$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:31:34 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x3b}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:31:34 executing program 0:
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:31:34 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r0=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r1 = io_uring_setup(0x1fd6, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:31:34 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:31:34 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x0, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:31:34 executing program 0:
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:31:34 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:31:34 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x10, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

[ 1100.242042] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1100.243044] CPU: 1 PID: 8813 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1100.243586] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1100.244143] Call Trace:
[ 1100.244325]  <TASK>
[ 1100.244497]  dump_stack_lvl+0xc1/0xf0
[ 1100.244778]  dump_header+0x10a/0xd50
[ 1100.245057]  oom_kill_process+0x25d/0x640
[ 1100.245358]  out_of_memory+0x346/0x1640
[ 1100.245649]  ? find_held_lock+0x2c/0x110
[ 1100.245947]  ? __pfx_out_of_memory+0x10/0x10
[ 1100.246257]  ? rcu_read_unlock+0x9/0x60
[ 1100.246540]  ? lock_release+0x1e3/0x680
[ 1100.246826]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1100.247169]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1100.247543]  ? mem_cgroup_iter+0x291/0x710
[ 1100.247843]  try_charge_memcg+0xec7/0x12f0
[ 1100.248154]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1100.248492]  ? __pfx_lock_release+0x10/0x10
[ 1100.248790]  ? lock_release+0x1e3/0x680
[ 1100.249072]  ? __pfx_lock_release+0x10/0x10
[ 1100.249379]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1100.249717]  __alloc_pages+0x1f3/0x480
[ 1100.249995]  ? __pfx___alloc_pages+0x10/0x10
[ 1100.250313]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1100.250680]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1100.251026]  ? percpu_ref_init+0xdf/0x400
[ 1100.251320]  ? cap_capable+0x1be/0x220
[ 1100.251604]  alloc_pages+0x1a0/0x260
[ 1100.251867]  __get_free_pages+0x10/0xb0
[ 1100.252143]  ? ns_capable_noaudit+0xe7/0x120
[ 1100.252458]  io_mem_alloc+0x30/0x60
[ 1100.252714]  io_uring_setup+0x136d/0x2470
[ 1100.253011]  ? __pfx___schedule+0x10/0x10
[ 1100.253307]  ? __pfx_io_uring_setup+0x10/0x10
[ 1100.253659]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1100.253989]  do_syscall_64+0x3f/0x90
[ 1100.254270]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1100.254634] RIP: 0033:0x7f28ce17db19
[ 1100.254907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1100.256087] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1100.256649] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1100.257169] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1100.257690] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1100.258196] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1100.258710] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1100.259229]  </TASK>
[ 1100.259502] memory: usage 307172kB, limit 307200kB, failcnt 14165
[ 1100.259953] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1100.260397] Memory cgroup stats for /syz4:
[ 1100.266232] anon 1941504
[ 1100.267231] file 0
[ 1100.267549] kernel 312602624
[ 1100.267945] kernel_stack 655360
[ 1100.268368] pagetables 2273280
[ 1100.268835] sec_pagetables 0
[ 1100.269217] percpu 2432
[ 1100.269573] sock 0
[ 1100.269856] vmalloc 0
[ 1100.270180] shmem 0
[ 1100.270497] file_mapped 0
[ 1100.270856] file_dirty 0
[ 1100.271190] file_writeback 0
[ 1100.271618] swapcached 0
[ 1100.271957] inactive_anon 1941504
[ 1100.272381] active_anon 0
[ 1100.272907] inactive_file 0
[ 1100.273282] active_file 0
[ 1100.273782] unevictable 0
[ 1100.274134] slab_reclaimable 408456
[ 1100.274720] slab_unreclaimable 1235368
[ 1100.275208] slab 1643824
[ 1100.275671] workingset_refault_anon 0
[ 1100.276147] workingset_refault_file 0
[ 1100.276650] workingset_activate_anon 0
[ 1100.277122] workingset_activate_file 0
[ 1100.277644] workingset_restore_anon 0
[ 1100.278112] workingset_restore_file 0
[ 1100.278603] workingset_nodereclaim 0
[ 1100.279060] pgscan 478
[ 1100.279384] pgsteal 16
[ 1100.279728] pgscan_kswapd 0
[ 1100.280100] pgscan_direct 478
[ 1100.280545] pgscan_khugepaged 0
[ 1100.280955] pgsteal_kswapd 0
[ 1100.281347] pgsteal_direct 16
[ 1100.281762] pgsteal_khugepaged 0
[ 1100.282188] pgfault 7223
[ 1100.282564] pgmajfault 0
[ 1100.282904] pgrefill 482
[ 1100.283256] pgactivate 468
[ 1100.283653] pgdeactivate 482
[ 1100.284033] pglazyfree 0
[ 1100.284381] pglazyfreed 0
[ 1100.284769] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=8811,uid=0
[ 1100.286671] Memory cgroup out of memory: Killed process 8811 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:31:46 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x0, &(0x7f0000000e00)={0x0, 0x1712, 0x10, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:31:46 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x0, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:31:46 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x3b}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:31:46 executing program 0:
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:31:46 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:31:46 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:31:46 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r0=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r1 = io_uring_setup(0x1fd6, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:31:46 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:31:46 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:31:46 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x3c, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

[ 1112.443721] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1112.444544] CPU: 1 PID: 8835 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1112.445099] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1112.445647] Call Trace:
[ 1112.445836]  <TASK>
[ 1112.445996]  dump_stack_lvl+0xc1/0xf0
[ 1112.446280]  dump_header+0x10a/0xd50
[ 1112.446555]  oom_kill_process+0x25d/0x640
[ 1112.446856]  out_of_memory+0x346/0x1640
[ 1112.447141]  ? find_held_lock+0x2c/0x110
[ 1112.447429]  ? __pfx_out_of_memory+0x10/0x10
[ 1112.447748]  ? rcu_read_unlock+0x9/0x60
[ 1112.448025]  ? lock_release+0x1e3/0x680
[ 1112.448308]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1112.448650]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1112.449019]  ? mem_cgroup_iter+0x291/0x710
[ 1112.449320]  try_charge_memcg+0xec7/0x12f0
[ 1112.449619]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1112.449934]  ? __pfx_lock_release+0x10/0x10
[ 1112.450241]  ? lock_release+0x1e3/0x680
[ 1112.450526]  ? __pfx_lock_release+0x10/0x10
[ 1112.450836]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1112.451170]  __alloc_pages+0x1f3/0x480
[ 1112.451447]  ? __pfx_lock_release+0x10/0x10
[ 1112.451745]  ? __pfx___alloc_pages+0x10/0x10
[ 1112.452073]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1112.452403]  copy_process+0x456/0x7320
[ 1112.452696]  ? __pfx___lock_acquire+0x10/0x10
[ 1112.453009]  ? __pfx___lock_acquire+0x10/0x10
[ 1112.453345]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1112.453683]  ? __pfx_lock_release+0x10/0x10
[ 1112.454010]  ? __pfx_copy_process+0x10/0x10
[ 1112.454330]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1112.454716]  ? lock_release+0x1e3/0x680
[ 1112.455014]  kernel_clone+0xeb/0x810
[ 1112.455302]  ? finish_task_switch.isra.0+0x293/0x830
[ 1112.455677]  ? __pfx_kernel_clone+0x10/0x10
[ 1112.455998]  ? __schedule+0x9b1/0x2b00
[ 1112.456303]  ? __pfx___schedule+0x10/0x10
[ 1112.456625]  __do_sys_fork+0x80/0xc0
[ 1112.456908]  ? __pfx___do_sys_fork+0x10/0x10
[ 1112.457236]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1112.457655]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1112.458039]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1112.458404]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1112.458778]  do_syscall_64+0x3f/0x90
[ 1112.459059]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1112.459433] RIP: 0033:0x7f28ce17db19
[ 1112.459709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1112.460977] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1112.461512] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1112.462010] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1112.462514] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1112.463018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1112.463515] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1112.464025]  </TASK>
[ 1112.464270] memory: usage 307200kB, limit 307200kB, failcnt 14342
[ 1112.464735] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:31:46 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x3c, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:31:46 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x0, &(0x7f0000000e00)={0x0, 0x1712, 0x10, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

[ 1112.465164] Memory cgroup stats for /syz4:
[ 1112.536766] anon 1941504
[ 1112.537298] file 0
[ 1112.537462] kernel 312631296
[ 1112.537731] kernel_stack 655360
[ 1112.537964] pagetables 2273280
[ 1112.538193] sec_pagetables 0
[ 1112.538419] percpu 2368
[ 1112.538673] sock 0
[ 1112.538838] vmalloc 0
[ 1112.539011] shmem 0
[ 1112.539178] file_mapped 0
[ 1112.539378] file_dirty 0
[ 1112.539620] file_writeback 0
[ 1112.539843] swapcached 0
[ 1112.540034] inactive_anon 1941504
[ 1112.540286] active_anon 0
[ 1112.540502] inactive_file 0
[ 1112.540727] active_file 0
[ 1112.540924] unevictable 0
[ 1112.541122] slab_reclaimable 411600
[ 1112.541389] slab_unreclaimable 1233624
[ 1112.541684] slab 1645224
[ 1112.541879] workingset_refault_anon 0
[ 1112.542153] workingset_refault_file 0
[ 1112.542429] workingset_activate_anon 0
[ 1112.542727] workingset_activate_file 0
[ 1112.543004] workingset_restore_anon 0
[ 1112.543276] workingset_restore_file 0
[ 1112.543563] workingset_nodereclaim 0
[ 1112.543833] pgscan 478
[ 1112.544018] pgsteal 16
[ 1112.544202] pgscan_kswapd 0
[ 1112.544409] pgscan_direct 478
[ 1112.544662] pgscan_khugepaged 0
[ 1112.544903] pgsteal_kswapd 0
[ 1112.545120] pgsteal_direct 16
[ 1112.545343] pgsteal_khugepaged 0
[ 1112.545608] pgfault 7283
[ 1112.545802] pgmajfault 0
[ 1112.545998] pgrefill 482
[ 1112.546190] pgactivate 468
[ 1112.546400] pgdeactivate 482
[ 1112.546654] pglazyfree 0
[ 1112.546852] pglazyfreed 0
[ 1112.547057] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=8831,uid=0
[ 1112.548133] Memory cgroup out of memory: Killed process 8831 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:32:00 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x0, &(0x7f0000000e00)={0x0, 0x1712, 0x10, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:32:00 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x0, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:32:00 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:00 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:32:00 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:32:00 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r0=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r1 = io_uring_setup(0x1fd6, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:32:00 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x3b}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:32:00 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x3c, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:00 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:00 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:32:00 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:00 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:00 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:32:00 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:32:00 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:00 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:00 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x3b}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

[ 1126.487883] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1126.489679] CPU: 1 PID: 8879 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1126.490758] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1126.491828] Call Trace:
[ 1126.492184]  <TASK>
[ 1126.492502]  dump_stack_lvl+0xc1/0xf0
[ 1126.493060]  dump_header+0x10a/0xd50
[ 1126.493600]  oom_kill_process+0x25d/0x640
[ 1126.494184]  out_of_memory+0x346/0x1640
[ 1126.494753]  ? find_held_lock+0x2c/0x110
[ 1126.495330]  ? __pfx_out_of_memory+0x10/0x10
[ 1126.495951]  ? rcu_read_unlock+0x9/0x60
[ 1126.496505]  ? lock_release+0x1e3/0x680
[ 1126.497066]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1126.497739]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1126.498458]  ? mem_cgroup_iter+0x291/0x710
[ 1126.499052]  try_charge_memcg+0xec7/0x12f0
[ 1126.499629]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1126.500270]  ? __pfx_lock_release+0x10/0x10
[ 1126.500866]  ? lock_release+0x1e3/0x680
[ 1126.501428]  ? __pfx_lock_release+0x10/0x10
[ 1126.502028]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1126.502703]  __alloc_pages+0x1f3/0x480
[ 1126.503233]  ? __pfx_lock_release+0x10/0x10
[ 1126.503834]  ? __pfx___alloc_pages+0x10/0x10
[ 1126.504458]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1126.505138]  copy_process+0x456/0x7320
[ 1126.505679]  ? schedule+0xdb/0x1a0
[ 1126.506205]  ? futex_unqueue+0xb7/0x120
[ 1126.506777]  ? futex_wait+0x503/0x690
[ 1126.507319]  ? __pfx_copy_process+0x10/0x10
[ 1126.507932]  ? wake_up_q+0x9e/0x140
[ 1126.508437]  ? do_raw_spin_unlock+0x53/0x220
[ 1126.509107]  kernel_clone+0xeb/0x810
[ 1126.509653]  ? __pfx_kernel_clone+0x10/0x10
[ 1126.510264]  ? do_futex+0x13a/0x380
[ 1126.510771]  ? __pfx_do_futex+0x10/0x10
[ 1126.511324]  ? __pfx_lock_release+0x10/0x10
[ 1126.511925]  ? __pfx___schedule+0x10/0x10
[ 1126.512527]  __do_sys_fork+0x80/0xc0
[ 1126.513075]  ? __pfx___do_sys_fork+0x10/0x10
[ 1126.513681]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1126.514467]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1126.515191]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1126.515894]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1126.516597]  do_syscall_64+0x3f/0x90
[ 1126.517148]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1126.517868] RIP: 0033:0x7f28ce17db19
[ 1126.518377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1126.520749] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1126.521755] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1126.522696] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1126.523638] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1126.524595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1126.525559] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1126.526550]  </TASK>
[ 1126.528282] memory: usage 307200kB, limit 307200kB, failcnt 14562
[ 1126.529576] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1126.530398] Memory cgroup stats for /syz4:
[ 1126.602683] anon 1941504
[ 1126.603207] file 0
[ 1126.603372] kernel 312631296
[ 1126.603634] kernel_stack 655360
[ 1126.603864] pagetables 2273280
[ 1126.604081] sec_pagetables 0
[ 1126.604299] percpu 2368
[ 1126.604510] sock 0
[ 1126.604669] vmalloc 0
[ 1126.604861] shmem 0
[ 1126.605022] file_mapped 0
[ 1126.605211] file_dirty 0
[ 1126.605398] file_writeback 0
[ 1126.605620] swapcached 0
[ 1126.605807] inactive_anon 1941504
[ 1126.606036] active_anon 0
[ 1126.606225] inactive_file 0
[ 1126.606425] active_file 0
[ 1126.606637] unevictable 0
[ 1126.606831] slab_reclaimable 411600
[ 1126.607072] slab_unreclaimable 1233624
[ 1126.607330] slab 1645224
[ 1126.607534] workingset_refault_anon 0
[ 1126.607788] workingset_refault_file 0
[ 1126.608042] workingset_activate_anon 0
[ 1126.608302] workingset_activate_file 0
[ 1126.608576] workingset_restore_anon 0
[ 1126.608837] workingset_restore_file 0
[ 1126.609089] workingset_nodereclaim 0
[ 1126.609335] pgscan 478
[ 1126.609524] pgsteal 16
[ 1126.609705] pgscan_kswapd 0
[ 1126.609904] pgscan_direct 478
[ 1126.610114] pgscan_khugepaged 0
[ 1126.610336] pgsteal_kswapd 0
[ 1126.610568] pgsteal_direct 16
[ 1126.610790] pgsteal_khugepaged 0
[ 1126.611016] pgfault 7342
[ 1126.611202] pgmajfault 0
[ 1126.611390] pgrefill 482
[ 1126.611586] pgactivate 468
[ 1126.612610] pgdeactivate 482
[ 1126.612842] pglazyfree 0
[ 1126.613037] pglazyfreed 0
[ 1126.613223] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=8869,uid=0
[ 1126.614392] Memory cgroup out of memory: Killed process 8869 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:32:12 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x0, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:32:12 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:32:12 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, 0x0, 0x4000001)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r2, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r3 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)

01:32:12 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:32:12 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:12 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:12 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:12 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x3b}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:32:12 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:12 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:12 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, 0x0)
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:12 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:32:12 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:12 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:32:12 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, 0x0, 0x4000001)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r2, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r3 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)

01:32:12 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, 0x0, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

[ 1138.466182] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1138.467023] CPU: 1 PID: 8936 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1138.467593] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1138.468156] Call Trace:
[ 1138.468343]  <TASK>
[ 1138.468511]  dump_stack_lvl+0xc1/0xf0
[ 1138.468800]  dump_header+0x10a/0xd50
[ 1138.469085]  oom_kill_process+0x25d/0x640
[ 1138.469396]  out_of_memory+0x346/0x1640
[ 1138.469696]  ? find_held_lock+0x2c/0x110
[ 1138.470002]  ? __pfx_out_of_memory+0x10/0x10
[ 1138.470322]  ? rcu_read_unlock+0x9/0x60
[ 1138.470618]  ? lock_release+0x1e3/0x680
[ 1138.470898]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1138.471255]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1138.471626]  ? mem_cgroup_iter+0x291/0x710
[ 1138.471939]  try_charge_memcg+0xec7/0x12f0
[ 1138.472263]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1138.472601]  ? __pfx_lock_release+0x10/0x10
[ 1138.472914]  ? lock_release+0x1e3/0x680
[ 1138.473213]  ? __pfx_lock_release+0x10/0x10
[ 1138.473539]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1138.473894]  __alloc_pages+0x1f3/0x480
[ 1138.474189]  ? __pfx_lock_release+0x10/0x10
[ 1138.474507]  ? __pfx___alloc_pages+0x10/0x10
[ 1138.474843]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1138.475206]  copy_process+0x456/0x7320
[ 1138.475504]  ? __pfx___lock_acquire+0x10/0x10
[ 1138.475838]  ? __pfx___lock_acquire+0x10/0x10
[ 1138.476153]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1138.476482]  ? __pfx_lock_release+0x10/0x10
[ 1138.476801]  ? __pfx_copy_process+0x10/0x10
[ 1138.477142]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1138.477529]  ? lock_release+0x1e3/0x680
[ 1138.477819]  ? xfd_validate_state+0x51/0x170
[ 1138.478146]  kernel_clone+0xeb/0x810
[ 1138.478426]  ? finish_task_switch.isra.0+0x203/0x830
[ 1138.478802]  ? __pfx_kernel_clone+0x10/0x10
[ 1138.479130]  ? __schedule+0x9b1/0x2b00
[ 1138.479432]  ? __pfx___schedule+0x10/0x10
[ 1138.479730]  __do_sys_fork+0x80/0xc0
[ 1138.480013]  ? __pfx___do_sys_fork+0x10/0x10
[ 1138.480344]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1138.480762]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1138.481147]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1138.481521]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1138.481890]  do_syscall_64+0x3f/0x90
[ 1138.482166]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1138.482543] RIP: 0033:0x7f28ce17db19
[ 1138.482812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1138.483979] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1138.484514] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1138.485027] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1138.485530] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1138.486024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1138.486522] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1138.487035]  </TASK>
[ 1138.487300] memory: usage 307200kB, limit 307200kB, failcnt 14737
[ 1138.487992] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1138.488416] Memory cgroup stats for /syz4:
[ 1138.503793] anon 1941504
[ 1138.504337] file 0
[ 1138.504540] kernel 312631296
[ 1138.504766] kernel_stack 655360
[ 1138.505010] pagetables 2273280
[ 1138.505239] sec_pagetables 0
[ 1138.505460] percpu 2368
[ 1138.505662] sock 0
[ 1138.505826] vmalloc 0
[ 1138.506004] shmem 0
[ 1138.506170] file_mapped 0
[ 1138.506367] file_dirty 0
[ 1138.506585] file_writeback 0
[ 1138.506793] swapcached 0
[ 1138.506987] inactive_anon 1941504
[ 1138.507239] active_anon 0
[ 1138.507432] inactive_file 0
[ 1138.507659] active_file 0
[ 1138.507850] unevictable 0
[ 1138.508065] slab_reclaimable 411600
[ 1138.508321] slab_unreclaimable 1233624
[ 1138.508601] slab 1645224
[ 1138.508800] workingset_refault_anon 0
[ 1138.509067] workingset_refault_file 0
[ 1138.509336] workingset_activate_anon 0
[ 1138.509616] workingset_activate_file 0
[ 1138.509890] workingset_restore_anon 0
[ 1138.510148] workingset_restore_file 0
[ 1138.510416] workingset_nodereclaim 0
[ 1138.510685] pgscan 478
[ 1138.510870] pgsteal 16
[ 1138.511045] pgscan_kswapd 0
[ 1138.511252] pgscan_direct 478
[ 1138.511485] pgscan_khugepaged 0
[ 1138.511722] pgsteal_kswapd 0
[ 1138.511933] pgsteal_direct 16
[ 1138.512159] pgsteal_khugepaged 0
[ 1138.512391] pgfault 7401
[ 1138.512603] pgmajfault 0
[ 1138.512788] pgrefill 482
[ 1138.512997] pgactivate 468
[ 1138.513202] pgdeactivate 482
[ 1138.513421] pglazyfree 0
[ 1138.513627] pglazyfreed 0
[ 1138.513829] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=8932,uid=0
[ 1138.514840] Memory cgroup out of memory: Killed process 8932 (syz-executor.4) total-vm:93412kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:32:25 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:32:25 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x0, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:32:25 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, 0x0, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:32:25 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, 0x0, 0x4000001)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r2, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r3 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)

01:32:25 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x0, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:25 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x0, 0x10, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:32:25 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x3c, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:25 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, 0x0)
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:25 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, 0x0)
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:25 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x3c, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:25 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:32:25 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x0, 0x10, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:32:25 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, 0x0, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:32:25 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x0, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

[ 1151.270283] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1151.271895] CPU: 1 PID: 8981 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1151.272912] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1151.273962] Call Trace:
[ 1151.274302]  <TASK>
[ 1151.274616]  dump_stack_lvl+0xc1/0xf0
[ 1151.275138]  dump_header+0x10a/0xd50
[ 1151.275657]  oom_kill_process+0x25d/0x640
[ 1151.276228]  out_of_memory+0x346/0x1640
[ 1151.276788]  ? find_held_lock+0x2c/0x110
[ 1151.277351]  ? __pfx_out_of_memory+0x10/0x10
[ 1151.277950]  ? rcu_read_unlock+0x9/0x60
[ 1151.278480]  ? lock_release+0x1e3/0x680
[ 1151.279020]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1151.279659]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1151.280351]  ? mem_cgroup_iter+0x291/0x710
[ 1151.280914]  try_charge_memcg+0xec7/0x12f0
[ 1151.281501]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1151.282109]  ? __pfx_lock_release+0x10/0x10
[ 1151.282680]  ? lock_release+0x1e3/0x680
[ 1151.283215]  ? __pfx_lock_release+0x10/0x10
[ 1151.283802]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1151.284439]  __alloc_pages+0x1f3/0x480
[ 1151.284964]  ? __pfx_lock_release+0x10/0x10
[ 1151.285544]  ? __pfx___alloc_pages+0x10/0x10
[ 1151.286154]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1151.286801]  copy_process+0x456/0x7320
[ 1151.287336]  ? schedule+0xdb/0x1a0
[ 1151.287848]  ? futex_unqueue+0xb7/0x120
[ 1151.288366]  ? futex_wait+0x503/0x690
[ 1151.288868]  ? __pfx_copy_process+0x10/0x10
[ 1151.289446]  ? wake_up_q+0x9e/0x140
[ 1151.289910]  ? do_raw_spin_unlock+0x53/0x220
[ 1151.290518]  kernel_clone+0xeb/0x810
[ 1151.291018]  ? __pfx_kernel_clone+0x10/0x10
[ 1151.291581]  ? do_futex+0x13a/0x380
[ 1151.292055]  ? __pfx_do_futex+0x10/0x10
[ 1151.292564]  ? __pfx_lock_release+0x10/0x10
[ 1151.293144]  __do_sys_fork+0x80/0xc0
[ 1151.293640]  ? __pfx___do_sys_fork+0x10/0x10
[ 1151.294210]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1151.294944]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1151.295605]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1151.296259]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1151.296908]  do_syscall_64+0x3f/0x90
[ 1151.297412]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1151.298092] RIP: 0033:0x7f28ce17db19
[ 1151.298559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1151.300839] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1151.301783] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1151.302698] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1151.303607] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1151.304525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1151.305443] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1151.306376]  </TASK>
[ 1151.307984] memory: usage 307200kB, limit 307200kB, failcnt 14930
[ 1151.309042] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:32:25 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:32:25 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x3c, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

[ 1151.309873] Memory cgroup stats for /syz4:
[ 1151.360820] anon 1941504
[ 1151.361893] file 0
[ 1151.362321] kernel 312631296
[ 1151.362836] kernel_stack 655360
[ 1151.363260] pagetables 2273280
[ 1151.363776] sec_pagetables 0
[ 1151.364164] percpu 2368
[ 1151.364617] sock 0
[ 1151.364901] vmalloc 0
[ 1151.365248] shmem 0
[ 1151.365654] file_mapped 0
[ 1151.366008] file_dirty 0
[ 1151.366365] file_writeback 0
[ 1151.366863] swapcached 0
[ 1151.367211] inactive_anon 1941504
[ 1151.367757] active_anon 0
[ 1151.368112] inactive_file 0
[ 1151.368600] active_file 0
[ 1151.368953] unevictable 0
[ 1151.369358] slab_reclaimable 411600
[ 1151.369960] slab_unreclaimable 1233624
[ 1151.370458] slab 1645224
[ 1151.370921] workingset_refault_anon 0
[ 1151.371407] workingset_refault_file 0
[ 1151.372004] workingset_activate_anon 0
[ 1151.372614] workingset_activate_file 0
[ 1151.373135] workingset_restore_anon 0
[ 1151.373732] workingset_restore_file 0
[ 1151.374225] workingset_nodereclaim 0
[ 1151.374821] pgscan 478
[ 1151.375165] pgsteal 16
[ 1151.375599] pgscan_kswapd 0
[ 1151.375987] pgscan_direct 478
[ 1151.376401] pgscan_khugepaged 0
[ 1151.376940] pgsteal_kswapd 0
[ 1151.377369] pgsteal_direct 16
[ 1151.377886] pgsteal_khugepaged 0
[ 1151.378325] pgfault 7460
[ 1151.378785] pgmajfault 0
[ 1151.379142] pgrefill 482
[ 1151.379607] pgactivate 468
[ 1151.379991] pgdeactivate 482
[ 1151.380386] pglazyfree 0
[ 1151.380845] pglazyfreed 0
[ 1151.381224] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=8978,uid=0
[ 1151.383236] Memory cgroup out of memory: Killed process 8978 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:32:25 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:32:25 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:25 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:25 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x0, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:32:25 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x0, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:25 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

[ 1151.646684] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1151.647667] CPU: 0 PID: 9037 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1151.648195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1151.648736] Call Trace:
[ 1151.648918]  <TASK>
[ 1151.649082]  dump_stack_lvl+0xc1/0xf0
[ 1151.649355]  dump_header+0x10a/0xd50
[ 1151.649621]  oom_kill_process+0x25d/0x640
[ 1151.649911]  out_of_memory+0x346/0x1640
[ 1151.650203]  ? find_held_lock+0x2c/0x110
[ 1151.650492]  ? __pfx_out_of_memory+0x10/0x10
[ 1151.650799]  ? rcu_read_unlock+0x9/0x60
[ 1151.651071]  ? lock_release+0x1e3/0x680
[ 1151.651352]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1151.651680]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1151.652048]  ? mem_cgroup_iter+0x291/0x710
[ 1151.652340]  try_charge_memcg+0xec7/0x12f0
[ 1151.652637]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1151.652948]  ? __pfx_lock_release+0x10/0x10
[ 1151.653247]  ? lock_release+0x1e3/0x680
[ 1151.653526]  ? __pfx_lock_release+0x10/0x10
[ 1151.653826]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1151.654150]  __alloc_pages+0x1f3/0x480
[ 1151.654424]  ? __pfx___alloc_pages+0x10/0x10
[ 1151.654733]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1151.655087]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1151.655421]  ? percpu_ref_init+0xdf/0x400
[ 1151.655712]  ? cap_capable+0x1be/0x220
[ 1151.655988]  alloc_pages+0x1a0/0x260
[ 1151.656251]  __get_free_pages+0x10/0xb0
[ 1151.656522]  ? ns_capable_noaudit+0xe7/0x120
[ 1151.656826]  io_mem_alloc+0x30/0x60
[ 1151.657100]  io_uring_setup+0x136d/0x2470
[ 1151.657381]  ? __pfx___schedule+0x10/0x10
[ 1151.657684]  ? __pfx_io_uring_setup+0x10/0x10
[ 1151.658016]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1151.658357]  do_syscall_64+0x3f/0x90
[ 1151.658623]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1151.658971] RIP: 0033:0x7f28ce17db19
[ 1151.659231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1151.660399] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1151.660927] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1151.661422] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1151.661898] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1151.662378] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1151.662864] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1151.663370]  </TASK>
[ 1151.663667] memory: usage 307172kB, limit 307200kB, failcnt 15074
[ 1151.664096] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1151.664564] Memory cgroup stats for /syz4:
[ 1151.713422] anon 1945600
[ 1151.714043] file 0
[ 1151.714204] kernel 312610816
[ 1151.714424] kernel_stack 655360
[ 1151.714746] pagetables 2273280
[ 1151.714981] sec_pagetables 0
[ 1151.715205] percpu 2432
[ 1151.715400] sock 0
[ 1151.715630] vmalloc 0
[ 1151.715808] shmem 0
[ 1151.715969] file_mapped 0
[ 1151.716164] file_dirty 0
[ 1151.716356] file_writeback 0
[ 1151.716594] swapcached 0
[ 1151.716780] inactive_anon 1941504
[ 1151.717023] active_anon 0
[ 1151.717229] inactive_file 0
[ 1151.717433] active_file 0
[ 1151.717642] unevictable 0
[ 1151.717843] slab_reclaimable 408456
[ 1151.718105] slab_unreclaimable 1243664
[ 1151.718376] slab 1652120
[ 1151.718598] workingset_refault_anon 0
[ 1151.718864] workingset_refault_file 0
[ 1151.719129] workingset_activate_anon 0
[ 1151.719400] workingset_activate_file 0
[ 1151.719677] workingset_restore_anon 0
[ 1151.719940] workingset_restore_file 0
[ 1151.720213] workingset_nodereclaim 0
[ 1151.720491] pgscan 478
[ 1151.720674] pgsteal 16
[ 1151.720848] pgscan_kswapd 0
[ 1151.721069] pgscan_direct 478
[ 1151.721284] pgscan_khugepaged 0
[ 1151.721532] pgsteal_kswapd 0
[ 1151.721740] pgsteal_direct 16
[ 1151.721964] pgsteal_khugepaged 0
[ 1151.722188] pgfault 7519
[ 1151.722379] pgmajfault 0
[ 1151.722578] pgrefill 482
[ 1151.722773] pgactivate 468
[ 1151.722968] pgdeactivate 482
[ 1151.723186] pglazyfree 0
[ 1151.723370] pglazyfreed 0
[ 1151.723585] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9033,uid=0
[ 1151.724572] Memory cgroup out of memory: Killed process 9033 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:32:37 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:37 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x0, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:32:37 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x0, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:37 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x0, 0x10, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:32:37 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:37 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:32:37 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:32:37 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000900)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x3b}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:32:37 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:37 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:37 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:32:37 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000900)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x3b}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:32:37 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

[ 1163.597580] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1163.599281] CPU: 0 PID: 9061 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1163.600280] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1163.601281] Call Trace:
[ 1163.601618]  <TASK>
[ 1163.601909]  dump_stack_lvl+0xc1/0xf0
[ 1163.602414]  dump_header+0x10a/0xd50
[ 1163.602908]  oom_kill_process+0x25d/0x640
[ 1163.603447]  out_of_memory+0x346/0x1640
[ 1163.603969]  ? find_held_lock+0x2c/0x110
[ 1163.604497]  ? __pfx_out_of_memory+0x10/0x10
[ 1163.605063]  ? rcu_read_unlock+0x9/0x60
[ 1163.605580]  ? lock_release+0x1e3/0x680
[ 1163.606095]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1163.606708]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1163.607382]  ? mem_cgroup_iter+0x291/0x710
[ 1163.607922]  try_charge_memcg+0xec7/0x12f0
[ 1163.608462]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1163.609044]  ? __pfx_lock_release+0x10/0x10
[ 1163.609623]  ? lock_release+0x1e3/0x680
[ 1163.610136]  ? __pfx_lock_release+0x10/0x10
[ 1163.610704]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1163.611318]  __alloc_pages+0x1f3/0x480
[ 1163.611828]  ? __pfx_lock_release+0x10/0x10
[ 1163.612376]  ? __pfx___alloc_pages+0x10/0x10
[ 1163.612963]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1163.613584]  copy_process+0x456/0x7320
[ 1163.614089]  ? schedule+0xdb/0x1a0
[ 1163.614570]  ? futex_unqueue+0xb7/0x120
[ 1163.615096]  ? futex_wait+0x503/0x690
[ 1163.615591]  ? __pfx_copy_process+0x10/0x10
[ 1163.616148]  ? wake_up_q+0x9e/0x140
[ 1163.616620]  ? do_raw_spin_unlock+0x53/0x220
[ 1163.617237]  kernel_clone+0xeb/0x810
[ 1163.617741]  ? __pfx_kernel_clone+0x10/0x10
[ 1163.618298]  ? do_futex+0x13a/0x380
[ 1163.618763]  ? __pfx_do_futex+0x10/0x10
[ 1163.619263]  ? __pfx_lock_release+0x10/0x10
[ 1163.619829]  __do_sys_fork+0x80/0xc0
[ 1163.620320]  ? __pfx___do_sys_fork+0x10/0x10
[ 1163.620911]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1163.621572]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1163.622209]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1163.622860]  do_syscall_64+0x3f/0x90
[ 1163.623340]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1163.623986] RIP: 0033:0x7f28ce17db19
[ 1163.624454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1163.626628] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1163.627551] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1163.628415] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1163.629296] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1163.630149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1163.631005] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1163.631886]  </TASK>
[ 1163.632412] memory: usage 307200kB, limit 307200kB, failcnt 15267
[ 1163.633287] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1163.634173] Memory cgroup stats for /syz4:
[ 1163.654607] anon 1941504
[ 1163.655643] file 0
[ 1163.655943] kernel 312631296
[ 1163.656335] kernel_stack 655360
[ 1163.656811] pagetables 2273280
[ 1163.657234] sec_pagetables 0
[ 1163.657649] percpu 2368
[ 1163.657981] sock 0
[ 1163.658263] vmalloc 0
[ 1163.658603] shmem 0
[ 1163.658898] file_mapped 0
[ 1163.659248] file_dirty 0
[ 1163.659607] file_writeback 0
[ 1163.659998] swapcached 0
[ 1163.660336] inactive_anon 1941504
[ 1163.660804] active_anon 0
[ 1163.661152] inactive_file 0
[ 1163.661570] active_file 0
[ 1163.661922] unevictable 0
[ 1163.662272] slab_reclaimable 411600
[ 1163.662765] slab_unreclaimable 1233624
[ 1163.663250] slab 1645224
[ 1163.663639] workingset_refault_anon 0
[ 1163.664124] workingset_refault_file 0
[ 1163.664623] workingset_activate_anon 0
[ 1163.665118] workingset_activate_file 0
[ 1163.665637] workingset_restore_anon 0
[ 1163.666121] workingset_restore_file 0
[ 1163.666624] workingset_nodereclaim 0
[ 1163.667096] pgscan 478
[ 1163.667425] pgsteal 16
[ 1163.667773] pgscan_kswapd 0
[ 1163.668153] pgscan_direct 478
[ 1163.668564] pgscan_khugepaged 0
[ 1163.668987] pgsteal_kswapd 0
[ 1163.669690] pgsteal_direct 16
[ 1163.670189] pgsteal_khugepaged 0
[ 1163.670724] pgfault 7578
[ 1163.671141] pgmajfault 0
[ 1163.671590] pgrefill 482
[ 1163.672002] pgactivate 468
[ 1163.672425] pgdeactivate 482
[ 1163.672932] pglazyfree 0
[ 1163.673381] pglazyfreed 0
[ 1163.673845] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9056,uid=0
[ 1163.676027] Memory cgroup out of memory: Killed process 9056 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:32:51 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x0, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:32:51 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000))
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:51 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:51 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x0, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:51 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:32:51 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000900)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x3b}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:32:51 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:32:51 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40), 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

[ 1177.457748] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1177.458630] CPU: 0 PID: 9097 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1177.459194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1177.459769] Call Trace:
[ 1177.459956]  <TASK>
[ 1177.460121]  dump_stack_lvl+0xc1/0xf0
[ 1177.460406]  dump_header+0x10a/0xd50
[ 1177.460691]  oom_kill_process+0x25d/0x640
[ 1177.460997]  out_of_memory+0x346/0x1640
[ 1177.461300]  ? find_held_lock+0x2c/0x110
[ 1177.461614]  ? __pfx_out_of_memory+0x10/0x10
[ 1177.461941]  ? rcu_read_unlock+0x9/0x60
[ 1177.462232]  ? lock_release+0x1e3/0x680
[ 1177.462531]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1177.462887]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1177.463280]  ? mem_cgroup_iter+0x291/0x710
[ 1177.463590]  try_charge_memcg+0xec7/0x12f0
[ 1177.463912]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1177.464243]  ? __pfx_lock_release+0x10/0x10
[ 1177.464566]  ? lock_release+0x1e3/0x680
[ 1177.464861]  ? __pfx_lock_release+0x10/0x10
[ 1177.465190]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1177.465562]  __alloc_pages+0x1f3/0x480
[ 1177.465857]  ? __pfx_lock_release+0x10/0x10
[ 1177.466169]  ? __pfx___alloc_pages+0x10/0x10
[ 1177.466512]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1177.466862]  copy_process+0x456/0x7320
[ 1177.467159]  ? schedule+0xdb/0x1a0
[ 1177.467435]  ? futex_unqueue+0xb7/0x120
[ 1177.467742]  ? futex_wait+0x503/0x690
[ 1177.468028]  ? __pfx_copy_process+0x10/0x10
[ 1177.468350]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1177.468731]  kernel_clone+0xeb/0x810
[ 1177.469016]  ? finish_task_switch.isra.0+0x293/0x830
[ 1177.469392]  ? __pfx_kernel_clone+0x10/0x10
[ 1177.469731]  ? do_futex+0x13a/0x380
[ 1177.469999]  ? __pfx_do_futex+0x10/0x10
[ 1177.470287]  ? __pfx___schedule+0x10/0x10
[ 1177.470601]  __do_sys_fork+0x80/0xc0
[ 1177.470884]  ? __pfx___do_sys_fork+0x10/0x10
[ 1177.471213]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1177.471636]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1177.472011]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1177.472383]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1177.472756]  do_syscall_64+0x3f/0x90
[ 1177.473037]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1177.473422] RIP: 0033:0x7f28ce17db19
[ 1177.473690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1177.474930] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1177.475469] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1177.475963] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1177.476455] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1177.476943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1177.477441] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1177.477945]  </TASK>
[ 1177.478201] memory: usage 307200kB, limit 307200kB, failcnt 15471
[ 1177.478648] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:32:51 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000))
io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:32:51 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40), 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:32:51 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:32:51 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}}, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

[ 1177.479068] Memory cgroup stats for /syz4:
[ 1177.533605] anon 1941504
[ 1177.534153] file 0
[ 1177.534315] kernel 312631296
[ 1177.534568] kernel_stack 655360
[ 1177.534806] pagetables 2273280
[ 1177.535038] sec_pagetables 0
[ 1177.535254] percpu 2368
[ 1177.535441] sock 0
[ 1177.535615] vmalloc 0
[ 1177.535797] shmem 0
[ 1177.535965] file_mapped 0
[ 1177.536164] file_dirty 0
[ 1177.536358] file_writeback 0
[ 1177.536603] swapcached 0
[ 1177.536803] inactive_anon 1941504
[ 1177.537052] active_anon 0
[ 1177.537254] inactive_file 0
[ 1177.537490] active_file 0
[ 1177.537692] unevictable 0
[ 1177.537898] slab_reclaimable 411600
[ 1177.538153] slab_unreclaimable 1233624
[ 1177.538431] slab 1645224
[ 1177.538639] workingset_refault_anon 0
[ 1177.538921] workingset_refault_file 0
[ 1177.539184] workingset_activate_anon 0
[ 1177.539456] workingset_activate_file 0
[ 1177.539743] workingset_restore_anon 0
[ 1177.540013] workingset_restore_file 0
[ 1177.540285] workingset_nodereclaim 0
[ 1177.540575] pgscan 478
[ 1177.540756] pgsteal 16
[ 1177.540936] pgscan_kswapd 0
[ 1177.541145] pgscan_direct 478
[ 1177.541384] pgscan_khugepaged 0
[ 1177.541631] pgsteal_kswapd 0
[ 1177.541851] pgsteal_direct 16
[ 1177.542080] pgsteal_khugepaged 0
[ 1177.542320] pgfault 7639
[ 1177.542526] pgmajfault 0
[ 1177.542723] pgrefill 482
[ 1177.542915] pgactivate 468
[ 1177.543116] pgdeactivate 482
[ 1177.543336] pglazyfree 0
[ 1177.543556] pglazyfreed 0
[ 1177.543756] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9096,uid=0
[ 1177.544822] Memory cgroup out of memory: Killed process 9096 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:32:51 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x0, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:32:52 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x0, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:32:52 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

[ 1177.666844] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1177.667869] CPU: 0 PID: 9125 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1177.668429] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1177.668998] Call Trace:
[ 1177.669186]  <TASK>
[ 1177.669352]  dump_stack_lvl+0xc1/0xf0
[ 1177.669649]  dump_header+0x10a/0xd50
[ 1177.669934]  oom_kill_process+0x25d/0x640
[ 1177.670238]  out_of_memory+0x346/0x1640
[ 1177.670530]  ? find_held_lock+0x2c/0x110
[ 1177.670830]  ? __pfx_out_of_memory+0x10/0x10
[ 1177.671154]  ? rcu_read_unlock+0x9/0x60
[ 1177.671444]  ? lock_release+0x1e3/0x680
[ 1177.671737]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1177.672083]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1177.672486]  ? mem_cgroup_iter+0x291/0x710
[ 1177.672791]  try_charge_memcg+0xec7/0x12f0
[ 1177.673104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1177.673448]  ? __pfx_lock_release+0x10/0x10
[ 1177.673760]  ? lock_release+0x1e3/0x680
[ 1177.674056]  ? __pfx_lock_release+0x10/0x10
[ 1177.674385]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1177.674742]  __alloc_pages+0x1f3/0x480
[ 1177.675032]  ? __pfx___alloc_pages+0x10/0x10
[ 1177.675373]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1177.675756]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1177.676114]  ? percpu_ref_init+0xdf/0x400
[ 1177.676423]  ? cap_capable+0x1be/0x220
[ 1177.676721]  alloc_pages+0x1a0/0x260
[ 1177.677000]  __get_free_pages+0x10/0xb0
[ 1177.677300]  ? ns_capable_noaudit+0xe7/0x120
[ 1177.677635]  io_mem_alloc+0x30/0x60
[ 1177.677899]  io_uring_setup+0x136d/0x2470
[ 1177.678195]  ? __pfx___schedule+0x10/0x10
[ 1177.678504]  ? __pfx_io_uring_setup+0x10/0x10
[ 1177.678847]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1177.679192]  do_syscall_64+0x3f/0x90
[ 1177.679466]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1177.679834] RIP: 0033:0x7f28ce17db19
[ 1177.680112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1177.681338] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1177.681870] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1177.682360] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1177.682859] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1177.683353] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1177.683851] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1177.684359]  </TASK>
[ 1177.684621] memory: usage 307172kB, limit 307200kB, failcnt 15604
[ 1177.685042] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1177.685466] Memory cgroup stats for /syz4:
[ 1177.742147] anon 1945600
[ 1177.742720] file 0
[ 1177.742889] kernel 312610816
[ 1177.743109] kernel_stack 655360
[ 1177.743349] pagetables 2273280
[ 1177.743620] sec_pagetables 0
[ 1177.743836] percpu 2432
[ 1177.744027] sock 0
[ 1177.744194] vmalloc 0
[ 1177.744371] shmem 0
[ 1177.744601] file_mapped 0
[ 1177.744800] file_dirty 0
[ 1177.744997] file_writeback 0
[ 1177.745219] swapcached 0
[ 1177.745418] inactive_anon 1945600
[ 1177.745753] active_anon 0
[ 1177.745955] inactive_file 0
[ 1177.746168] active_file 0
[ 1177.746373] unevictable 0
[ 1177.746650] slab_reclaimable 408456
[ 1177.746934] slab_unreclaimable 1243664
[ 1177.747214] slab 1652120
[ 1177.747410] workingset_refault_anon 0
[ 1177.747726] workingset_refault_file 0
[ 1177.747975] workingset_activate_anon 0
[ 1177.748236] workingset_activate_file 0
[ 1177.748578] workingset_restore_anon 0
[ 1177.748835] workingset_restore_file 0
[ 1177.749095] workingset_nodereclaim 0
[ 1177.749345] pgscan 478
[ 1177.749565] pgsteal 16
[ 1177.749737] pgscan_kswapd 0
[ 1177.749943] pgscan_direct 478
[ 1177.750162] pgscan_khugepaged 0
[ 1177.750386] pgsteal_kswapd 0
[ 1177.750608] pgsteal_direct 16
[ 1177.750826] pgsteal_khugepaged 0
[ 1177.751049] pgfault 7698
[ 1177.751239] pgmajfault 0
[ 1177.751419] pgrefill 482
[ 1177.751624] pgactivate 468
[ 1177.751822] pgdeactivate 482
[ 1177.752031] pglazyfree 0
[ 1177.752212] pglazyfreed 0
[ 1177.752402] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9123,uid=0
[ 1177.753458] Memory cgroup out of memory: Killed process 9123 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:33:04 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000))
io_uring_setup(0x0, 0x0)

01:33:04 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880), 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x3b}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:33:04 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x0, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:33:04 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r1 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r6=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000880)={r6, 0x3, r2, 0x0, 0x80000})

01:33:04 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40), 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:33:04 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:33:04 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:33:04 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:33:04 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r2, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r3 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)

01:33:04 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r1 = syz_open_procfs$namespace(0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:33:04 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:33:04 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:33:04 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880), 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x3b}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:33:04 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r2, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r3 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)

01:33:04 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:33:04 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x0, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

[ 1190.373003] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
[ 1190.373713] CPU: 1 PID: 9158 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1190.374275] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1190.374830] Call Trace:
[ 1190.375007]  <TASK>
[ 1190.375167]  dump_stack_lvl+0xc1/0xf0
[ 1190.375440]  dump_header+0x10a/0xd50
[ 1190.375720]  oom_kill_process+0x25d/0x640
[ 1190.376013]  out_of_memory+0x346/0x1640
[ 1190.376297]  ? find_held_lock+0x2c/0x110
[ 1190.376593]  ? __pfx_out_of_memory+0x10/0x10
[ 1190.376902]  ? rcu_read_unlock+0x9/0x60
[ 1190.377191]  ? lock_release+0x1e3/0x680
[ 1190.377473]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1190.377815]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1190.378187]  ? mem_cgroup_iter+0x291/0x710
[ 1190.378481]  try_charge_memcg+0xec7/0x12f0
[ 1190.378775]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1190.379099]  ? __pfx_lock_release+0x10/0x10
[ 1190.379393]  ? lock_release+0x1e3/0x680
[ 1190.379673]  ? __pfx_lock_release+0x10/0x10
[ 1190.379964]  ? lock_release+0x1e3/0x680
[ 1190.380251]  obj_cgroup_charge+0x1d0/0x530
[ 1190.380543]  ? copy_process+0x3c2/0x7320
[ 1190.380841]  kmem_cache_alloc_node+0xb1/0x3b0
[ 1190.381161]  copy_process+0x3c2/0x7320
[ 1190.381449]  ? __pfx___lock_acquire+0x10/0x10
[ 1190.381770]  ? __lock_acquire+0x19b1/0x6340
[ 1190.382081]  ? __pfx_copy_process+0x10/0x10
[ 1190.382387]  ? lock_acquire+0x19a/0x4c0
[ 1190.382674]  ? task_mm_cid_work+0x688/0x810
[ 1190.382978]  ? lock_release+0x1e3/0x680
[ 1190.383265]  kernel_clone+0xeb/0x810
[ 1190.383532]  ? lock_acquire+0x19a/0x4c0
[ 1190.383817]  ? __pfx_kernel_clone+0x10/0x10
[ 1190.384118]  ? task_mm_cid_work+0x3c3/0x810
[ 1190.384432]  ? do_raw_spin_lock+0x125/0x270
[ 1190.384739]  __do_sys_clone+0xba/0x100
[ 1190.385017]  ? __pfx___do_sys_clone+0x10/0x10
[ 1190.385331]  ? task_work_run+0x203/0x280
[ 1190.385636]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.386003]  do_syscall_64+0x3f/0x90
[ 1190.386271]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1190.386627] RIP: 0033:0x7f28ce17ef41
[ 1190.386885] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1190.388055] RSP: 002b:00007ffe67afb6b8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1190.388565] RAX: ffffffffffffffda RBX: 00007f28cb6d2700 RCX: 00007f28ce17ef41
[ 1190.389032] RDX: 00007f28cb6d29d0 RSI: 00007f28cb6d22f0 RDI: 00000000003d0f00
[ 1190.389496] RBP: 00007ffe67afb8f0 R08: 00007f28cb6d2700 R09: 00007f28cb6d2700
[ 1190.389973] R10: 00007f28cb6d29d0 R11: 0000000000000206 R12: 00007ffe67afb76e
[ 1190.390437] R13: 00007ffe67afb76f R14: 00007f28cb6d2300 R15: 0000000000022000
[ 1190.390919]  </TASK>
[ 1190.391150] memory: usage 307196kB, limit 307200kB, failcnt 15753
[ 1190.391572] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1190.391969] Memory cgroup stats for /syz4:
[ 1190.459881] anon 1945600
[ 1190.461432] file 0
[ 1190.462049] kernel 312623104
[ 1190.462581] kernel_stack 655360
[ 1190.463145] pagetables 2273280
[ 1190.463679] sec_pagetables 0
[ 1190.464186] percpu 2368
[ 1190.464636] sock 0
[ 1190.465013] vmalloc 0
[ 1190.465327] shmem 0
[ 1190.465845] file_mapped 0
[ 1190.466212] file_dirty 0
[ 1190.466734] file_writeback 0
[ 1190.467127] swapcached 0
[ 1190.467598] inactive_anon 1945600
[ 1190.468027] active_anon 0
[ 1190.468506] inactive_file 0
[ 1190.468880] active_file 0
[ 1190.469343] unevictable 0
[ 1190.469767] slab_reclaimable 411600
[ 1190.470386] slab_unreclaimable 1227952
[ 1190.470894] slab 1639552
[ 1190.471342] workingset_refault_anon 0
[ 1190.471838] workingset_refault_file 0
[ 1190.472448] workingset_activate_anon 0
[ 1190.472964] workingset_activate_file 0
[ 1190.473646] workingset_restore_anon 0
[ 1190.474131] workingset_restore_file 0
[ 1190.474776] workingset_nodereclaim 0
[ 1190.475243] pgscan 478
[ 1190.475701] pgsteal 16
[ 1190.476035] pgscan_kswapd 0
[ 1190.476564] pgscan_direct 478
[ 1190.476967] pgscan_khugepaged 0
[ 1190.477573] pgsteal_kswapd 0
[ 1190.477967] pgsteal_direct 16
[ 1190.478517] pgsteal_khugepaged 0
[ 1190.478943] pgfault 7757
[ 1190.479393] pgmajfault 0
[ 1190.479772] pgrefill 482
[ 1190.480228] pgactivate 468
[ 1190.480637] pgdeactivate 482
[ 1190.481173] pglazyfree 0
[ 1190.481564] pglazyfreed 0
[ 1190.482033] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9158,uid=0
[ 1190.483833] Memory cgroup out of memory: Killed process 9158 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:33:17 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x0, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:33:17 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:33:17 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r1 = syz_open_procfs$namespace(0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:33:17 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r2, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r3 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)

01:33:17 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:33:17 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880), 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x3b}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_NAN_MASTER_PREF={0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x81}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:33:17 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:33:17 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r1 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r6=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000880)={r6, 0x3, r2, 0x0, 0x80000})

01:33:17 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r1 = syz_open_procfs$namespace(0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:33:17 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:33:17 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:33:17 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r0=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x0, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:33:17 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:33:17 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r2, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r3 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)

01:33:17 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:33:17 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

[ 1202.960296] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1202.961901] CPU: 1 PID: 9221 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1202.962948] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1202.964035] Call Trace:
[ 1202.964394]  <TASK>
[ 1202.964714]  dump_stack_lvl+0xc1/0xf0
[ 1202.965263]  dump_header+0x10a/0xd50
[ 1202.965822]  oom_kill_process+0x25d/0x640
[ 1202.966388]  out_of_memory+0x346/0x1640
[ 1202.966963]  ? find_held_lock+0x2c/0x110
[ 1202.967540]  ? __pfx_out_of_memory+0x10/0x10
[ 1202.968144]  ? rcu_read_unlock+0x9/0x60
[ 1202.968699]  ? lock_release+0x1e3/0x680
[ 1202.969254]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1202.969931]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1202.970651]  ? mem_cgroup_iter+0x291/0x710
[ 1202.971240]  try_charge_memcg+0xec7/0x12f0
[ 1202.971813]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1202.972452]  ? __pfx_lock_release+0x10/0x10
[ 1202.973026]  ? lock_release+0x1e3/0x680
[ 1202.973576]  ? __pfx_lock_release+0x10/0x10
[ 1202.974182]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1202.974849]  __alloc_pages+0x1f3/0x480
[ 1202.975385]  ? __pfx_lock_release+0x10/0x10
[ 1202.975976]  ? __pfx___alloc_pages+0x10/0x10
[ 1202.976607]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1202.977273]  copy_process+0x456/0x7320
[ 1202.977846]  ? __pfx___lock_acquire+0x10/0x10
[ 1202.978471]  ? __pfx___lock_acquire+0x10/0x10
[ 1202.979082]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1202.979695]  ? __pfx_lock_release+0x10/0x10
[ 1202.980295]  ? __pfx_copy_process+0x10/0x10
[ 1202.980897]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1202.981617]  ? lock_release+0x1e3/0x680
[ 1202.982178]  ? xfd_validate_state+0x51/0x170
[ 1202.982790]  kernel_clone+0xeb/0x810
[ 1202.983326]  ? finish_task_switch.isra.0+0x203/0x830
[ 1202.984029]  ? __pfx_kernel_clone+0x10/0x10
[ 1202.984640]  ? __schedule+0x9b1/0x2b00
[ 1202.985212]  ? __pfx___schedule+0x10/0x10
[ 1202.985797]  __do_sys_fork+0x80/0xc0
[ 1202.986334]  ? __pfx___do_sys_fork+0x10/0x10
[ 1202.986941]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1202.987717]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.988408]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1202.989114]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1202.989816]  do_syscall_64+0x3f/0x90
[ 1202.990353]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1202.991039] RIP: 0033:0x7f28ce17db19
[ 1202.991544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1202.993835] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1202.994859] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1202.995816] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1202.996758] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1202.997742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1202.998697] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1202.999661]  </TASK>
[ 1203.000233] memory: usage 307200kB, limit 307200kB, failcnt 15891
[ 1203.001172] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1203.002405] Memory cgroup stats for /syz4:
[ 1203.027720] anon 1941504
[ 1203.028224] file 0
[ 1203.028381] kernel 312631296
[ 1203.028669] kernel_stack 655360
[ 1203.028904] pagetables 2273280
[ 1203.029128] sec_pagetables 0
[ 1203.029350] percpu 2368
[ 1203.029564] sock 0
[ 1203.029739] vmalloc 0
[ 1203.029912] shmem 0
[ 1203.030079] file_mapped 0
[ 1203.030270] file_dirty 0
[ 1203.030487] file_writeback 0
[ 1203.030705] swapcached 0
[ 1203.030898] inactive_anon 1941504
[ 1203.031142] active_anon 0
[ 1203.031338] inactive_file 0
[ 1203.031559] active_file 0
[ 1203.031755] unevictable 0
[ 1203.031949] slab_reclaimable 411600
[ 1203.032198] slab_unreclaimable 1233624
[ 1203.032464] slab 1645224
[ 1203.032686] workingset_refault_anon 0
[ 1203.032949] workingset_refault_file 0
[ 1203.033213] workingset_activate_anon 0
[ 1203.033496] workingset_activate_file 0
[ 1203.033775] workingset_restore_anon 0
[ 1203.034045] workingset_restore_file 0
[ 1203.034307] workingset_nodereclaim 0
[ 1203.034583] pgscan 478
[ 1203.034767] pgsteal 16
[ 1203.034947] pgscan_kswapd 0
[ 1203.035154] pgscan_direct 478
[ 1203.035378] pgscan_khugepaged 0
[ 1203.035624] pgsteal_kswapd 0
[ 1203.035837] pgsteal_direct 16
[ 1203.036058] pgsteal_khugepaged 0
[ 1203.036285] pgfault 7816
[ 1203.036487] pgmajfault 0
[ 1203.036682] pgrefill 482
[ 1203.036878] pgactivate 468
[ 1203.037082] pgdeactivate 482
[ 1203.037293] pglazyfree 0
[ 1203.037498] pglazyfreed 0
[ 1203.037705] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9214,uid=0
[ 1203.038764] Memory cgroup out of memory: Killed process 9214 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:33:29 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:33:29 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:33:29 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r0=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x0, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0)

01:33:29 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:33:29 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:33:29 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:33:29 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r1 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r6=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000880)={r6, 0x3, r2, 0x0, 0x80000})

01:33:29 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r2, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r3 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)

[ 1214.831778] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1214.832639] CPU: 1 PID: 9270 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1214.833217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1214.833787] Call Trace:
[ 1214.833989]  <TASK>
[ 1214.834149]  dump_stack_lvl+0xc1/0xf0
[ 1214.834417]  dump_header+0x10a/0xd50
[ 1214.834687]  oom_kill_process+0x25d/0x640
[ 1214.834983]  out_of_memory+0x346/0x1640
[ 1214.835266]  ? find_held_lock+0x2c/0x110
[ 1214.835552]  ? __pfx_out_of_memory+0x10/0x10
[ 1214.835856]  ? rcu_read_unlock+0x9/0x60
[ 1214.836138]  ? lock_release+0x1e3/0x680
[ 1214.836421]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1214.836763]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1214.837138]  ? mem_cgroup_iter+0x291/0x710
[ 1214.837435]  try_charge_memcg+0xec7/0x12f0
[ 1214.837730]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1214.838060]  ? __pfx_lock_release+0x10/0x10
[ 1214.838365]  ? lock_release+0x1e3/0x680
[ 1214.838638]  ? __pfx_lock_release+0x10/0x10
[ 1214.838945]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1214.839278]  __alloc_pages+0x1f3/0x480
[ 1214.839555]  ? __pfx_lock_release+0x10/0x10
[ 1214.839849]  ? __pfx___alloc_pages+0x10/0x10
[ 1214.840169]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1214.840502]  copy_process+0x456/0x7320
[ 1214.840781]  ? __pfx___lock_acquire+0x10/0x10
[ 1214.841095]  ? __pfx___lock_acquire+0x10/0x10
[ 1214.841424]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1214.841764]  ? __pfx_lock_release+0x10/0x10
[ 1214.842102]  ? __pfx_copy_process+0x10/0x10
[ 1214.842425]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1214.842810]  ? lock_release+0x1e3/0x680
[ 1214.843108]  ? xfd_validate_state+0x51/0x170
[ 1214.843429]  kernel_clone+0xeb/0x810
[ 1214.843712]  ? finish_task_switch.isra.0+0x203/0x830
[ 1214.844079]  ? __pfx_kernel_clone+0x10/0x10
[ 1214.844409]  ? __schedule+0x9b1/0x2b00
[ 1214.844711]  ? __pfx___schedule+0x10/0x10
[ 1214.845040]  __do_sys_fork+0x80/0xc0
[ 1214.845316]  ? __pfx___do_sys_fork+0x10/0x10
[ 1214.845648]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1214.846065]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.846445]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1214.846809]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1214.847188]  do_syscall_64+0x3f/0x90
[ 1214.847467]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1214.847850] RIP: 0033:0x7f28ce17db19
[ 1214.848115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1214.849371] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1214.849937] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1214.850452] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1214.850946] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1214.851455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1214.851951] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1214.852482]  </TASK>
[ 1214.852699] memory: usage 307200kB, limit 307200kB, failcnt 16102
[ 1214.853107] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:33:29 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r0=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x0, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0)

[ 1214.853539] Memory cgroup stats for /syz4:
[ 1214.897004] anon 1941504
[ 1214.897533] file 0
[ 1214.897701] kernel 312631296
[ 1214.897913] kernel_stack 655360
[ 1214.898131] pagetables 2273280
[ 1214.898351] sec_pagetables 0
[ 1214.898577] percpu 2368
[ 1214.898756] sock 0
[ 1214.898912] vmalloc 0
[ 1214.899078] shmem 0
[ 1214.899232] file_mapped 0
[ 1214.899418] file_dirty 0
[ 1214.899618] file_writeback 0
[ 1214.899825] swapcached 0
[ 1214.900003] inactive_anon 1941504
[ 1214.900233] active_anon 0
[ 1214.900417] inactive_file 0
[ 1214.900629] active_file 0
[ 1214.900821] unevictable 0
[ 1214.901005] slab_reclaimable 411600
[ 1214.901242] slab_unreclaimable 1233624
[ 1214.901511] slab 1645224
[ 1214.901691] workingset_refault_anon 0
[ 1214.901971] workingset_refault_file 0
[ 1214.902227] workingset_activate_anon 0
[ 1214.902495] workingset_activate_file 0
[ 1214.902746] workingset_restore_anon 0
[ 1214.902992] workingset_restore_file 0
[ 1214.903240] workingset_nodereclaim 0
[ 1214.903504] pgscan 478
[ 1214.903681] pgsteal 16
[ 1214.903849] pgscan_kswapd 0
[ 1214.904047] pgscan_direct 478
[ 1214.904258] pgscan_khugepaged 0
[ 1214.904488] pgsteal_kswapd 0
[ 1214.904695] pgsteal_direct 16
[ 1214.904910] pgsteal_khugepaged 0
[ 1214.905138] pgfault 7876
[ 1214.905325] pgmajfault 0
[ 1214.905523] pgrefill 482
[ 1214.905707] pgactivate 468
[ 1214.905902] pgdeactivate 482
[ 1214.906111] pglazyfree 0
[ 1214.906301] pglazyfreed 0
[ 1214.906514] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9269,uid=0
[ 1214.907525] Memory cgroup out of memory: Killed process 9269 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:33:29 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)

01:33:29 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:33:29 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r1, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r2, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r3 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)

01:33:29 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:33:29 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={0x0}}, 0x4040814)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0)={<r0=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x0, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0)

01:33:29 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:33:29 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:33:29 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x0, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

[ 1215.134383] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1215.135354] CPU: 1 PID: 9312 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1215.135904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1215.136440] Call Trace:
[ 1215.136623]  <TASK>
[ 1215.136780]  dump_stack_lvl+0xc1/0xf0
[ 1215.137058]  dump_header+0x10a/0xd50
[ 1215.137330]  oom_kill_process+0x25d/0x640
[ 1215.137623]  out_of_memory+0x346/0x1640
[ 1215.137929]  ? find_held_lock+0x2c/0x110
[ 1215.138223]  ? __pfx_out_of_memory+0x10/0x10
[ 1215.138535]  ? rcu_read_unlock+0x9/0x60
[ 1215.138819]  ? lock_release+0x1e3/0x680
[ 1215.139099]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1215.139433]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1215.139809]  ? mem_cgroup_iter+0x291/0x710
[ 1215.140104]  try_charge_memcg+0xec7/0x12f0
[ 1215.140403]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1215.140724]  ? __pfx_lock_release+0x10/0x10
[ 1215.141017]  ? lock_release+0x1e3/0x680
[ 1215.141292]  ? __pfx_lock_release+0x10/0x10
[ 1215.141599]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1215.141938]  __alloc_pages+0x1f3/0x480
[ 1215.142222]  ? __pfx___alloc_pages+0x10/0x10
[ 1215.142532]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1215.142891]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1215.143228]  ? percpu_ref_init+0xdf/0x400
[ 1215.143523]  ? cap_capable+0x1be/0x220
[ 1215.143820]  alloc_pages+0x1a0/0x260
[ 1215.144097]  __get_free_pages+0x10/0xb0
[ 1215.144388]  ? ns_capable_noaudit+0xe7/0x120
[ 1215.144716]  io_mem_alloc+0x30/0x60
[ 1215.144980]  io_uring_setup+0x136d/0x2470
[ 1215.145288]  ? __pfx___schedule+0x10/0x10
[ 1215.145595]  ? __pfx_io_uring_setup+0x10/0x10
[ 1215.145941]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1215.146296]  do_syscall_64+0x3f/0x90
[ 1215.146561]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1215.146945] RIP: 0033:0x7f28ce17db19
[ 1215.147214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1215.148474] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1215.149010] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1215.149507] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1215.150016] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1215.150515] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1215.151025] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1215.151538]  </TASK>
[ 1215.151764] memory: usage 307172kB, limit 307200kB, failcnt 16236
[ 1215.152209] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1215.152676] Memory cgroup stats for /syz4:
[ 1215.191976] anon 1945600
[ 1215.192577] file 0
[ 1215.192745] kernel 312610816
[ 1215.192966] kernel_stack 655360
[ 1215.193190] pagetables 2273280
[ 1215.193410] sec_pagetables 0
[ 1215.193642] percpu 2432
[ 1215.193828] sock 0
[ 1215.194008] vmalloc 0
[ 1215.194298] shmem 0
[ 1215.194456] file_mapped 0
[ 1215.194665] file_dirty 0
[ 1215.194847] file_writeback 0
[ 1215.195056] swapcached 0
[ 1215.195240] inactive_anon 1945600
[ 1215.195503] active_anon 0
[ 1215.195694] inactive_file 0
[ 1215.195904] active_file 0
[ 1215.196091] unevictable 0
[ 1215.196279] slab_reclaimable 408456
[ 1215.196535] slab_unreclaimable 1243664
[ 1215.196809] slab 1652120
[ 1215.196991] workingset_refault_anon 0
[ 1215.197238] workingset_refault_file 0
[ 1215.197512] workingset_activate_anon 0
[ 1215.197768] workingset_activate_file 0
[ 1215.198033] workingset_restore_anon 0
[ 1215.198289] workingset_restore_file 0
[ 1215.198557] workingset_nodereclaim 0
[ 1215.198811] pgscan 478
[ 1215.198998] pgsteal 16
[ 1215.199186] pgscan_kswapd 0
[ 1215.199386] pgscan_direct 478
[ 1215.199632] pgscan_khugepaged 0
[ 1215.199874] pgsteal_kswapd 0
[ 1215.200098] pgsteal_direct 16
[ 1215.200313] pgsteal_khugepaged 0
[ 1215.200580] pgfault 7935
[ 1215.200763] pgmajfault 0
[ 1215.200959] pgrefill 482
[ 1215.201141] pgactivate 468
[ 1215.201344] pgdeactivate 482
[ 1215.201562] pglazyfree 0
[ 1215.201762] pglazyfreed 0
[ 1215.201969] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9310,uid=0
[ 1215.203029] Memory cgroup out of memory: Killed process 9310 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:33:29 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r2 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r2, 0x1, 0x0, 0x0)

01:33:29 executing program 6:
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:33:29 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, &(0x7f0000000ec0))

01:33:42 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r2, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:33:42 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:33:42 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, &(0x7f0000000ec0))

01:33:42 executing program 6:
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:33:42 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x0, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:33:42 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0}, 0x4000)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:33:42 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:33:42 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x0, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:33:42 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

[ 1228.437784] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1228.439238] CPU: 1 PID: 9353 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1228.440214] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1228.441209] Call Trace:
[ 1228.441538]  <TASK>
[ 1228.441828]  dump_stack_lvl+0xc1/0xf0
[ 1228.442358]  dump_header+0x10a/0xd50
[ 1228.442852]  oom_kill_process+0x25d/0x640
[ 1228.443400]  out_of_memory+0x346/0x1640
[ 1228.443925]  ? find_held_lock+0x2c/0x110
[ 1228.444457]  ? __pfx_out_of_memory+0x10/0x10
[ 1228.445024]  ? rcu_read_unlock+0x9/0x60
[ 1228.445530]  ? lock_release+0x1e3/0x680
[ 1228.446101]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1228.446767]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1228.447498]  ? mem_cgroup_iter+0x291/0x710
[ 1228.448084]  try_charge_memcg+0xec7/0x12f0
[ 1228.448673]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1228.449301]  ? __pfx_lock_release+0x10/0x10
[ 1228.449844]  ? lock_release+0x1e3/0x680
[ 1228.450385]  ? __pfx_lock_release+0x10/0x10
[ 1228.450945]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1228.451595]  __alloc_pages+0x1f3/0x480
[ 1228.452131]  ? __pfx_lock_release+0x10/0x10
[ 1228.452714]  ? __pfx___alloc_pages+0x10/0x10
[ 1228.453337]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1228.453991]  copy_process+0x456/0x7320
[ 1228.454542]  ? schedule+0xdb/0x1a0
[ 1228.455042]  ? futex_unqueue+0xb7/0x120
[ 1228.455565]  ? futex_wait+0x503/0x690
[ 1228.456081]  ? __pfx_copy_process+0x10/0x10
[ 1228.456626]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1228.457323]  kernel_clone+0xeb/0x810
[ 1228.457814]  ? finish_task_switch.isra.0+0x293/0x830
[ 1228.458503]  ? __pfx_kernel_clone+0x10/0x10
[ 1228.459059]  ? do_futex+0x13a/0x380
[ 1228.459534]  ? __pfx_do_futex+0x10/0x10
[ 1228.460032]  ? __pfx___schedule+0x10/0x10
[ 1228.460595]  __do_sys_fork+0x80/0xc0
[ 1228.461102]  ? __pfx___do_sys_fork+0x10/0x10
[ 1228.461690]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1228.462483]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1228.463163]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1228.463824]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1228.464482]  do_syscall_64+0x3f/0x90
[ 1228.464986]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1228.465628] RIP: 0033:0x7f28ce17db19
[ 1228.466124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1228.468344] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1228.469253] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1228.470155] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1228.471039] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1228.471931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1228.472822] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1228.473737]  </TASK>
[ 1228.474164] memory: usage 307200kB, limit 307200kB, failcnt 16396
[ 1228.474962] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1228.475757] Memory cgroup stats for /syz4:
[ 1228.492194] anon 1941504
[ 1228.493167] file 0
[ 1228.493510] kernel 312631296
[ 1228.493920] kernel_stack 655360
[ 1228.494360] pagetables 2273280
[ 1228.494948] sec_pagetables 0
[ 1228.495347] percpu 2368
[ 1228.495805] sock 0
[ 1228.496101] vmalloc 0
[ 1228.496428] shmem 0
[ 1228.496829] file_mapped 0
[ 1228.497193] file_dirty 0
[ 1228.497669] file_writeback 0
[ 1228.498094] swapcached 0
[ 1228.498456] inactive_anon 1941504
[ 1228.499003] active_anon 0
[ 1228.499355] inactive_file 0
[ 1228.501382] active_file 0
[ 1228.502103] unevictable 0
[ 1228.502598] slab_reclaimable 411600
[ 1228.503055] slab_unreclaimable 1233624
[ 1228.503657] slab 1645224
[ 1228.504003] workingset_refault_anon 0
[ 1228.504588] workingset_refault_file 0
[ 1228.505065] workingset_activate_anon 0
[ 1228.505676] workingset_activate_file 0
[ 1228.506183] workingset_restore_anon 0
[ 1228.506813] workingset_restore_file 0
[ 1228.507281] workingset_nodereclaim 0
[ 1228.507916] pgscan 478
[ 1228.508237] pgsteal 16
[ 1228.508807] pgscan_kswapd 0
[ 1228.509180] pgscan_direct 478
[ 1228.509716] pgscan_khugepaged 0
[ 1228.510160] pgsteal_kswapd 0
[ 1228.510667] pgsteal_direct 16
[ 1228.511066] pgsteal_khugepaged 0
[ 1228.511622] pgfault 7994
[ 1228.511962] pgmajfault 0
[ 1228.512303] pgrefill 482
[ 1228.512797] pgactivate 468
[ 1228.513160] pgdeactivate 482
[ 1228.513820] pglazyfree 0
[ 1228.514180] pglazyfreed 0
[ 1228.514646] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9342,uid=0
[ 1228.516635] Memory cgroup out of memory: Killed process 9342 (syz-executor.4) total-vm:93412kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:33:42 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, &(0x7f0000000ec0))

01:33:42 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x0, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:33:42 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))

01:33:42 executing program 6:
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:33:42 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r2, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:33:58 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, &(0x7f0000000ec0))

01:33:58 executing program 6:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:33:58 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x0, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:33:58 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r2, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:33:58 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x1c}}, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:33:58 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:33:58 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:33:58 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)

01:33:58 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

[ 1243.839125] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1243.840197] CPU: 1 PID: 9400 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1243.840865] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1243.841555] Call Trace:
[ 1243.841778]  <TASK>
[ 1243.841975]  dump_stack_lvl+0xc1/0xf0
[ 1243.842326]  dump_header+0x10a/0xd50
[ 1243.842675]  oom_kill_process+0x25d/0x640
[ 1243.843062]  out_of_memory+0x346/0x1640
[ 1243.843417]  ? find_held_lock+0x2c/0x110
[ 1243.843776]  ? __pfx_out_of_memory+0x10/0x10
[ 1243.844156]  ? rcu_read_unlock+0x9/0x60
[ 1243.844502]  ? lock_release+0x1e3/0x680
[ 1243.844841]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1243.845273]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1243.845733]  ? mem_cgroup_iter+0x291/0x710
[ 1243.846053]  try_charge_memcg+0xec7/0x12f0
[ 1243.846431]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1243.846838]  ? __pfx_lock_release+0x10/0x10
[ 1243.847199]  ? lock_release+0x1e3/0x680
[ 1243.847545]  ? __pfx_lock_release+0x10/0x10
[ 1243.847925]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1243.848334]  __alloc_pages+0x1f3/0x480
[ 1243.848680]  ? __pfx_lock_release+0x10/0x10
[ 1243.849056]  ? __pfx___alloc_pages+0x10/0x10
[ 1243.849450]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1243.849880]  copy_process+0x456/0x7320
[ 1243.850235]  ? __pfx___lock_acquire+0x10/0x10
[ 1243.850628]  ? __pfx___lock_acquire+0x10/0x10
[ 1243.851014]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1243.851397]  ? __pfx_lock_release+0x10/0x10
[ 1243.851771]  ? __pfx_copy_process+0x10/0x10
[ 1243.852146]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1243.852592]  ? lock_release+0x1e3/0x680
[ 1243.852936]  ? xfd_validate_state+0x51/0x170
[ 1243.853319]  kernel_clone+0xeb/0x810
[ 1243.853647]  ? finish_task_switch.isra.0+0x203/0x830
[ 1243.854013]  ? __pfx_kernel_clone+0x10/0x10
[ 1243.854407]  ? __schedule+0x9b1/0x2b00
[ 1243.854754]  ? __pfx___schedule+0x10/0x10
[ 1243.855121]  __do_sys_fork+0x80/0xc0
[ 1243.855451]  ? __pfx___do_sys_fork+0x10/0x10
[ 1243.855831]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1243.856319]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1243.856761]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1243.857201]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1243.857634]  do_syscall_64+0x3f/0x90
[ 1243.857964]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1243.858417] RIP: 0033:0x7f28ce17db19
[ 1243.858736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1243.860197] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1243.860826] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1243.861407] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1243.861985] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1243.862580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1243.863165] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1243.863759]  </TASK>
[ 1243.864159] memory: usage 307200kB, limit 307200kB, failcnt 16549
[ 1243.865377] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1243.866073] Memory cgroup stats for /syz4:
[ 1243.928329] anon 1941504
[ 1243.929000] file 0
[ 1243.929217] kernel 312631296
[ 1243.929579] kernel_stack 655360
[ 1243.929860] pagetables 2273280
[ 1243.930136] sec_pagetables 0
[ 1243.930403] percpu 2368
[ 1243.930694] sock 0
[ 1243.930889] vmalloc 0
[ 1243.931102] shmem 0
[ 1243.931300] file_mapped 0
[ 1243.931563] file_dirty 0
[ 1243.931795] file_writeback 0
[ 1243.932065] swapcached 0
[ 1243.932301] inactive_anon 1941504
[ 1243.932618] active_anon 0
[ 1243.932853] inactive_file 0
[ 1243.933101] active_file 0
[ 1243.933345] unevictable 0
[ 1243.933603] slab_reclaimable 411600
[ 1243.933905] slab_unreclaimable 1233624
[ 1243.934232] slab 1645224
[ 1243.934459] workingset_refault_anon 0
[ 1243.934794] workingset_refault_file 0
[ 1243.935103] workingset_activate_anon 0
[ 1243.935416] workingset_activate_file 0
[ 1243.935834] workingset_restore_anon 0
[ 1243.936144] workingset_restore_file 0
[ 1243.936453] workingset_nodereclaim 0
[ 1243.936823] pgscan 478
[ 1243.937035] pgsteal 16
[ 1243.937249] pgscan_kswapd 0
[ 1243.937521] pgscan_direct 478
[ 1243.937781] pgscan_khugepaged 0
[ 1243.938060] pgsteal_kswapd 0
[ 1243.938304] pgsteal_direct 16
[ 1243.938592] pgsteal_khugepaged 0
[ 1243.938874] pgfault 8053
[ 1243.939102] pgmajfault 0
[ 1243.939330] pgrefill 482
[ 1243.939576] pgactivate 468
[ 1243.939814] pgdeactivate 482
[ 1243.940074] pglazyfree 0
[ 1243.940301] pglazyfreed 0
[ 1243.940557] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9397,uid=0
[ 1243.941776] Memory cgroup out of memory: Killed process 9397 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:33:58 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:33:58 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, 0x0)
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:33:58 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:33:58 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x0, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

[ 1244.119984] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1244.121213] CPU: 1 PID: 9432 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1244.121885] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1244.122581] Call Trace:
[ 1244.122815]  <TASK>
[ 1244.123016]  dump_stack_lvl+0xc1/0xf0
[ 1244.123365]  dump_header+0x10a/0xd50
[ 1244.123713]  oom_kill_process+0x25d/0x640
[ 1244.124077]  out_of_memory+0x346/0x1640
[ 1244.124435]  ? find_held_lock+0x2c/0x110
[ 1244.124796]  ? __pfx_out_of_memory+0x10/0x10
[ 1244.125182]  ? rcu_read_unlock+0x9/0x60
[ 1244.125529]  ? lock_release+0x1e3/0x680
[ 1244.125881]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1244.126292]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1244.126758]  ? mem_cgroup_iter+0x291/0x710
[ 1244.127117]  try_charge_memcg+0xec7/0x12f0
[ 1244.127484]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1244.127881]  ? __pfx_lock_release+0x10/0x10
[ 1244.128253]  ? lock_release+0x1e3/0x680
[ 1244.128597]  ? __pfx_lock_release+0x10/0x10
[ 1244.128980]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1244.129396]  __alloc_pages+0x1f3/0x480
[ 1244.129742]  ? __pfx___alloc_pages+0x10/0x10
[ 1244.130129]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.130591]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1244.131016]  ? percpu_ref_init+0xdf/0x400
[ 1244.131381]  ? cap_capable+0x1be/0x220
[ 1244.131724]  alloc_pages+0x1a0/0x260
[ 1244.132051]  __get_free_pages+0x10/0xb0
[ 1244.132392]  ? ns_capable_noaudit+0xe7/0x120
[ 1244.132767]  io_mem_alloc+0x30/0x60
[ 1244.133082]  io_uring_setup+0x136d/0x2470
[ 1244.133383]  ? __pfx___schedule+0x10/0x10
[ 1244.133753]  ? __pfx_io_uring_setup+0x10/0x10
[ 1244.134095]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1244.134518]  do_syscall_64+0x3f/0x90
[ 1244.134842]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1244.135282] RIP: 0033:0x7f28ce17db19
[ 1244.135599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1244.137068] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1244.137705] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1244.138309] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1244.138897] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1244.139476] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1244.140056] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1244.140655]  </TASK>
[ 1244.140972] memory: usage 307172kB, limit 307200kB, failcnt 16695
[ 1244.141524] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1244.142030] Memory cgroup stats for /syz4:
[ 1244.179487] anon 1945600
[ 1244.180087] file 0
[ 1244.180280] kernel 312610816
[ 1244.180637] kernel_stack 655360
[ 1244.180921] pagetables 2273280
[ 1244.181188] sec_pagetables 0
[ 1244.181446] percpu 2432
[ 1244.181764] sock 0
[ 1244.181957] vmalloc 0
[ 1244.182166] shmem 0
[ 1244.182378] file_mapped 0
[ 1244.182683] file_dirty 0
[ 1244.182910] file_writeback 0
[ 1244.183164] swapcached 0
[ 1244.183393] inactive_anon 1941504
[ 1244.183775] active_anon 0
[ 1244.184005] inactive_file 0
[ 1244.184250] active_file 0
[ 1244.184503] unevictable 0
[ 1244.184741] slab_reclaimable 408456
[ 1244.185042] slab_unreclaimable 1243664
[ 1244.185308] slab 1652120
[ 1244.185558] workingset_refault_anon 0
[ 1244.185875] workingset_refault_file 0
[ 1244.186183] workingset_activate_anon 0
[ 1244.186553] workingset_activate_file 0
[ 1244.186876] workingset_restore_anon 0
[ 1244.187193] workingset_restore_file 0
[ 1244.187532] workingset_nodereclaim 0
[ 1244.187842] pgscan 478
[ 1244.188060] pgsteal 16
[ 1244.188277] pgscan_kswapd 0
[ 1244.188514] pgscan_direct 478
[ 1244.188780] pgscan_khugepaged 0
[ 1244.189055] pgsteal_kswapd 0
[ 1244.189313] pgsteal_direct 16
[ 1244.189617] pgsteal_khugepaged 0
[ 1244.189896] pgfault 8112
[ 1244.190123] pgmajfault 0
[ 1244.190329] pgrefill 482
[ 1244.190578] pgactivate 468
[ 1244.190776] pgdeactivate 482
[ 1244.191040] pglazyfree 0
[ 1244.191233] pglazyfreed 0
[ 1244.191498] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9427,uid=0
[ 1244.192510] Memory cgroup out of memory: Killed process 9427 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:34:11 executing program 6:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:34:11 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, 0x0)
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:34:11 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x0, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:34:11 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)

01:34:11 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, &(0x7f0000000ec0))

01:34:11 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:34:11 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:34:11 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:34:12 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}}, 0x4000001)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:34:12 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')

01:34:12 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:34:12 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x0, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:34:12 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:34:12 executing program 6:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:34:12 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

[ 1257.818394] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
[ 1257.819095] CPU: 0 PID: 9443 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1257.819634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1257.820171] Call Trace:
[ 1257.820354]  <TASK>
[ 1257.820519]  dump_stack_lvl+0xc1/0xf0
[ 1257.820804]  dump_header+0x10a/0xd50
[ 1257.821074]  oom_kill_process+0x25d/0x640
[ 1257.821363]  out_of_memory+0x346/0x1640
[ 1257.821652]  ? find_held_lock+0x2c/0x110
[ 1257.821948]  ? __pfx_out_of_memory+0x10/0x10
[ 1257.822254]  ? rcu_read_unlock+0x9/0x60
[ 1257.822539]  ? lock_release+0x1e3/0x680
[ 1257.822819]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1257.823150]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1257.823521]  ? mem_cgroup_iter+0x291/0x710
[ 1257.823811]  try_charge_memcg+0xec7/0x12f0
[ 1257.824113]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1257.824432]  ? __pfx_lock_release+0x10/0x10
[ 1257.824727]  ? lock_release+0x1e3/0x680
[ 1257.825003]  ? __pfx_lock_release+0x10/0x10
[ 1257.825298]  ? lock_release+0x1e3/0x680
[ 1257.825581]  obj_cgroup_charge+0x1d0/0x530
[ 1257.825875]  ? copy_process+0x3c2/0x7320
[ 1257.826169]  kmem_cache_alloc_node+0xb1/0x3b0
[ 1257.826501]  copy_process+0x3c2/0x7320
[ 1257.826784]  ? lock_acquire+0x19a/0x4c0
[ 1257.827069]  ? __pfx_copy_process+0x10/0x10
[ 1257.827374]  ? mark_lock.part.0+0xef/0x2f50
[ 1257.827669]  ? __pfx___lock_acquire+0x10/0x10
[ 1257.827987]  kernel_clone+0xeb/0x810
[ 1257.828256]  ? __pfx_kernel_clone+0x10/0x10
[ 1257.828553]  ? lock_acquire+0x19a/0x4c0
[ 1257.828829]  ? find_held_lock+0x2c/0x110
[ 1257.829110]  ? rcu_read_unlock+0x1a/0xc0
[ 1257.829407]  ? lock_release+0x1e3/0x680
[ 1257.829708]  ? find_held_lock+0x2c/0x110
[ 1257.830011]  ? do_user_addr_fault+0x6ed/0x1490
[ 1257.830352]  __do_sys_clone+0xba/0x100
[ 1257.830652]  ? __pfx___do_sys_clone+0x10/0x10
[ 1257.830988]  ? __pfx___up_read+0x10/0x10
[ 1257.831303]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1257.831689]  do_syscall_64+0x3f/0x90
[ 1257.831965]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1257.832333] RIP: 0033:0x7f28ce17ef41
[ 1257.832597] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1257.833838] RSP: 002b:00007ffe67afb6b8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1257.834367] RAX: ffffffffffffffda RBX: 00007f28cb6d2700 RCX: 00007f28ce17ef41
[ 1257.834897] RDX: 00007f28cb6d29d0 RSI: 00007f28cb6d22f0 RDI: 00000000003d0f00
[ 1257.835406] RBP: 00007ffe67afb8f0 R08: 00007f28cb6d2700 R09: 00007f28cb6d2700
[ 1257.835921] R10: 00007f28cb6d29d0 R11: 0000000000000206 R12: 00007ffe67afb76e
[ 1257.836427] R13: 00007ffe67afb76f R14: 00007f28cb6d2300 R15: 0000000000022000
[ 1257.836946]  </TASK>
[ 1257.837181] memory: usage 307196kB, limit 307200kB, failcnt 16838
[ 1257.837644] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1257.838085] Memory cgroup stats for /syz4:
[ 1257.852809] anon 1945600
[ 1257.853919] file 0
[ 1257.854218] kernel 312623104
[ 1257.854758] kernel_stack 655360
[ 1257.855173] pagetables 2273280
[ 1257.855687] sec_pagetables 0
[ 1257.856078] percpu 2368
[ 1257.856417] sock 0
[ 1257.856813] vmalloc 0
[ 1257.857137] shmem 0
[ 1257.857616] file_mapped 0
[ 1257.857974] file_dirty 0
[ 1257.858313] file_writeback 0
[ 1257.858932] swapcached 0
[ 1257.859281] inactive_anon 1945600
[ 1257.859963] active_anon 0
[ 1257.860331] inactive_file 0
[ 1257.860812] active_file 0
[ 1257.861250] unevictable 0
[ 1257.861705] slab_reclaimable 411600
[ 1257.862156] slab_unreclaimable 1227952
[ 1257.862674] slab 1639552
[ 1257.863025] workingset_refault_anon 0
[ 1257.863533] workingset_refault_file 0
[ 1257.864001] workingset_activate_anon 0
[ 1257.864530] workingset_activate_file 0
[ 1257.865009] workingset_restore_anon 0
[ 1257.865515] workingset_restore_file 0
[ 1257.865986] workingset_nodereclaim 0
[ 1257.866462] pgscan 478
[ 1257.866834] pgsteal 16
[ 1257.867158] pgscan_kswapd 0
[ 1257.867638] pgscan_direct 478
[ 1257.868037] pgscan_khugepaged 0
[ 1257.868448] pgsteal_kswapd 0
[ 1257.868946] pgsteal_direct 16
[ 1257.869340] pgsteal_khugepaged 0
[ 1257.869865] pgfault 8172
[ 1257.870209] pgmajfault 0
[ 1257.870679] pgrefill 482
[ 1257.871026] pgactivate 468
[ 1257.871392] pgdeactivate 482
[ 1257.871893] pglazyfree 0
[ 1257.872241] pglazyfreed 0
[ 1257.872705] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9443,uid=0
[ 1257.874668] Memory cgroup out of memory: Killed process 9443 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:34:12 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, &(0x7f0000000ec0))

01:34:12 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')

01:34:24 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})

01:34:24 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:34:24 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')

01:34:24 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:34:24 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:34:24 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, 0x0)
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:34:24 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:34:24 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:34:24 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:34:24 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:34:24 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)

[ 1270.047734] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1270.048746] CPU: 1 PID: 9515 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1270.049325] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1270.049917] Call Trace:
[ 1270.050108]  <TASK>
[ 1270.050281]  dump_stack_lvl+0xc1/0xf0
[ 1270.050588]  dump_header+0x10a/0xd50
[ 1270.050875]  oom_kill_process+0x25d/0x640
[ 1270.051201]  out_of_memory+0x346/0x1640
[ 1270.051510]  ? find_held_lock+0x2c/0x110
[ 1270.051822]  ? __pfx_out_of_memory+0x10/0x10
[ 1270.052153]  ? rcu_read_unlock+0x9/0x60
[ 1270.052452]  ? lock_release+0x1e3/0x680
[ 1270.052760]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1270.053118]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1270.053516]  ? mem_cgroup_iter+0x291/0x710
[ 1270.053835]  try_charge_memcg+0xec7/0x12f0
[ 1270.054152]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1270.054499]  ? __pfx_lock_release+0x10/0x10
[ 1270.054828]  ? lock_release+0x1e3/0x680
[ 1270.055124]  ? __pfx_lock_release+0x10/0x10
[ 1270.055455]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1270.055822]  __alloc_pages+0x1f3/0x480
[ 1270.056109]  ? __pfx_lock_release+0x10/0x10
[ 1270.056427]  ? __pfx___alloc_pages+0x10/0x10
[ 1270.056761]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1270.057111]  copy_process+0x456/0x7320
[ 1270.057405]  ? __pfx___lock_acquire+0x10/0x10
[ 1270.057743]  ? __pfx___lock_acquire+0x10/0x10
[ 1270.058080]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1270.058405]  ? __pfx_lock_release+0x10/0x10
[ 1270.058730]  ? __pfx_copy_process+0x10/0x10
[ 1270.059051]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1270.059432]  ? lock_release+0x1e3/0x680
[ 1270.059726]  ? xfd_validate_state+0x51/0x170
[ 1270.060058]  kernel_clone+0xeb/0x810
[ 1270.060347]  ? finish_task_switch.isra.0+0x203/0x830
[ 1270.060722]  ? __pfx_kernel_clone+0x10/0x10
[ 1270.061045]  ? __schedule+0x9b1/0x2b00
[ 1270.061351]  ? __pfx___schedule+0x10/0x10
[ 1270.061669]  __do_sys_fork+0x80/0xc0
[ 1270.061950]  ? __pfx___do_sys_fork+0x10/0x10
[ 1270.062287]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1270.062712]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1270.063096]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1270.063468]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1270.063842]  do_syscall_64+0x3f/0x90
[ 1270.064129]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1270.064510] RIP: 0033:0x7f28ce17db19
[ 1270.064781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1270.066038] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1270.066595] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1270.067113] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1270.067619] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1270.068135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1270.068653] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1270.069178]  </TASK>
[ 1270.069439] memory: usage 307200kB, limit 307200kB, failcnt 16960
[ 1270.069984] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:34:24 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

[ 1270.070515] Memory cgroup stats for /syz4:
[ 1270.109217] anon 1941504
[ 1270.110255] file 0
[ 1270.110664] kernel 312631296
[ 1270.111099] kernel_stack 655360
[ 1270.111593] pagetables 2273280
[ 1270.112042] sec_pagetables 0
[ 1270.112532] percpu 2368
[ 1270.112902] sock 0
[ 1270.113220] vmalloc 0
[ 1270.113602] shmem 0
[ 1270.113930] file_mapped 0
[ 1270.114323] file_dirty 0
[ 1270.114746] file_writeback 0
[ 1270.115175] swapcached 0
[ 1270.115587] inactive_anon 1941504
[ 1270.116067] active_anon 0
[ 1270.116457] inactive_file 0
[ 1270.116895] active_file 0
[ 1270.117287] unevictable 0
[ 1270.117736] slab_reclaimable 411600
[ 1270.118236] slab_unreclaimable 1233624
[ 1270.118810] slab 1645224
[ 1270.119188] workingset_refault_anon 0
[ 1270.119746] workingset_refault_file 0
[ 1270.120274] workingset_activate_anon 0
[ 1270.120836] workingset_activate_file 0
[ 1270.121374] workingset_restore_anon 0
[ 1270.121944] workingset_restore_file 0
[ 1270.122469] workingset_nodereclaim 0
[ 1270.123036] pgscan 478
[ 1270.123399] pgsteal 16
[ 1270.123785] pgscan_kswapd 0
[ 1270.124201] pgscan_direct 478
[ 1270.124665] pgscan_khugepaged 0
[ 1270.125126] pgsteal_kswapd 0
[ 1270.125581] pgsteal_direct 16
[ 1270.126020] pgsteal_khugepaged 0
[ 1270.126508] pgfault 8231
[ 1270.126914] pgmajfault 0
[ 1270.127285] pgrefill 482
[ 1270.127688] pgactivate 468
[ 1270.128081] pgdeactivate 482
[ 1270.128540] pglazyfree 0
[ 1270.128915] pglazyfreed 0
[ 1270.129299] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9512,uid=0
[ 1270.131313] Memory cgroup out of memory: Killed process 9512 (syz-executor.4) total-vm:93544kB, anon-rss:384kB, file-rss:35616kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:34:24 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:34:24 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:34:24 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)

01:34:24 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:34:39 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:34:39 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)

01:34:39 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:34:39 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:34:39 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:34:39 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:34:39 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})

01:34:39 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0x0, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:34:39 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)

01:34:39 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)

[ 1285.316120] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
[ 1285.316785] CPU: 1 PID: 9564 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1285.317308] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1285.317844] Call Trace:
[ 1285.318024]  <TASK>
[ 1285.318187]  dump_stack_lvl+0xc1/0xf0
[ 1285.318459]  dump_header+0x10a/0xd50
[ 1285.318735]  oom_kill_process+0x25d/0x640
[ 1285.319025]  out_of_memory+0x346/0x1640
[ 1285.319316]  ? find_held_lock+0x2c/0x110
[ 1285.319607]  ? __pfx_out_of_memory+0x10/0x10
[ 1285.319924]  ? rcu_read_unlock+0x9/0x60
[ 1285.320200]  ? lock_release+0x1e3/0x680
[ 1285.320485]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1285.320817]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1285.321193]  ? mem_cgroup_iter+0x291/0x710
[ 1285.321487]  try_charge_memcg+0xec7/0x12f0
[ 1285.321789]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1285.322106]  ? __pfx_lock_release+0x10/0x10
[ 1285.322400]  ? lock_release+0x1e3/0x680
[ 1285.322682]  ? __pfx_lock_release+0x10/0x10
[ 1285.322988]  ? lock_release+0x1e3/0x680
[ 1285.323273]  obj_cgroup_charge+0x1d0/0x530
[ 1285.323576]  ? copy_process+0x3c2/0x7320
[ 1285.323874]  kmem_cache_alloc_node+0xb1/0x3b0
[ 1285.324200]  copy_process+0x3c2/0x7320
[ 1285.324483]  ? lock_acquire+0x19a/0x4c0
[ 1285.324772]  ? __pfx_copy_process+0x10/0x10
[ 1285.325090]  ? mark_lock.part.0+0xef/0x2f50
[ 1285.325395]  ? __pfx___lock_acquire+0x10/0x10
[ 1285.325707]  kernel_clone+0xeb/0x810
[ 1285.325985]  ? __pfx_kernel_clone+0x10/0x10
[ 1285.326288]  ? lock_acquire+0x19a/0x4c0
[ 1285.326569]  ? find_held_lock+0x2c/0x110
[ 1285.326922]  ? rcu_read_unlock+0x1a/0xc0
[ 1285.327219]  ? lock_release+0x1e3/0x680
[ 1285.327511]  ? find_held_lock+0x2c/0x110
[ 1285.327806]  ? do_user_addr_fault+0x6ed/0x1490
[ 1285.328141]  __do_sys_clone+0xba/0x100
[ 1285.328427]  ? __pfx___do_sys_clone+0x10/0x10
[ 1285.328762]  ? __pfx___up_read+0x10/0x10
[ 1285.329071]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1285.329453]  do_syscall_64+0x3f/0x90
[ 1285.329726]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1285.330107] RIP: 0033:0x7f28ce17ef41
[ 1285.330370] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1285.331621] RSP: 002b:00007ffe67afb6b8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1285.332153] RAX: ffffffffffffffda RBX: 00007f28cb6d2700 RCX: 00007f28ce17ef41
[ 1285.332650] RDX: 00007f28cb6d29d0 RSI: 00007f28cb6d22f0 RDI: 00000000003d0f00
[ 1285.333154] RBP: 00007ffe67afb8f0 R08: 00007f28cb6d2700 R09: 00007f28cb6d2700
[ 1285.333649] R10: 00007f28cb6d29d0 R11: 0000000000000206 R12: 00007ffe67afb76e
[ 1285.334143] R13: 00007ffe67afb76f R14: 00007f28cb6d2300 R15: 0000000000022000
[ 1285.334649]  </TASK>
[ 1285.335498] memory: usage 307196kB, limit 307200kB, failcnt 17155
[ 1285.335935] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1285.336369] Memory cgroup stats for /syz4:
[ 1285.351894] anon 1945600
[ 1285.352974] file 0
[ 1285.353296] kernel 312623104
[ 1285.353950] kernel_stack 655360
[ 1285.354438] pagetables 2273280
[ 1285.354952] sec_pagetables 0
[ 1285.355383] percpu 2368
[ 1285.355773] sock 0
[ 1285.356088] vmalloc 0
[ 1285.356400] shmem 0
[ 1285.356749] file_mapped 0
[ 1285.357100] file_dirty 0
[ 1285.357501] file_writeback 0
[ 1285.357888] swapcached 0
[ 1285.358285] inactive_anon 1945600
[ 1285.358752] active_anon 0
[ 1285.359142] inactive_file 0
[ 1285.359537] active_file 0
[ 1285.359921] unevictable 0
[ 1285.360269] slab_reclaimable 411600
[ 1285.360791] slab_unreclaimable 1227952
[ 1285.361269] slab 1639552
[ 1285.361667] workingset_refault_anon 0
[ 1285.362185] workingset_refault_file 0
[ 1285.362679] workingset_activate_anon 0
[ 1285.363221] workingset_activate_file 0
[ 1285.363771] workingset_restore_anon 0
[ 1285.364290] workingset_restore_file 0
[ 1285.364828] workingset_nodereclaim 0
[ 1285.365334] pgscan 478
[ 1285.365714] pgsteal 16
[ 1285.366043] pgscan_kswapd 0
[ 1285.366449] pgscan_direct 478
[ 1285.366929] pgscan_khugepaged 0
[ 1285.367347] pgsteal_kswapd 0
[ 1285.367793] pgsteal_direct 16
[ 1285.368230] pgsteal_khugepaged 0
[ 1285.368684] pgfault 8291
[ 1285.369060] pgmajfault 0
[ 1285.369411] pgrefill 482
[ 1285.369812] pgactivate 468
[ 1285.370173] pgdeactivate 482
[ 1285.370622] pglazyfree 0
[ 1285.370971] pglazyfreed 0
[ 1285.371358] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9564,uid=0
[ 1285.373235] Memory cgroup out of memory: Killed process 9564 (syz-executor.4) total-vm:93544kB, anon-rss:404kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:34:39 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:34:39 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:34:39 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:34:39 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:34:39 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:34:39 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:34:39 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)

01:34:39 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:34:39 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x0, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:34:39 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:34:39 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0x0, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:34:40 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})

01:34:40 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)

[ 1285.789760] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1285.790691] CPU: 1 PID: 9627 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1285.791229] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1285.791787] Call Trace:
[ 1285.791968]  <TASK>
[ 1285.792127]  dump_stack_lvl+0xc1/0xf0
[ 1285.792404]  dump_header+0x10a/0xd50
[ 1285.792681]  oom_kill_process+0x25d/0x640
[ 1285.792972]  out_of_memory+0x346/0x1640
[ 1285.793265]  ? find_held_lock+0x2c/0x110
[ 1285.793555]  ? __pfx_out_of_memory+0x10/0x10
[ 1285.793870]  ? rcu_read_unlock+0x9/0x60
[ 1285.794157]  ? lock_release+0x1e3/0x680
[ 1285.794439]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1285.794802]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1285.795172]  ? mem_cgroup_iter+0x291/0x710
[ 1285.795482]  try_charge_memcg+0xec7/0x12f0
[ 1285.795781]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1285.796105]  ? __pfx_lock_release+0x10/0x10
[ 1285.796407]  ? lock_release+0x1e3/0x680
[ 1285.796690]  ? __pfx_lock_release+0x10/0x10
[ 1285.797000]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1285.797333]  __alloc_pages+0x1f3/0x480
[ 1285.797620]  ? __pfx___alloc_pages+0x10/0x10
[ 1285.797932]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1285.798291]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1285.798633]  ? percpu_ref_init+0xdf/0x400
[ 1285.798937]  ? cap_capable+0x1be/0x220
[ 1285.799249]  alloc_pages+0x1a0/0x260
[ 1285.799527]  __get_free_pages+0x10/0xb0
[ 1285.799821]  ? ns_capable_noaudit+0xe7/0x120
[ 1285.800142]  io_mem_alloc+0x30/0x60
[ 1285.800419]  io_uring_setup+0x136d/0x2470
[ 1285.800721]  ? __pfx___schedule+0x10/0x10
[ 1285.801044]  ? __pfx_io_uring_setup+0x10/0x10
[ 1285.801391]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1285.801815]  do_syscall_64+0x3f/0x90
[ 1285.802154]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1285.802550] RIP: 0033:0x7f28ce17db19
[ 1285.802828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1285.804107] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1285.804631] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1285.805139] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1285.805653] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1285.806133] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1285.806651] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1285.807158]  </TASK>
[ 1285.807533] memory: usage 307172kB, limit 307200kB, failcnt 17236
[ 1285.807972] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1285.808414] Memory cgroup stats for /syz4:
[ 1285.810327] anon 1941504
[ 1285.810855] file 0
[ 1285.811016] kernel 312602624
[ 1285.811241] kernel_stack 655360
[ 1285.811503] pagetables 2273280
[ 1285.811759] sec_pagetables 0
[ 1285.811979] percpu 2432
[ 1285.812172] sock 0
[ 1285.812331] vmalloc 0
[ 1285.812534] shmem 0
[ 1285.812701] file_mapped 0
[ 1285.812905] file_dirty 0
[ 1285.813098] file_writeback 0
[ 1285.813322] swapcached 0
[ 1285.813538] inactive_anon 1941504
[ 1285.813795] active_anon 0
[ 1285.813988] inactive_file 0
[ 1285.814198] active_file 0
[ 1285.814393] unevictable 0
[ 1285.814613] slab_reclaimable 408456
[ 1285.814881] slab_unreclaimable 1235368
[ 1285.815160] slab 1643824
[ 1285.815350] workingset_refault_anon 0
[ 1285.815640] workingset_refault_file 0
[ 1285.815905] workingset_activate_anon 0
[ 1285.816182] workingset_activate_file 0
[ 1285.816445] workingset_restore_anon 0
[ 1285.816740] workingset_restore_file 0
[ 1285.817010] workingset_nodereclaim 0
[ 1285.817281] pgscan 478
[ 1285.817461] pgsteal 16
[ 1285.817676] pgscan_kswapd 0
[ 1285.817887] pgscan_direct 478
[ 1285.818119] pgscan_khugepaged 0
[ 1285.818354] pgsteal_kswapd 0
[ 1285.818598] pgsteal_direct 16
[ 1285.818828] pgsteal_khugepaged 0
[ 1285.819071] pgfault 8349
[ 1285.819255] pgmajfault 0
[ 1285.819455] pgrefill 482
[ 1285.819669] pgactivate 468
[ 1285.819880] pgdeactivate 482
[ 1285.820090] pglazyfree 0
[ 1285.820289] pglazyfreed 0
[ 1285.820504] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9626,uid=0
[ 1285.821599] Memory cgroup out of memory: Killed process 9626 (syz-executor.4) total-vm:93412kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:34:54 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})

01:34:54 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0x0, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:34:54 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)

01:34:54 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x0, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:34:54 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:34:54 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:34:54 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:34:54 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})

01:34:54 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x0, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

[ 1300.238165] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1300.239228] CPU: 0 PID: 9649 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1300.239792] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1300.240377] Call Trace:
[ 1300.240579]  <TASK>
[ 1300.240759]  dump_stack_lvl+0xc1/0xf0
[ 1300.241065]  dump_header+0x10a/0xd50
[ 1300.241353]  oom_kill_process+0x25d/0x640
[ 1300.241660]  out_of_memory+0x346/0x1640
[ 1300.241955]  ? find_held_lock+0x2c/0x110
[ 1300.242255]  ? __pfx_out_of_memory+0x10/0x10
[ 1300.242576]  ? rcu_read_unlock+0x9/0x60
[ 1300.242868]  ? lock_release+0x1e3/0x680
[ 1300.243177]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1300.243532]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1300.243895]  ? mem_cgroup_iter+0x291/0x710
[ 1300.244205]  try_charge_memcg+0xec7/0x12f0
[ 1300.244498]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1300.244828]  ? __pfx_lock_release+0x10/0x10
[ 1300.245120]  ? lock_release+0x1e3/0x680
[ 1300.245404]  ? __pfx_lock_release+0x10/0x10
[ 1300.245706]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1300.246054]  __alloc_pages+0x1f3/0x480
[ 1300.246329]  ? __pfx___alloc_pages+0x10/0x10
[ 1300.246655]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1300.247014]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1300.247362]  ? percpu_ref_init+0xdf/0x400
[ 1300.247649]  ? cap_capable+0x1be/0x220
[ 1300.247937]  alloc_pages+0x1a0/0x260
[ 1300.248196]  __get_free_pages+0x10/0xb0
[ 1300.248477]  ? ns_capable_noaudit+0xe7/0x120
[ 1300.248793]  io_mem_alloc+0x30/0x60
[ 1300.249047]  io_uring_setup+0x118f/0x2470
[ 1300.249348]  ? __pfx_io_uring_setup+0x10/0x10
[ 1300.249684]  ? __pfx___x64_sys_io_uring_setup+0x10/0x10
[ 1300.250065]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1300.250410]  do_syscall_64+0x3f/0x90
[ 1300.250670]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1300.251062] RIP: 0033:0x7f28ce17db19
[ 1300.251329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1300.252555] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1300.253045] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1300.253538] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1300.254028] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1300.254516] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1300.255012] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1300.255511]  </TASK>
[ 1300.255733] memory: usage 307172kB, limit 307200kB, failcnt 17325
[ 1300.256157] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1300.256589] Memory cgroup stats for /syz4:
[ 1300.257120] anon 1945600
[ 1300.257730] file 4096
[ 1300.257911] kernel 312594432
[ 1300.258130] kernel_stack 688128
[ 1300.258360] pagetables 2273280
[ 1300.258657] sec_pagetables 0
[ 1300.258873] percpu 2368
[ 1300.259066] sock 0
[ 1300.259234] vmalloc 0
[ 1300.259401] shmem 0
[ 1300.259656] file_mapped 0
[ 1300.259857] file_dirty 0
[ 1300.260047] file_writeback 0
[ 1300.260264] swapcached 0
[ 1300.260446] inactive_anon 1945600
[ 1300.260768] active_anon 0
[ 1300.260964] inactive_file 0
[ 1300.261171] active_file 4096
[ 1300.261376] unevictable 0
[ 1300.261656] slab_reclaimable 408696
[ 1300.261910] slab_unreclaimable 1232560
[ 1300.262179] slab 1641256
[ 1300.262368] workingset_refault_anon 0
[ 1300.262698] workingset_refault_file 0
[ 1300.262970] workingset_activate_anon 0
[ 1300.263236] workingset_activate_file 0
[ 1300.263511] workingset_restore_anon 0
[ 1300.263784] workingset_restore_file 0
[ 1300.264050] workingset_nodereclaim 0
[ 1300.264303] pgscan 517
[ 1300.264494] pgsteal 16
[ 1300.264676] pgscan_kswapd 0
[ 1300.264874] pgscan_direct 517
[ 1300.265096] pgscan_khugepaged 0
[ 1300.265326] pgsteal_kswapd 0
[ 1300.265555] pgsteal_direct 16
[ 1300.265768] pgsteal_khugepaged 0
[ 1300.266002] pgfault 8408
[ 1300.266184] pgmajfault 0
[ 1300.266374] pgrefill 521
[ 1300.266572] pgactivate 507
[ 1300.266774] pgdeactivate 521
[ 1300.266992] pglazyfree 0
[ 1300.267184] pglazyfreed 0
[ 1300.267375] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9639,uid=0
[ 1300.268417] Memory cgroup out of memory: Killed process 9639 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:35:08 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})

01:35:08 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:35:08 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})

01:35:08 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)

01:35:08 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:35:08 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:35:08 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x0, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:35:08 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:35:08 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

[ 1313.840574] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1313.841377] CPU: 1 PID: 9674 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1313.841953] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1313.842536] Call Trace:
[ 1313.842724]  <TASK>
[ 1313.842893]  dump_stack_lvl+0xc1/0xf0
[ 1313.843188]  dump_header+0x10a/0xd50
[ 1313.843473]  oom_kill_process+0x25d/0x640
[ 1313.843783]  out_of_memory+0x346/0x1640
[ 1313.844084]  ? find_held_lock+0x2c/0x110
[ 1313.844391]  ? __pfx_out_of_memory+0x10/0x10
[ 1313.844702]  ? rcu_read_unlock+0x9/0x60
[ 1313.844999]  ? lock_release+0x1e3/0x680
[ 1313.845298]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1313.845638]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1313.846030]  ? mem_cgroup_iter+0x291/0x710
[ 1313.846325]  try_charge_memcg+0xec7/0x12f0
[ 1313.846640]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1313.846965]  ? __pfx_lock_release+0x10/0x10
[ 1313.847294]  ? lock_release+0x1e3/0x680
[ 1313.847570]  ? __pfx_lock_release+0x10/0x10
[ 1313.847896]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1313.848252]  __alloc_pages+0x1f3/0x480
[ 1313.848526]  ? __pfx_lock_release+0x10/0x10
[ 1313.848844]  ? __pfx___alloc_pages+0x10/0x10
[ 1313.849178]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1313.849519]  copy_process+0x456/0x7320
[ 1313.849816]  ? schedule+0xdb/0x1a0
[ 1313.850077]  ? futex_unqueue+0xb7/0x120
[ 1313.850385]  ? futex_wait+0x503/0x690
[ 1313.850657]  ? __pfx_copy_process+0x10/0x10
[ 1313.850982]  ? wake_up_q+0x9e/0x140
[ 1313.851245]  ? do_raw_spin_unlock+0x53/0x220
[ 1313.851588]  kernel_clone+0xeb/0x810
[ 1313.851857]  ? __pfx_kernel_clone+0x10/0x10
[ 1313.852177]  ? do_futex+0x13a/0x380
[ 1313.852430]  ? __pfx_do_futex+0x10/0x10
[ 1313.852722]  ? __pfx_lock_release+0x10/0x10
[ 1313.853021]  ? __pfx___schedule+0x10/0x10
[ 1313.853338]  __do_sys_fork+0x80/0xc0
[ 1313.853605]  ? __pfx___do_sys_fork+0x10/0x10
[ 1313.853936]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1313.854332]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1313.854714]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1313.855062]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1313.855441]  do_syscall_64+0x3f/0x90
[ 1313.855707]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1313.856086] RIP: 0033:0x7f28ce17db19
[ 1313.856343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1313.857603] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1313.858134] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1313.858642] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1313.859152] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1313.859651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1313.860154] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1313.860670]  </TASK>
[ 1313.860941] memory: usage 307200kB, limit 307200kB, failcnt 17475
[ 1313.861375] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1313.861885] Memory cgroup stats for /syz4:
[ 1313.862113] anon 1941504
[ 1313.862620] file 0
[ 1313.862776] kernel 312631296
[ 1313.862996] kernel_stack 655360
[ 1313.863227] pagetables 2273280
[ 1313.863458] sec_pagetables 0
[ 1313.863683] percpu 2368
[ 1313.863870] sock 0
[ 1313.864023] vmalloc 0
[ 1313.864206] shmem 0
[ 1313.864364] file_mapped 0
[ 1313.864579] file_dirty 0
[ 1313.864765] file_writeback 0
[ 1313.864985] swapcached 0
[ 1313.865173] inactive_anon 1941504
[ 1313.865415] active_anon 0
[ 1313.865637] inactive_file 0
[ 1313.865839] active_file 0
[ 1313.866038] unevictable 0
[ 1313.866224] slab_reclaimable 411600
[ 1313.866499] slab_unreclaimable 1233624
[ 1313.866756] slab 1645224
[ 1313.866959] workingset_refault_anon 0
[ 1313.867223] workingset_refault_file 0
[ 1313.867509] workingset_activate_anon 0
[ 1313.867770] workingset_activate_file 0
[ 1313.868041] workingset_restore_anon 0
[ 1313.868303] workingset_restore_file 0
[ 1313.868569] workingset_nodereclaim 0
[ 1313.868831] pgscan 551
[ 1313.869014] pgsteal 17
[ 1313.869189] pgscan_kswapd 0
[ 1313.869398] pgscan_direct 551
[ 1313.869633] pgscan_khugepaged 0
[ 1313.869860] pgsteal_kswapd 0
[ 1313.870082] pgsteal_direct 17
[ 1313.870293] pgsteal_khugepaged 0
[ 1313.870546] pgfault 8467
[ 1313.870738] pgmajfault 0
[ 1313.870922] pgrefill 555
[ 1313.871120] pgactivate 540
[ 1313.871311] pgdeactivate 555
[ 1313.871549] pglazyfree 0
[ 1313.871743] pglazyfreed 0
[ 1313.871942] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9671,uid=0
[ 1313.872988] Memory cgroup out of memory: Killed process 9671 (syz-executor.4) total-vm:93412kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:35:08 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x0, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:35:08 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)

01:35:08 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:35:08 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:35:08 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:35:08 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:35:08 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})

01:35:08 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)

01:35:08 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:35:08 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x0, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

[ 1314.156178] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1314.157121] CPU: 1 PID: 9705 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1314.157648] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1314.158190] Call Trace:
[ 1314.158374]  <TASK>
[ 1314.158536]  dump_stack_lvl+0xc1/0xf0
[ 1314.158813]  dump_header+0x10a/0xd50
[ 1314.159100]  oom_kill_process+0x25d/0x640
[ 1314.159397]  out_of_memory+0x346/0x1640
[ 1314.159682]  ? find_held_lock+0x2c/0x110
[ 1314.159971]  ? __pfx_out_of_memory+0x10/0x10
[ 1314.160281]  ? rcu_read_unlock+0x9/0x60
[ 1314.160564]  ? lock_release+0x1e3/0x680
[ 1314.160846]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1314.161179]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1314.161551]  ? mem_cgroup_iter+0x291/0x710
[ 1314.161850]  try_charge_memcg+0xec7/0x12f0
[ 1314.162146]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1314.162463]  ? __pfx_lock_release+0x10/0x10
[ 1314.162763]  ? lock_release+0x1e3/0x680
[ 1314.163039]  ? __pfx_lock_release+0x10/0x10
[ 1314.163350]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1314.163683]  __alloc_pages+0x1f3/0x480
[ 1314.163963]  ? __pfx___alloc_pages+0x10/0x10
[ 1314.164273]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1314.164635]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1314.164980]  ? percpu_ref_init+0xdf/0x400
[ 1314.165271]  ? cap_capable+0x1be/0x220
[ 1314.165550]  alloc_pages+0x1a0/0x260
[ 1314.165818]  __get_free_pages+0x10/0xb0
[ 1314.166095]  ? ns_capable_noaudit+0xe7/0x120
[ 1314.166404]  io_mem_alloc+0x30/0x60
[ 1314.166660]  io_uring_setup+0x136d/0x2470
[ 1314.166949]  ? __pfx___schedule+0x10/0x10
[ 1314.167251]  ? __pfx_io_uring_setup+0x10/0x10
[ 1314.167598]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1314.167951]  do_syscall_64+0x3f/0x90
[ 1314.168232]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1314.168614] RIP: 0033:0x7f28ce17db19
[ 1314.168884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1314.170147] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1314.170682] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1314.171192] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1314.171687] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1314.172188] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1314.172693] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1314.173203]  </TASK>
[ 1314.173448] memory: usage 307172kB, limit 307200kB, failcnt 17570
[ 1314.173949] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:35:08 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

[ 1314.174425] Memory cgroup stats for /syz4:
[ 1314.224666] anon 1941504
[ 1314.225180] file 0
[ 1314.225352] kernel 312602624
[ 1314.225586] kernel_stack 655360
[ 1314.225812] pagetables 2273280
[ 1314.226028] sec_pagetables 0
[ 1314.226237] percpu 2432
[ 1314.226415] sock 0
[ 1314.226642] vmalloc 0
[ 1314.226816] shmem 0
[ 1314.226979] file_mapped 0
[ 1314.227173] file_dirty 0
[ 1314.227360] file_writeback 0
[ 1314.227602] swapcached 0
[ 1314.227790] inactive_anon 1941504
[ 1314.228023] active_anon 0
[ 1314.228217] inactive_file 0
[ 1314.228419] active_file 0
[ 1314.228629] unevictable 0
[ 1314.228823] slab_reclaimable 408456
[ 1314.229065] slab_unreclaimable 1235368
[ 1314.229328] slab 1643824
[ 1314.229533] workingset_refault_anon 0
[ 1314.229789] workingset_refault_file 0
[ 1314.230046] workingset_activate_anon 0
[ 1314.230311] workingset_activate_file 0
[ 1314.230583] workingset_restore_anon 0
[ 1314.230842] workingset_restore_file 0
[ 1314.231102] workingset_nodereclaim 0
[ 1314.231355] pgscan 551
[ 1314.231556] pgsteal 17
[ 1314.231731] pgscan_kswapd 0
[ 1314.231927] pgscan_direct 551
[ 1314.232140] pgscan_khugepaged 0
[ 1314.232363] pgsteal_kswapd 0
[ 1314.232590] pgsteal_direct 17
[ 1314.232802] pgsteal_khugepaged 0
[ 1314.233032] pgfault 8525
[ 1314.233216] pgmajfault 0
[ 1314.233401] pgrefill 555
[ 1314.233606] pgactivate 540
[ 1314.233816] pgdeactivate 555
[ 1314.234028] pglazyfree 0
[ 1314.234227] pglazyfreed 0
[ 1314.234419] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9703,uid=0
[ 1314.235503] Memory cgroup out of memory: Killed process 9703 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:35:08 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:35:23 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)

01:35:23 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x0, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:35:23 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})

01:35:23 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)

01:35:23 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:35:23 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x0, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:35:23 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:35:23 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:35:23 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:35:23 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)

01:35:23 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

01:35:23 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

[ 1329.486595] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1329.487587] CPU: 1 PID: 9771 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1329.488168] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1329.488745] Call Trace:
[ 1329.488935]  <TASK>
[ 1329.489102]  dump_stack_lvl+0xc1/0xf0
[ 1329.489395]  dump_header+0x10a/0xd50
[ 1329.489681]  oom_kill_process+0x25d/0x640
[ 1329.489990]  out_of_memory+0x346/0x1640
[ 1329.490286]  ? find_held_lock+0x2c/0x110
[ 1329.490592]  ? __pfx_out_of_memory+0x10/0x10
[ 1329.490903]  ? rcu_read_unlock+0x9/0x60
[ 1329.491201]  ? lock_release+0x1e3/0x680
[ 1329.491502]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1329.491851]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1329.492218]  ? mem_cgroup_iter+0x291/0x710
[ 1329.492537]  try_charge_memcg+0xec7/0x12f0
[ 1329.492831]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1329.493166]  ? __pfx_lock_release+0x10/0x10
[ 1329.493460]  ? lock_release+0x1e3/0x680
[ 1329.493752]  ? __pfx_lock_release+0x10/0x10
[ 1329.494075]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1329.494424]  __alloc_pages+0x1f3/0x480
[ 1329.494714]  ? __pfx___alloc_pages+0x10/0x10
[ 1329.495045]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1329.495415]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1329.495774]  ? percpu_ref_init+0xdf/0x400
[ 1329.496080]  ? cap_capable+0x1be/0x220
[ 1329.496374]  alloc_pages+0x1a0/0x260
[ 1329.496638]  __get_free_pages+0x10/0xb0
[ 1329.496929]  ? ns_capable_noaudit+0xe7/0x120
[ 1329.497231]  io_mem_alloc+0x30/0x60
[ 1329.497503]  io_uring_setup+0x136d/0x2470
[ 1329.497792]  ? __pfx_lock_release+0x10/0x10
[ 1329.498106]  ? __pfx_io_uring_setup+0x10/0x10
[ 1329.498445]  ? kfree+0x106/0x140
[ 1329.498683]  ? kcov_ioctl+0x37f/0x6b0
[ 1329.498975]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1329.499339]  do_syscall_64+0x3f/0x90
[ 1329.499618]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1329.499997] RIP: 0033:0x7f28ce17db19
[ 1329.500251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1329.501499] RSP: 002b:00007f28cb6d2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1329.502002] RAX: ffffffffffffffda RBX: 00007f28ce291020 RCX: 00007f28ce17db19
[ 1329.502498] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1329.502994] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1329.503504] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1329.504000] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1329.504513]  </TASK>
[ 1329.504776] memory: usage 307200kB, limit 307200kB, failcnt 17680
[ 1329.505184] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1329.505651] Memory cgroup stats for /syz4:
[ 1329.516943] anon 1945600
[ 1329.518017] file 0
[ 1329.518327] kernel 312627200
[ 1329.518910] kernel_stack 688128
[ 1329.519362] pagetables 2273280
[ 1329.519967] sec_pagetables 0
[ 1329.520378] percpu 2368
[ 1329.520853] sock 0
[ 1329.521161] vmalloc 0
[ 1329.521613] shmem 0
[ 1329.521940] file_mapped 0
[ 1329.522315] file_dirty 0
[ 1329.522944] file_writeback 0
[ 1329.523382] swapcached 0
[ 1329.523886] inactive_anon 1945600
[ 1329.524558] active_anon 0
[ 1329.524938] inactive_file 0
[ 1329.525329] active_file 0
[ 1329.525925] unevictable 0
[ 1329.526302] slab_reclaimable 408456
[ 1329.526940] slab_unreclaimable 1232560
[ 1329.527509] slab 1641016
[ 1329.527890] workingset_refault_anon 0
[ 1329.528415] workingset_refault_file 0
[ 1329.528962] workingset_activate_anon 0
[ 1329.529577] workingset_activate_file 0
[ 1329.530113] workingset_restore_anon 0
[ 1329.530658] workingset_restore_file 0
[ 1329.531182] workingset_nodereclaim 0
[ 1329.531731] pgscan 551
[ 1329.532096] pgsteal 17
[ 1329.532457] pgscan_kswapd 0
[ 1329.532889] pgscan_direct 551
[ 1329.533320] pgscan_khugepaged 0
[ 1329.533804] pgsteal_kswapd 0
[ 1329.534228] pgsteal_direct 17
[ 1329.534686] pgsteal_khugepaged 0
[ 1329.535149] pgfault 8585
[ 1329.535566] pgmajfault 0
[ 1329.535946] pgrefill 555
[ 1329.536323] pgactivate 540
[ 1329.536743] pgdeactivate 555
[ 1329.537169] pglazyfree 0
[ 1329.537572] pglazyfreed 0
[ 1329.537944] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9747,uid=0
[ 1329.539984] Memory cgroup out of memory: Killed process 9747 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:35:35 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:35:35 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

01:35:35 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x0, 0x6, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:35:35 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:35:35 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)

01:35:35 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)

01:35:35 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x0, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:35:35 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x0, 0x10, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:35:35 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)

01:35:35 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x0, 0x1, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:35:35 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

[ 1341.212102] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1341.213651] CPU: 1 PID: 9795 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1341.214657] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1341.215685] Call Trace:
[ 1341.216016]  <TASK>
[ 1341.216323]  dump_stack_lvl+0xc1/0xf0
[ 1341.216829]  dump_header+0x10a/0xd50
[ 1341.217346]  oom_kill_process+0x25d/0x640
[ 1341.217901]  out_of_memory+0x346/0x1640
[ 1341.218441]  ? find_held_lock+0x2c/0x110
[ 1341.218982]  ? __pfx_out_of_memory+0x10/0x10
[ 1341.219593]  ? rcu_read_unlock+0x9/0x60
[ 1341.220126]  ? lock_release+0x1e3/0x680
[ 1341.220668]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1341.221302]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1341.221990]  ? mem_cgroup_iter+0x291/0x710
[ 1341.222561]  try_charge_memcg+0xec7/0x12f0
[ 1341.223128]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1341.223743]  ? __pfx_lock_release+0x10/0x10
[ 1341.224305]  ? lock_release+0x1e3/0x680
[ 1341.224829]  ? __pfx_lock_release+0x10/0x10
01:35:35 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)

[ 1341.225402]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1341.226207]  __alloc_pages+0x1f3/0x480
[ 1341.226718]  ? __pfx_lock_release+0x10/0x10
[ 1341.227261]  ? __pfx___alloc_pages+0x10/0x10
[ 1341.227869]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1341.228482]  copy_process+0x456/0x7320
[ 1341.228992]  ? schedule+0xdb/0x1a0
[ 1341.229474]  ? futex_unqueue+0xb7/0x120
[ 1341.230023]  ? futex_wait+0x503/0x690
[ 1341.230544]  ? __pfx_copy_process+0x10/0x10
[ 1341.231123]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1341.231838]  kernel_clone+0xeb/0x810
[ 1341.232345]  ? finish_task_switch.isra.0+0x203/0x830
[ 1341.233012]  ? __pfx_kernel_clone+0x10/0x10
[ 1341.233598]  ? do_futex+0x13a/0x380
[ 1341.234077]  ? __pfx_do_futex+0x10/0x10
[ 1341.234591]  ? __pfx___schedule+0x10/0x10
[ 1341.235148]  __do_sys_fork+0x80/0xc0
[ 1341.235669]  ? __pfx___do_sys_fork+0x10/0x10
[ 1341.236264]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1341.237018]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1341.237700]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1341.238364]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1341.239024]  do_syscall_64+0x3f/0x90
[ 1341.239539]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1341.240207] RIP: 0033:0x7f28ce17db19
[ 1341.240692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1341.242913] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1341.243871] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1341.244760] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1341.245645] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1341.246539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1341.247453] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1341.248371]  </TASK>
[ 1341.249847] memory: usage 307200kB, limit 307200kB, failcnt 17817
[ 1341.250836] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:35:35 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

[ 1341.251646] Memory cgroup stats for /syz4:
[ 1341.331008] anon 1941504
[ 1341.331991] file 0
[ 1341.332283] kernel 312631296
[ 1341.332709] kernel_stack 655360
[ 1341.333120] pagetables 2273280
[ 1341.333552] sec_pagetables 0
[ 1341.333935] percpu 2368
[ 1341.334267] sock 0
[ 1341.334577] vmalloc 0
[ 1341.334886] shmem 0
[ 1341.335175] file_mapped 0
[ 1341.335557] file_dirty 0
[ 1341.335898] file_writeback 0
[ 1341.336279] swapcached 0
[ 1341.336647] inactive_anon 1941504
[ 1341.337075] active_anon 0
[ 1341.337419] inactive_file 0
[ 1341.337814] active_file 0
[ 1341.338172] unevictable 0
[ 1341.338543] slab_reclaimable 411600
[ 1341.339008] slab_unreclaimable 1233624
[ 1341.339544] slab 1645224
[ 1341.339885] workingset_refault_anon 0
[ 1341.340340] workingset_refault_file 0
[ 1341.340843] workingset_activate_anon 0
[ 1341.341342] workingset_activate_file 0
[ 1341.341855] workingset_restore_anon 0
[ 1341.342337] workingset_restore_file 0
[ 1341.342837] workingset_nodereclaim 0
[ 1341.343309] pgscan 551
[ 1341.343683] pgsteal 17
[ 1341.344015] pgscan_kswapd 0
[ 1341.344392] pgscan_direct 551
[ 1341.345990] pgscan_khugepaged 0
[ 1341.346422] pgsteal_kswapd 0
[ 1341.347019] pgsteal_direct 17
[ 1341.347449] pgsteal_khugepaged 0
[ 1341.347913] pgfault 8644
[ 1341.348259] pgmajfault 0
[ 1341.348636] pgrefill 555
[ 1341.348988] pgactivate 540
[ 1341.349354] pgdeactivate 555
[ 1341.349862] pglazyfree 0
[ 1341.350215] pglazyfreed 0
[ 1341.350696] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9789,uid=0
[ 1341.352688] Memory cgroup out of memory: Killed process 9789 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:35:47 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)

01:35:47 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x0, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:35:47 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)

01:35:47 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:35:47 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x0, 0x0, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:35:47 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x0, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:35:47 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:35:47 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

01:35:47 executing program 0:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

01:35:47 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

[ 1353.089752] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1353.090462] CPU: 0 PID: 9832 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1353.090965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1353.091501] Call Trace:
[ 1353.091705]  <TASK>
[ 1353.091873]  dump_stack_lvl+0xc1/0xf0
[ 1353.092143]  dump_header+0x10a/0xd50
[ 1353.092415]  oom_kill_process+0x25d/0x640
[ 1353.092704]  out_of_memory+0x346/0x1640
[ 1353.092985]  ? find_held_lock+0x2c/0x110
[ 1353.093274]  ? __pfx_out_of_memory+0x10/0x10
[ 1353.093580]  ? rcu_read_unlock+0x9/0x60
[ 1353.093854]  ? lock_release+0x1e3/0x680
[ 1353.094134]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1353.094468]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1353.094843]  ? mem_cgroup_iter+0x291/0x710
[ 1353.095134]  try_charge_memcg+0xec7/0x12f0
[ 1353.095426]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1353.095747]  ? __pfx_lock_release+0x10/0x10
[ 1353.096043]  ? lock_release+0x1e3/0x680
[ 1353.096322]  ? __pfx_lock_release+0x10/0x10
[ 1353.096628]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1353.096961]  __alloc_pages+0x1f3/0x480
[ 1353.097232]  ? __pfx_lock_release+0x10/0x10
[ 1353.097526]  ? __pfx___alloc_pages+0x10/0x10
[ 1353.097838]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1353.098169]  copy_process+0x456/0x7320
[ 1353.098450]  ? schedule+0xdb/0x1a0
[ 1353.098710]  ? futex_unqueue+0xb7/0x120
[ 1353.098999]  ? futex_wait+0x503/0x690
[ 1353.099268]  ? __pfx_copy_process+0x10/0x10
[ 1353.099578]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1353.099942]  kernel_clone+0xeb/0x810
[ 1353.100221]  ? finish_task_switch.isra.0+0x203/0x830
[ 1353.100570]  ? __pfx_kernel_clone+0x10/0x10
[ 1353.100887]  ? do_futex+0x13a/0x380
[ 1353.101141]  ? __pfx_do_futex+0x10/0x10
[ 1353.101425]  ? __pfx___schedule+0x10/0x10
[ 1353.101723]  __do_sys_fork+0x80/0xc0
[ 1353.102003]  ? __pfx___do_sys_fork+0x10/0x10
[ 1353.102303]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1353.102713]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1353.103060]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1353.103427]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1353.103781]  do_syscall_64+0x3f/0x90
[ 1353.104059]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1353.104411] RIP: 0033:0x7f28ce17db19
[ 1353.104674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1353.105831] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1353.106350] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1353.106820] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1353.107316] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1353.107784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1353.108274] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1353.108774]  </TASK>
[ 1353.109079] memory: usage 307200kB, limit 307200kB, failcnt 17991
[ 1353.109615] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1353.110029] Memory cgroup stats for /syz4:
[ 1353.134768] anon 1941504
[ 1353.135726] file 0
[ 1353.135957] kernel 312631296
[ 1353.136293] kernel_stack 655360
[ 1353.136737] pagetables 2273280
[ 1353.137060] sec_pagetables 0
[ 1353.137376] percpu 2368
[ 1353.137759] sock 0
[ 1353.137990] vmalloc 0
[ 1353.138231] shmem 0
[ 1353.138627] file_mapped 0
[ 1353.138986] file_dirty 0
[ 1353.139325] file_writeback 0
[ 1353.140151] swapcached 0
[ 1353.140636] inactive_anon 1941504
[ 1353.141054] active_anon 0
[ 1353.141404] inactive_file 0
[ 1353.141802] active_file 0
[ 1353.142159] unevictable 0
[ 1353.142544] slab_reclaimable 411600
[ 1353.142991] slab_unreclaimable 1233624
[ 1353.143505] slab 1645224
[ 1353.143857] workingset_refault_anon 0
[ 1353.144328] workingset_refault_file 0
[ 1353.144843] workingset_activate_anon 0
[ 1353.145337] workingset_activate_file 0
[ 1353.145878] workingset_restore_anon 0
[ 1353.146352] workingset_restore_file 0
[ 1353.146858] workingset_nodereclaim 0
[ 1353.147314] pgscan 551
[ 1353.147666] pgsteal 17
[ 1353.147991] pgscan_kswapd 0
[ 1353.148351] pgscan_direct 551
[ 1353.148791] pgscan_khugepaged 0
[ 1353.149205] pgsteal_kswapd 0
[ 1353.149627] pgsteal_direct 17
[ 1353.150026] pgsteal_khugepaged 0
[ 1353.150449] pgfault 8703
[ 1353.150832] pgmajfault 0
[ 1353.151181] pgrefill 555
[ 1353.151587] pgactivate 540
[ 1353.151957] pgdeactivate 555
[ 1353.152347] pglazyfree 0
[ 1353.152739] pglazyfreed 0
[ 1353.153102] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9829,uid=0
[ 1353.154993] Memory cgroup out of memory: Killed process 9829 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:35:47 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x0, 0x0, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:35:47 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:35:47 executing program 0:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

01:35:47 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x0, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:35:47 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

01:35:47 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x0, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:35:47 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:35:47 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)

01:35:47 executing program 0:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)

[ 1353.380810] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1353.381750] CPU: 0 PID: 9873 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1353.382284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1353.382821] Call Trace:
[ 1353.383001]  <TASK>
[ 1353.383162]  dump_stack_lvl+0xc1/0xf0
[ 1353.383444]  dump_header+0x10a/0xd50
[ 1353.383738]  oom_kill_process+0x25d/0x640
[ 1353.384035]  out_of_memory+0x346/0x1640
[ 1353.384326]  ? find_held_lock+0x2c/0x110
[ 1353.384623]  ? __pfx_out_of_memory+0x10/0x10
[ 1353.384932]  ? rcu_read_unlock+0x9/0x60
[ 1353.385214]  ? lock_release+0x1e3/0x680
[ 1353.385496]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1353.385838]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1353.386190]  ? mem_cgroup_iter+0x291/0x710
[ 1353.386484]  try_charge_memcg+0xec7/0x12f0
[ 1353.386779]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1353.387096]  ? __pfx_lock_release+0x10/0x10
[ 1353.387396]  ? lock_release+0x1e3/0x680
[ 1353.387681]  ? __pfx_lock_release+0x10/0x10
[ 1353.387991]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1353.388329]  __alloc_pages+0x1f3/0x480
[ 1353.388605]  ? __pfx___alloc_pages+0x10/0x10
[ 1353.388914]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1353.389254]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1353.389639]  ? percpu_ref_init+0xdf/0x400
[ 1353.389978]  ? cap_capable+0x1be/0x220
[ 1353.390286]  alloc_pages+0x1a0/0x260
[ 1353.390593]  __get_free_pages+0x10/0xb0
[ 1353.390886]  ? ns_capable_noaudit+0xe7/0x120
[ 1353.391197]  io_mem_alloc+0x30/0x60
[ 1353.391463]  io_uring_setup+0x136d/0x2470
[ 1353.391782]  ? __pfx___schedule+0x10/0x10
[ 1353.392089]  ? __pfx_io_uring_setup+0x10/0x10
[ 1353.392429]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1353.392766]  do_syscall_64+0x3f/0x90
[ 1353.393042]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1353.393409] RIP: 0033:0x7f28ce17db19
[ 1353.393675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1353.394932] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1353.395452] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1353.395949] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1353.396434] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1353.396928] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1353.397417] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1353.397917]  </TASK>
[ 1353.398144] memory: usage 307172kB, limit 307200kB, failcnt 18145
[ 1353.398583] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1353.399002] Memory cgroup stats for /syz4:
[ 1353.420382] anon 1941504
[ 1353.420890] file 0
[ 1353.421390] kernel 312606720
[ 1353.421725] kernel_stack 655360
[ 1353.421950] pagetables 2273280
[ 1353.422171] sec_pagetables 0
[ 1353.422380] percpu 2432
[ 1353.422623] sock 0
[ 1353.423688] vmalloc 0
[ 1353.423849] shmem 0
[ 1353.423994] file_mapped 0
[ 1353.424165] file_dirty 0
[ 1353.424357] file_writeback 0
[ 1353.424601] swapcached 0
[ 1353.424792] inactive_anon 1941504
[ 1353.425012] active_anon 0
[ 1353.425205] inactive_file 0
[ 1353.425410] active_file 0
[ 1353.425627] unevictable 0
[ 1353.425823] slab_reclaimable 408456
[ 1353.426076] slab_unreclaimable 1235368
[ 1353.426345] slab 1643824
[ 1353.426901] workingset_refault_anon 0
[ 1353.427186] workingset_refault_file 0
[ 1353.427455] workingset_activate_anon 0
[ 1353.428666] workingset_activate_file 0
[ 1353.428935] workingset_restore_anon 0
[ 1353.429186] workingset_restore_file 0
[ 1353.429447] workingset_nodereclaim 0
[ 1353.429864] pgscan 551
[ 1353.430048] pgsteal 17
[ 1353.430228] pgscan_kswapd 0
[ 1353.430434] pgscan_direct 551
[ 1353.430676] pgscan_khugepaged 0
[ 1353.430905] pgsteal_kswapd 0
[ 1353.431120] pgsteal_direct 17
[ 1353.431343] pgsteal_khugepaged 0
[ 1353.431616] pgfault 8761
[ 1353.431806] pgmajfault 0
[ 1353.432000] pgrefill 555
[ 1353.432192] pgactivate 540
[ 1353.432397] pgdeactivate 555
[ 1353.432626] pglazyfree 0
[ 1353.432817] pglazyfreed 0
[ 1353.433012] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9871,uid=0
[ 1353.434047] Memory cgroup out of memory: Killed process 9871 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:35:59 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000ec0))

01:35:59 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:35:59 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)

01:35:59 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:35:59 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:35:59 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x0, 0x88)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:35:59 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:35:59 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x0, 0x0, 0x2f3})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:35:59 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
r1 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x0, 0x1})
io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0)

01:35:59 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

[ 1365.579368] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1365.580156] CPU: 1 PID: 9901 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1365.580693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1365.581227] Call Trace:
[ 1365.581417]  <TASK>
[ 1365.581576]  dump_stack_lvl+0xc1/0xf0
[ 1365.581847]  dump_header+0x10a/0xd50
[ 1365.582115]  oom_kill_process+0x25d/0x640
[ 1365.582409]  out_of_memory+0x346/0x1640
[ 1365.582693]  ? find_held_lock+0x2c/0x110
[ 1365.582982]  ? __pfx_out_of_memory+0x10/0x10
[ 1365.583288]  ? rcu_read_unlock+0x9/0x60
[ 1365.583560]  ? lock_release+0x1e3/0x680
[ 1365.583855]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1365.584185]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1365.584566]  ? mem_cgroup_iter+0x291/0x710
[ 1365.584855]  try_charge_memcg+0xec7/0x12f0
[ 1365.585151]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1365.585473]  ? __pfx_lock_release+0x10/0x10
[ 1365.585765]  ? lock_release+0x1e3/0x680
[ 1365.586038]  ? __pfx_lock_release+0x10/0x10
[ 1365.586342]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1365.586664]  __alloc_pages+0x1f3/0x480
[ 1365.586933]  ? __pfx_lock_release+0x10/0x10
[ 1365.587232]  ? __pfx___alloc_pages+0x10/0x10
[ 1365.587564]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1365.587896]  copy_process+0x456/0x7320
[ 1365.588174]  ? __pfx___lock_acquire+0x10/0x10
[ 1365.588493]  ? __pfx___lock_acquire+0x10/0x10
[ 1365.588824]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1365.589149]  ? __pfx_lock_release+0x10/0x10
[ 1365.589462]  ? __pfx_copy_process+0x10/0x10
[ 1365.589775]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1365.590145]  ? lock_release+0x1e3/0x680
[ 1365.590439]  ? xfd_validate_state+0x51/0x170
[ 1365.590764]  kernel_clone+0xeb/0x810
[ 1365.591044]  ? finish_task_switch.isra.0+0x203/0x830
[ 1365.591413]  ? __pfx_kernel_clone+0x10/0x10
[ 1365.591747]  ? __schedule+0x9b1/0x2b00
[ 1365.592046]  ? __pfx___schedule+0x10/0x10
[ 1365.592355]  __do_sys_fork+0x80/0xc0
[ 1365.592636]  ? __pfx___do_sys_fork+0x10/0x10
[ 1365.592954]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1365.593361]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.593731]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1365.594097]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1365.594463]  do_syscall_64+0x3f/0x90
[ 1365.594739]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1365.595113] RIP: 0033:0x7f28ce17db19
[ 1365.595377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1365.596637] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1365.597169] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1365.597678] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1365.598163] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1365.598656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1365.599151] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1365.599661]  </TASK>
[ 1365.599893] memory: usage 307200kB, limit 307200kB, failcnt 18294
[ 1365.600331] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1365.600772] Memory cgroup stats for /syz4:
[ 1365.659284] anon 1941504
[ 1365.660454] file 0
[ 1365.660819] kernel 312631296
[ 1365.661182] kernel_stack 655360
[ 1365.661602] pagetables 2273280
[ 1365.661981] sec_pagetables 0
[ 1365.662344] percpu 2368
[ 1365.662711] sock 0
[ 1365.662985] vmalloc 0
[ 1365.663278] shmem 0
[ 1365.663582] file_mapped 0
[ 1365.663934] file_dirty 0
[ 1365.664252] file_writeback 0
[ 1365.664637] swapcached 0
[ 1365.664960] inactive_anon 1941504
[ 1365.665368] active_anon 0
[ 1365.665723] inactive_file 0
[ 1365.666108] active_file 0
[ 1365.666435] unevictable 0
[ 1365.666789] slab_reclaimable 411600
[ 1365.667214] slab_unreclaimable 1233624
[ 1365.667687] slab 1645224
[ 1365.668046] workingset_refault_anon 0
[ 1365.668511] workingset_refault_file 0
[ 1365.668977] workingset_activate_anon 0
[ 1365.669450] workingset_activate_file 0
[ 1365.669957] workingset_restore_anon 0
[ 1365.670427] workingset_restore_file 0
[ 1365.670916] workingset_nodereclaim 0
[ 1365.671374] pgscan 551
[ 1365.671737] pgsteal 17
[ 1365.672062] pgscan_kswapd 0
[ 1365.672436] pgscan_direct 551
[ 1365.672866] pgscan_khugepaged 0
[ 1365.673290] pgsteal_kswapd 0
[ 1365.673706] pgsteal_direct 17
[ 1365.674109] pgsteal_khugepaged 0
[ 1365.674583] pgfault 8820
[ 1365.674934] pgmajfault 0
[ 1365.675279] pgrefill 555
[ 1365.675660] pgactivate 540
[ 1365.676049] pgdeactivate 555
[ 1365.676442] pglazyfree 0
[ 1365.676812] pglazyfreed 0
[ 1365.677171] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9900,uid=0
[ 1365.679043] Memory cgroup out of memory: Killed process 9900 (syz-executor.4) total-vm:93544kB, anon-rss:276kB, file-rss:35648kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:36:16 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:36:16 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:36:16 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x0, 0x1})
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0)

01:36:16 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:36:16 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000ec0))

01:36:16 executing program 5:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)

01:36:16 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:36:16 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x0)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:36:16 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x0, 0x1})
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0)

01:36:16 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000ec0))

01:36:16 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:36:16 executing program 5:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)

01:36:16 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:36:16 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
r1 = socket(0x3, 0x6, 0x0)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

[ 1382.275840] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
[ 1382.277092] CPU: 0 PID: 9939 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1382.278099] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1382.279121] Call Trace:
[ 1382.279455]  <TASK>
[ 1382.279757]  dump_stack_lvl+0xc1/0xf0
[ 1382.280281]  dump_header+0x10a/0xd50
[ 1382.280795]  oom_kill_process+0x25d/0x640
[ 1382.281355]  out_of_memory+0x346/0x1640
[ 1382.281899]  ? find_held_lock+0x2c/0x110
[ 1382.282454]  ? __pfx_out_of_memory+0x10/0x10
[ 1382.283041]  ? rcu_read_unlock+0x9/0x60
[ 1382.283570]  ? lock_release+0x1e3/0x680
[ 1382.284131]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1382.284776]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1382.285478]  ? mem_cgroup_iter+0x291/0x710
[ 1382.286022]  try_charge_memcg+0xec7/0x12f0
[ 1382.286583]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1382.287190]  ? __pfx_lock_release+0x10/0x10
[ 1382.287762]  ? lock_release+0x1e3/0x680
[ 1382.288301]  ? __pfx_lock_release+0x10/0x10
[ 1382.288864]  ? lock_release+0x1e3/0x680
[ 1382.289417]  obj_cgroup_charge+0x1d0/0x530
[ 1382.289978]  ? copy_process+0x3c2/0x7320
[ 1382.290528]  kmem_cache_alloc_node+0xb1/0x3b0
[ 1382.291139]  copy_process+0x3c2/0x7320
[ 1382.291687]  ? do_try_to_free_pages+0x12b1/0x1810
[ 1382.292311]  ? __pfx_copy_process+0x10/0x10
[ 1382.292900]  kernel_clone+0xeb/0x810
[ 1382.293410]  ? __pfx___lock_acquire+0x10/0x10
[ 1382.293998]  ? __pfx_kernel_clone+0x10/0x10
[ 1382.294582]  ? __pfx_try_to_free_mem_cgroup_pages+0x10/0x10
[ 1382.295305]  ? reclaim_high.constprop.0+0xce/0x1b0
[ 1382.295982]  ? lock_acquire+0x19a/0x4c0
[ 1382.296513]  ? __pfx_percpu_ref_put_many.constprop.0+0x10/0x10
[ 1382.297289]  __do_sys_clone+0xba/0x100
[ 1382.297818]  ? __pfx___do_sys_clone+0x10/0x10
[ 1382.298451]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1382.299140]  do_syscall_64+0x3f/0x90
[ 1382.299630]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1382.300309] RIP: 0033:0x7f28ce17ef41
01:36:16 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:36:16 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x44, r0, 0x200, 0x70bd2a, 0x0, {{}, {@void, @val={0xc, 0x99, {0x4, 0x5b}}}}, [@NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x6}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1000}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0))
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x0, 0x1})
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0)

[ 1382.300790] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1382.303094] RSP: 002b:00007ffe67afb6b8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1382.304046] RAX: ffffffffffffffda RBX: 00007f28cb6d2700 RCX: 00007f28ce17ef41
[ 1382.304933] RDX: 00007f28cb6d29d0 RSI: 00007f28cb6d22f0 RDI: 00000000003d0f00
[ 1382.305810] RBP: 00007ffe67afb8f0 R08: 00007f28cb6d2700 R09: 00007f28cb6d2700
[ 1382.306667] R10: 00007f28cb6d29d0 R11: 0000000000000206 R12: 00007ffe67afb76e
[ 1382.307522] R13: 00007ffe67afb76f R14: 00007f28cb6d2300 R15: 0000000000022000
[ 1382.308409]  </TASK>
[ 1382.310161] memory: usage 307196kB, limit 307200kB, failcnt 18473
[ 1382.311381] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:36:16 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)

[ 1382.312188] Memory cgroup stats for /syz4:
[ 1382.394390] anon 1945600
[ 1382.395430] file 0
[ 1382.395748] kernel 312623104
[ 1382.396161] kernel_stack 655360
[ 1382.396593] pagetables 2273280
[ 1382.397003] sec_pagetables 0
[ 1382.397390] percpu 2368
[ 1382.397741] sock 0
[ 1382.398032] vmalloc 0
[ 1382.398344] shmem 0
[ 1382.398657] file_mapped 0
[ 1382.398999] file_dirty 0
[ 1382.399340] file_writeback 0
[ 1382.399752] swapcached 0
[ 1382.400101] inactive_anon 1945600
[ 1382.400550] active_anon 0
[ 1382.400902] inactive_file 0
[ 1382.401263] active_file 0
[ 1382.401647] unevictable 0
[ 1382.401993] slab_reclaimable 411600
[ 1382.402437] slab_unreclaimable 1227952
[ 1382.402955] slab 1639552
[ 1382.403291] workingset_refault_anon 0
[ 1382.403782] workingset_refault_file 0
[ 1382.404268] workingset_activate_anon 0
[ 1382.404769] workingset_activate_file 0
[ 1382.405255] workingset_restore_anon 0
[ 1382.405746] workingset_restore_file 0
[ 1382.406208] workingset_nodereclaim 0
[ 1382.406680] pgscan 551
[ 1382.408552] pgsteal 17
[ 1382.408883] pgscan_kswapd 0
[ 1382.409249] pgscan_direct 551
[ 1382.409878] pgscan_khugepaged 0
[ 1382.410296] pgsteal_kswapd 0
[ 1382.410704] pgsteal_direct 17
[ 1382.411099] pgsteal_khugepaged 0
[ 1382.411541] pgfault 8879
[ 1382.411889] pgmajfault 0
[ 1382.412237] pgrefill 555
[ 1382.412599] pgactivate 540
[ 1382.412948] pgdeactivate 555
[ 1382.413327] pglazyfree 0
[ 1382.413685] pglazyfreed 0
[ 1382.414036] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9939,uid=0
[ 1382.415843] Memory cgroup out of memory: Killed process 9939 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:36:16 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:36:16 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
socket(0x3, 0x6, 0x0)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:36:17 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:36:17 executing program 5:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)

01:36:17 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)

[ 1382.861037] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1382.863007] CPU: 1 PID: 10001 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1382.864177] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1382.865328] Call Trace:
[ 1382.865711]  <TASK>
[ 1382.866050]  dump_stack_lvl+0xc1/0xf0
[ 1382.866627]  dump_header+0x10a/0xd50
[ 1382.867210]  oom_kill_process+0x25d/0x640
[ 1382.867846]  out_of_memory+0x346/0x1640
[ 1382.868488]  ? find_held_lock+0x2c/0x110
[ 1382.869109]  ? __pfx_out_of_memory+0x10/0x10
[ 1382.869767]  ? rcu_read_unlock+0x9/0x60
[ 1382.870393]  ? lock_release+0x1e3/0x680
[ 1382.871040]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1382.871798]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1382.872653]  ? mem_cgroup_iter+0x291/0x710
[ 1382.873322]  try_charge_memcg+0xec7/0x12f0
[ 1382.873997]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1382.874722]  ? __pfx_lock_release+0x10/0x10
[ 1382.875397]  ? lock_release+0x1e3/0x680
[ 1382.876050]  ? __pfx_lock_release+0x10/0x10
[ 1382.876755]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1382.877516]  __alloc_pages+0x1f3/0x480
[ 1382.878145]  ? __pfx___alloc_pages+0x10/0x10
[ 1382.878861]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1382.879693]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1382.880478]  ? percpu_ref_init+0xdf/0x400
[ 1382.881143]  ? cap_capable+0x1be/0x220
[ 1382.881786]  alloc_pages+0x1a0/0x260
[ 1382.882399]  __get_free_pages+0x10/0xb0
[ 1382.883028]  ? ns_capable_noaudit+0xe7/0x120
[ 1382.883719]  io_mem_alloc+0x30/0x60
[ 1382.884310]  io_uring_setup+0x136d/0x2470
[ 1382.884981]  ? __pfx_io_uring_setup+0x10/0x10
[ 1382.885736]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1382.886487]  do_syscall_64+0x3f/0x90
[ 1382.887102]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1382.887914] RIP: 0033:0x7f28ce17db19
[ 1382.888528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1382.891241] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1382.892395] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1382.893471] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1382.894556] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1382.895633] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1382.896715] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1382.897824]  </TASK>
[ 1382.898286] memory: usage 307184kB, limit 307200kB, failcnt 18564
[ 1382.899251] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1382.900219] Memory cgroup stats for /syz4:
[ 1382.900440] anon 1945600
[ 1382.901525] file 0
[ 1382.901878] kernel 312610816
[ 1382.902360] kernel_stack 655360
[ 1382.902893] pagetables 2273280
[ 1382.903398] sec_pagetables 0
[ 1382.903890] percpu 2432
[ 1382.904308] sock 0
[ 1382.904685] vmalloc 0
[ 1382.905070] shmem 0
[ 1382.905433] file_mapped 0
[ 1382.905915] file_dirty 0
[ 1382.906329] file_writeback 0
[ 1382.906815] swapcached 0
[ 1382.907227] inactive_anon 1941504
[ 1382.907771] active_anon 0
[ 1382.908202] inactive_file 0
[ 1382.908688] active_file 0
[ 1382.909118] unevictable 0
[ 1382.909588] slab_reclaimable 408456
[ 1382.910157] slab_unreclaimable 1243664
[ 1382.910774] slab 1652120
[ 1382.911192] workingset_refault_anon 0
[ 1382.911796] workingset_refault_file 0
[ 1382.912396] workingset_activate_anon 0
[ 1382.913010] workingset_activate_file 0
[ 1382.913631] workingset_restore_anon 0
[ 1382.914202] workingset_restore_file 0
[ 1382.914803] workingset_nodereclaim 0
[ 1382.915359] pgscan 551
[ 1382.915778] pgsteal 17
[ 1382.916185] pgscan_kswapd 0
[ 1382.916661] pgscan_direct 551
[ 1382.917140] pgscan_khugepaged 0
[ 1382.917668] pgsteal_kswapd 0
[ 1382.918137] pgsteal_direct 17
[ 1382.918640] pgsteal_khugepaged 0
[ 1382.920626] pgfault 8938
[ 1382.921059] pgmajfault 0
[ 1382.921695] pgrefill 555
[ 1382.922124] pgactivate 540
[ 1382.922596] pgdeactivate 555
[ 1382.923071] pglazyfree 0
[ 1382.923524] pglazyfreed 0
[ 1382.923966] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=9996,uid=0
[ 1382.926223] Memory cgroup out of memory: Killed process 9996 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:36:29 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:36:29 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:36:29 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)

01:36:29 executing program 5:
openat$cdrom(0xffffffffffffff9c, 0x0, 0x1, 0x0)

01:36:29 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
pipe(0x0)

01:36:29 executing program 3:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:36:29 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:36:29 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
socket(0x3, 0x6, 0x0)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000ec0)={&(0x7f0000000e00), 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x20, r0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x44}, 0x4)

01:36:29 executing program 3:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x0, &(0x7f0000000e00)={0x0, 0x1712, 0x10, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:36:29 executing program 5:
openat$cdrom(0xffffffffffffff9c, 0x0, 0x1, 0x0)

01:36:29 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:36:29 executing program 5:
openat$cdrom(0xffffffffffffff9c, 0x0, 0x1, 0x0)

01:36:29 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
socket(0x3, 0x6, 0x0)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, 0x0, 0x4)

01:36:29 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
pipe(&(0x7f0000000ec0))

01:36:30 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)

01:36:30 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:36:30 executing program 5:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)

[ 1395.793797] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1395.794611] CPU: 1 PID: 10028 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1395.795153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1395.795690] Call Trace:
[ 1395.795868]  <TASK>
[ 1395.796027]  dump_stack_lvl+0xc1/0xf0
[ 1395.796323]  dump_header+0x10a/0xd50
[ 1395.796600]  oom_kill_process+0x25d/0x640
[ 1395.796892]  out_of_memory+0x346/0x1640
[ 1395.797182]  ? find_held_lock+0x2c/0x110
[ 1395.797471]  ? __pfx_out_of_memory+0x10/0x10
[ 1395.797893]  ? rcu_read_unlock+0x9/0x60
[ 1395.798237]  ? lock_release+0x1e3/0x680
[ 1395.798521]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1395.798852]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1395.799217]  ? mem_cgroup_iter+0x291/0x710
[ 1395.799510]  try_charge_memcg+0xec7/0x12f0
[ 1395.799807]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1395.800128]  ? __pfx_lock_release+0x10/0x10
[ 1395.800428]  ? lock_release+0x1e3/0x680
[ 1395.800702]  ? __pfx_lock_release+0x10/0x10
[ 1395.801006]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1395.801338]  __alloc_pages+0x1f3/0x480
[ 1395.801615]  ? __pfx_lock_release+0x10/0x10
[ 1395.801908]  ? __pfx___alloc_pages+0x10/0x10
[ 1395.802222]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1395.802549]  copy_process+0x456/0x7320
[ 1395.802827]  ? schedule+0xdb/0x1a0
[ 1395.803081]  ? futex_unqueue+0xb7/0x120
[ 1395.803369]  ? futex_wait+0x503/0x690
[ 1395.803657]  ? __pfx_copy_process+0x10/0x10
[ 1395.803955]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1395.804348]  kernel_clone+0xeb/0x810
[ 1395.804614]  ? finish_task_switch.isra.0+0x293/0x830
[ 1395.804994]  ? __pfx_kernel_clone+0x10/0x10
[ 1395.805292]  ? do_futex+0x13a/0x380
[ 1395.805548]  ? __pfx_do_futex+0x10/0x10
[ 1395.805822]  ? __pfx___schedule+0x10/0x10
[ 1395.806137]  __do_sys_fork+0x80/0xc0
[ 1395.806400]  ? __pfx___do_sys_fork+0x10/0x10
[ 1395.806727]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1395.807117]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1395.807493]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1395.807839]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1395.808217]  do_syscall_64+0x3f/0x90
[ 1395.808480]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1395.808852] RIP: 0033:0x7f28ce17db19
[ 1395.809107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1395.810370] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1395.810871] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1395.811365] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1395.811866] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1395.812366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1395.812865] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1395.813383]  </TASK>
[ 1395.813734] memory: usage 307176kB, limit 307200kB, failcnt 18748
[ 1395.814182] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1395.814621] Memory cgroup stats for /syz4:
[ 1395.817018] anon 1945600
[ 1395.817566] file 4096
[ 1395.817744] kernel 312598528
[ 1395.817968] kernel_stack 688128
[ 1395.818203] pagetables 2273280
[ 1395.818427] sec_pagetables 0
[ 1395.818652] percpu 2368
[ 1395.818840] sock 0
[ 1395.818995] vmalloc 0
[ 1395.819178] shmem 0
[ 1395.819346] file_mapped 0
[ 1395.819555] file_dirty 4096
[ 1395.819765] file_writeback 0
[ 1395.819974] swapcached 0
[ 1395.820168] inactive_anon 1945600
[ 1395.820406] active_anon 0
[ 1395.820626] inactive_file 0
[ 1395.820831] active_file 4096
[ 1395.821048] unevictable 0
[ 1395.821237] slab_reclaimable 408696
[ 1395.822405] slab_unreclaimable 1239544
[ 1395.822801] slab 1648240
[ 1395.822998] workingset_refault_anon 0
[ 1395.823251] workingset_refault_file 1
[ 1395.823531] workingset_activate_anon 0
[ 1395.823787] workingset_activate_file 0
[ 1395.824055] workingset_restore_anon 0
[ 1395.824315] workingset_restore_file 0
[ 1395.824590] workingset_nodereclaim 0
[ 1395.824858] pgscan 617
[ 1395.825033] pgsteal 17
[ 1395.825220] pgscan_kswapd 0
[ 1395.825423] pgscan_direct 617
[ 1395.825664] pgscan_khugepaged 0
[ 1395.825888] pgsteal_kswapd 0
[ 1395.826104] pgsteal_direct 17
[ 1395.826316] pgsteal_khugepaged 0
[ 1395.826577] pgfault 8998
[ 1395.826767] pgmajfault 0
[ 1395.826962] pgrefill 621
[ 1395.827146] pgactivate 606
[ 1395.827346] pgdeactivate 621
[ 1395.827573] pglazyfree 0
[ 1395.827773] pglazyfreed 0
[ 1395.827963] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10024,uid=0
[ 1395.829053] Memory cgroup out of memory: Killed process 10024 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:36:42 executing program 3:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x0, &(0x7f0000000e00)={0x0, 0x1712, 0x10, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:36:42 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:36:42 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:36:42 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
socket(0x3, 0x6, 0x0)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, 0x0, 0x0)

01:36:42 executing program 5:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)

01:36:42 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:36:42 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
pipe(&(0x7f0000000ec0))

01:36:42 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)

[ 1407.898400] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 1407.899295] CPU: 0 PID: 10075 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1407.899834] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1407.900383] Call Trace:
[ 1407.900562]  <TASK>
[ 1407.900720]  dump_stack_lvl+0xc1/0xf0
[ 1407.900990]  dump_header+0x10a/0xd50
[ 1407.901261]  oom_kill_process+0x25d/0x640
[ 1407.901550]  out_of_memory+0x346/0x1640
[ 1407.901834]  ? find_held_lock+0x2c/0x110
[ 1407.902123]  ? __pfx_out_of_memory+0x10/0x10
[ 1407.902437]  ? rcu_read_unlock+0x9/0x60
[ 1407.902711]  ? lock_release+0x1e3/0x680
[ 1407.902989]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1407.903321]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1407.903688]  ? mem_cgroup_iter+0x291/0x710
[ 1407.903992]  try_charge_memcg+0xec7/0x12f0
[ 1407.904316]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1407.904629]  ? __pfx_lock_release+0x10/0x10
[ 1407.904923]  ? lock_release+0x1e3/0x680
[ 1407.905200]  ? __pfx_lock_release+0x10/0x10
[ 1407.905511]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1407.905846]  __alloc_pages+0x1f3/0x480
[ 1407.906124]  ? __pfx___alloc_pages+0x10/0x10
[ 1407.906430]  ? find_held_lock+0x2c/0x110
[ 1407.906722]  ? __pfx_lock_release+0x10/0x10
[ 1407.907025]  ? do_raw_spin_lock+0x125/0x270
[ 1407.907347]  alloc_pages+0x1a0/0x260
[ 1407.907627]  __pmd_alloc+0x3b/0x690
[ 1407.907898]  copy_page_range+0x2431/0x3160
[ 1407.908197]  ? lock_acquire+0x19a/0x4c0
[ 1407.908498]  ? lock_is_held_type+0x9f/0x120
[ 1407.908833]  ? __pfx_copy_page_range+0x10/0x10
[ 1407.909175]  ? mas_store+0xee/0x240
[ 1407.909459]  ? __pfx_mas_store+0x10/0x10
[ 1407.909777]  ? up_write+0x196/0x510
[ 1407.910048]  ? lock_is_held_type+0x9f/0x120
[ 1407.910352]  dup_mmap+0x1183/0x1ae0
[ 1407.910635]  ? __pfx_dup_mmap+0x10/0x10
[ 1407.910943]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1407.911313]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1407.911691]  ? mm_init+0xb4a/0xe70
[ 1407.911968]  copy_process+0x3e68/0x7320
[ 1407.912273]  ? __pfx___lock_acquire+0x10/0x10
[ 1407.912614]  ? __pfx_copy_process+0x10/0x10
[ 1407.912930]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1407.913309]  ? lock_release+0x1e3/0x680
[ 1407.913602]  ? xfd_validate_state+0x51/0x170
[ 1407.913934]  kernel_clone+0xeb/0x810
[ 1407.914215]  ? finish_task_switch.isra.0+0x203/0x830
[ 1407.914592]  ? __pfx_kernel_clone+0x10/0x10
[ 1407.914913]  ? __schedule+0x9b1/0x2b00
[ 1407.915212]  ? __pfx___schedule+0x10/0x10
[ 1407.915531]  __do_sys_fork+0x80/0xc0
[ 1407.915813]  ? __pfx___do_sys_fork+0x10/0x10
[ 1407.916124]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1407.916538]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1407.916898]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1407.917269]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1407.917642]  do_syscall_64+0x3f/0x90
[ 1407.917919]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1407.918297] RIP: 0033:0x7f28ce17db19
[ 1407.918566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1407.919740] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1407.920272] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1407.920738] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1407.921225] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1407.921698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1407.922166] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1407.922653]  </TASK>
[ 1407.923760] memory: usage 307200kB, limit 307200kB, failcnt 18910
[ 1407.924181] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1407.924856] Memory cgroup stats for /syz4:
[ 1407.952875] anon 1941504
[ 1407.953959] file 0
[ 1407.954275] kernel 312631296
[ 1407.954740] kernel_stack 688128
[ 1407.955200] pagetables 2281472
[ 1407.955687] sec_pagetables 0
[ 1407.956110] percpu 2432
[ 1407.956505] sock 0
[ 1407.956818] vmalloc 0
[ 1407.957156] shmem 0
[ 1407.957506] file_mapped 0
[ 1407.957888] file_dirty 0
[ 1407.958244] file_writeback 0
[ 1407.958692] swapcached 0
[ 1407.959065] inactive_anon 1941504
[ 1407.959571] active_anon 0
[ 1407.959952] inactive_file 0
[ 1407.960371] active_file 0
[ 1407.960783] unevictable 0
[ 1407.961166] slab_reclaimable 408456
[ 1407.961689] slab_unreclaimable 1246856
[ 1407.962211] slab 1655312
[ 1407.962623] workingset_refault_anon 0
[ 1407.963134] workingset_refault_file 1
[ 1407.963681] workingset_activate_anon 0
[ 1407.964200] workingset_activate_file 0
[ 1407.964751] workingset_restore_anon 0
[ 1407.965266] workingset_restore_file 0
[ 1407.965815] workingset_nodereclaim 0
[ 1407.966320] pgscan 665
[ 1407.966707] pgsteal 18
[ 1407.967063] pgscan_kswapd 0
[ 1407.967462] pgscan_direct 665
[ 1407.967931] pgscan_khugepaged 0
[ 1407.968380] pgsteal_kswapd 0
[ 1407.968832] pgsteal_direct 18
[ 1407.969266] pgsteal_khugepaged 0
[ 1407.969745] pgfault 9058
[ 1407.970120] pgmajfault 0
[ 1407.970517] pgrefill 632
[ 1407.970892] pgactivate 616
[ 1407.971289] pgdeactivate 632
[ 1407.971738] pglazyfree 0
[ 1407.972111] pglazyfreed 0
[ 1407.972531] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10072,uid=0
[ 1407.974573] Memory cgroup out of memory: Killed process 10072 (syz-executor.4) total-vm:93412kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:36:53 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)

01:36:53 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:36:53 executing program 3:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})
ioctl$DVD_AUTH(r2, 0x5390, &(0x7f00000001c0)=@lsa)
ioctl$CDROMSTART(0xffffffffffffffff, 0x5308)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/devices/virtual', 0x8000, 0x0)
ioctl$CDROMPLAYBLK(r0, 0x5317, &(0x7f0000000240)={0x6, 0x6})
pipe(0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000dc0)={'sit0\x00', 0x0})
syz_io_uring_setup(0x0, &(0x7f0000000e00)={0x0, 0x1712, 0x10, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0))

01:36:53 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:36:53 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:36:53 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:36:53 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
socket(0x3, 0x6, 0x0)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, 0x0, 0x0)

01:36:53 executing program 5:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)

[ 1419.296936] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 1419.297788] CPU: 0 PID: 10112 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1419.298336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1419.298876] Call Trace:
[ 1419.299057]  <TASK>
[ 1419.299217]  dump_stack_lvl+0xc1/0xf0
[ 1419.299492]  dump_header+0x10a/0xd50
[ 1419.299769]  oom_kill_process+0x25d/0x640
[ 1419.300065]  out_of_memory+0x346/0x1640
[ 1419.300355]  ? find_held_lock+0x2c/0x110
[ 1419.300657]  ? __pfx_out_of_memory+0x10/0x10
[ 1419.300963]  ? rcu_read_unlock+0x9/0x60
[ 1419.301235]  ? lock_release+0x1e3/0x680
[ 1419.301516]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1419.301849]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1419.302212]  ? mem_cgroup_iter+0x291/0x710
[ 1419.302504]  try_charge_memcg+0xec7/0x12f0
[ 1419.302818]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1419.303138]  ? __pfx_lock_release+0x10/0x10
[ 1419.303438]  ? lock_release+0x1e3/0x680
[ 1419.303724]  ? __pfx_lock_release+0x10/0x10
[ 1419.304033]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1419.304378]  __alloc_pages+0x1f3/0x480
[ 1419.304662]  ? __pfx___alloc_pages+0x10/0x10
[ 1419.304968]  ? find_held_lock+0x2c/0x110
[ 1419.305254]  ? __pfx_lock_release+0x10/0x10
[ 1419.305550]  ? do_raw_spin_lock+0x125/0x270
[ 1419.305859]  alloc_pages+0x1a0/0x260
[ 1419.306118]  __pmd_alloc+0x3b/0x690
[ 1419.306374]  copy_page_range+0x2431/0x3160
[ 1419.306672]  ? lock_acquire+0x19a/0x4c0
[ 1419.306965]  ? lock_is_held_type+0x9f/0x120
[ 1419.307295]  ? __pfx_copy_page_range+0x10/0x10
[ 1419.307628]  ? mas_store+0xee/0x240
[ 1419.307907]  ? __pfx_mas_store+0x10/0x10
[ 1419.308222]  ? up_write+0x196/0x510
[ 1419.308507]  ? lock_is_held_type+0x9f/0x120
[ 1419.308821]  dup_mmap+0x1183/0x1ae0
[ 1419.309110]  ? __pfx_dup_mmap+0x10/0x10
[ 1419.309410]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1419.309793]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1419.310183]  ? mm_init+0xb4a/0xe70
[ 1419.310458]  copy_process+0x3e68/0x7320
[ 1419.310756]  ? schedule+0xdb/0x1a0
[ 1419.311038]  ? __pfx_copy_process+0x10/0x10
[ 1419.311354]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1419.311742]  kernel_clone+0xeb/0x810
[ 1419.312024]  ? finish_task_switch.isra.0+0x203/0x830
[ 1419.312404]  ? __pfx_kernel_clone+0x10/0x10
[ 1419.312724]  ? do_futex+0x13a/0x380
[ 1419.312990]  ? __pfx_do_futex+0x10/0x10
[ 1419.313282]  ? __pfx___schedule+0x10/0x10
[ 1419.313597]  __do_sys_fork+0x80/0xc0
[ 1419.313875]  ? __pfx___do_sys_fork+0x10/0x10
[ 1419.314211]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1419.314625]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1419.315004]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1419.315384]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1419.315760]  do_syscall_64+0x3f/0x90
[ 1419.316047]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1419.316429] RIP: 0033:0x7f28ce17db19
[ 1419.316680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1419.317958] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1419.318487] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1419.318991] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1419.319499] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1419.319997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1419.320502] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1419.321005]  </TASK>
[ 1419.321263] memory: usage 307200kB, limit 307200kB, failcnt 19067
[ 1419.321744] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:36:53 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

[ 1419.322171] Memory cgroup stats for /syz4:
[ 1419.343274] anon 1941504
[ 1419.343778] file 0
[ 1419.343941] kernel 312631296
[ 1419.344187] kernel_stack 688128
[ 1419.344429] pagetables 2281472
[ 1419.344723] sec_pagetables 0
[ 1419.344934] percpu 2432
[ 1419.345118] sock 0
[ 1419.345276] vmalloc 0
[ 1419.345452] shmem 0
[ 1419.345630] file_mapped 0
[ 1419.345827] file_dirty 0
[ 1419.346011] file_writeback 0
[ 1419.346224] swapcached 0
[ 1419.346406] inactive_anon 1941504
[ 1419.346667] active_anon 0
[ 1419.346866] inactive_file 0
[ 1419.347069] active_file 0
[ 1419.347265] unevictable 0
[ 1419.347459] slab_reclaimable 408456
[ 1419.347724] slab_unreclaimable 1246856
[ 1419.347986] slab 1655312
[ 1419.348179] workingset_refault_anon 0
[ 1419.348451] workingset_refault_file 1
[ 1419.348721] workingset_activate_anon 0
[ 1419.348978] workingset_activate_file 0
[ 1419.349247] workingset_restore_anon 0
[ 1419.349527] workingset_restore_file 0
[ 1419.349780] workingset_nodereclaim 0
[ 1419.350028] pgscan 665
[ 1419.350205] pgsteal 18
[ 1419.350382] pgscan_kswapd 0
[ 1419.350607] pgscan_direct 665
[ 1419.350825] pgscan_khugepaged 0
[ 1419.351051] pgsteal_kswapd 0
[ 1419.351261] pgsteal_direct 18
[ 1419.351492] pgsteal_khugepaged 0
[ 1419.351723] pgfault 9117
[ 1419.351906] pgmajfault 0
[ 1419.352092] pgrefill 632
[ 1419.352274] pgactivate 616
[ 1419.352493] pgdeactivate 632
[ 1419.352700] pglazyfree 0
[ 1419.352897] pglazyfreed 0
[ 1419.353098] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10108,uid=0
[ 1419.354149] Memory cgroup out of memory: Killed process 10108 (syz-executor.4) total-vm:93412kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:36:53 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:36:53 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000ec0))

01:36:53 executing program 2:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
socket(0x3, 0x6, 0x0)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, 0x0, 0x0)

01:36:53 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:36:53 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, 0x0, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:36:53 executing program 3:
getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000200))
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x4a0c0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048815}, 0x22000841)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20008800}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000780)={'wpan4\x00'})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x8080)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x4004000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), 0xffffffffffffffff)
socket(0x3, 0x6, 0x0)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, 0x0, 0x0)

01:36:53 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:36:53 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:36:53 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
ioctl$CDROMVOLCTRL(r1, 0x530a, &(0x7f0000000180)={0x4, 0x40, 0x0, 0x5})

01:36:54 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:36:54 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:36:54 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

[ 1419.747943] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=1, oom_score_adj=1000
[ 1419.749589] CPU: 1 PID: 10143 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1419.750603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1419.751623] Call Trace:
[ 1419.751953]  <TASK>
[ 1419.752253]  dump_stack_lvl+0xc1/0xf0
[ 1419.752778]  dump_header+0x10a/0xd50
[ 1419.753292]  oom_kill_process+0x25d/0x640
[ 1419.753839]  out_of_memory+0x346/0x1640
[ 1419.754381]  ? find_held_lock+0x2c/0x110
[ 1419.755077]  ? __pfx_out_of_memory+0x10/0x10
[ 1419.755751]  ? rcu_read_unlock+0x9/0x60
[ 1419.756354]  ? lock_release+0x1e3/0x680
[ 1419.756995]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1419.757718]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1419.758514]  ? mem_cgroup_iter+0x291/0x710
[ 1419.759145]  try_charge_memcg+0xec7/0x12f0
[ 1419.759792]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1419.760522]  ? __pfx_lock_release+0x10/0x10
[ 1419.761173]  ? lock_release+0x1e3/0x680
[ 1419.761798]  ? __pfx_lock_release+0x10/0x10
[ 1419.762468]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1419.763220]  __alloc_pages+0x1f3/0x480
[ 1419.763820]  ? __pfx___alloc_pages+0x10/0x10
[ 1419.764558]  ? lock_acquire+0x19a/0x4c0
[ 1419.765164]  ? percpu_ref_put_many.constprop.0+0x4c/0x110
[ 1419.765913]  ? lock_release+0x1e3/0x680
[ 1419.766426]  alloc_pages+0x1a0/0x260
[ 1419.766931]  __get_free_pages+0x10/0xb0
[ 1419.767438]  pgd_alloc+0x2c/0x3b0
[ 1419.767913]  mm_init+0x63f/0xe70
[ 1419.768371]  copy_process+0x3e4f/0x7320
[ 1419.768935]  ? schedule+0xdb/0x1a0
[ 1419.769429]  ? __pfx_copy_process+0x10/0x10
[ 1419.769984]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1419.770660]  kernel_clone+0xeb/0x810
[ 1419.771172]  ? finish_task_switch.isra.0+0x203/0x830
[ 1419.771817]  ? __pfx_kernel_clone+0x10/0x10
[ 1419.772400]  ? do_futex+0x13a/0x380
[ 1419.772872]  ? __pfx_do_futex+0x10/0x10
[ 1419.773388]  ? __pfx___schedule+0x10/0x10
[ 1419.773936]  __do_sys_fork+0x80/0xc0
[ 1419.774440]  ? __pfx___do_sys_fork+0x10/0x10
[ 1419.775021]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1419.775740]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1419.776426]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1419.777068]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1419.777726]  do_syscall_64+0x3f/0x90
[ 1419.778222]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1419.778861] RIP: 0033:0x7f28ce17db19
[ 1419.779343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1419.781498] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1419.782445] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1419.783327] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1419.784217] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1419.785111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1419.785997] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1419.786906]  </TASK>
[ 1419.787687] memory: usage 307196kB, limit 307200kB, failcnt 19220
[ 1419.790113] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:36:54 executing program 6:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:36:54 executing program 7:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

[ 1419.791106] Memory cgroup stats for /syz4:
[ 1419.848333] anon 1949696
[ 1419.848989] file 0
[ 1419.849144] kernel 312623104
[ 1419.849352] kernel_stack 688128
[ 1419.849644] pagetables 2273280
[ 1419.849868] sec_pagetables 0
[ 1419.850077] percpu 2432
[ 1419.850260] sock 0
[ 1419.850415] vmalloc 0
[ 1419.850650] shmem 0
[ 1419.850812] file_mapped 0
[ 1419.850997] file_dirty 0
[ 1419.851182] file_writeback 0
[ 1419.851391] swapcached 0
[ 1419.851726] inactive_anon 1949696
[ 1419.851959] active_anon 0
[ 1419.852150] inactive_file 0
[ 1419.852348] active_file 0
[ 1419.852619] unevictable 0
[ 1419.852809] slab_reclaimable 408456
[ 1419.853052] slab_unreclaimable 1256096
[ 1419.853310] slab 1664552
[ 1419.853574] workingset_refault_anon 0
[ 1419.853831] workingset_refault_file 1
[ 1419.854082] workingset_activate_anon 0
[ 1419.854338] workingset_activate_file 0
[ 1419.854671] workingset_restore_anon 0
[ 1419.854922] workingset_restore_file 0
[ 1419.855174] workingset_nodereclaim 0
[ 1419.855420] pgscan 665
[ 1419.855657] pgsteal 18
[ 1419.855831] pgscan_kswapd 0
[ 1419.856029] pgscan_direct 665
[ 1419.856239] pgscan_khugepaged 0
[ 1419.856467] pgsteal_kswapd 0
[ 1419.856744] pgsteal_direct 18
[ 1419.856954] pgsteal_khugepaged 0
[ 1419.857191] pgfault 9178
[ 1419.857377] pgmajfault 0
[ 1419.857630] pgrefill 632
[ 1419.857817] pgactivate 616
[ 1419.858013] pgdeactivate 632
[ 1419.858221] pglazyfree 0
[ 1419.858404] pglazyfreed 0
[ 1419.858658] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10141,uid=0
[ 1419.859757] Memory cgroup out of memory: Killed process 10141 (syz-executor.4) total-vm:93544kB, anon-rss:376kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:37:07 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:37:07 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:37:07 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, 0x0, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:37:07 executing program 3:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:37:07 executing program 6:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:37:07 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})

01:37:07 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:37:07 executing program 7:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:37:07 executing program 3:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:37:07 executing program 6:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:37:07 executing program 7:
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

[ 1433.352180] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1433.352961] CPU: 0 PID: 10191 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1433.353539] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1433.354117] Call Trace:
[ 1433.354306]  <TASK>
[ 1433.354471]  dump_stack_lvl+0xc1/0xf0
[ 1433.354769]  dump_header+0x10a/0xd50
[ 1433.355063]  oom_kill_process+0x25d/0x640
[ 1433.355376]  out_of_memory+0x346/0x1640
[ 1433.355679]  ? find_held_lock+0x2c/0x110
[ 1433.355990]  ? __pfx_out_of_memory+0x10/0x10
[ 1433.356317]  ? rcu_read_unlock+0x9/0x60
[ 1433.356615]  ? lock_release+0x1e3/0x680
[ 1433.356917]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1433.357275]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1433.357669]  ? mem_cgroup_iter+0x291/0x710
[ 1433.357980]  try_charge_memcg+0xec7/0x12f0
[ 1433.358297]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1433.358623]  ? __pfx_lock_release+0x10/0x10
[ 1433.358920]  ? lock_release+0x1e3/0x680
[ 1433.359230]  obj_cgroup_charge+0x1d0/0x530
[ 1433.359545]  ? vm_area_dup+0x20/0x160
[ 1433.359835]  kmem_cache_alloc+0xad/0x390
[ 1433.360145]  vm_area_dup+0x20/0x160
[ 1433.360420]  dup_mmap+0xb95/0x1ae0
[ 1433.360707]  ? __pfx_dup_mmap+0x10/0x10
[ 1433.361015]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1433.361398]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1433.361785]  ? mm_init+0xb4a/0xe70
[ 1433.362063]  copy_process+0x3e68/0x7320
[ 1433.362357]  ? __pfx___lock_acquire+0x10/0x10
[ 1433.362702]  ? __pfx_copy_process+0x10/0x10
[ 1433.363024]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1433.363405]  ? lock_release+0x1e3/0x680
[ 1433.363699]  ? xfd_validate_state+0x51/0x170
[ 1433.364029]  kernel_clone+0xeb/0x810
[ 1433.364317]  ? finish_task_switch.isra.0+0x203/0x830
[ 1433.364705]  ? __pfx_kernel_clone+0x10/0x10
[ 1433.365033]  ? __schedule+0x9b1/0x2b00
[ 1433.365333]  ? __pfx___schedule+0x10/0x10
[ 1433.365650]  __do_sys_fork+0x80/0xc0
[ 1433.365933]  ? __pfx___do_sys_fork+0x10/0x10
[ 1433.366260]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1433.366676]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1433.367051]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1433.367425]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1433.367794]  do_syscall_64+0x3f/0x90
[ 1433.368074]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1433.368448] RIP: 0033:0x7f28ce17db19
[ 1433.368725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1433.369967] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1433.370500] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1433.371002] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1433.371506] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1433.372008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1433.372504] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1433.373040]  </TASK>
[ 1433.373283] memory: usage 307200kB, limit 307200kB, failcnt 19404
[ 1433.373734] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1433.374164] Memory cgroup stats for /syz4:
[ 1433.413944] anon 1945600
[ 1433.416061] file 0
[ 1433.416383] kernel 312627200
[ 1433.416988] kernel_stack 688128
[ 1433.417455] pagetables 2281472
[ 1433.417962] sec_pagetables 0
[ 1433.418393] percpu 2432
[ 1433.418894] sock 0
[ 1433.419217] vmalloc 0
[ 1433.419616] shmem 0
[ 1433.419952] file_mapped 0
[ 1433.420365] file_dirty 0
[ 1433.420801] file_writeback 0
[ 1433.421238] swapcached 0
[ 1433.421657] inactive_anon 1945600
[ 1433.422139] active_anon 0
[ 1433.422564] inactive_file 0
[ 1433.422981] active_file 0
[ 1433.423377] unevictable 0
[ 1433.423805] slab_reclaimable 408456
[ 1433.424312] slab_unreclaimable 1244768
[ 1433.424903] slab 1653224
[ 1433.425285] workingset_refault_anon 0
[ 1433.425831] workingset_refault_file 1
[ 1433.426357] workingset_activate_anon 0
[ 1433.426917] workingset_activate_file 0
[ 1433.427453] workingset_restore_anon 0
[ 1433.428013] workingset_restore_file 0
[ 1433.428581] workingset_nodereclaim 0
[ 1433.429102] pgscan 665
[ 1433.429506] pgsteal 18
[ 1433.429874] pgscan_kswapd 0
[ 1433.430288] pgscan_direct 665
[ 1433.430761] pgscan_khugepaged 0
[ 1433.431222] pgsteal_kswapd 0
[ 1433.431701] pgsteal_direct 18
[ 1433.432142] pgsteal_khugepaged 0
[ 1433.432676] pgfault 9239
[ 1433.433059] pgmajfault 0
[ 1433.433466] pgrefill 632
[ 1433.433927] pgactivate 616
[ 1433.434331] pgdeactivate 632
[ 1433.434890] pglazyfree 0
[ 1433.435270] pglazyfreed 0
[ 1433.435786] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10186,uid=0
[ 1433.437991] Memory cgroup out of memory: Killed process 10186 (syz-executor.4) total-vm:93412kB, anon-rss:424kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:37:21 executing program 3:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:37:21 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, 0x0, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:37:21 executing program 7:
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, 0x0)
pipe(0x0)
syz_io_uring_setup(0x22fa, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:37:21 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:37:21 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, &(0x7f0000000140)={0x5f})

01:37:21 executing program 2:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:37:21 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
pipe(0x0)

01:37:21 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:37:21 executing program 2:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

[ 1447.308225] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 1447.309077] CPU: 1 PID: 10219 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1447.309632] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1447.310169] Call Trace:
[ 1447.310349]  <TASK>
[ 1447.310508]  dump_stack_lvl+0xc1/0xf0
[ 1447.310788]  dump_header+0x10a/0xd50
[ 1447.311071]  oom_kill_process+0x25d/0x640
[ 1447.311433]  out_of_memory+0x346/0x1640
[ 1447.311770]  ? find_held_lock+0x2c/0x110
[ 1447.312061]  ? __pfx_out_of_memory+0x10/0x10
[ 1447.312366]  ? rcu_read_unlock+0x9/0x60
[ 1447.312643]  ? lock_release+0x1e3/0x680
[ 1447.312935]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1447.313277]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1447.313656]  ? mem_cgroup_iter+0x291/0x710
[ 1447.313958]  try_charge_memcg+0xec7/0x12f0
[ 1447.314253]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1447.314571]  ? __pfx_lock_release+0x10/0x10
[ 1447.314867]  ? lock_release+0x1e3/0x680
[ 1447.315142]  ? __pfx_lock_release+0x10/0x10
[ 1447.315447]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1447.315790]  __alloc_pages+0x1f3/0x480
[ 1447.316075]  ? __pfx___alloc_pages+0x10/0x10
[ 1447.316401]  ? copy_page_range+0x1f53/0x3160
[ 1447.316736]  ? lock_release+0x1e3/0x680
[ 1447.317018]  alloc_pages+0x1a0/0x260
[ 1447.317285]  get_zeroed_page+0x18/0xb0
[ 1447.317556]  __pud_alloc+0x37/0x270
[ 1447.317820]  copy_page_range+0x24a3/0x3160
[ 1447.318114]  ? lock_acquire+0x19a/0x4c0
[ 1447.318401]  ? lock_is_held_type+0x9f/0x120
[ 1447.318731]  ? __pfx_copy_page_range+0x10/0x10
[ 1447.319048]  ? mas_store+0xee/0x240
[ 1447.319321]  ? __pfx_mas_store+0x10/0x10
[ 1447.319616]  ? up_write+0x196/0x510
[ 1447.319876]  ? lock_is_held_type+0x9f/0x120
[ 1447.320172]  dup_mmap+0x1183/0x1ae0
[ 1447.320443]  ? __pfx_dup_mmap+0x10/0x10
[ 1447.320754]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1447.321136]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1447.321524]  ? mm_init+0xb4a/0xe70
[ 1447.321804]  copy_process+0x3e68/0x7320
[ 1447.322108]  ? __pfx___lock_acquire+0x10/0x10
[ 1447.322459]  ? __pfx_copy_process+0x10/0x10
[ 1447.322781]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1447.323170]  ? lock_release+0x1e3/0x680
[ 1447.323445]  ? xfd_validate_state+0x51/0x170
[ 1447.323779]  kernel_clone+0xeb/0x810
[ 1447.324062]  ? finish_task_switch.isra.0+0x203/0x830
[ 1447.324442]  ? __pfx_kernel_clone+0x10/0x10
[ 1447.324752]  ? __schedule+0x9b1/0x2b00
[ 1447.325054]  ? __pfx___schedule+0x10/0x10
[ 1447.325377]  __do_sys_fork+0x80/0xc0
[ 1447.325661]  ? __pfx___do_sys_fork+0x10/0x10
[ 1447.325991]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1447.326421]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1447.326778]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1447.327154]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1447.327510]  do_syscall_64+0x3f/0x90
[ 1447.327791]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1447.328149] RIP: 0033:0x7f28ce17db19
[ 1447.328407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1447.329718] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1447.330262] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1447.330771] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1447.331278] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1447.331792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1447.332287] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1447.332822]  </TASK>
[ 1447.333867] memory: usage 307200kB, limit 307200kB, failcnt 19561
[ 1447.334322] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:37:21 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
pipe(0x0)

01:37:21 executing program 3:
pipe(&(0x7f0000000ec0))

01:37:21 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

[ 1447.334898] Memory cgroup stats for /syz4:
[ 1447.384202] anon 1945600
[ 1447.385312] file 0
[ 1447.385503] kernel 312627200
[ 1447.385724] kernel_stack 688128
[ 1447.385948] pagetables 2281472
[ 1447.386168] sec_pagetables 0
[ 1447.386380] percpu 2432
[ 1447.386609] sock 0
[ 1447.386823] vmalloc 0
[ 1447.387130] shmem 0
[ 1447.387290] file_mapped 0
[ 1447.387508] file_dirty 0
[ 1447.387692] file_writeback 0
[ 1447.387897] swapcached 0
[ 1447.388085] inactive_anon 1945600
[ 1447.388321] active_anon 0
[ 1447.388534] inactive_file 0
[ 1447.388754] active_file 0
[ 1447.388946] unevictable 0
[ 1447.389136] slab_reclaimable 408456
[ 1447.389384] slab_unreclaimable 1246856
[ 1447.389656] slab 1655312
[ 1447.389841] workingset_refault_anon 0
[ 1447.390094] workingset_refault_file 1
[ 1447.390350] workingset_activate_anon 0
[ 1447.390631] workingset_activate_file 0
[ 1447.390907] workingset_restore_anon 0
[ 1447.391162] workingset_restore_file 0
[ 1447.391408] workingset_nodereclaim 0
[ 1447.391672] pgscan 665
[ 1447.391847] pgsteal 18
[ 1447.392023] pgscan_kswapd 0
[ 1447.392228] pgscan_direct 665
[ 1447.392441] pgscan_khugepaged 0
[ 1447.392679] pgsteal_kswapd 0
[ 1447.392898] pgsteal_direct 18
[ 1447.393108] pgsteal_khugepaged 0
[ 1447.393338] pgfault 9299
[ 1447.393546] pgmajfault 0
[ 1447.393740] pgrefill 632
[ 1447.393943] pgactivate 616
[ 1447.394153] pgdeactivate 632
[ 1447.394376] pglazyfree 0
[ 1447.394595] pglazyfreed 0
[ 1447.394784] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10218,uid=0
[ 1447.395895] Memory cgroup out of memory: Killed process 10218 (syz-executor.4) total-vm:93412kB, anon-rss:424kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:37:21 executing program 7:
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, 0x0)
pipe(0x0)
syz_io_uring_setup(0x0, &(0x7f0000000e00)={0x0, 0x1712, 0x0, 0x3, 0x119}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:37:21 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x0, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

[ 1447.521940] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1447.522909] CPU: 1 PID: 10244 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1447.523464] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1447.524039] Call Trace:
[ 1447.524221]  <TASK>
[ 1447.524382]  dump_stack_lvl+0xc1/0xf0
[ 1447.524660]  dump_header+0x10a/0xd50
[ 1447.524949]  oom_kill_process+0x25d/0x640
[ 1447.525246]  out_of_memory+0x346/0x1640
[ 1447.525535]  ? find_held_lock+0x2c/0x110
[ 1447.525825]  ? __pfx_out_of_memory+0x10/0x10
[ 1447.526137]  ? rcu_read_unlock+0x9/0x60
[ 1447.526418]  ? lock_release+0x1e3/0x680
[ 1447.526710]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1447.527046]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1447.527420]  ? mem_cgroup_iter+0x291/0x710
[ 1447.527719]  try_charge_memcg+0xec7/0x12f0
[ 1447.528037]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1447.528354]  ? __pfx_lock_release+0x10/0x10
[ 1447.528656]  ? lock_release+0x1e3/0x680
[ 1447.528952]  ? __pfx_lock_release+0x10/0x10
[ 1447.529258]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1447.529598]  __alloc_pages+0x1f3/0x480
[ 1447.529876]  ? __pfx___alloc_pages+0x10/0x10
[ 1447.530186]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1447.530543]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1447.530891]  ? percpu_ref_init+0xdf/0x400
[ 1447.531180]  ? cap_capable+0x1be/0x220
[ 1447.531459]  alloc_pages+0x1a0/0x260
[ 1447.531729]  __get_free_pages+0x10/0xb0
[ 1447.532014]  ? ns_capable_noaudit+0xe7/0x120
01:37:21 executing program 7:
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, 0x0)
pipe(0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000e80), 0x0)

01:37:21 executing program 2:
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
pipe(&(0x7f0000000ec0))

01:37:21 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)

[ 1447.532350]  io_mem_alloc+0x30/0x60
[ 1447.532784]  io_uring_setup+0x136d/0x2470
[ 1447.533113]  ? __pfx___schedule+0x10/0x10
[ 1447.533429]  ? __pfx_io_uring_setup+0x10/0x10
[ 1447.533784]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1447.534139]  do_syscall_64+0x3f/0x90
[ 1447.534420]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1447.534800] RIP: 0033:0x7f28ce17db19
[ 1447.535078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1447.536363] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1447.536922] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1447.537435] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1447.537940] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1447.538444] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1447.538946] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1447.539482]  </TASK>
[ 1447.540331] memory: usage 307172kB, limit 307200kB, failcnt 19656
[ 1447.540925] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:37:21 executing program 3:
pipe(&(0x7f0000000ec0))

[ 1447.541363] Memory cgroup stats for /syz4:
[ 1447.598193] anon 1945600
[ 1447.598746] file 0
[ 1447.598909] kernel 312610816
[ 1447.599135] kernel_stack 655360
[ 1447.599372] pagetables 2273280
[ 1447.599625] sec_pagetables 0
[ 1447.599845] percpu 2432
[ 1447.600034] sock 0
[ 1447.600195] vmalloc 0
[ 1447.600372] shmem 0
[ 1447.600574] file_mapped 0
[ 1447.600776] file_dirty 0
[ 1447.600971] file_writeback 0
[ 1447.601180] swapcached 0
[ 1447.601378] inactive_anon 1945600
[ 1447.601632] active_anon 0
[ 1447.601836] inactive_file 0
[ 1447.602031] active_file 0
[ 1447.602235] unevictable 0
[ 1447.602429] slab_reclaimable 408456
[ 1447.602704] slab_unreclaimable 1243664
[ 1447.602971] slab 1652120
[ 1447.603169] workingset_refault_anon 0
[ 1447.603415] workingset_refault_file 1
[ 1447.603700] workingset_activate_anon 0
[ 1447.603970] workingset_activate_file 0
[ 1447.604249] workingset_restore_anon 0
[ 1447.604518] workingset_restore_file 0
[ 1447.604793] workingset_nodereclaim 0
[ 1447.605054] pgscan 665
[ 1447.605242] pgsteal 18
[ 1447.605420] pgscan_kswapd 0
[ 1447.605646] pgscan_direct 665
[ 1447.605861] pgscan_khugepaged 0
[ 1447.606100] pgsteal_kswapd 0
[ 1447.606311] pgsteal_direct 18
[ 1447.606556] pgsteal_khugepaged 0
[ 1447.606784] pgfault 9358
[ 1447.606979] pgmajfault 0
[ 1447.607185] pgrefill 632
[ 1447.607383] pgactivate 616
[ 1447.607605] pgdeactivate 632
[ 1447.607817] pglazyfree 0
[ 1447.608015] pglazyfreed 0
[ 1447.608219] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10243,uid=0
[ 1447.609299] Memory cgroup out of memory: Killed process 10243 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:37:21 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:37:21 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800))

01:37:22 executing program 3:
pipe(&(0x7f0000000ec0))

01:37:22 executing program 2:
pipe(&(0x7f0000000ec0))

01:37:22 executing program 7:
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, 0x0)
pipe(0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0)

01:37:35 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:37:35 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x0, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:37:35 executing program 2:
pipe(&(0x7f0000000ec0))

01:37:35 executing program 3:
pipe(0x0)

01:37:35 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)

01:37:35 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})

01:37:35 executing program 7:
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, 0x0)
pipe(0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0)

01:37:35 executing program 6:
pipe(&(0x7f0000000ec0))

[ 1461.289764] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1461.290612] CPU: 1 PID: 10291 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1461.291160] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1461.291711] Call Trace:
[ 1461.291897]  <TASK>
[ 1461.292055]  dump_stack_lvl+0xc1/0xf0
[ 1461.292332]  dump_header+0x10a/0xd50
[ 1461.292609]  oom_kill_process+0x25d/0x640
[ 1461.292917]  out_of_memory+0x346/0x1640
[ 1461.293208]  ? find_held_lock+0x2c/0x110
[ 1461.293498]  ? __pfx_out_of_memory+0x10/0x10
[ 1461.293817]  ? rcu_read_unlock+0x9/0x60
[ 1461.294100]  ? lock_release+0x1e3/0x680
[ 1461.294385]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1461.294721]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1461.295104]  ? mem_cgroup_iter+0x291/0x710
[ 1461.295401]  try_charge_memcg+0xec7/0x12f0
[ 1461.295706]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1461.296020]  ? __pfx_lock_release+0x10/0x10
[ 1461.296318]  ? lock_release+0x1e3/0x680
[ 1461.296593]  ? __pfx_lock_release+0x10/0x10
[ 1461.296919]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1461.297261]  __alloc_pages+0x1f3/0x480
[ 1461.297534]  ? __pfx_lock_release+0x10/0x10
[ 1461.297829]  ? __pfx___alloc_pages+0x10/0x10
[ 1461.298145]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1461.298487]  copy_process+0x456/0x7320
[ 1461.298771]  ? __pfx___lock_acquire+0x10/0x10
[ 1461.299085]  ? __pfx___lock_acquire+0x10/0x10
[ 1461.299399]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1461.299705]  ? __pfx_lock_release+0x10/0x10
[ 1461.300019]  ? __pfx_copy_process+0x10/0x10
[ 1461.300338]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1461.300712]  ? lock_release+0x1e3/0x680
[ 1461.301013]  ? xfd_validate_state+0x51/0x170
[ 1461.301324]  kernel_clone+0xeb/0x810
[ 1461.301608]  ? finish_task_switch.isra.0+0x203/0x830
[ 1461.301980]  ? __pfx_kernel_clone+0x10/0x10
[ 1461.302297]  ? __schedule+0x9b1/0x2b00
[ 1461.302594]  ? __pfx___schedule+0x10/0x10
[ 1461.302903]  __do_sys_fork+0x80/0xc0
[ 1461.303183]  ? __pfx___do_sys_fork+0x10/0x10
[ 1461.303492]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1461.303899]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1461.304277]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1461.304630]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1461.305010]  do_syscall_64+0x3f/0x90
[ 1461.305273]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1461.305658] RIP: 0033:0x7f28ce17db19
[ 1461.305927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1461.307165] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1461.307694] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1461.308195] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1461.308694] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1461.309201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1461.309697] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1461.310209]  </TASK>
[ 1461.310434] memory: usage 307200kB, limit 307200kB, failcnt 19832
[ 1461.310884] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1461.311309] Memory cgroup stats for /syz4:
[ 1461.311440] anon 1941504
[ 1461.311949] file 0
[ 1461.312106] kernel 312631296
[ 1461.312327] kernel_stack 655360
[ 1461.312569] pagetables 2273280
[ 1461.312801] sec_pagetables 0
[ 1461.313012] percpu 2368
[ 1461.313202] sock 0
[ 1461.313361] vmalloc 0
[ 1461.313558] shmem 0
[ 1461.313730] file_mapped 0
[ 1461.313921] file_dirty 0
[ 1461.314117] file_writeback 0
[ 1461.314339] swapcached 0
[ 1461.314541] inactive_anon 1941504
[ 1461.314790] active_anon 0
[ 1461.314979] inactive_file 0
[ 1461.315189] active_file 0
[ 1461.315389] unevictable 0
[ 1461.315596] slab_reclaimable 411600
[ 1461.315852] slab_unreclaimable 1233624
[ 1461.316121] slab 1645224
[ 1461.316309] workingset_refault_anon 0
[ 1461.316597] workingset_refault_file 1
[ 1461.316868] workingset_activate_anon 0
[ 1461.317154] workingset_activate_file 0
[ 1461.317430] workingset_restore_anon 0
[ 1461.317718] workingset_restore_file 0
[ 1461.317986] workingset_nodereclaim 0
[ 1461.318250] pgscan 665
[ 1461.318433] pgsteal 18
[ 1461.318632] pgscan_kswapd 0
[ 1461.318843] pgscan_direct 665
[ 1461.319077] pgscan_khugepaged 0
[ 1461.319311] pgsteal_kswapd 0
[ 1461.319548] pgsteal_direct 18
[ 1461.319773] pgsteal_khugepaged 0
[ 1461.320016] pgfault 9417
[ 1461.320207] pgmajfault 0
[ 1461.320403] pgrefill 632
[ 1461.320621] pgactivate 616
[ 1461.320830] pgdeactivate 632
[ 1461.321060] pglazyfree 0
[ 1461.321259] pglazyfreed 0
[ 1461.321461] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10282,uid=0
[ 1461.322577] Memory cgroup out of memory: Killed process 10282 (syz-executor.4) total-vm:93412kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:37:47 executing program 7:
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)
ioctl$CDROMPLAYBLK(0xffffffffffffffff, 0x5317, 0x0)
pipe(0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0)

01:37:47 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r2, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:37:47 executing program 3:
pipe(0x0)

01:37:47 executing program 2:
pipe(0x0)

01:37:47 executing program 6:
pipe(&(0x7f0000000ec0))

01:37:47 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)
ioctl$CDROM_GET_CAPABILITY(0xffffffffffffffff, 0x5331)

01:37:47 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:37:47 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x0, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:37:47 executing program 6:
pipe(&(0x7f0000000ec0))

01:37:47 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()

01:37:47 executing program 3:
pipe(0x0)

01:37:47 executing program 2:
pipe(0x0)

01:37:47 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:37:47 executing program 6:
pipe(0x0)

01:37:47 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)

01:37:47 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r2, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

[ 1473.378457] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
[ 1473.379218] CPU: 0 PID: 10306 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1473.379753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1473.380323] Call Trace:
[ 1473.380621]  <TASK>
[ 1473.380786]  dump_stack_lvl+0xc1/0xf0
[ 1473.381066]  dump_header+0x10a/0xd50
[ 1473.381336]  oom_kill_process+0x25d/0x640
[ 1473.381630]  out_of_memory+0x346/0x1640
[ 1473.381912]  ? find_held_lock+0x2c/0x110
[ 1473.382199]  ? __pfx_out_of_memory+0x10/0x10
[ 1473.382504]  ? rcu_read_unlock+0x9/0x60
[ 1473.382784]  ? lock_release+0x1e3/0x680
[ 1473.383068]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1473.383405]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1473.383783]  ? mem_cgroup_iter+0x291/0x710
[ 1473.384077]  try_charge_memcg+0xec7/0x12f0
[ 1473.384375]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1473.384694]  ? __pfx_lock_release+0x10/0x10
[ 1473.384992]  ? lock_release+0x1e3/0x680
[ 1473.385293]  ? __pfx_lock_release+0x10/0x10
[ 1473.385596]  ? lock_release+0x1e3/0x680
[ 1473.385886]  obj_cgroup_charge+0x1d0/0x530
[ 1473.386183]  ? copy_process+0x3c2/0x7320
[ 1473.386477]  kmem_cache_alloc_node+0xb1/0x3b0
[ 1473.386856]  copy_process+0x3c2/0x7320
[ 1473.387237]  ? lock_acquire+0x19a/0x4c0
[ 1473.387602]  ? __pfx_copy_process+0x10/0x10
[ 1473.387911]  ? mark_lock.part.0+0xef/0x2f50
[ 1473.388208]  ? __pfx___lock_acquire+0x10/0x10
[ 1473.388569]  kernel_clone+0xeb/0x810
[ 1473.388934]  ? __pfx_kernel_clone+0x10/0x10
[ 1473.389249]  ? lock_acquire+0x19a/0x4c0
[ 1473.389529]  ? find_held_lock+0x2c/0x110
[ 1473.389831]  ? rcu_read_unlock+0x1a/0xc0
[ 1473.390141]  ? lock_release+0x1e3/0x680
[ 1473.390436]  ? find_held_lock+0x2c/0x110
[ 1473.390745]  ? do_user_addr_fault+0x6ed/0x1490
[ 1473.391093]  __do_sys_clone+0xba/0x100
[ 1473.391399]  ? __pfx___do_sys_clone+0x10/0x10
[ 1473.391736]  ? __pfx___up_read+0x10/0x10
[ 1473.392048]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1473.392432]  do_syscall_64+0x3f/0x90
[ 1473.392701]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1473.393141] RIP: 0033:0x7f28ce17ef41
[ 1473.393484] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1473.394756] RSP: 002b:00007ffe67afb6b8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1473.395303] RAX: ffffffffffffffda RBX: 00007f28cb6d2700 RCX: 00007f28ce17ef41
[ 1473.395818] RDX: 00007f28cb6d29d0 RSI: 00007f28cb6d22f0 RDI: 00000000003d0f00
[ 1473.396322] RBP: 00007ffe67afb8f0 R08: 00007f28cb6d2700 R09: 00007f28cb6d2700
[ 1473.396829] R10: 00007f28cb6d29d0 R11: 0000000000000206 R12: 00007ffe67afb76e
[ 1473.397357] R13: 00007ffe67afb76f R14: 00007f28cb6d2300 R15: 0000000000022000
[ 1473.397875]  </TASK>
[ 1473.398172] memory: usage 307196kB, limit 307200kB, failcnt 19970
[ 1473.398701] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1473.399142] Memory cgroup stats for /syz4:
[ 1473.500097] anon 1945600
[ 1473.501081] file 0
[ 1473.501373] kernel 312623104
[ 1473.501829] kernel_stack 655360
[ 1473.502247] pagetables 2273280
[ 1473.502706] sec_pagetables 0
[ 1473.503097] percpu 2368
[ 1473.503446] sock 0
[ 1473.503774] vmalloc 0
[ 1473.504096] shmem 0
[ 1473.504391] file_mapped 0
[ 1473.504776] file_dirty 0
[ 1473.505131] file_writeback 0
[ 1473.505591] swapcached 0
[ 1473.505935] inactive_anon 1945600
[ 1473.506373] active_anon 0
[ 1473.506754] inactive_file 0
[ 1473.507123] active_file 0
[ 1473.507498] unevictable 0
[ 1473.507854] slab_reclaimable 411600
[ 1473.508309] slab_unreclaimable 1227952
[ 1473.508816] slab 1639552
[ 1473.509177] workingset_refault_anon 0
[ 1473.509684] workingset_refault_file 1
[ 1473.510158] workingset_activate_anon 0
[ 1473.510671] workingset_activate_file 0
[ 1473.511153] workingset_restore_anon 0
[ 1473.511657] workingset_restore_file 0
[ 1473.512142] workingset_nodereclaim 0
[ 1473.512635] pgscan 665
[ 1473.512961] pgsteal 18
[ 1473.513307] pgscan_kswapd 0
[ 1473.513710] pgscan_direct 665
[ 1473.514107] pgscan_khugepaged 0
[ 1473.514546] pgsteal_kswapd 0
[ 1473.514941] pgsteal_direct 18
[ 1473.515338] pgsteal_khugepaged 0
[ 1473.515801] pgfault 9477
[ 1473.516151] pgmajfault 0
[ 1473.516524] pgrefill 632
[ 1473.516872] pgactivate 616
[ 1473.517251] pgdeactivate 632
[ 1473.517669] pglazyfree 0
[ 1473.518019] pglazyfreed 0
[ 1473.518376] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10306,uid=0
[ 1473.520273] Memory cgroup out of memory: Killed process 10306 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:38:00 executing program 2:
pipe(0x0)

01:38:00 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:38:00 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x0, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:38:00 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)

01:38:00 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r2, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:38:00 executing program 6:
pipe(0x0)

01:38:00 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})

01:38:00 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))

01:38:00 executing program 2:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)

01:38:00 executing program 6:
pipe(0x0)

[ 1486.513711] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1486.514564] CPU: 0 PID: 10359 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1486.515110] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1486.515648] Call Trace:
[ 1486.515824]  <TASK>
[ 1486.515983]  dump_stack_lvl+0xc1/0xf0
[ 1486.516258]  dump_header+0x10a/0xd50
[ 1486.516536]  oom_kill_process+0x25d/0x640
[ 1486.516835]  out_of_memory+0x346/0x1640
[ 1486.517118]  ? find_held_lock+0x2c/0x110
[ 1486.517421]  ? __pfx_out_of_memory+0x10/0x10
[ 1486.517737]  ? rcu_read_unlock+0x9/0x60
[ 1486.518015]  ? lock_release+0x1e3/0x680
[ 1486.518299]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1486.518636]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1486.519002]  ? mem_cgroup_iter+0x291/0x710
[ 1486.519291]  try_charge_memcg+0xec7/0x12f0
[ 1486.519592]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1486.519913]  ? __pfx_lock_release+0x10/0x10
[ 1486.520210]  ? lock_release+0x1e3/0x680
[ 1486.520488]  ? __pfx_lock_release+0x10/0x10
[ 1486.520801]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1486.521147]  __alloc_pages+0x1f3/0x480
[ 1486.521439]  ? __pfx_lock_release+0x10/0x10
[ 1486.521741]  ? __pfx___alloc_pages+0x10/0x10
[ 1486.522057]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1486.522396]  copy_process+0x456/0x7320
[ 1486.522691]  ? __pfx___lock_acquire+0x10/0x10
[ 1486.523017]  ? __pfx___lock_acquire+0x10/0x10
[ 1486.523332]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1486.523651]  ? __pfx_lock_release+0x10/0x10
[ 1486.523952]  ? __pfx_copy_process+0x10/0x10
[ 1486.524279]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1486.524674]  ? lock_release+0x1e3/0x680
[ 1486.524984]  kernel_clone+0xeb/0x810
[ 1486.525259]  ? finish_task_switch.isra.0+0x293/0x830
[ 1486.525644]  ? __pfx_kernel_clone+0x10/0x10
[ 1486.525978]  ? __schedule+0x9b1/0x2b00
[ 1486.526292]  ? __pfx___schedule+0x10/0x10
[ 1486.526610]  __do_sys_fork+0x80/0xc0
[ 1486.526880]  ? __pfx___do_sys_fork+0x10/0x10
[ 1486.527219]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1486.527622]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1486.528175]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1486.528561]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1486.528942]  do_syscall_64+0x3f/0x90
[ 1486.529204]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1486.529609] RIP: 0033:0x7f28ce17db19
[ 1486.529859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1486.531123] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1486.531624] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1486.532133] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1486.532634] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1486.533093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1486.533616] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1486.534142]  </TASK>
[ 1486.534453] memory: usage 307200kB, limit 307200kB, failcnt 20079
[ 1486.534961] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1486.535404] Memory cgroup stats for /syz4:
[ 1486.535573] anon 1941504
[ 1486.536060] file 0
[ 1486.536214] kernel 312631296
[ 1486.536464] kernel_stack 655360
[ 1486.536881] pagetables 2273280
[ 1486.537102] sec_pagetables 0
[ 1486.537351] percpu 2368
[ 1486.537607] sock 0
[ 1486.537775] vmalloc 0
[ 1486.537954] shmem 0
[ 1486.538124] file_mapped 0
[ 1486.538332] file_dirty 0
[ 1486.538580] file_writeback 0
[ 1486.538802] swapcached 0
[ 1486.539004] inactive_anon 1941504
[ 1486.539261] active_anon 0
[ 1486.539532] inactive_file 0
[ 1486.539752] active_file 0
[ 1486.539942] unevictable 0
[ 1486.540145] slab_reclaimable 411600
[ 1486.540388] slab_unreclaimable 1233624
[ 1486.540721] slab 1645224
[ 1486.540908] workingset_refault_anon 0
[ 1486.541190] workingset_refault_file 1
[ 1486.541538] workingset_activate_anon 0
[ 1486.541819] workingset_activate_file 0
[ 1486.542085] workingset_restore_anon 0
[ 1486.542356] workingset_restore_file 0
[ 1486.542677] workingset_nodereclaim 0
[ 1486.542934] pgscan 665
[ 1486.543107] pgsteal 18
[ 1486.543283] pgscan_kswapd 0
[ 1486.543510] pgscan_direct 665
[ 1486.543740] pgscan_khugepaged 0
[ 1486.543976] pgsteal_kswapd 0
[ 1486.544207] pgsteal_direct 18
[ 1486.544421] pgsteal_khugepaged 0
[ 1486.544703] pgfault 9539
[ 1486.544889] pgmajfault 0
[ 1486.545090] pgrefill 632
[ 1486.545284] pgactivate 616
[ 1486.545506] pgdeactivate 632
[ 1486.545721] pglazyfree 0
[ 1486.545918] pglazyfreed 0
[ 1486.546107] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10358,uid=0
[ 1486.547151] Memory cgroup out of memory: Killed process 10358 (syz-executor.4) total-vm:93412kB, anon-rss:296kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:38:00 executing program 0:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)

01:38:01 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:38:01 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x0, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:38:01 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r2, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:38:01 executing program 2:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)

01:38:01 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})

01:38:01 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))

01:38:01 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

[ 1486.780093] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1486.781131] CPU: 0 PID: 10388 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1486.781704] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1486.782241] Call Trace:
[ 1486.782425]  <TASK>
[ 1486.782586]  dump_stack_lvl+0xc1/0xf0
[ 1486.782860]  dump_header+0x10a/0xd50
[ 1486.783131]  oom_kill_process+0x25d/0x640
[ 1486.783431]  out_of_memory+0x346/0x1640
[ 1486.783714]  ? find_held_lock+0x2c/0x110
[ 1486.784008]  ? __pfx_out_of_memory+0x10/0x10
[ 1486.784317]  ? rcu_read_unlock+0x9/0x60
[ 1486.784595]  ? lock_release+0x1e3/0x680
[ 1486.784875]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1486.785205]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1486.785587]  ? mem_cgroup_iter+0x291/0x710
[ 1486.785885]  try_charge_memcg+0xec7/0x12f0
[ 1486.786176]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1486.786494]  ? __pfx_lock_release+0x10/0x10
[ 1486.786789]  ? lock_release+0x1e3/0x680
[ 1486.787073]  ? __pfx_lock_release+0x10/0x10
[ 1486.787383]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1486.787718]  __alloc_pages+0x1f3/0x480
[ 1486.787994]  ? __pfx___alloc_pages+0x10/0x10
[ 1486.788306]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1486.788671]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1486.789010]  ? percpu_ref_init+0xdf/0x400
[ 1486.789322]  ? cap_capable+0x1be/0x220
[ 1486.789602]  alloc_pages+0x1a0/0x260
[ 1486.789862]  __get_free_pages+0x10/0xb0
[ 1486.790140]  ? ns_capable_noaudit+0xe7/0x120
[ 1486.790469]  io_mem_alloc+0x30/0x60
[ 1486.790723]  io_uring_setup+0x136d/0x2470
[ 1486.791033]  ? __pfx___schedule+0x10/0x10
[ 1486.791346]  ? __pfx_io_uring_setup+0x10/0x10
[ 1486.791708]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1486.792067]  do_syscall_64+0x3f/0x90
[ 1486.792358]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1486.792739] RIP: 0033:0x7f28ce17db19
[ 1486.793019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1486.794310] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1486.794858] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1486.795386] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1486.795904] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1486.796409] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1486.796922] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1486.797449]  </TASK>
[ 1486.797727] memory: usage 307172kB, limit 307200kB, failcnt 20138
[ 1486.798175] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:38:01 executing program 0:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)

01:38:01 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

[ 1486.798647] Memory cgroup stats for /syz4:
[ 1486.869189] anon 1945600
[ 1486.869815] file 0
[ 1486.870075] kernel 312610816
[ 1486.870293] kernel_stack 655360
[ 1486.870578] pagetables 2273280
[ 1486.870802] sec_pagetables 0
[ 1486.871012] percpu 2432
[ 1486.871192] sock 0
[ 1486.871352] vmalloc 0
[ 1486.871543] shmem 0
[ 1486.871704] file_mapped 0
[ 1486.871895] file_dirty 0
[ 1486.872079] file_writeback 0
[ 1486.872287] swapcached 0
[ 1486.872493] inactive_anon 1945600
[ 1486.872730] active_anon 0
[ 1486.872934] inactive_file 0
[ 1486.873142] active_file 0
[ 1486.873350] unevictable 0
[ 1486.873584] slab_reclaimable 408456
[ 1486.873833] slab_unreclaimable 1243664
[ 1486.874095] slab 1652120
[ 1486.874290] workingset_refault_anon 0
[ 1486.874564] workingset_refault_file 1
[ 1486.874822] workingset_activate_anon 0
[ 1486.875085] workingset_activate_file 0
[ 1486.875343] workingset_restore_anon 0
[ 1486.875616] workingset_restore_file 0
[ 1486.875869] workingset_nodereclaim 0
[ 1486.876117] pgscan 665
[ 1486.876293] pgsteal 18
[ 1486.876489] pgscan_kswapd 0
01:38:01 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})

[ 1486.876692] pgscan_direct 665
[ 1486.877150] pgscan_khugepaged 0
[ 1486.877389] pgsteal_kswapd 0
[ 1486.877615] pgsteal_direct 18
[ 1486.877828] pgsteal_khugepaged 0
[ 1486.878062] pgfault 9598
[ 1486.878243] pgmajfault 0
[ 1486.878425] pgrefill 632
[ 1486.878633] pgactivate 616
[ 1486.878829] pgdeactivate 632
[ 1486.879049] pglazyfree 0
[ 1486.879251] pglazyfreed 0
[ 1486.879458] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10387,uid=0
[ 1486.880617] Memory cgroup out of memory: Killed process 10387 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:38:13 executing program 2:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$CDROMSTART(r1, 0x5308)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)

01:38:13 executing program 0:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)

01:38:13 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)

01:38:13 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})

01:38:13 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r2, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:38:13 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()

01:38:13 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:38:13 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x0, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:38:13 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

[ 1499.393355] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
[ 1499.394057] CPU: 0 PID: 10420 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1499.394597] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1499.395151] Call Trace:
[ 1499.395329]  <TASK>
[ 1499.395489]  dump_stack_lvl+0xc1/0xf0
[ 1499.395771]  dump_header+0x10a/0xd50
[ 1499.396039]  oom_kill_process+0x25d/0x640
[ 1499.396334]  out_of_memory+0x346/0x1640
[ 1499.396621]  ? find_held_lock+0x2c/0x110
[ 1499.396916]  ? __pfx_out_of_memory+0x10/0x10
[ 1499.397223]  ? rcu_read_unlock+0x9/0x60
[ 1499.397506]  ? lock_release+0x1e3/0x680
[ 1499.397796]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1499.398128]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1499.398499]  ? mem_cgroup_iter+0x291/0x710
[ 1499.398798]  try_charge_memcg+0xec7/0x12f0
[ 1499.399094]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1499.399411]  ? __pfx_lock_release+0x10/0x10
[ 1499.399713]  ? lock_release+0x1e3/0x680
[ 1499.399987]  ? __pfx_lock_release+0x10/0x10
[ 1499.400287]  ? lock_release+0x1e3/0x680
[ 1499.400570]  obj_cgroup_charge+0x1d0/0x530
[ 1499.400861]  ? copy_process+0x3c2/0x7320
[ 1499.401146]  kmem_cache_alloc_node+0xb1/0x3b0
[ 1499.401471]  copy_process+0x3c2/0x7320
[ 1499.401765]  ? do_try_to_free_pages+0x12b1/0x1810
[ 1499.402103]  ? __pfx_copy_process+0x10/0x10
[ 1499.402421]  kernel_clone+0xeb/0x810
[ 1499.402688]  ? __pfx___lock_acquire+0x10/0x10
[ 1499.403027]  ? __pfx_kernel_clone+0x10/0x10
[ 1499.403349]  ? __pfx_try_to_free_mem_cgroup_pages+0x10/0x10
[ 1499.403754]  ? reclaim_high.constprop.0+0xce/0x1b0
[ 1499.404125]  ? lock_acquire+0x19a/0x4c0
[ 1499.404425]  ? __pfx_percpu_ref_put_many.constprop.0+0x10/0x10
[ 1499.404876]  __do_sys_clone+0xba/0x100
[ 1499.405156]  ? __pfx___do_sys_clone+0x10/0x10
[ 1499.405523]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1499.405920]  do_syscall_64+0x3f/0x90
[ 1499.406199]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1499.406581] RIP: 0033:0x7f28ce17ef41
[ 1499.406851] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1499.408121] RSP: 002b:00007ffe67afb6b8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1499.408665] RAX: ffffffffffffffda RBX: 00007f28cb6d2700 RCX: 00007f28ce17ef41
[ 1499.409175] RDX: 00007f28cb6d29d0 RSI: 00007f28cb6d22f0 RDI: 00000000003d0f00
[ 1499.409693] RBP: 00007ffe67afb8f0 R08: 00007f28cb6d2700 R09: 00007f28cb6d2700
[ 1499.410202] R10: 00007f28cb6d29d0 R11: 0000000000000206 R12: 00007ffe67afb76e
[ 1499.410718] R13: 00007ffe67afb76f R14: 00007f28cb6d2300 R15: 0000000000022000
[ 1499.411212]  </TASK>
[ 1499.411440] memory: usage 307200kB, limit 307200kB, failcnt 20262
[ 1499.411909] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:38:13 executing program 0:
openat$cdrom(0xffffffffffffff9c, 0x0, 0x1, 0x0)

[ 1499.412350] Memory cgroup stats for /syz4:
[ 1499.518922] anon 1880064
[ 1499.519417] file 4096
[ 1499.519629] kernel 312623104
[ 1499.519856] kernel_stack 655360
[ 1499.520084] pagetables 2273280
[ 1499.520303] sec_pagetables 0
[ 1499.520534] percpu 2368
[ 1499.520710] sock 0
[ 1499.520866] vmalloc 0
[ 1499.521041] shmem 0
[ 1499.521202] file_mapped 0
[ 1499.521412] file_dirty 0
[ 1499.521620] file_writeback 0
[ 1499.521825] swapcached 0
[ 1499.522019] inactive_anon 1847296
[ 1499.522253] active_anon 0
[ 1499.522442] inactive_file 0
[ 1499.522661] active_file 4096
[ 1499.522871] unevictable 0
[ 1499.523068] slab_reclaimable 411840
[ 1499.523316] slab_unreclaimable 1227952
[ 1499.523596] slab 1639792
[ 1499.523779] workingset_refault_anon 0
[ 1499.524601] workingset_refault_file 1
[ 1499.525221] workingset_activate_anon 0
[ 1499.525982] workingset_activate_file 0
[ 1499.526605] workingset_restore_anon 0
[ 1499.527358] workingset_restore_file 0
[ 1499.527974] workingset_nodereclaim 0
[ 1499.528563] pgscan 704
[ 1499.528958] pgsteal 18
[ 1499.529351] pgscan_kswapd 0
[ 1499.529863] pgscan_direct 704
[ 1499.530358] pgscan_khugepaged 0
[ 1499.530896] pgsteal_kswapd 0
[ 1499.531373] pgsteal_direct 18
[ 1499.531889] pgsteal_khugepaged 0
[ 1499.532402] pgfault 9659
[ 1499.533045] pgmajfault 0
[ 1499.533438] pgrefill 671
[ 1499.533850] pgactivate 655
[ 1499.534248] pgdeactivate 671
[ 1499.534723] pglazyfree 0
[ 1499.535235] pglazyfreed 0
[ 1499.535649] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10420,uid=0
[ 1499.537703] Memory cgroup out of memory: Killed process 10420 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:38:13 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:38:13 executing program 2:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)

01:38:13 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))

01:38:27 executing program 0:
openat$cdrom(0xffffffffffffff9c, 0x0, 0x1, 0x0)

01:38:27 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:38:27 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:38:27 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)

01:38:27 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r2, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:38:27 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
fork()

01:38:27 executing program 2:
r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
ioctl$CDROMSEEK(r0, 0x5316, &(0x7f0000000040)={0xf, 0x9f, 0x7, 0x2, 0x6, 0x7})
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)

01:38:27 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:38:28 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:38:28 executing program 2:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x98c40, 0x0)
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)

01:38:28 executing program 0:
openat$cdrom(0xffffffffffffff9c, 0x0, 0x1, 0x0)

01:38:28 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))

01:38:28 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))

01:38:28 executing program 2:
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x4080, 0x0)

[ 1513.971310] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1513.973079] CPU: 0 PID: 10477 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1513.974188] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1513.975273] Call Trace:
[ 1513.975623]  <TASK>
[ 1513.975949]  dump_stack_lvl+0xc1/0xf0
[ 1513.976501]  dump_header+0x10a/0xd50
[ 1513.977050]  oom_kill_process+0x25d/0x640
[ 1513.977673]  out_of_memory+0x346/0x1640
[ 1513.978260]  ? find_held_lock+0x2c/0x110
[ 1513.978847]  ? __pfx_out_of_memory+0x10/0x10
[ 1513.979475]  ? rcu_read_unlock+0x9/0x60
[ 1513.980031]  ? lock_release+0x1e3/0x680
[ 1513.980610]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1513.981297]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1513.982055]  ? mem_cgroup_iter+0x291/0x710
[ 1513.982657]  try_charge_memcg+0xec7/0x12f0
[ 1513.983260]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1513.983906]  ? __pfx_lock_release+0x10/0x10
[ 1513.984510]  ? lock_release+0x1e3/0x680
[ 1513.985073]  ? __pfx_lock_release+0x10/0x10
[ 1513.985702]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1513.986376]  __alloc_pages+0x1f3/0x480
[ 1513.986941]  ? __pfx___alloc_pages+0x10/0x10
[ 1513.987573]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1513.988313]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1513.989005]  ? percpu_ref_init+0xdf/0x400
[ 1513.989621]  ? cap_capable+0x1be/0x220
[ 1513.990191]  alloc_pages+0x1a0/0x260
[ 1513.990726]  __get_free_pages+0x10/0xb0
[ 1513.991283]  ? ns_capable_noaudit+0xe7/0x120
[ 1513.991899]  io_mem_alloc+0x30/0x60
[ 1513.992416]  io_uring_setup+0x136d/0x2470
[ 1513.993000]  ? __pfx___schedule+0x10/0x10
[ 1513.993603]  ? __pfx_io_uring_setup+0x10/0x10
[ 1513.994273]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1513.994937]  do_syscall_64+0x3f/0x90
[ 1513.995467]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1513.996181] RIP: 0033:0x7f28ce17db19
[ 1513.996697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1513.999078] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1514.000094] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1514.001045] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1514.002008] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1514.002955] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1514.003906] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1514.004875]  </TASK>
[ 1514.006938] memory: usage 307200kB, limit 307200kB, failcnt 20378
[ 1514.008088] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:38:28 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

[ 1514.008932] Memory cgroup stats for /syz4:
[ 1514.123199] anon 1937408
[ 1514.123954] file 0
[ 1514.124162] kernel 312627200
[ 1514.124381] kernel_stack 688128
[ 1514.124693] pagetables 2273280
[ 1514.124964] sec_pagetables 0
[ 1514.125226] percpu 2368
[ 1514.125450] sock 0
[ 1514.125676] vmalloc 0
[ 1514.125884] shmem 0
[ 1514.126083] file_mapped 0
[ 1514.126324] file_dirty 0
[ 1514.126600] file_writeback 0
[ 1514.126858] swapcached 0
[ 1514.127083] inactive_anon 1933312
[ 1514.127374] active_anon 0
[ 1514.127639] inactive_file 0
[ 1514.127888] active_file 0
[ 1514.128127] unevictable 0
[ 1514.128368] slab_reclaimable 408456
[ 1514.128694] slab_unreclaimable 1232560
[ 1514.129020] slab 1641016
[ 1514.129253] workingset_refault_anon 0
[ 1514.129609] workingset_refault_file 1
[ 1514.129931] workingset_activate_anon 0
[ 1514.130258] workingset_activate_file 0
[ 1514.130603] workingset_restore_anon 0
[ 1514.130918] workingset_restore_file 0
[ 1514.131236] workingset_nodereclaim 0
[ 1514.131565] pgscan 733
[ 1514.131782] pgsteal 19
[ 1514.132000] pgscan_kswapd 1
[ 1514.132242] pgscan_direct 732
[ 1514.132532] pgscan_khugepaged 0
[ 1514.132812] pgsteal_kswapd 0
[ 1514.133075] pgsteal_direct 19
[ 1514.133338] pgsteal_khugepaged 0
[ 1514.133659] pgfault 9724
[ 1514.133891] pgmajfault 0
[ 1514.134125] pgrefill 700
[ 1514.134356] pgactivate 683
[ 1514.134618] pgdeactivate 700
[ 1514.134883] pglazyfree 0
[ 1514.135120] pglazyfreed 0
[ 1514.135361] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10473,uid=0
[ 1514.136628] Memory cgroup out of memory: Killed process 10473 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
[ 1514.146578] socket: no more sockets
01:38:28 executing program 0:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)

01:38:28 executing program 2:
openat$cdrom(0xffffffffffffff9c, 0x0, 0x4080, 0x0)

01:38:28 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:38:28 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()

01:38:41 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x120, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x120}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:38:41 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300))

01:38:41 executing program 0:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)

01:38:41 executing program 2:
openat$cdrom(0xffffffffffffff9c, 0x0, 0x4080, 0x0)

01:38:41 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()

01:38:41 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})

01:38:41 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:38:41 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:38:41 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:38:41 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()

01:38:41 executing program 2:
openat$cdrom(0xffffffffffffff9c, 0x0, 0x4080, 0x0)

01:38:41 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:38:41 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))

01:38:41 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)

01:38:56 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))

01:38:56 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()

01:38:56 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})

01:38:56 executing program 0:
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)

01:38:56 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:38:56 executing program 2:
openat$cdrom(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)

01:38:56 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:38:56 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:38:56 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x144, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x144}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:38:56 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)

01:38:56 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})

01:38:56 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()

01:38:56 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:38:56 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))

01:38:57 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()

01:38:57 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:09 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:39:09 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()

01:39:09 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()

01:39:09 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300))

01:39:09 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})

01:39:09 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:09 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:09 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:39:09 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))

01:39:09 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:39:09 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:39:09 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})

01:39:09 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:39:09 executing program 5:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:39:09 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:20 executing program 5:
io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:39:20 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:20 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})

01:39:20 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:39:20 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:20 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:39:20 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()

01:39:20 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:39:20 executing program 5:
io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:39:20 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})

01:39:20 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:39:20 executing program 5:
io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:39:21 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:21 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:21 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:39:21 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:39:21 executing program 5:
io_uring_setup(0x7ae3, 0x0)

01:39:21 executing program 6:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:39:21 executing program 5:
io_uring_setup(0x7ae3, 0x0)

01:39:21 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:39:21 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()

[ 1567.108552] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1567.109298] CPU: 1 PID: 10702 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1567.109826] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1567.110347] Call Trace:
[ 1567.110523]  <TASK>
[ 1567.110682]  dump_stack_lvl+0xc1/0xf0
[ 1567.110944]  dump_header+0x10a/0xd50
[ 1567.111206]  oom_kill_process+0x25d/0x640
[ 1567.111499]  out_of_memory+0x346/0x1640
[ 1567.111778]  ? find_held_lock+0x2c/0x110
[ 1567.112066]  ? __pfx_out_of_memory+0x10/0x10
[ 1567.112365]  ? rcu_read_unlock+0x9/0x60
[ 1567.112632]  ? lock_release+0x1e3/0x680
[ 1567.112911]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1567.113245]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1567.113610]  ? mem_cgroup_iter+0x291/0x710
[ 1567.113901]  try_charge_memcg+0xec7/0x12f0
[ 1567.114179]  ? lock_acquire+0x110/0x4c0
[ 1567.114462]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1567.114763]  ? lock_release+0x1e3/0x680
[ 1567.115033]  ? __pfx_lock_release+0x10/0x10
[ 1567.115332]  ? lock_is_held_type+0x9f/0x120
[ 1567.115627]  charge_memcg+0x85/0x2c0
[ 1567.115878]  __mem_cgroup_charge+0x28/0x90
[ 1567.116159]  do_wp_page+0x93b/0x2f00
[ 1567.116411]  ? __pfx_lock_acquire+0x10/0x10
[ 1567.116697]  ? __pfx_do_wp_page+0x10/0x10
[ 1567.116973]  ? do_raw_spin_lock+0x125/0x270
[ 1567.117262]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1567.117588]  __handle_mm_fault+0xdc8/0x2b90
[ 1567.117877]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1567.118188]  ? mas_walk+0x5c6/0x7c0
[ 1567.118461]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[ 1567.118789]  handle_mm_fault+0x2c1/0xb10
[ 1567.119067]  ? access_error+0x15e/0x320
[ 1567.119336]  do_user_addr_fault+0x382/0x1490
[ 1567.119632]  ? switch_fpu_return+0x157/0x2e0
[ 1567.119934]  exc_page_fault+0x9c/0x1a0
[ 1567.120193]  asm_exc_page_fault+0x26/0x30
[ 1567.120472] RIP: 0033:0x7f28ce17db2b
[ 1567.120716] Code: 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 <64> 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41
[ 1567.121817] RSP: 002b:00007f28cb6d2108 EFLAGS: 00010217
[ 1567.122152] RAX: 000000000000000c RBX: 00007f28ce291020 RCX: ffffffffffffffbc
[ 1567.122615] RDX: 0000000020ffd000 RSI: 0000000020000500 RDI: 0000000000003edf
[ 1567.123056] RBP: 0000000020000500 R08: 00000000200005c0 R09: 00000000200005c0
[ 1567.123500] R10: 0000000020000580 R11: 0000000000000202 R12: 00000000200005c0
[ 1567.123939] R13: 0000000020ffd000 R14: 0000000020000580 R15: 0000000020ffd000
[ 1567.124396]  </TASK>
[ 1567.124621] memory: usage 307200kB, limit 307200kB, failcnt 20569
[ 1567.125019] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1567.125404] Memory cgroup stats for /syz4:
[ 1567.125588] anon 2461696
[ 1567.126022] file 8192
[ 1567.126183] kernel 312102912
[ 1567.126395] kernel_stack 917504
[ 1567.126627] pagetables 2867200
[ 1567.126842] sec_pagetables 0
[ 1567.127042] percpu 2944
[ 1567.127215] sock 0
[ 1567.127363] vmalloc 0
[ 1567.127546] shmem 0
[ 1567.127702] file_mapped 0
[ 1567.127888] file_dirty 0
[ 1567.128067] file_writeback 0
[ 1567.128270] swapcached 0
[ 1567.128446] inactive_anon 2461696
[ 1567.128691] active_anon 0
[ 1567.128881] inactive_file 0
[ 1567.129072] active_file 8192
[ 1567.129274] unevictable 0
[ 1567.129454] slab_reclaimable 436368
[ 1567.129713] slab_unreclaimable 1505072
[ 1567.129968] slab 1941440
[ 1567.130149] workingset_refault_anon 0
[ 1567.130404] workingset_refault_file 1
[ 1567.130668] workingset_activate_anon 0
[ 1567.130914] workingset_activate_file 0
[ 1567.131161] workingset_restore_anon 0
[ 1567.131407] workingset_restore_file 0
[ 1567.131666] workingset_nodereclaim 0
[ 1567.131906] pgscan 1104
[ 1567.132083] pgsteal 21
[ 1567.132254] pgscan_kswapd 29
[ 1567.132458] pgscan_direct 1075
[ 1567.132690] pgscan_khugepaged 0
[ 1567.132904] pgsteal_kswapd 2
[ 1567.133106] pgsteal_direct 19
[ 1567.133310] pgsteal_khugepaged 0
[ 1567.133549] pgfault 10193
[ 1567.133738] pgmajfault 1
[ 1567.133914] pgrefill 1084
[ 1567.134098] pgactivate 1066
[ 1567.134301] pgdeactivate 1084
[ 1567.134526] pglazyfree 0
[ 1567.134703] pglazyfreed 0
[ 1567.134887] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10691,uid=0
[ 1567.136403] Memory cgroup out of memory: Killed process 10691 (syz-executor.4) total-vm:93808kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:39:32 executing program 6:
io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:39:32 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:32 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
fork()

01:39:32 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:39:32 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), 0x0)
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:39:32 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:32 executing program 5:
io_uring_setup(0x7ae3, 0x0)

01:39:32 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

[ 1578.819608] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1578.820400] CPU: 1 PID: 10764 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1578.821000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1578.821494] Call Trace:
[ 1578.821673]  <TASK>
[ 1578.821836]  dump_stack_lvl+0xc1/0xf0
[ 1578.822109]  dump_header+0x10a/0xd50
[ 1578.822370]  oom_kill_process+0x25d/0x640
[ 1578.822667]  out_of_memory+0x346/0x1640
[ 1578.822934]  ? find_held_lock+0x2c/0x110
[ 1578.823226]  ? __pfx_out_of_memory+0x10/0x10
[ 1578.823515]  ? rcu_read_unlock+0x9/0x60
[ 1578.823794]  ? lock_release+0x1e3/0x680
[ 1578.824056]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1578.824389]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1578.824735]  ? mem_cgroup_iter+0x291/0x710
[ 1578.825033]  try_charge_memcg+0xec7/0x12f0
[ 1578.825310]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1578.825632]  ? __pfx_lock_release+0x10/0x10
[ 1578.825907]  ? lock_release+0x1e3/0x680
[ 1578.826183]  ? __pfx_lock_release+0x10/0x10
[ 1578.826478]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1578.826787]  __alloc_pages+0x1f3/0x480
[ 1578.827044]  ? __pfx_lock_release+0x10/0x10
[ 1578.827340]  ? __pfx___alloc_pages+0x10/0x10
[ 1578.827644]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1578.827985]  copy_process+0x456/0x7320
[ 1578.828245]  ? schedule+0xdb/0x1a0
[ 1578.828509]  ? futex_unqueue+0xb7/0x120
[ 1578.828779]  ? futex_wait+0x503/0x690
[ 1578.829053]  ? __pfx_copy_process+0x10/0x10
[ 1578.829336]  ? futex_hash+0x16/0x200
[ 1578.829598]  kernel_clone+0xeb/0x810
[ 1578.829850]  ? __pfx_kernel_clone+0x10/0x10
[ 1578.830132]  ? do_futex+0x13a/0x380
[ 1578.830380]  ? __pfx_do_futex+0x10/0x10
[ 1578.830639]  ? __pfx_lock_release+0x10/0x10
[ 1578.830920]  __do_sys_fork+0x80/0xc0
[ 1578.831170]  ? __pfx___do_sys_fork+0x10/0x10
[ 1578.831457]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1578.831822]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1578.832151]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1578.832475]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1578.832794]  do_syscall_64+0x3f/0x90
[ 1578.833039]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1578.833366] RIP: 0033:0x7f28ce17db19
[ 1578.833602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1578.834670] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1578.835126] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1578.835560] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1578.835987] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1578.836419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1578.836850] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1578.837294]  </TASK>
[ 1578.837520] memory: usage 307180kB, limit 307200kB, failcnt 20708
[ 1578.837894] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1578.838262] Memory cgroup stats for /syz4:
[ 1578.880972] anon 2469888
[ 1578.881952] file 12288
[ 1578.882285] kernel 312082432
[ 1578.882943] kernel_stack 819200
[ 1578.883384] pagetables 2867200
[ 1578.884025] sec_pagetables 0
[ 1578.884433] percpu 3008
[ 1578.885016] sock 0
[ 1578.885321] vmalloc 0
[ 1578.885857] shmem 0
[ 1578.886170] file_mapped 0
[ 1578.886752] file_dirty 0
[ 1578.887110] file_writeback 0
[ 1578.887684] swapcached 0
[ 1578.888044] inactive_anon 2469888
[ 1578.888590] active_anon 0
[ 1578.888965] inactive_file 4096
[ 1578.889387] active_file 8192
[ 1578.889893] unevictable 0
[ 1578.890267] slab_reclaimable 442680
[ 1578.890899] slab_unreclaimable 1503304
[ 1578.891406] slab 1945984
[ 1578.892016] workingset_refault_anon 0
[ 1578.892699] workingset_refault_file 20
[ 1578.893191] workingset_activate_anon 0
[ 1578.893837] workingset_activate_file 0
[ 1578.894327] workingset_restore_anon 0
[ 1578.894857] workingset_restore_file 0
[ 1578.895338] workingset_nodereclaim 0
[ 1578.895835] pgscan 1434
[ 1578.896175] pgsteal 39
[ 1578.896532] pgscan_kswapd 34
[ 1578.896925] pgscan_direct 1400
[ 1578.897336] pgscan_khugepaged 0
[ 1578.897813] pgsteal_kswapd 2
[ 1578.898209] pgsteal_direct 37
[ 1578.898651] pgsteal_khugepaged 0
[ 1578.899081] pgfault 10256
[ 1578.899441] pgmajfault 1
[ 1578.899810] pgrefill 1396
[ 1578.900168] pgactivate 1379
[ 1578.900584] pgdeactivate 1396
[ 1578.900988] pglazyfree 0
[ 1578.901341] pglazyfreed 0
[ 1578.901737] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10753,uid=0
[ 1578.903658] Memory cgroup out of memory: Killed process 10753 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:39:44 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), 0x0)
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:39:44 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:39:44 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:44 executing program 6:
io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:39:44 executing program 5:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x1, 0x3c4})

01:39:44 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:39:44 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
fork()

01:39:44 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
fork()

01:39:44 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
fork()

01:39:44 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:39:44 executing program 6:
io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})

01:39:44 executing program 5:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x1, 0x3c4})

01:39:44 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:44 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:39:44 executing program 5:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x1, 0x3c4})

[ 1590.256264] syz-executor.4 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000
[ 1590.257291] CPU: 0 PID: 10795 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1590.258044] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1590.258816] Call Trace:
[ 1590.259066]  <TASK>
[ 1590.259286]  dump_stack_lvl+0xc1/0xf0
[ 1590.259667]  dump_header+0x10a/0xd50
[ 1590.260049]  oom_kill_process+0x25d/0x640
[ 1590.260460]  out_of_memory+0x346/0x1640
[ 1590.260855]  ? find_held_lock+0x2c/0x110
[ 1590.261265]  ? __pfx_out_of_memory+0x10/0x10
[ 1590.261702]  ? rcu_read_unlock+0x9/0x60
[ 1590.262085]  ? lock_release+0x1e3/0x680
[ 1590.262477]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1590.262959]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1590.263480]  ? mem_cgroup_iter+0x291/0x710
[ 1590.263896]  try_charge_memcg+0xec7/0x12f0
[ 1590.264313]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1590.264766]  ? __pfx_lock_release+0x10/0x10
[ 1590.265190]  ? lock_release+0x1e3/0x680
[ 1590.265580]  ? __pfx_lock_release+0x10/0x10
[ 1590.265992]  ? lock_release+0x1e3/0x680
[ 1590.266387]  obj_cgroup_charge+0x1d0/0x530
[ 1590.266806]  __kmem_cache_alloc_node+0xa3/0x310
[ 1590.267257]  ? kvmalloc_node+0xaa/0x200
[ 1590.267659]  ? kvmalloc_node+0xaa/0x200
[ 1590.268048]  __kmalloc_node+0x50/0x160
[ 1590.268430]  kvmalloc_node+0xaa/0x200
[ 1590.268813]  alloc_fdtable+0xd3/0x280
[ 1590.269197]  dup_fd+0x751/0xcf0
[ 1590.269538]  ? security_task_alloc+0xea/0x260
[ 1590.269972]  copy_process+0x1f7e/0x7320
[ 1590.270530]  ? __pfx___lock_acquire+0x10/0x10
[ 1590.270983]  ? __pfx_copy_process+0x10/0x10
[ 1590.271403]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1590.271910]  ? lock_release+0x1e3/0x680
[ 1590.272294]  ? xfd_validate_state+0x51/0x170
[ 1590.272722]  kernel_clone+0xeb/0x810
[ 1590.273099]  ? finish_task_switch.isra.0+0x203/0x830
[ 1590.273596]  ? __pfx_kernel_clone+0x10/0x10
[ 1590.274023]  ? __schedule+0x9b1/0x2b00
[ 1590.274420]  ? __pfx___schedule+0x10/0x10
[ 1590.274847]  __do_sys_fork+0x80/0xc0
[ 1590.275224]  ? __pfx___do_sys_fork+0x10/0x10
[ 1590.275664]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1590.276212]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1590.276716]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1590.277205]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1590.277699]  do_syscall_64+0x3f/0x90
[ 1590.278070]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1590.278587] RIP: 0033:0x7f28ce17db19
[ 1590.278948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1590.280611] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1590.281310] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1590.281969] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1590.282639] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1590.283293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1590.283952] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1590.284630]  </TASK>
[ 1590.286285] memory: usage 307200kB, limit 307200kB, failcnt 20870
[ 1590.287177] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1590.287835] Memory cgroup stats for /syz4:
[ 1590.287979] anon 2465792
[ 1590.288641] file 0
[ 1590.288859] kernel 312107008
[ 1590.289150] kernel_stack 851968
[ 1590.289462] pagetables 2867200
[ 1590.289801] sec_pagetables 0
[ 1590.290100] percpu 3008
[ 1590.290350] sock 0
[ 1590.290660] vmalloc 0
[ 1590.290897] shmem 0
[ 1590.291124] file_mapped 0
[ 1590.291387] file_dirty 0
[ 1590.291664] file_writeback 0
[ 1590.291955] swapcached 0
[ 1590.292210] inactive_anon 2465792
[ 1590.292568] active_anon 0
[ 1590.292837] inactive_file 0
[ 1590.293112] active_file 0
[ 1590.293376] unevictable 0
[ 1590.293655] slab_reclaimable 441960
[ 1590.293994] slab_unreclaimable 1496448
[ 1590.294352] slab 1938408
[ 1590.294640] workingset_refault_anon 0
[ 1590.294995] workingset_refault_file 21
[ 1590.295360] workingset_activate_anon 0
[ 1590.295737] workingset_activate_file 0
[ 1590.296096] workingset_restore_anon 0
[ 1590.296448] workingset_restore_file 0
[ 1590.296826] workingset_nodereclaim 0
[ 1590.297170] pgscan 1646
[ 1590.297420] pgsteal 43
[ 1590.297678] pgscan_kswapd 36
[ 1590.297970] pgscan_direct 1610
[ 1590.298269] pgscan_khugepaged 0
[ 1590.298623] pgsteal_kswapd 2
[ 1590.298916] pgsteal_direct 41
[ 1590.299219] pgsteal_khugepaged 0
[ 1590.299559] pgfault 10317
[ 1590.299825] pgmajfault 1
[ 1590.300080] pgrefill 1607
[ 1590.300351] pgactivate 1587
[ 1590.300650] pgdeactivate 1607
[ 1590.300949] pglazyfree 0
[ 1590.301206] pglazyfreed 0
[ 1590.301492] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10781,uid=0
[ 1590.303053] Memory cgroup out of memory: Killed process 10781 (syz-executor.4) total-vm:93412kB, anon-rss:424kB, file-rss:35712kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:39:44 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
fork()

01:39:57 executing program 6:
io_uring_setup(0x7ae3, 0x0)

01:39:57 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:39:57 executing program 5:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x0, 0x1, 0x3c4})

01:39:57 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:39:57 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
fork()

01:39:57 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:57 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), 0x0)
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:39:57 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:39:57 executing program 5:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x0, 0x1, 0x3c4})

01:39:57 executing program 6:
io_uring_setup(0x7ae3, 0x0)

01:39:57 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:39:57 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:57 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:57 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:39:57 executing program 5:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x0, 0x1, 0x3c4})

01:39:57 executing program 6:
io_uring_setup(0x7ae3, 0x0)

01:39:57 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:39:57 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:57 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:39:57 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

[ 1603.584697] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1603.586317] CPU: 0 PID: 10844 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1603.587348] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1603.588359] Call Trace:
[ 1603.588693]  <TASK>
[ 1603.588992]  dump_stack_lvl+0xc1/0xf0
[ 1603.589506]  dump_header+0x10a/0xd50
[ 1603.590015]  oom_kill_process+0x25d/0x640
[ 1603.590572]  out_of_memory+0x346/0x1640
[ 1603.591138]  ? find_held_lock+0x2c/0x110
[ 1603.591681]  ? __pfx_out_of_memory+0x10/0x10
[ 1603.592264]  ? rcu_read_unlock+0x9/0x60
[ 1603.592779]  ? lock_release+0x1e3/0x680
[ 1603.593306]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1603.593933]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1603.594626]  ? mem_cgroup_iter+0x291/0x710
[ 1603.595198]  try_charge_memcg+0xec7/0x12f0
[ 1603.595759]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1603.596362]  ? __pfx_lock_release+0x10/0x10
[ 1603.596922]  ? lock_release+0x1e3/0x680
[ 1603.597452]  ? __pfx_lock_release+0x10/0x10
[ 1603.598034]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1603.598682]  __alloc_pages+0x1f3/0x480
[ 1603.599204]  ? __pfx_lock_release+0x10/0x10
[ 1603.599765]  ? __pfx___alloc_pages+0x10/0x10
[ 1603.600365]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1603.600997]  copy_process+0x456/0x7320
[ 1603.601524]  ? __pfx___lock_acquire+0x10/0x10
[ 1603.602115]  ? __pfx___lock_acquire+0x10/0x10
[ 1603.602713]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1603.603288]  ? __pfx_lock_release+0x10/0x10
[ 1603.603860]  ? __pfx_copy_process+0x10/0x10
[ 1603.604432]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1603.605104]  ? lock_release+0x1e3/0x680
[ 1603.605627]  ? xfd_validate_state+0x51/0x170
[ 1603.606209]  kernel_clone+0xeb/0x810
[ 1603.606724]  ? finish_task_switch.isra.0+0x203/0x830
[ 1603.607385]  ? __pfx_kernel_clone+0x10/0x10
[ 1603.607964]  ? __schedule+0x9b1/0x2b00
[ 1603.608494]  ? __pfx___schedule+0x10/0x10
[ 1603.609053]  __do_sys_fork+0x80/0xc0
[ 1603.609559]  ? __pfx___do_sys_fork+0x10/0x10
[ 1603.610155]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1603.610913]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1603.611581]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1603.612237]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1603.612882]  do_syscall_64+0x3f/0x90
[ 1603.613374]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1603.614033] RIP: 0033:0x7f28ce17db19
[ 1603.614508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1603.616662] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1603.617591] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1603.618467] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1603.619351] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1603.620203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1603.621064] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1603.621951]  </TASK>
[ 1603.623962] memory: usage 307176kB, limit 307200kB, failcnt 21245
[ 1603.625069] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1603.626041] Memory cgroup stats for /syz4:
[ 1603.702986] anon 2469888
[ 1603.703581] file 4096
[ 1603.703755] kernel 312082432
[ 1603.703979] kernel_stack 819200
[ 1603.704206] pagetables 2867200
[ 1603.704428] sec_pagetables 0
[ 1603.704673] percpu 3008
[ 1603.704856] sock 0
[ 1603.705014] vmalloc 0
[ 1603.705188] shmem 0
[ 1603.705346] file_mapped 0
[ 1603.705558] file_dirty 0
[ 1603.705745] file_writeback 0
[ 1603.705956] swapcached 0
[ 1603.706144] inactive_anon 2469888
[ 1603.706375] active_anon 0
[ 1603.706591] inactive_file 0
[ 1603.706796] active_file 4096
[ 1603.707005] unevictable 0
[ 1603.707198] slab_reclaimable 442200
[ 1603.707452] slab_unreclaimable 1503304
[ 1603.707745] slab 1945504
[ 1603.707932] workingset_refault_anon 0
[ 1603.708184] workingset_refault_file 218
[ 1603.708462] workingset_activate_anon 0
[ 1603.708751] workingset_activate_file 5
[ 1603.709024] workingset_restore_anon 0
[ 1603.709278] workingset_restore_file 3
[ 1603.709580] workingset_nodereclaim 0
[ 1603.709831] pgscan 2943
[ 1603.710020] pgsteal 244
[ 1603.710201] pgscan_kswapd 60
[ 1603.710420] pgscan_direct 2883
[ 1603.710655] pgscan_khugepaged 0
[ 1603.710915] pgsteal_kswapd 10
[ 1603.711126] pgsteal_direct 234
[ 1603.711354] pgsteal_khugepaged 0
[ 1603.711600] pgfault 10389
[ 1603.711801] pgmajfault 4
[ 1603.711985] pgrefill 1782
[ 1603.712183] pgactivate 1759
[ 1603.712380] pgdeactivate 1782
[ 1603.712618] pglazyfree 0
[ 1603.712811] pglazyfreed 0
[ 1603.713006] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10838,uid=0
[ 1603.714087] Memory cgroup out of memory: Killed process 10838 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:40:09 executing program 6:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x1, 0x3c4})

01:40:09 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:09 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:09 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:40:09 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:40:09 executing program 5:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x0, 0x3c4})

01:40:09 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x0, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:40:09 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:40:09 executing program 6:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x1, 0x3c4})

[ 1615.023410] cgroup: fork rejected by pids controller in /syz3
01:40:09 executing program 6:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x1, 0x3c4})

01:40:09 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:09 executing program 5:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8})

01:40:09 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()

01:40:09 executing program 6:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x0, 0x1, 0x3c4})

01:40:09 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:09 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

[ 1615.417934] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1615.418848] CPU: 0 PID: 10903 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1615.419483] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1615.420016] Call Trace:
[ 1615.420192]  <TASK>
[ 1615.420349]  dump_stack_lvl+0xc1/0xf0
[ 1615.420622]  dump_header+0x10a/0xd50
[ 1615.420893]  oom_kill_process+0x25d/0x640
[ 1615.421191]  out_of_memory+0x346/0x1640
[ 1615.421482]  ? find_held_lock+0x2c/0x110
[ 1615.421771]  ? __pfx_out_of_memory+0x10/0x10
[ 1615.422076]  ? rcu_read_unlock+0x9/0x60
[ 1615.422352]  ? lock_release+0x1e3/0x680
[ 1615.422634]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1615.422974]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1615.423339]  ? mem_cgroup_iter+0x291/0x710
[ 1615.423632]  try_charge_memcg+0xec7/0x12f0
[ 1615.423935]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1615.424251]  ? __pfx_lock_release+0x10/0x10
[ 1615.424549]  ? lock_release+0x1e3/0x680
[ 1615.424826]  ? __pfx_lock_release+0x10/0x10
[ 1615.425128]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1615.425458]  __alloc_pages+0x1f3/0x480
[ 1615.425730]  ? __pfx___alloc_pages+0x10/0x10
[ 1615.426046]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1615.426373]  copy_process+0x456/0x7320
[ 1615.426654]  ? lock_acquire+0x19a/0x4c0
[ 1615.426944]  ? __pfx_copy_process+0x10/0x10
[ 1615.427247]  ? mark_lock.part.0+0xef/0x2f50
[ 1615.427543]  ? __pfx___lock_acquire+0x10/0x10
[ 1615.427874]  kernel_clone+0xeb/0x810
[ 1615.428153]  ? __pfx_kernel_clone+0x10/0x10
[ 1615.428463]  ? lock_acquire+0x19a/0x4c0
[ 1615.428750]  ? find_held_lock+0x2c/0x110
[ 1615.429050]  ? rcu_read_unlock+0x1a/0xc0
[ 1615.429349]  ? lock_release+0x1e3/0x680
[ 1615.429639]  ? find_held_lock+0x2c/0x110
[ 1615.429935]  ? do_user_addr_fault+0x6ed/0x1490
[ 1615.430269]  __do_sys_clone+0xba/0x100
[ 1615.430556]  ? __pfx___do_sys_clone+0x10/0x10
[ 1615.430895]  ? __pfx___up_read+0x10/0x10
[ 1615.431199]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1615.431571]  do_syscall_64+0x3f/0x90
[ 1615.431841]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1615.432211] RIP: 0033:0x7f28ce17ef41
[ 1615.432472] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1615.433701] RSP: 002b:00007ffe67afb6b8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1615.434218] RAX: ffffffffffffffda RBX: 00007f28cb6d2700 RCX: 00007f28ce17ef41
[ 1615.434704] RDX: 00007f28cb6d29d0 RSI: 00007f28cb6d22f0 RDI: 00000000003d0f00
[ 1615.435203] RBP: 00007ffe67afb8f0 R08: 00007f28cb6d2700 R09: 00007f28cb6d2700
[ 1615.435689] R10: 00007f28cb6d29d0 R11: 0000000000000206 R12: 00007ffe67afb76e
[ 1615.436175] R13: 00007ffe67afb76f R14: 00007f28cb6d2300 R15: 0000000000022000
[ 1615.436680]  </TASK>
[ 1615.437006] memory: usage 307176kB, limit 307200kB, failcnt 21801
[ 1615.437658] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1615.438263] Memory cgroup stats for /syz4:
[ 1615.467275] anon 2465792
[ 1615.468066] file 4096
[ 1615.468233] kernel 312078336
[ 1615.468442] kernel_stack 819200
[ 1615.468680] pagetables 2867200
[ 1615.468900] sec_pagetables 0
[ 1615.469105] percpu 3008
[ 1615.470075] sock 0
[ 1615.470234] vmalloc 0
[ 1615.470402] shmem 0
[ 1615.470791] file_mapped 0
[ 1615.470989] file_dirty 0
[ 1615.471174] file_writeback 0
[ 1615.471384] swapcached 0
[ 1615.471601] inactive_anon 2465792
[ 1615.471836] active_anon 0
[ 1615.472025] inactive_file 4096
[ 1615.472246] active_file 0
[ 1615.472447] unevictable 0
[ 1615.472658] slab_reclaimable 443680
[ 1615.472899] slab_unreclaimable 1496320
[ 1615.473167] slab 1940000
[ 1615.473360] workingset_refault_anon 0
[ 1615.473628] workingset_refault_file 545
[ 1615.474062] workingset_activate_anon 0
[ 1615.474319] workingset_activate_file 25
[ 1615.474777] workingset_restore_anon 0
[ 1615.475039] workingset_restore_file 6
[ 1615.475286] workingset_nodereclaim 0
[ 1615.475548] pgscan 5294
[ 1615.475734] pgsteal 572
[ 1615.475913] pgscan_kswapd 86
[ 1615.476119] pgscan_direct 5208
[ 1615.476337] pgscan_khugepaged 0
[ 1615.476579] pgsteal_kswapd 13
[ 1615.476803] pgsteal_direct 559
[ 1615.477144] pgsteal_khugepaged 0
[ 1615.477523] pgfault 10462
[ 1615.477721] pgmajfault 7
[ 1615.477910] pgrefill 2088
[ 1615.478104] pgactivate 2044
[ 1615.478311] pgdeactivate 2088
[ 1615.478551] pglazyfree 0
[ 1615.478743] pglazyfreed 0
[ 1615.478951] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=10903,uid=0
[ 1615.480167] Memory cgroup out of memory: Killed process 10903 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:40:20 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x0, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:40:20 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()

01:40:20 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:20 executing program 6:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x0, 0x1, 0x3c4})

01:40:20 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:20 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:40:21 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:40:21 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x0, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:40:21 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()

01:40:21 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:40:21 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:40:21 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:21 executing program 6:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x0, 0x1, 0x3c4})

01:40:21 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:40:21 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:40:21 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

[ 1627.302265] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1627.302961] CPU: 1 PID: 11099 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1627.303487] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1627.304018] Call Trace:
[ 1627.304195]  <TASK>
[ 1627.304353]  dump_stack_lvl+0xc1/0xf0
[ 1627.304624]  dump_header+0x10a/0xd50
[ 1627.304893]  oom_kill_process+0x25d/0x640
[ 1627.305182]  out_of_memory+0x346/0x1640
[ 1627.305470]  ? find_held_lock+0x2c/0x110
[ 1627.305756]  ? __pfx_out_of_memory+0x10/0x10
[ 1627.306054]  ? rcu_read_unlock+0x9/0x60
[ 1627.306327]  ? lock_release+0x1e3/0x680
[ 1627.306610]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1627.306936]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1627.307316]  ? mem_cgroup_iter+0x291/0x710
[ 1627.307612]  try_charge_memcg+0xec7/0x12f0
[ 1627.307910]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1627.308229]  ? __pfx_lock_release+0x10/0x10
[ 1627.308525]  ? lock_release+0x1e3/0x680
[ 1627.308802]  ? __pfx_lock_release+0x10/0x10
[ 1627.309098]  ? percpu_ref_put_many.constprop.0+0x4c/0x110
[ 1627.309480]  obj_cgroup_charge+0x1d0/0x530
[ 1627.309778]  kmem_cache_alloc_lru+0x17e/0x680
[ 1627.310098]  ? sock_alloc_inode+0x27/0x1d0
[ 1627.310399]  ? sock_alloc_inode+0x27/0x1d0
[ 1627.310694]  sock_alloc_inode+0x27/0x1d0
[ 1627.310988]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1627.311309]  alloc_inode+0x63/0x240
[ 1627.311563]  new_inode_pseudo+0x17/0x80
[ 1627.311836]  sock_alloc+0x40/0x270
[ 1627.312092]  __sock_create+0xc1/0x820
[ 1627.312366]  io_uring_setup+0x1af2/0x2470
[ 1627.312654]  ? __pfx_io_uring_setup+0x10/0x10
[ 1627.312975]  ? kfree+0x106/0x140
[ 1627.313221]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1627.313550]  do_syscall_64+0x3f/0x90
[ 1627.313810]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1627.314163] RIP: 0033:0x7f28ce17db19
[ 1627.314417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1627.315686] RSP: 002b:00007f28cb6d2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1627.316188] RAX: ffffffffffffffda RBX: 00007f28ce291020 RCX: 00007f28ce17db19
[ 1627.316656] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1627.317125] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1627.317590] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1627.318055] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1627.318539]  </TASK>
[ 1627.318756] memory: usage 307200kB, limit 307200kB, failcnt 22300
[ 1627.319165] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1627.319646] Memory cgroup stats for /syz4:
[ 1627.319749] anon 2465792
[ 1627.320214] file 4096
[ 1627.320384] kernel 312102912
[ 1627.320678] kernel_stack 851968
[ 1627.320902] pagetables 2867200
[ 1627.321121] sec_pagetables 0
[ 1627.321328] percpu 3008
[ 1627.321576] sock 0
[ 1627.321801] vmalloc 0
[ 1627.321974] shmem 0
[ 1627.322129] file_mapped 0
[ 1627.322317] file_dirty 0
[ 1627.322516] file_writeback 0
[ 1627.322725] swapcached 0
[ 1627.322910] inactive_anon 2465792
[ 1627.323154] active_anon 0
[ 1627.323341] inactive_file 4096
[ 1627.323577] active_file 0
[ 1627.323764] unevictable 0
[ 1627.323952] slab_reclaimable 439768
[ 1627.324191] slab_unreclaimable 1493944
[ 1627.324451] slab 1933712
[ 1627.324663] workingset_refault_anon 0
[ 1627.324917] workingset_refault_file 877
[ 1627.325175] workingset_activate_anon 0
[ 1627.325432] workingset_activate_file 58
[ 1627.325711] workingset_restore_anon 0
[ 1627.325963] workingset_restore_file 10
[ 1627.326222] workingset_nodereclaim 0
[ 1627.326486] pgscan 7831
[ 1627.326666] pgsteal 905
[ 1627.326844] pgscan_kswapd 159
[ 1627.327063] pgscan_direct 7672
[ 1627.327282] pgscan_khugepaged 0
[ 1627.327518] pgsteal_kswapd 28
[ 1627.327731] pgsteal_direct 877
[ 1627.327948] pgsteal_khugepaged 0
[ 1627.328183] pgfault 10535
[ 1627.328376] pgmajfault 14
[ 1627.328583] pgrefill 2317
[ 1627.328780] pgactivate 2245
[ 1627.328988] pgdeactivate 2317
[ 1627.329207] pglazyfree 0
[ 1627.329399] pglazyfreed 0
[ 1627.329612] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=11043,uid=0
[ 1627.330660] Memory cgroup out of memory: Killed process 11043 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35456kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:40:33 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:40:33 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x0, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:40:33 executing program 6:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x0, 0x3c4})

01:40:33 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:33 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:40:33 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:40:33 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:33 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x0, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:40:33 executing program 6:
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8})

01:40:33 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:33 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:40:33 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

[ 1639.410877] syz-executor.4 invoked oom-killer: gfp_mask=0x442dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_COMP|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1639.411783] CPU: 1 PID: 11330 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1639.412283] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1639.412776] Call Trace:
[ 1639.412943]  <TASK>
[ 1639.413094]  dump_stack_lvl+0xc1/0xf0
[ 1639.413367]  dump_header+0x10a/0xd50
[ 1639.413729]  oom_kill_process+0x25d/0x640
[ 1639.414001]  out_of_memory+0x346/0x1640
[ 1639.414266]  ? find_held_lock+0x2c/0x110
[ 1639.414538]  ? __pfx_out_of_memory+0x10/0x10
[ 1639.414823]  ? rcu_read_unlock+0x9/0x60
[ 1639.415078]  ? lock_release+0x1e3/0x680
[ 1639.415349]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1639.415659]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1639.416000]  ? mem_cgroup_iter+0x291/0x710
[ 1639.416275]  try_charge_memcg+0xec7/0x12f0
[ 1639.416554]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1639.416847]  ? __pfx_lock_release+0x10/0x10
[ 1639.417119]  ? lock_release+0x1e3/0x680
[ 1639.417378]  ? __pfx_lock_release+0x10/0x10
[ 1639.417664]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1639.417973]  __alloc_pages+0x1f3/0x480
[ 1639.418231]  ? __pfx___alloc_pages+0x10/0x10
[ 1639.418520]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1639.418854]  ? __kmem_cache_alloc_node+0x1cd/0x310
[ 1639.419179]  ? percpu_ref_init+0xdf/0x400
[ 1639.419452]  ? cap_capable+0x1be/0x220
[ 1639.419714]  alloc_pages+0x1a0/0x260
[ 1639.419958]  __get_free_pages+0x10/0xb0
[ 1639.420215]  ? ns_capable_noaudit+0xe7/0x120
[ 1639.420497]  io_mem_alloc+0x30/0x60
[ 1639.420732]  io_uring_setup+0x136d/0x2470
[ 1639.421004]  ? __pfx_lock_release+0x10/0x10
[ 1639.421281]  ? __pfx_io_uring_setup+0x10/0x10
[ 1639.421581]  ? kfree+0x106/0x140
[ 1639.421808]  ? kcov_ioctl+0x37f/0x6b0
[ 1639.422070]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1639.422378]  do_syscall_64+0x3f/0x90
[ 1639.422627]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1639.422958] RIP: 0033:0x7f28ce17db19
[ 1639.423209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1639.424288] RSP: 002b:00007f28cb6d2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1639.424746] RAX: ffffffffffffffda RBX: 00007f28ce291020 RCX: 00007f28ce17db19
[ 1639.425180] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1639.425608] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1639.426034] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1639.426465] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1639.426913]  </TASK>
[ 1639.427170] memory: usage 307200kB, limit 307200kB, failcnt 22596
[ 1639.427603] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:40:33 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:33 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

[ 1639.427974] Memory cgroup stats for /syz4:
[ 1639.462817] anon 2465792
[ 1639.463909] file 8192
[ 1639.464232] kernel 312070144
[ 1639.464700] kernel_stack 851968
[ 1639.465237] pagetables 2867200
[ 1639.465846] sec_pagetables 0
[ 1639.466395] percpu 3008
[ 1639.466890] sock 0
[ 1639.467242] vmalloc 0
[ 1639.467684] shmem 0
[ 1639.468028] file_mapped 4096
[ 1639.468521] file_dirty 4096
[ 1639.468891] file_writeback 0
[ 1639.469300] swapcached 0
[ 1639.469983] inactive_anon 2465792
[ 1639.470550] active_anon 0
[ 1639.470907] inactive_file 4096
[ 1639.471323] active_file 4096
[ 1639.471731] unevictable 0
[ 1639.472085] slab_reclaimable 440008
[ 1639.472724] slab_unreclaimable 1493944
[ 1639.473346] slab 1933952
[ 1639.473734] workingset_refault_anon 0
[ 1639.474333] workingset_refault_file 1057
[ 1639.475027] workingset_activate_anon 0
[ 1639.475688] workingset_activate_file 63
[ 1639.476326] workingset_restore_anon 0
[ 1639.476972] workingset_restore_file 10
[ 1639.477631] workingset_nodereclaim 0
[ 1639.478233] pgscan 9521
[ 1639.478748] pgsteal 1085
[ 1639.479113] pgscan_kswapd 187
[ 1639.479668] pgscan_direct 9334
[ 1639.480243] pgscan_khugepaged 0
[ 1639.480866] pgsteal_kswapd 29
[ 1639.481406] pgsteal_direct 1056
[ 1639.482003] pgsteal_khugepaged 0
[ 1639.482617] pgfault 10600
[ 1639.483229] pgmajfault 18
[ 1639.483898] pgrefill 2540
[ 1639.484420] pgactivate 2464
[ 1639.485046] pgdeactivate 2540
[ 1639.485742] pglazyfree 0
[ 1639.486199] pglazyfreed 0
01:40:33 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

[ 1639.486826] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=11214,uid=0
[ 1639.489739] Memory cgroup out of memory: Killed process 11214 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:40:33 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:40:33 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x0, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:40:33 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:40:50 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:40:50 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:50 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:50 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:40:50 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:40:50 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x0, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:40:50 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:40:50 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:40:50 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

[ 1656.286652] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1656.288041] CPU: 1 PID: 11527 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1656.289069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1656.290177] Call Trace:
[ 1656.290552]  <TASK>
[ 1656.290854]  dump_stack_lvl+0xc1/0xf0
[ 1656.291365]  dump_header+0x10a/0xd50
[ 1656.291880]  oom_kill_process+0x25d/0x640
[ 1656.292534]  out_of_memory+0x346/0x1640
[ 1656.293166]  ? find_held_lock+0x2c/0x110
[ 1656.293702]  ? __pfx_out_of_memory+0x10/0x10
[ 1656.294276]  ? rcu_read_unlock+0x9/0x60
[ 1656.294789]  ? lock_release+0x1e3/0x680
[ 1656.295395]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1656.296024]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1656.296802]  ? mem_cgroup_iter+0x291/0x710
[ 1656.297469]  try_charge_memcg+0xec7/0x12f0
[ 1656.298104]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1656.298703]  ? __pfx_lock_release+0x10/0x10
[ 1656.299252]  ? lock_release+0x1e3/0x680
[ 1656.299799]  ? __pfx_lock_release+0x10/0x10
[ 1656.300380]  ? lock_release+0x1e3/0x680
[ 1656.300915]  obj_cgroup_charge+0x1d0/0x530
[ 1656.301457]  ? prepare_creds+0x2f/0x6f0
[ 1656.301970]  kmem_cache_alloc+0xad/0x390
[ 1656.302486]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1656.303139]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1656.303850]  prepare_creds+0x2f/0x6f0
[ 1656.304444]  copy_creds+0x7a/0xbd0
[ 1656.304914]  copy_process+0xe2a/0x7320
[ 1656.305434]  ? schedule+0xdb/0x1a0
[ 1656.305962]  ? futex_unqueue+0xb7/0x120
[ 1656.306593]  ? futex_wait+0x503/0x690
[ 1656.307103]  ? __pfx_copy_process+0x10/0x10
[ 1656.307680]  ? futex_hash+0x16/0x200
[ 1656.308201]  kernel_clone+0xeb/0x810
[ 1656.308702]  ? __pfx_kernel_clone+0x10/0x10
[ 1656.309286]  ? do_futex+0x13a/0x380
[ 1656.309767]  ? __pfx_do_futex+0x10/0x10
[ 1656.310279]  ? __pfx_lock_release+0x10/0x10
[ 1656.310838]  __do_sys_fork+0x80/0xc0
[ 1656.311349]  ? __pfx___do_sys_fork+0x10/0x10
[ 1656.311922]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1656.312658]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1656.313308]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1656.313958]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1656.314601]  do_syscall_64+0x3f/0x90
[ 1656.315090]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1656.315865] RIP: 0033:0x7f28ce17db19
[ 1656.316406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1656.318665] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1656.319614] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1656.320515] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1656.321417] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1656.322308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1656.323243] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1656.324247]  </TASK>
[ 1656.324653] memory: usage 307200kB, limit 307200kB, failcnt 22681
[ 1656.325431] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
01:40:50 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

[ 1656.326233] Memory cgroup stats for /syz4:
[ 1656.393883] anon 2461696
[ 1656.394933] file 4096
[ 1656.395256] kernel 312107008
[ 1656.395713] kernel_stack 851968
[ 1656.396140] pagetables 2867200
[ 1656.396581] sec_pagetables 0
[ 1656.396984] percpu 3008
[ 1656.397323] sock 0
[ 1656.397652] vmalloc 0
[ 1656.397974] shmem 0
[ 1656.398288] file_mapped 0
[ 1656.398675] file_dirty 0
[ 1656.399032] file_writeback 0
[ 1656.399471] swapcached 0
[ 1656.399856] inactive_anon 2461696
[ 1656.400306] active_anon 0
[ 1656.400693] inactive_file 4096
[ 1656.401119] active_file 0
[ 1656.401508] unevictable 0
[ 1656.401880] slab_reclaimable 442912
[ 1656.402343] slab_unreclaimable 1495008
[ 1656.402871] slab 1937920
[ 1656.403232] workingset_refault_anon 0
[ 1656.403777] workingset_refault_file 1060
[ 1656.404300] workingset_activate_anon 0
[ 1656.404862] workingset_activate_file 63
[ 1656.405373] workingset_restore_anon 0
[ 1656.405887] workingset_restore_file 10
[ 1656.406380] workingset_nodereclaim 0
[ 1656.406884] pgscan 9596
[ 1656.407235] pgsteal 1090
[ 1656.407638] pgscan_kswapd 205
[ 1656.408041] pgscan_direct 9391
[ 1656.408462] pgscan_khugepaged 0
[ 1656.408911] pgsteal_kswapd 31
[ 1656.409318] pgsteal_direct 1059
[ 1656.409768] pgsteal_khugepaged 0
[ 1656.410203] pgfault 10662
[ 1656.410592] pgmajfault 18
[ 1656.410957] pgrefill 2617
[ 1656.411339] pgactivate 2536
[ 1656.411757] pgdeactivate 2617
[ 1656.412179] pglazyfree 0
[ 1656.412562] pglazyfreed 0
[ 1656.412915] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=11484,uid=0
[ 1656.415000] Memory cgroup out of memory: Killed process 11484 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35456kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:40:50 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()

01:40:50 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:40:51 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:40:51 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:40:51 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:40:51 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x0, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:40:51 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:40:51 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()

01:40:51 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

[ 1657.004322] cgroup: fork rejected by pids controller in /syz7
[ 1657.448160] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1657.450355] CPU: 1 PID: 11830 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1657.451770] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1657.453137] Call Trace:
[ 1657.453588]  <TASK>
[ 1657.453998]  dump_stack_lvl+0xc1/0xf0
[ 1657.454681]  dump_header+0x10a/0xd50
[ 1657.455378]  oom_kill_process+0x25d/0x640
[ 1657.456109]  out_of_memory+0x346/0x1640
[ 1657.456816]  ? find_held_lock+0x2c/0x110
[ 1657.457647]  ? __pfx_out_of_memory+0x10/0x10
[ 1657.458303]  ? rcu_read_unlock+0x9/0x60
[ 1657.458881]  ? lock_release+0x1e3/0x680
[ 1657.459566]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1657.460274]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1657.461085]  ? mem_cgroup_iter+0x291/0x710
[ 1657.461666]  try_charge_memcg+0xec7/0x12f0
[ 1657.462275]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1657.462996]  ? __pfx_lock_release+0x10/0x10
[ 1657.463708]  ? lock_release+0x1e3/0x680
[ 1657.464304]  ? __pfx_lock_release+0x10/0x10
[ 1657.465036]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1657.465738]  __alloc_pages+0x1f3/0x480
[ 1657.466404]  ? __pfx_lock_release+0x10/0x10
[ 1657.467064]  ? __pfx___alloc_pages+0x10/0x10
[ 1657.467767]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1657.468497]  copy_process+0x456/0x7320
[ 1657.469088]  ? schedule+0xdb/0x1a0
[ 1657.469639]  ? futex_unqueue+0xb7/0x120
[ 1657.470253]  ? futex_wait+0x503/0x690
[ 1657.470832]  ? __pfx_copy_process+0x10/0x10
[ 1657.471550]  ? wake_up_q+0x9e/0x140
[ 1657.472155]  ? do_raw_spin_unlock+0x53/0x220
[ 1657.472928]  kernel_clone+0xeb/0x810
[ 1657.473563]  ? __pfx_kernel_clone+0x10/0x10
[ 1657.474244]  ? do_futex+0x13a/0x380
[ 1657.474813]  ? __pfx_do_futex+0x10/0x10
[ 1657.475591]  ? __pfx_lock_release+0x10/0x10
[ 1657.476251]  ? __pfx___schedule+0x10/0x10
[ 1657.476910]  __do_sys_fork+0x80/0xc0
[ 1657.477482]  ? __pfx___do_sys_fork+0x10/0x10
[ 1657.478233]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1657.479123]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1657.479912]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1657.480744]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1657.481542]  do_syscall_64+0x3f/0x90
[ 1657.482184]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1657.483005] RIP: 0033:0x7f28ce17db19
[ 1657.483660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1657.486277] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1657.487498] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1657.488520] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1657.489536] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1657.490552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1657.491649] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1657.492637]  </TASK>
[ 1657.494218] memory: usage 307192kB, limit 307200kB, failcnt 23063
[ 1657.495300] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1657.496184] Memory cgroup stats for /syz4:
[ 1657.567752] anon 2465792
[ 1657.568695] file 4096
[ 1657.569012] kernel 312102912
[ 1657.569395] kernel_stack 819200
[ 1657.569878] pagetables 2867200
[ 1657.570310] sec_pagetables 0
[ 1657.570734] percpu 3072
[ 1657.571067] sock 0
[ 1657.571357] vmalloc 0
[ 1657.571700] shmem 0
[ 1657.571996] file_mapped 0
[ 1657.572346] file_dirty 0
[ 1657.572715] file_writeback 0
[ 1657.573100] swapcached 0
[ 1657.573437] inactive_anon 2465792
[ 1657.573893] active_anon 0
[ 1657.574238] inactive_file 4096
[ 1657.574705] active_file 0
[ 1657.575061] unevictable 0
[ 1657.575438] slab_reclaimable 442912
[ 1657.575924] slab_unreclaimable 1514736
[ 1657.576410] slab 1957648
[ 1657.576777] workingset_refault_anon 0
[ 1657.577253] workingset_refault_file 1233
[ 1657.577780] workingset_activate_anon 0
[ 1657.578252] workingset_activate_file 66
[ 1657.578768] workingset_restore_anon 0
[ 1657.579243] workingset_restore_file 10
[ 1657.579758] workingset_nodereclaim 0
[ 1657.580219] pgscan 10929
[ 1657.580592] pgsteal 1263
[ 1657.580933] pgscan_kswapd 240
[ 1657.581322] pgscan_direct 10689
[ 1657.581763] pgscan_khugepaged 0
[ 1657.582177] pgsteal_kswapd 41
[ 1657.582606] pgsteal_direct 1222
[ 1657.583027] pgsteal_khugepaged 0
[ 1657.583508] pgfault 10738
[ 1657.583993] pgmajfault 23
[ 1657.584342] pgrefill 2766
[ 1657.584857] pgactivate 2684
[ 1657.585229] pgdeactivate 2766
[ 1657.585757] pglazyfree 0
[ 1657.586105] pglazyfreed 0
[ 1657.586722] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=11822,uid=0
[ 1657.588863] Memory cgroup out of memory: Killed process 11822 (syz-executor.4) total-vm:93544kB, anon-rss:424kB, file-rss:35456kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:41:04 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()

01:41:04 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x0, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:41:04 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:41:04 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:41:04 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r1 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r1, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:41:04 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:41:04 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:04 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

[ 1670.444282] cgroup: fork rejected by pids controller in /syz0
[ 1670.615364] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1670.616613] CPU: 0 PID: 11862 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1670.617605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1670.618596] Call Trace:
[ 1670.618930]  <TASK>
[ 1670.619226]  dump_stack_lvl+0xc1/0xf0
[ 1670.619739]  dump_header+0x10a/0xd50
[ 1670.620233]  oom_kill_process+0x25d/0x640
[ 1670.620773]  out_of_memory+0x346/0x1640
[ 1670.621297]  ? find_held_lock+0x2c/0x110
[ 1670.621824]  ? __pfx_out_of_memory+0x10/0x10
[ 1670.622386]  ? rcu_read_unlock+0x9/0x60
[ 1670.622897]  ? lock_release+0x1e3/0x680
[ 1670.623414]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1670.624055]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1670.624734]  ? mem_cgroup_iter+0x291/0x710
[ 1670.625290]  try_charge_memcg+0xec7/0x12f0
[ 1670.625909]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1670.626493]  ? __pfx_lock_release+0x10/0x10
[ 1670.627042]  ? lock_release+0x1e3/0x680
[ 1670.627564]  ? __pfx_lock_release+0x10/0x10
[ 1670.628104]  ? percpu_ref_put_many.constprop.0+0x4c/0x110
[ 1670.628799]  obj_cgroup_charge+0x1d0/0x530
[ 1670.629340]  kmem_cache_alloc_lru+0x17e/0x680
[ 1670.629917]  ? sock_alloc_inode+0x27/0x1d0
[ 1670.630468]  ? sock_alloc_inode+0x27/0x1d0
[ 1670.631000]  sock_alloc_inode+0x27/0x1d0
[ 1670.631521]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1670.632110]  alloc_inode+0x63/0x240
[ 1670.632578]  new_inode_pseudo+0x17/0x80
[ 1670.633091]  sock_alloc+0x40/0x270
[ 1670.633558]  __sock_create+0xc1/0x820
[ 1670.634059]  io_uring_setup+0x1af2/0x2470
[ 1670.634589]  ? __pfx_io_uring_setup+0x10/0x10
[ 1670.635194]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1670.635840]  do_syscall_64+0x3f/0x90
[ 1670.636322]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1670.636972] RIP: 0033:0x7f28ce17db19
[ 1670.637437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1670.639574] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1670.640487] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1670.641355] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1670.642219] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1670.643076] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1670.643946] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1670.644839]  </TASK>
[ 1670.645433] memory: usage 307200kB, limit 307200kB, failcnt 23626
[ 1670.646431] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1670.647365] Memory cgroup stats for /syz4:
[ 1670.670637] anon 2465792
[ 1670.672067] file 4096
[ 1670.672388] kernel 312102912
[ 1670.672829] kernel_stack 851968
[ 1670.673390] pagetables 2867200
[ 1670.673831] sec_pagetables 0
[ 1670.674217] percpu 3008
[ 1670.674568] sock 0
[ 1670.674854] vmalloc 0
[ 1670.675161] shmem 0
[ 1670.675451] file_mapped 0
[ 1670.676002] file_dirty 0
[ 1670.676422] file_writeback 0
[ 1670.676958] swapcached 0
[ 1670.677344] inactive_anon 2465792
[ 1670.677944] active_anon 0
[ 1670.678307] inactive_file 4096
[ 1670.678902] active_file 0
[ 1670.679264] unevictable 0
[ 1670.679688] slab_reclaimable 439768
[ 1670.680158] slab_unreclaimable 1493944
[ 1670.680853] slab 1933712
[ 1670.681200] workingset_refault_anon 0
[ 1670.681704] workingset_refault_file 1597
[ 1670.682212] workingset_activate_anon 0
[ 1670.682739] workingset_activate_file 94
[ 1670.683361] workingset_restore_anon 0
[ 1670.683875] workingset_restore_file 11
[ 1670.684367] workingset_nodereclaim 0
[ 1670.684908] pgscan 13258
[ 1670.685378] pgsteal 1628
[ 1670.685927] pgscan_kswapd 486
[ 1670.686334] pgscan_direct 12772
[ 1670.686786] pgscan_khugepaged 0
[ 1670.687205] pgsteal_kswapd 71
[ 1670.687816] pgsteal_direct 1557
[ 1670.688270] pgsteal_khugepaged 0
[ 1670.688956] pgfault 10826
[ 1670.689351] pgmajfault 33
[ 1670.689872] pgrefill 3137
[ 1670.690223] pgactivate 3023
[ 1670.690638] pgdeactivate 3134
[ 1670.691230] pglazyfree 0
[ 1670.691616] pglazyfreed 0
[ 1670.691967] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=11853,uid=0
[ 1670.693881] Memory cgroup out of memory: Killed process 11853 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35456kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:41:19 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:19 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:41:19 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r1 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r1, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:41:19 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
fork()

01:41:19 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:41:19 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:19 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()

01:41:19 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:41:19 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r1 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r1, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:41:19 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:19 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()

01:41:19 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
fork()

[ 1685.314228] syz-executor.4 invoked oom-killer: gfp_mask=0x408d40(GFP_NOFS|__GFP_NOFAIL|__GFP_ZERO|__GFP_ACCOUNT), order=0, oom_score_adj=1000
[ 1685.315939] CPU: 1 PID: 12089 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1685.316938] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1685.317920] Call Trace:
[ 1685.318250]  <TASK>
[ 1685.318541]  dump_stack_lvl+0xc1/0xf0
[ 1685.319030]  dump_header+0x10a/0xd50
[ 1685.319523]  oom_kill_process+0x25d/0x640
[ 1685.320092]  out_of_memory+0x346/0x1640
[ 1685.320616]  ? find_held_lock+0x2c/0x110
[ 1685.321144]  ? __pfx_out_of_memory+0x10/0x10
[ 1685.321712]  ? rcu_read_unlock+0x9/0x60
[ 1685.322211]  ? lock_release+0x1e3/0x680
[ 1685.322729]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1685.323342]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1685.324019]  ? mem_cgroup_iter+0x291/0x710
[ 1685.324555]  try_charge_memcg+0xec7/0x12f0
[ 1685.325091]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1685.325671]  ? __pfx_lock_release+0x10/0x10
[ 1685.326213]  ? lock_release+0x1e3/0x680
[ 1685.326757]  obj_cgroup_charge+0x1d0/0x530
[ 1685.327293]  ? alloc_buffer_head+0x24/0x130
[ 1685.327849]  kmem_cache_alloc+0xad/0x390
[ 1685.328374]  alloc_buffer_head+0x24/0x130
[ 1685.328902]  folio_alloc_buffers+0x2c2/0x510
[ 1685.329470]  folio_create_empty_buffers+0x30/0x460
[ 1685.330101]  __block_write_begin_int+0x121b/0x1530
[ 1685.330702]  ? _raw_spin_unlock_irq+0x23/0x40
[ 1685.331276]  ? _raw_spin_unlock_irq+0x23/0x40
[ 1685.331861]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[ 1685.332535]  ? __pfx___block_write_begin_int+0x10/0x10
[ 1685.333179]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[ 1685.333836]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[ 1685.334495]  block_page_mkwrite+0x3ac/0x490
[ 1685.335045]  ext4_page_mkwrite+0x1045/0x15f0
[ 1685.335617]  ? __handle_mm_fault+0x7bf/0x2b90
[ 1685.336192]  ? __pfx_ext4_page_mkwrite+0x10/0x10
[ 1685.336791]  ? __pfx_lock_release+0x10/0x10
[ 1685.337340]  ? pte_offset_map_nolock+0x129/0x1e0
[ 1685.337964]  do_page_mkwrite+0x186/0x380
[ 1685.338497]  __handle_mm_fault+0x1079/0x2b90
[ 1685.339054]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1685.339664]  ? find_vma+0x111/0x1b0
[ 1685.340158]  ? __pfx_find_vma+0x10/0x10
[ 1685.340658]  handle_mm_fault+0x2c1/0xb10
[ 1685.341174]  ? access_error+0x15e/0x320
[ 1685.341671]  ? lock_mm_and_find_vma+0xc1/0x780
[ 1685.342239]  do_user_addr_fault+0x693/0x1490
[ 1685.342804]  exc_page_fault+0x9c/0x1a0
[ 1685.343291]  asm_exc_page_fault+0x26/0x30
[ 1685.343825] RIP: 0033:0x7f28ce11b673
[ 1685.344283] Code: 5d c3 0f 1f 44 00 00 48 8b 0d 59 ed 0a 01 48 8b 05 4a ed 0a 01 4c 8d 81 00 00 00 01 48 39 c8 72 13 4c 39 c0 73 0e 48 8d 50 04 <89> 38 48 89 15 2c ed 0a 01 c3 52 48 8d 35 77 b7 0b 00 48 89 c2 48
[ 1685.346385] RSP: 002b:00007ffe67afb6f8 EFLAGS: 00010287
[ 1685.347021] RAX: 0000001b2c723000 RBX: 00007f28cdef5008 RCX: 0000001b2c720000
[ 1685.347861] RDX: 0000001b2c723004 RSI: ffffffff816faab9 RDI: 0000000042ec74a5
[ 1685.348699] RBP: 0000000000000001 R08: 0000001b2d720000 R09: 0000001b2c722438
[ 1685.349544] R10: 00000000000014a8 R11: 0000000042ec74a9 R12: 0000000000003c38
[ 1685.350379] R13: 00007f28ce285000 R14: ffffffff816faab9 R15: 00007f28ce290ff0
[ 1685.351226]  ? workingset_update_node+0xe9/0x230
[ 1685.351845]  ? workingset_update_node+0xe9/0x230
[ 1685.352442]  </TASK>
[ 1685.352846] memory: usage 307200kB, limit 307200kB, failcnt 24054
[ 1685.353619] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1685.354335] Memory cgroup stats for /syz4:
[ 1685.354652] anon 2461696
[ 1685.355510] file 40960
[ 1685.355845] kernel 312070144
[ 1685.356222] kernel_stack 819200
[ 1685.356663] pagetables 2867200
[ 1685.357064] sec_pagetables 0
[ 1685.357447] percpu 3008
[ 1685.357793] sock 0
[ 1685.358082] vmalloc 0
[ 1685.358391] shmem 0
[ 1685.358737] file_mapped 0
[ 1685.359089] file_dirty 0
[ 1685.359432] file_writeback 0
[ 1685.359862] swapcached 0
[ 1685.360201] inactive_anon 2461696
[ 1685.360649] active_anon 0
[ 1685.360999] inactive_file 0
[ 1685.361365] active_file 0
[ 1685.361736] unevictable 0
[ 1685.362082] slab_reclaimable 442672
[ 1685.362545] slab_unreclaimable 1488024
[ 1685.363008] slab 1930696
[ 1685.363349] workingset_refault_anon 0
[ 1685.363854] workingset_refault_file 1861
[ 1685.364342] workingset_activate_anon 0
[ 1685.364846] workingset_activate_file 139
[ 1685.365341] workingset_restore_anon 0
[ 1685.365828] workingset_restore_file 12
[ 1685.366305] workingset_nodereclaim 0
[ 1685.366785] pgscan 14914
[ 1685.367125] pgsteal 1883
[ 1685.367462] pgscan_kswapd 526
[ 1685.367909] pgscan_direct 14388
[ 1685.368317] pgscan_khugepaged 0
[ 1685.368756] pgsteal_kswapd 86
[ 1685.369143] pgsteal_direct 1797
[ 1685.369645] pgsteal_khugepaged 0
[ 1685.370073] pgfault 10900
[ 1685.370418] pgmajfault 41
[ 1685.370794] pgrefill 3245
[ 1685.371141] pgactivate 3090
[ 1685.371535] pgdeactivate 3242
[ 1685.371941] pglazyfree 0
[ 1685.372276] pglazyfreed 0
[ 1685.372650] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12089,uid=0
[ 1685.375364] Memory cgroup out of memory: Killed process 12089 (syz-executor.4) total-vm:93412kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:41:20 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:41:20 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:41:20 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()

01:41:20 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
fork()

01:41:20 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:41:20 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff})
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:20 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r1 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r1, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:41:20 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

[ 1685.927953] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1685.928621] CPU: 0 PID: 12417 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1685.929160] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1685.929699] Call Trace:
[ 1685.929882]  <TASK>
[ 1685.930042]  dump_stack_lvl+0xc1/0xf0
[ 1685.930316]  dump_header+0x10a/0xd50
[ 1685.930591]  oom_kill_process+0x25d/0x640
[ 1685.930884]  out_of_memory+0x346/0x1640
[ 1685.931173]  ? find_held_lock+0x2c/0x110
[ 1685.931463]  ? __pfx_out_of_memory+0x10/0x10
[ 1685.931782]  ? rcu_read_unlock+0x9/0x60
[ 1685.932057]  ? lock_release+0x1e3/0x680
[ 1685.932342]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1685.932677]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1685.933045]  ? mem_cgroup_iter+0x291/0x710
[ 1685.933338]  try_charge_memcg+0xec7/0x12f0
[ 1685.933647]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1685.933967]  ? __pfx_lock_release+0x10/0x10
[ 1685.934264]  ? lock_release+0x1e3/0x680
[ 1685.934543]  ? __pfx_lock_release+0x10/0x10
[ 1685.934841]  ? lock_release+0x1e3/0x680
[ 1685.935128]  obj_cgroup_charge+0x1d0/0x530
[ 1685.935422]  ? alloc_pid+0xd5/0xd40
[ 1685.935696]  kmem_cache_alloc+0xad/0x390
[ 1685.935989]  alloc_pid+0xd5/0xd40
[ 1685.936239]  ? copy_thread+0x620/0xa80
[ 1685.936526]  ? copy_namespaces+0x1e3/0x500
[ 1685.936827]  copy_process+0x4444/0x7320
[ 1685.937126]  ? __pfx_copy_process+0x10/0x10
[ 1685.937436]  ? find_held_lock+0x2c/0x110
[ 1685.937745]  ? lock_release+0x1e3/0x680
[ 1685.938033]  ? __pfx_lock_release+0x10/0x10
[ 1685.938350]  kernel_clone+0xeb/0x810
[ 1685.938627]  ? finish_task_switch.isra.0+0x203/0x830
[ 1685.939004]  ? __pfx_kernel_clone+0x10/0x10
[ 1685.939307]  ? __switch_to+0x5c6/0xeb0
[ 1685.939595]  ? __schedule+0x9b1/0x2b00
[ 1685.939905]  __do_sys_clone+0xba/0x100
[ 1685.940194]  ? __pfx___do_sys_clone+0x10/0x10
[ 1685.940521]  ? restore_fpregs_from_fpstate+0xc3/0x1a0
[ 1685.940906]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1685.941282]  do_syscall_64+0x3f/0x90
[ 1685.941559]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1685.941931] RIP: 0033:0x7f28ce17ef41
[ 1685.942196] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1685.943440] RSP: 002b:00007ffe67afb6b8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1685.943970] RAX: ffffffffffffffda RBX: 00007f28cb6b1700 RCX: 00007f28ce17ef41
[ 1685.944462] RDX: 00007f28cb6b19d0 RSI: 00007f28cb6b12f0 RDI: 00000000003d0f00
[ 1685.944957] RBP: 00007ffe67afb8f0 R08: 00007f28cb6b1700 R09: 00007f28cb6b1700
[ 1685.945432] R10: 00007f28cb6b19d0 R11: 0000000000000206 R12: 00007ffe67afb76e
[ 1685.945930] R13: 00007ffe67afb76f R14: 00007f28cb6b1300 R15: 0000000000022000
[ 1685.946442]  </TASK>
[ 1685.946697] memory: usage 307200kB, limit 307200kB, failcnt 24123
[ 1685.947129] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1685.947568] Memory cgroup stats for /syz4:
[ 1685.947672] anon 2465792
[ 1685.948173] file 8192
[ 1685.948347] kernel 312098816
[ 1685.948586] kernel_stack 884736
[ 1685.948815] pagetables 2867200
[ 1685.949041] sec_pagetables 0
[ 1685.949257] percpu 3072
[ 1685.949442] sock 0
[ 1685.949616] vmalloc 0
[ 1685.949796] shmem 0
[ 1685.949960] file_mapped 0
[ 1685.950160] file_dirty 0
[ 1685.950351] file_writeback 0
[ 1685.950588] swapcached 0
[ 1685.950781] inactive_anon 2465792
[ 1685.951030] active_anon 0
[ 1685.951226] inactive_file 4096
[ 1685.951446] active_file 4096
[ 1685.951690] unevictable 0
[ 1685.951892] slab_reclaimable 440008
[ 1685.952147] slab_unreclaimable 1513672
[ 1685.952421] slab 1953680
[ 1685.952626] workingset_refault_anon 0
[ 1685.952888] workingset_refault_file 1862
[ 1685.953168] workingset_activate_anon 0
[ 1685.953436] workingset_activate_file 139
[ 1685.953752] workingset_restore_anon 0
[ 1685.954022] workingset_restore_file 12
[ 1685.954301] workingset_nodereclaim 0
[ 1685.954578] pgscan 15054
[ 1685.954776] pgsteal 1893
[ 1685.954966] pgscan_kswapd 546
[ 1685.955190] pgscan_direct 14508
[ 1685.955426] pgscan_khugepaged 0
[ 1685.955697] pgsteal_kswapd 93
[ 1685.955914] pgsteal_direct 1800
[ 1685.956153] pgsteal_khugepaged 0
[ 1685.956397] pgfault 10958
[ 1685.956618] pgmajfault 41
[ 1685.956823] pgrefill 3378
[ 1685.957023] pgactivate 3219
[ 1685.957238] pgdeactivate 3375
[ 1685.957481] pglazyfree 0
[ 1685.957674] pglazyfreed 0
[ 1685.957881] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12417,uid=0
[ 1685.958948] Memory cgroup out of memory: Killed process 12417 (syz-executor.4) total-vm:93676kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:41:20 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff})
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:20 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:41:20 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

[ 1686.607129] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1686.608371] CPU: 1 PID: 12752 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1686.609391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1686.610372] Call Trace:
[ 1686.610701]  <TASK>
[ 1686.610999]  dump_stack_lvl+0xc1/0xf0
[ 1686.611561]  dump_header+0x10a/0xd50
[ 1686.612071]  oom_kill_process+0x25d/0x640
[ 1686.612607]  out_of_memory+0x346/0x1640
[ 1686.613126]  ? find_held_lock+0x2c/0x110
[ 1686.613656]  ? __pfx_out_of_memory+0x10/0x10
[ 1686.614297]  ? rcu_read_unlock+0x9/0x60
[ 1686.614808]  ? lock_release+0x1e3/0x680
[ 1686.615321]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1686.615940]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1686.616612]  ? mem_cgroup_iter+0x291/0x710
[ 1686.617145]  try_charge_memcg+0xec7/0x12f0
[ 1686.617714]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1686.618335]  ? __pfx_lock_release+0x10/0x10
[ 1686.618880]  ? lock_release+0x1e3/0x680
[ 1686.619502]  ? __pfx_lock_release+0x10/0x10
[ 1686.620099]  ? percpu_ref_put_many.constprop.0+0x4c/0x110
[ 1686.620796]  obj_cgroup_charge+0x1d0/0x530
[ 1686.621425]  kmem_cache_alloc_lru+0x17e/0x680
[ 1686.622075]  ? sock_alloc_inode+0x27/0x1d0
[ 1686.622625]  ? sock_alloc_inode+0x27/0x1d0
[ 1686.623279]  sock_alloc_inode+0x27/0x1d0
[ 1686.623804]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1686.624465]  alloc_inode+0x63/0x240
[ 1686.624940]  new_inode_pseudo+0x17/0x80
[ 1686.625443]  sock_alloc+0x40/0x270
[ 1686.625906]  __sock_create+0xc1/0x820
[ 1686.626420]  io_uring_setup+0x1af2/0x2470
[ 1686.627042]  ? __pfx___schedule+0x10/0x10
[ 1686.627608]  ? __pfx_io_uring_setup+0x10/0x10
[ 1686.628317]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1686.629019]  do_syscall_64+0x3f/0x90
[ 1686.629546]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1686.630356] RIP: 0033:0x7f28ce17db19
[ 1686.630889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1686.633100] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1686.634034] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1686.634913] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1686.635819] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1686.636860] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1686.637820] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1686.638719]  </TASK>
[ 1686.640220] memory: usage 307200kB, limit 307200kB, failcnt 24202
[ 1686.641281] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1686.642152] Memory cgroup stats for /syz4:
[ 1686.671549] anon 2461696
[ 1686.672221] file 8192
[ 1686.672408] kernel 312102912
[ 1686.672865] kernel_stack 819200
[ 1686.673095] pagetables 2867200
[ 1686.673316] sec_pagetables 0
[ 1686.673585] percpu 3136
[ 1686.673769] sock 0
[ 1686.673923] vmalloc 0
[ 1686.674093] shmem 0
[ 1686.674253] file_mapped 0
[ 1686.674441] file_dirty 0
[ 1686.674648] file_writeback 0
[ 1686.674864] swapcached 0
[ 1686.675050] inactive_anon 2461696
[ 1686.675285] active_anon 0
[ 1686.675491] inactive_file 4096
[ 1686.675722] active_file 4096
[ 1686.675933] unevictable 0
[ 1686.676124] slab_reclaimable 440008
[ 1686.676366] slab_unreclaimable 1508184
[ 1686.676657] slab 1948192
[ 1686.676856] workingset_refault_anon 0
[ 1686.677104] workingset_refault_file 1862
[ 1686.677371] workingset_activate_anon 0
[ 1686.677640] workingset_activate_file 139
[ 1686.677905] workingset_restore_anon 0
[ 1686.678155] workingset_restore_file 12
[ 1686.678412] workingset_nodereclaim 0
[ 1686.678680] pgscan 15343
[ 1686.678866] pgsteal 1894
[ 1686.679047] pgscan_kswapd 622
[ 1686.679262] pgscan_direct 14721
[ 1686.679501] pgscan_khugepaged 0
[ 1686.679731] pgsteal_kswapd 93
[ 1686.679946] pgsteal_direct 1801
[ 1686.680172] pgsteal_khugepaged 0
[ 1686.680401] pgfault 11017
[ 1686.680603] pgmajfault 41
[ 1686.680794] pgrefill 3670
[ 1686.680996] pgactivate 3510
[ 1686.681205] pgdeactivate 3667
[ 1686.681432] pglazyfree 0
[ 1686.681645] pglazyfreed 0
[ 1686.681848] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=12749,uid=0
[ 1686.682930] Memory cgroup out of memory: Killed process 12749 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
[ 1686.767450] socket: no more sockets
01:41:33 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:33 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r1 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r1, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:41:33 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:41:33 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:41:33 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:41:33 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, 0x0)
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000880)={r5, 0x3, 0xffffffffffffffff, 0x0, 0x80000})

01:41:33 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:33 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff})
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:33 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:41:34 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:34 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:34 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

[ 1700.297669] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1700.298869] CPU: 1 PID: 13159 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1700.299890] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1700.300874] Call Trace:
[ 1700.301200]  <TASK>
[ 1700.301496]  dump_stack_lvl+0xc1/0xf0
[ 1700.301997]  dump_header+0x10a/0xd50
[ 1700.302490]  oom_kill_process+0x25d/0x640
[ 1700.303024]  out_of_memory+0x346/0x1640
[ 1700.303547]  ? find_held_lock+0x2c/0x110
[ 1700.304128]  ? __pfx_out_of_memory+0x10/0x10
[ 1700.304835]  ? rcu_read_unlock+0x9/0x60
[ 1700.305342]  ? lock_release+0x1e3/0x680
[ 1700.305865]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1700.306481]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1700.307150]  ? mem_cgroup_iter+0x291/0x710
[ 1700.307700]  try_charge_memcg+0xec7/0x12f0
[ 1700.308255]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1700.308835]  ? __pfx_lock_release+0x10/0x10
[ 1700.309374]  ? lock_release+0x1e3/0x680
[ 1700.309876]  ? __pfx_lock_release+0x10/0x10
[ 1700.310421]  ? lock_release+0x1e3/0x680
[ 1700.310944]  obj_cgroup_charge+0x1d0/0x530
[ 1700.311498]  ? prepare_creds+0x2f/0x6f0
[ 1700.312176]  kmem_cache_alloc+0xad/0x390
[ 1700.312724]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1700.313459]  ? get_random_u64+0x394/0x660
[ 1700.314000]  prepare_creds+0x2f/0x6f0
[ 1700.314489]  copy_creds+0x7a/0xbd0
[ 1700.314953]  copy_process+0xe2a/0x7320
[ 1700.315454]  ? schedule+0xdb/0x1a0
[ 1700.315933]  ? futex_unqueue+0xb7/0x120
[ 1700.316454]  ? futex_wait+0x503/0x690
[ 1700.316956]  ? __pfx_copy_process+0x10/0x10
[ 1700.317509]  ? finish_task_switch.isra.0+0x1fe/0x830
[ 1700.318184]  kernel_clone+0xeb/0x810
[ 1700.318673]  ? finish_task_switch.isra.0+0x293/0x830
[ 1700.319315]  ? __pfx_kernel_clone+0x10/0x10
[ 1700.319881]  ? do_futex+0x13a/0x380
[ 1700.320351]  ? __pfx_do_futex+0x10/0x10
[ 1700.320847]  ? __pfx___schedule+0x10/0x10
[ 1700.321508]  __do_sys_fork+0x80/0xc0
[ 1700.322074]  ? __pfx___do_sys_fork+0x10/0x10
[ 1700.322661]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1700.323432]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1700.324102]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1700.324745]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1700.325384]  do_syscall_64+0x3f/0x90
[ 1700.325866]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1700.326511] RIP: 0033:0x7f28ce17db19
[ 1700.326976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1700.329103] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1700.330014] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1700.330853] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1700.331690] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1700.332545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1700.333382] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1700.334274]  </TASK>
[ 1700.334686] memory: usage 307200kB, limit 307200kB, failcnt 25039
[ 1700.335424] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1700.336186] Memory cgroup stats for /syz4:
[ 1700.341790] anon 2461696
[ 1700.343059] file 4096
[ 1700.343385] kernel 312107008
[ 1700.343910] kernel_stack 851968
[ 1700.344644] pagetables 2867200
[ 1700.345295] sec_pagetables 0
[ 1700.345801] percpu 3008
[ 1700.346222] sock 0
[ 1700.346752] vmalloc 0
[ 1700.347069] shmem 0
[ 1700.347392] file_mapped 0
[ 1700.348046] file_dirty 0
[ 1700.348395] file_writeback 0
[ 1700.349069] swapcached 0
[ 1700.349412] inactive_anon 2461696
[ 1700.349963] active_anon 0
[ 1700.350675] inactive_file 0
[ 1700.351044] active_file 0
[ 1700.351390] unevictable 0
[ 1700.352068] slab_reclaimable 442912
[ 1700.352630] slab_unreclaimable 1495008
[ 1700.353115] slab 1937920
[ 1700.353461] workingset_refault_anon 0
[ 1700.354063] workingset_refault_file 2395
[ 1700.354683] workingset_activate_anon 0
[ 1700.355168] workingset_activate_file 180
[ 1700.355816] workingset_restore_anon 0
[ 1700.356311] workingset_restore_file 48
[ 1700.356953] workingset_nodereclaim 0
[ 1700.357418] pgscan 18347
[ 1700.357970] pgsteal 2429
[ 1700.358312] pgscan_kswapd 790
[ 1700.358943] pgscan_direct 17557
[ 1700.359359] pgscan_khugepaged 0
[ 1700.361536] pgsteal_kswapd 103
[ 1700.361945] pgsteal_direct 2326
[ 1700.362360] pgsteal_khugepaged 0
[ 1700.363220] pgfault 11142
[ 1700.363815] pgmajfault 59
[ 1700.364181] pgrefill 4172
[ 1700.364719] pgactivate 3968
[ 1700.365088] pgdeactivate 4169
[ 1700.365568] pglazyfree 0
[ 1700.365915] pglazyfreed 0
[ 1700.366262] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13091,uid=0
[ 1700.368116] Memory cgroup out of memory: Killed process 13091 (syz-executor.4) total-vm:93412kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:41:48 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r1 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r1, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:41:49 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:41:49 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0))
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r3, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:41:49 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:49 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:41:49 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, 0x0)
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000880)={r5, 0x3, 0xffffffffffffffff, 0x0, 0x80000})

01:41:49 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

[ 1715.198210] modprobe (13310) used greatest stack depth: 24032 bytes left
[ 1715.470095] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1715.471299] CPU: 1 PID: 13417 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1715.472003] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1715.472781] Call Trace:
[ 1715.473080]  <TASK>
[ 1715.473279]  dump_stack_lvl+0xc1/0xf0
[ 1715.473691]  dump_header+0x10a/0xd50
[ 1715.474070]  oom_kill_process+0x25d/0x640
[ 1715.474441]  out_of_memory+0x346/0x1640
[ 1715.474870]  ? find_held_lock+0x2c/0x110
[ 1715.475229]  ? __pfx_out_of_memory+0x10/0x10
[ 1715.475661]  ? rcu_read_unlock+0x9/0x60
[ 1715.476039]  ? lock_release+0x1e3/0x680
[ 1715.476420]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1715.476973]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1715.477408]  ? mem_cgroup_iter+0x291/0x710
[ 1715.477768]  try_charge_memcg+0xec7/0x12f0
[ 1715.478278]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1715.478669]  ? __pfx_lock_release+0x10/0x10
[ 1715.479032]  ? lock_release+0x1e3/0x680
[ 1715.479379]  ? __pfx_lock_release+0x10/0x10
[ 1715.479753]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1715.480190]  __alloc_pages+0x1f3/0x480
[ 1715.480613]  ? __pfx___alloc_pages+0x10/0x10
[ 1715.480985]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1715.481393]  copy_process+0x456/0x7320
[ 1715.481720]  ? cgroup_rstat_updated+0x24c/0x2e0
[ 1715.482106]  ? __pfx___lock_acquire+0x10/0x10
[ 1715.482520]  ? __pfx_lock_release+0x10/0x10
[ 1715.482971]  ? __pfx___lock_acquire+0x10/0x10
[ 1715.483345]  ? __pfx_copy_process+0x10/0x10
[ 1715.483764]  ? find_held_lock+0x2c/0x110
[ 1715.484193]  ? lock_release+0x1e3/0x680
[ 1715.484554]  ? __pfx_lock_release+0x10/0x10
[ 1715.484993]  kernel_clone+0xeb/0x810
[ 1715.485310]  ? finish_task_switch.isra.0+0x203/0x830
[ 1715.485832]  ? __pfx_kernel_clone+0x10/0x10
[ 1715.486188]  ? __switch_to+0x5c6/0xeb0
[ 1715.486510]  ? __schedule+0x9b1/0x2b00
[ 1715.486923]  __do_sys_clone+0xba/0x100
[ 1715.487314]  ? __pfx___do_sys_clone+0x10/0x10
[ 1715.487693]  ? restore_fpregs_from_fpstate+0xc3/0x1a0
[ 1715.488142]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1715.488583]  do_syscall_64+0x3f/0x90
[ 1715.488894]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1715.489315] RIP: 0033:0x7f28ce17ef41
[ 1715.489735] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1715.491280] RSP: 002b:00007ffe67afb6b8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1715.491978] RAX: ffffffffffffffda RBX: 00007f28cb690700 RCX: 00007f28ce17ef41
[ 1715.492635] RDX: 00007f28cb6909d0 RSI: 00007f28cb6902f0 RDI: 00000000003d0f00
[ 1715.493298] RBP: 00007ffe67afb8f0 R08: 00007f28cb690700 R09: 00007f28cb690700
[ 1715.493859] R10: 00007f28cb6909d0 R11: 0000000000000206 R12: 00007ffe67afb76e
[ 1715.494430] R13: 00007ffe67afb76f R14: 00007f28cb690300 R15: 0000000000022000
[ 1715.495043]  </TASK>
[ 1715.495397] memory: usage 307188kB, limit 307200kB, failcnt 25234
[ 1715.495915] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1715.496404] Memory cgroup stats for /syz4:
[ 1715.559797] anon 2473984
[ 1715.560995] file 0
[ 1715.561323] kernel 312086528
[ 1715.561822] kernel_stack 884736
[ 1715.562291] pagetables 2867200
[ 1715.562779] sec_pagetables 0
[ 1715.563213] percpu 3008
[ 1715.563630] sock 0
[ 1715.563954] vmalloc 0
[ 1715.564333] shmem 0
[ 1715.564705] file_mapped 0
[ 1715.565100] file_dirty 0
[ 1715.565515] file_writeback 0
[ 1715.565952] swapcached 0
[ 1715.566336] inactive_anon 2473984
[ 1715.566854] active_anon 0
[ 1715.567250] inactive_file 0
[ 1715.567701] active_file 0
[ 1715.568089] unevictable 0
[ 1715.568523] slab_reclaimable 439528
[ 1715.569036] slab_unreclaimable 1510864
[ 1715.569614] slab 1950392
[ 1715.569999] workingset_refault_anon 0
[ 1715.570559] workingset_refault_file 2397
[ 1715.571123] workingset_activate_anon 0
[ 1715.571702] workingset_activate_file 180
[ 1715.572252] workingset_restore_anon 0
[ 1715.572826] workingset_restore_file 48
[ 1715.573356] workingset_nodereclaim 0
[ 1715.573912] pgscan 18457
[ 1715.574293] pgsteal 2432
[ 1715.574718] pgscan_kswapd 833
[ 1715.575155] pgscan_direct 17624
[ 1715.575657] pgscan_khugepaged 0
[ 1715.576139] pgsteal_kswapd 105
[ 1715.576643] pgsteal_direct 2327
[ 1715.577102] pgsteal_khugepaged 0
[ 1715.577627] pgfault 11207
[ 1715.578013] pgmajfault 59
[ 1715.578410] pgrefill 4282
[ 1715.578830] pgactivate 4076
[ 1715.579249] pgdeactivate 4279
[ 1715.579714] pglazyfree 0
[ 1715.580116] pglazyfreed 0
[ 1715.580547] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13417,uid=0
[ 1715.582653] Memory cgroup out of memory: Killed process 13417 (syz-executor.4) total-vm:93808kB, anon-rss:424kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:41:50 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:41:50 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:41:50 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:41:50 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r1 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r1, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:41:50 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:50 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:41:50 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, 0x0, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

[ 1716.655781] cgroup: fork rejected by pids controller in /syz2
01:42:05 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:42:05 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, 0x0)
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r3, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r5=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000880)={r5, 0x3, 0xffffffffffffffff, 0x0, 0x80000})

01:42:05 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:42:05 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, 0x0, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:42:05 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:42:05 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:42:05 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:42:05 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r1 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r1, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

[ 1731.807892] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1731.809076] CPU: 0 PID: 13678 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1731.810120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1731.811110] Call Trace:
[ 1731.811440]  <TASK>
[ 1731.811731]  dump_stack_lvl+0xc1/0xf0
[ 1731.812233]  dump_header+0x10a/0xd50
[ 1731.812749]  oom_kill_process+0x25d/0x640
[ 1731.813289]  out_of_memory+0x346/0x1640
[ 1731.813819]  ? find_held_lock+0x2c/0x110
[ 1731.814351]  ? __pfx_out_of_memory+0x10/0x10
[ 1731.814922]  ? rcu_read_unlock+0x9/0x60
[ 1731.815428]  ? lock_release+0x1e3/0x680
[ 1731.815948]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1731.816583]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1731.817268]  ? mem_cgroup_iter+0x291/0x710
[ 1731.817811]  try_charge_memcg+0xec7/0x12f0
[ 1731.818355]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1731.818939]  ? __pfx_lock_release+0x10/0x10
[ 1731.819492]  ? lock_release+0x1e3/0x680
[ 1731.820004]  ? __pfx_lock_release+0x10/0x10
[ 1731.820574]  ? percpu_ref_put_many.constprop.0+0x4c/0x110
[ 1731.821283]  obj_cgroup_charge+0x1d0/0x530
[ 1731.821831]  kmem_cache_alloc_lru+0x17e/0x680
[ 1731.822414]  ? __d_alloc+0x31/0x9c0
[ 1731.822893]  ? __d_alloc+0x31/0x9c0
[ 1731.823359]  __d_alloc+0x31/0x9c0
[ 1731.823817]  ? inode_init_always+0xbd5/0xea0
[ 1731.824413]  d_alloc_pseudo+0x1d/0x70
[ 1731.824912]  alloc_file_pseudo+0xd2/0x260
[ 1731.825450]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1731.826059]  ? __pfx_anon_inode_make_secure_inode+0x10/0x10
[ 1731.826764]  ? security_socket_post_create+0xa2/0xd0
[ 1731.827420]  anon_inode_getfile_secure+0xb9/0x1f0
[ 1731.828034]  io_uring_setup+0x1d5e/0x2470
[ 1731.828588]  ? __pfx_io_uring_setup+0x10/0x10
[ 1731.829197]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1731.829796]  do_syscall_64+0x3f/0x90
[ 1731.830282]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1731.830938] RIP: 0033:0x7f28ce17db19
[ 1731.831401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1731.833564] RSP: 002b:00007f28cb6f3108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1731.834480] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1731.835331] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1731.836189] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1731.837067] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1731.837919] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1731.838802]  </TASK>
[ 1731.839362] memory: usage 307200kB, limit 307200kB, failcnt 25656
[ 1731.840146] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1731.840920] Memory cgroup stats for /syz4:
[ 1731.843566] anon 2465792
[ 1731.844660] file 0
[ 1731.844947] kernel 312107008
[ 1731.845330] kernel_stack 851968
[ 1731.845781] pagetables 2867200
[ 1731.846179] sec_pagetables 0
[ 1731.846566] percpu 3008
[ 1731.846897] sock 0
[ 1731.847165] vmalloc 0
[ 1731.847501] shmem 0
[ 1731.847779] file_mapped 0
[ 1731.848124] file_dirty 0
[ 1731.848462] file_writeback 0
[ 1731.848888] swapcached 0
[ 1731.849206] inactive_anon 2465792
[ 1731.849680] active_anon 0
[ 1731.850011] inactive_file 0
[ 1731.850371] active_file 0
[ 1731.850725] unevictable 0
[ 1731.851080] slab_reclaimable 442288
[ 1731.851531] slab_unreclaimable 1496000
[ 1731.852135] slab 1938288
[ 1731.852527] workingset_refault_anon 0
[ 1731.853109] workingset_refault_file 2710
[ 1731.853659] workingset_activate_anon 0
[ 1731.854219] workingset_activate_file 255
[ 1731.854739] workingset_restore_anon 0
[ 1731.855203] workingset_restore_file 67
[ 1731.855843] workingset_nodereclaim 0
[ 1731.856461] pgscan 20383
[ 1731.856846] pgsteal 2745
[ 1731.857181] pgscan_kswapd 1031
[ 1731.857611] pgscan_direct 19352
[ 1731.858036] pgscan_khugepaged 0
[ 1731.858566] pgsteal_kswapd 154
[ 1731.859025] pgsteal_direct 2591
[ 1731.859552] pgsteal_khugepaged 0
[ 1731.859972] pgfault 11298
[ 1731.860327] pgmajfault 70
[ 1731.860701] pgrefill 4523
[ 1731.861191] pgactivate 4241
[ 1731.861585] pgdeactivate 4520
[ 1731.861973] pglazyfree 0
[ 1731.862309] pglazyfreed 0
[ 1731.862686] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=13668,uid=0
[ 1731.864703] Memory cgroup out of memory: Killed process 13668 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:42:06 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:42:06 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:42:06 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r1 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r1, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

[ 1732.554583] modprobe (13987) used greatest stack depth: 23664 bytes left
01:42:07 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:42:07 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:42:07 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:42:08 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, 0x0, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:42:08 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r6=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000880)={r6, 0x3, r3, 0x0, 0x80000})

01:42:08 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:42:08 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:42:08 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:42:08 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:42:08 executing program 7:
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

[ 1735.112113] modprobe (14114) used greatest stack depth: 22104 bytes left
[ 1736.273711] syz-executor.4 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1736.274727] CPU: 0 PID: 14125 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1736.275587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1736.276466] Call Trace:
[ 1736.276754]  <TASK>
[ 1736.277011]  dump_stack_lvl+0xc1/0xf0
[ 1736.277445]  dump_header+0x10a/0xd50
[ 1736.277882]  oom_kill_process+0x25d/0x640
[ 1736.278359]  out_of_memory+0x346/0x1640
[ 1736.278825]  ? find_held_lock+0x2c/0x110
[ 1736.279275]  ? __pfx_out_of_memory+0x10/0x10
[ 1736.279767]  ? rcu_read_unlock+0x9/0x60
[ 1736.280206]  ? lock_release+0x1e3/0x680
[ 1736.280649]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1736.281061]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1736.281635]  ? mem_cgroup_iter+0x291/0x710
[ 1736.282096]  try_charge_memcg+0xec7/0x12f0
[ 1736.282559]  ? lock_acquire+0x110/0x4c0
[ 1736.283006]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1736.283515]  ? lock_release+0x1e3/0x680
[ 1736.283951]  ? __pfx_lock_release+0x10/0x10
[ 1736.284331]  ? lock_is_held_type+0x9f/0x120
[ 1736.284698]  charge_memcg+0x85/0x2c0
[ 1736.285104]  __mem_cgroup_charge+0x28/0x90
[ 1736.285564]  __filemap_add_folio+0x5b3/0xce0
[ 1736.286069]  ? __pfx___filemap_add_folio+0x10/0x10
[ 1736.286600]  ? __pfx_workingset_update_node+0x10/0x10
[ 1736.287155]  ? alloc_pages+0x1a8/0x260
[ 1736.287498]  filemap_add_folio+0x9f/0x1c0
[ 1736.287956]  ? __pfx_filemap_add_folio+0x10/0x10
[ 1736.288371]  ? down_read+0x1b4/0x470
[ 1736.288793]  __filemap_get_folio+0x2e4/0x8d0
[ 1736.289164]  filemap_fault+0x1586/0x21a0
[ 1736.289615]  ? lock_acquire+0x19a/0x4c0
[ 1736.289956]  ? __pfx_filemap_fault+0x10/0x10
[ 1736.290446]  ? __pfx_lock_release+0x10/0x10
[ 1736.290815]  __do_fault+0x10d/0x480
[ 1736.291226]  __handle_mm_fault+0x1175/0x2b90
[ 1736.291599]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1736.292130]  ? find_vma+0x111/0x1b0
[ 1736.292453]  ? __pfx_find_vma+0x10/0x10
[ 1736.292882]  handle_mm_fault+0x2c1/0xb10
[ 1736.293223]  ? access_error+0x15e/0x320
[ 1736.293657]  ? lock_mm_and_find_vma+0xc1/0x780
[ 1736.294037]  do_user_addr_fault+0x693/0x1490
[ 1736.294531]  exc_page_fault+0x9c/0x1a0
[ 1736.294864]  asm_exc_page_fault+0x26/0x30
[ 1736.295309] RIP: 0033:0x7f28ce11e186
[ 1736.295708] Code: 00 e8 3e d3 ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 17 4c 8d 05 86 6e 57 00 4c 39 c2 73 0b 48 8d 42 08 48 89 07 <48> 8b 02 c3 50 49 8d 88 00 00 c0 ff 48 8d 35 1a 92 0b 00 31 c0 48
[ 1736.297572] RSP: 002b:00007ffe67afb7e8 EFLAGS: 00010287
[ 1736.298001] RAX: 00007f28ce295780 RBX: 00007f28ce291b60 RCX: 000000000000003e
[ 1736.298732] RDX: 00007f28ce295778 RSI: ffffffff8168c8b3 RDI: 00007ffe67afb8a8
[ 1736.299284] RBP: 00007ffe67afb8a8 R08: 00007f28ce695000 R09: 0000001b2c722708
[ 1736.299836] R10: 000000000000168d R11: 0000000085903691 R12: 00000000001a7cf5
[ 1736.300390] R13: 00000000000003e8 R14: 00007f28ce290f60 R15: 00000000001a796b
[ 1736.300949]  ? do_shrink_slab+0x193/0x9d0
[ 1736.301307]  </TASK>
[ 1736.302594] memory: usage 307200kB, limit 307200kB, failcnt 29571
[ 1736.303081] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1736.303713] Memory cgroup stats for /syz4:
[ 1736.303905] anon 2461696
[ 1736.304457] file 40960
[ 1736.304691] kernel 312070144
[ 1736.305036] kernel_stack 819200
[ 1736.305424] pagetables 2867200
[ 1736.305709] sec_pagetables 0
[ 1736.305978] percpu 3008
[ 1736.306314] sock 0
[ 1736.306520] vmalloc 0
[ 1736.306721] shmem 0
[ 1736.306918] file_mapped 0
[ 1736.307183] file_dirty 0
[ 1736.307493] file_writeback 0
[ 1736.307851] swapcached 0
[ 1736.308076] inactive_anon 2461696
[ 1736.308504] active_anon 0
[ 1736.308731] inactive_file 40960
[ 1736.308993] active_file 0
[ 1736.309215] unevictable 0
[ 1736.309436] slab_reclaimable 442672
[ 1736.309908] slab_unreclaimable 1488024
[ 1736.310211] slab 1930696
[ 1736.310434] workingset_refault_anon 0
[ 1736.310751] workingset_refault_file 5502
[ 1736.311064] workingset_activate_anon 0
[ 1736.311541] workingset_activate_file 608
[ 1736.311854] workingset_restore_anon 0
[ 1736.312149] workingset_restore_file 186
[ 1736.312498] workingset_nodereclaim 0
[ 1736.312943] pgscan 51725
[ 1736.313158] pgsteal 5552
[ 1736.313413] pgscan_kswapd 1592
[ 1736.313763] pgscan_direct 50133
[ 1736.314029] pgscan_khugepaged 0
[ 1736.314290] pgsteal_kswapd 301
[ 1736.314640] pgsteal_direct 5251
[ 1736.314983] pgsteal_khugepaged 0
[ 1736.315250] pgfault 11488
[ 1736.315561] pgmajfault 167
[ 1736.315857] pgrefill 6168
[ 1736.316112] pgactivate 5544
[ 1736.316456] pgdeactivate 6165
[ 1736.316759] pglazyfree 0
[ 1736.317078] pglazyfreed 0
[ 1736.317326] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=14125,uid=0
[ 1736.319585] Memory cgroup out of memory: Killed process 14125 (syz-executor.4) total-vm:93412kB, anon-rss:276kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
[ 1766.063981] systemd-timesyn invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0
[ 1766.064930] CPU: 0 PID: 111 Comm: systemd-timesyn Not tainted 6.5.0-rc3-next-20230725 #1
[ 1766.065602] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1766.066288] Call Trace:
[ 1766.066512]  <TASK>
[ 1766.066712]  dump_stack_lvl+0xc1/0xf0
[ 1766.067047]  dump_header+0x10a/0xd50
[ 1766.067392]  oom_kill_process+0x25d/0x640
[ 1766.067766]  out_of_memory+0x1334/0x1640
[ 1766.068135]  ? __pfx_out_of_memory+0x10/0x10
[ 1766.068437]  __alloc_pages_slowpath.constprop.0+0x1674/0x1ed0
[ 1766.068942]  ? __pfx_lock_release+0x10/0x10
[ 1766.069223]  ? __pfx___alloc_pages_slowpath.constprop.0+0x10/0x10
[ 1766.069755]  ? prepare_alloc_pages+0x377/0x500
[ 1766.070060]  __alloc_pages+0x3f3/0x480
[ 1766.070390]  ? lock_acquire+0x19a/0x4c0
[ 1766.070649]  ? __pfx___alloc_pages+0x10/0x10
[ 1766.071025]  ? lock_release+0x1e3/0x680
[ 1766.071382]  alloc_pages+0x1a0/0x260
[ 1766.071715]  filemap_alloc_folio+0x389/0x430
[ 1766.072105]  ? __pfx_filemap_alloc_folio+0x10/0x10
[ 1766.072534]  ? down_read+0x1b4/0x470
[ 1766.072804]  __filemap_get_folio+0x285/0x8d0
[ 1766.073180]  filemap_fault+0x1586/0x21a0
[ 1766.073533]  ? lock_acquire+0x19a/0x4c0
[ 1766.073883]  ? __pfx_filemap_fault+0x10/0x10
[ 1766.074276]  ? __pfx_lock_release+0x10/0x10
[ 1766.074656]  __do_fault+0x10d/0x480
[ 1766.074987]  __handle_mm_fault+0x1175/0x2b90
[ 1766.075369]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1766.075792]  ? find_vma+0x111/0x1b0
[ 1766.076100]  ? __pfx_find_vma+0x10/0x10
[ 1766.076438]  handle_mm_fault+0x2c1/0xb10
[ 1766.076801]  ? access_error+0x15e/0x320
[ 1766.077146]  ? lock_mm_and_find_vma+0xc1/0x780
[ 1766.077548]  do_user_addr_fault+0x693/0x1490
[ 1766.077934]  exc_page_fault+0x9c/0x1a0
[ 1766.078277]  asm_exc_page_fault+0x26/0x30
[ 1766.078639] RIP: 0033:0x7f84bd68b342
[ 1766.078966] Code: Unable to access opcode bytes at 0x7f84bd68b318.
[ 1766.079466] RSP: 002b:00007ffcf1ada630 EFLAGS: 00010283
[ 1766.079798] RAX: 0000000000000108 RBX: 00007ffcf1ada650 RCX: 00007f84bd7006d4
[ 1766.080371] RDX: 0000000000000001 RSI: 00007ffcf1ada650 RDI: 0000000000000000
[ 1766.080819] RBP: 00005589bc8771f0 R08: 0000000000000000 R09: 00007ffcf1b4f080
[ 1766.081407] R10: 00007ffcf1b4f0f0 R11: 0000000000322da8 R12: 00007ffcf1ada648
[ 1766.081999] R13: 00005589bc875310 R14: 0000000000000100 R15: 0000000000000000
[ 1766.082608]  </TASK>
[ 1766.082880] Mem-Info:
[ 1766.083095] active_anon:4623 inactive_anon:18182 isolated_anon:0
[ 1766.083095]  active_file:33 inactive_file:1 isolated_file:0
[ 1766.083095]  unevictable:0 dirty:0 writeback:0
[ 1766.083095]  slab_reclaimable:8048 slab_unreclaimable:62697
[ 1766.083095]  mapped:69627 shmem:112 pagetables:5630
[ 1766.083095]  sec_pagetables:0 bounce:0
[ 1766.083095]  kernel_misc_reclaimable:0
[ 1766.083095]  free:5372 free_pcp:779 free_cma:0
[ 1766.085707] Node 0 active_anon:18492kB inactive_anon:72728kB active_file:132kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278508kB dirty:0kB writeback:0kB shmem:448kB writeback_tmp:0kB kernel_stack:9248kB pagetables:22520kB sec_pagetables:0kB all_unreclaimable? yes
[ 1766.087248] Node 0 DMA free:6468kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB active_anon:0kB inactive_anon:32kB active_file:12kB inactive_file:20kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:4kB free_cma:0kB
[ 1766.089355] lowmem_reserve[]: 0 1606 1606 1606
[ 1766.089694] Node 0 DMA32 free:15020kB boost:0kB min:5104kB low:6748kB high:8392kB reserved_highatomic:20480KB active_anon:18492kB inactive_anon:72696kB active_file:104kB inactive_file:0kB unevictable:0kB writepending:0kB present:2080640kB managed:1655352kB mlocked:0kB bounce:0kB free_pcp:3104kB local_pcp:568kB free_cma:0kB
[ 1766.091964] lowmem_reserve[]: 0 0 0 0
[ 1766.092234] Node 0 DMA: 6*4kB (UM) 8*8kB (ME) 7*16kB (UM) 2*32kB (UE) 5*64kB (UME) 4*128kB (UME) 3*256kB (UE) 3*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 6472kB
[ 1766.093642] Node 0 DMA32: 983*4kB (UME) 230*8kB (ME) 128*16kB (UME) 181*32kB (UME) 22*64kB (UM) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 15020kB
[ 1766.094883] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1766.095396] 123 total pagecache pages
[ 1766.095722] 0 pages in swap cache
[ 1766.096007] Free swap  = 0kB
[ 1766.096266] Total swap = 0kB
[ 1766.096466] 524158 pages RAM
[ 1766.096743] 0 pages HighMem/MovableOnly
[ 1766.097070] 106480 pages reserved
[ 1766.097366] Unreclaimable slab info:
[ 1766.097782] Name                      Used          Total
[ 1766.098285] pid_2                    145KB        251KB
[ 1766.098656] fib6_nodes                28KB         28KB
[ 1766.099099] ip6_dst_cache             33KB         33KB
[ 1766.099434] RAWv6                    123KB        123KB
[ 1766.100717] UDPv6                     64KB         64KB
[ 1766.101056] TCPv6                     62KB         62KB
[ 1766.101618] scsi_sense_cache           8KB          8KB
[ 1766.101954] virtio_scsi_cmd           16KB         16KB
[ 1766.102381] bio-120                    7KB          7KB
[ 1766.102741] mqueue_inode_cache         60KB         60KB
[ 1766.103182] nfs_commit_data           15KB         15KB
[ 1766.103531] nfs_write_data            47KB         47KB
[ 1766.103962] jbd2_inode                 7KB          7KB
[ 1766.104292] ext4_system_zone           3KB          3KB
[ 1766.104754] ext4_io_end_vec            7KB          7KB
[ 1766.105199] pid_namespace              7KB          7KB
[ 1766.105558] rpc_buffers               31KB         31KB
[ 1766.105989] rpc_tasks                  3KB          3KB
[ 1766.106317] UNIX-STREAM              204KB        384KB
[ 1766.106795] UNIX                     782KB        800KB
[ 1766.107133] tcp_bind2_bucket           8KB          8KB
[ 1766.107586] tcp_bind_bucket            8KB          8KB
[ 1766.107920] ip_fib_trie                8KB          8KB
[ 1766.108362] ip_fib_alias              11KB         11KB
[ 1766.108722] ip_dst_cache               8KB          8KB
[ 1766.109153] RAW                       30KB         30KB
[ 1766.109503] UDP                      125KB        215KB
[ 1766.109945] request_sock_TCP           7KB          7KB
[ 1766.110281] TCP                       60KB         60KB
[ 1766.110736] hugetlbfs_inode_cache         31KB         31KB
[ 1766.111088] bio-248                   11KB         11KB
[ 1766.111544] ep_head                    8KB          8KB
[ 1766.111876] eventpoll_pwq             23KB         23KB
[ 1766.112311] eventpoll_epi             43KB         43KB
[ 1766.112662] inotify_inode_mark         48KB         54KB
[ 1766.113131] sgpool-128                59KB         59KB
[ 1766.113466] sgpool-64                 63KB         63KB
[ 1766.113932] sgpool-32                690KB        756KB
[ 1766.114267] sgpool-16                355KB        397KB
[ 1766.114737] sgpool-8                 335KB        356KB
[ 1766.115080] request_queue             63KB         63KB
[ 1766.115533] blkdev_ioc                 8KB          8KB
[ 1766.115862] bio-184                   40KB         40KB
[ 1766.116306] biovec-max              1491KB       1734KB
[ 1766.116662] biovec-64                892KB        948KB
[ 1766.117104] biovec-16                313KB        333KB
[ 1766.117435] uid_cache                  7KB          7KB
[ 1766.117901] dmaengine-unmap-2          4KB          4KB
[ 1766.118236] audit_buffer               7KB          7KB
[ 1766.118692] skbuff_small_head       7143KB       7166KB
[ 1766.119023] skbuff_fclone_cache        127KB        127KB
[ 1766.119500] skbuff_head_cache       2990KB       2992KB
[ 1766.119834] file_lock_cache           43KB         43KB
[ 1766.120268] file_lock_ctx              7KB          7KB
[ 1766.120616] fsnotify_mark_connector         20KB         20KB
[ 1766.121114] taskstats                 54KB         54KB
[ 1766.121448] proc_dir_entry           307KB        307KB
[ 1766.121899] seq_file                  52KB         52KB
[ 1766.122233] sigqueue                  39KB         39KB
[ 1766.122700] shmem_inode_cache       1327KB       1396KB
[ 1766.123030] kernfs_iattrs_cache        265KB        265KB
[ 1766.123492] kernfs_node_cache       5157KB       5157KB
[ 1766.123824] mnt_cache                141KB        141KB
[ 1766.124309] filp                     925KB       2092KB
[ 1766.124682] names_cache             1695KB       2142KB
[ 1766.125113] net_namespace             82KB         82KB
[ 1766.125448] hashtab_node             274KB        274KB
[ 1766.125917] ebitmap_node            1149KB       1149KB
[ 1766.126252] avtab_node              4976KB       4976KB
[ 1766.126707] avc_node                  35KB         35KB
[ 1766.127077] lsm_inode_cache         2812KB       3245KB
[ 1766.127549] lsm_file_cache            50KB        148KB
[ 1766.127882] key_jar                   23KB         23KB
[ 1766.128315] uts_namespace             15KB         15KB
[ 1766.128665] nsproxy                    7KB          7KB
[ 1766.129140] vma_lock                1925KB       2092KB
[ 1766.129519] vm_area_struct          2095KB       2260KB
[ 1766.129949] fs_cache                  60KB         68KB
[ 1766.130280] files_cache              239KB        239KB
[ 1766.130753] signal_cache             511KB        546KB
[ 1766.131086] sighand_cache            691KB        691KB
[ 1766.131558] task_struct             2166KB       3222KB
[ 1766.131895] cred_jar                 118KB        140KB
[ 1766.132351] anon_vma_chain           625KB        677KB
[ 1766.132714] anon_vma                1001KB       1023KB
[ 1766.133147] pid                       52KB         63KB
[ 1766.133498] Acpi-Operand              78KB        114KB
[ 1766.133945] Acpi-ParseExt             23KB         23KB
[ 1766.134278] Acpi-Parse                27KB         43KB
[ 1766.134732] Acpi-State                35KB         51KB
[ 1766.135062] Acpi-Namespace            24KB         24KB
[ 1766.135528] numa_policy                3KB          3KB
[ 1766.135862] perf_event                31KB         31KB
[ 1766.136294] trace_event_file         187KB        187KB
[ 1766.136644] ftrace_event_field        442KB        442KB
[ 1766.137108] pool_workqueue            47KB         47KB
[ 1766.137490] maple_node               571KB       1072KB
[ 1766.137927] task_group                16KB         16KB
[ 1766.138262] mm_struct                753KB        781KB
[ 1766.138838] vmap_area                 54KB         55KB
[ 1766.139200] page->ptl                545KB        602KB
[ 1766.139704] kmemleak_scan_area         26KB         31KB
[ 1766.140310] kmemleak_object       109680KB     110436KB
[ 1766.140768] kmalloc-cg-8k             64KB         64KB
[ 1766.141105] kmalloc-cg-4k           1848KB       2368KB
[ 1766.141567] kmalloc-cg-2k           2296KB       2368KB
[ 1766.141899] kmalloc-cg-1k            460KB        480KB
[ 1766.142336] kmalloc-cg-512           251KB        304KB
[ 1766.142685] kmalloc-cg-256            32KB         32KB
[ 1766.143155] kmalloc-cg-192            36KB         36KB
[ 1766.143660] kmalloc-cg-128            36KB         36KB
[ 1766.144096] kmalloc-cg-96             36KB         48KB
[ 1766.144425] kmalloc-cg-64             36KB         36KB
[ 1766.144909] kmalloc-cg-32             34KB         52KB
[ 1766.145242] kmalloc-cg-16              8KB          8KB
[ 1766.145696] kmalloc-cg-8              15KB         15KB
[ 1766.146042] kmalloc-8k              1664KB       1664KB
[ 1766.146529] kmalloc-4k              6520KB       7520KB
[ 1766.146965] kmalloc-2k              2952KB       3616KB
[ 1766.147402] kmalloc-1k             20192KB      20256KB
[ 1766.147764] kmalloc-512             1617KB       1696KB
[ 1766.148221] kmalloc-256              992KB       1096KB
[ 1766.148590] kmalloc-192              727KB        820KB
[ 1766.149041] kmalloc-128              312KB        340KB
[ 1766.149376] kmalloc-96              1051KB       1064KB
[ 1766.149856] kmalloc-64               707KB        796KB
[ 1766.150204] kmalloc-32               508KB        576KB
[ 1766.150656] kmalloc-16               319KB        328KB
[ 1766.150989] kmalloc-8                252KB        258KB
[ 1766.151425] kmem_cache_node           51KB         51KB
[ 1766.151776] kmem_cache                78KB         78KB
[ 1766.152209] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/systemd-timesyncd.service,task=systemd-timesyn,pid=111,uid=101
[ 1766.154160] Out of memory (oom_kill_allocating_task): Killed process 111 (systemd-timesyn) total-vm:88376kB, anon-rss:640kB, file-rss:128kB, shmem-rss:0kB, UID:101 pgtables:72kB oom_score_adj:0
01:42:53 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:42:53 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r6=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000880)={r6, 0x3, r3, 0x0, 0x80000})

01:42:54 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:42:53 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:42:53 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:42:53 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:42:53 executing program 7:
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:42:53 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

[ 1780.978621] syz-executor.4 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1780.979340] CPU: 1 PID: 14556 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1780.980045] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1780.980739] Call Trace:
[ 1780.980947]  <TASK>
[ 1780.981175]  dump_stack_lvl+0xc1/0xf0
[ 1780.981563]  dump_header+0x10a/0xd50
[ 1780.981867]  oom_kill_process+0x25d/0x640
[ 1780.982179]  out_of_memory+0x346/0x1640
[ 1780.982487]  ? find_held_lock+0x2c/0x110
[ 1780.982802]  ? __pfx_out_of_memory+0x10/0x10
[ 1780.983140]  ? rcu_read_unlock+0x9/0x60
[ 1780.983439]  ? lock_release+0x1e3/0x680
[ 1780.983749]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1780.984113]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1780.984518]  ? mem_cgroup_iter+0x291/0x710
[ 1780.984818]  try_charge_memcg+0xec7/0x12f0
[ 1780.985150]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1780.985492]  ? __pfx_lock_release+0x10/0x10
[ 1780.985809]  ? lock_release+0x1e3/0x680
[ 1780.986113]  ? __pfx_lock_release+0x10/0x10
[ 1780.986435]  ? percpu_ref_put_many.constprop.0+0x4c/0x110
[ 1780.986843]  obj_cgroup_charge+0x1d0/0x530
[ 1780.987170]  kmem_cache_alloc_lru+0x17e/0x680
[ 1780.987517]  ? sock_alloc_inode+0x27/0x1d0
[ 1780.987837]  ? sock_alloc_inode+0x27/0x1d0
[ 1780.988152]  sock_alloc_inode+0x27/0x1d0
[ 1780.988461]  ? __pfx_sock_alloc_inode+0x10/0x10
[ 1780.988784]  alloc_inode+0x63/0x240
[ 1780.989064]  new_inode_pseudo+0x17/0x80
[ 1780.989357]  sock_alloc+0x40/0x270
[ 1780.989631]  __sock_create+0xc1/0x820
[ 1780.989929]  io_uring_setup+0x1af2/0x2470
[ 1780.990237]  ? __pfx___schedule+0x10/0x10
[ 1780.990553]  ? __pfx_io_uring_setup+0x10/0x10
[ 1780.990914]  __x64_sys_io_uring_setup+0xc4/0xf0
[ 1780.991269]  do_syscall_64+0x3f/0x90
[ 1780.991618]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1780.992094] RIP: 0033:0x7f28ce17db19
[ 1780.992348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1780.993659] RSP: 002b:00007f28cb6d2108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[ 1780.994211] RAX: ffffffffffffffda RBX: 00007f28ce291020 RCX: 00007f28ce17db19
[ 1780.994772] RDX: 0000000020ffe000 RSI: 0000000020000200 RDI: 0000000000000153
[ 1780.995417] RBP: 0000000020000200 R08: 00000000200002c0 R09: 00000000200002c0
[ 1780.995924] R10: 0000000020000280 R11: 0000000000000202 R12: 00000000200002c0
[ 1780.996438] R13: 0000000020ffe000 R14: 0000000020000280 R15: 0000000020ffb000
[ 1780.996960]  </TASK>
[ 1780.997174] memory: usage 307200kB, limit 307200kB, failcnt 32130
[ 1780.997609] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1780.998018] Memory cgroup stats for /syz4:
[ 1780.999208] anon 2465792
[ 1780.999855] file 4096
[ 1781.000068] kernel 312102912
[ 1781.000403] kernel_stack 851968
[ 1781.000662] pagetables 2867200
[ 1781.000887] sec_pagetables 0
[ 1781.001102] percpu 3008
[ 1781.001281] sock 0
[ 1781.001434] vmalloc 0
[ 1781.001630] shmem 0
[ 1781.001790] file_mapped 0
[ 1781.001995] file_dirty 0
[ 1781.002202] file_writeback 0
[ 1781.002423] swapcached 0
[ 1781.002632] inactive_anon 2465792
[ 1781.002898] active_anon 0
[ 1781.003100] inactive_file 4096
[ 1781.003335] active_file 0
[ 1781.003552] unevictable 0
[ 1781.003761] slab_reclaimable 439768
[ 1781.004028] slab_unreclaimable 1493944
[ 1781.004312] slab 1933712
[ 1781.004512] workingset_refault_anon 0
[ 1781.004787] workingset_refault_file 7494
[ 1781.005091] workingset_activate_anon 0
[ 1781.005368] workingset_activate_file 787
[ 1781.005673] workingset_restore_anon 0
[ 1781.005950] workingset_restore_file 215
[ 1781.006238] workingset_nodereclaim 0
[ 1781.006519] pgscan 74009
[ 1781.006714] pgsteal 7554
[ 1781.006913] pgscan_kswapd 4621
[ 1781.007148] pgscan_direct 69388
[ 1781.007386] pgscan_khugepaged 0
[ 1781.007642] pgsteal_kswapd 416
[ 1781.007874] pgsteal_direct 7138
[ 1781.008106] pgsteal_khugepaged 0
[ 1781.008341] pgfault 11643
[ 1781.008544] pgmajfault 225
[ 1781.008738] pgrefill 10255
[ 1781.008941] pgactivate 9445
[ 1781.009136] pgdeactivate 10252
[ 1781.009353] pglazyfree 0
[ 1781.009552] pglazyfreed 0
[ 1781.009736] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=14443,uid=0
[ 1781.010726] Memory cgroup out of memory: Killed process 14443 (syz-executor.4) total-vm:93544kB, anon-rss:296kB, file-rss:35456kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
01:42:56 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:42:56 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:42:56 executing program 7:
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:42:56 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:42:56 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r4 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r4, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r6=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000880)={r6, 0x3, r3, 0x0, 0x80000})

01:43:00 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

[ 1787.336533] syz-executor.4 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=1000
[ 1787.337489] CPU: 0 PID: 14886 Comm: syz-executor.4 Not tainted 6.5.0-rc3-next-20230725 #1
[ 1787.338106] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1787.338627] Call Trace:
[ 1787.338810]  <TASK>
[ 1787.338972]  dump_stack_lvl+0xc1/0xf0
[ 1787.339242]  dump_header+0x10a/0xd50
[ 1787.339510]  oom_kill_process+0x25d/0x640
[ 1787.339801]  out_of_memory+0x346/0x1640
[ 1787.340082]  ? find_held_lock+0x2c/0x110
[ 1787.340369]  ? __pfx_out_of_memory+0x10/0x10
[ 1787.340679]  ? rcu_read_unlock+0x9/0x60
[ 1787.340969]  ? lock_release+0x1e3/0x680
[ 1787.341249]  mem_cgroup_out_of_memory+0x1e9/0x260
[ 1787.341579]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[ 1787.341952]  ? mem_cgroup_iter+0x291/0x710
[ 1787.342241]  try_charge_memcg+0xec7/0x12f0
[ 1787.342530]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1787.342840]  ? __pfx_lock_release+0x10/0x10
[ 1787.343132]  ? lock_release+0x1e3/0x680
[ 1787.343401]  ? __pfx_lock_release+0x10/0x10
[ 1787.343703]  __memcg_kmem_charge_page+0x167/0x3d0
[ 1787.344033]  __alloc_pages+0x1f3/0x480
[ 1787.344313]  ? __pfx_lock_release+0x10/0x10
[ 1787.344603]  ? __pfx___alloc_pages+0x10/0x10
[ 1787.344916]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1787.345258]  copy_process+0x456/0x7320
[ 1787.345534]  ? schedule+0xdb/0x1a0
[ 1787.345794]  ? futex_unqueue+0xb7/0x120
[ 1787.346078]  ? futex_wait+0x503/0x690
[ 1787.346348]  ? __pfx_copy_process+0x10/0x10
[ 1787.346647]  ? wake_up_q+0x9e/0x140
[ 1787.346911]  ? do_raw_spin_unlock+0x53/0x220
[ 1787.347243]  kernel_clone+0xeb/0x810
[ 1787.347519]  ? __pfx_kernel_clone+0x10/0x10
[ 1787.347838]  ? do_futex+0x13a/0x380
[ 1787.348090]  ? __pfx_do_futex+0x10/0x10
[ 1787.348369]  ? __pfx_lock_release+0x10/0x10
[ 1787.348683]  ? __pfx___schedule+0x10/0x10
[ 1787.348998]  __do_sys_fork+0x80/0xc0
[ 1787.349277]  ? __pfx___do_sys_fork+0x10/0x10
[ 1787.349599]  ? __pfx_restore_fpregs_from_fpstate+0x10/0x10
[ 1787.350006]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1787.350369]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1787.350714]  ? syscall_enter_from_user_mode+0x21/0x50
[ 1787.351083]  do_syscall_64+0x3f/0x90
[ 1787.351341]  entry_SYSCALL_64_after_hwframe+0x6e/0xd8
[ 1787.351711] RIP: 0033:0x7f28ce17db19
[ 1787.351961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1787.353185] RSP: 002b:00007f28cb6f3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1787.353711] RAX: ffffffffffffffda RBX: 00007f28ce290f60 RCX: 00007f28ce17db19
[ 1787.354195] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1787.354658] RBP: 00007f28ce1d7f6d R08: 0000000000000000 R09: 0000000000000000
[ 1787.355147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1787.355641] R13: 00007ffe67afb76f R14: 00007f28cb6f3300 R15: 0000000000022000
[ 1787.356150]  </TASK>
[ 1787.356437] memory: usage 307172kB, limit 307200kB, failcnt 39397
[ 1787.357045] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1787.357624] Memory cgroup stats for /syz4:
[ 1787.357732] anon 2461696
[ 1787.358339] file 8192
[ 1787.358634] kernel 312074240
[ 1787.358863] kernel_stack 819200
[ 1787.359207] pagetables 2867200
[ 1787.359564] sec_pagetables 0
[ 1787.359822] percpu 3008
[ 1787.360084] sock 0
[ 1787.360316] vmalloc 0
[ 1787.360513] shmem 0
[ 1787.360792] file_mapped 0
[ 1787.361049] file_dirty 0
[ 1787.361311] file_writeback 0
[ 1787.361608] swapcached 0
[ 1787.361858] inactive_anon 2461696
[ 1787.362143] active_anon 0
[ 1787.362404] inactive_file 8192
[ 1787.362681] active_file 0
[ 1787.362963] unevictable 0
[ 1787.363218] slab_reclaimable 443152
[ 1787.363574] slab_unreclaimable 1495008
[ 1787.363911] slab 1938160
[ 1787.364179] workingset_refault_anon 0
[ 1787.364537] workingset_refault_file 12245
[ 1787.364858] workingset_activate_anon 0
[ 1787.365262] workingset_activate_file 1099
[ 1787.365647] workingset_restore_anon 0
[ 1787.365979] workingset_restore_file 265
[ 1787.366320] workingset_nodereclaim 0
[ 1787.366598] pgscan 123470
[ 1787.366848] pgsteal 12304
[ 1787.367127] pgscan_kswapd 8277
[ 1787.367394] pgscan_direct 115193
[ 1787.367704] pgscan_khugepaged 0
[ 1787.367936] pgsteal_kswapd 1023
[ 1787.368282] pgsteal_direct 11281
[ 1787.368543] pgsteal_khugepaged 0
[ 1787.368767] pgfault 11934
[ 1787.369031] pgmajfault 375
[ 1787.369322] pgrefill 16360
[ 1787.369540] pgactivate 15245
[ 1787.369772] pgdeactivate 16357
[ 1787.370126] pglazyfree 0
[ 1787.370310] pglazyfreed 0
[ 1787.370526] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz-executor.4,pid=14885,uid=0
[ 1787.371601] Memory cgroup out of memory: Killed process 14885 (syz-executor.4) total-vm:93412kB, anon-rss:296kB, file-rss:35584kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
[ 1826.229625] kthreadd invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=0
[ 1826.231093] CPU: 0 PID: 2 Comm: kthreadd Not tainted 6.5.0-rc3-next-20230725 #1
[ 1826.232000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1826.232991] Call Trace:
[ 1826.233318]  <TASK>
[ 1826.233624]  dump_stack_lvl+0xc1/0xf0
[ 1826.234131]  dump_header+0x10a/0xd50
[ 1826.234638]  oom_kill_process+0x25d/0x640
[ 1826.235184]  out_of_memory+0x346/0x1640
[ 1826.235715]  ? __pfx_out_of_memory+0x10/0x10
[ 1826.236300]  __alloc_pages_slowpath.constprop.0+0x1674/0x1ed0
[ 1826.237059]  ? __pfx_lock_release+0x10/0x10
[ 1826.237627]  ? __pfx___alloc_pages_slowpath.constprop.0+0x10/0x10
[ 1826.238417]  ? prepare_alloc_pages+0x377/0x500
[ 1826.239002]  ? kmem_cache_alloc_node+0x23d/0x3b0
[ 1826.239612]  __alloc_pages+0x3f3/0x480
[ 1826.240126]  ? __pfx___alloc_pages+0x10/0x10
[ 1826.240706]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1826.241332]  copy_process+0x456/0x7320
[ 1826.241871]  ? __pfx_mark_lock.part.0+0x10/0x10
[ 1826.242462]  ? __pfx___lock_acquire+0x10/0x10
[ 1826.243041]  ? __pfx_copy_process+0x10/0x10
[ 1826.243603]  ? find_held_lock+0x2c/0x110
[ 1826.244137]  ? __lock_acquire+0x19b1/0x6340
[ 1826.244688]  kernel_clone+0xeb/0x810
[ 1826.245186]  ? __pfx_kernel_clone+0x10/0x10
[ 1826.245747]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1826.246401]  ? __pfx___lock_acquire+0x10/0x10
[ 1826.246969]  ? finish_task_switch.isra.0+0x203/0x830
[ 1826.247629]  ? __switch_to+0x5c6/0xeb0
[ 1826.248139]  ? __schedule+0x9b1/0x2b00
[ 1826.248667]  ? __pfx_kthread+0x10/0x10
[ 1826.249169]  kernel_thread+0xc0/0x100
[ 1826.249692]  ? __pfx_kernel_thread+0x10/0x10
[ 1826.250265]  ? kthreadd+0x433/0x730
[ 1826.250746]  ? __pfx_kthread+0x10/0x10
[ 1826.251263]  kthreadd+0x4a2/0x730
[ 1826.251718]  ? __pfx_kthreadd+0x10/0x10
[ 1826.252240]  ret_from_fork+0x2f/0x70
[ 1826.252729]  ? __pfx_kthreadd+0x10/0x10
[ 1826.253235]  ret_from_fork_asm+0x1b/0x30
[ 1826.253794]  </TASK>
[ 1826.254187] Mem-Info:
[ 1826.254526] active_anon:4621 inactive_anon:19024 isolated_anon:0
[ 1826.254526]  active_file:39 inactive_file:11 isolated_file:0
[ 1826.254526]  unevictable:0 dirty:0 writeback:0
[ 1826.254526]  slab_reclaimable:7954 slab_unreclaimable:63353
[ 1826.254526]  mapped:69634 shmem:112 pagetables:5813
[ 1826.254526]  sec_pagetables:0 bounce:0
[ 1826.254526]  kernel_misc_reclaimable:0
[ 1826.254526]  free:4482 free_pcp:0 free_cma:0
[ 1826.259086] Node 0 active_anon:18484kB inactive_anon:76096kB active_file:156kB inactive_file:44kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:0kB shmem:448kB writeback_tmp:0kB kernel_stack:9376kB pagetables:23252kB sec_pagetables:0kB all_unreclaimable? no
[ 1826.262264] Node 0 DMA free:6464kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB active_anon:0kB inactive_anon:96kB active_file:8kB inactive_file:28kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1826.265360] lowmem_reserve[]: 0 1606 1606 1606
[ 1826.266027] Node 0 DMA32 free:11464kB boost:0kB min:5104kB low:6748kB high:8392kB reserved_highatomic:16384KB active_anon:18484kB inactive_anon:76000kB active_file:232kB inactive_file:0kB unevictable:0kB writepending:0kB present:2080640kB managed:1655352kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1826.269357] lowmem_reserve[]: 0 0 0 0
[ 1826.269933] Node 0 DMA: 4*4kB (UE) 8*8kB (UM) 3*16kB (UM) 4*32kB (UME) 5*64kB (UE) 4*128kB (UME) 3*256kB (UE) 3*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 6464kB
[ 1826.271980] Node 0 DMA32: 826*4kB (UME) 282*8kB (UME) 197*16kB (UMH) 84*32kB (UM) 1*64kB (U) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 11464kB
[ 1826.273892] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1826.274943] 149 total pagecache pages
[ 1826.275416] 0 pages in swap cache
[ 1826.275876] Free swap  = 0kB
[ 1826.276274] Total swap = 0kB
[ 1826.276687] 524158 pages RAM
[ 1826.277083] 0 pages HighMem/MovableOnly
[ 1826.277601] 106480 pages reserved
[ 1826.278041] Unreclaimable slab info:
[ 1826.278682] Name                      Used          Total
[ 1826.279394] pid_2                    147KB        251KB
[ 1826.280081] fib6_nodes                28KB         28KB
[ 1826.280768] ip6_dst_cache             33KB         33KB
[ 1826.281444] RAWv6                    123KB        123KB
[ 1826.282133] UDPv6                     64KB         64KB
[ 1826.282818] TCPv6                     62KB         62KB
[ 1826.283512] scsi_sense_cache           8KB          8KB
[ 1826.284176] virtio_scsi_cmd           16KB         16KB
[ 1826.284860] bio-120                    7KB          7KB
[ 1826.285568] mqueue_inode_cache         60KB         60KB
[ 1826.286244] nfs_commit_data           15KB         15KB
[ 1826.286910] nfs_write_data            47KB         47KB
[ 1826.287612] jbd2_inode                 7KB          7KB
[ 1826.288274] ext4_system_zone           3KB          3KB
[ 1826.288964] ext4_io_end_vec            7KB          7KB
[ 1826.289663] pid_namespace              7KB          7KB
[ 1826.290331] rpc_buffers               31KB         31KB
[ 1826.291011] rpc_tasks                  3KB          3KB
[ 1826.291689] UNIX-STREAM              204KB        384KB
[ 1826.292352] UNIX                     782KB        800KB
[ 1826.293058] tcp_bind2_bucket           8KB          8KB
[ 1826.293766] tcp_bind_bucket            8KB          8KB
[ 1826.294442] ip_fib_trie                8KB          8KB
[ 1826.295128] ip_fib_alias              11KB         11KB
[ 1826.295819] ip_dst_cache               8KB          8KB
[ 1826.296503] RAW                       30KB         30KB
[ 1826.297161] UDP                      125KB        215KB
[ 1826.297864] request_sock_TCP           7KB          7KB
[ 1826.298553] TCP                       60KB         60KB
[ 1826.299220] hugetlbfs_inode_cache         31KB         31KB
[ 1826.299954] bio-248                   11KB         11KB
[ 1826.300636] ep_head                    8KB          8KB
[ 1826.301566] eventpoll_pwq             23KB         23KB
[ 1826.302233] eventpoll_epi             43KB         43KB
[ 1826.302940] inotify_inode_mark         47KB         54KB
[ 1826.303636] sgpool-128                59KB         59KB
[ 1826.304297] sgpool-64                 63KB         63KB
[ 1826.304989] sgpool-32                315KB        472KB
[ 1826.305687] sgpool-16                268KB        322KB
[ 1826.306343] sgpool-8                 219KB        292KB
[ 1826.307030] request_queue             63KB         63KB
[ 1826.307725] blkdev_ioc                 8KB          8KB
[ 1826.308387] bio-184                   44KB         44KB
[ 1826.309081] biovec-max               314KB        395KB
[ 1826.309781] biovec-64                393KB        472KB
[ 1826.310447] biovec-16                206KB        225KB
[ 1826.312433] uid_cache                  7KB          7KB
[ 1826.313310] dmaengine-unmap-2          4KB          4KB
[ 1826.314024] audit_buffer               7KB          7KB
[ 1826.314716] skbuff_small_head       8688KB       8709KB
[ 1826.315375] skbuff_fclone_cache        127KB        127KB
[ 1826.316090] skbuff_head_cache       3631KB       3633KB
[ 1826.316778] file_lock_cache           43KB         43KB
[ 1826.317448] file_lock_ctx              7KB          7KB
[ 1826.318140] fsnotify_mark_connector         20KB         20KB
[ 1826.318891] taskstats                 54KB         54KB
[ 1826.319586] proc_dir_entry           307KB        307KB
[ 1826.320239] seq_file                  52KB         52KB
[ 1826.320929] sigqueue                  55KB         55KB
[ 1826.321639] shmem_inode_cache       1314KB       1365KB
[ 1826.322303] kernfs_iattrs_cache        257KB        265KB
[ 1826.323008] kernfs_node_cache       5145KB       5153KB
[ 1826.323694] mnt_cache                149KB        149KB
[ 1826.324420] filp                     667KB       1852KB
[ 1826.325108] names_cache              191KB        361KB
[ 1826.325804] net_namespace             82KB         82KB
[ 1826.326465] hashtab_node             274KB        274KB
[ 1826.327162] ebitmap_node            1149KB       1149KB
[ 1826.327855] avtab_node              4976KB       4976KB
[ 1826.328544] avc_node                  35KB         35KB
[ 1826.329243] lsm_inode_cache         2811KB       3229KB
[ 1826.329973] lsm_file_cache            47KB        148KB
[ 1826.330670] key_jar                   23KB         23KB
[ 1826.331333] uts_namespace             15KB         15KB
[ 1826.332000] nsproxy                    7KB          7KB
[ 1826.332699] vma_lock                1977KB       2092KB
[ 1826.333379] vm_area_struct          2099KB       2206KB
[ 1826.334077] fs_cache                  64KB         68KB
[ 1826.334765] files_cache              255KB        255KB
[ 1826.335432] signal_cache             497KB        546KB
[ 1826.336117] sighand_cache            654KB        691KB
[ 1826.336826] task_struct             2132KB       3215KB
[ 1826.337530] cred_jar                 111KB        140KB
[ 1826.338199] anon_vma_chain           642KB        669KB
[ 1826.338886] anon_vma                1066KB       1079KB
[ 1826.339574] pid                       52KB         63KB
[ 1826.340239] Acpi-Operand              78KB        114KB
[ 1826.340926] Acpi-ParseExt             23KB         23KB
[ 1826.341633] Acpi-Parse                27KB         43KB
[ 1826.342297] Acpi-State                35KB         51KB
[ 1826.342991] Acpi-Namespace            24KB         24KB
[ 1826.343690] numa_policy                3KB          3KB
[ 1826.344359] perf_event                31KB         31KB
[ 1826.345050] trace_event_file         187KB        187KB
[ 1826.345744] ftrace_event_field        442KB        442KB
[ 1826.346412] pool_workqueue            47KB         47KB
[ 1826.347124] maple_node               544KB       1072KB
[ 1826.347817] task_group                16KB         16KB
[ 1826.348503] mm_struct                726KB        781KB
[ 1826.349173] vmap_area                 53KB         55KB
[ 1826.349894] page->ptl                551KB        594KB
[ 1826.350578] kmemleak_scan_area         25KB         31KB
[ 1826.351456] kmemleak_object       109719KB     111250KB
[ 1826.352142] kmalloc-cg-8k             64KB         64KB
[ 1826.352903] kmalloc-cg-4k           1816KB       2368KB
[ 1826.353650] kmalloc-cg-2k           2132KB       2304KB
[ 1826.354298] kmalloc-cg-1k            426KB        480KB
[ 1826.354969] kmalloc-cg-512           258KB        304KB
[ 1826.355646] kmalloc-cg-256            32KB         32KB
[ 1826.356303] kmalloc-cg-192            36KB         36KB
[ 1826.356964] kmalloc-cg-128            36KB         36KB
[ 1826.357663] kmalloc-cg-96             36KB         48KB
[ 1826.358320] kmalloc-cg-64             36KB         36KB
[ 1826.359001] kmalloc-cg-32             41KB         52KB
[ 1826.359675] kmalloc-cg-16              8KB          8KB
[ 1826.360320] kmalloc-cg-8              15KB         15KB
[ 1826.361007] kmalloc-8k              1664KB       1664KB
[ 1826.361709] kmalloc-4k              6440KB       7520KB
[ 1826.362369] kmalloc-2k              2968KB       3616KB
[ 1826.363036] kmalloc-1k             24230KB      24320KB
[ 1826.363716] kmalloc-512             1570KB       1696KB
[ 1826.364374] kmalloc-256              971KB       1104KB
[ 1826.365060] kmalloc-192              599KB        780KB
[ 1826.365758] kmalloc-128              309KB        340KB
[ 1826.366419] kmalloc-96              1161KB       1172KB
[ 1826.367107] kmalloc-64               705KB        796KB
[ 1826.367795] kmalloc-32               506KB        576KB
[ 1826.368447] kmalloc-16               319KB        328KB
[ 1826.369125] kmalloc-8                250KB        258KB
[ 1826.369828] kmem_cache_node           51KB         51KB
[ 1826.370496] kmem_cache                78KB         78KB
[ 1826.371143] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz5,task=syz-executor.5,pid=13995,uid=0
[ 1826.373570] Out of memory: Killed process 13995 (syz-executor.5) total-vm:93940kB, anon-rss:324kB, file-rss:34944kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1826.713601] kthreadd invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=0
[ 1826.714918] CPU: 0 PID: 2 Comm: kthreadd Not tainted 6.5.0-rc3-next-20230725 #1
[ 1826.715830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1826.716813] Call Trace:
[ 1826.717134]  <TASK>
[ 1826.717448]  dump_stack_lvl+0xc1/0xf0
[ 1826.717948]  dump_header+0x10a/0xd50
[ 1826.718445]  oom_kill_process+0x25d/0x640
[ 1826.718981]  out_of_memory+0x346/0x1640
[ 1826.719504]  ? __pfx_out_of_memory+0x10/0x10
[ 1826.720088]  __alloc_pages_slowpath.constprop.0+0x1674/0x1ed0
[ 1826.720851]  ? __pfx_lock_release+0x10/0x10
[ 1826.721389]  ? __pfx___alloc_pages_slowpath.constprop.0+0x10/0x10
[ 1826.722206]  ? prepare_alloc_pages+0x377/0x500
[ 1826.722790]  ? kmem_cache_alloc_node+0x23d/0x3b0
[ 1826.723402]  __alloc_pages+0x3f3/0x480
[ 1826.723912]  ? __pfx___alloc_pages+0x10/0x10
[ 1826.724494]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1826.725107]  copy_process+0x456/0x7320
[ 1826.725630]  ? __pfx_mark_lock.part.0+0x10/0x10
[ 1826.726232]  ? __pfx___lock_acquire+0x10/0x10
[ 1826.726805]  ? __pfx_copy_process+0x10/0x10
[ 1826.727366]  ? find_held_lock+0x2c/0x110
[ 1826.727907]  ? __lock_acquire+0x19b1/0x6340
[ 1826.728467]  kernel_clone+0xeb/0x810
[ 1826.728959]  ? __pfx_kernel_clone+0x10/0x10
[ 1826.729538]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1826.730198]  ? __pfx___lock_acquire+0x10/0x10
[ 1826.730764]  ? finish_task_switch.isra.0+0x203/0x830
[ 1826.731414]  ? __switch_to+0x5c6/0xeb0
[ 1826.731913]  ? __schedule+0x9b1/0x2b00
[ 1826.732436]  ? __pfx_kthread+0x10/0x10
[ 1826.732933]  kernel_thread+0xc0/0x100
[ 1826.733438]  ? __pfx_kernel_thread+0x10/0x10
[ 1826.734006]  ? kthreadd+0x433/0x730
[ 1826.734494]  ? __pfx_kthread+0x10/0x10
[ 1826.734997]  kthreadd+0x4a2/0x730
[ 1826.735450]  ? __pfx_kthreadd+0x10/0x10
[ 1826.735958]  ret_from_fork+0x2f/0x70
[ 1826.736434]  ? __pfx_kthreadd+0x10/0x10
[ 1826.736944]  ret_from_fork_asm+0x1b/0x30
[ 1826.737508]  </TASK>
[ 1826.738997] Mem-Info:
[ 1826.739317] active_anon:4621 inactive_anon:19003 isolated_anon:0
[ 1826.739317]  active_file:27 inactive_file:32 isolated_file:0
[ 1826.739317]  unevictable:0 dirty:0 writeback:0
[ 1826.739317]  slab_reclaimable:7954 slab_unreclaimable:63217
[ 1826.739317]  mapped:69634 shmem:112 pagetables:5792
[ 1826.739317]  sec_pagetables:0 bounce:0
[ 1826.739317]  kernel_misc_reclaimable:0
[ 1826.739317]  free:4501 free_pcp:209 free_cma:0
[ 1826.744006] Node 0 active_anon:18484kB inactive_anon:76012kB active_file:108kB inactive_file:40kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:0kB shmem:448kB writeback_tmp:0kB kernel_stack:9344kB pagetables:23168kB sec_pagetables:0kB all_unreclaimable? yes
[ 1826.747113] Node 0 DMA free:6464kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB active_anon:0kB inactive_anon:96kB active_file:8kB inactive_file:8kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1826.750118] lowmem_reserve[]: 0 1606 1606 1606
[ 1826.750750] Node 0 DMA32 free:11540kB boost:0kB min:5104kB low:6748kB high:8392kB reserved_highatomic:16384KB active_anon:18484kB inactive_anon:76000kB active_file:108kB inactive_file:16kB unevictable:0kB writepending:0kB present:2080640kB managed:1655352kB mlocked:0kB bounce:0kB free_pcp:836kB local_pcp:404kB free_cma:0kB
[ 1826.754052] lowmem_reserve[]: 0 0 0 0
[ 1826.754599] Node 0 DMA: 5*4kB (UME) 8*8kB (UM) 3*16kB (UM) 4*32kB (UME) 5*64kB (UE) 4*128kB (UME) 3*256kB (UE) 3*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 6468kB
[ 1826.756602] Node 0 DMA32: 753*4kB (UMEH) 291*8kB (UMEH) 203*16kB (UMH) 85*32kB (UMH) 1*64kB (H) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 11372kB
[ 1826.758512] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1826.759536] 170 total pagecache pages
[ 1826.759992] 0 pages in swap cache
[ 1826.760414] Free swap  = 0kB
[ 1826.760816] Total swap = 0kB
[ 1826.761196] 524158 pages RAM
[ 1826.761609] 0 pages HighMem/MovableOnly
[ 1826.762095] 106480 pages reserved
[ 1826.762546] Unreclaimable slab info:
[ 1826.763005] Name                      Used          Total
[ 1826.763694] pid_2                    147KB        251KB
[ 1826.764356] fib6_nodes                28KB         28KB
[ 1826.765049] ip6_dst_cache             33KB         33KB
[ 1826.765741] RAWv6                    123KB        123KB
[ 1826.766382] UDPv6                     64KB         64KB
[ 1826.767051] TCPv6                     62KB         62KB
[ 1826.767720] scsi_sense_cache           8KB          8KB
[ 1826.768361] virtio_scsi_cmd           16KB         16KB
[ 1826.769029] bio-120                    7KB          7KB
[ 1826.769711] mqueue_inode_cache         60KB         60KB
[ 1826.770359] nfs_commit_data           15KB         15KB
[ 1826.771021] nfs_write_data            47KB         47KB
[ 1826.771691] jbd2_inode                 7KB          7KB
[ 1826.772330] ext4_system_zone           3KB          3KB
[ 1826.773001] ext4_io_end_vec            7KB          7KB
[ 1826.773696] pid_namespace              7KB          7KB
[ 1826.774354] rpc_buffers               31KB         31KB
[ 1826.775036] rpc_tasks                  3KB          3KB
[ 1826.775711] UNIX-STREAM              204KB        384KB
[ 1826.776357] UNIX                     782KB        800KB
[ 1826.777048] tcp_bind2_bucket           8KB          8KB
[ 1826.777737] tcp_bind_bucket            8KB          8KB
[ 1826.778387] ip_fib_trie                8KB          8KB
[ 1826.779061] ip_fib_alias              11KB         11KB
[ 1826.779739] ip_dst_cache               8KB          8KB
[ 1826.780399] RAW                       30KB         30KB
[ 1826.781079] UDP                      125KB        215KB
[ 1826.781784] request_sock_TCP           7KB          7KB
[ 1826.782436] TCP                       60KB         60KB
[ 1826.783109] hugetlbfs_inode_cache         31KB         31KB
[ 1826.783809] bio-248                   11KB         11KB
[ 1826.784452] ep_head                    8KB          8KB
[ 1826.785133] eventpoll_pwq             23KB         23KB
[ 1826.785817] eventpoll_epi             43KB         43KB
[ 1826.786459] inotify_inode_mark         47KB         54KB
[ 1826.787160] sgpool-128                59KB         59KB
[ 1826.787898] sgpool-64                 63KB         63KB
[ 1826.788630] sgpool-32                265KB        346KB
[ 1826.789274] sgpool-16                200KB        247KB
[ 1826.789969] sgpool-8                 210KB        262KB
[ 1826.790640] request_queue             63KB         63KB
[ 1826.791289] blkdev_ioc                 8KB          8KB
[ 1826.791965] bio-184                   44KB         44KB
[ 1826.792631] biovec-max               314KB        395KB
[ 1826.793274] biovec-64                327KB        393KB
[ 1826.793950] biovec-16                203KB        217KB
[ 1826.794622] uid_cache                  7KB          7KB
[ 1826.795272] dmaengine-unmap-2          4KB          4KB
[ 1826.795947] audit_buffer               7KB          7KB
[ 1826.796617] skbuff_small_head       8709KB       8709KB
[ 1826.797274] skbuff_fclone_cache        127KB        127KB
[ 1826.797970] skbuff_head_cache       3637KB       3637KB
[ 1826.798630] file_lock_cache           43KB         43KB
[ 1826.799277] file_lock_ctx              7KB          7KB
[ 1826.799956] fsnotify_mark_connector         20KB         20KB
[ 1826.800681] taskstats                 54KB         54KB
[ 1826.801333] proc_dir_entry           307KB        307KB
[ 1826.802023] seq_file                  52KB         52KB
[ 1826.802689] sigqueue                  55KB         55KB
[ 1826.803327] shmem_inode_cache       1314KB       1365KB
[ 1826.804001] kernfs_iattrs_cache        257KB        265KB
[ 1826.804696] kernfs_node_cache       5145KB       5153KB
[ 1826.805340] mnt_cache                149KB        149KB
[ 1826.806026] filp                     667KB       1852KB
[ 1826.806701] names_cache              119KB        242KB
[ 1826.807340] net_namespace             82KB         82KB
[ 1826.808011] hashtab_node             274KB        274KB
[ 1826.808692] ebitmap_node            1149KB       1149KB
[ 1826.809349] avtab_node              4976KB       4976KB
[ 1826.810045] avc_node                  35KB         35KB
[ 1826.810726] lsm_inode_cache         2809KB       3229KB
[ 1826.811374] lsm_file_cache            47KB        148KB
[ 1826.812036] key_jar                   23KB         23KB
[ 1826.812705] uts_namespace             15KB         15KB
[ 1826.813349] nsproxy                    7KB          7KB
[ 1826.814034] vma_lock                1977KB       2092KB
[ 1826.814723] vm_area_struct          2099KB       2206KB
[ 1826.815359] fs_cache                  64KB         68KB
[ 1826.816025] files_cache              255KB        255KB
[ 1826.816704] signal_cache             497KB        546KB
[ 1826.817345] sighand_cache            654KB        691KB
[ 1826.818060] task_struct             2132KB       3215KB
[ 1826.818739] cred_jar                 111KB        140KB
[ 1826.819378] anon_vma_chain           642KB        669KB
[ 1826.820036] anon_vma                1060KB       1079KB
[ 1826.820712] pid                       52KB         63KB
[ 1826.821360] Acpi-Operand              78KB        114KB
[ 1826.822036] Acpi-ParseExt             23KB         23KB
[ 1826.822715] Acpi-Parse                27KB         43KB
[ 1826.824673] Acpi-State                35KB         51KB
[ 1826.825340] Acpi-Namespace            24KB         24KB
[ 1826.826170] numa_policy                3KB          3KB
[ 1826.826847] perf_event                31KB         31KB
[ 1826.827523] trace_event_file         187KB        187KB
[ 1826.828169] ftrace_event_field        442KB        442KB
[ 1826.828847] pool_workqueue            47KB         47KB
[ 1826.829547] maple_node               544KB       1072KB
[ 1826.830201] task_group                16KB         16KB
[ 1826.830862] mm_struct                726KB        781KB
[ 1826.831538] vmap_area                 53KB         55KB
[ 1826.832191] page->ptl                551KB        594KB
[ 1826.832861] kmemleak_scan_area         25KB         31KB
[ 1826.833730] kmemleak_object       109568KB     111250KB
[ 1826.834376] kmalloc-cg-8k             64KB         64KB
[ 1826.835054] kmalloc-cg-4k           1816KB       2368KB
[ 1826.835724] kmalloc-cg-2k           2132KB       2304KB
[ 1826.836382] kmalloc-cg-1k            426KB        480KB
[ 1826.837050] kmalloc-cg-512           258KB        304KB
[ 1826.837728] kmalloc-cg-256            32KB         32KB
[ 1826.838363] kmalloc-cg-192            36KB         36KB
[ 1826.839030] kmalloc-cg-128            36KB         36KB
[ 1826.839698] kmalloc-cg-96             36KB         48KB
[ 1826.840341] kmalloc-cg-64             36KB         36KB
[ 1826.841006] kmalloc-cg-32             41KB         52KB
[ 1826.841701] kmalloc-cg-16              8KB          8KB
[ 1826.842341] kmalloc-cg-8              15KB         15KB
[ 1826.843016] kmalloc-8k              1664KB       1664KB
[ 1826.843687] kmalloc-4k              6352KB       7520KB
[ 1826.844352] kmalloc-2k              2968KB       3616KB
[ 1826.845015] kmalloc-1k             24416KB      24416KB
[ 1826.845697] kmalloc-512             1570KB       1696KB
[ 1826.846343] kmalloc-256              971KB       1104KB
[ 1826.847017] kmalloc-192              599KB        780KB
[ 1826.847695] kmalloc-128              309KB        340KB
[ 1826.848342] kmalloc-96              1161KB       1172KB
[ 1826.849016] kmalloc-64               705KB        796KB
[ 1826.849709] kmalloc-32               506KB        576KB
[ 1826.850362] kmalloc-16               319KB        328KB
[ 1826.851023] kmalloc-8                250KB        258KB
[ 1826.851692] kmem_cache_node           51KB         51KB
[ 1826.852338] kmem_cache                78KB         78KB
[ 1826.853022] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz2,task=syz-executor.2,pid=11459,uid=0
[ 1826.854734] Out of memory: Killed process 11459 (syz-executor.2) total-vm:93808kB, anon-rss:320kB, file-rss:34944kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[ 1827.637288] kthreadd invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=0
[ 1827.638282] CPU: 0 PID: 2 Comm: kthreadd Not tainted 6.5.0-rc3-next-20230725 #1
[ 1827.638902] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1827.639590] Call Trace:
[ 1827.639812]  <TASK>
[ 1827.640015]  dump_stack_lvl+0xc1/0xf0
[ 1827.640351]  dump_header+0x10a/0xd50
[ 1827.640690]  oom_kill_process+0x25d/0x640
[ 1827.641100]  out_of_memory+0x346/0x1640
[ 1827.641470]  ? __pfx_out_of_memory+0x10/0x10
[ 1827.641874]  __alloc_pages_slowpath.constprop.0+0x1674/0x1ed0
[ 1827.642389]  ? __pfx_lock_release+0x10/0x10
[ 1827.642763]  ? __pfx___alloc_pages_slowpath.constprop.0+0x10/0x10
[ 1827.643300]  ? prepare_alloc_pages+0x377/0x500
[ 1827.643700]  ? kmem_cache_alloc_node+0x23d/0x3b0
[ 1827.644117]  __alloc_pages+0x3f3/0x480
[ 1827.644457]  ? __pfx___alloc_pages+0x10/0x10
[ 1827.644857]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1827.645276]  copy_process+0x456/0x7320
[ 1827.645636]  ? __pfx_mark_lock.part.0+0x10/0x10
[ 1827.646052]  ? __pfx___lock_acquire+0x10/0x10
[ 1827.646451]  ? __pfx_copy_process+0x10/0x10
[ 1827.646844]  ? find_held_lock+0x2c/0x110
[ 1827.647223]  ? __lock_acquire+0x19b1/0x6340
[ 1827.647605]  kernel_clone+0xeb/0x810
[ 1827.647944]  ? __pfx_kernel_clone+0x10/0x10
[ 1827.648326]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1827.648771]  ? __pfx___lock_acquire+0x10/0x10
[ 1827.649169]  ? finish_task_switch.isra.0+0x203/0x830
[ 1827.649630]  ? __switch_to+0x5c6/0xeb0
[ 1827.649976]  ? __schedule+0x9b1/0x2b00
[ 1827.650334]  ? __pfx_kthread+0x10/0x10
[ 1827.650673]  kernel_thread+0xc0/0x100
[ 1827.651006]  ? __pfx_kernel_thread+0x10/0x10
[ 1827.651410]  ? kthreadd+0x433/0x730
[ 1827.651758]  ? __pfx_kthread+0x10/0x10
[ 1827.652111]  kthreadd+0x4a2/0x730
[ 1827.652423]  ? __pfx_kthreadd+0x10/0x10
[ 1827.652778]  ret_from_fork+0x2f/0x70
[ 1827.653108]  ? __pfx_kthreadd+0x10/0x10
[ 1827.653468]  ret_from_fork_asm+0x1b/0x30
[ 1827.653840]  </TASK>
[ 1827.654916] Mem-Info:
[ 1827.655141] active_anon:4621 inactive_anon:18965 isolated_anon:0
[ 1827.655141]  active_file:23 inactive_file:19 isolated_file:0
[ 1827.655141]  unevictable:0 dirty:0 writeback:0
[ 1827.655141]  slab_reclaimable:7938 slab_unreclaimable:63323
[ 1827.655141]  mapped:69634 shmem:112 pagetables:5755
[ 1827.655141]  sec_pagetables:0 bounce:0
[ 1827.655141]  kernel_misc_reclaimable:0
[ 1827.655141]  free:4605 free_pcp:172 free_cma:0
[ 1827.658307] Node 0 active_anon:18484kB inactive_anon:75860kB active_file:92kB inactive_file:76kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:0kB shmem:448kB writeback_tmp:0kB kernel_stack:9312kB pagetables:23020kB sec_pagetables:0kB all_unreclaimable? no
[ 1827.660596] Node 0 DMA free:6476kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB active_anon:0kB inactive_anon:96kB active_file:4kB inactive_file:12kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[ 1827.662694] lowmem_reserve[]: 0 1606 1606 1606
[ 1827.663107] Node 0 DMA32 free:11944kB boost:0kB min:5104kB low:6748kB high:8392kB reserved_highatomic:16384KB active_anon:18484kB inactive_anon:75764kB active_file:96kB inactive_file:0kB unevictable:0kB writepending:0kB present:2080640kB managed:1655352kB mlocked:0kB bounce:0kB free_pcp:680kB local_pcp:244kB free_cma:0kB
[ 1827.665424] lowmem_reserve[]: 0 0 0 0
[ 1827.665807] Node 0 DMA: 5*4kB (UME) 8*8kB (UM) 3*16kB (UM) 4*32kB (UME) 5*64kB (UE) 4*128kB (UME) 3*256kB (UE) 3*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 6468kB
[ 1827.667163] Node 0 DMA32: 807*4kB (UMEH) 296*8kB (UMEH) 201*16kB (UM) 79*32kB (M) 2*64kB (U) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 11468kB
[ 1827.668432] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1827.669169] 152 total pagecache pages
[ 1827.669517] 0 pages in swap cache
[ 1827.669805] Free swap  = 0kB
[ 1827.670066] Total swap = 0kB
[ 1827.670322] 524158 pages RAM
[ 1827.670610] 0 pages HighMem/MovableOnly
[ 1827.670946] 106480 pages reserved
[ 1827.671247] Unreclaimable slab info:
[ 1827.671567] Name                      Used          Total
[ 1827.672025] pid_2                    147KB        251KB
[ 1827.672453] fib6_nodes                28KB         28KB
[ 1827.672911] ip6_dst_cache             33KB         33KB
[ 1827.673344] RAWv6                    123KB        123KB
[ 1827.673822] UDPv6                     64KB         64KB
[ 1827.674248] TCPv6                     62KB         62KB
[ 1827.674700] scsi_sense_cache           8KB          8KB
[ 1827.675136] virtio_scsi_cmd           16KB         16KB
[ 1827.675601] bio-120                    7KB          7KB
[ 1827.676033] mqueue_inode_cache         60KB         60KB
[ 1827.676527] nfs_commit_data           15KB         15KB
[ 1827.677059] nfs_write_data            47KB         47KB
[ 1827.677524] jbd2_inode                 7KB          7KB
[ 1827.677958] ext4_system_zone           3KB          3KB
[ 1827.678396] ext4_io_end_vec            7KB          7KB
[ 1827.678869] pid_namespace              7KB          7KB
[ 1827.679306] rpc_buffers               31KB         31KB
[ 1827.679749] rpc_tasks                  3KB          3KB
[ 1827.680199] UNIX-STREAM              204KB        384KB
[ 1827.680644] UNIX                     782KB        800KB
[ 1827.681207] tcp_bind2_bucket           8KB          8KB
[ 1827.681694] tcp_bind_bucket            8KB          8KB
[ 1827.682125] ip_fib_trie                8KB          8KB
[ 1827.682577] ip_fib_alias              11KB         11KB
[ 1827.683006] ip_dst_cache               8KB          8KB
[ 1827.683436] RAW                       30KB         30KB
[ 1827.683888] UDP                      125KB        215KB
[ 1827.684323] request_sock_TCP           7KB          7KB
[ 1827.684781] TCP                       60KB         60KB
[ 1827.685214] hugetlbfs_inode_cache         31KB         31KB
[ 1827.685838] bio-248                   11KB         11KB
[ 1827.686277] ep_head                    8KB          8KB
[ 1827.686712] eventpoll_pwq             23KB         23KB
[ 1827.687149] eventpoll_epi             43KB         43KB
[ 1827.687599] inotify_inode_mark         47KB         54KB
[ 1827.688057] sgpool-128                59KB         59KB
[ 1827.688503] sgpool-64                 63KB         63KB
[ 1827.688940] sgpool-32                129KB        283KB
[ 1827.689369] sgpool-16                197KB        240KB
[ 1827.689828] sgpool-8                 190KB        258KB
[ 1827.690263] request_queue             63KB         63KB
[ 1827.690703] blkdev_ioc                 8KB          8KB
[ 1827.691163] bio-184                   44KB         44KB
[ 1827.691604] biovec-max               314KB        395KB
[ 1827.692106] biovec-64                210KB        283KB
[ 1827.692601] biovec-16                173KB        187KB
[ 1827.693033] uid_cache                  7KB          7KB
[ 1827.693491] dmaengine-unmap-2          4KB          4KB
[ 1827.693941] audit_buffer               7KB          7KB
[ 1827.694377] skbuff_small_head       8835KB       8835KB
[ 1827.694825] skbuff_fclone_cache        127KB        127KB
[ 1827.695289] skbuff_head_cache       3697KB       3697KB
[ 1827.695726] file_lock_cache           43KB         43KB
[ 1827.696159] file_lock_ctx              7KB          7KB
[ 1827.696599] fsnotify_mark_connector         20KB         20KB
[ 1827.697098] taskstats                 54KB         54KB
[ 1827.697546] proc_dir_entry           307KB        307KB
[ 1827.697984] seq_file                  52KB         52KB
[ 1827.698401] sigqueue                  55KB         55KB
[ 1827.698868] shmem_inode_cache       1314KB       1365KB
[ 1827.699302] kernfs_iattrs_cache        257KB        265KB
[ 1827.699768] kernfs_node_cache       5145KB       5153KB
[ 1827.700197] mnt_cache                149KB        149KB
[ 1827.700655] filp                     667KB       1852KB
[ 1827.701089] names_cache              119KB        242KB
[ 1827.701548] net_namespace             82KB         82KB
[ 1827.701979] hashtab_node             274KB        274KB
[ 1827.702423] ebitmap_node            1149KB       1149KB
[ 1827.702874] avtab_node              4976KB       4976KB
[ 1827.703308] avc_node                  35KB         35KB
[ 1827.703754] lsm_inode_cache         2809KB       3229KB
[ 1827.704179] lsm_file_cache            47KB        148KB
[ 1827.704629] key_jar                   23KB         23KB
[ 1827.705054] uts_namespace             15KB         15KB
[ 1827.705505] nsproxy                    7KB          7KB
[ 1827.706060] vma_lock                1977KB       2092KB
[ 1827.706514] vm_area_struct          2099KB       2206KB
[ 1827.706934] fs_cache                  64KB         68KB
[ 1827.707362] files_cache              255KB        255KB
[ 1827.707799] signal_cache             497KB        546KB
[ 1827.708230] sighand_cache            654KB        691KB
[ 1827.708674] task_struct             2132KB       3215KB
[ 1827.709113] cred_jar                 111KB        140KB
[ 1827.709563] anon_vma_chain           642KB        669KB
[ 1827.709994] anon_vma                1060KB       1079KB
[ 1827.710562] pid                       52KB         63KB
[ 1827.710994] Acpi-Operand              78KB        114KB
[ 1827.711413] Acpi-ParseExt             23KB         23KB
[ 1827.711873] Acpi-Parse                27KB         43KB
[ 1827.712299] Acpi-State                35KB         51KB
[ 1827.712742] Acpi-Namespace            24KB         24KB
[ 1827.713161] numa_policy                3KB          3KB
[ 1827.713632] perf_event                31KB         31KB
[ 1827.714058] trace_event_file         187KB        187KB
[ 1827.714495] ftrace_event_field        442KB        442KB
[ 1827.714920] pool_workqueue            47KB         47KB
[ 1827.715337] maple_node               544KB       1072KB
[ 1827.715773] task_group                16KB         16KB
[ 1827.716195] mm_struct                726KB        781KB
[ 1827.716645] vmap_area                 53KB         55KB
[ 1827.717070] page->ptl                551KB        594KB
[ 1827.717514] kmemleak_scan_area         25KB         31KB
[ 1827.718106] kmemleak_object       109500KB     111250KB
[ 1827.718537] kmalloc-cg-8k             64KB         64KB
[ 1827.718959] kmalloc-cg-4k           1816KB       2368KB
[ 1827.719372] kmalloc-cg-2k           2132KB       2304KB
[ 1827.719827] kmalloc-cg-1k            426KB        480KB
[ 1827.720244] kmalloc-cg-512           258KB        304KB
[ 1827.720690] kmalloc-cg-256            32KB         32KB
[ 1827.721112] kmalloc-cg-192            36KB         36KB
[ 1827.721574] kmalloc-cg-128            36KB         36KB
[ 1827.721990] kmalloc-cg-96             36KB         48KB
[ 1827.722412] kmalloc-cg-64             36KB         36KB
[ 1827.722841] kmalloc-cg-32             41KB         52KB
[ 1827.723266] kmalloc-cg-16              8KB          8KB
[ 1827.723695] kmalloc-cg-8              15KB         15KB
[ 1827.724128] kmalloc-8k              1664KB       1664KB
[ 1827.724562] kmalloc-4k              6352KB       7520KB
[ 1827.724995] kmalloc-2k              2968KB       3616KB
[ 1827.725406] kmalloc-1k             24800KB      24800KB
[ 1827.725848] kmalloc-512             1570KB       1696KB
[ 1827.726272] kmalloc-256              967KB       1096KB
[ 1827.726711] kmalloc-192              599KB        780KB
[ 1827.727142] kmalloc-128              309KB        340KB
[ 1827.727577] kmalloc-96              1172KB       1172KB
[ 1827.728003] kmalloc-64               705KB        796KB
[ 1827.728417] kmalloc-32               506KB        576KB
[ 1827.728862] kmalloc-16               319KB        328KB
[ 1827.729275] kmalloc-8                250KB        258KB
[ 1827.729746] kmem_cache_node           51KB         51KB
[ 1827.730156] kmem_cache                78KB         78KB
[ 1827.730587] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz5,task=syz-executor.5,pid=14449,uid=0
[ 1827.731684] Out of memory: Killed process 14449 (syz-executor.5) total-vm:93676kB, anon-rss:312kB, file-rss:34944kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1828.271044] kthreadd invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=0
[ 1828.271757] CPU: 0 PID: 2 Comm: kthreadd Not tainted 6.5.0-rc3-next-20230725 #1
[ 1828.272240] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1828.272777] Call Trace:
[ 1828.272959]  <TASK>
[ 1828.273121]  dump_stack_lvl+0xc1/0xf0
[ 1828.273384]  dump_header+0x10a/0xd50
[ 1828.273686]  oom_kill_process+0x25d/0x640
[ 1828.273983]  out_of_memory+0x346/0x1640
[ 1828.274267]  ? __pfx_out_of_memory+0x10/0x10
[ 1828.274589]  __alloc_pages_slowpath.constprop.0+0x1674/0x1ed0
[ 1828.274993]  ? __pfx_lock_release+0x10/0x10
[ 1828.275300]  ? __pfx___alloc_pages_slowpath.constprop.0+0x10/0x10
[ 1828.275719]  ? prepare_alloc_pages+0x377/0x500
[ 1828.276036]  ? kmem_cache_alloc_node+0x23d/0x3b0
[ 1828.276369]  __alloc_pages+0x3f3/0x480
[ 1828.276650]  ? __pfx___alloc_pages+0x10/0x10
[ 1828.276968]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1828.277300]  copy_process+0x456/0x7320
[ 1828.277590]  ? __pfx_mark_lock.part.0+0x10/0x10
[ 1828.277910]  ? __pfx___lock_acquire+0x10/0x10
[ 1828.278225]  ? __pfx_copy_process+0x10/0x10
[ 1828.278525]  ? find_held_lock+0x2c/0x110
[ 1828.278810]  ? __lock_acquire+0x19b1/0x6340
[ 1828.279108]  kernel_clone+0xeb/0x810
[ 1828.279387]  ? __pfx_kernel_clone+0x10/0x10
[ 1828.279685]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1828.280050]  ? __pfx___lock_acquire+0x10/0x10
[ 1828.280368]  ? finish_task_switch.isra.0+0x203/0x830
[ 1828.280720]  ? __switch_to+0x5c6/0xeb0
[ 1828.281008]  ? __schedule+0x9b1/0x2b00
[ 1828.281312]  ? __pfx_kthread+0x10/0x10
[ 1828.281605]  kernel_thread+0xc0/0x100
[ 1828.281899]  ? __pfx_kernel_thread+0x10/0x10
[ 1828.282231]  ? kthreadd+0x433/0x730
[ 1828.282514]  ? __pfx_kthread+0x10/0x10
[ 1828.282815]  kthreadd+0x4a2/0x730
[ 1828.283096]  ? __pfx_kthreadd+0x10/0x10
[ 1828.283404]  ret_from_fork+0x2f/0x70
[ 1828.283684]  ? __pfx_kthreadd+0x10/0x10
[ 1828.283988]  ret_from_fork_asm+0x1b/0x30
[ 1828.284300]  </TASK>
[ 1828.284521] Mem-Info:
[ 1828.284704] active_anon:4621 inactive_anon:18938 isolated_anon:0
[ 1828.284704]  active_file:29 inactive_file:6 isolated_file:0
[ 1828.284704]  unevictable:0 dirty:0 writeback:0
[ 1828.284704]  slab_reclaimable:7934 slab_unreclaimable:63292
[ 1828.284704]  mapped:69634 shmem:112 pagetables:5726
[ 1828.284704]  sec_pagetables:0 bounce:0
[ 1828.284704]  kernel_misc_reclaimable:0
[ 1828.284704]  free:4779 free_pcp:0 free_cma:0
[ 1828.287345] Node 0 active_anon:18484kB inactive_anon:75752kB active_file:116kB inactive_file:24kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:0kB shmem:448kB writeback_tmp:0kB kernel_stack:9280kB pagetables:22904kB sec_pagetables:0kB all_unreclaimable? no
[ 1828.289191] Node 0 DMA free:6468kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB active_anon:0kB inactive_anon:96kB active_file:0kB inactive_file:28kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1828.290968] lowmem_reserve[]: 0 1606 1606 1606
[ 1828.291316] Node 0 DMA32 free:12648kB boost:0kB min:5104kB low:6748kB high:8392kB reserved_highatomic:14336KB active_anon:18484kB inactive_anon:75656kB active_file:52kB inactive_file:64kB unevictable:0kB writepending:0kB present:2080640kB managed:1655352kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1828.293266] lowmem_reserve[]: 0 0 0 0
[ 1828.293594] Node 0 DMA: 6*4kB (UME) 8*8kB (UM) 3*16kB (UM) 4*32kB (UME) 5*64kB (UE) 4*128kB (UME) 3*256kB (UE) 3*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 6472kB
[ 1828.294774] Node 0 DMA32: 956*4kB (UME) 311*8kB (UME) 206*16kB (UM) 90*32kB (UM) 1*64kB (U) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12552kB
[ 1828.295849] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1828.296458] 149 total pagecache pages
[ 1828.296743] 0 pages in swap cache
[ 1828.296988] Free swap  = 0kB
[ 1828.297217] Total swap = 0kB
[ 1828.297431] 524158 pages RAM
[ 1828.297681] 0 pages HighMem/MovableOnly
[ 1828.297959] 106480 pages reserved
[ 1828.298205] Unreclaimable slab info:
[ 1828.298489] Name                      Used          Total
[ 1828.298880] pid_2                    147KB        251KB
[ 1828.299271] fib6_nodes                28KB         28KB
[ 1828.299665] ip6_dst_cache             33KB         33KB
[ 1828.300047] RAWv6                    123KB        123KB
[ 1828.300430] UDPv6                     64KB         64KB
[ 1828.300828] TCPv6                     62KB         62KB
[ 1828.301208] scsi_sense_cache           8KB          8KB
[ 1828.301621] virtio_scsi_cmd           16KB         16KB
[ 1828.302013] bio-120                    7KB          7KB
[ 1828.302496] mqueue_inode_cache         60KB         60KB
[ 1828.302889] nfs_commit_data           15KB         15KB
[ 1828.303267] nfs_write_data            47KB         47KB
[ 1828.303663] jbd2_inode                 7KB          7KB
[ 1828.304046] ext4_system_zone           3KB          3KB
[ 1828.304430] ext4_io_end_vec            7KB          7KB
[ 1828.304836] pid_namespace              7KB          7KB
[ 1828.305221] rpc_buffers               31KB         31KB
[ 1828.305630] rpc_tasks                  3KB          3KB
[ 1828.306007] UNIX-STREAM              204KB        384KB
[ 1828.306385] UNIX                     782KB        800KB
[ 1828.306905] tcp_bind2_bucket           8KB          8KB
[ 1828.307284] tcp_bind_bucket            8KB          8KB
[ 1828.307684] ip_fib_trie                8KB          8KB
[ 1828.308069] ip_fib_alias              11KB         11KB
[ 1828.308451] ip_dst_cache               8KB          8KB
[ 1828.308851] RAW                       30KB         30KB
[ 1828.309237] UDP                      125KB        215KB
[ 1828.309648] request_sock_TCP           7KB          7KB
[ 1828.310038] TCP                       60KB         60KB
[ 1828.310416] hugetlbfs_inode_cache         31KB         31KB
[ 1828.310839] bio-248                   11KB         11KB
[ 1828.311219] ep_head                    8KB          8KB
[ 1828.311615] eventpoll_pwq             23KB         23KB
[ 1828.312002] eventpoll_epi             43KB         43KB
[ 1828.312415] inotify_inode_mark         47KB         54KB
[ 1828.312913] sgpool-128                59KB         59KB
[ 1828.313299] sgpool-64                 63KB         63KB
[ 1828.313702] sgpool-32                 65KB        126KB
[ 1828.314086] sgpool-16                195KB        232KB
[ 1828.314489] sgpool-8                 181KB        247KB
[ 1828.314868] request_queue             63KB         63KB
[ 1828.315245] blkdev_ioc                 8KB          8KB
[ 1828.315640] bio-184                   44KB         44KB
[ 1828.316022] biovec-max               314KB        395KB
[ 1828.316404] biovec-64                129KB        204KB
[ 1828.316801] biovec-16                169KB        183KB
[ 1828.317188] uid_cache                  7KB          7KB
[ 1828.317740] dmaengine-unmap-2          4KB          4KB
[ 1828.318126] audit_buffer               7KB          7KB
[ 1828.318525] skbuff_small_head       8883KB       8883KB
[ 1828.318904] skbuff_fclone_cache        127KB        127KB
[ 1828.319296] skbuff_head_cache       3705KB       3705KB
[ 1828.319700] file_lock_cache           43KB         43KB
[ 1828.320086] file_lock_ctx              7KB          7KB
[ 1828.320461] fsnotify_mark_connector         20KB         20KB
[ 1828.320896] taskstats                 54KB         54KB
[ 1828.321275] proc_dir_entry           307KB        307KB
[ 1828.321693] seq_file                  52KB         52KB
[ 1828.322075] sigqueue                  55KB         55KB
[ 1828.322449] shmem_inode_cache       1314KB       1365KB
[ 1828.322843] kernfs_iattrs_cache        257KB        265KB
[ 1828.323234] kernfs_node_cache       5145KB       5153KB
[ 1828.323626] mnt_cache                149KB        149KB
[ 1828.324020] filp                     667KB       1852KB
[ 1828.324399] names_cache              119KB        242KB
[ 1828.324790] net_namespace             82KB         82KB
[ 1828.325163] hashtab_node             274KB        274KB
[ 1828.325567] ebitmap_node            1149KB       1149KB
[ 1828.325960] avtab_node              4976KB       4976KB
[ 1828.326342] avc_node                  35KB         35KB
[ 1828.326739] lsm_inode_cache         2808KB       3229KB
[ 1828.327121] lsm_file_cache            47KB        148KB
[ 1828.327523] key_jar                   23KB         23KB
[ 1828.327900] uts_namespace             15KB         15KB
[ 1828.328273] nsproxy                    7KB          7KB
[ 1828.328669] vma_lock                1977KB       2092KB
[ 1828.329045] vm_area_struct          2099KB       2206KB
[ 1828.329585] fs_cache                  64KB         68KB
[ 1828.329967] files_cache              255KB        255KB
[ 1828.330346] signal_cache             497KB        546KB
[ 1828.330746] sighand_cache            654KB        691KB
[ 1828.331135] task_struct             2132KB       3215KB
[ 1828.331524] cred_jar                 111KB        140KB
[ 1828.331904] anon_vma_chain           642KB        669KB
[ 1828.332295] anon_vma                1048KB       1079KB
[ 1828.332690] pid                       52KB         63KB
[ 1828.333070] Acpi-Operand              78KB        114KB
[ 1828.333465] Acpi-ParseExt             23KB         23KB
[ 1828.333862] Acpi-Parse                27KB         43KB
[ 1828.334243] Acpi-State                35KB         51KB
[ 1828.334643] Acpi-Namespace            24KB         24KB
[ 1828.335027] numa_policy                3KB          3KB
[ 1828.335408] perf_event                31KB         31KB
[ 1828.335812] trace_event_file         187KB        187KB
[ 1828.336307] ftrace_event_field        442KB        442KB
[ 1828.336710] pool_workqueue            47KB         47KB
[ 1828.337106] maple_node               544KB       1072KB
[ 1828.337503] task_group                16KB         16KB
[ 1828.337890] mm_struct                726KB        781KB
[ 1828.338272] vmap_area                 53KB         55KB
[ 1828.338671] page->ptl                551KB        594KB
[ 1828.339060] kmemleak_scan_area         25KB         31KB
[ 1828.339593] kmemleak_object       109446KB     111250KB
[ 1828.339974] kmalloc-cg-8k             64KB         64KB
[ 1828.340497] kmalloc-cg-4k           1816KB       2368KB
[ 1828.340888] kmalloc-cg-2k           2132KB       2304KB
[ 1828.341269] kmalloc-cg-1k            426KB        480KB
[ 1828.341679] kmalloc-cg-512           258KB        304KB
[ 1828.342060] kmalloc-cg-256            32KB         32KB
[ 1828.342434] kmalloc-cg-192            36KB         36KB
[ 1828.342828] kmalloc-cg-128            36KB         36KB
[ 1828.343215] kmalloc-cg-96             36KB         48KB
[ 1828.343614] kmalloc-cg-64             36KB         36KB
[ 1828.344003] kmalloc-cg-32             41KB         52KB
[ 1828.344386] kmalloc-cg-16              8KB          8KB
[ 1828.344911] kmalloc-cg-8              15KB         15KB
[ 1828.345291] kmalloc-8k              1664KB       1664KB
[ 1828.345693] kmalloc-4k              6352KB       7520KB
[ 1828.346072] kmalloc-2k              2968KB       3616KB
[ 1828.346460] kmalloc-1k             24896KB      24896KB
[ 1828.346861] kmalloc-512             1570KB       1696KB
[ 1828.347246] kmalloc-256              967KB       1096KB
[ 1828.347638] kmalloc-192              599KB        780KB
[ 1828.348017] kmalloc-128              309KB        340KB
[ 1828.348392] kmalloc-96              1176KB       1176KB
[ 1828.348789] kmalloc-64               705KB        796KB
[ 1828.349176] kmalloc-32               506KB        576KB
[ 1828.349587] kmalloc-16               319KB        328KB
[ 1828.349977] kmalloc-8                250KB        258KB
[ 1828.350358] kmem_cache_node           51KB         51KB
[ 1828.350757] kmem_cache                78KB         78KB
[ 1828.351137] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz4,task=syz-executor.4,pid=10618,uid=0
[ 1828.352367] Out of memory: Killed process 10618 (syz-executor.4) total-vm:93544kB, anon-rss:312kB, file-rss:34944kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1828.401456] kthreadd invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=3, oom_score_adj=0
[ 1828.402187] CPU: 0 PID: 2 Comm: kthreadd Not tainted 6.5.0-rc3-next-20230725 #1
[ 1828.402714] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1828.403295] Call Trace:
[ 1828.403479]  <TASK>
[ 1828.403652]  dump_stack_lvl+0xc1/0xf0
[ 1828.403942]  dump_header+0x10a/0xd50
[ 1828.404352]  oom_kill_process+0x25d/0x640
[ 1828.404669]  out_of_memory+0x346/0x1640
[ 1828.404973]  ? __pfx_out_of_memory+0x10/0x10
[ 1828.405313]  __alloc_pages_slowpath.constprop.0+0x1674/0x1ed0
[ 1828.405777]  ? __pfx_lock_release+0x10/0x10
[ 1828.406103]  ? __pfx___alloc_pages_slowpath.constprop.0+0x10/0x10
[ 1828.406573]  ? prepare_alloc_pages+0x377/0x500
[ 1828.406909]  ? kmem_cache_alloc_node+0x23d/0x3b0
[ 1828.407267]  __alloc_pages+0x3f3/0x480
[ 1828.407569]  ? __pfx___alloc_pages+0x10/0x10
[ 1828.407902]  ? kmem_cache_alloc_node+0x345/0x3b0
[ 1828.408262]  copy_process+0x456/0x7320
[ 1828.408559]  ? __pfx_mark_lock.part.0+0x10/0x10
[ 1828.408911]  ? __pfx___lock_acquire+0x10/0x10
[ 1828.409253]  ? __pfx_copy_process+0x10/0x10
[ 1828.409591]  ? find_held_lock+0x2c/0x110
[ 1828.409902]  ? __lock_acquire+0x19b1/0x6340
[ 1828.410226]  kernel_clone+0xeb/0x810
[ 1828.410505]  ? __pfx_kernel_clone+0x10/0x10
[ 1828.410830]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1828.411225]  ? __pfx___lock_acquire+0x10/0x10
[ 1828.411557]  ? finish_task_switch.isra.0+0x203/0x830
[ 1828.411940]  ? __switch_to+0x5c6/0xeb0
[ 1828.412230]  ? __schedule+0x9b1/0x2b00
[ 1828.412537]  ? __pfx_kthread+0x10/0x10
[ 1828.412823]  kernel_thread+0xc0/0x100
[ 1828.413111]  ? __pfx_kernel_thread+0x10/0x10
[ 1828.413449]  ? kthreadd+0x433/0x730
[ 1828.413726]  ? __pfx_kthread+0x10/0x10
[ 1828.414029]  kthreadd+0x4a2/0x730
[ 1828.414291]  ? __pfx_kthreadd+0x10/0x10
[ 1828.414594]  ret_from_fork+0x2f/0x70
[ 1828.414869]  ? __pfx_kthreadd+0x10/0x10
[ 1828.415166]  ret_from_fork_asm+0x1b/0x30
[ 1828.415484]  </TASK>
[ 1828.415823] Mem-Info:
[ 1828.416005] active_anon:4621 inactive_anon:18917 isolated_anon:0
[ 1828.416005]  active_file:22 inactive_file:0 isolated_file:0
[ 1828.416005]  unevictable:0 dirty:0 writeback:0
[ 1828.416005]  slab_reclaimable:7934 slab_unreclaimable:63197
[ 1828.416005]  mapped:69634 shmem:112 pagetables:5705
[ 1828.416005]  sec_pagetables:0 bounce:0
[ 1828.416005]  kernel_misc_reclaimable:0
[ 1828.416005]  free:5375 free_pcp:1 free_cma:0
[ 1828.418619] Node 0 active_anon:18484kB inactive_anon:75668kB active_file:88kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:0kB shmem:448kB writeback_tmp:0kB kernel_stack:9248kB pagetables:22820kB sec_pagetables:0kB all_unreclaimable? no
[ 1828.420624] Node 0 DMA free:6476kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB active_anon:0kB inactive_anon:96kB active_file:8kB inactive_file:20kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1828.422449] lowmem_reserve[]: 0 1606 1606 1606
[ 1828.422825] Node 0 DMA32 free:15032kB boost:0kB min:5104kB low:6748kB high:8392kB reserved_highatomic:12288KB active_anon:18484kB inactive_anon:75656kB active_file:52kB inactive_file:64kB unevictable:0kB writepending:0kB present:2080640kB managed:1655352kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1828.424803] lowmem_reserve[]: 0 0 0 0
[ 1828.425099] Node 0 DMA: 5*4kB (UME) 8*8kB (UM) 3*16kB (UM) 4*32kB (UME) 5*64kB (UE) 4*128kB (UME) 3*256kB (UE) 3*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 6468kB
[ 1828.426297] Node 0 DMA32: 1022*4kB (UME) 314*8kB (UME) 208*16kB (UM) 101*32kB (UM) 3*64kB (UM) 0*128kB 0*256kB 0*512kB 2*1024kB (U) 0*2048kB 0*4096kB = 15400kB
[ 1828.427442] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1828.428070] 149 total pagecache pages
[ 1828.428352] 0 pages in swap cache
[ 1828.428611] Free swap  = 0kB
[ 1828.428832] Total swap = 0kB
[ 1828.429050] 524158 pages RAM
[ 1828.429266] 0 pages HighMem/MovableOnly
[ 1828.429585] 106480 pages reserved
[ 1828.429838] Unreclaimable slab info:
[ 1828.430101] Name                      Used          Total
[ 1828.430513] pid_2                    147KB        251KB
[ 1828.430895] fib6_nodes                28KB         28KB
[ 1828.431276] ip6_dst_cache             33KB         33KB
[ 1828.431669] RAWv6                    123KB        123KB
[ 1828.432056] UDPv6                     64KB         64KB
[ 1828.432435] TCPv6                     62KB         62KB
[ 1828.432825] scsi_sense_cache           8KB          8KB
[ 1828.433205] virtio_scsi_cmd           16KB         16KB
[ 1828.433628] bio-120                    7KB          7KB
[ 1828.434019] mqueue_inode_cache         60KB         60KB
[ 1828.434403] nfs_commit_data           15KB         15KB
[ 1828.434800] nfs_write_data            47KB         47KB
[ 1828.435159] jbd2_inode                 7KB          7KB
[ 1828.435563] ext4_system_zone           3KB          3KB
[ 1828.435928] ext4_io_end_vec            7KB          7KB
[ 1828.436312] pid_namespace              7KB          7KB
[ 1828.436847] rpc_buffers               31KB         31KB
[ 1828.437232] rpc_tasks                  3KB          3KB
[ 1828.437638] UNIX-STREAM              204KB        384KB
[ 1828.438017] UNIX                     782KB        800KB
[ 1828.438398] tcp_bind2_bucket           8KB          8KB
[ 1828.438785] tcp_bind_bucket            8KB          8KB
[ 1828.439149] ip_fib_trie                8KB          8KB
[ 1828.439518] ip_fib_alias              11KB         11KB
[ 1828.439868] ip_dst_cache               8KB          8KB
[ 1828.440224] RAW                       30KB         30KB
[ 1828.440605] UDP                      125KB        215KB
[ 1828.440969] request_sock_TCP           7KB          7KB
[ 1828.441333] TCP                       60KB         60KB
[ 1828.441709] hugetlbfs_inode_cache         31KB         31KB
[ 1828.442084] bio-248                   11KB         11KB
[ 1828.442446] ep_head                    8KB          8KB
[ 1828.442833] eventpoll_pwq             23KB         23KB
[ 1828.443189] eventpoll_epi             43KB         43KB
[ 1828.443573] inotify_inode_mark         47KB         54KB
[ 1828.443934] sgpool-128                59KB         59KB
[ 1828.444293] sgpool-64                 63KB         63KB
[ 1828.444671] sgpool-32                 65KB        126KB
[ 1828.445027] sgpool-16                195KB        232KB
[ 1828.445399] sgpool-8                 180KB        243KB
[ 1828.445804] request_queue             63KB         63KB
[ 1828.446159] blkdev_ioc                 8KB          8KB
[ 1828.446553] bio-184                   44KB         44KB
[ 1828.446914] biovec-max               255KB        365KB
[ 1828.447275] biovec-64                129KB        204KB
[ 1828.447664] biovec-16                169KB        183KB
[ 1828.448041] uid_cache                  7KB          7KB
[ 1828.448401] dmaengine-unmap-2          4KB          4KB
[ 1828.448796] audit_buffer               7KB          7KB
[ 1828.449154] skbuff_small_head       8775KB       8820KB
[ 1828.449540] skbuff_fclone_cache        127KB        127KB
[ 1828.449913] skbuff_head_cache       3652KB       3671KB
[ 1828.450285] file_lock_cache           43KB         43KB
[ 1828.450661] file_lock_ctx              7KB          7KB
[ 1828.451028] fsnotify_mark_connector         20KB         20KB
[ 1828.451432] taskstats                 54KB         54KB
[ 1828.451820] proc_dir_entry           307KB        307KB
[ 1828.452176] seq_file                  52KB         52KB
[ 1828.452567] sigqueue                  55KB         55KB
[ 1828.452934] shmem_inode_cache       1314KB       1365KB
[ 1828.453313] kernfs_iattrs_cache        257KB        265KB
[ 1828.453731] kernfs_node_cache       5145KB       5153KB
[ 1828.454105] mnt_cache                149KB        149KB
[ 1828.454464] filp                     667KB       1852KB
[ 1828.454875] names_cache              119KB        242KB
[ 1828.455234] net_namespace             82KB         82KB
[ 1828.455629] hashtab_node             274KB        274KB
[ 1828.455991] ebitmap_node            1149KB       1149KB
[ 1828.456360] avtab_node              4976KB       4976KB
[ 1828.456729] avc_node                  35KB         35KB
[ 1828.457111] lsm_inode_cache         2808KB       3229KB
[ 1828.457499] lsm_file_cache            47KB        148KB
[ 1828.457855] key_jar                   23KB         23KB
[ 1828.458209] uts_namespace             15KB         15KB
[ 1828.458595] nsproxy                    7KB          7KB
[ 1828.458969] vma_lock                1977KB       2092KB
[ 1828.459342] vm_area_struct          2099KB       2206KB
[ 1828.459721] fs_cache                  64KB         68KB
[ 1828.460104] files_cache              255KB        255KB
[ 1828.460489] signal_cache             497KB        546KB
[ 1828.460860] sighand_cache            654KB        691KB
[ 1828.461233] task_struct             2132KB       3215KB
[ 1828.462354] cred_jar                 111KB        140KB
[ 1828.462831] anon_vma_chain           642KB        669KB
[ 1828.463235] anon_vma                1041KB       1079KB
[ 1828.463636] pid                       52KB         63KB
[ 1828.464013] Acpi-Operand              78KB        114KB
[ 1828.464372] Acpi-ParseExt             23KB         23KB
[ 1828.464745] Acpi-Parse                27KB         43KB
[ 1828.465103] Acpi-State                35KB         51KB
[ 1828.465500] Acpi-Namespace            24KB         24KB
[ 1828.465876] numa_policy                3KB          3KB
[ 1828.466252] perf_event                31KB         31KB
[ 1828.466630] trace_event_file         187KB        187KB
[ 1828.467013] ftrace_event_field        442KB        442KB
[ 1828.467390] pool_workqueue            47KB         47KB
[ 1828.467767] maple_node               544KB       1072KB
[ 1828.468150] task_group                16KB         16KB
[ 1828.468528] mm_struct                726KB        781KB
[ 1828.468886] vmap_area                 53KB         55KB
[ 1828.469259] page->ptl                551KB        594KB
[ 1828.469658] kmemleak_scan_area         25KB         31KB
[ 1828.470128] kmemleak_object       109263KB     111250KB
[ 1828.470514] kmalloc-cg-8k             64KB         64KB
[ 1828.470877] kmalloc-cg-4k           1816KB       2368KB
[ 1828.471242] kmalloc-cg-2k           2132KB       2304KB
[ 1828.471617] kmalloc-cg-1k            426KB        480KB
[ 1828.471983] kmalloc-cg-512           258KB        304KB
[ 1828.472350] kmalloc-cg-256            32KB         32KB
[ 1828.472727] kmalloc-cg-192            36KB         36KB
[ 1828.473092] kmalloc-cg-128            36KB         36KB
[ 1828.473485] kmalloc-cg-96             36KB         48KB
[ 1828.473848] kmalloc-cg-64             36KB         36KB
[ 1828.474208] kmalloc-cg-32             41KB         52KB
[ 1828.474589] kmalloc-cg-16              8KB          8KB
[ 1828.474953] kmalloc-cg-8              15KB         15KB
[ 1828.475331] kmalloc-8k              1664KB       1664KB
[ 1828.475710] kmalloc-4k              6352KB       7520KB
[ 1828.476103] kmalloc-2k              2968KB       3616KB
[ 1828.476492] kmalloc-1k             24552KB      24640KB
[ 1828.476867] kmalloc-512             1570KB       1696KB
[ 1828.477224] kmalloc-256              967KB       1096KB
[ 1828.477624] kmalloc-192              599KB        780KB
[ 1828.477995] kmalloc-128              309KB        340KB
[ 1828.478354] kmalloc-96              1176KB       1176KB
[ 1828.478730] kmalloc-64               705KB        796KB
[ 1828.479100] kmalloc-32               506KB        576KB
[ 1828.479488] kmalloc-16               319KB        328KB
[ 1828.479860] kmalloc-8                250KB        258KB
[ 1828.480213] kmem_cache_node           51KB         51KB
[ 1828.480601] kmem_cache                78KB         78KB
[ 1828.480967] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz5,task=syz-executor.5,pid=14884,uid=0
[ 1828.481978] Out of memory: Killed process 14884 (syz-executor.5) total-vm:93544kB, anon-rss:308kB, file-rss:34944kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1901.421053] systemd invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0
[ 1901.421787] CPU: 0 PID: 1 Comm: systemd Not tainted 6.5.0-rc3-next-20230725 #1
[ 1901.422270] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1901.422826] Call Trace:
[ 1901.423006]  <TASK>
[ 1901.423168]  dump_stack_lvl+0xc1/0xf0
[ 1901.423444]  dump_header+0x10a/0xd50
[ 1901.423718]  oom_kill_process+0x25d/0x640
[ 1901.424016]  out_of_memory+0x346/0x1640
[ 1901.424302]  ? __pfx_out_of_memory+0x10/0x10
[ 1901.424623]  __alloc_pages_slowpath.constprop.0+0x1674/0x1ed0
[ 1901.425037]  ? __pfx_lock_release+0x10/0x10
[ 1901.425339]  ? __pfx___alloc_pages_slowpath.constprop.0+0x10/0x10
[ 1901.425773]  ? prepare_alloc_pages+0x377/0x500
[ 1901.426095]  __alloc_pages+0x3f3/0x480
[ 1901.426389]  ? lock_acquire+0x19a/0x4c0
[ 1901.426668]  ? __pfx___alloc_pages+0x10/0x10
[ 1901.426986]  ? lock_release+0x1e3/0x680
[ 1901.427274]  alloc_pages+0x1a0/0x260
[ 1901.427545]  filemap_alloc_folio+0x389/0x430
[ 1901.427863]  ? __pfx_filemap_alloc_folio+0x10/0x10
[ 1901.428206]  ? down_read+0x1b4/0x470
[ 1901.428474]  __filemap_get_folio+0x285/0x8d0
[ 1901.428794]  filemap_fault+0x1586/0x21a0
[ 1901.429078]  ? lock_acquire+0x19a/0x4c0
[ 1901.429359]  ? __pfx_filemap_fault+0x10/0x10
[ 1901.429667]  ? __pfx_lock_release+0x10/0x10
[ 1901.429980]  __do_fault+0x10d/0x480
[ 1901.430254]  __handle_mm_fault+0x1175/0x2b90
[ 1901.430579]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1901.430918]  ? find_vma+0x111/0x1b0
[ 1901.431172]  ? __pfx_find_vma+0x10/0x10
[ 1901.431459]  handle_mm_fault+0x2c1/0xb10
[ 1901.431740]  ? access_error+0x15e/0x320
[ 1901.432014]  ? lock_mm_and_find_vma+0xc1/0x780
[ 1901.432330]  do_user_addr_fault+0x693/0x1490
[ 1901.432645]  exc_page_fault+0x9c/0x1a0
[ 1901.432921]  asm_exc_page_fault+0x26/0x30
[ 1901.433211] RIP: 0033:0x7fce1cc3500e
[ 1901.433479] Code: Unable to access opcode bytes at 0x7fce1cc34fe4.
[ 1901.433897] RSP: 002b:00007ffcf073e818 EFLAGS: 00010287
[ 1901.434260] RAX: 0000000000000af2 RBX: 0000000000000001 RCX: 0000000000000001
[ 1901.434745] RDX: 0000000000000000 RSI: 000055591a500a72 RDI: 000055591bb74090
[ 1901.435218] RBP: 00007fce1d053000 R08: 0d0c05d3e358e245 R09: e0a907a2daef3b26
[ 1901.435700] R10: b244cad16c5e0138 R11: 0000000000000000 R12: 000055591bc2b670
[ 1901.436176] R13: 00000000000000ac R14: 000055591bb50270 R15: 0000000000001e10
[ 1901.436658]  </TASK>
[ 1901.436861] Mem-Info:
[ 1901.437036] active_anon:4621 inactive_anon:18886 isolated_anon:0
[ 1901.437036]  active_file:23 inactive_file:13 isolated_file:23
[ 1901.437036]  unevictable:0 dirty:0 writeback:0
[ 1901.437036]  slab_reclaimable:7932 slab_unreclaimable:63132
[ 1901.437036]  mapped:69636 shmem:112 pagetables:5668
[ 1901.437036]  sec_pagetables:0 bounce:0
[ 1901.437036]  kernel_misc_reclaimable:0
[ 1901.437036]  free:5600 free_pcp:0 free_cma:0
[ 1901.439580] Node 0 active_anon:18484kB inactive_anon:75544kB active_file:92kB inactive_file:52kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278544kB dirty:0kB writeback:0kB shmem:448kB writeback_tmp:0kB kernel_stack:9216kB pagetables:22672kB sec_pagetables:0kB all_unreclaimable? yes
[ 1901.441399] Node 0 DMA free:6464kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB active_anon:0kB inactive_anon:80kB active_file:12kB inactive_file:56kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1901.443202] lowmem_reserve[]: 0 1606 1606 1606
[ 1901.443553] Node 0 DMA32 free:15936kB boost:0kB min:5104kB low:6748kB high:8392kB reserved_highatomic:18432KB active_anon:18484kB inactive_anon:75464kB active_file:8kB inactive_file:64kB unevictable:0kB writepending:0kB present:2080640kB managed:1655352kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1901.445499] lowmem_reserve[]: 0 0 0 0
[ 1901.445801] Node 0 DMA: 9*4kB (UME) 6*8kB (UM) 7*16kB (UM) 2*32kB (UE) 5*64kB (UME) 4*128kB (UME) 3*256kB (UE) 3*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 6468kB
[ 1901.446991] Node 0 DMA32: 992*4kB (UME) 412*8kB (UM) 216*16kB (UM) 155*32kB (UM) 4*64kB (UM) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 15936kB
[ 1901.448067] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1901.448674] 150 total pagecache pages
[ 1901.448950] 0 pages in swap cache
[ 1901.449184] Free swap  = 0kB
[ 1901.449405] Total swap = 0kB
[ 1901.449637] 524158 pages RAM
[ 1901.449859] 0 pages HighMem/MovableOnly
[ 1901.450225] 106480 pages reserved
[ 1901.450661] Unreclaimable slab info:
[ 1901.450909] Name                      Used          Total
[ 1901.451298] pid_2                    147KB        251KB
[ 1901.451682] fib6_nodes                28KB         28KB
[ 1901.452059] ip6_dst_cache             33KB         33KB
[ 1901.452597] RAWv6                    123KB        123KB
[ 1901.452974] UDPv6                     64KB         64KB
[ 1901.453335] TCPv6                     62KB         62KB
[ 1901.453739] scsi_sense_cache           8KB          8KB
[ 1901.454089] virtio_scsi_cmd           16KB         16KB
[ 1901.454493] bio-120                    7KB          7KB
[ 1901.454877] mqueue_inode_cache         60KB         60KB
[ 1901.455240] nfs_commit_data           15KB         15KB
[ 1901.455631] nfs_write_data            47KB         47KB
[ 1901.456010] jbd2_inode                 7KB          7KB
[ 1901.456370] ext4_system_zone           3KB          3KB
[ 1901.456760] ext4_io_end_vec            7KB          7KB
[ 1901.457116] pid_namespace              7KB          7KB
[ 1901.457514] rpc_buffers               31KB         31KB
[ 1901.457871] rpc_tasks                  3KB          3KB
[ 1901.458250] UNIX-STREAM              204KB        384KB
[ 1901.458637] UNIX                     780KB        800KB
[ 1901.459016] tcp_bind2_bucket           8KB          8KB
[ 1901.459395] tcp_bind_bucket            8KB          8KB
[ 1901.459788] ip_fib_trie                8KB          8KB
[ 1901.460171] ip_fib_alias              11KB         11KB
[ 1901.460569] ip_dst_cache               8KB          8KB
[ 1901.460957] RAW                       30KB         30KB
[ 1901.461336] UDP                      125KB        215KB
[ 1901.461734] request_sock_TCP           7KB          7KB
[ 1901.462116] TCP                       60KB         60KB
[ 1901.462516] hugetlbfs_inode_cache         31KB         31KB
[ 1901.462926] bio-248                   11KB         11KB
[ 1901.463305] ep_head                    8KB          8KB
[ 1901.463706] eventpoll_pwq             23KB         23KB
[ 1901.464082] eventpoll_epi             43KB         43KB
[ 1901.464461] inotify_inode_mark         47KB         54KB
[ 1901.464867] sgpool-128                59KB         59KB
[ 1901.465254] sgpool-64                 63KB         63KB
[ 1901.465650] sgpool-32                 65KB        141KB
[ 1901.466032] sgpool-16                150KB        150KB
[ 1901.466422] sgpool-8                 187KB        187KB
[ 1901.466828] request_queue             63KB         63KB
[ 1901.467206] blkdev_ioc                 8KB          8KB
[ 1901.467600] bio-184                   44KB         44KB
[ 1901.467970] biovec-max               255KB        306KB
[ 1901.468356] biovec-64                 38KB        101KB
[ 1901.468752] biovec-16                142KB        142KB
[ 1901.469141] uid_cache                  7KB          7KB
[ 1901.469536] dmaengine-unmap-2          4KB          4KB
[ 1901.469913] audit_buffer               7KB          7KB
[ 1901.470305] skbuff_small_head       9061KB       9198KB
[ 1901.470709] skbuff_fclone_cache        127KB        127KB
[ 1901.471108] skbuff_head_cache       3787KB       3806KB
[ 1901.471506] file_lock_cache           43KB         43KB
[ 1901.471893] file_lock_ctx              7KB          7KB
[ 1901.472271] fsnotify_mark_connector         20KB         20KB
[ 1901.473725] taskstats                 54KB         54KB
[ 1901.474108] proc_dir_entry           307KB        307KB
[ 1901.474610] seq_file                  52KB         52KB
[ 1901.474998] sigqueue                  55KB         55KB
[ 1901.475377] shmem_inode_cache       1314KB       1365KB
[ 1901.475770] kernfs_iattrs_cache        257KB        265KB
[ 1901.476172] kernfs_node_cache       5145KB       5153KB
[ 1901.476564] mnt_cache                149KB        149KB
[ 1901.476998] filp                     666KB       1845KB
[ 1901.477370] names_cache              119KB        242KB
[ 1901.477771] net_namespace             82KB         82KB
[ 1901.478150] hashtab_node             274KB        274KB
[ 1901.478560] ebitmap_node            1149KB       1149KB
[ 1901.478949] avtab_node              4976KB       4976KB
[ 1901.479341] avc_node                  35KB         35KB
[ 1901.479777] lsm_inode_cache         2784KB       3229KB
[ 1901.480169] lsm_file_cache            47KB        148KB
[ 1901.480567] key_jar                   23KB         23KB
[ 1901.480956] uts_namespace             15KB         15KB
[ 1901.481336] nsproxy                    7KB          7KB
[ 1901.481766] vma_lock                1908KB       2061KB
[ 1901.482164] vm_area_struct          2034KB       2179KB
[ 1901.482569] fs_cache                  59KB         68KB
[ 1901.482946] files_cache              255KB        255KB
[ 1901.483338] signal_cache             491KB        546KB
[ 1901.483735] sighand_cache            654KB        691KB
[ 1901.484125] task_struct             2125KB       3215KB
[ 1901.484524] cred_jar                 111KB        140KB
[ 1901.484920] anon_vma_chain           622KB        661KB
[ 1901.485302] anon_vma                1036KB       1067KB
[ 1901.485672] pid                       52KB         63KB
[ 1901.486047] Acpi-Operand              78KB        114KB
[ 1901.486413] Acpi-ParseExt             23KB         23KB
[ 1901.486805] Acpi-Parse                27KB         43KB
[ 1901.487196] Acpi-State                35KB         51KB
[ 1901.487584] Acpi-Namespace            24KB         24KB
[ 1901.487965] numa_policy                3KB          3KB
[ 1901.488339] perf_event                31KB         31KB
[ 1901.488743] trace_event_file         187KB        187KB
[ 1901.489116] ftrace_event_field        442KB        442KB
[ 1901.489512] pool_workqueue            47KB         47KB
[ 1901.489909] maple_node               540KB       1072KB
[ 1901.490293] task_group                16KB         16KB
[ 1901.490694] mm_struct                707KB        781KB
[ 1901.491084] vmap_area                 53KB         55KB
[ 1901.491495] page->ptl                540KB        594KB
[ 1901.491879] kmemleak_scan_area         25KB         31KB
[ 1901.492412] kmemleak_object       109460KB     110026KB
[ 1901.492813] kmalloc-cg-8k             64KB         64KB
[ 1901.493207] kmalloc-cg-4k           1816KB       2368KB
[ 1901.493606] kmalloc-cg-2k           2108KB       2272KB
[ 1901.493987] kmalloc-cg-1k            426KB        480KB
[ 1901.494389] kmalloc-cg-512           258KB        304KB
[ 1901.494780] kmalloc-cg-256            32KB         32KB
[ 1901.495162] kmalloc-cg-192            36KB         36KB
[ 1901.495554] kmalloc-cg-128            36KB         36KB
[ 1901.495945] kmalloc-cg-96             36KB         48KB
[ 1901.496318] kmalloc-cg-64             36KB         36KB
[ 1901.496714] kmalloc-cg-32             40KB         52KB
[ 1901.497091] kmalloc-cg-16              8KB          8KB
[ 1901.497491] kmalloc-cg-8              15KB         15KB
[ 1901.497875] kmalloc-8k              1664KB       1664KB
[ 1901.498276] kmalloc-4k              6328KB       7520KB
[ 1901.498688] kmalloc-2k              2968KB       3616KB
[ 1901.499078] kmalloc-1k             25514KB      25568KB
[ 1901.499463] kmalloc-512             1570KB       1696KB
[ 1901.499890] kmalloc-256              965KB       1096KB
[ 1901.500286] kmalloc-192              586KB        772KB
[ 1901.500735] kmalloc-128              309KB        340KB
[ 1901.501122] kmalloc-96              1199KB       1212KB
[ 1901.501562] kmalloc-64               704KB        796KB
[ 1901.501959] kmalloc-32               506KB        576KB
[ 1901.502359] kmalloc-16               319KB        328KB
[ 1901.502757] kmalloc-8                250KB        258KB
[ 1901.503144] kmem_cache_node           51KB         51KB
[ 1901.503535] kmem_cache                78KB         78KB
[ 1901.503931] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz5,task=syz-executor.5,pid=13638,uid=0
[ 1901.505323] Out of memory: Killed process 13638 (syz-executor.5) total-vm:93544kB, anon-rss:308kB, file-rss:34944kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1942.113218] systemd invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0
[ 1942.113951] CPU: 1 PID: 1 Comm: systemd Not tainted 6.5.0-rc3-next-20230725 #1
[ 1942.114430] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1942.114978] Call Trace:
[ 1942.115159]  <TASK>
[ 1942.115316]  dump_stack_lvl+0xc1/0xf0
[ 1942.115595]  dump_header+0x10a/0xd50
[ 1942.115865]  oom_kill_process+0x25d/0x640
[ 1942.116154]  out_of_memory+0x346/0x1640
[ 1942.116439]  ? __pfx_out_of_memory+0x10/0x10
[ 1942.116756]  __alloc_pages_slowpath.constprop.0+0x1674/0x1ed0
[ 1942.117164]  ? __pfx_lock_release+0x10/0x10
[ 1942.117458]  ? __pfx___alloc_pages_slowpath.constprop.0+0x10/0x10
[ 1942.117879]  ? prepare_alloc_pages+0x377/0x500
[ 1942.118199]  __alloc_pages+0x3f3/0x480
[ 1942.118469]  ? lock_acquire+0x19a/0x4c0
[ 1942.118754]  ? __pfx___alloc_pages+0x10/0x10
[ 1942.119088]  ? lock_release+0x1e3/0x680
[ 1942.119371]  alloc_pages+0x1a0/0x260
[ 1942.119632]  filemap_alloc_folio+0x389/0x430
[ 1942.119939]  ? __pfx_filemap_alloc_folio+0x10/0x10
[ 1942.120271]  ? down_read+0x1b4/0x470
[ 1942.120533]  __filemap_get_folio+0x285/0x8d0
[ 1942.120838]  filemap_fault+0x1586/0x21a0
[ 1942.121116]  ? lock_acquire+0x19a/0x4c0
[ 1942.121387]  ? __pfx_filemap_fault+0x10/0x10
[ 1942.121694]  ? __pfx_lock_release+0x10/0x10
[ 1942.121994]  __do_fault+0x10d/0x480
[ 1942.122258]  __handle_mm_fault+0x1175/0x2b90
[ 1942.122562]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1942.122914]  ? find_vma+0x111/0x1b0
[ 1942.123167]  ? __pfx_find_vma+0x10/0x10
[ 1942.123438]  handle_mm_fault+0x2c1/0xb10
[ 1942.123717]  ? access_error+0x15e/0x320
[ 1942.123988]  ? lock_mm_and_find_vma+0xc1/0x780
[ 1942.124306]  do_user_addr_fault+0x693/0x1490
[ 1942.124627]  exc_page_fault+0x9c/0x1a0
[ 1942.124894]  asm_exc_page_fault+0x26/0x30
[ 1942.125187] RIP: 0033:0x7fce1cf02bb1
[ 1942.125450] Code: Unable to access opcode bytes at 0x7fce1cf02b87.
[ 1942.125859] RSP: 002b:00007ffcf073e800 EFLAGS: 00010287
[ 1942.126210] RAX: 8fc180e0637b896a RBX: 000055591a514bef RCX: 000055591a514bef
[ 1942.126679] RDX: 000055591a514bff RSI: 0000000000000001 RDI: 000055591a514bef
[ 1942.127155] RBP: 00007ffcf073e820 R08: 9fcb96e3746b8374 R09: cd61b716ce2338dd
[ 1942.127625] R10: d277bd16d0352fc9 R11: 0000000000000000 R12: 000055591a514c00
[ 1942.128089] R13: 000055591a515ca8 R14: 000055591bb9a210 R15: 000055591bc1bda0
[ 1942.128575]  </TASK>
[ 1942.129379] Mem-Info:
[ 1942.129652] active_anon:4621 inactive_anon:18860 isolated_anon:0
[ 1942.129652]  active_file:21 inactive_file:12 isolated_file:0
[ 1942.129652]  unevictable:0 dirty:0 writeback:0
[ 1942.129652]  slab_reclaimable:7932 slab_unreclaimable:63063
[ 1942.129652]  mapped:69635 shmem:112 pagetables:5639
[ 1942.129652]  sec_pagetables:0 bounce:0
[ 1942.129652]  kernel_misc_reclaimable:0
[ 1942.129652]  free:5426 free_pcp:303 free_cma:0
[ 1942.132185] Node 0 active_anon:18484kB inactive_anon:75440kB active_file:84kB inactive_file:48kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278540kB dirty:0kB writeback:0kB shmem:448kB writeback_tmp:0kB kernel_stack:9184kB pagetables:22556kB sec_pagetables:0kB all_unreclaimable? yes
[ 1942.134032] Node 0 DMA free:6468kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB active_anon:0kB inactive_anon:80kB active_file:28kB inactive_file:36kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1942.135895] lowmem_reserve[]: 0 1606 1606 1606
[ 1942.136407] Node 0 DMA32 free:15236kB boost:2048kB min:7152kB low:8796kB high:10440kB reserved_highatomic:20480KB active_anon:18484kB inactive_anon:75360kB active_file:56kB inactive_file:4kB unevictable:0kB writepending:0kB present:2080640kB managed:1655352kB mlocked:0kB bounce:0kB free_pcp:1212kB local_pcp:624kB free_cma:0kB
[ 1942.138504] lowmem_reserve[]: 0 0 0 0
[ 1942.138814] Node 0 DMA: 3*4kB (UE) 5*8kB (UM) 7*16kB (UM) 3*32kB (UE) 5*64kB (UME) 4*128kB (UME) 3*256kB (UE) 3*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 6468kB
[ 1942.140018] Node 0 DMA32: 1022*4kB (UM) 419*8kB (UM) 199*16kB (UM) 168*32kB (UM) 7*64kB (UM) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16448kB
[ 1942.141137] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1942.141760] 139 total pagecache pages
[ 1942.142029] 0 pages in swap cache
[ 1942.142264] Free swap  = 0kB
[ 1942.142527] Total swap = 0kB
[ 1942.142735] 524158 pages RAM
[ 1942.142970] 0 pages HighMem/MovableOnly
[ 1942.143234] 106480 pages reserved
[ 1942.143494] Unreclaimable slab info:
[ 1942.143743] Name                      Used          Total
[ 1942.144160] pid_2                    147KB        251KB
[ 1942.144563] fib6_nodes                28KB         28KB
[ 1942.144943] ip6_dst_cache             33KB         33KB
[ 1942.145334] RAWv6                    123KB        123KB
[ 1942.145742] UDPv6                     64KB         64KB
[ 1942.146143] TCPv6                     62KB         62KB
[ 1942.146561] scsi_sense_cache           8KB          8KB
[ 1942.146960] virtio_scsi_cmd           16KB         16KB
[ 1942.147341] bio-120                    7KB          7KB
[ 1942.147887] mqueue_inode_cache         60KB         60KB
[ 1942.148284] nfs_commit_data           15KB         15KB
[ 1942.148680] nfs_write_data            47KB         47KB
[ 1942.149063] jbd2_inode                 7KB          7KB
[ 1942.149450] ext4_system_zone           3KB          3KB
[ 1942.149848] ext4_io_end_vec            7KB          7KB
[ 1942.150234] pid_namespace              7KB          7KB
[ 1942.150628] rpc_buffers               31KB         31KB
[ 1942.151047] rpc_tasks                  3KB          3KB
[ 1942.151590] UNIX-STREAM              204KB        384KB
[ 1942.151966] UNIX                     780KB        800KB
[ 1942.152351] tcp_bind2_bucket           8KB          8KB
[ 1942.152759] tcp_bind_bucket            8KB          8KB
[ 1942.153151] ip_fib_trie                8KB          8KB
[ 1942.153552] ip_fib_alias              11KB         11KB
[ 1942.153945] ip_dst_cache               8KB          8KB
[ 1942.154340] RAW                       30KB         30KB
[ 1942.154743] UDP                      125KB        215KB
[ 1942.155114] request_sock_TCP           7KB          7KB
[ 1942.155515] TCP                       60KB         60KB
[ 1942.155900] hugetlbfs_inode_cache         31KB         31KB
[ 1942.156302] bio-248                   11KB         11KB
[ 1942.156699] ep_head                    8KB          8KB
[ 1942.157091] eventpoll_pwq             23KB         23KB
[ 1942.157493] eventpoll_epi             43KB         43KB
[ 1942.157885] inotify_inode_mark         47KB         54KB
[ 1942.158271] sgpool-128                59KB         59KB
[ 1942.158634] sgpool-64                 63KB         63KB
[ 1942.159033] sgpool-32                 65KB        141KB
[ 1942.159385] sgpool-16                157KB        157KB
[ 1942.159787] sgpool-8                 180KB        180KB
[ 1942.160175] request_queue             63KB         63KB
[ 1942.160570] blkdev_ioc                 8KB          8KB
[ 1942.160955] bio-184                   44KB         44KB
[ 1942.161339] biovec-max               306KB        306KB
[ 1942.161743] biovec-64                114KB        114KB
[ 1942.162129] biovec-16                130KB        138KB
[ 1942.162532] uid_cache                  7KB          7KB
[ 1942.162903] dmaengine-unmap-2          4KB          4KB
[ 1942.163289] audit_buffer               7KB          7KB
[ 1942.163683] skbuff_small_head       9135KB       9135KB
[ 1942.164066] skbuff_fclone_cache        127KB        127KB
[ 1942.164466] skbuff_head_cache       3810KB       3810KB
[ 1942.164874] file_lock_cache           43KB         43KB
[ 1942.165266] file_lock_ctx              7KB          7KB
[ 1942.165671] fsnotify_mark_connector         20KB         20KB
[ 1942.166099] taskstats                 54KB         54KB
[ 1942.166450] proc_dir_entry           307KB        307KB
[ 1942.166857] seq_file                  52KB         52KB
[ 1942.167215] sigqueue                  55KB         55KB
[ 1942.167613] shmem_inode_cache       1314KB       1365KB
[ 1942.167970] kernfs_iattrs_cache        257KB        265KB
[ 1942.168371] kernfs_node_cache       5145KB       5153KB
[ 1942.168737] mnt_cache                149KB        149KB
[ 1942.169151] filp                     666KB       1845KB
[ 1942.169515] names_cache              119KB        242KB
[ 1942.169907] net_namespace             82KB         82KB
[ 1942.170253] hashtab_node             274KB        274KB
[ 1942.170647] ebitmap_node            1149KB       1149KB
[ 1942.171012] avtab_node              4976KB       4976KB
[ 1942.171407] avc_node                  35KB         35KB
[ 1942.171811] lsm_inode_cache         2784KB       3229KB
[ 1942.172200] lsm_file_cache            47KB        148KB
[ 1942.172562] key_jar                   23KB         23KB
[ 1942.172948] uts_namespace             15KB         15KB
[ 1942.173305] nsproxy                    7KB          7KB
[ 1942.173717] vma_lock                1906KB       2061KB
[ 1942.174094] vm_area_struct          2017KB       2179KB
[ 1942.174497] fs_cache                  59KB         68KB
[ 1942.174869] files_cache              255KB        255KB
[ 1942.175251] signal_cache             489KB        546KB
[ 1942.175627] sighand_cache            654KB        691KB
[ 1942.176027] task_struct             2091KB       3215KB
[ 1942.176384] cred_jar                 111KB        140KB
[ 1942.176788] anon_vma_chain           621KB        661KB
[ 1942.177182] anon_vma                1029KB       1067KB
[ 1942.177581] pid                       52KB         63KB
[ 1942.177968] Acpi-Operand              78KB        114KB
[ 1942.178356] Acpi-ParseExt             23KB         23KB
[ 1942.178745] Acpi-Parse                27KB         43KB
[ 1942.179150] Acpi-State                35KB         51KB
[ 1942.179561] Acpi-Namespace            24KB         24KB
[ 1942.179934] numa_policy                3KB          3KB
[ 1942.180305] perf_event                31KB         31KB
[ 1942.180700] trace_event_file         187KB        187KB
[ 1942.181079] ftrace_event_field        442KB        442KB
[ 1942.181462] pool_workqueue            47KB         47KB
[ 1942.181885] maple_node               537KB       1072KB
[ 1942.182261] task_group                16KB         16KB
[ 1942.182713] mm_struct                707KB        781KB
[ 1942.183099] vmap_area                 53KB         55KB
[ 1942.183520] page->ptl                534KB        594KB
[ 1942.183895] kmemleak_scan_area         25KB         31KB
[ 1942.184353] kmemleak_object       109516KB     109884KB
[ 1942.184746] kmalloc-cg-8k             64KB         64KB
[ 1942.185120] kmalloc-cg-4k           1816KB       2368KB
[ 1942.185510] kmalloc-cg-2k           2108KB       2272KB
[ 1942.185890] kmalloc-cg-1k            426KB        480KB
[ 1942.186267] kmalloc-cg-512           258KB        304KB
[ 1942.186665] kmalloc-cg-256            32KB         32KB
[ 1942.187049] kmalloc-cg-192            36KB         36KB
[ 1942.187421] kmalloc-cg-128            36KB         36KB
[ 1942.187813] kmalloc-cg-96             36KB         48KB
[ 1942.188197] kmalloc-cg-64             36KB         36KB
[ 1942.188590] kmalloc-cg-32             40KB         52KB
[ 1942.188974] kmalloc-cg-16              8KB          8KB
[ 1942.189351] kmalloc-cg-8              15KB         15KB
[ 1942.189749] kmalloc-8k              1664KB       1664KB
[ 1942.190142] kmalloc-4k              6328KB       7520KB
[ 1942.190548] kmalloc-2k              2968KB       3616KB
[ 1942.190945] kmalloc-1k             25536KB      25536KB
[ 1942.191327] kmalloc-512             1568KB       1696KB
[ 1942.191725] kmalloc-256              965KB       1096KB
[ 1942.192127] kmalloc-192              580KB        772KB
[ 1942.192525] kmalloc-128              309KB        340KB
[ 1942.192907] kmalloc-96              1196KB       1196KB
[ 1942.193296] kmalloc-64               704KB        796KB
[ 1942.193700] kmalloc-32               506KB        576KB
[ 1942.194084] kmalloc-16               319KB        328KB
[ 1942.194457] kmalloc-8                250KB        258KB
[ 1942.194861] kmem_cache_node           51KB         51KB
[ 1942.195236] kmem_cache                78KB         78KB
[ 1942.195626] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz5,task=syz-executor.5,pid=13190,uid=0
[ 1942.196629] Out of memory: Killed process 13190 (syz-executor.5) total-vm:93544kB, anon-rss:308kB, file-rss:34944kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1949.643068] systemd invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0
[ 1949.644227] CPU: 0 PID: 1 Comm: systemd Not tainted 6.5.0-rc3-next-20230725 #1
[ 1949.645005] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1949.645853] Call Trace:
[ 1949.646139]  <TASK>
[ 1949.646393]  dump_stack_lvl+0xc1/0xf0
[ 1949.646830]  dump_header+0x10a/0xd50
[ 1949.647270]  oom_kill_process+0x25d/0x640
[ 1949.647734]  out_of_memory+0x346/0x1640
[ 1949.648191]  ? __pfx_out_of_memory+0x10/0x10
[ 1949.648696]  __alloc_pages_slowpath.constprop.0+0x1674/0x1ed0
[ 1949.649349]  ? __pfx_lock_release+0x10/0x10
[ 1949.649839]  ? __pfx___alloc_pages_slowpath.constprop.0+0x10/0x10
[ 1949.650520]  ? prepare_alloc_pages+0x377/0x500
[ 1949.651046]  __alloc_pages+0x3f3/0x480
[ 1949.651481]  ? lock_acquire+0x19a/0x4c0
[ 1949.651922]  ? __pfx___alloc_pages+0x10/0x10
[ 1949.652423]  ? lock_release+0x1e3/0x680
[ 1949.652879]  alloc_pages+0x1a0/0x260
[ 1949.653304]  filemap_alloc_folio+0x389/0x430
[ 1949.653807]  ? __pfx_filemap_alloc_folio+0x10/0x10
[ 1949.654345]  ? down_read+0x1b4/0x470
[ 1949.654769]  __filemap_get_folio+0x285/0x8d0
[ 1949.655281]  filemap_fault+0x1586/0x21a0
[ 1949.655734]  ? lock_acquire+0x19a/0x4c0
[ 1949.656174]  ? __pfx_filemap_fault+0x10/0x10
[ 1949.656663]  ? __pfx_lock_release+0x10/0x10
[ 1949.657149]  __do_fault+0x10d/0x480
[ 1949.657575]  __handle_mm_fault+0x1175/0x2b90
[ 1949.658061]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1949.658595]  ? find_vma+0x111/0x1b0
[ 1949.659012]  ? __pfx_find_vma+0x10/0x10
[ 1949.659450]  handle_mm_fault+0x2c1/0xb10
[ 1949.659896]  ? access_error+0x15e/0x320
[ 1949.660339]  ? lock_mm_and_find_vma+0xc1/0x780
[ 1949.660849]  do_user_addr_fault+0x693/0x1490
[ 1949.661337]  exc_page_fault+0x9c/0x1a0
[ 1949.661763]  asm_exc_page_fault+0x26/0x30
[ 1949.662222] RIP: 0033:0x7fce1cf02cdf
[ 1949.662629] Code: Unable to access opcode bytes at 0x7fce1cf02cb5.
[ 1949.663278] RSP: 002b:00007ffcf073e800 EFLAGS: 00010207
[ 1949.663848] RAX: 0000000000000000 RBX: 000055591a514bff RCX: 000055591a514bff
[ 1949.664588] RDX: 00007fce1cfe0bc0 RSI: 0000000000000001 RDI: 7465677261742e79
[ 1949.665326] RBP: 00007ffcf073e820 R08: 34cd87e30f604295 R09: dac8a94d9bbc9bcc
[ 1949.666064] R10: bc2b64af7e3c7c14 R11: 0000000000000000 R12: 000055591a514c00
[ 1949.666815] R13: 000055591a515ca8 R14: 000055591bb9a210 R15: 000055591bc1bda0
[ 1949.667595]  </TASK>
[ 1949.667895] Mem-Info:
[ 1949.668163] active_anon:4621 inactive_anon:18834 isolated_anon:0
[ 1949.668163]  active_file:21 inactive_file:3 isolated_file:0
[ 1949.668163]  unevictable:0 dirty:0 writeback:0
[ 1949.668163]  slab_reclaimable:7932 slab_unreclaimable:62834
[ 1949.668163]  mapped:69634 shmem:112 pagetables:5610
[ 1949.668163]  sec_pagetables:0 bounce:0
[ 1949.668163]  kernel_misc_reclaimable:0
[ 1949.668163]  free:5726 free_pcp:295 free_cma:0
[ 1949.671972] Node 0 active_anon:18484kB inactive_anon:75336kB active_file:84kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:0kB shmem:448kB writeback_tmp:0kB kernel_stack:9152kB pagetables:22440kB sec_pagetables:0kB all_unreclaimable? yes
[ 1949.674704] Node 0 DMA free:6468kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB active_anon:0kB inactive_anon:80kB active_file:36kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1949.677321] lowmem_reserve[]: 0 1606 1606 1606
[ 1949.677904] Node 0 DMA32 free:16436kB boost:4096kB min:9200kB low:10844kB high:12488kB reserved_highatomic:14336KB active_anon:18484kB inactive_anon:75256kB active_file:16kB inactive_file:0kB unevictable:0kB writepending:0kB present:2080640kB managed:1655352kB mlocked:0kB bounce:0kB free_pcp:1180kB local_pcp:572kB free_cma:0kB
[ 1949.680869] lowmem_reserve[]: 0 0 0 0
[ 1949.681309] Node 0 DMA: 5*4kB (ME) 6*8kB (UM) 7*16kB (UM) 3*32kB (UE) 5*64kB (UME) 4*128kB (UME) 3*256kB (UE) 3*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 6484kB
[ 1949.683081] Node 0 DMA32: 967*4kB (UM) 421*8kB (UM) 185*16kB (UM) 169*32kB (UM) 11*64kB (UM) 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16436kB
[ 1949.684723] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1949.685602] 144 total pagecache pages
[ 1949.686006] 0 pages in swap cache
[ 1949.686369] Free swap  = 0kB
[ 1949.686720] Total swap = 0kB
[ 1949.687053] 524158 pages RAM
[ 1949.687385] 0 pages HighMem/MovableOnly
[ 1949.687818] 106480 pages reserved
[ 1949.688184] Unreclaimable slab info:
[ 1949.688608] Name                      Used          Total
[ 1949.689172] pid_2                    147KB        251KB
[ 1949.689767] fib6_nodes                28KB         28KB
[ 1949.690320] ip6_dst_cache             33KB         33KB
[ 1949.690896] RAWv6                    123KB        123KB
[ 1949.691463] UDPv6                     64KB         64KB
[ 1949.692034] TCPv6                     62KB         62KB
[ 1949.692617] scsi_sense_cache           8KB          8KB
[ 1949.693162] virtio_scsi_cmd           16KB         16KB
[ 1949.693734] bio-120                    7KB          7KB
[ 1949.694291] mqueue_inode_cache         60KB         60KB
[ 1949.694863] nfs_commit_data           15KB         15KB
[ 1949.695425] nfs_write_data            47KB         47KB
[ 1949.695998] jbd2_inode                 7KB          7KB
[ 1949.696568] ext4_system_zone           3KB          3KB
[ 1949.697113] ext4_io_end_vec            7KB          7KB
[ 1949.697684] pid_namespace              7KB          7KB
[ 1949.698234] rpc_buffers               31KB         31KB
[ 1949.698794] rpc_tasks                  3KB          3KB
[ 1949.699346] UNIX-STREAM              204KB        384KB
[ 1949.699918] UNIX                     780KB        800KB
[ 1949.700489] tcp_bind2_bucket           8KB          8KB
[ 1949.701044] tcp_bind_bucket            8KB          8KB
[ 1949.701613] ip_fib_trie                8KB          8KB
[ 1949.702160] ip_fib_alias              11KB         11KB
[ 1949.702717] ip_dst_cache               8KB          8KB
[ 1949.704573] RAW                       30KB         30KB
[ 1949.705138] UDP                      125KB        215KB
[ 1949.705880] request_sock_TCP           7KB          7KB
[ 1949.706440] TCP                       60KB         60KB
[ 1949.707020] hugetlbfs_inode_cache         31KB         31KB
[ 1949.707626] bio-248                   11KB         11KB
[ 1949.708185] ep_head                    8KB          8KB
[ 1949.708751] eventpoll_pwq             23KB         23KB
[ 1949.709301] eventpoll_epi             43KB         43KB
[ 1949.709883] inotify_inode_mark         47KB         54KB
[ 1949.710433] sgpool-128                59KB         59KB
[ 1949.711043] sgpool-64                 63KB         63KB
[ 1949.711621] sgpool-32                 65KB        141KB
[ 1949.712178] sgpool-16                157KB        157KB
[ 1949.712754] sgpool-8                 191KB        191KB
[ 1949.713310] request_queue             63KB         63KB
[ 1949.713879] blkdev_ioc                 8KB          8KB
[ 1949.714447] bio-184                   44KB         44KB
[ 1949.715022] biovec-max               306KB        306KB
[ 1949.715604] biovec-64                114KB        114KB
[ 1949.716141] biovec-16                138KB        138KB
[ 1949.716716] uid_cache                  7KB          7KB
[ 1949.717248] dmaengine-unmap-2          4KB          4KB
[ 1949.717830] audit_buffer               7KB          7KB
[ 1949.718377] skbuff_small_head       8914KB       8914KB
[ 1949.718987] skbuff_fclone_cache        127KB        127KB
[ 1949.719586] skbuff_head_cache       3723KB       3723KB
[ 1949.720124] file_lock_cache           43KB         43KB
[ 1949.720694] file_lock_ctx              7KB          7KB
[ 1949.721230] fsnotify_mark_connector         20KB         20KB
[ 1949.721869] taskstats                 54KB         54KB
[ 1949.722420] proc_dir_entry           307KB        307KB
[ 1949.723015] seq_file                  52KB         52KB
[ 1949.723571] sigqueue                  55KB         55KB
[ 1949.724123] shmem_inode_cache       1314KB       1365KB
[ 1949.724680] kernfs_iattrs_cache        257KB        265KB
[ 1949.725259] kernfs_node_cache       5145KB       5153KB
[ 1949.725820] mnt_cache                149KB        149KB
[ 1949.726422] filp                     666KB       1845KB
[ 1949.726991] names_cache              119KB        242KB
[ 1949.727579] net_namespace             82KB         82KB
[ 1949.728115] hashtab_node             274KB        274KB
[ 1949.728676] ebitmap_node            1149KB       1149KB
[ 1949.729211] avtab_node              4976KB       4976KB
[ 1949.729781] avc_node                  35KB         35KB
[ 1949.730358] lsm_inode_cache         2784KB       3229KB
[ 1949.730961] lsm_file_cache            47KB        148KB
[ 1949.731520] key_jar                   23KB         23KB
[ 1949.732069] uts_namespace             15KB         15KB
[ 1949.732650] nsproxy                    7KB          7KB
[ 1949.733240] vma_lock                1906KB       2061KB
[ 1949.733810] vm_area_struct          2017KB       2179KB
[ 1949.734380] fs_cache                  59KB         68KB
[ 1949.734924] files_cache              255KB        255KB
[ 1949.735504] signal_cache             489KB        546KB
[ 1949.736038] sighand_cache            654KB        691KB
[ 1949.736624] task_struct             2091KB       3215KB
[ 1949.737161] cred_jar                 111KB        140KB
[ 1949.737736] anon_vma_chain           621KB        661KB
[ 1949.738270] anon_vma                1025KB       1067KB
[ 1949.738843] pid                       52KB         63KB
[ 1949.739443] Acpi-Operand              78KB        114KB
[ 1949.740028] Acpi-ParseExt             23KB         23KB
[ 1949.740592] Acpi-Parse                27KB         43KB
[ 1949.741148] Acpi-State                35KB         51KB
[ 1949.741704] Acpi-Namespace            24KB         24KB
[ 1949.742280] numa_policy                3KB          3KB
[ 1949.742834] perf_event                31KB         31KB
[ 1949.743409] trace_event_file         187KB        187KB
[ 1949.743979] ftrace_event_field        442KB        442KB
[ 1949.744546] pool_workqueue            47KB         47KB
[ 1949.745103] maple_node               537KB       1072KB
[ 1949.745689] task_group                16KB         16KB
[ 1949.746225] mm_struct                707KB        781KB
[ 1949.746803] vmap_area                 53KB         55KB
[ 1949.747364] page->ptl                534KB        594KB
[ 1949.747931] kmemleak_scan_area         25KB         31KB
[ 1949.748668] kmemleak_object       109214KB     109899KB
[ 1949.749205] kmalloc-cg-8k             64KB         64KB
[ 1949.749758] kmalloc-cg-4k           1816KB       2368KB
[ 1949.750306] kmalloc-cg-2k           2108KB       2272KB
[ 1949.750851] kmalloc-cg-1k            426KB        480KB
[ 1949.751403] kmalloc-cg-512           258KB        304KB
[ 1949.751960] kmalloc-cg-256            32KB         32KB
[ 1949.752522] kmalloc-cg-192            36KB         36KB
[ 1949.753043] kmalloc-cg-128            36KB         36KB
[ 1949.753601] kmalloc-cg-96             36KB         48KB
[ 1949.754132] kmalloc-cg-64             36KB         36KB
[ 1949.754687] kmalloc-cg-32             40KB         52KB
[ 1949.755218] kmalloc-cg-16              8KB          8KB
[ 1949.755790] kmalloc-cg-8              15KB         15KB
[ 1949.756324] kmalloc-8k              1664KB       1664KB
[ 1949.756902] kmalloc-4k              6328KB       7520KB
[ 1949.757446] kmalloc-2k              2968KB       3616KB
[ 1949.758007] kmalloc-1k             24992KB      24992KB
[ 1949.758556] kmalloc-512             1568KB       1696KB
[ 1949.759126] kmalloc-256              965KB       1096KB
[ 1949.759705] kmalloc-192              580KB        772KB
[ 1949.760259] kmalloc-128              309KB        340KB
[ 1949.760810] kmalloc-96              1194KB       1208KB
[ 1949.761365] kmalloc-64               704KB        796KB
[ 1949.761922] kmalloc-32               506KB        576KB
[ 1949.762490] kmalloc-16               319KB        328KB
[ 1949.763048] kmalloc-8                250KB        258KB
[ 1949.763609] kmem_cache_node           51KB         51KB
[ 1949.764140] kmem_cache                78KB         78KB
[ 1949.764699] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz5,task=syz-executor.5,pid=12837,uid=0
[ 1949.766118] Out of memory: Killed process 12837 (syz-executor.5) total-vm:93544kB, anon-rss:308kB, file-rss:34944kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1950.042973] systemd invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0
[ 1950.043868] CPU: 0 PID: 1 Comm: systemd Not tainted 6.5.0-rc3-next-20230725 #1
[ 1950.044475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1950.045149] Call Trace:
[ 1950.045372]  <TASK>
[ 1950.045575]  dump_stack_lvl+0xc1/0xf0
[ 1950.045915]  dump_header+0x10a/0xd50
[ 1950.046259]  oom_kill_process+0x25d/0x640
[ 1950.046630]  out_of_memory+0x346/0x1640
[ 1950.046991]  ? __pfx_out_of_memory+0x10/0x10
[ 1950.047395]  __alloc_pages_slowpath.constprop.0+0x1674/0x1ed0
[ 1950.047911]  ? __pfx_lock_release+0x10/0x10
[ 1950.048286]  ? __pfx___alloc_pages_slowpath.constprop.0+0x10/0x10
[ 1950.048824]  ? prepare_alloc_pages+0x377/0x500
[ 1950.049228]  __alloc_pages+0x3f3/0x480
[ 1950.049568]  ? lock_acquire+0x19a/0x4c0
[ 1950.049917]  ? __pfx___alloc_pages+0x10/0x10
[ 1950.050306]  ? lock_release+0x1e3/0x680
[ 1950.050666]  alloc_pages+0x1a0/0x260
[ 1950.051014]  filemap_alloc_folio+0x389/0x430
[ 1950.051402]  ? __pfx_filemap_alloc_folio+0x10/0x10
[ 1950.051820]  ? down_read+0x1b4/0x470
[ 1950.052150]  __filemap_get_folio+0x285/0x8d0
[ 1950.052533]  filemap_fault+0x1586/0x21a0
[ 1950.052886]  ? lock_acquire+0x19a/0x4c0
[ 1950.053233]  ? __pfx_filemap_fault+0x10/0x10
[ 1950.053618]  ? __pfx_lock_release+0x10/0x10
[ 1950.053990]  __do_fault+0x10d/0x480
[ 1950.054325]  __handle_mm_fault+0x1175/0x2b90
[ 1950.054709]  ? __pfx___handle_mm_fault+0x10/0x10
[ 1950.055133]  ? find_vma+0x111/0x1b0
[ 1950.055446]  ? __pfx_find_vma+0x10/0x10
[ 1950.055793]  handle_mm_fault+0x2c1/0xb10
[ 1950.056143]  ? access_error+0x15e/0x320
[ 1950.056485]  ? lock_mm_and_find_vma+0xc1/0x780
[ 1950.056881]  do_user_addr_fault+0x693/0x1490
[ 1950.057268]  exc_page_fault+0x9c/0x1a0
[ 1950.057607]  asm_exc_page_fault+0x26/0x30
[ 1950.057965] RIP: 0033:0x7fce1cf02cdf
[ 1950.058279] Code: Unable to access opcode bytes at 0x7fce1cf02cb5.
[ 1950.058790] RSP: 002b:00007ffcf073e800 EFLAGS: 00010207
[ 1950.059248] RAX: 0000000000000000 RBX: 000055591a514bff RCX: 000055591a514bff
[ 1950.059827] RDX: 00007fce1cfe0bc0 RSI: 0000000000000001 RDI: 7465677261742e79
[ 1950.060403] RBP: 00007ffcf073e820 R08: 34cd87e30f604295 R09: dac8a94d9bbc9bcc
[ 1950.060982] R10: bc2b64af7e3c7c14 R11: 0000000000000000 R12: 000055591a514c00
[ 1950.061561] R13: 000055591a515ca8 R14: 000055591bb9a210 R15: 000055591bc1bda0
[ 1950.062157]  </TASK>
[ 1950.062418] Mem-Info:
[ 1950.062650] active_anon:4621 inactive_anon:18813 isolated_anon:0
[ 1950.062650]  active_file:43 inactive_file:1 isolated_file:0
[ 1950.062650]  unevictable:0 dirty:0 writeback:0
[ 1950.062650]  slab_reclaimable:7932 slab_unreclaimable:62765
[ 1950.062650]  mapped:69634 shmem:112 pagetables:5589
[ 1950.062650]  sec_pagetables:0 bounce:0
[ 1950.062650]  kernel_misc_reclaimable:0
[ 1950.062650]  free:5726 free_pcp:426 free_cma:0
[ 1950.065632] Node 0 active_anon:18484kB inactive_anon:75252kB active_file:76kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278536kB dirty:0kB writeback:0kB shmem:448kB writeback_tmp:0kB kernel_stack:9120kB pagetables:22356kB sec_pagetables:0kB all_unreclaimable? yes
[ 1950.067709] Node 0 DMA free:6468kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB active_anon:0kB inactive_anon:80kB active_file:24kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 1950.069751] lowmem_reserve[]: 0 1606 1606 1606
[ 1950.070160] Node 0 DMA32 free:16436kB boost:4096kB min:9200kB low:10844kB high:12488kB reserved_highatomic:14336KB active_anon:18484kB inactive_anon:75172kB active_file:60kB inactive_file:0kB unevictable:0kB writepending:0kB present:2080640kB managed:1655352kB mlocked:0kB bounce:0kB free_pcp:1696kB local_pcp:456kB free_cma:0kB
[ 1950.072430] lowmem_reserve[]: 0 0 0 0
[ 1950.072840] Node 0 DMA: 5*4kB (ME) 6*8kB (UM) 7*16kB (UM) 3*32kB (UE) 5*64kB (UME) 4*128kB (UME) 3*256kB (UE) 3*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 6484kB
[ 1950.074200] Node 0 DMA32: 967*4kB (UM) 421*8kB (UM) 185*16kB (UM) 169*32kB (UM) 11*64kB (UM) 1*128kB (M) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16436kB
[ 1950.075464] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1950.076155] 144 total pagecache pages
[ 1950.076464] 0 pages in swap cache
[ 1950.076770] Free swap  = 0kB
[ 1950.077020] Total swap = 0kB
[ 1950.077270] 524158 pages RAM
[ 1950.077536] 0 pages HighMem/MovableOnly
[ 1950.077854] 106480 pages reserved
[ 1950.078136] Unreclaimable slab info:
[ 1950.078436] Name                      Used          Total
[ 1950.078896] pid_2                    147KB        251KB
[ 1950.079343] fib6_nodes                28KB         28KB
[ 1950.079783] ip6_dst_cache             33KB         33KB
[ 1950.080213] RAWv6                    123KB        123KB
[ 1950.080662] UDPv6                     64KB         64KB
[ 1950.081095] TCPv6                     62KB         62KB
[ 1950.081543] scsi_sense_cache           8KB          8KB
[ 1950.081972] virtio_scsi_cmd           16KB         16KB
[ 1950.082403] bio-120                    7KB          7KB
[ 1950.082860] mqueue_inode_cache         60KB         60KB
[ 1950.083306] nfs_commit_data           15KB         15KB
[ 1950.083755] nfs_write_data            47KB         47KB
[ 1950.084183] jbd2_inode                 7KB          7KB
[ 1950.084620] ext4_system_zone           3KB          3KB
[ 1950.085047] ext4_io_end_vec            7KB          7KB
[ 1950.085490] pid_namespace              7KB          7KB
[ 1950.085919] rpc_buffers               31KB         31KB
[ 1950.086344] rpc_tasks                  3KB          3KB
[ 1950.086786] UNIX-STREAM              204KB        384KB
[ 1950.087227] UNIX                     780KB        800KB
[ 1950.087672] tcp_bind2_bucket           8KB          8KB
[ 1950.088101] tcp_bind_bucket            8KB          8KB
[ 1950.088541] ip_fib_trie                8KB          8KB
[ 1950.088964] ip_fib_alias              11KB         11KB
[ 1950.089384] ip_dst_cache               8KB          8KB
[ 1950.089833] RAW                       30KB         30KB
[ 1950.090259] UDP                      125KB        215KB
[ 1950.090710] request_sock_TCP           7KB          7KB
[ 1950.091144] TCP                       60KB         60KB
[ 1950.091586] hugetlbfs_inode_cache         31KB         31KB
[ 1950.092035] bio-248                   11KB         11KB
[ 1950.092459] ep_head                    8KB          8KB
[ 1950.092901] eventpoll_pwq             23KB         23KB
[ 1950.093326] eventpoll_epi             43KB         43KB
[ 1950.093769] inotify_inode_mark         47KB         54KB
[ 1950.094202] sgpool-128                59KB         59KB
[ 1950.094639] sgpool-64                 63KB         63KB
[ 1950.095083] sgpool-32                 65KB        141KB
[ 1950.095521] sgpool-16                157KB        157KB
[ 1950.095949] sgpool-8                 191KB        191KB
[ 1950.096368] request_queue             63KB         63KB
[ 1950.096810] blkdev_ioc                 8KB          8KB
[ 1950.097235] bio-184                   44KB         44KB
[ 1950.097674] biovec-max               306KB        306KB
[ 1950.098099] biovec-64                114KB        114KB
[ 1950.098536] biovec-16                138KB        138KB
[ 1950.098970] uid_cache                  7KB          7KB
[ 1950.099395] dmaengine-unmap-2          4KB          4KB
[ 1950.099835] audit_buffer               7KB          7KB
[ 1950.100256] skbuff_small_head       8834KB       8851KB
[ 1950.100697] skbuff_fclone_cache        127KB        127KB
[ 1950.101137] skbuff_head_cache       3682KB       3682KB
[ 1950.101573] file_lock_cache           43KB         43KB
[ 1950.101994] file_lock_ctx              7KB          7KB
[ 1950.102414] fsnotify_mark_connector         20KB         20KB
[ 1950.102894] taskstats                 54KB         54KB
[ 1950.103331] proc_dir_entry           307KB        307KB
[ 1950.103773] seq_file                  52KB         52KB
[ 1950.104185] sigqueue                  55KB         55KB
[ 1950.104617] shmem_inode_cache       1314KB       1365KB
[ 1950.105035] kernfs_iattrs_cache        257KB        265KB
[ 1950.105465] kernfs_node_cache       5145KB       5153KB
[ 1950.105909] mnt_cache                149KB        149KB
[ 1950.106341] filp                     666KB       1845KB
[ 1950.106785] names_cache              119KB        242KB
[ 1950.107214] net_namespace             82KB         82KB
[ 1950.107652] hashtab_node             274KB        274KB
[ 1950.108071] ebitmap_node            1149KB       1149KB
[ 1950.108503] avtab_node              4976KB       4976KB
[ 1950.108922] avc_node                  35KB         35KB
[ 1950.109348] lsm_inode_cache         2784KB       3229KB
[ 1950.109782] lsm_file_cache            47KB        148KB
[ 1950.110195] key_jar                   23KB         23KB
[ 1950.110637] uts_namespace             15KB         15KB
[ 1950.111072] nsproxy                    7KB          7KB
[ 1950.111513] vma_lock                1906KB       2061KB
[ 1950.111932] vm_area_struct          2017KB       2179KB
[ 1950.112353] fs_cache                  59KB         68KB
[ 1950.113748] files_cache              255KB        255KB
[ 1950.114173] signal_cache             489KB        546KB
[ 1950.114731] sighand_cache            654KB        691KB
[ 1950.115159] task_struct             2091KB       3215KB
[ 1950.115591] cred_jar                 111KB        140KB
[ 1950.116017] anon_vma_chain           621KB        661KB
[ 1950.116425] anon_vma                1022KB       1067KB
[ 1950.116867] pid                       52KB         63KB
[ 1950.117289] Acpi-Operand              78KB        114KB
[ 1950.117730] Acpi-ParseExt             23KB         23KB
[ 1950.118147] Acpi-Parse                27KB         43KB
[ 1950.118585] Acpi-State                35KB         51KB
[ 1950.119017] Acpi-Namespace            24KB         24KB
[ 1950.119439] numa_policy                3KB          3KB
[ 1950.119876] perf_event                31KB         31KB
[ 1950.120289] trace_event_file         187KB        187KB
[ 1950.120732] ftrace_event_field        442KB        442KB
[ 1950.121158] pool_workqueue            47KB         47KB
[ 1950.121588] maple_node               537KB       1072KB
[ 1950.122000] task_group                16KB         16KB
[ 1950.122418] mm_struct                707KB        781KB
[ 1950.122849] vmap_area                 53KB         55KB
[ 1950.123274] page->ptl                534KB        594KB
[ 1950.123710] kmemleak_scan_area         25KB         31KB
[ 1950.124234] kmemleak_object       109059KB     109899KB
[ 1950.124666] kmalloc-cg-8k             64KB         64KB
[ 1950.125085] kmalloc-cg-4k           1816KB       2368KB
[ 1950.125514] kmalloc-cg-2k           2108KB       2272KB
[ 1950.125929] kmalloc-cg-1k            426KB        480KB
[ 1950.126340] kmalloc-cg-512           258KB        304KB
[ 1950.126767] kmalloc-cg-256            32KB         32KB
[ 1950.127200] kmalloc-cg-192            36KB         36KB
[ 1950.127622] kmalloc-cg-128            36KB         36KB
[ 1950.128033] kmalloc-cg-96             36KB         48KB
[ 1950.128450] kmalloc-cg-64             36KB         36KB
[ 1950.128848] kmalloc-cg-32             40KB         52KB
[ 1950.129256] kmalloc-cg-16              8KB          8KB
[ 1950.129688] kmalloc-cg-8              15KB         15KB
[ 1950.130112] kmalloc-8k              1664KB       1664KB
[ 1950.130545] kmalloc-4k              6328KB       7520KB
[ 1950.130962] kmalloc-2k              2968KB       3616KB
[ 1950.131356] kmalloc-1k             24800KB      24800KB
[ 1950.131785] kmalloc-512             1568KB       1696KB
[ 1950.132160] kmalloc-256              965KB       1096KB
[ 1950.132590] kmalloc-192              580KB        772KB
[ 1950.132997] kmalloc-128              309KB        340KB
[ 1950.133406] kmalloc-96              1171KB       1204KB
[ 1950.133833] kmalloc-64               704KB        796KB
[ 1950.134245] kmalloc-32               506KB        576KB
[ 1950.134668] kmalloc-16               319KB        328KB
[ 1950.135101] kmalloc-8                250KB        258KB
[ 1950.135528] kmem_cache_node           51KB         51KB
[ 1950.135946] kmem_cache                78KB         78KB
[ 1950.136354] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz5,task=syz-executor.5,pid=11994,uid=0
[ 1950.137358] Out of memory: Killed process 11994 (syz-executor.5) total-vm:93544kB, anon-rss:308kB, file-rss:34944kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1950.565795] systemd[1]: systemd-journald.service: Main process exited, code=killed, status=6/ABRT
[ 1950.572164] systemd[1]: systemd-journald.service: Failed with result 'watchdog'.
[ 1950.644625] systemd[1]: systemd-journald.service: Consumed 27.074s CPU time.
[ 1950.710625] systemd[1]: systemd-timesyncd.service: Failed with result 'timeout'.
[ 1950.733863] systemd[1]: Failed to start Network Time Synchronization.
[ 1950.775180] systemd[1]: systemd-timesyncd.service: Consumed 15.810s CPU time.
[ 1950.851723] systemd[1]: systemd-journald.service: Scheduled restart job, restart counter is at 1.
[ 1950.852436] systemd[1]: systemd-timesyncd.service: Scheduled restart job, restart counter is at 2.
[ 1950.983647] systemd[1]: Stopping Flush Journal to Persistent Storage...
[ 1950.999695] systemd[1]: Stopped Network Time Synchronization.
[ 1951.027888] systemd[1]: systemd-timesyncd.service: Consumed 15.810s CPU time.
[ 1951.875839] systemd[1]: Starting Network Time Synchronization...
[ 1953.066220] systemd[1]: systemd-journal-flush.service: Succeeded.
[ 1953.090210] systemd[1]: Stopped Flush Journal to Persistent Storage.
[ 1953.096991] systemd[1]: Stopped Journal Service.
[ 1953.099119] systemd[1]: systemd-journald.service: Consumed 27.074s CPU time.
[ 1953.147060] systemd[1]: Starting Journal Service...
[ 1954.022859] systemd[1]: Started Network Time Synchronization.
[ 1954.101328] systemd-journald[14898]: File /var/log/journal/7e681e5076844de4a5cfa8606a84b008/system.journal corrupted or uncleanly shut down, renaming and replacing.
[ 1956.276659] systemd[1]: Started Journal Service.
[ 1957.350935] systemd-journald[14898]: Received client request to flush runtime journal.
01:46:09 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:46:09 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:46:09 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:46:09 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:46:09 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, 0x0)
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:46:09 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:09 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:46:09 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:09 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:46:09 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:10 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:10 executing program 2:
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:46:10 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:46:10 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:10 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:46:10 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:46:10 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, 0x0)
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:46:22 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:46:22 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:46:22 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, 0x0)
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:46:22 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:22 executing program 2:
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:46:22 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:46:22 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:22 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00), 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:46:22 executing program 3:
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:22 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00), 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:46:22 executing program 2:
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:46:22 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:46:23 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:46:23 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:46:23 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, 0x0, 0x0)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:46:23 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:46:23 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:23 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:46:36 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:46:36 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:46:36 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:46:36 executing program 3:
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:36 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, 0x0, 0x0)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:46:36 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, 0x0, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r1}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})

01:46:36 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:36 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00), 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r4, 0x134, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x9, 0x74}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x35}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r5 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)

01:46:37 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:46:37 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:46:37 executing program 3:
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:50 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:46:50 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

01:46:50 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:46:50 executing program 5:
io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:46:50 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, 0x0, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})

01:46:50 executing program 4:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
r2 = syz_io_uring_setup(0x153, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r4, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, 0x0, 0x0)
r5 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r5, 0x8000000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
io_uring_register$IORING_UNREGISTER_BUFFERS(r5, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x7918, &(0x7f0000000600)={0x0, 0x16b7, 0x20, 0x0, 0xd9}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000680), &(0x7f00000006c0))
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000007c0)={0x2, &(0x7f0000000780)=[{0x5, 0x7, 0x26, 0x3}, {0xff, 0x4b, 0x1, 0x1}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000880)={r7, 0x3, r3, 0x0, 0x80000})

01:46:50 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:50 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:51 executing program 5:
io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
fork()

01:46:51 executing program 7:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
syz_io_uring_setup(0x3edf, &(0x7f0000000500)={0x0, 0xd77f, 0x0, 0x0, 0x25c}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000580), &(0x7f00000005c0))
fork()

01:46:51 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, 0x0, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(0x0)
io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3})

01:46:51 executing program 3:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
r1 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4, 0x0, r0})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r1})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
r3 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r3, 0x8000000)
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:51 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x10, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7ae3, &(0x7f0000000080)={0x0, 0x984a, 0x8, 0x1, 0x3c4})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319, 0x0, r0})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000340))
r2 = syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000000, 0x10, r2, 0x8000000)
fork()

01:46:51 executing program 0:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0x8000000)
r0 = io_uring_setup(0x7437, &(0x7f0000000000)={0x0, 0xf049, 0x0, 0x3, 0x272})
io_uring_setup(0x30e4, &(0x7f0000000100)={0x0, 0xfbd0, 0x20, 0x2, 0x319})
io_uring_setup(0x793, &(0x7f0000000180)={0x0, 0xc11a, 0x20, 0x3, 0x382})
syz_io_uring_setup(0x0, &(0x7f0000000200)={0x0, 0x1b6, 0x10, 0x0, 0xa9}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000280), &(0x7f00000002c0))
socketpair(0x1, 0x80805, 0x6, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_inet6_udp_SIOCINQ(r2, 0x541b, &(0x7f0000000340))
write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000380)={0x7, 0x33, 0x1}, 0x7)
syz_io_uring_setup(0x77bf, &(0x7f00000003c0)={0x0, 0x1b13, 0x2, 0x2, 0x161, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000004c0)={'batadv_slave_0\x00'})
fork()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000700))

01:46:51 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180), 0xc, &(0x7f0000000300)={0x0}}, 0x800)
sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, 0x0, 0x4040814)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/xz_dec', 0x20002, 0x0)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, 0x0, 0x20040001)
ioctl$EVIOCGKEYCODE_V2(0xffffffffffffffff, 0x80284504, &(0x7f0000000b80)=""/188)
r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000c80)='ns/pid_for_children\x00')
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000e80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000cc0)={0x11c, r1, 0x20, 0x0, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r0}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r2}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0xc000}, 0x4000001)
pipe(&(0x7f0000000ec0)={<r3=>0xffffffffffffffff})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RADAR_DETECT(r3, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4044011}, 0x40044)
r4 = io_uring_setup(0x1fd6, &(0x7f0000001080)={0x0, 0x9f59, 0x10, 0x1, 0x2f3, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)

[ 2017.150075] cgroup: fork rejected by pids controller in /syz5
[ 2031.542516] syz-fuzzer invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0
[ 2031.543239] CPU: 0 PID: 243 Comm: syz-fuzzer Not tainted 6.5.0-rc3-next-20230725 #1
[ 2031.543888] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2031.544586] Call Trace:
[ 2031.544811]  <TASK>
[ 2031.545005]  dump_stack_lvl+0xc1/0xf0
[ 2031.545340]  dump_header+0x10a/0xd50
[ 2031.545682]  oom_kill_process+0x25d/0x640
[ 2031.546046]  out_of_memory+0x1334/0x1640
[ 2031.546403]  ? __pfx_out_of_memory+0x10/0x10
[ 2031.546797]  __alloc_pages_slowpath.constprop.0+0x1674/0x1ed0
[ 2031.547310]  ? __pfx_lock_release+0x10/0x10
[ 2031.547691]  ? __pfx___alloc_pages_slowpath.constprop.0+0x10/0x10
[ 2031.548238]  ? prepare_alloc_pages+0x377/0x500
[ 2031.548648]  __alloc_pages+0x3f3/0x480
[ 2031.548987]  ? lock_acquire+0x19a/0x4c0
[ 2031.549333]  ? __pfx___alloc_pages+0x10/0x10
[ 2031.549717]  ? lock_release+0x1e3/0x680
[ 2031.550075]  alloc_pages+0x1a0/0x260
[ 2031.550409]  filemap_alloc_folio+0x389/0x430
[ 2031.550796]  ? __pfx_filemap_alloc_folio+0x10/0x10
[ 2031.551224]  ? down_read+0x1b4/0x470
[ 2031.551551]  __filemap_get_folio+0x285/0x8d0
[ 2031.551936]  filemap_fault+0x1586/0x21a0
[ 2031.552296]  ? lock_acquire+0x19a/0x4c0
[ 2031.552638]  ? __pfx_filemap_fault+0x10/0x10
[ 2031.553029]  ? __pfx_lock_release+0x10/0x10
[ 2031.553319]  __do_fault+0x10d/0x480
[ 2031.553647]  __handle_mm_fault+0x1175/0x2b90
[ 2031.554025]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2031.554443]  ? find_vma+0x111/0x1b0
[ 2031.554761]  ? __pfx_find_vma+0x10/0x10
[ 2031.555101]  handle_mm_fault+0x2c1/0xb10
[ 2031.555447]  ? access_error+0x15e/0x320
[ 2031.555791]  ? lock_mm_and_find_vma+0xc1/0x780
[ 2031.556200]  do_user_addr_fault+0x693/0x1490
[ 2031.556589]  exc_page_fault+0x9c/0x1a0
[ 2031.556925]  asm_exc_page_fault+0x26/0x30
[ 2031.557291] RIP: 0033:0x466533
[ 2031.557580] Code: Unable to access opcode bytes at 0x466509.
[ 2031.558057] RSP: 002b:000000c00003fe80 EFLAGS: 00010206
[ 2031.558506] RAX: ffffffffffffff92 RBX: 000000003b966fc6 RCX: 0000000000466533
[ 2031.559082] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000001f20e78
[ 2031.559661] RBP: 000000c00003fec8 R08: 0000000000000000 R09: 0000000000000000
[ 2031.560261] R10: 000000c00003feb8 R11: 0000000000000206 R12: 0000000000438880
[ 2031.560850] R13: 0000000000000000 R14: 0000000000e5de2c R15: 0000000000000000
[ 2031.561453]  </TASK>
[ 2031.561711] Mem-Info:
[ 2031.561931] active_anon:4627 inactive_anon:18384 isolated_anon:0
[ 2031.561931]  active_file:158 inactive_file:114 isolated_file:0
[ 2031.561931]  unevictable:0 dirty:0 writeback:0
[ 2031.561931]  slab_reclaimable:8119 slab_unreclaimable:62346
[ 2031.561931]  mapped:69854 shmem:112 pagetables:5919
[ 2031.561931]  sec_pagetables:0 bounce:0
[ 2031.561931]  kernel_misc_reclaimable:0
[ 2031.561931]  free:5804 free_pcp:5 free_cma:0
[ 2031.564812] Node 0 active_anon:18508kB inactive_anon:73536kB active_file:632kB inactive_file:456kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:279416kB dirty:0kB writeback:0kB shmem:448kB writeback_tmp:0kB kernel_stack:9504kB pagetables:23676kB sec_pagetables:0kB all_unreclaimable? no
[ 2031.566939] Node 0 DMA free:6492kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:84kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2031.569004] lowmem_reserve[]: 0 1606 1606 1606
[ 2031.569422] Node 0 DMA32 free:16724kB boost:0kB min:5104kB low:6748kB high:8392kB reserved_highatomic:16384KB active_anon:18508kB inactive_anon:73452kB active_file:724kB inactive_file:632kB unevictable:0kB writepending:0kB present:2080640kB managed:1655352kB mlocked:0kB bounce:0kB free_pcp:20kB local_pcp:0kB free_cma:0kB
[ 2031.571700] lowmem_reserve[]: 0 0 0 0
[ 2031.572069] Node 0 DMA: 21*4kB (MEH) 7*8kB (MH) 7*16kB (MH) 3*32kB (EH) 6*64kB (MEH) 5*128kB (MEH) 4*256kB (EH) 4*512kB (MEH) 2*1024kB (ME) 0*2048kB 0*4096kB = 6492kB
[ 2031.573411] Node 0 DMA32: 1168*4kB (UMH) 562*8kB (UMH) 300*16kB (UMH) 71*32kB (UMH) 7*64kB (UM) 2*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16944kB
[ 2031.574705] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2031.575393] 401 total pagecache pages
[ 2031.575733] 0 pages in swap cache
[ 2031.576036] Free swap  = 0kB
[ 2031.576252] Total swap = 0kB
[ 2031.576445] 524158 pages RAM
[ 2031.576679] 0 pages HighMem/MovableOnly
[ 2031.576928] 106480 pages reserved
[ 2031.577144] Unreclaimable slab info:
[ 2031.577378] Name                      Used          Total
[ 2031.577732] pid_2                    377KB        431KB
[ 2031.578064] fib6_nodes                28KB         28KB
[ 2031.578389] ip6_dst_cache             33KB         33KB
[ 2031.578731] RAWv6                    123KB        123KB
[ 2031.579058] UDPv6                     64KB         64KB
[ 2031.579382] TCPv6                     62KB         62KB
[ 2031.579724] scsi_sense_cache           8KB          8KB
[ 2031.580053] virtio_scsi_cmd           16KB         16KB
[ 2031.580378] bio-120                    7KB          7KB
[ 2031.580725] mqueue_inode_cache         60KB         60KB
[ 2031.581051] nfs_commit_data           15KB         15KB
[ 2031.581376] nfs_write_data            47KB         47KB
[ 2031.581714] jbd2_inode                 7KB          7KB
[ 2031.582041] ext4_system_zone           3KB          3KB
[ 2031.582361] ext4_io_end_vec            7KB          7KB
[ 2031.582709] pid_namespace              7KB          7KB
[ 2031.583031] rpc_buffers               31KB         31KB
[ 2031.583355] rpc_tasks                  3KB          3KB
[ 2031.583693] UNIX-STREAM              204KB        384KB
[ 2031.584032] UNIX                     760KB        800KB
[ 2031.584354] tcp_bind2_bucket           8KB          8KB
[ 2031.584700] tcp_bind_bucket            8KB          8KB
[ 2031.585045] ip_fib_trie                8KB          8KB
[ 2031.585371] ip_fib_alias              11KB         11KB
[ 2031.585713] ip_dst_cache               8KB          8KB
[ 2031.586040] RAW                       30KB         30KB
[ 2031.586366] UDP                      215KB        215KB
[ 2031.586709] request_sock_TCP           7KB          7KB
[ 2031.587031] TCP                       60KB         60KB
[ 2031.587360] hugetlbfs_inode_cache         31KB         31KB
[ 2031.587718] bio-248                   11KB         11KB
[ 2031.588052] ep_head                    8KB          8KB
[ 2031.588378] eventpoll_pwq             23KB         23KB
[ 2031.588719] eventpoll_epi             43KB         43KB
[ 2031.589043] inotify_inode_mark         47KB         54KB
[ 2031.589372] sgpool-128                59KB         59KB
[ 2031.589714] sgpool-64                 63KB         63KB
[ 2031.590041] sgpool-32                571KB        614KB
[ 2031.590373] sgpool-16                277KB        277KB
[ 2031.590715] sgpool-8                 176KB        191KB
[ 2031.591036] request_queue             63KB         63KB
[ 2031.591360] blkdev_ioc                 8KB          8KB
[ 2031.591701] bio-184                   44KB         44KB
[ 2031.592038] biovec-max               735KB        833KB
[ 2031.592367] biovec-64               1015KB       1074KB
[ 2031.592707] biovec-16                161KB        161KB
[ 2031.593032] uid_cache                  7KB          7KB
[ 2031.593360] dmaengine-unmap-2          4KB          4KB
[ 2031.593707] audit_buffer               7KB          7KB
[ 2031.594032] skbuff_small_head       3606KB       3606KB
[ 2031.594357] skbuff_fclone_cache        127KB        127KB
[ 2031.594709] skbuff_head_cache       1522KB       1522KB
[ 2031.595036] file_lock_cache           43KB         43KB
[ 2031.595360] file_lock_ctx              7KB          7KB
[ 2031.595701] fsnotify_mark_connector         20KB         20KB
[ 2031.596063] taskstats                 54KB         54KB
[ 2031.596390] proc_dir_entry           307KB        307KB
[ 2031.596729] seq_file                  48KB         48KB
[ 2031.597053] sigqueue                  47KB         47KB
[ 2031.597378] shmem_inode_cache       1350KB       1427KB
[ 2031.597719] kernfs_iattrs_cache        256KB        265KB
[ 2031.598054] kernfs_node_cache       5142KB       5164KB
[ 2031.598376] mnt_cache                157KB        157KB
[ 2031.598724] filp                    1625KB       1860KB
[ 2031.599050] names_cache             9979KB      10246KB
[ 2031.599378] net_namespace             82KB         82KB
[ 2031.599717] hashtab_node             274KB        274KB
[ 2031.600053] ebitmap_node            1149KB       1149KB
[ 2031.600377] avtab_node              4976KB       4976KB
[ 2031.600721] avc_node                  35KB         35KB
[ 2031.601080] lsm_inode_cache         2888KB       3229KB
[ 2031.601406] lsm_file_cache            87KB        148KB
[ 2031.601746] key_jar                   23KB         23KB
[ 2031.602071] uts_namespace             15KB         15KB
[ 2031.602396] nsproxy                    7KB          7KB
[ 2031.602745] vma_lock                2134KB       2194KB
[ 2031.603078] vm_area_struct          2289KB       2353KB
[ 2031.603403] fs_cache                  68KB         68KB
[ 2031.603742] files_cache              265KB        270KB
[ 2031.604079] signal_cache             540KB        577KB
[ 2031.604407] sighand_cache            675KB        691KB
[ 2031.604758] task_struct             7466KB       8154KB
[ 2031.605087] cred_jar                 125KB        148KB
[ 2031.605422] anon_vma_chain           686KB        708KB
[ 2031.605763] anon_vma                1049KB       1075KB
[ 2031.606089] pid                       51KB         63KB
[ 2031.606421] Acpi-Operand              78KB        114KB
[ 2031.606759] Acpi-ParseExt             23KB         23KB
[ 2031.607084] Acpi-Parse                27KB         43KB
[ 2031.607408] Acpi-State                35KB         51KB
[ 2031.607751] Acpi-Namespace            24KB         24KB
[ 2031.608086] numa_policy                3KB          3KB
[ 2031.608408] perf_event                31KB         31KB
[ 2031.608750] trace_event_file         187KB        187KB
[ 2031.609076] ftrace_event_field        442KB        442KB
[ 2031.609407] pool_workqueue            47KB         47KB
[ 2031.609767] maple_node               717KB       1184KB
[ 2031.610092] task_group                16KB         16KB
[ 2031.610414] mm_struct                765KB        811KB
[ 2031.610754] vmap_area                 51KB         55KB
[ 2031.611081] page->ptl                616KB        641KB
[ 2031.611406] kmemleak_scan_area         31KB         31KB
[ 2031.612038] kmemleak_object       108771KB     110003KB
[ 2031.612365] kmalloc-cg-8k             64KB         64KB
[ 2031.612708] kmalloc-cg-4k           2096KB       2400KB
[ 2031.613035] kmalloc-cg-2k           2376KB       2400KB
[ 2031.613363] kmalloc-cg-1k            428KB        480KB
[ 2031.613706] kmalloc-cg-512           274KB        304KB
[ 2031.614031] kmalloc-cg-256            32KB         32KB
[ 2031.614353] kmalloc-cg-192            36KB         36KB
[ 2031.614691] kmalloc-cg-128            36KB         36KB
[ 2031.615015] kmalloc-cg-96             43KB         48KB
[ 2031.615339] kmalloc-cg-64             36KB         36KB
[ 2031.615685] kmalloc-cg-32             36KB         52KB
[ 2031.616015] kmalloc-cg-16              8KB          8KB
[ 2031.616340] kmalloc-cg-8              15KB         15KB
[ 2031.616692] kmalloc-8k              1664KB       1664KB
[ 2031.617024] kmalloc-4k              7384KB       7808KB
[ 2031.617357] kmalloc-2k              3004KB       3616KB
[ 2031.617697] kmalloc-1k             10792KB      10792KB
[ 2031.618026] kmalloc-512             1672KB       1744KB
[ 2031.618348] kmalloc-256             1072KB       1072KB
[ 2031.618713] kmalloc-192              615KB        768KB
[ 2031.619044] kmalloc-128              323KB        340KB
[ 2031.619375] kmalloc-96               797KB        908KB
[ 2031.619724] kmalloc-64               752KB        796KB
[ 2031.620064] kmalloc-32               529KB        576KB
[ 2031.620391] kmalloc-16               322KB        328KB
[ 2031.620729] kmalloc-8                255KB        258KB
[ 2031.621056] kmem_cache_node           51KB         51KB
[ 2031.621377] kmem_cache                78KB         78KB
[ 2031.621716] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/ssh.service,task=syz-fuzzer,pid=243,uid=0
[ 2031.624126] Out of memory (oom_kill_allocating_task): Killed process 242 (syz-fuzzer) total-vm:963116kB, anon-rss:39808kB, file-rss:128kB, shmem-rss:0kB, UID:0 pgtables:388kB oom_score_adj:0

VM DIAGNOSIS:
01:47:07  Registers:
info registers vcpu 0
RAX=ffffffff860b7a95 RBX=0000000000000001 RCX=ffffffff860b7a90 RDX=0000000000000000
RSI=0000000000000000 RDI=0000000000000001 RBP=ffff88806ce09af0 RSP=ffff88806ce09a28
R8 =ffffffff860b7a94 R9 =ffff88806ce09ad8 R10=0000000000038001 R11=000000000000786a
R12=ffff88806ce09af8 R13=ffff88806ce09ae0 R14=ffff88806ce09ad9 R15=ffff88806ce09a98
RIP=ffffffff81132a4f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f56633ac030 CR3=000000001e5b8000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffffffffffffffffffff XMM01=30306234386136303638616663356134
XMM02=38303062343861363036386166633561 XMM03=2f6c616e72756f6a2f676f6c2f6e7572
XMM04=e5eb192b9c922afc00000000000b6b08 XMM05=a1fcdcf819d7e1e500000000000b04c8
XMM06=d3fdd5f48436fbd700000000000af138 XMM07=00000000000000000000000000000000
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=000000000000000a RBX=ffff88800efca580 RCX=ffff88806cf099b0 RDX=0000000000000003
RSI=ffffffff8560c4e0 RDI=ffff88800efca580 RBP=0000000000000002 RSP=ffff88806cf09910
R8 =0000000000000001 R9 =ffff88800efca528 R10=ffffffff85d4a2d7 R11=0000000000000001
R12=ffff88800efca580 R13=ffffffff8560c4e0 R14=ffff88806cf099b0 R15=ffff88800efc9b40
RIP=ffffffff8458dd90 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f702cb086a0 CR3=000000000dfa6000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=c2c4e91edae5aec91b96ded53ebdc924
XMM02=baf018ee46e332e8bdb101a502eb858d XMM03=ca95da989c8e95af7067ae4aa7493ea8
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=0d0c0f0e09080b0a0504070601000302 XMM07=0e0d0c0f0a09080b0605040702010003
XMM08=64707466730073254073250070746673 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000