19297035bc53d276f951181841f8bb5f0db9ca2eae8c73216cd01512fdfb0b"}}, &(0x7f0000000b00)={0x0, 0x3, 0xeb, @string={0xeb, 0x3, "6018ae70b66f0d96a5d0e898613c61fec0604f062525e0ba93566d89ec479241d5fe670a1dd4ee1820050bbf3dbe0ffa72cf6588365be24ab71a8dc53e0c5ecc02c8dfe97e17a997cf05a0ad15ea7af4720949df9d844d922006c44ab3c7a86ec246f264de79337a8ddd012b264e7c86bc8ae4815011729b1354bbcea520ba06a6cf63ffac0daf2dc05d4fde1ecdbe765f839432ebccb6ff2ddf3733a10fb40c027a23e3fa58bfd46f569b859d29248b3d9377fde420143e6d6c9f8adc67f362280aeab47f19a30e6e997370255ee5de71b991930d3324f5916ceb325be09f37d9f4b3c60290e20eee"}}, &(0x7f0000000c00)={0x0, 0x22, 0x1b, {[@local=@item_4={0x3, 0x2, 0xa, "62775fd2"}, @main=@item_012={0x2, 0x0, 0xa, "60e4"}, @global=@item_4={0x3, 0x1, 0x3, '\x00] o'}, @local=@item_012={0x0, 0x2, 0x7}, @global=@item_4={0x3, 0x1, 0x1, "b877234f"}, @global=@item_012={0x0, 0x1, 0xa}, @local=@item_012={0x1, 0x2, 0x2, '\x00'}, @global=@item_012={0x1, 0x1, 0x6, "98"}, @global=@item_012={0x2, 0x1, 0x13, '1b'}]}}, &(0x7f0000000c40)={0x0, 0x21, 0x9, {0x9, 0x21, 0x2, 0x6, 0x1, {0x22, 0x94}}}}, &(0x7f0000000ec0)={0x2c, &(0x7f0000000cc0)={0x40, 0x15, 0x58, "6d4f49b05b3d94bede440977922323e813536f49d11282ab4ca4b9a2c1620f67b25369bf07892b84c14e4f3dba34f709b1980b67bf843b0666cb1974d797a251cc5de2360a7029c239316c2ac4bced1156f98564119153dd"}, &(0x7f0000000d40)={0x0, 0xa, 0x1, 0x5b}, &(0x7f0000000d80)={0x0, 0x8, 0x1, 0x20}, &(0x7f0000000dc0)={0x20, 0x1, 0xaa, "c403c0ce14548c51b7dbea4b086e6b2e6c7c189f225b9248234222feb578dac6a927326e4eaa84effe7a634ef33dc642580b7d55be69d71e042d5d5f7dec1c598ccebae3e113e26164c90eb7d721a2f42480339963396b942f8891ac75b20576aa62f0314653cabae50b0ac3ef7c104de3abce0fd91dd88d7392d57c68554a7821f0ec542fcac35c9c040bb8be34c850c058073701029f64f30a4bbb9ccc6b26f13f7f87cb2d8c08c055"}, &(0x7f0000000e80)={0x20, 0x3, 0x1, 0x7}}) syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r2, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3355.101083][T19402] total_shmem 0 [ 3355.104580][T19402] total_mapped_file 0 [ 3355.115639][ T8615] usb 3-1: device descriptor read/8, error -71 [ 3355.125186][T19402] total_dirty 0 [ 3355.128697][T19402] total_writeback 0 [ 3355.132669][T19402] total_workingset_refault_anon 50499 [ 3355.144797][T19402] total_workingset_refault_file 0 [ 3355.151793][T19402] total_swap 1314816 [ 3355.164715][T19402] total_swapcached 12288 [ 3355.169343][T19402] total_pgpgin 294842 [ 3355.173437][T19402] total_pgpgout 294837 [ 3355.178225][T19402] total_pgfault 547571 [ 3355.182408][T19402] total_pgmajfault 48581 [ 3355.186909][T19402] total_inactive_anon 16384 [ 3355.191521][T19402] total_active_anon 4096 [ 3355.196591][T19402] total_inactive_file 0 [ 3355.200875][T19402] total_active_file 0 [ 3355.205039][T19402] total_unevictable 0 [ 3355.210630][T19402] anon_cost 0 [ 3355.214002][T19402] file_cost 0 [ 3355.217451][T19402] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19402,uid=0 [ 3355.234045][T19402] Memory cgroup out of memory: Killed process 19402 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:13 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x7a01}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3355.265313][ T8615] usb usb3-port1: unable to enumerate USB device [ 3355.643890][T19405] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3355.654212][T19405] CPU: 1 PID: 19405 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3355.664647][T19405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3355.674732][T19405] Call Trace: [ 3355.678022][T19405] [ 3355.680957][T19405] dump_stack_lvl+0x1e7/0x2e0 [ 3355.685656][T19405] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3355.690960][T19405] ? __pfx__printk+0x10/0x10 [ 3355.695583][T19405] ? ___ratelimit+0x4c4/0x670 [ 3355.700294][T19405] ? __pfx____ratelimit+0x10/0x10 [ 3355.705357][T19405] dump_header+0xda/0x6a0 [ 3355.709719][T19405] oom_kill_process+0x3a7/0x930 [ 3355.714587][T19405] out_of_memory+0xf67/0x1320 [ 3355.719280][T19405] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3355.724929][T19405] ? __pfx___mutex_lock+0x10/0x10 [ 3355.729970][T19405] ? __pfx_out_of_memory+0x10/0x10 [ 3355.735113][T19405] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3355.740687][T19405] ? __pfx_lock_release+0x10/0x10 [ 3355.745731][T19405] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3355.751817][T19405] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3355.757044][T19405] ? mem_cgroup_iter+0x422/0x560 [ 3355.762003][T19405] try_charge_memcg+0xda2/0x18a0 [ 3355.766972][T19405] ? __pfx_try_charge_memcg+0x10/0x10 [ 3355.772442][T19405] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3355.778175][T19405] ? __pfx_lock_release+0x10/0x10 [ 3355.783227][T19405] ? memcg_account_kmem+0x1e7/0x210 [ 3355.788455][T19405] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3355.794278][T19405] __memcg_kmem_charge_page+0xe1/0x250 [ 3355.799812][T19405] memcg_charge_kernel_stack+0x210/0x550 [ 3355.805491][T19405] dup_task_struct+0x40d/0x7d0 [ 3355.810273][T19405] copy_process+0x5d5/0x3fc0 [ 3355.814890][T19405] ? __might_fault+0xa9/0x120 [ 3355.819586][T19405] ? __pfx_lock_release+0x10/0x10 [ 3355.824645][T19405] ? __pfx_copy_process+0x10/0x10 [ 3355.829685][T19405] ? __might_fault+0xc5/0x120 [ 3355.834384][T19405] ? __asan_memset+0x23/0x50 [ 3355.838997][T19405] kernel_clone+0x21d/0x8d0 [ 3355.843519][T19405] ? __pfx_kernel_clone+0x10/0x10 [ 3355.848576][T19405] __se_sys_clone3+0x2cb/0x350 [ 3355.853364][T19405] ? __pfx___se_sys_clone3+0x10/0x10 [ 3355.858667][T19405] ? rcu_is_watching+0x15/0xb0 [ 3355.863457][T19405] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3355.869465][T19405] ? exc_page_fault+0x587/0x870 [ 3355.874335][T19405] ? do_syscall_64+0xb4/0x240 [ 3355.879028][T19405] do_syscall_64+0xf9/0x240 [ 3355.883547][T19405] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3355.889456][T19405] RIP: 0033:0x7f080fca9b99 [ 3355.893876][T19405] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3355.913506][T19405] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3355.921928][T19405] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3355.929922][T19405] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3355.937907][T19405] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3355.945888][T19405] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3355.953865][T19405] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3355.961857][T19405] [ 3355.974482][T19405] memory: usage 307200kB, limit 307200kB, failcnt 154645 [ 3355.981847][T19405] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3355.990442][T19405] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3356.004579][T19405] Memory cgroup stats for /syz0: [ 3356.004849][T19405] cache 0 [ 3356.015532][T19405] rss 0 [ 3356.018340][T19405] rss_huge 0 [ 3356.021550][T19405] shmem 0 [ 3356.024485][T19405] mapped_file 0 [ 3356.028795][T19405] dirty 0 [ 3356.032309][T19405] writeback 0 [ 3356.038321][T19405] workingset_refault_anon 50666 [ 3356.043342][T19405] workingset_refault_file 0 [ 3356.048068][T19405] swap 1372160 [ 3356.051585][T19405] swapcached 0 [ 3356.055038][T19405] pgpgin 295022 [ 3356.058699][T19405] pgpgout 295022 [ 3356.062361][T19405] pgfault 547832 [ 3356.066142][T19405] pgmajfault 48745 [ 3356.069977][T19405] inactive_anon 0 [ 3356.073694][T19405] active_anon 0 [ 3356.080019][T19405] inactive_file 0 [ 3356.084127][T19405] active_file 0 [ 3356.087810][T19405] unevictable 0 [ 3356.091448][T19405] hierarchical_memory_limit 314572800 [ 3356.097053][T19405] hierarchical_memsw_limit 9223372036854771712 [ 3356.103387][T19405] total_cache 0 [ 3356.107231][T19405] total_rss 0 [ 3356.110649][T19405] total_rss_huge 0 [ 3356.114481][T19405] total_shmem 0 [ 3356.118390][T19405] total_mapped_file 0 [ 3356.122531][T19405] total_dirty 0 [ 3356.126390][T19405] total_writeback 0 [ 3356.130346][T19405] total_workingset_refault_anon 50666 [ 3356.136444][T19405] total_workingset_refault_file 0 [ 3356.141597][T19405] total_swap 1372160 [ 3356.145879][T19405] total_swapcached 0 [ 3356.149954][T19405] total_pgpgin 295022 [ 3356.154093][T19405] total_pgpgout 295022 [ 3356.158888][T19405] total_pgfault 547832 [ 3356.163066][T19405] total_pgmajfault 48745 [ 3356.167956][T19405] total_inactive_anon 0 [ 3356.172226][T19405] total_active_anon 0 [ 3356.176868][T19405] total_inactive_file 0 [ 3356.181133][T19405] total_active_file 0 [ 3356.188606][T19405] total_unevictable 0 [ 3356.192695][T19405] anon_cost 0 [ 3356.196575][T19405] file_cost 0 [ 3356.199973][T19405] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19405,uid=0 [ 3356.216310][T19405] Memory cgroup out of memory: Killed process 19405 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:14 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x8100}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3356.454858][T19406] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3356.465531][T19406] CPU: 1 PID: 19406 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3356.476007][T19406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3356.486074][T19406] Call Trace: [ 3356.489361][T19406] [ 3356.492293][T19406] dump_stack_lvl+0x1e7/0x2e0 [ 3356.496980][T19406] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3356.502199][T19406] ? __pfx__printk+0x10/0x10 [ 3356.506806][T19406] ? ___ratelimit+0x4c4/0x670 [ 3356.511489][T19406] ? __pfx____ratelimit+0x10/0x10 [ 3356.516532][T19406] dump_header+0xda/0x6a0 [ 3356.520904][T19406] oom_kill_process+0x3a7/0x930 [ 3356.525788][T19406] out_of_memory+0xf67/0x1320 [ 3356.530490][T19406] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3356.536239][T19406] ? __pfx___mutex_lock+0x10/0x10 [ 3356.541284][T19406] ? __pfx_out_of_memory+0x10/0x10 [ 3356.546500][T19406] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3356.552057][T19406] ? __pfx_lock_release+0x10/0x10 [ 3356.557093][T19406] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3356.563174][T19406] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3356.568391][T19406] ? mem_cgroup_iter+0x422/0x560 [ 3356.568563][ T5101] Bluetooth: hci8: command 0x0419 tx timeout [ 3356.573345][T19406] try_charge_memcg+0xda2/0x18a0 [ 3356.584298][T19406] ? __pfx_try_charge_memcg+0x10/0x10 [ 3356.589706][T19406] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3356.595476][T19406] ? __pfx_lock_release+0x10/0x10 [ 3356.600542][T19406] ? memcg_account_kmem+0x1e7/0x210 [ 3356.605781][T19406] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3356.611597][T19406] __memcg_kmem_charge_page+0xe1/0x250 [ 3356.617078][T19406] memcg_charge_kernel_stack+0x210/0x550 [ 3356.622765][T19406] dup_task_struct+0x15d/0x7d0 [ 3356.627572][T19406] copy_process+0x5d5/0x3fc0 [ 3356.632184][T19406] ? __might_fault+0xa9/0x120 [ 3356.636870][T19406] ? __pfx_lock_release+0x10/0x10 [ 3356.641912][T19406] ? __pfx_copy_process+0x10/0x10 [ 3356.646941][T19406] ? __might_fault+0xc5/0x120 [ 3356.651649][T19406] ? __asan_memset+0x23/0x50 [ 3356.656252][T19406] kernel_clone+0x21d/0x8d0 [ 3356.660768][T19406] ? __pfx_kernel_clone+0x10/0x10 [ 3356.665838][T19406] __se_sys_clone3+0x2cb/0x350 [ 3356.670652][T19406] ? __pfx___se_sys_clone3+0x10/0x10 [ 3356.676003][T19406] ? do_syscall_64+0x108/0x240 [ 3356.680796][T19406] ? do_syscall_64+0xb4/0x240 [ 3356.685486][T19406] do_syscall_64+0xf9/0x240 [ 3356.690007][T19406] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3356.695917][T19406] RIP: 0033:0x7f080fca9b99 [ 3356.700438][T19406] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3356.720067][T19406] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3356.728517][T19406] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3356.736506][T19406] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3356.744480][T19406] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3356.752456][T19406] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3356.760430][T19406] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3356.768438][T19406] [ 3356.780729][T19406] memory: usage 307200kB, limit 307200kB, failcnt 154915 [ 3356.791207][T19406] memory+swap: usage 308536kB, limit 9007199254740988kB, failcnt 0 [ 3356.799314][T19406] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3356.806731][T19406] Memory cgroup stats for /syz0: [ 3356.806848][T19406] cache 0 [ 3356.814754][T19406] rss 8192 [ 3356.818006][T19406] rss_huge 0 [ 3356.821235][T19406] shmem 0 [ 3356.824184][T19406] mapped_file 0 [ 3356.827717][T19406] dirty 0 [ 3356.830669][T19406] writeback 0 [ 3356.833953][T19406] workingset_refault_anon 50744 [ 3356.838921][T19406] workingset_refault_file 0 [ 3356.843439][T19406] swap 1359872 [ 3356.846878][T19406] swapcached 8192 [ 3356.850538][T19406] pgpgin 295112 [ 3356.854016][T19406] pgpgout 295110 [ 3356.857674][T19406] pgfault 547962 [ 3356.861248][T19406] pgmajfault 48820 [ 3356.864967][T19406] inactive_anon 0 [ 3356.868676][T19406] active_anon 8192 [ 3356.872408][T19406] inactive_file 0 [ 3356.876130][T19406] active_file 0 [ 3356.879614][T19406] unevictable 0 [ 3356.883083][T19406] hierarchical_memory_limit 314572800 [ 3356.888662][T19406] hierarchical_memsw_limit 9223372036854771712 [ 3356.894831][T19406] total_cache 0 [ 3356.898392][T19406] total_rss 8192 [ 3356.901961][T19406] total_rss_huge 0 [ 3356.909344][T19406] total_shmem 0 [ 3356.917806][T19406] total_mapped_file 0 [ 3356.921834][T19406] total_dirty 0 [ 3356.925372][T19406] total_writeback 0 [ 3356.929191][T19406] total_workingset_refault_anon 50744 [ 3356.934555][T19406] total_workingset_refault_file 0 [ 3356.939648][T19406] total_swap 1359872 [ 3356.943550][T19406] total_swapcached 8192 [ 3356.947801][T19406] total_pgpgin 295112 [ 3356.951825][T19406] total_pgpgout 295110 [ 3356.955952][T19406] total_pgfault 547962 [ 3356.960056][T19406] total_pgmajfault 48820 [ 3356.964321][T19406] total_inactive_anon 0 [ 3356.968599][T19406] total_active_anon 8192 [ 3356.972856][T19406] total_inactive_file 0 [ 3356.977100][T19406] total_active_file 0 [ 3356.981094][T19406] total_unevictable 0 [ 3356.985081][T19406] anon_cost 0 [ 3356.988467][T19406] file_cost 0 [ 3356.991774][T19406] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19406,uid=0 [ 3357.007486][T19406] Memory cgroup out of memory: Killed process 19406 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:15 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x8a03}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) 17:46:15 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x19, {[@global=@item_012={0x0, 0x1, 0x6}, @main=@item_4={0x3, 0x0, 0x6, "0500"}, @main=@item_012={0x2, 0x0, 0x8, "bae5"}, @local=@item_4={0x3, 0x2, 0x1, "81770313"}, @global=@item_012={0x2, 0x1, 0x4, "866d"}, @local=@item_012={0x2, 0x2, 0x4, "6f93"}, @local=@item_012={0x2, 0x2, 0x7, "aec7"}, @main=@item_012={0x1, 0x0, 0xa, "c4"}]}}, 0x0}, 0x0) r1 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000371055900090582eb1000000001020009050276"], 0x0) syz_usb_control_io$hid(r1, &(0x7f00000009c0)={0x24, 0x0, &(0x7f0000000880)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0) syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x8c, &(0x7f00000006c0)={[{0x86, 0x4e00, "43cb24dbdbd79f7b763d35a6c0a4450ff30712d9e6534f8351f11eba62da8bc4b8ae6b34c041f8a73524e13be93264ad4d73984cf9940d25af06d0fb67474ce742e3d2b5a37a54e412f58467f5d8050268223305fe9b6b0c0eec65ec474d9129984f2c6e71f17f749e9dad504ac640bb718e32233aedb018305c0ff2a8ff0000000000f5ff22"}]}) syz_usb_control_io$cdc_ncm(r1, &(0x7f00000005c0)={0x14, &(0x7f0000000500)={0x20, 0x23, 0x57, {0x57, 0x22, "bda2ebd467e9d56988ddff165a6d89ae75461b8343d700eac29ca2141e04261e37aded1cd299da2ea403e0d67963a887033e10a22d949baa425175325002f4516a9fc724e7d145408312741b9f03df366d4b58cb9d"}}, &(0x7f0000000580)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000840)={0x44, &(0x7f0000000600)={0x0, 0x0, 0x3b, "34f86f9b84ed085c28323c9d5112da48dca81376685eae0dcdc07e5d270bfcbaedf09bb1f819bfef3177512d8bcbd4d97527bc3c34b7ae69467e9b"}, &(0x7f0000000680)={0x0, 0xa, 0x1, 0xf}, &(0x7f00000006c0)={0x0, 0x8, 0x1, 0x4}, &(0x7f0000000700)={0x20, 0x80, 0x1c, {0x0, 0x3, 0x7f, 0xfffb, 0xfeff, 0x8001, 0xa05, 0x1ff, 0x3, 0x8, 0xfff, 0x4}}, &(0x7f0000000740)={0x20, 0x85, 0x4, 0xfffffffd}, &(0x7f0000000780)={0x20, 0x83, 0x2}, &(0x7f00000007c0)={0x20, 0x87, 0x2, 0x3b}, &(0x7f0000000800)={0x20, 0x89, 0x2}}) syz_usb_control_io$cdc_ncm(0xffffffffffffffff, &(0x7f00000001c0)={0x14, &(0x7f00000000c0)={0x20, 0x1, 0xda, {0xda, 0xb, "d147418a13a328538b3c7a5a193bec1d624671fc1c74c4481b3216411762fc0a9faeeb4ede2cfd8019110bd0f516de1f3ecf9bbbc56a33b5217555d0b06cff23b381f5a3b7d74b920dbe7128ca644a2a7001e1191065dfe84687d87e0ed260e13b125a5f720764bd9943a4abf937fd8df1999bb1c30a61592fc16e2962e3c98c3ba32d31f326e6fb0ef141a3500a52f74cbed3bc9a7404bd92d40b180e5b01e405e833b45e32746c02578797713435d24b969690937ecef658f081f8811f6d651345f8e6b37f75ad5b39740835419f2071c4e48a861ee8f8"}}, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000480)={0x44, &(0x7f0000000240)={0x20, 0x31, 0x3b, "578f16a2ce140ce351daac5a4e593ffc913e31821fded5354f5efc689339d05148b93644e34a8d89a325bf6aeff176b3b5c4f40a922eb1fa02c0ba"}, &(0x7f00000002c0)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000300)={0x0, 0x8, 0x1, 0x80}, &(0x7f0000000340)={0x20, 0x80, 0x1c, {0x8001, 0xce5, 0x1, 0x79, 0x7fff, 0x0, 0x0, 0x3, 0x4080, 0x5, 0x101, 0x5}}, &(0x7f0000000380)={0x20, 0x85, 0x4, 0xa2}, &(0x7f00000003c0)={0x20, 0x83, 0x2}, &(0x7f0000000400)={0x20, 0x87, 0x2, 0xffff}, &(0x7f0000000440)={0x20, 0x89, 0x2}}) [ 3357.496351][T19407] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3357.507191][T19407] CPU: 1 PID: 19407 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3357.517738][T19407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3357.527820][T19407] Call Trace: [ 3357.531100][T19407] [ 3357.534042][T19407] dump_stack_lvl+0x1e7/0x2e0 [ 3357.538749][T19407] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3357.543950][T19407] ? __pfx__printk+0x10/0x10 [ 3357.548573][T19407] ? ___ratelimit+0x4c4/0x670 [ 3357.553262][T19407] ? __pfx____ratelimit+0x10/0x10 [ 3357.558323][T19407] dump_header+0xda/0x6a0 [ 3357.562668][T19407] oom_kill_process+0x3a7/0x930 [ 3357.567545][T19407] out_of_memory+0xf67/0x1320 [ 3357.572266][T19407] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3357.577931][T19407] ? __pfx___mutex_lock+0x10/0x10 [ 3357.582987][T19407] ? __pfx_out_of_memory+0x10/0x10 [ 3357.588116][T19407] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3357.593674][T19407] ? __pfx_lock_release+0x10/0x10 [ 3357.598707][T19407] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3357.604803][T19407] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3357.610021][T19407] ? mem_cgroup_iter+0x422/0x560 [ 3357.614967][T19407] try_charge_memcg+0xda2/0x18a0 [ 3357.619939][T19407] ? __pfx_try_charge_memcg+0x10/0x10 [ 3357.625346][T19407] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3357.631100][T19407] ? __pfx_lock_release+0x10/0x10 [ 3357.636163][T19407] ? memcg_account_kmem+0x1e7/0x210 [ 3357.641389][T19407] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3357.647216][T19407] __memcg_kmem_charge_page+0xe1/0x250 [ 3357.652702][T19407] memcg_charge_kernel_stack+0x210/0x550 [ 3357.658362][T19407] dup_task_struct+0x15d/0x7d0 [ 3357.663143][T19407] copy_process+0x5d5/0x3fc0 [ 3357.667761][T19407] ? __might_fault+0xa9/0x120 [ 3357.672455][T19407] ? __pfx_lock_release+0x10/0x10 [ 3357.677499][T19407] ? __lock_acquire+0x1345/0x1fd0 [ 3357.682539][T19407] ? __pfx_copy_process+0x10/0x10 [ 3357.687584][T19407] ? __might_fault+0xc5/0x120 [ 3357.692285][T19407] ? __asan_memset+0x23/0x50 [ 3357.696890][T19407] kernel_clone+0x21d/0x8d0 [ 3357.701404][T19407] ? __pfx_kernel_clone+0x10/0x10 [ 3357.706455][T19407] ? __pfx_lock_release+0x10/0x10 [ 3357.711508][T19407] __se_sys_clone3+0x2cb/0x350 [ 3357.716287][T19407] ? __might_fault+0xa9/0x120 [ 3357.720982][T19407] ? __pfx___se_sys_clone3+0x10/0x10 [ 3357.726299][T19407] ? rcu_is_watching+0x15/0xb0 [ 3357.731115][T19407] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3357.737147][T19407] ? exc_page_fault+0x587/0x870 [ 3357.742027][T19407] ? do_syscall_64+0xb4/0x240 [ 3357.746716][T19407] do_syscall_64+0xf9/0x240 [ 3357.751244][T19407] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3357.757166][T19407] RIP: 0033:0x7f080fca9b99 [ 3357.761593][T19407] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3357.781199][T19407] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3357.789635][T19407] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3357.797610][T19407] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3357.805588][T19407] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3357.813567][T19407] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3357.821545][T19407] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3357.829536][T19407] [ 3357.833348][T18973] usb 3-1: new high-speed USB device number 89 using dummy_hcd [ 3357.849278][T19407] memory: usage 307200kB, limit 307200kB, failcnt 155382 [ 3357.859236][T19407] memory+swap: usage 308568kB, limit 9007199254740988kB, failcnt 0 [ 3357.867323][T19407] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3357.874686][T19407] Memory cgroup stats for /syz0: [ 3357.874793][T19407] cache 0 [ 3357.883354][T19407] rss 0 [ 3357.886266][T19407] rss_huge 0 [ 3357.889564][T19407] shmem 0 [ 3357.892607][T19407] mapped_file 0 [ 3357.900921][T19407] dirty 0 [ 3357.908361][T19407] writeback 0 [ 3357.911743][T19407] workingset_refault_anon 50910 [ 3357.916840][T19407] workingset_refault_file 0 [ 3357.921420][T19407] swap 1400832 [ 3357.924861][T19407] swapcached 0 [ 3357.928597][T19407] pgpgin 295299 [ 3357.932158][T19407] pgpgout 295299 [ 3357.936149][T19407] pgfault 548230 [ 3357.939756][T19407] pgmajfault 48982 [ 3357.943553][T19407] inactive_anon 0 [ 3357.947513][T19407] active_anon 0 [ 3357.951080][T19407] inactive_file 0 [ 3357.954774][T19407] active_file 0 [ 3357.959207][T19407] unevictable 0 [ 3357.963018][T19407] hierarchical_memory_limit 314572800 [ 3357.971426][T19407] hierarchical_memsw_limit 9223372036854771712 [ 3357.977939][T19407] total_cache 0 [ 3357.981424][T19407] total_rss 0 [ 3357.984742][T19407] total_rss_huge 0 [ 3357.988866][T19407] total_shmem 0 [ 3357.992362][T19407] total_mapped_file 0 [ 3357.996408][T19407] total_dirty 0 [ 3357.999881][T19407] total_writeback 0 [ 3358.003704][T19407] total_workingset_refault_anon 50910 [ 3358.009197][T19407] total_workingset_refault_file 0 [ 3358.014259][T19407] total_swap 1400832 [ 3358.018288][T19407] total_swapcached 0 [ 3358.022198][T19407] total_pgpgin 295299 [ 3358.026256][T19407] total_pgpgout 295299 [ 3358.030366][T19407] total_pgfault 548230 [ 3358.034440][T19407] total_pgmajfault 48982 [ 3358.038769][T19407] total_inactive_anon 0 [ 3358.042953][T19407] total_active_anon 0 [ 3358.047030][T19407] total_inactive_file 0 [ 3358.051225][T19407] total_active_file 0 [ 3358.055396][T19407] total_unevictable 0 [ 3358.059393][T19407] anon_cost 0 [ 3358.062688][T19407] file_cost 0 [ 3358.066932][T19407] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19407,uid=0 [ 3358.075390][T18973] usb 3-1: Using ep0 maxpacket: 8 [ 3358.084499][T19407] Memory cgroup out of memory: Killed process 19407 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:16 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) r1 = syz_usb_connect$hid(0x1, 0x3f, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x1aad, 0xf, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x90, 0x80, [{{0x9, 0x4, 0x0, 0x8, 0x1, 0x3, 0x1, 0x2, 0x9, {0x9, 0x21, 0x8000, 0xff, 0x1, {0x22, 0x59d}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x6, 0xdc, 0x4}}, [{{0x9, 0x5, 0x2, 0x3, 0x0, 0x1f, 0x8, 0x7}}]}}}]}}]}}, &(0x7f0000000300)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x300, 0x0, 0x6, 0x40, 0xff, 0x1}, 0x40, &(0x7f00000001c0)={0x5, 0xf, 0x40, 0x6, [@wireless={0xb, 0x10, 0x1, 0x2, 0x8, 0x1, 0x81, 0x9, 0x84}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x2, 0xd4, 0x6, 0x24, 0x7ff, 0xf3}, @ptm_cap={0x3}, @ptm_cap={0x3}, @ssp_cap={0x1c, 0x10, 0xa, 0x0, 0x4, 0x8000, 0xf0f, 0xffc0, [0xff0000, 0xc0, 0xc0c0, 0x1bf3f]}]}, 0x1, [{0xd9, &(0x7f0000000200)=@string={0xd9, 0x3, "b971a8f44e02e9d1348587bd55be7180d82fa335540d174e841f522edc477ed0020d0d07ccff1266b02df80a070c2592b62e82e964aad3e7f04474213f78b933deb08f03055d79615e308473d3fa8f471693ee890ead510886c76372cd521d21d2ddef214a554a8cbff1122e8073cc07c7afd9249d80c8037bad57007b81d6c078af84cfec1c983ff507731e88d8aa5a7e692f78811b10b24482a7af953eb2886a79b8fb50c5e268e3074fc5da1bdfa905aac6f1d1f48bce3601bcdef16166a36eacb5a5770a0358c17c98d00b1fd431de81847f7a75a9"}}]}) syz_usb_control_io$hid(r1, &(0x7f0000000500)={0x24, &(0x7f0000000340)={0x0, 0x11, 0xd2, {0xd2, 0x7, "96b5829e553a3c8024f3894a76963c9f22c1ce3fc76e6a4574d4b89bf3b7f50e2dc3e91f01277a0132a7ad3ca33d0a5af9f8f8845b4a261ca2c8186332c059bea3eb7efbabf7fb71aa782e7f9e4db8ae7990c18ba33759bf8b95bd88c5c94f2faef17fe3f6ec07d343fa1cbeca99b80e52365018fa83002be6be0212689df37650e49a35a98e433ed2c67916d404b2a7f35795f3bae9c637d47dd0f1cb49840c90e4736727e8f073bc2258f98a06200c4e4da2003ed13f64488f9f5b8c7d712e92584d2c126c472c5acc0eb115d80d1d"}}, &(0x7f0000000440)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x1009}}, &(0x7f0000000480)={0x0, 0x22, 0x7, {[@local=@item_4={0x3, 0x2, 0x8, "8c581969"}, @global=@item_012={0x1, 0x1, 0x2, 'G'}]}}, &(0x7f00000004c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0xa1, 0x2, 0x1, {0x22, 0x40e}}}}, &(0x7f0000000680)={0x2c, &(0x7f0000000540)={0x0, 0x16, 0x3a, "a789b17ebe00e0c352810eb82256802ebbb8b9241d7df267475c802fe911349493a33b81bee8b7d472e7abb9f137071b1fd45e1c82a86fea3d4f"}, &(0x7f0000000580)={0x0, 0xa, 0x1, 0x3}, &(0x7f00000005c0)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000000600)={0x20, 0x1, 0x33, "8cd2219063f848c36eee7bbf76ad0989a3dcb546935ada4586a5797c37481ea89bce3e950f8c0f8a7b5b2fcf1b130f29b72212"}, &(0x7f0000000640)={0x20, 0x3, 0x1, 0x1}}) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) r2 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) r3 = syz_usb_connect$hid(0x4, 0x3f, &(0x7f00000006c0)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0xff, 0x56a, 0xbc, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x29, 0x0, 0x6, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x6c, {0x9, 0x21, 0x2ee, 0x7f, 0x1, {0x22, 0x970}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x5, 0x1, 0x1f}}, [{{0x9, 0x5, 0x2, 0x3, 0x20, 0xb3, 0x0, 0x1}}]}}}]}}]}}, &(0x7f00000009c0)={0xa, &(0x7f0000000700)={0xa, 0x6, 0x310, 0x4, 0x6, 0x80, 0x20, 0x74}, 0x5b, &(0x7f0000000740)={0x5, 0xf, 0x5b, 0x6, [@ptm_cap={0x3}, @ssp_cap={0x24, 0x10, 0xa, 0x7f, 0x6, 0x9, 0xff0f, 0x8, [0xff000f, 0xff00, 0x3f00, 0x14000, 0xc000, 0x7f7fff]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x4, 0x81, 0x7, 0x6}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x4e, 0xd9, 0x8001}, @ext_cap={0x7, 0x10, 0x2, 0xe, 0x1, 0x0, 0xe43a}, @ss_container_id={0x14, 0x10, 0x4, 0x65, "4058e3a010013b43aac006827aa566bc"}]}, 0x4, [{0x4, &(0x7f00000007c0)=@lang_id={0x4, 0x3, 0x140c}}, {0xca, &(0x7f0000000800)=@string={0xca, 0x3, "42c3b8c5bac6faf373504dbff8008d83a39d4dfb85cd2007cb187585ad86b21c45bb777ce9e4173ae0d27c6fe7d980cd6a79e81c00e1f38a6447efa5fb099609e1485e435dafb96e96af072e0eb480a0576a83200a51ca77093af3a9d8c7e877ddf8bd98037a9169a94d71c8eecca23780d04b20c9297b13dbdaa17da1aa42e33f278d1f6a90c713f164977bbf80eaa6650dbd0cb3d3d5de0fee49bfdebdec7e0dba261d8de98ab56788dcb158acf77b349564c291096fb564c6bac0b4c44e13fc55a8db45cbf825"}}, {0x4, &(0x7f0000000900)=@lang_id={0x4, 0x3, 0x80c}}, {0x6c, &(0x7f0000000940)=@string={0x6c, 0x3, "8c4ea8fbfd35658dc660650ebc862cd94a72d3b7f45a9f9d2781e8d3164561753183d3164403796805ede2ca292bdb2fdbaf625c7f8ef05fdd7aba99e00000ef930158ac591614ae15c6ff085f9e48e54d45e071488534ee173722b925f64211b04dfffeb37b2bf1c7a4"}}]}) syz_usb_control_io$hid(r3, &(0x7f0000000c80)={0x24, &(0x7f0000000a40)={0x40, 0x31, 0xb9, {0xb9, 0x4, "ba0ace67410a83b8d4341d7486fa6450f590dd3fe27c5d0646b16d460536fb9df52ddf9cd8d2e98de6da34295f7b262b3f44b4d8414ffd2a42592e6fdd992955c2d5b6cf9bd983e7a01e5cfa4b142f79b7686aec359033d2b21a504ae99f35fba83646afd39c104bfe4a14b742fbe8dde1233e2378aa47a94b0a04d03cefe8cb4fe5cd044d81a293ccadd24179f34517ea7d00307b2c59fe19297035bc53d276f951181841f8bb5f0db9ca2eae8c73216cd01512fdfb0b"}}, &(0x7f0000000b00)={0x0, 0x3, 0xeb, @string={0xeb, 0x3, "6018ae70b66f0d96a5d0e898613c61fec0604f062525e0ba93566d89ec479241d5fe670a1dd4ee1820050bbf3dbe0ffa72cf6588365be24ab71a8dc53e0c5ecc02c8dfe97e17a997cf05a0ad15ea7af4720949df9d844d922006c44ab3c7a86ec246f264de79337a8ddd012b264e7c86bc8ae4815011729b1354bbcea520ba06a6cf63ffac0daf2dc05d4fde1ecdbe765f839432ebccb6ff2ddf3733a10fb40c027a23e3fa58bfd46f569b859d29248b3d9377fde420143e6d6c9f8adc67f362280aeab47f19a30e6e997370255ee5de71b991930d3324f5916ceb325be09f37d9f4b3c60290e20eee"}}, &(0x7f0000000c00)={0x0, 0x22, 0x1b, {[@local=@item_4={0x3, 0x2, 0xa, "62775fd2"}, @main=@item_012={0x2, 0x0, 0xa, "60e4"}, @global=@item_4={0x3, 0x1, 0x3, '\x00] o'}, @local=@item_012={0x0, 0x2, 0x7}, @global=@item_4={0x3, 0x1, 0x1, "b877234f"}, @global=@item_012={0x0, 0x1, 0xa}, @local=@item_012={0x1, 0x2, 0x2, '\x00'}, @global=@item_012={0x1, 0x1, 0x6, "98"}, @global=@item_012={0x2, 0x1, 0x13, '1b'}]}}, &(0x7f0000000c40)={0x0, 0x21, 0x9, {0x9, 0x21, 0x2, 0x6, 0x1, {0x22, 0x94}}}}, &(0x7f0000000ec0)={0x2c, &(0x7f0000000cc0)={0x40, 0x15, 0x58, "6d4f49b05b3d94bede440977922323e813536f49d11282ab4ca4b9a2c1620f67b25369bf07892b84c14e4f3dba34f709b1980b67bf843b0666cb1974d797a251cc5de2360a7029c239316c2ac4bced1156f98564119153dd"}, &(0x7f0000000d40)={0x0, 0xa, 0x1, 0x5b}, &(0x7f0000000d80)={0x0, 0x8, 0x1, 0x20}, &(0x7f0000000dc0)={0x20, 0x1, 0xaa, "c403c0ce14548c51b7dbea4b086e6b2e6c7c189f225b9248234222feb578dac6a927326e4eaa84effe7a634ef33dc642580b7d55be69d71e042d5d5f7dec1c598ccebae3e113e26164c90eb7d721a2f42480339963396b942f8891ac75b20576aa62f0314653cabae50b0ac3ef7c104de3abce0fd91dd88d7392d57c68554a7821f0ec542fcac35c9c040bb8be34c850c058073701029f64f30a4bbb9ccc6b26f13f7f87cb2d8c08c055"}, &(0x7f0000000e80)={0x20, 0x3, 0x1, 0x7}}) syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r2, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) (async) syz_usb_connect$hid(0x1, 0x3f, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x1aad, 0xf, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x90, 0x80, [{{0x9, 0x4, 0x0, 0x8, 0x1, 0x3, 0x1, 0x2, 0x9, {0x9, 0x21, 0x8000, 0xff, 0x1, {0x22, 0x59d}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x6, 0xdc, 0x4}}, [{{0x9, 0x5, 0x2, 0x3, 0x0, 0x1f, 0x8, 0x7}}]}}}]}}]}}, &(0x7f0000000300)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x300, 0x0, 0x6, 0x40, 0xff, 0x1}, 0x40, &(0x7f00000001c0)={0x5, 0xf, 0x40, 0x6, [@wireless={0xb, 0x10, 0x1, 0x2, 0x8, 0x1, 0x81, 0x9, 0x84}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x2, 0xd4, 0x6, 0x24, 0x7ff, 0xf3}, @ptm_cap={0x3}, @ptm_cap={0x3}, @ssp_cap={0x1c, 0x10, 0xa, 0x0, 0x4, 0x8000, 0xf0f, 0xffc0, [0xff0000, 0xc0, 0xc0c0, 0x1bf3f]}]}, 0x1, [{0xd9, &(0x7f0000000200)=@string={0xd9, 0x3, "b971a8f44e02e9d1348587bd55be7180d82fa335540d174e841f522edc477ed0020d0d07ccff1266b02df80a070c2592b62e82e964aad3e7f04474213f78b933deb08f03055d79615e308473d3fa8f471693ee890ead510886c76372cd521d21d2ddef214a554a8cbff1122e8073cc07c7afd9249d80c8037bad57007b81d6c078af84cfec1c983ff507731e88d8aa5a7e692f78811b10b24482a7af953eb2886a79b8fb50c5e268e3074fc5da1bdfa905aac6f1d1f48bce3601bcdef16166a36eacb5a5770a0358c17c98d00b1fd431de81847f7a75a9"}}]}) (async) syz_usb_control_io$hid(r1, &(0x7f0000000500)={0x24, &(0x7f0000000340)={0x0, 0x11, 0xd2, {0xd2, 0x7, "96b5829e553a3c8024f3894a76963c9f22c1ce3fc76e6a4574d4b89bf3b7f50e2dc3e91f01277a0132a7ad3ca33d0a5af9f8f8845b4a261ca2c8186332c059bea3eb7efbabf7fb71aa782e7f9e4db8ae7990c18ba33759bf8b95bd88c5c94f2faef17fe3f6ec07d343fa1cbeca99b80e52365018fa83002be6be0212689df37650e49a35a98e433ed2c67916d404b2a7f35795f3bae9c637d47dd0f1cb49840c90e4736727e8f073bc2258f98a06200c4e4da2003ed13f64488f9f5b8c7d712e92584d2c126c472c5acc0eb115d80d1d"}}, &(0x7f0000000440)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x1009}}, &(0x7f0000000480)={0x0, 0x22, 0x7, {[@local=@item_4={0x3, 0x2, 0x8, "8c581969"}, @global=@item_012={0x1, 0x1, 0x2, 'G'}]}}, &(0x7f00000004c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0xa1, 0x2, 0x1, {0x22, 0x40e}}}}, &(0x7f0000000680)={0x2c, &(0x7f0000000540)={0x0, 0x16, 0x3a, "a789b17ebe00e0c352810eb82256802ebbb8b9241d7df267475c802fe911349493a33b81bee8b7d472e7abb9f137071b1fd45e1c82a86fea3d4f"}, &(0x7f0000000580)={0x0, 0xa, 0x1, 0x3}, &(0x7f00000005c0)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000000600)={0x20, 0x1, 0x33, "8cd2219063f848c36eee7bbf76ad0989a3dcb546935ada4586a5797c37481ea89bce3e950f8c0f8a7b5b2fcf1b130f29b72212"}, &(0x7f0000000640)={0x20, 0x3, 0x1, 0x1}}) (async) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) syz_usb_connect$hid(0x4, 0x3f, &(0x7f00000006c0)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0xff, 0x56a, 0xbc, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x29, 0x0, 0x6, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x6c, {0x9, 0x21, 0x2ee, 0x7f, 0x1, {0x22, 0x970}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x5, 0x1, 0x1f}}, [{{0x9, 0x5, 0x2, 0x3, 0x20, 0xb3, 0x0, 0x1}}]}}}]}}]}}, &(0x7f00000009c0)={0xa, &(0x7f0000000700)={0xa, 0x6, 0x310, 0x4, 0x6, 0x80, 0x20, 0x74}, 0x5b, &(0x7f0000000740)={0x5, 0xf, 0x5b, 0x6, [@ptm_cap={0x3}, @ssp_cap={0x24, 0x10, 0xa, 0x7f, 0x6, 0x9, 0xff0f, 0x8, [0xff000f, 0xff00, 0x3f00, 0x14000, 0xc000, 0x7f7fff]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x4, 0x81, 0x7, 0x6}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x4e, 0xd9, 0x8001}, @ext_cap={0x7, 0x10, 0x2, 0xe, 0x1, 0x0, 0xe43a}, @ss_container_id={0x14, 0x10, 0x4, 0x65, "4058e3a010013b43aac006827aa566bc"}]}, 0x4, [{0x4, &(0x7f00000007c0)=@lang_id={0x4, 0x3, 0x140c}}, {0xca, &(0x7f0000000800)=@string={0xca, 0x3, "42c3b8c5bac6faf373504dbff8008d83a39d4dfb85cd2007cb187585ad86b21c45bb777ce9e4173ae0d27c6fe7d980cd6a79e81c00e1f38a6447efa5fb099609e1485e435dafb96e96af072e0eb480a0576a83200a51ca77093af3a9d8c7e877ddf8bd98037a9169a94d71c8eecca23780d04b20c9297b13dbdaa17da1aa42e33f278d1f6a90c713f164977bbf80eaa6650dbd0cb3d3d5de0fee49bfdebdec7e0dba261d8de98ab56788dcb158acf77b349564c291096fb564c6bac0b4c44e13fc55a8db45cbf825"}}, {0x4, &(0x7f0000000900)=@lang_id={0x4, 0x3, 0x80c}}, {0x6c, &(0x7f0000000940)=@string={0x6c, 0x3, "8c4ea8fbfd35658dc660650ebc862cd94a72d3b7f45a9f9d2781e8d3164561753183d3164403796805ede2ca292bdb2fdbaf625c7f8ef05fdd7aba99e00000ef930158ac591614ae15c6ff085f9e48e54d45e071488534ee173722b925f64211b04dfffeb37b2bf1c7a4"}}]}) (async) syz_usb_control_io$hid(r3, &(0x7f0000000c80)={0x24, &(0x7f0000000a40)={0x40, 0x31, 0xb9, {0xb9, 0x4, "ba0ace67410a83b8d4341d7486fa6450f590dd3fe27c5d0646b16d460536fb9df52ddf9cd8d2e98de6da34295f7b262b3f44b4d8414ffd2a42592e6fdd992955c2d5b6cf9bd983e7a01e5cfa4b142f79b7686aec359033d2b21a504ae99f35fba83646afd39c104bfe4a14b742fbe8dde1233e2378aa47a94b0a04d03cefe8cb4fe5cd044d81a293ccadd24179f34517ea7d00307b2c59fe19297035bc53d276f951181841f8bb5f0db9ca2eae8c73216cd01512fdfb0b"}}, &(0x7f0000000b00)={0x0, 0x3, 0xeb, @string={0xeb, 0x3, "6018ae70b66f0d96a5d0e898613c61fec0604f062525e0ba93566d89ec479241d5fe670a1dd4ee1820050bbf3dbe0ffa72cf6588365be24ab71a8dc53e0c5ecc02c8dfe97e17a997cf05a0ad15ea7af4720949df9d844d922006c44ab3c7a86ec246f264de79337a8ddd012b264e7c86bc8ae4815011729b1354bbcea520ba06a6cf63ffac0daf2dc05d4fde1ecdbe765f839432ebccb6ff2ddf3733a10fb40c027a23e3fa58bfd46f569b859d29248b3d9377fde420143e6d6c9f8adc67f362280aeab47f19a30e6e997370255ee5de71b991930d3324f5916ceb325be09f37d9f4b3c60290e20eee"}}, &(0x7f0000000c00)={0x0, 0x22, 0x1b, {[@local=@item_4={0x3, 0x2, 0xa, "62775fd2"}, @main=@item_012={0x2, 0x0, 0xa, "60e4"}, @global=@item_4={0x3, 0x1, 0x3, '\x00] o'}, @local=@item_012={0x0, 0x2, 0x7}, @global=@item_4={0x3, 0x1, 0x1, "b877234f"}, @global=@item_012={0x0, 0x1, 0xa}, @local=@item_012={0x1, 0x2, 0x2, '\x00'}, @global=@item_012={0x1, 0x1, 0x6, "98"}, @global=@item_012={0x2, 0x1, 0x13, '1b'}]}}, &(0x7f0000000c40)={0x0, 0x21, 0x9, {0x9, 0x21, 0x2, 0x6, 0x1, {0x22, 0x94}}}}, &(0x7f0000000ec0)={0x2c, &(0x7f0000000cc0)={0x40, 0x15, 0x58, "6d4f49b05b3d94bede440977922323e813536f49d11282ab4ca4b9a2c1620f67b25369bf07892b84c14e4f3dba34f709b1980b67bf843b0666cb1974d797a251cc5de2360a7029c239316c2ac4bced1156f98564119153dd"}, &(0x7f0000000d40)={0x0, 0xa, 0x1, 0x5b}, &(0x7f0000000d80)={0x0, 0x8, 0x1, 0x20}, &(0x7f0000000dc0)={0x20, 0x1, 0xaa, "c403c0ce14548c51b7dbea4b086e6b2e6c7c189f225b9248234222feb578dac6a927326e4eaa84effe7a634ef33dc642580b7d55be69d71e042d5d5f7dec1c598ccebae3e113e26164c90eb7d721a2f42480339963396b942f8891ac75b20576aa62f0314653cabae50b0ac3ef7c104de3abce0fd91dd88d7392d57c68554a7821f0ec542fcac35c9c040bb8be34c850c058073701029f64f30a4bbb9ccc6b26f13f7f87cb2d8c08c055"}, &(0x7f0000000e80)={0x20, 0x3, 0x1, 0x7}}) (async) syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0) (async) syz_usb_control_io$cdc_ncm(r2, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) (async) 17:46:16 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0x9600}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3358.216151][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3358.236585][T18973] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3358.246699][T18973] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3358.262012][T18973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3358.272977][T18973] usb 3-1: config 0 descriptor?? [ 3358.572287][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3358.584724][ T5110] CPU: 0 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3358.595088][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3358.605168][ T5110] Call Trace: [ 3358.608471][ T5110] [ 3358.611423][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3358.616148][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3358.621373][ T5110] ? __pfx__printk+0x10/0x10 [ 3358.625977][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3358.630694][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3358.635430][T18973] usbhid 3-1:0.0: can't add hid device: -71 [ 3358.635744][ T5110] dump_header+0xda/0x6a0 [ 3358.641767][T18973] usbhid: probe of 3-1:0.0 failed with error -71 [ 3358.645960][ T5110] oom_kill_process+0x3a7/0x930 [ 3358.645994][ T5110] out_of_memory+0xf67/0x1320 [ 3358.646025][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3358.646052][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3358.646078][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3358.646115][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3358.646140][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3358.646171][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3358.667255][T18973] usb 3-1: USB disconnect, device number 89 [ 3358.667704][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3358.705711][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3358.710697][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3358.715679][ T5110] ? mark_lock+0x9a/0x350 [ 3358.720069][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3358.725510][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3358.731697][ T5110] charge_memcg+0xa2/0x160 [ 3358.736143][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3358.742242][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3358.747713][ T5110] ? mark_lock+0x9a/0x350 [ 3358.752094][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3358.758217][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3358.763638][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3358.769546][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3358.774587][ T5110] ? xas_descend+0x37e/0x470 [ 3358.779208][ T5110] swapin_readahead+0x1ea/0x1070 [ 3358.784171][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3358.789334][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3358.794727][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3358.800039][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3358.805562][ T5110] do_swap_page+0x791/0x3f40 [ 3358.810178][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3358.814980][ T5110] ? do_swap_page+0x154/0x3f40 [ 3358.819761][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3358.824834][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3358.830313][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3358.836168][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3358.841365][ T5110] ? reacquire_held_locks+0x3eb/0x690 [ 3358.846756][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3358.852283][ T5110] ? __pfx_reacquire_held_locks+0x10/0x10 [ 3358.858052][ T5110] ? mtree_range_walk+0x6fd/0x8e0 [ 3358.863106][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3358.868316][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3358.873358][ T5110] ? lock_vma_under_rcu+0x2f9/0x730 [ 3358.878613][ T5110] ? lock_vma_under_rcu+0x18a/0x730 [ 3358.883835][ T5110] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 3358.889402][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3358.894219][ T5110] exc_page_fault+0x456/0x870 [ 3358.898927][ T5110] asm_exc_page_fault+0x26/0x30 [ 3358.903795][ T5110] RIP: 0033:0x7f080fc7a7a4 [ 3358.908213][ T5110] Code: 84 00 00 00 00 00 80 3d 71 57 10 00 00 49 89 ca 74 14 b8 3d 00 00 00 0f 05 48 3d 00 f0 ff ff 77 5d c3 0f 1f 40 00 48 83 ec 28 <89> 54 24 14 48 89 74 24 08 89 7c 24 10 48 89 4c 24 18 e8 d5 a3 02 [ 3358.927824][ T5110] RSP: 002b:00007f080fecfd30 EFLAGS: 00010206 [ 3358.933900][ T5110] RAX: 000000000000011d RBX: 000000000000435a RCX: 0000000000000000 [ 3358.941873][ T5110] RDX: 0000000040000001 RSI: 00007f080fecfdbc RDI: 00000000ffffffff [ 3358.949855][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000010 R09: 00007ffde33aa0b0 [ 3358.957847][ T5110] R10: 0000000000000000 R11: 000000000009d808 R12: 0000000000000032 [ 3358.965845][ T5110] R13: 0000000000333e05 R14: 0000000000333e05 R15: 0000000000000000 [ 3358.973859][ T5110] [ 3358.991191][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 155816 [ 3358.998504][ T5110] memory+swap: usage 308536kB, limit 9007199254740988kB, failcnt 0 [ 3359.006571][ T5110] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3359.013923][ T5110] Memory cgroup stats for /syz0: [ 3359.014043][ T5110] cache 0 [ 3359.022125][ T5110] rss 20480 [ 3359.025295][ T5110] rss_huge 0 [ 3359.028517][ T5110] shmem 0 [ 3359.031459][ T5110] mapped_file 0 [ 3359.034942][ T5110] dirty 0 [ 3359.038437][ T5110] writeback 0 [ 3359.042103][ T5110] workingset_refault_anon 51062 [ 3359.047784][ T5110] workingset_refault_file 0 [ 3359.052459][ T5110] swap 1347584 [ 3359.056448][ T5110] swapcached 8192 [ 3359.060221][ T5110] pgpgin 295472 [ 3359.063770][ T5110] pgpgout 295467 [ 3359.067809][ T5110] pgfault 548470 [ 3359.071486][ T5110] pgmajfault 49133 [ 3359.075583][ T5110] inactive_anon 0 [ 3359.079326][ T5110] active_anon 20480 [ 3359.083228][ T5110] inactive_file 0 [ 3359.087077][ T5110] active_file 0 [ 3359.090563][ T5110] unevictable 0 [ 3359.094124][ T5110] hierarchical_memory_limit 314572800 [ 3359.102598][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3359.108905][ T5110] total_cache 0 [ 3359.112384][ T5110] total_rss 20480 [ 3359.116148][ T5110] total_rss_huge 0 [ 3359.119914][ T5110] total_shmem 0 [ 3359.123378][ T5110] total_mapped_file 0 [ 3359.127448][ T5110] total_dirty 0 [ 3359.130925][ T5110] total_writeback 0 [ 3359.134733][ T5110] total_workingset_refault_anon 51062 [ 3359.140228][ T5110] total_workingset_refault_file 0 [ 3359.145339][ T5110] total_swap 1347584 [ 3359.149257][ T5110] total_swapcached 8192 [ 3359.153444][ T5110] total_pgpgin 295472 [ 3359.157641][ T5110] total_pgpgout 295467 [ 3359.161737][ T5110] total_pgfault 548470 [ 3359.165937][ T5110] total_pgmajfault 49133 [ 3359.170196][ T5110] total_inactive_anon 0 [ 3359.174348][ T5110] total_active_anon 20480 [ 3359.178834][ T5110] total_inactive_file 0 [ 3359.183035][ T5110] total_active_file 0 [ 3359.187143][ T5110] total_unevictable 0 [ 3359.191170][ T5110] anon_cost 0 [ 3359.194468][ T5110] file_cost 0 [ 3359.202220][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19412,uid=0 17:46:17 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xa201}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3359.221367][ T5110] Memory cgroup out of memory: Killed process 19412 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3359.455467][ T8615] usb 3-1: new high-speed USB device number 90 using dummy_hcd [ 3359.591804][T19414] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3359.602534][T19414] CPU: 1 PID: 19414 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3359.613064][T19414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3359.623118][T19414] Call Trace: [ 3359.626416][T19414] [ 3359.629348][T19414] dump_stack_lvl+0x1e7/0x2e0 [ 3359.634039][T19414] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3359.639261][T19414] ? __pfx__printk+0x10/0x10 [ 3359.643869][T19414] ? ___ratelimit+0x4c4/0x670 [ 3359.648568][T19414] ? __pfx____ratelimit+0x10/0x10 [ 3359.653597][T19414] dump_header+0xda/0x6a0 [ 3359.657955][T19414] oom_kill_process+0x3a7/0x930 [ 3359.662850][T19414] out_of_memory+0xf67/0x1320 [ 3359.667646][T19414] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3359.673312][T19414] ? __pfx___mutex_lock+0x10/0x10 [ 3359.678355][T19414] ? __pfx_out_of_memory+0x10/0x10 [ 3359.683475][T19414] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3359.689023][T19414] ? __pfx_lock_release+0x10/0x10 [ 3359.694052][T19414] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3359.700126][T19414] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3359.705344][T19414] ? mem_cgroup_iter+0x422/0x560 [ 3359.710334][T19414] try_charge_memcg+0xda2/0x18a0 [ 3359.715307][T19414] ? __pfx_try_charge_memcg+0x10/0x10 [ 3359.720682][T19414] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3359.726405][T19414] ? __pfx_lock_release+0x10/0x10 [ 3359.731443][T19414] ? memcg_account_kmem+0x1e7/0x210 [ 3359.736672][T19414] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3359.742489][T19414] __memcg_kmem_charge_page+0xe1/0x250 [ 3359.747976][T19414] memcg_charge_kernel_stack+0x210/0x550 [ 3359.753624][T19414] dup_task_struct+0x15d/0x7d0 [ 3359.758400][T19414] copy_process+0x5d5/0x3fc0 [ 3359.763030][T19414] ? __might_fault+0xa9/0x120 [ 3359.767718][T19414] ? __pfx_lock_release+0x10/0x10 [ 3359.772760][T19414] ? __pfx_copy_process+0x10/0x10 [ 3359.777816][T19414] ? __might_fault+0xc5/0x120 [ 3359.782506][T19414] ? __asan_memset+0x23/0x50 [ 3359.787135][T19414] kernel_clone+0x21d/0x8d0 [ 3359.791657][T19414] ? __pfx_kernel_clone+0x10/0x10 [ 3359.796708][T19414] __se_sys_clone3+0x2cb/0x350 [ 3359.801481][T19414] ? __pfx___se_sys_clone3+0x10/0x10 [ 3359.806792][T19414] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3359.812801][T19414] ? exc_page_fault+0x587/0x870 [ 3359.817677][T19414] ? do_syscall_64+0xb4/0x240 [ 3359.822368][T19414] do_syscall_64+0xf9/0x240 [ 3359.826887][T19414] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3359.832796][T19414] RIP: 0033:0x7f080fca9b99 [ 3359.837223][T19414] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3359.856834][T19414] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3359.865258][T19414] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3359.873239][T19414] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3359.881220][T19414] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3359.889200][T19414] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3359.897178][T19414] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3359.905181][T19414] [ 3359.917781][T19414] memory: usage 307200kB, limit 307200kB, failcnt 156217 [ 3359.930679][T19414] memory+swap: usage 308572kB, limit 9007199254740988kB, failcnt 0 [ 3359.938752][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3359.939530][T19414] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3359.951422][T19414] Memory cgroup stats for /syz0: [ 3359.951528][T19414] cache 0 [ 3359.959670][T19414] rss 0 [ 3359.962460][T19414] rss_huge 0 [ 3359.965732][T19414] shmem 0 [ 3359.968717][T19414] mapped_file 0 [ 3359.972203][T19414] dirty 0 [ 3359.975265][T19414] writeback 0 [ 3359.978577][T19414] workingset_refault_anon 51245 [ 3359.983463][T19414] workingset_refault_file 0 [ 3359.988031][T19414] swap 1404928 [ 3359.991414][T19414] swapcached 0 [ 3359.994775][T19414] pgpgin 295666 [ 3359.998319][T19414] pgpgout 295666 [ 3360.001866][T19414] pgfault 548752 [ 3360.005482][T19414] pgmajfault 49299 [ 3360.009213][T19414] inactive_anon 0 [ 3360.012849][T19414] active_anon 0 [ 3360.021518][T19414] inactive_file 0 [ 3360.025240][T19414] active_file 0 [ 3360.028716][T19414] unevictable 0 [ 3360.032189][T19414] hierarchical_memory_limit 314572800 [ 3360.037644][T19414] hierarchical_memsw_limit 9223372036854771712 [ 3360.043811][T19414] total_cache 0 [ 3360.047341][T19414] total_rss 0 [ 3360.050642][T19414] total_rss_huge 0 [ 3360.054369][T19414] total_shmem 0 [ 3360.058017][T19414] total_mapped_file 0 [ 3360.062297][T19414] total_dirty 0 [ 3360.065850][T19414] total_writeback 0 [ 3360.069690][T19414] total_workingset_refault_anon 51245 [ 3360.075071][T19414] total_workingset_refault_file 0 [ 3360.075631][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3360.080171][T19414] total_swap 1404928 [ 3360.095502][T19414] total_swapcached 0 [ 3360.102054][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3360.103406][T19414] total_pgpgin 295666 [ 3360.115549][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3360.119610][T19414] total_pgpgout 295666 [ 3360.124885][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3360.137790][T19414] total_pgfault 548752 [ 3360.141876][T19414] total_pgmajfault 49299 [ 3360.147994][ T8615] usb 3-1: config 0 descriptor?? [ 3360.155860][T19414] total_inactive_anon 0 [ 3360.160042][T19414] total_active_anon 0 [ 3360.164037][T19414] total_inactive_file 0 [ 3360.177509][T19414] total_active_file 0 [ 3360.181663][T19414] total_unevictable 0 [ 3360.186831][T19414] anon_cost 0 [ 3360.190136][T19414] file_cost 0 17:46:18 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) (async, rerun: 32) syz_usb_disconnect(0xffffffffffffffff) (rerun: 32) syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x19, {[@global=@item_012={0x0, 0x1, 0x6}, @main=@item_4={0x3, 0x0, 0x6, "0500"}, @main=@item_012={0x2, 0x0, 0x8, "bae5"}, @local=@item_4={0x3, 0x2, 0x1, "81770313"}, @global=@item_012={0x2, 0x1, 0x4, "866d"}, @local=@item_012={0x2, 0x2, 0x4, "6f93"}, @local=@item_012={0x2, 0x2, 0x7, "aec7"}, @main=@item_012={0x1, 0x0, 0xa, "c4"}]}}, 0x0}, 0x0) (async, rerun: 64) r1 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000371055900090582eb1000000001020009050276"], 0x0) syz_usb_control_io$hid(r1, &(0x7f00000009c0)={0x24, 0x0, &(0x7f0000000880)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0) syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x8c, &(0x7f00000006c0)={[{0x86, 0x4e00, "43cb24dbdbd79f7b763d35a6c0a4450ff30712d9e6534f8351f11eba62da8bc4b8ae6b34c041f8a73524e13be93264ad4d73984cf9940d25af06d0fb67474ce742e3d2b5a37a54e412f58467f5d8050268223305fe9b6b0c0eec65ec474d9129984f2c6e71f17f749e9dad504ac640bb718e32233aedb018305c0ff2a8ff0000000000f5ff22"}]}) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f00000005c0)={0x14, &(0x7f0000000500)={0x20, 0x23, 0x57, {0x57, 0x22, "bda2ebd467e9d56988ddff165a6d89ae75461b8343d700eac29ca2141e04261e37aded1cd299da2ea403e0d67963a887033e10a22d949baa425175325002f4516a9fc724e7d145408312741b9f03df366d4b58cb9d"}}, &(0x7f0000000580)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000840)={0x44, &(0x7f0000000600)={0x0, 0x0, 0x3b, "34f86f9b84ed085c28323c9d5112da48dca81376685eae0dcdc07e5d270bfcbaedf09bb1f819bfef3177512d8bcbd4d97527bc3c34b7ae69467e9b"}, &(0x7f0000000680)={0x0, 0xa, 0x1, 0xf}, &(0x7f00000006c0)={0x0, 0x8, 0x1, 0x4}, &(0x7f0000000700)={0x20, 0x80, 0x1c, {0x0, 0x3, 0x7f, 0xfffb, 0xfeff, 0x8001, 0xa05, 0x1ff, 0x3, 0x8, 0xfff, 0x4}}, &(0x7f0000000740)={0x20, 0x85, 0x4, 0xfffffffd}, &(0x7f0000000780)={0x20, 0x83, 0x2}, &(0x7f00000007c0)={0x20, 0x87, 0x2, 0x3b}, &(0x7f0000000800)={0x20, 0x89, 0x2}}) syz_usb_control_io$cdc_ncm(0xffffffffffffffff, &(0x7f00000001c0)={0x14, &(0x7f00000000c0)={0x20, 0x1, 0xda, {0xda, 0xb, "d147418a13a328538b3c7a5a193bec1d624671fc1c74c4481b3216411762fc0a9faeeb4ede2cfd8019110bd0f516de1f3ecf9bbbc56a33b5217555d0b06cff23b381f5a3b7d74b920dbe7128ca644a2a7001e1191065dfe84687d87e0ed260e13b125a5f720764bd9943a4abf937fd8df1999bb1c30a61592fc16e2962e3c98c3ba32d31f326e6fb0ef141a3500a52f74cbed3bc9a7404bd92d40b180e5b01e405e833b45e32746c02578797713435d24b969690937ecef658f081f8811f6d651345f8e6b37f75ad5b39740835419f2071c4e48a861ee8f8"}}, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000480)={0x44, &(0x7f0000000240)={0x20, 0x31, 0x3b, "578f16a2ce140ce351daac5a4e593ffc913e31821fded5354f5efc689339d05148b93644e34a8d89a325bf6aeff176b3b5c4f40a922eb1fa02c0ba"}, &(0x7f00000002c0)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000300)={0x0, 0x8, 0x1, 0x80}, &(0x7f0000000340)={0x20, 0x80, 0x1c, {0x8001, 0xce5, 0x1, 0x79, 0x7fff, 0x0, 0x0, 0x3, 0x4080, 0x5, 0x101, 0x5}}, &(0x7f0000000380)={0x20, 0x85, 0x4, 0xa2}, &(0x7f00000003c0)={0x20, 0x83, 0x2}, &(0x7f0000000400)={0x20, 0x87, 0x2, 0xffff}, &(0x7f0000000440)={0x20, 0x89, 0x2}}) [ 3360.193432][T19414] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19414,uid=0 [ 3360.215229][T19414] Memory cgroup out of memory: Killed process 19414 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8848kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:18 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xaa00}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3360.244876][ T8615] usb 3-1: can't set config #0, error -71 [ 3360.252473][ T8615] usb 3-1: USB disconnect, device number 90 [ 3360.566675][T19418] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3360.577724][T19418] CPU: 1 PID: 19418 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3360.588208][T19418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3360.598321][T19418] Call Trace: [ 3360.601608][T19418] [ 3360.604542][T19418] dump_stack_lvl+0x1e7/0x2e0 [ 3360.609242][T19418] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3360.614449][T19418] ? __pfx__printk+0x10/0x10 [ 3360.619041][T19418] ? ___ratelimit+0x4c4/0x670 [ 3360.623737][T19418] ? __pfx____ratelimit+0x10/0x10 [ 3360.628796][T19418] dump_header+0xda/0x6a0 [ 3360.633165][T19418] oom_kill_process+0x3a7/0x930 [ 3360.638040][T19418] out_of_memory+0xf67/0x1320 [ 3360.638578][ T8615] usb 3-1: new high-speed USB device number 91 using dummy_hcd [ 3360.642739][T19418] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3360.655929][T19418] ? __pfx___mutex_lock+0x10/0x10 [ 3360.660966][T19418] ? __pfx_out_of_memory+0x10/0x10 [ 3360.666097][T19418] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3360.671657][T19418] ? __pfx_lock_release+0x10/0x10 [ 3360.676699][T19418] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3360.682784][T19418] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3360.688000][T19418] ? mem_cgroup_iter+0x422/0x560 [ 3360.692954][T19418] try_charge_memcg+0xda2/0x18a0 [ 3360.697999][T19418] ? __pfx_try_charge_memcg+0x10/0x10 [ 3360.703405][T19418] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3360.709178][T19418] ? __pfx_lock_release+0x10/0x10 [ 3360.714226][T19418] ? memcg_account_kmem+0x1e7/0x210 [ 3360.719438][T19418] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3360.725254][T19418] __memcg_kmem_charge_page+0xe1/0x250 [ 3360.730736][T19418] memcg_charge_kernel_stack+0x210/0x550 [ 3360.736483][T19418] dup_task_struct+0x15d/0x7d0 [ 3360.741354][T19418] copy_process+0x5d5/0x3fc0 [ 3360.745966][T19418] ? __might_fault+0xa9/0x120 [ 3360.750668][T19418] ? __pfx_lock_release+0x10/0x10 [ 3360.755709][T19418] ? __pfx_copy_process+0x10/0x10 [ 3360.760741][T19418] ? __might_fault+0xc5/0x120 [ 3360.765429][T19418] ? __asan_memset+0x23/0x50 [ 3360.770040][T19418] kernel_clone+0x21d/0x8d0 [ 3360.774559][T19418] ? __pfx_kernel_clone+0x10/0x10 [ 3360.779607][T19418] __se_sys_clone3+0x2cb/0x350 [ 3360.784390][T19418] ? __pfx___se_sys_clone3+0x10/0x10 [ 3360.789837][T19418] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3360.795844][T19418] ? exc_page_fault+0x587/0x870 [ 3360.800712][T19418] ? do_syscall_64+0xb4/0x240 [ 3360.805407][T19418] do_syscall_64+0xf9/0x240 [ 3360.809931][T19418] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3360.815855][T19418] RIP: 0033:0x7f080fca9b99 [ 3360.820278][T19418] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3360.839889][T19418] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3360.848312][T19418] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3360.856293][T19418] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3360.864371][T19418] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3360.872350][T19418] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3360.880329][T19418] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3360.888326][T19418] [ 3360.911043][T19418] memory: usage 307200kB, limit 307200kB, failcnt 156542 [ 3360.919027][T19418] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3360.927182][T19418] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3360.934512][T19418] Memory cgroup stats for /syz0: [ 3360.934641][T19418] cache 0 [ 3360.943804][T19418] rss 4096 [ 3360.946956][T19418] rss_huge 0 [ 3360.950174][T19418] shmem 0 [ 3360.953120][T19418] mapped_file 0 [ 3360.956707][T19418] dirty 0 [ 3360.959733][T19418] writeback 0 [ 3360.963065][T19418] workingset_refault_anon 51362 [ 3360.968111][T19418] workingset_refault_file 0 [ 3360.972638][T19418] swap 1331200 [ 3360.976201][T19418] swapcached 4096 [ 3360.979849][T19418] pgpgin 295813 [ 3360.983328][T19418] pgpgout 295812 [ 3360.986978][T19418] pgfault 548968 [ 3360.990535][T19418] pgmajfault 49432 [ 3360.994285][T19418] inactive_anon 0 [ 3360.998031][T19418] active_anon 0 [ 3361.001503][T19418] inactive_file 0 [ 3361.005300][T19418] active_file 0 [ 3361.008831][T19418] unevictable 0 [ 3361.012300][T19418] hierarchical_memory_limit 314572800 [ 3361.021117][T19418] hierarchical_memsw_limit 9223372036854771712 [ 3361.027435][T19418] total_cache 0 [ 3361.030918][T19418] total_rss 4096 [ 3361.034478][T19418] total_rss_huge 0 [ 3361.038322][T19418] total_shmem 0 [ 3361.041790][T19418] total_mapped_file 0 [ 3361.045918][T19418] total_dirty 0 [ 3361.049405][T19418] total_writeback 0 [ 3361.053231][T19418] total_workingset_refault_anon 51362 [ 3361.058708][T19418] total_workingset_refault_file 0 [ 3361.063740][T19418] total_swap 1331200 [ 3361.067752][T19418] total_swapcached 4096 [ 3361.071922][T19418] total_pgpgin 295813 [ 3361.076125][T19418] total_pgpgout 295812 [ 3361.080209][T19418] total_pgfault 548968 [ 3361.084291][T19418] total_pgmajfault 49432 [ 3361.088893][T19418] total_inactive_anon 0 [ 3361.093076][T19418] total_active_anon 0 [ 3361.097567][T19418] total_inactive_file 0 [ 3361.101757][T19418] total_active_file 0 [ 3361.106260][T19418] total_unevictable 0 [ 3361.110257][T19418] anon_cost 0 [ 3361.113535][T19418] file_cost 0 [ 3361.116960][T19418] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19418,uid=0 [ 3361.135678][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3361.141241][T19418] Memory cgroup out of memory: Killed process 19418 (syz-executor.0) total-vm:54508kB, anon-rss:388kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:19 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xb202}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) 17:46:19 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) (async) r1 = syz_usb_connect$hid(0x1, 0x3f, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x1aad, 0xf, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x90, 0x80, [{{0x9, 0x4, 0x0, 0x8, 0x1, 0x3, 0x1, 0x2, 0x9, {0x9, 0x21, 0x8000, 0xff, 0x1, {0x22, 0x59d}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x6, 0xdc, 0x4}}, [{{0x9, 0x5, 0x2, 0x3, 0x0, 0x1f, 0x8, 0x7}}]}}}]}}]}}, &(0x7f0000000300)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x300, 0x0, 0x6, 0x40, 0xff, 0x1}, 0x40, &(0x7f00000001c0)={0x5, 0xf, 0x40, 0x6, [@wireless={0xb, 0x10, 0x1, 0x2, 0x8, 0x1, 0x81, 0x9, 0x84}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0x2, 0xd4, 0x6, 0x24, 0x7ff, 0xf3}, @ptm_cap={0x3}, @ptm_cap={0x3}, @ssp_cap={0x1c, 0x10, 0xa, 0x0, 0x4, 0x8000, 0xf0f, 0xffc0, [0xff0000, 0xc0, 0xc0c0, 0x1bf3f]}]}, 0x1, [{0xd9, &(0x7f0000000200)=@string={0xd9, 0x3, "b971a8f44e02e9d1348587bd55be7180d82fa335540d174e841f522edc477ed0020d0d07ccff1266b02df80a070c2592b62e82e964aad3e7f04474213f78b933deb08f03055d79615e308473d3fa8f471693ee890ead510886c76372cd521d21d2ddef214a554a8cbff1122e8073cc07c7afd9249d80c8037bad57007b81d6c078af84cfec1c983ff507731e88d8aa5a7e692f78811b10b24482a7af953eb2886a79b8fb50c5e268e3074fc5da1bdfa905aac6f1d1f48bce3601bcdef16166a36eacb5a5770a0358c17c98d00b1fd431de81847f7a75a9"}}]}) syz_usb_control_io$hid(r1, &(0x7f0000000500)={0x24, &(0x7f0000000340)={0x0, 0x11, 0xd2, {0xd2, 0x7, "96b5829e553a3c8024f3894a76963c9f22c1ce3fc76e6a4574d4b89bf3b7f50e2dc3e91f01277a0132a7ad3ca33d0a5af9f8f8845b4a261ca2c8186332c059bea3eb7efbabf7fb71aa782e7f9e4db8ae7990c18ba33759bf8b95bd88c5c94f2faef17fe3f6ec07d343fa1cbeca99b80e52365018fa83002be6be0212689df37650e49a35a98e433ed2c67916d404b2a7f35795f3bae9c637d47dd0f1cb49840c90e4736727e8f073bc2258f98a06200c4e4da2003ed13f64488f9f5b8c7d712e92584d2c126c472c5acc0eb115d80d1d"}}, &(0x7f0000000440)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x1009}}, &(0x7f0000000480)={0x0, 0x22, 0x7, {[@local=@item_4={0x3, 0x2, 0x8, "8c581969"}, @global=@item_012={0x1, 0x1, 0x2, 'G'}]}}, &(0x7f00000004c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0xa1, 0x2, 0x1, {0x22, 0x40e}}}}, &(0x7f0000000680)={0x2c, &(0x7f0000000540)={0x0, 0x16, 0x3a, "a789b17ebe00e0c352810eb82256802ebbb8b9241d7df267475c802fe911349493a33b81bee8b7d472e7abb9f137071b1fd45e1c82a86fea3d4f"}, &(0x7f0000000580)={0x0, 0xa, 0x1, 0x3}, &(0x7f00000005c0)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000000600)={0x20, 0x1, 0x33, "8cd2219063f848c36eee7bbf76ad0989a3dcb546935ada4586a5797c37481ea89bce3e950f8c0f8a7b5b2fcf1b130f29b72212"}, &(0x7f0000000640)={0x20, 0x3, 0x1, 0x1}}) syz_usb_disconnect(r0) (async) syz_usb_disconnect(0xffffffffffffffff) (async) r2 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) (async) r3 = syz_usb_connect$hid(0x4, 0x3f, &(0x7f00000006c0)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0xff, 0x56a, 0xbc, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x29, 0x0, 0x6, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x1, 0x0, 0x6c, {0x9, 0x21, 0x2ee, 0x7f, 0x1, {0x22, 0x970}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x5, 0x1, 0x1f}}, [{{0x9, 0x5, 0x2, 0x3, 0x20, 0xb3, 0x0, 0x1}}]}}}]}}]}}, &(0x7f00000009c0)={0xa, &(0x7f0000000700)={0xa, 0x6, 0x310, 0x4, 0x6, 0x80, 0x20, 0x74}, 0x5b, &(0x7f0000000740)={0x5, 0xf, 0x5b, 0x6, [@ptm_cap={0x3}, @ssp_cap={0x24, 0x10, 0xa, 0x7f, 0x6, 0x9, 0xff0f, 0x8, [0xff000f, 0xff00, 0x3f00, 0x14000, 0xc000, 0x7f7fff]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x4, 0x81, 0x7, 0x6}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x0, 0x4e, 0xd9, 0x8001}, @ext_cap={0x7, 0x10, 0x2, 0xe, 0x1, 0x0, 0xe43a}, @ss_container_id={0x14, 0x10, 0x4, 0x65, "4058e3a010013b43aac006827aa566bc"}]}, 0x4, [{0x4, &(0x7f00000007c0)=@lang_id={0x4, 0x3, 0x140c}}, {0xca, &(0x7f0000000800)=@string={0xca, 0x3, "42c3b8c5bac6faf373504dbff8008d83a39d4dfb85cd2007cb187585ad86b21c45bb777ce9e4173ae0d27c6fe7d980cd6a79e81c00e1f38a6447efa5fb099609e1485e435dafb96e96af072e0eb480a0576a83200a51ca77093af3a9d8c7e877ddf8bd98037a9169a94d71c8eecca23780d04b20c9297b13dbdaa17da1aa42e33f278d1f6a90c713f164977bbf80eaa6650dbd0cb3d3d5de0fee49bfdebdec7e0dba261d8de98ab56788dcb158acf77b349564c291096fb564c6bac0b4c44e13fc55a8db45cbf825"}}, {0x4, &(0x7f0000000900)=@lang_id={0x4, 0x3, 0x80c}}, {0x6c, &(0x7f0000000940)=@string={0x6c, 0x3, "8c4ea8fbfd35658dc660650ebc862cd94a72d3b7f45a9f9d2781e8d3164561753183d3164403796805ede2ca292bdb2fdbaf625c7f8ef05fdd7aba99e00000ef930158ac591614ae15c6ff085f9e48e54d45e071488534ee173722b925f64211b04dfffeb37b2bf1c7a4"}}]}) syz_usb_control_io$hid(r3, &(0x7f0000000c80)={0x24, &(0x7f0000000a40)={0x40, 0x31, 0xb9, {0xb9, 0x4, "ba0ace67410a83b8d4341d7486fa6450f590dd3fe27c5d0646b16d460536fb9df52ddf9cd8d2e98de6da34295f7b262b3f44b4d8414ffd2a42592e6fdd992955c2d5b6cf9bd983e7a01e5cfa4b142f79b7686aec359033d2b21a504ae99f35fba83646afd39c104bfe4a14b742fbe8dde1233e2378aa47a94b0a04d03cefe8cb4fe5cd044d81a293ccadd24179f34517ea7d00307b2c59fe19297035bc53d276f951181841f8bb5f0db9ca2eae8c73216cd01512fdfb0b"}}, &(0x7f0000000b00)={0x0, 0x3, 0xeb, @string={0xeb, 0x3, "6018ae70b66f0d96a5d0e898613c61fec0604f062525e0ba93566d89ec479241d5fe670a1dd4ee1820050bbf3dbe0ffa72cf6588365be24ab71a8dc53e0c5ecc02c8dfe97e17a997cf05a0ad15ea7af4720949df9d844d922006c44ab3c7a86ec246f264de79337a8ddd012b264e7c86bc8ae4815011729b1354bbcea520ba06a6cf63ffac0daf2dc05d4fde1ecdbe765f839432ebccb6ff2ddf3733a10fb40c027a23e3fa58bfd46f569b859d29248b3d9377fde420143e6d6c9f8adc67f362280aeab47f19a30e6e997370255ee5de71b991930d3324f5916ceb325be09f37d9f4b3c60290e20eee"}}, &(0x7f0000000c00)={0x0, 0x22, 0x1b, {[@local=@item_4={0x3, 0x2, 0xa, "62775fd2"}, @main=@item_012={0x2, 0x0, 0xa, "60e4"}, @global=@item_4={0x3, 0x1, 0x3, '\x00] o'}, @local=@item_012={0x0, 0x2, 0x7}, @global=@item_4={0x3, 0x1, 0x1, "b877234f"}, @global=@item_012={0x0, 0x1, 0xa}, @local=@item_012={0x1, 0x2, 0x2, '\x00'}, @global=@item_012={0x1, 0x1, 0x6, "98"}, @global=@item_012={0x2, 0x1, 0x13, '1b'}]}}, &(0x7f0000000c40)={0x0, 0x21, 0x9, {0x9, 0x21, 0x2, 0x6, 0x1, {0x22, 0x94}}}}, &(0x7f0000000ec0)={0x2c, &(0x7f0000000cc0)={0x40, 0x15, 0x58, "6d4f49b05b3d94bede440977922323e813536f49d11282ab4ca4b9a2c1620f67b25369bf07892b84c14e4f3dba34f709b1980b67bf843b0666cb1974d797a251cc5de2360a7029c239316c2ac4bced1156f98564119153dd"}, &(0x7f0000000d40)={0x0, 0xa, 0x1, 0x5b}, &(0x7f0000000d80)={0x0, 0x8, 0x1, 0x20}, &(0x7f0000000dc0)={0x20, 0x1, 0xaa, "c403c0ce14548c51b7dbea4b086e6b2e6c7c189f225b9248234222feb578dac6a927326e4eaa84effe7a634ef33dc642580b7d55be69d71e042d5d5f7dec1c598ccebae3e113e26164c90eb7d721a2f42480339963396b942f8891ac75b20576aa62f0314653cabae50b0ac3ef7c104de3abce0fd91dd88d7392d57c68554a7821f0ec542fcac35c9c040bb8be34c850c058073701029f64f30a4bbb9ccc6b26f13f7f87cb2d8c08c055"}, &(0x7f0000000e80)={0x20, 0x3, 0x1, 0x7}}) (async) syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0) (async) syz_usb_control_io$cdc_ncm(r2, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3361.256104][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3361.274246][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3361.289789][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3361.306669][T19421] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 3361.315405][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3361.337857][T19421] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 3361.348744][ T8615] usb 3-1: config 0 descriptor?? [ 3361.627212][T19419] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3361.637659][T19419] CPU: 1 PID: 19419 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3361.648102][T19419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3361.658212][T19419] Call Trace: [ 3361.661497][T19419] [ 3361.664439][T19419] dump_stack_lvl+0x1e7/0x2e0 [ 3361.669128][T19419] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3361.674337][T19419] ? __pfx__printk+0x10/0x10 [ 3361.678937][T19419] ? ___ratelimit+0x4c4/0x670 [ 3361.683620][T19419] ? __pfx____ratelimit+0x10/0x10 [ 3361.688647][T19419] dump_header+0xda/0x6a0 [ 3361.693064][T19419] oom_kill_process+0x3a7/0x930 [ 3361.697939][T19419] out_of_memory+0xf67/0x1320 [ 3361.702661][T19419] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3361.708333][T19419] ? __pfx___mutex_lock+0x10/0x10 [ 3361.713422][T19419] ? __pfx_out_of_memory+0x10/0x10 [ 3361.718540][T19419] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3361.724084][T19419] ? __pfx_lock_release+0x10/0x10 [ 3361.729131][T19419] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3361.735234][T19419] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3361.740462][T19419] ? mem_cgroup_iter+0x422/0x560 [ 3361.745428][T19419] try_charge_memcg+0xda2/0x18a0 [ 3361.750536][T19419] ? __pfx_try_charge_memcg+0x10/0x10 [ 3361.755943][T19419] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3361.761687][T19419] ? __pfx_lock_release+0x10/0x10 [ 3361.766726][T19419] ? memcg_account_kmem+0x1e7/0x210 [ 3361.771952][T19419] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3361.777762][T19419] __memcg_kmem_charge_page+0xe1/0x250 [ 3361.783242][T19419] memcg_charge_kernel_stack+0x210/0x550 [ 3361.788882][T19419] dup_task_struct+0x40d/0x7d0 [ 3361.793661][T19419] copy_process+0x5d5/0x3fc0 [ 3361.798289][T19419] ? __might_fault+0xa9/0x120 [ 3361.803011][T19419] ? __pfx_lock_release+0x10/0x10 [ 3361.808064][T19419] ? __lock_acquire+0x1345/0x1fd0 [ 3361.813100][T19419] ? __pfx_copy_process+0x10/0x10 [ 3361.818123][T19419] ? __might_fault+0xc5/0x120 [ 3361.822814][T19419] ? __asan_memset+0x23/0x50 [ 3361.827414][T19419] kernel_clone+0x21d/0x8d0 [ 3361.831926][T19419] ? __pfx_kernel_clone+0x10/0x10 [ 3361.836961][T19419] ? __pfx_lock_release+0x10/0x10 [ 3361.841998][T19419] __se_sys_clone3+0x2cb/0x350 [ 3361.846016][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3361.846757][T19419] ? __might_fault+0xa9/0x120 [ 3361.852800][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3361.857312][T19419] ? __pfx___se_sys_clone3+0x10/0x10 [ 3361.857339][T19419] ? rcu_is_watching+0x15/0xb0 [ 3361.857386][T19419] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3361.879802][T19419] ? exc_page_fault+0x587/0x870 [ 3361.884784][ T8615] usb 3-1: USB disconnect, device number 91 [ 3361.884860][T19419] ? do_syscall_64+0xb4/0x240 [ 3361.895558][T19419] do_syscall_64+0xf9/0x240 [ 3361.900110][T19419] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3361.906045][T19419] RIP: 0033:0x7f080fca9b99 [ 3361.910492][T19419] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3361.930308][T19419] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3361.938750][T19419] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3361.946732][T19419] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3361.954723][T19419] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3361.962708][T19419] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3361.970678][T19419] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 17:46:20 executing program 2: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_disconnect(0xffffffffffffffff) (async) syz_usb_disconnect(0xffffffffffffffff) syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x19, {[@global=@item_012={0x0, 0x1, 0x6}, @main=@item_4={0x3, 0x0, 0x6, "0500"}, @main=@item_012={0x2, 0x0, 0x8, "bae5"}, @local=@item_4={0x3, 0x2, 0x1, "81770313"}, @global=@item_012={0x2, 0x1, 0x4, "866d"}, @local=@item_012={0x2, 0x2, 0x4, "6f93"}, @local=@item_012={0x2, 0x2, 0x7, "aec7"}, @main=@item_012={0x1, 0x0, 0xa, "c4"}]}}, 0x0}, 0x0) r1 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000371055900090582eb1000000001020009050276"], 0x0) syz_usb_control_io$hid(r1, &(0x7f00000009c0)={0x24, 0x0, &(0x7f0000000880)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0) (async) syz_usb_control_io$hid(r1, &(0x7f00000009c0)={0x24, 0x0, &(0x7f0000000880)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0) syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x8c, &(0x7f00000006c0)={[{0x86, 0x4e00, "43cb24dbdbd79f7b763d35a6c0a4450ff30712d9e6534f8351f11eba62da8bc4b8ae6b34c041f8a73524e13be93264ad4d73984cf9940d25af06d0fb67474ce742e3d2b5a37a54e412f58467f5d8050268223305fe9b6b0c0eec65ec474d9129984f2c6e71f17f749e9dad504ac640bb718e32233aedb018305c0ff2a8ff0000000000f5ff22"}]}) syz_usb_control_io$cdc_ncm(r1, &(0x7f00000005c0)={0x14, &(0x7f0000000500)={0x20, 0x23, 0x57, {0x57, 0x22, "bda2ebd467e9d56988ddff165a6d89ae75461b8343d700eac29ca2141e04261e37aded1cd299da2ea403e0d67963a887033e10a22d949baa425175325002f4516a9fc724e7d145408312741b9f03df366d4b58cb9d"}}, &(0x7f0000000580)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000840)={0x44, &(0x7f0000000600)={0x0, 0x0, 0x3b, "34f86f9b84ed085c28323c9d5112da48dca81376685eae0dcdc07e5d270bfcbaedf09bb1f819bfef3177512d8bcbd4d97527bc3c34b7ae69467e9b"}, &(0x7f0000000680)={0x0, 0xa, 0x1, 0xf}, &(0x7f00000006c0)={0x0, 0x8, 0x1, 0x4}, &(0x7f0000000700)={0x20, 0x80, 0x1c, {0x0, 0x3, 0x7f, 0xfffb, 0xfeff, 0x8001, 0xa05, 0x1ff, 0x3, 0x8, 0xfff, 0x4}}, &(0x7f0000000740)={0x20, 0x85, 0x4, 0xfffffffd}, &(0x7f0000000780)={0x20, 0x83, 0x2}, &(0x7f00000007c0)={0x20, 0x87, 0x2, 0x3b}, &(0x7f0000000800)={0x20, 0x89, 0x2}}) (async) syz_usb_control_io$cdc_ncm(r1, &(0x7f00000005c0)={0x14, &(0x7f0000000500)={0x20, 0x23, 0x57, {0x57, 0x22, "bda2ebd467e9d56988ddff165a6d89ae75461b8343d700eac29ca2141e04261e37aded1cd299da2ea403e0d67963a887033e10a22d949baa425175325002f4516a9fc724e7d145408312741b9f03df366d4b58cb9d"}}, &(0x7f0000000580)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000840)={0x44, &(0x7f0000000600)={0x0, 0x0, 0x3b, "34f86f9b84ed085c28323c9d5112da48dca81376685eae0dcdc07e5d270bfcbaedf09bb1f819bfef3177512d8bcbd4d97527bc3c34b7ae69467e9b"}, &(0x7f0000000680)={0x0, 0xa, 0x1, 0xf}, &(0x7f00000006c0)={0x0, 0x8, 0x1, 0x4}, &(0x7f0000000700)={0x20, 0x80, 0x1c, {0x0, 0x3, 0x7f, 0xfffb, 0xfeff, 0x8001, 0xa05, 0x1ff, 0x3, 0x8, 0xfff, 0x4}}, &(0x7f0000000740)={0x20, 0x85, 0x4, 0xfffffffd}, &(0x7f0000000780)={0x20, 0x83, 0x2}, &(0x7f00000007c0)={0x20, 0x87, 0x2, 0x3b}, &(0x7f0000000800)={0x20, 0x89, 0x2}}) syz_usb_control_io$cdc_ncm(0xffffffffffffffff, &(0x7f00000001c0)={0x14, &(0x7f00000000c0)={0x20, 0x1, 0xda, {0xda, 0xb, "d147418a13a328538b3c7a5a193bec1d624671fc1c74c4481b3216411762fc0a9faeeb4ede2cfd8019110bd0f516de1f3ecf9bbbc56a33b5217555d0b06cff23b381f5a3b7d74b920dbe7128ca644a2a7001e1191065dfe84687d87e0ed260e13b125a5f720764bd9943a4abf937fd8df1999bb1c30a61592fc16e2962e3c98c3ba32d31f326e6fb0ef141a3500a52f74cbed3bc9a7404bd92d40b180e5b01e405e833b45e32746c02578797713435d24b969690937ecef658f081f8811f6d651345f8e6b37f75ad5b39740835419f2071c4e48a861ee8f8"}}, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000480)={0x44, &(0x7f0000000240)={0x20, 0x31, 0x3b, "578f16a2ce140ce351daac5a4e593ffc913e31821fded5354f5efc689339d05148b93644e34a8d89a325bf6aeff176b3b5c4f40a922eb1fa02c0ba"}, &(0x7f00000002c0)={0x0, 0xa, 0x1, 0x7}, &(0x7f0000000300)={0x0, 0x8, 0x1, 0x80}, &(0x7f0000000340)={0x20, 0x80, 0x1c, {0x8001, 0xce5, 0x1, 0x79, 0x7fff, 0x0, 0x0, 0x3, 0x4080, 0x5, 0x101, 0x5}}, &(0x7f0000000380)={0x20, 0x85, 0x4, 0xa2}, &(0x7f00000003c0)={0x20, 0x83, 0x2}, &(0x7f0000000400)={0x20, 0x87, 0x2, 0xffff}, &(0x7f0000000440)={0x20, 0x89, 0x2}}) [ 3361.978655][T19419] [ 3361.982967][T19419] memory: usage 307200kB, limit 307200kB, failcnt 156971 [ 3362.002045][T19419] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3362.011954][T19419] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3362.019420][T19419] Memory cgroup stats for /syz0: [ 3362.019568][T19419] cache 0 [ 3362.029447][T19419] rss 0 [ 3362.032241][T19419] rss_huge 0 [ 3362.035557][T19419] shmem 0 [ 3362.038511][T19419] mapped_file 0 [ 3362.042113][T19419] dirty 0 [ 3362.045072][T19419] writeback 0 [ 3362.049222][T19419] workingset_refault_anon 51508 [ 3362.054162][T19419] workingset_refault_file 0 [ 3362.062281][T19419] swap 1372160 [ 3362.070779][T19419] swapcached 0 [ 3362.074281][T19419] pgpgin 295981 [ 3362.081654][T19419] pgpgout 295981 [ 3362.085837][T19419] pgfault 549214 [ 3362.089488][T19419] pgmajfault 49584 [ 3362.093270][T19419] inactive_anon 0 [ 3362.102235][T19419] active_anon 0 [ 3362.106418][T19419] inactive_file 0 [ 3362.110175][T19419] active_file 0 [ 3362.113739][T19419] unevictable 0 [ 3362.117967][T19419] hierarchical_memory_limit 314572800 [ 3362.123419][T19419] hierarchical_memsw_limit 9223372036854771712 [ 3362.130181][T19419] total_cache 0 [ 3362.133743][T19419] total_rss 0 [ 3362.140990][T19419] total_rss_huge 0 [ 3362.144842][T19419] total_shmem 0 [ 3362.148832][T19419] total_mapped_file 0 [ 3362.152840][T19419] total_dirty 0 [ 3362.156697][T19419] total_writeback 0 [ 3362.160604][T19419] total_workingset_refault_anon 51508 [ 3362.166063][T19419] total_workingset_refault_file 0 [ 3362.171101][T19419] total_swap 1372160 [ 3362.175001][T19419] total_swapcached 0 [ 3362.178950][T19419] total_pgpgin 295981 [ 3362.182935][T19419] total_pgpgout 295981 [ 3362.187172][T19419] total_pgfault 549214 [ 3362.191261][T19419] total_pgmajfault 49584 [ 3362.195761][T19419] total_inactive_anon 0 [ 3362.199947][T19419] total_active_anon 0 [ 3362.203961][T19419] total_inactive_file 0 [ 3362.208984][T19419] total_active_file 0 [ 3362.212987][T19419] total_unevictable 0 [ 3362.217700][T19419] anon_cost 0 [ 3362.221041][T19419] file_cost 0 17:46:20 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xb601}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3362.224322][T19419] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19419,uid=0 [ 3362.245780][T19419] Memory cgroup out of memory: Killed process 19419 (syz-executor.0) total-vm:54508kB, anon-rss:360kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 [ 3362.475586][ T8615] usb 3-1: new high-speed USB device number 92 using dummy_hcd [ 3362.631104][ T5110] syz-executor.0 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3362.645830][ T5110] CPU: 0 PID: 5110 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3362.656231][ T5110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3362.666300][ T5110] Call Trace: [ 3362.669585][ T5110] [ 3362.672523][ T5110] dump_stack_lvl+0x1e7/0x2e0 [ 3362.677227][ T5110] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3362.682443][ T5110] ? __pfx__printk+0x10/0x10 [ 3362.687088][ T5110] ? ___ratelimit+0x4c4/0x670 [ 3362.691783][ T5110] ? __pfx____ratelimit+0x10/0x10 [ 3362.696822][ T5110] dump_header+0xda/0x6a0 [ 3362.701165][ T5110] oom_kill_process+0x3a7/0x930 [ 3362.706027][ T5110] out_of_memory+0xf67/0x1320 [ 3362.710714][ T5110] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3362.716354][ T5110] ? __pfx___mutex_lock+0x10/0x10 [ 3362.721388][ T5110] ? __pfx_out_of_memory+0x10/0x10 [ 3362.726613][ T5110] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3362.732169][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3362.737225][ T5110] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3362.743315][ T5110] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3362.748619][ T5110] ? mem_cgroup_iter+0x422/0x560 [ 3362.753572][ T5110] try_charge_memcg+0xda2/0x18a0 [ 3362.758523][ T5110] ? mark_lock+0x9a/0x350 [ 3362.762877][ T5110] ? __pfx_try_charge_memcg+0x10/0x10 [ 3362.768281][ T5110] ? mem_cgroup_swapin_charge_folio+0x35/0x3a0 [ 3362.774442][ T5110] charge_memcg+0xa2/0x160 [ 3362.778880][ T5110] mem_cgroup_swapin_charge_folio+0x267/0x3a0 [ 3362.784956][ T5110] __read_swap_cache_async+0x480/0x8b0 [ 3362.790440][ T5110] ? mark_lock+0x9a/0x350 [ 3362.794785][ T5110] ? __pfx___read_swap_cache_async+0x10/0x10 [ 3362.800788][ T5110] swap_cluster_readahead+0x67c/0x810 [ 3362.806201][ T5110] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 3362.812112][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3362.817156][ T5110] ? xas_descend+0x37e/0x470 [ 3362.821793][ T5110] swapin_readahead+0x1ea/0x1070 [ 3362.826745][ T5110] ? filemap_get_entry+0x127/0x4e0 [ 3362.831879][ T5110] ? __pfx_swapin_readahead+0x10/0x10 [ 3362.837275][ T5110] ? __filemap_get_folio+0x935/0xbc0 [ 3362.842583][ T5110] ? swap_cache_get_folio+0x9f/0x570 [ 3362.847884][ T5110] do_swap_page+0x791/0x3f40 [ 3362.852480][ T5110] ? __lock_acquire+0x1345/0x1fd0 [ 3362.857523][ T5110] ? rcu_is_watching+0x15/0xb0 [ 3362.862332][ T5110] ? do_swap_page+0x154/0x3f40 [ 3362.867115][ T5110] ? __pfx_do_swap_page+0x10/0x10 [ 3362.872144][ T5110] ? pte_offset_map_nolock+0x137/0x1f0 [ 3362.877614][ T5110] ? __pfx_pte_offset_map_nolock+0x10/0x10 [ 3362.883441][ T5110] ? __pfx_validate_chain+0x10/0x10 [ 3362.888658][ T5110] __handle_mm_fault+0x15e8/0x72d0 [ 3362.893808][ T5110] ? __pfx___handle_mm_fault+0x10/0x10 [ 3362.899286][ T5110] ? mt_find+0x226/0x850 [ 3362.903544][ T5110] ? __pfx_lock_release+0x10/0x10 [ 3362.908609][ T5110] ? mt_find+0x62d/0x850 [ 3362.912865][ T5110] ? mt_find+0x226/0x850 [ 3362.917148][ T5110] ? find_vma+0x142/0x1c0 [ 3362.921505][ T5110] ? __pfx_find_vma+0x10/0x10 [ 3362.926193][ T5110] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3362.932190][ T5110] handle_mm_fault+0x3c1/0x8a0 [ 3362.936973][ T5110] exc_page_fault+0x2ad/0x870 [ 3362.941676][ T5110] asm_exc_page_fault+0x26/0x30 [ 3362.946534][ T5110] RIP: 0010:__get_user_8+0x11/0x20 [ 3362.951658][ T5110] Code: ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 c2 48 c1 fa 3f 48 09 d0 0f 01 cb <48> 8b 10 31 c0 0f 01 ca c3 cc cc cc cc 66 90 90 90 90 90 90 90 90 [ 3362.971265][ T5110] RSP: 0018:ffffc90003b0fd78 EFLAGS: 00050202 [ 3362.977342][ T5110] RAX: 0000555556ab4da8 RBX: ffff88807cdd6e78 RCX: ffffc90003b0fc03 [ 3362.985324][ T5110] RDX: 0000000000000000 RSI: ffffffff8baac7e0 RDI: ffffffff8bfe6da0 [ 3362.993322][ T5110] RBP: ffffc90003b0fec0 R08: ffffffff8f856cef R09: 1ffffffff1f0ad9d [ 3363.001318][ T5110] R10: dffffc0000000000 R11: fffffbfff1f0ad9e R12: ffffc90003b0fd80 [ 3363.009297][ T5110] R13: ffffc90003b0ffd8 R14: dffffc0000000000 R15: ffff88807cdd5940 [ 3363.017304][ T5110] __rseq_handle_notify_resume+0x158/0x1490 [ 3363.023231][ T5110] ? __pfx___rseq_handle_notify_resume+0x10/0x10 [ 3363.029589][ T5110] ? irqentry_exit_to_user_mode+0x52/0x270 [ 3363.035412][ T5110] irqentry_exit_to_user_mode+0xbb/0x270 [ 3363.041071][ T5110] exc_page_fault+0x587/0x870 [ 3363.045768][ T5110] asm_exc_page_fault+0x26/0x30 [ 3363.050629][ T5110] RIP: 0033:0x7f080fca91b8 [ 3363.055049][ T5110] Code: 3c 24 48 89 4c 24 18 e8 f6 b9 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 8b 74 24 0c 8b 3c 24 b8 e6 00 00 00 0f 05 44 89 c7 <48> 89 04 24 e8 4f ba ff ff 48 8b 04 24 48 83 c4 28 f7 d8 c3 0f 1f [ 3363.074662][ T5110] RSP: 002b:00007f080fecfcf0 EFLAGS: 00010293 [ 3363.080740][ T5110] RAX: 0000000000000000 RBX: 0000000000004360 RCX: 00007f080fca91b5 [ 3363.088719][ T5110] RDX: 00007f080fecfd30 RSI: 0000000000000000 RDI: 0000000000000000 [ 3363.096694][ T5110] RBP: 00007f080fecfdbc R08: 0000000000000000 R09: 00007ffde33aa0b0 [ 3363.104673][ T5110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032 [ 3363.112648][ T5110] R13: 0000000000334e0c R14: 0000000000334e0c R15: 0000000000000000 [ 3363.120639][ T5110] [ 3363.125283][ T5110] memory: usage 307200kB, limit 307200kB, failcnt 157356 [ 3363.132556][ T5110] memory+swap: usage 308504kB, limit 9007199254740988kB, failcnt 0 [ 3363.144568][ T5110] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3363.159343][ T5110] Memory cgroup stats for /syz0: [ 3363.159482][ T5110] cache 0 [ 3363.168010][ T5110] rss 20480 [ 3363.171303][ T5110] rss_huge 0 [ 3363.174637][ T5110] shmem 0 [ 3363.178394][ T5110] mapped_file 0 [ 3363.182007][ T5110] dirty 0 [ 3363.185051][ T5110] writeback 0 [ 3363.189146][ T5110] workingset_refault_anon 51640 [ 3363.194147][ T5110] workingset_refault_file 0 [ 3363.196735][ T8615] usb 3-1: Using ep0 maxpacket: 8 [ 3363.198857][ T5110] swap 1347584 [ 3363.207216][ T5110] swapcached 16384 [ 3363.210960][ T5110] pgpgin 296138 [ 3363.214449][ T5110] pgpgout 296133 [ 3363.218147][ T5110] pgfault 549445 [ 3363.221725][ T5110] pgmajfault 49722 [ 3363.225696][ T5110] inactive_anon 0 [ 3363.229367][ T5110] active_anon 16384 [ 3363.233185][ T5110] inactive_file 0 [ 3363.236916][ T5110] active_file 0 [ 3363.240385][ T5110] unevictable 0 [ 3363.243845][ T5110] hierarchical_memory_limit 314572800 [ 3363.249327][ T5110] hierarchical_memsw_limit 9223372036854771712 [ 3363.255556][ T5110] total_cache 0 [ 3363.259042][ T5110] total_rss 20480 [ 3363.262693][ T5110] total_rss_huge 0 [ 3363.266509][ T5110] total_shmem 0 [ 3363.269994][ T5110] total_mapped_file 0 [ 3363.273992][ T5110] total_dirty 0 [ 3363.283085][ T5110] total_writeback 0 [ 3363.287012][ T5110] total_workingset_refault_anon 51640 [ 3363.292399][ T5110] total_workingset_refault_file 0 [ 3363.297840][ T5110] total_swap 1347584 [ 3363.301766][ T5110] total_swapcached 16384 [ 3363.306407][ T5110] total_pgpgin 296138 [ 3363.310416][ T5110] total_pgpgout 296133 [ 3363.314512][ T5110] total_pgfault 549445 [ 3363.322389][ T5110] total_pgmajfault 49722 [ 3363.326950][ T5110] total_inactive_anon 0 [ 3363.331125][ T5110] total_active_anon 16384 [ 3363.335621][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3363.335655][ T8615] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3363.335701][ T8615] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00 [ 3363.347302][ T5110] total_inactive_file 0 [ 3363.370435][ T5110] total_active_file 0 [ 3363.372464][ T8615] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3363.379063][ T5110] total_unevictable 0 [ 3363.390197][ T5110] anon_cost 0 [ 3363.393446][ T8615] usb 3-1: config 0 descriptor?? [ 3363.393500][ T5110] file_cost 0 [ 3363.402925][ T5110] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19428,uid=0 [ 3363.419137][ T5110] Memory cgroup out of memory: Killed process 19428 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000 17:46:21 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) r3 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r3) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010411feffffff00000000000000", @ANYRES32=r4, @ANYBLOB="00000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000012c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xba02}, {0xd}}, [@filter_kind_options=@f_basic={{0xa}, {0x450, 0x2, [@TCA_BASIC_POLICE={0x44c, 0x4, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_RATE={0x404}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x8, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}}]}]}}]}, 0x480}}, 0x0) [ 3363.775566][ T8615] usbhid 3-1:0.0: can't add hid device: -71 [ 3363.781661][ T8615] usbhid: probe of 3-1:0.0 failed with error -71 [ 3363.817056][ T8615] usb 3-1: USB disconnect, device number 92 [ 3363.826209][T19429] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 3363.854486][T19429] CPU: 0 PID: 19429 Comm: syz-executor.0 Not tainted 6.8.0-rc7-syzkaller-00231-g09e5c48fea17 #0 [ 3363.864948][T19429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 3363.875008][T19429] Call Trace: [ 3363.878305][T19429] [ 3363.881241][T19429] dump_stack_lvl+0x1e7/0x2e0 [ 3363.885941][T19429] ? __pfx_dump_stack_lvl+0x10/0x10 [ 3363.891161][T19429] ? __pfx__printk+0x10/0x10 [ 3363.895791][T19429] ? ___ratelimit+0x4c4/0x670 [ 3363.900481][T19429] ? __pfx____ratelimit+0x10/0x10 [ 3363.905517][T19429] dump_header+0xda/0x6a0 [ 3363.909856][T19429] oom_kill_process+0x3a7/0x930 [ 3363.914731][T19429] out_of_memory+0xf67/0x1320 [ 3363.919423][T19429] ? mem_cgroup_out_of_memory+0xf7/0x3b0 [ 3363.925072][T19429] ? __pfx___mutex_lock+0x10/0x10 [ 3363.930111][T19429] ? __pfx_out_of_memory+0x10/0x10 [ 3363.935235][T19429] mem_cgroup_out_of_memory+0x263/0x3b0 [ 3363.940784][T19429] ? __pfx_lock_release+0x10/0x10 [ 3363.945820][T19429] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 3363.951898][T19429] ? do_raw_spin_unlock+0x13b/0x8b0 [ 3363.957118][T19429] ? mem_cgroup_iter+0x422/0x560 [ 3363.962071][T19429] try_charge_memcg+0xda2/0x18a0 [ 3363.967042][T19429] ? __pfx_try_charge_memcg+0x10/0x10 [ 3363.972439][T19429] ? get_mem_cgroup_from_objcg+0x19/0x150 [ 3363.978192][T19429] ? __pfx_lock_release+0x10/0x10 [ 3363.983244][T19429] ? memcg_account_kmem+0x1e7/0x210 [ 3363.988477][T19429] ? get_mem_cgroup_from_objcg+0x13b/0x150 [ 3363.994295][T19429] __memcg_kmem_charge_page+0xe1/0x250 [ 3363.999767][T19429] memcg_charge_kernel_stack+0x210/0x550 [ 3364.005414][T19429] dup_task_struct+0x15d/0x7d0 [ 3364.010191][T19429] copy_process+0x5d5/0x3fc0 [ 3364.014809][T19429] ? __might_fault+0xa9/0x120 [ 3364.019496][T19429] ? __pfx_lock_release+0x10/0x10 [ 3364.024550][T19429] ? __pfx_copy_process+0x10/0x10 [ 3364.029582][T19429] ? __might_fault+0xc5/0x120 [ 3364.034273][T19429] ? __asan_memset+0x23/0x50 [ 3364.038878][T19429] kernel_clone+0x21d/0x8d0 [ 3364.043406][T19429] ? __pfx_kernel_clone+0x10/0x10 [ 3364.048460][T19429] __se_sys_clone3+0x2cb/0x350 [ 3364.053234][T19429] ? __pfx___se_sys_clone3+0x10/0x10 [ 3364.058538][T19429] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 3364.064543][T19429] ? exc_page_fault+0x587/0x870 [ 3364.069412][T19429] ? do_syscall_64+0xb4/0x240 [ 3364.074110][T19429] do_syscall_64+0xf9/0x240 [ 3364.078633][T19429] entry_SYSCALL_64_after_hwframe+0x6f/0x77 [ 3364.084540][T19429] RIP: 0033:0x7f080fca9b99 [ 3364.088963][T19429] Code: ff ff eb d2 e8 f8 62 fd ff 0f 1f 84 00 00 00 00 00 b8 ea ff ff ff 48 85 ff 74 2c 48 85 d2 74 27 49 89 c8 b8 b3 01 00 00 0f 05 <48> 85 c0 7c 18 74 01 c3 31 ed 48 83 e4 f0 4c 89 c7 ff d2 48 89 c7 [ 3364.108573][T19429] RSP: 002b:00007f080fecf918 EFLAGS: 00000202 ORIG_RAX: 00000000000001b3 [ 3364.116994][T19429] RAX: ffffffffffffffda RBX: 00007f080fc52270 RCX: 00007f080fca9b99 [ 3364.124982][T19429] RDX: 00007f080fc52270 RSI: 0000000000000058 RDI: 00007f080fecf960 [ 3364.132957][T19429] RBP: 00007f0810a2e6c0 R08: 00007f0810a2e6c0 R09: 00007f080fecfa47 [ 3364.140939][T19429] R10: 0000000000000008 R11: 0000000000000202 R12: ffffffffffffffb0 [ 3364.148913][T19429] R13: 000000000000000b R14: 00007f080fecf960 R15: 00007f080fecfa48 [ 3364.156903][T19429] [ 3364.164108][T19429] memory: usage 307200kB, limit 307200kB, failcnt 157778 [ 3364.171553][T19429] memory+swap: usage 308540kB, limit 9007199254740988kB, failcnt 0 [ 3364.180069][T19429] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 3364.187630][T19429] Memory cgroup stats for /syz0: [ 3364.187781][T19429] cache 0 [ 3364.195960][T19429] rss 20480 [ 3364.199233][T19429] rss_huge 0 [ 3364.202564][T19429] shmem 0 [ 3364.205697][T19429] mapped_file 0 [ 3364.209306][T19429] dirty 0 [ 3364.212345][T19429] writeback 0 [ 3364.216186][T19429] workingset_refault_anon 51787 [ 3364.221171][T19429] workingset_refault_file 0 [ 3364.225864][T19429] swap 1351680 [ 3364.229393][T19429] swapcached 12288 [ 3364.233239][T19429] pgpgin 296296 [ 3364.236921][T19429] pgpgout 296291 [ 3364.240672][T19429] pgfault 549657 [ 3364.244371][T19429] pgmajfault 49853 [ 3364.248324][T19429] inactive_anon 16384 [ 3364.253123][T19429] active_anon 4096 [ 3364.257499][T19429] inactive_file 0 [ 3364.261175][T19429] active_file 0 [ 3364.264659][T19429] unevictable 0 17:46:22 executing program 4: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x59, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_disconnect(r0) syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, &(0x7f00000000c0)={0x40, 0x7, 0x71, {0x71, 0x853935ebbd78a5c8, "fecdfb4bd20f2e4682f9caa992a851248052f78430b3912cb3a6bb817e9c5fd041cd249fa61f183723414ee237a861b242ad4ae28388ca2d460ccdfb201fc4319f0547f69b06c3dd656feb69c3ee41eb6f3aa7f8bc6caf7fb676b25dfadae8949f0ed986ebe360a36e39a7bddfe666"}}, &(0x7f00000001c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xc0a}}, &(0x7f0000000200)=ANY=[@ANYBLOB="0022110000e5cd8f070e3bec3d8ddb"], &(0x7f0000000240)={0x0, 0x21, 0x9, {0x9, 0x21, 0x0, 0x7f, 0x1, {0x22, 0x833}}}}, &(0x7f0000000440)={0x2c, &(0x7f00000002c0)={0x40, 0xa, 0x23, "4af161961570355818072d6243896cc1f2394cac87c8c15eb5d42aca7244cb476964f7"}, &(0x7f0000000300)={0x0, 0xa, 0x1, 0x8}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000000380)={0x20, 0x1, 0x68, "f10b57f9de93497d17d0a06377279a6f9d916a2ad8f88189486be1cdb1eb5c1348cd6307d04acdcff1291192d09ca8df6d484f0af8af3214a1c048e3953c6d70b8a1c383c7faf0a49ab7c96495160ae90db44eef955c0bb65516cde23710afb51f42ca4330886040"}, &(0x7f0000000400)={0x20, 0x3, 0x1, 0x3}}) syz_usb_disconnect(0xffffffffffffffff) r1 = syz_usb_connect$cdc_ncm(0x0, 0x75, &(0x7f0000000100)=ANY=[], 0x0) syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000180)={0x14, &(0x7f0000000000)={0x0, 0x0, 0x66, {0x66, 0x0, "12f9811b036dbe99768c47c789b55ccac5656fd78dd3146ae5e2549d1b3bc30ac0033f746aab601d9e9d77f50437d58ad46b21cd2078030e361aeb4542241772161c5d5279f8a7b54a0c00c72edb3c17dbcaf399b00c4d3899621faf02b51cbc4a0f74d1"}}, &(0x7f0000000140)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) [ 3364.278623][T19429] hierarchical_memory_limit 314572800 [ 3364.295581][T19429] hierarchical_memsw_limit 9223372036854771712 [ 3364.301791][T19429] total_cache 0 [ 3364.307813][T19429] total_rss 20480 [ 3364.311482][T19429] total_rss_huge 0 [ 3364.315785][T19429] total_shmem 0 [ 3364.319277][T19429] total_mapped_file 0 [ 3364.323285][T19429] total_dirty 0 [ 3364.327845][T19429] total_writeback 0 [ 3364.331756][T19429] total_workingset_refault_anon 51787 [ 3364.344931][T19429] total_workingset_refault_file 0 [ 3364.350500][T19429] total_swap 1351680 [ 3364.354429][T19429] total_swapcached 12288 [ 3364.359062][T19429] total_pgpgin 296296 [ 3364.363044][T19429] total_pgpgout 296291 [ 3364.367610][T19429] total_pgfault 549657 [ 3364.371710][T19429] total_pgmajfault 49853 [ 3364.377751][T19429] total_inactive_anon 16384 [ 3364.383444][T19429] total_active_anon 4096 [ 3364.388501][T19429] total_inactive_file 0 [ 3364.392694][T19429] total_active_file 0 [ 3364.397227][T19429] total_unevictable 0 [ 3364.401241][T19429] anon_cost 0 [ 3364.404544][T19429] file_cost 0 [ 3364.409338][T19429] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19429,uid=0 [ 3364.425286][T19429] Memory cgroup out of memory: Killed process 19429 (syz-executor.0) total-vm:54508kB, anon-rss:376kB, file-rss:8832kB, shmem-rss:0kB, UID:0 pgtables:88kB oom_score_adj:1000