021] ? do_syscall_64+0x26/0x790 [ 1408.730587][ T3021] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1408.736661][ T3021] __x64_sys_sendto+0xe1/0x1a0 [ 1408.741436][ T3021] do_syscall_64+0xfa/0x790 [ 1408.745953][ T3021] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1408.751849][ T3021] RIP: 0033:0x45a679 [ 1408.755749][ T3021] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1408.775355][ T3021] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1408.783771][ T3021] RAX: ffffffffffffffda RBX: 00007f1d88fdcc90 RCX: 000000000045a679 [ 1408.791749][ T3021] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1408.799730][ T3021] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1408.807704][ T3021] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1408.815771][ T3021] R13: 00000000004c978e R14: 00000000004e1530 R15: 0000000000000004 [ 1408.824697][ C0] net_ratelimit: 14 callbacks suppressed [ 1408.824718][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1408.836228][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1408.842150][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1408.847931][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:57:01 executing program 0 (fault-call:8 fault-nth:5): sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:01 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142811) [ 1408.971460][ T3139] gfs2: not a GFS2 filesystem 11:57:01 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = accept4(r0, 0x0, 0x0, 0x0) openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm_plock\x00', 0x0, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x37, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) readv(0xffffffffffffffff, &(0x7f0000001500)=[{&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/127, 0x7f}, {&(0x7f00000001c0)=""/117, 0x75}, {&(0x7f00000012c0)=""/211, 0xd3}, {&(0x7f0000000140)=""/52, 0x34}, {&(0x7f00000013c0)=""/136, 0x88}, {&(0x7f0000001480)=""/66, 0x42}], 0x7) sendto$inet6(r4, &(0x7f0000000000)="7b6ff8d1848772101dc5453fa7b1ae2bbb2851fdfed792460a328b39cf82ed1166c4a199fc48f4aa0a83c7db77143e16ca94bb", 0x33, 0x8000, &(0x7f0000000040)={0xa, 0x4e22, 0x1, @ipv4={[], [], @multicast2}, 0x48}, 0x1c) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r6 = dup2(r5, r5) write$UHID_GET_REPORT_REPLY(r6, &(0x7f0000000080), 0xa) getsockopt$inet6_opts(r6, 0x29, 0x36, &(0x7f0000001580)=""/221, &(0x7f0000001680)=0xdd) connect(r2, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) [ 1409.064324][ T3159] FAULT_INJECTION: forcing a failure. [ 1409.064324][ T3159] name failslab, interval 1, probability 0, space 0, times 0 [ 1409.077028][ T3159] CPU: 1 PID: 3159 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1409.086505][ T3159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1409.096600][ T3159] Call Trace: [ 1409.099916][ T3159] dump_stack+0x197/0x210 [ 1409.104254][ T3159] should_fail.cold+0xa/0x15 [ 1409.108862][ T3159] ? fault_create_debugfs_attr+0x180/0x180 [ 1409.114678][ T3159] ? ip_route_output_key_hash+0x246/0x360 [ 1409.120441][ T3159] __should_failslab+0x121/0x190 [ 1409.125385][ T3159] should_failslab+0x9/0x14 [ 1409.129902][ T3159] kmem_cache_alloc_trace+0x4b/0x790 [ 1409.135194][ T3159] ? xfrm_lookup+0x38/0x50 [ 1409.139624][ T3159] ip_setup_cork+0x6a8/0x8e0 [ 1409.144234][ T3159] ? icmp_push_reply+0x4a0/0x4a0 [ 1409.149174][ T3159] ip_append_data.part.0+0x146/0x180 [ 1409.154588][ T3159] ? icmp_push_reply+0x4a0/0x4a0 [ 1409.159538][ T3159] ip_append_data+0x6e/0x90 [ 1409.164061][ T3159] icmp_push_reply+0x13d/0x4a0 [ 1409.168964][ T3159] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1409.175216][ T3159] __icmp_send+0xc44/0x14a0 [ 1409.179735][ T3159] ? icmp_route_lookup.constprop.0+0x15c0/0x15c0 [ 1409.186065][ T3159] ? ipt_do_table+0xf13/0x1b80 [ 1409.190841][ T3159] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1409.197099][ T3159] ? perf_trace_lock+0xeb/0x4c0 [ 1409.201961][ T3159] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1409.208124][ T3159] ip_fragment.constprop.0+0x1ee/0x240 [ 1409.213587][ T3159] ? ip_fragment.constprop.0+0x1ee/0x240 [ 1409.219224][ T3159] __ip_finish_output+0x4c5/0xbd0 [ 1409.219241][ T3159] ? auditsc_get_stamp+0x180/0x2d0 [ 1409.219262][ T3159] ip_finish_output+0x38/0x1f0 [ 1409.219282][ T3159] ip_output+0x22b/0x680 [ 1409.219298][ T3159] ? ip_mc_output+0xf60/0xf60 [ 1409.219313][ T3159] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1409.219333][ T3159] ? __ip_finish_output+0xbd0/0xbd0 [ 1409.219348][ T3159] ? rcu_read_lock_held_common+0x130/0x130 [ 1409.219369][ T3159] ip_local_out+0xbb/0x1b0 [ 1409.219387][ T3159] __ip_queue_xmit+0x86f/0x1c10 [ 1409.219411][ T3159] ip_queue_xmit+0x5a/0x70 [ 1409.219424][ T3159] __tcp_transmit_skb+0x1ac0/0x38f0 [ 1409.219447][ T3159] ? __tcp_select_window+0x8b0/0x8b0 [ 1409.219459][ T3159] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1409.219476][ T3159] ? trace_hardirqs_on+0x67/0x240 [ 1409.219496][ T3159] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1409.219512][ T3159] tcp_write_xmit+0xf42/0x5a00 [ 1409.219526][ T3159] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1409.219561][ T3159] tcp_push_one+0xd7/0x110 [ 1409.234442][ T3159] tcp_sendmsg_locked+0xa87/0x33a0 [ 1409.234480][ T3159] ? tcp_sendpage+0x60/0x60 [ 1409.234501][ T3159] ? trace_hardirqs_on+0x67/0x240 [ 1409.330718][ T3159] ? lock_sock_nested+0x9a/0x120 [ 1409.335673][ T3159] ? __local_bh_enable_ip+0x15a/0x270 [ 1409.341164][ T3159] tcp_sendmsg+0x30/0x50 [ 1409.345428][ T3159] inet_sendmsg+0x9e/0xe0 [ 1409.349770][ T3159] ? inet_send_prepare+0x4e0/0x4e0 [ 1409.354903][ T3159] sock_sendmsg+0xd7/0x130 [ 1409.359328][ T3159] __sys_sendto+0x262/0x380 [ 1409.363841][ T3159] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1409.369229][ T3159] ? __mutex_unlock_slowpath+0xf0/0x6a0 [ 1409.374797][ T3159] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1409.381044][ T3159] ? fput_many+0x12c/0x1a0 [ 1409.385469][ T3159] ? fput+0x1b/0x20 [ 1409.389276][ T3159] ? ksys_write+0x1cf/0x290 [ 1409.393789][ T3159] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1409.399256][ T3159] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1409.404730][ T3159] ? do_syscall_64+0x26/0x790 [ 1409.409403][ T3159] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1409.415465][ T3159] __x64_sys_sendto+0xe1/0x1a0 [ 1409.420237][ T3159] do_syscall_64+0xfa/0x790 [ 1409.424745][ T3159] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1409.430633][ T3159] RIP: 0033:0x45a679 [ 1409.434521][ T3159] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1409.454121][ T3159] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1409.462534][ T3159] RAX: ffffffffffffffda RBX: 00007f1d88fdcc90 RCX: 000000000045a679 [ 1409.470511][ T3159] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1409.478478][ T3159] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1409.486439][ T3159] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1409.494408][ T3159] R13: 00000000004c978e R14: 00000000004e1530 R15: 0000000000000004 [ 1409.502678][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1409.508465][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:57:01 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x20000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:01 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142814) [ 1409.514395][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1409.520309][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1409.526088][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:57:02 executing program 0 (fault-call:8 fault-nth:6): sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:02 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:02 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c8", 0x93, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1409.723460][ T3274] gfs2: not a GFS2 filesystem [ 1409.801811][ T3322] FAULT_INJECTION: forcing a failure. [ 1409.801811][ T3322] name failslab, interval 1, probability 0, space 0, times 0 [ 1409.814596][ T3322] CPU: 1 PID: 3322 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1409.824059][ T3322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1409.834120][ T3322] Call Trace: [ 1409.837433][ T3322] dump_stack+0x197/0x210 [ 1409.841781][ T3322] should_fail.cold+0xa/0x15 [ 1409.846388][ T3322] ? fault_create_debugfs_attr+0x180/0x180 [ 1409.852209][ T3322] ? __kasan_check_read+0x11/0x20 [ 1409.857251][ T3322] __should_failslab+0x121/0x190 [ 1409.862202][ T3322] should_failslab+0x9/0x14 [ 1409.866718][ T3322] kmem_cache_alloc_node+0x56/0x740 [ 1409.871924][ T3322] ? __kernel_text_address+0xd/0x40 [ 1409.877141][ T3322] ? unwind_get_return_address+0x61/0xa0 [ 1409.882779][ T3322] ? profile_setup.cold+0xbb/0xbb [ 1409.887821][ T3322] __alloc_skb+0xd5/0x5e0 [ 1409.892165][ T3322] ? __kmalloc_reserve.isra.0+0xf0/0xf0 [ 1409.897722][ T3322] ? stack_trace_save+0xac/0xe0 [ 1409.902579][ T3322] ? stack_trace_consume_entry+0x190/0x190 [ 1409.908392][ T3322] alloc_skb_with_frags+0x93/0x590 [ 1409.913523][ T3322] sock_alloc_send_pskb+0x7ad/0x920 [ 1409.918728][ T3322] ? ip_fragment.constprop.0+0x1ee/0x240 [ 1409.924359][ T3322] ? ip_output+0x22b/0x680 [ 1409.928774][ T3322] ? ip_local_out+0xbb/0x1b0 [ 1409.928780][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1409.939084][ T3322] ? __ip_queue_xmit+0x86f/0x1c10 [ 1409.944123][ T3322] ? sock_wmalloc+0x120/0x120 11:57:02 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000100)='fdinfo\x00') getdents(r1, &(0x7f0000000ea9)=""/407, 0x197) listen(r0, 0x20000003) ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f0000000140)="87246eb7477802e2f4183587be364917462c841bd2c77e9ec73d13e08eaa4515d15372566097e4fc80110940a81dd8ad1987591473b91343bef4efeee1a00aef663cc520fef0e4af77efb7d19d2f5c7cd2a948df9497dbe6a27e1a829485158bfc784efe2e6c6e47c8751d8f055072ae2d020f4781c2cc5f07f18c2bed8cb3b0ef9f5c1fa763469573c07f9044373208f8711d2df5407e4ab66e5a4748d9ff20c4fbffcd443a91d771fd53e49b396c69a5202172b716dd271ed97ecc908517453064c3867cf1ff8f5404df5a66bcfbdba2f86e1cde00fddf98bdc9") r2 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r2, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r3 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet6_opts(r3, 0x29, 0x37, 0x0, 0x0) connect(r3, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) 11:57:02 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x1428e0) [ 1409.948819][ T3322] ? __sys_sendto+0x262/0x380 [ 1409.953496][ T3322] ? __x64_sys_sendto+0xe1/0x1a0 [ 1409.958437][ T3322] ? do_syscall_64+0xfa/0x790 [ 1409.963119][ T3322] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1409.969197][ T3322] ? call_rcu+0xb/0x10 [ 1409.973287][ T3322] ? dst_release+0x84/0xe0 [ 1409.977719][ T3322] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1409.983967][ T3322] ? xfrm_lookup_with_ifid+0x602/0x2390 [ 1409.989527][ T3322] sock_alloc_send_skb+0x32/0x40 [ 1409.994481][ T3322] __ip_append_data.isra.0+0x1708/0x3350 [ 1410.000141][ T3322] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1410.009088][ T3322] ? icmp_push_reply+0x4a0/0x4a0 [ 1410.014052][ T3322] ? ip_mc_finish_output+0x4a0/0x4a0 [ 1410.019350][ T3322] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1410.025599][ T3322] ? ip_setup_cork+0x59c/0x8e0 [ 1410.030371][ T3322] ? icmp_push_reply+0x4a0/0x4a0 [ 1410.035408][ T3322] ip_append_data.part.0+0xf9/0x180 [ 1410.040707][ T3322] ? icmp_push_reply+0x4a0/0x4a0 [ 1410.045773][ T3322] ip_append_data+0x6e/0x90 [ 1410.050293][ T3322] icmp_push_reply+0x13d/0x4a0 [ 1410.055072][ T3322] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1410.061324][ T3322] __icmp_send+0xc44/0x14a0 [ 1410.065845][ T3322] ? icmp_route_lookup.constprop.0+0x15c0/0x15c0 [ 1410.072177][ T3322] ? ipt_do_table+0xf13/0x1b80 [ 1410.076957][ T3322] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1410.083219][ T3322] ? perf_trace_lock+0xeb/0x4c0 [ 1410.088093][ T3322] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1410.094268][ T3322] ip_fragment.constprop.0+0x1ee/0x240 [ 1410.099740][ T3322] ? ip_fragment.constprop.0+0x1ee/0x240 11:57:02 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x1e0300) [ 1410.105386][ T3322] __ip_finish_output+0x4c5/0xbd0 [ 1410.110422][ T3322] ? auditsc_get_stamp+0x180/0x2d0 [ 1410.115549][ T3322] ip_finish_output+0x38/0x1f0 [ 1410.120320][ T3322] ip_output+0x22b/0x680 [ 1410.124571][ T3322] ? ip_mc_output+0xf60/0xf60 [ 1410.129249][ T3322] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1410.135506][ T3322] ? __ip_finish_output+0xbd0/0xbd0 [ 1410.140711][ T3322] ? rcu_read_lock_held_common+0x130/0x130 [ 1410.146532][ T3322] ip_local_out+0xbb/0x1b0 [ 1410.150958][ T3322] __ip_queue_xmit+0x86f/0x1c10 [ 1410.155825][ T3322] ip_queue_xmit+0x5a/0x70 [ 1410.160250][ T3322] __tcp_transmit_skb+0x1ac0/0x38f0 [ 1410.165463][ T3322] ? __tcp_select_window+0x8b0/0x8b0 [ 1410.170754][ T3322] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1410.176043][ T3322] ? trace_hardirqs_on+0x67/0x240 [ 1410.181083][ T3322] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1410.186809][ T3322] tcp_write_xmit+0xf42/0x5a00 [ 1410.191582][ T3322] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1410.197322][ T3322] tcp_push_one+0xd7/0x110 [ 1410.201746][ T3322] tcp_sendmsg_locked+0xa87/0x33a0 [ 1410.206888][ T3322] ? tcp_sendpage+0x60/0x60 [ 1410.211404][ T3322] ? trace_hardirqs_on+0x67/0x240 [ 1410.216435][ T3322] ? lock_sock_nested+0x9a/0x120 [ 1410.221379][ T3322] ? __local_bh_enable_ip+0x15a/0x270 [ 1410.226849][ T3322] tcp_sendmsg+0x30/0x50 [ 1410.231096][ T3322] inet_sendmsg+0x9e/0xe0 [ 1410.235434][ T3322] ? inet_send_prepare+0x4e0/0x4e0 [ 1410.240552][ T3322] sock_sendmsg+0xd7/0x130 [ 1410.245084][ T3322] __sys_sendto+0x262/0x380 [ 1410.249596][ T3322] ? __ia32_sys_getpeername+0xb0/0xb0 11:57:02 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x280400) [ 1410.254983][ T3322] ? __mutex_unlock_slowpath+0xf0/0x6a0 [ 1410.260550][ T3322] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1410.266794][ T3322] ? fput_many+0x12c/0x1a0 [ 1410.271221][ T3322] ? fput+0x1b/0x20 [ 1410.275031][ T3322] ? ksys_write+0x1cf/0x290 [ 1410.279541][ T3322] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1410.285003][ T3322] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1410.290463][ T3322] ? do_syscall_64+0x26/0x790 [ 1410.295141][ T3322] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1410.301226][ T3322] __x64_sys_sendto+0xe1/0x1a0 [ 1410.305998][ T3322] do_syscall_64+0xfa/0x790 [ 1410.310519][ T3322] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1410.316411][ T3322] RIP: 0033:0x45a679 [ 1410.320308][ T3322] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1410.339914][ T3322] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1410.348349][ T3322] RAX: ffffffffffffffda RBX: 00007f1d88fdcc90 RCX: 000000000045a679 [ 1410.356321][ T3322] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1410.364297][ T3322] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1410.372269][ T3322] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1410.380351][ T3322] R13: 00000000004c978e R14: 00000000004e1530 R15: 0000000000000004 11:57:02 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x320500) [ 1410.493689][ T3431] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1410.521157][ T3431] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock 11:57:02 executing program 0 (fault-call:8 fault-nth:7): sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1410.539116][ T3431] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 overlaps superblock 11:57:02 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x20030000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:02 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x3c0600) 11:57:03 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1410.630778][ T3431] EXT4-fs: failed to create workqueue [ 1410.636219][ T3431] EXT4-fs (loop3): mount failed [ 1410.718245][ T3493] FAULT_INJECTION: forcing a failure. [ 1410.718245][ T3493] name failslab, interval 1, probability 0, space 0, times 0 [ 1410.731108][ T3493] CPU: 1 PID: 3493 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1410.740561][ T3493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1410.750611][ T3493] Call Trace: [ 1410.753907][ T3493] dump_stack+0x197/0x210 [ 1410.758248][ T3493] should_fail.cold+0xa/0x15 [ 1410.762928][ T3493] ? fault_create_debugfs_attr+0x180/0x180 [ 1410.768838][ T3493] ? __kasan_check_read+0x11/0x20 [ 1410.773881][ T3493] __should_failslab+0x121/0x190 [ 1410.778835][ T3493] should_failslab+0x9/0x14 [ 1410.783345][ T3493] kmem_cache_alloc_node_trace+0x5a/0x750 [ 1410.789066][ T3493] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 1410.795049][ T3493] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 1410.800862][ T3493] __kmalloc_node_track_caller+0x3d/0x70 [ 1410.806501][ T3493] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1410.811889][ T3493] __alloc_skb+0x10b/0x5e0 [ 1410.816314][ T3493] ? __kmalloc_reserve.isra.0+0xf0/0xf0 [ 1410.821868][ T3493] ? stack_trace_save+0xac/0xe0 [ 1410.826723][ T3493] ? stack_trace_consume_entry+0x190/0x190 [ 1410.832536][ T3493] alloc_skb_with_frags+0x93/0x590 [ 1410.837661][ T3493] sock_alloc_send_pskb+0x7ad/0x920 [ 1410.842874][ T3493] ? ip_fragment.constprop.0+0x1ee/0x240 [ 1410.848513][ T3493] ? ip_output+0x22b/0x680 [ 1410.853631][ T3493] ? ip_local_out+0xbb/0x1b0 [ 1410.858223][ T3493] ? __ip_queue_xmit+0x86f/0x1c10 [ 1410.863256][ T3493] ? sock_wmalloc+0x120/0x120 [ 1410.867955][ T3493] ? __sys_sendto+0x262/0x380 [ 1410.872632][ T3493] ? __x64_sys_sendto+0xe1/0x1a0 [ 1410.877583][ T3493] ? do_syscall_64+0xfa/0x790 [ 1410.882274][ T3493] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1410.888348][ T3493] ? call_rcu+0xb/0x10 [ 1410.892430][ T3493] ? dst_release+0x84/0xe0 [ 1410.896856][ T3493] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1410.903101][ T3493] ? xfrm_lookup_with_ifid+0x602/0x2390 [ 1410.908661][ T3493] sock_alloc_send_skb+0x32/0x40 [ 1410.913613][ T3493] __ip_append_data.isra.0+0x1708/0x3350 11:57:03 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:03 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) io_setup(0xdc7, &(0x7f0000000000)=0x0) io_pgetevents(r1, 0x7, 0x6, &(0x7f0000000040)=[{}, {}, {}, {}, {}, {}], &(0x7f0000000100)={0x77359400}, &(0x7f0000000180)={&(0x7f0000000140)={0xa30}, 0x8}) listen(r0, 0x20000003) r2 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r2, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r4 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/dlm-control\x00', 0x101000, 0x0) ioctl$VIDIOC_ENUMOUTPUT(r4, 0xc0485630, &(0x7f0000000340)={0x80, "450e74888cf19f0b2a26ea402a6668c23ed1e8a27f0f3972ee1ee9fd470796c2", 0x0, 0x40, 0x9, 0xc000c, 0x4}) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r5 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000080), 0xa) write$P9_RUNLINKAT(r5, &(0x7f00000001c0)={0x7, 0x4d, 0x2}, 0x7) socket$alg(0x26, 0x5, 0x0) r6 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet6_opts(r6, 0x29, 0x37, 0x0, 0x0) getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000200)={'filter\x00'}, &(0x7f00000002c0)=0x78) connect(r6, &(0x7f00007a8000)=@generic={0x11, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704a906185874a2d44029a41f46a380e73c5be500d748038f499a492ef8fe4e6265300"}, 0x5d6fec30d2e1e38) [ 1410.919256][ T3493] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1410.925423][ T3493] ? icmp_push_reply+0x4a0/0x4a0 [ 1410.930385][ T3493] ? ip_mc_finish_output+0x4a0/0x4a0 [ 1410.935684][ T3493] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1410.941929][ T3493] ? ip_setup_cork+0x59c/0x8e0 [ 1410.946701][ T3493] ? icmp_push_reply+0x4a0/0x4a0 [ 1410.951649][ T3493] ip_append_data.part.0+0xf9/0x180 [ 1410.956865][ T3493] ? icmp_push_reply+0x4a0/0x4a0 [ 1410.961808][ T3493] ip_append_data+0x6e/0x90 [ 1410.966338][ T3493] icmp_push_reply+0x13d/0x4a0 [ 1410.971114][ T3493] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1410.977366][ T3493] __icmp_send+0xc44/0x14a0 [ 1410.981890][ T3493] ? icmp_route_lookup.constprop.0+0x15c0/0x15c0 [ 1410.988241][ T3493] ? ipt_do_table+0xf13/0x1b80 [ 1410.993010][ T3493] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1410.999274][ T3493] ? perf_trace_lock+0xeb/0x4c0 [ 1411.004146][ T3493] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1411.010321][ T3493] ip_fragment.constprop.0+0x1ee/0x240 11:57:03 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x460700) [ 1411.015787][ T3493] ? ip_fragment.constprop.0+0x1ee/0x240 [ 1411.021430][ T3493] __ip_finish_output+0x4c5/0xbd0 [ 1411.026453][ T3493] ? auditsc_get_stamp+0x180/0x2d0 [ 1411.031574][ T3493] ip_finish_output+0x38/0x1f0 [ 1411.036345][ T3493] ip_output+0x22b/0x680 [ 1411.040586][ T3493] ? ip_mc_output+0xf60/0xf60 [ 1411.040602][ T3493] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1411.040623][ T3493] ? __ip_finish_output+0xbd0/0xbd0 [ 1411.040639][ T3493] ? rcu_read_lock_held_common+0x130/0x130 [ 1411.040670][ T3493] ip_local_out+0xbb/0x1b0 [ 1411.040686][ T3493] __ip_queue_xmit+0x86f/0x1c10 [ 1411.040708][ T3493] ip_queue_xmit+0x5a/0x70 [ 1411.040742][ T3493] __tcp_transmit_skb+0x1ac0/0x38f0 [ 1411.040767][ T3493] ? __tcp_select_window+0x8b0/0x8b0 [ 1411.040780][ T3493] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1411.040801][ T3493] ? trace_hardirqs_on+0x67/0x240 [ 1411.062583][ T3493] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1411.062602][ T3493] tcp_write_xmit+0xf42/0x5a00 [ 1411.062618][ T3493] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1411.062653][ T3493] tcp_push_one+0xd7/0x110 [ 1411.062672][ T3493] tcp_sendmsg_locked+0xa87/0x33a0 [ 1411.062707][ T3493] ? tcp_sendpage+0x60/0x60 [ 1411.062723][ T3493] ? trace_hardirqs_on+0x67/0x240 [ 1411.062739][ T3493] ? lock_sock_nested+0x9a/0x120 [ 1411.062760][ T3493] ? __local_bh_enable_ip+0x15a/0x270 [ 1411.097228][ T3493] tcp_sendmsg+0x30/0x50 [ 1411.117780][ T3493] inet_sendmsg+0x9e/0xe0 [ 1411.117798][ T3493] ? inet_send_prepare+0x4e0/0x4e0 [ 1411.117816][ T3493] sock_sendmsg+0xd7/0x130 [ 1411.117832][ T3493] __sys_sendto+0x262/0x380 [ 1411.117851][ T3493] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1411.157564][ T3529] gfs2: not a GFS2 filesystem [ 1411.160762][ T3493] ? __mutex_unlock_slowpath+0xf0/0x6a0 [ 1411.160794][ T3493] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1411.160809][ T3493] ? fput_many+0x12c/0x1a0 [ 1411.160825][ T3493] ? fput+0x1b/0x20 [ 1411.160837][ T3493] ? ksys_write+0x1cf/0x290 [ 1411.160860][ T3493] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1411.205240][ T3493] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1411.210704][ T3493] ? do_syscall_64+0x26/0x790 [ 1411.215380][ T3493] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1411.221539][ T3493] __x64_sys_sendto+0xe1/0x1a0 [ 1411.226333][ T3493] do_syscall_64+0xfa/0x790 [ 1411.230853][ T3493] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1411.236744][ T3493] RIP: 0033:0x45a679 [ 1411.240639][ T3493] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1411.260241][ T3493] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1411.268655][ T3493] RAX: ffffffffffffffda RBX: 00007f1d88fdcc90 RCX: 000000000045a679 [ 1411.276630][ T3493] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1411.284600][ T3493] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1411.292569][ T3493] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1411.300547][ T3493] R13: 00000000004c978e R14: 00000000004e1530 R15: 0000000000000004 11:57:03 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x500800) 11:57:03 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) 11:57:03 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x20100000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1411.484956][ T3600] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1411.558958][ T3600] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock 11:57:03 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x37, 0x0, 0x0) connect(r2, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r3, r3) sendto$inet(r3, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r4, r4) sendto$inet(r4, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r5 = dup2(r3, r4) r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r6}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r6, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r7, 0x1d, r6, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) sendmsg$inet6(r5, &(0x7f0000000600)={&(0x7f0000000000)={0xa, 0x4e23, 0x80000000, @mcast2, 0x6}, 0x1c, &(0x7f0000000440)=[{&(0x7f0000000040)="e935c88eee1f7fdb8e09dd2d0ecc2df116c1918a9caf388a963faab15a7468f6798f002331ac1271092ff843d22a69cf1889c277261ade1e7cfa26fab1135fad28d08b5291f428c9c648b954d1896b", 0x4f}, {&(0x7f00000000c0)="e279428d067f8df426846fcb3509b9203407862f1410db7b7fd3868a5332de8a7dfe161f4e73457267e81d4c94727fa664cb864faa039b9589fdf4b6ca7c10a7c27540f955ea38a36e54e449ee1005e817e487dc096510592d92e756d5e2bb67da5200cf130aad0df21a5a049d6d57da7f5bab6038da67e1caea8c5abb3d4b28aa98813891101b8b05b0f5ac7ac7ecaa11d5b22eafaa99fb9cbf9e8a20457e68b76f5d29096420a95ed1aa0db3bba811c888c732c862bec818d2555e98c22e937e3cbb10ccbe2fa3fb668ed6be030ad479a87f06d41a084d9c6f", 0xda}, {&(0x7f00000001c0)="876279fb022cc97e5f9c41a3632f843865ed6182dd839a906df8a7d5139de858", 0x20}, {&(0x7f0000000200)="20e0c57328cb3dc56155d817e3a1608c034475b24ef43824cc05479bac94bc5097b527da3cd75449b192ff0b30f9a9d953a3594d689a00c4ae76864814241fcb80f41f25079bb329fa1d856c5e67e5e84e3668299e9d895faeae7ba6405cd6cb8e0924825d8f81620fcc68627ec70d94f90841e4a62a0364d8190fa089881a83054cb9915f5ca76e18fe6437b296013fe180625a66671a1f0f092e84ff5bb5570f4aa2", 0xa3}, {&(0x7f00000002c0)="babe08ac15d6b8628839de8182ac4ee8dddbb870e31308bbd0636374af4471d1cb3a6eb20e71e66035c52efc4932d68cabdb58feb05b50d17f3bd1fe5ef0db19af3ec6faf5c1c1beda62f81399a10cafaf39c62956df2b785d1cf44e8970c8220390450c309937420e50310f00454eb7d41bf270210609fa62f116a0f3ad3ce534e2d5277ab0912623bc74c8613a4c45064c8c83bd69db48826b5179", 0x9c}, {&(0x7f0000000380)="e59426bf5f89e6f63cf4ab1d11e947eecde46c7dcba7f0210d41c76290c36ea82b91b0e41e7ab1b0f97d0ad314383892390a01359556bc945c528b9310289058ec9c6a4df565a412082f7f4e8b9c6494faf2306c0cb42fb4c23dc3b5217ab8449f0a8974f4531d940544cd", 0x6b}, {&(0x7f0000000400)="ab5d44f6e851ef03eab873ca628cde5195b6fcf5d0f6127581805f964fbf0ed5e71fd9b29625", 0x26}], 0x7, &(0x7f00000004c0)=[@rthdr_2292={{0x68, 0x29, 0x39, {0x160f09b04f8ad873, 0xa, 0x4, 0x3f, 0x0, [@ipv4={[], [], @remote}, @mcast2, @mcast1, @mcast1, @mcast1]}}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast1, r7}}}, @rthdrdstopts={{0x30, 0x29, 0x37, {0x8, 0x2, [], [@hao={0xc9, 0x10, @loopback}]}}}, @hopopts={{0x48, 0x29, 0x36, {0x5a, 0x5, [], [@hao={0xc9, 0x10, @local}, @ra={0x5, 0x2, 0x3c}, @ra={0x5, 0x2, 0x1ff}, @enc_lim={0x4, 0x1, 0x9}, @padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}], 0x108}, 0x10) 11:57:03 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x5a0900) [ 1411.614267][ T3600] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 overlaps superblock 11:57:04 executing program 0 (fault-call:8 fault-nth:8): sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1411.706282][ T3818] gfs2: not a GFS2 filesystem [ 1411.737102][ T3600] EXT4-fs error (device loop3): ext4_fill_super:4488: inode #2: comm syz-executor.3: iget: root inode unallocated [ 1411.770838][ T3829] FAULT_INJECTION: forcing a failure. [ 1411.770838][ T3829] name failslab, interval 1, probability 0, space 0, times 0 [ 1411.783539][ T3829] CPU: 0 PID: 3829 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1411.783550][ T3829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1411.783561][ T3829] Call Trace: [ 1411.806359][ T3829] dump_stack+0x197/0x210 [ 1411.810701][ T3829] should_fail.cold+0xa/0x15 [ 1411.815304][ T3829] ? fault_create_debugfs_attr+0x180/0x180 [ 1411.821119][ T3829] ? __kasan_check_read+0x11/0x20 [ 1411.826162][ T3829] __should_failslab+0x121/0x190 [ 1411.831123][ T3829] should_failslab+0x9/0x14 [ 1411.835633][ T3829] kmem_cache_alloc_node_trace+0x5a/0x750 [ 1411.841357][ T3829] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 1411.841374][ T3829] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 1411.841397][ T3829] __kmalloc_node_track_caller+0x3d/0x70 [ 1411.841416][ T3829] __kmalloc_reserve.isra.0+0x40/0xf0 [ 1411.841436][ T3829] __alloc_skb+0x10b/0x5e0 [ 1411.868691][ T3829] ? __kmalloc_reserve.isra.0+0xf0/0xf0 [ 1411.874249][ T3829] ? stack_trace_save+0xac/0xe0 [ 1411.879109][ T3829] ? stack_trace_consume_entry+0x190/0x190 [ 1411.884927][ T3829] alloc_skb_with_frags+0x93/0x590 [ 1411.890067][ T3829] sock_alloc_send_pskb+0x7ad/0x920 [ 1411.895280][ T3829] ? ip_fragment.constprop.0+0x1ee/0x240 [ 1411.900918][ T3829] ? ip_output+0x22b/0x680 [ 1411.905343][ T3829] ? ip_local_out+0xbb/0x1b0 [ 1411.909938][ T3829] ? __ip_queue_xmit+0x86f/0x1c10 [ 1411.915090][ T3829] ? sock_wmalloc+0x120/0x120 [ 1411.919768][ T3829] ? __sys_sendto+0x262/0x380 [ 1411.924443][ T3829] ? __x64_sys_sendto+0xe1/0x1a0 [ 1411.929385][ T3829] ? do_syscall_64+0xfa/0x790 [ 1411.934070][ T3829] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1411.940138][ T3829] ? call_rcu+0xb/0x10 [ 1411.944212][ T3829] ? dst_release+0x84/0xe0 [ 1411.948638][ T3829] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1411.954885][ T3829] ? xfrm_lookup_with_ifid+0x602/0x2390 [ 1411.960443][ T3829] sock_alloc_send_skb+0x32/0x40 [ 1411.965389][ T3829] __ip_append_data.isra.0+0x1708/0x3350 [ 1411.971030][ T3829] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1411.977194][ T3829] ? icmp_push_reply+0x4a0/0x4a0 [ 1411.982152][ T3829] ? ip_mc_finish_output+0x4a0/0x4a0 [ 1411.984973][ T3600] EXT4-fs (loop3): get root inode failed [ 1411.987442][ T3829] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1411.987459][ T3829] ? ip_setup_cork+0x59c/0x8e0 [ 1411.987477][ T3829] ? icmp_push_reply+0x4a0/0x4a0 [ 1411.987495][ T3829] ip_append_data.part.0+0xf9/0x180 [ 1411.987516][ T3829] ? icmp_push_reply+0x4a0/0x4a0 [ 1411.987530][ T3829] ip_append_data+0x6e/0x90 [ 1411.987551][ T3829] icmp_push_reply+0x13d/0x4a0 [ 1412.008181][ T3600] EXT4-fs (loop3): mount failed [ 1412.009067][ T3829] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1412.009086][ T3829] __icmp_send+0xc44/0x14a0 [ 1412.009110][ T3829] ? icmp_route_lookup.constprop.0+0x15c0/0x15c0 [ 1412.009125][ T3829] ? ipt_do_table+0xf13/0x1b80 [ 1412.009145][ T3829] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1412.009177][ T3829] ? perf_trace_lock+0xeb/0x4c0 [ 1412.066223][ T3829] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1412.072400][ T3829] ip_fragment.constprop.0+0x1ee/0x240 [ 1412.077867][ T3829] ? ip_fragment.constprop.0+0x1ee/0x240 [ 1412.083508][ T3829] __ip_finish_output+0x4c5/0xbd0 11:57:04 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)) r2 = socket$inet6_dccp(0xa, 0x6, 0x0) r3 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x481, &(0x7f0000000040), &(0x7f0000000080)=0xc) setsockopt$inet6_opts(r3, 0x29, 0x37, 0x0, 0x0) connect(r3, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) 11:57:04 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x640a00) 11:57:04 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x6e0b00) [ 1412.088535][ T3829] ? auditsc_get_stamp+0x180/0x2d0 [ 1412.093762][ T3829] ip_finish_output+0x38/0x1f0 [ 1412.098530][ T3829] ip_output+0x22b/0x680 [ 1412.102775][ T3829] ? ip_mc_output+0xf60/0xf60 [ 1412.107452][ T3829] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1412.113723][ T3829] ? __ip_finish_output+0xbd0/0xbd0 [ 1412.118932][ T3829] ? rcu_read_lock_held_common+0x130/0x130 [ 1412.124752][ T3829] ip_local_out+0xbb/0x1b0 [ 1412.129176][ T3829] __ip_queue_xmit+0x86f/0x1c10 [ 1412.134044][ T3829] ip_queue_xmit+0x5a/0x70 [ 1412.138466][ T3829] __tcp_transmit_skb+0x1ac0/0x38f0 [ 1412.143684][ T3829] ? __tcp_select_window+0x8b0/0x8b0 [ 1412.148972][ T3829] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1412.154274][ T3829] ? trace_hardirqs_on+0x67/0x240 [ 1412.159320][ T3829] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1412.165050][ T3829] tcp_write_xmit+0xf42/0x5a00 [ 1412.169826][ T3829] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1412.175580][ T3829] tcp_push_one+0xd7/0x110 [ 1412.180018][ T3829] tcp_sendmsg_locked+0xa87/0x33a0 [ 1412.185158][ T3829] ? tcp_sendpage+0x60/0x60 [ 1412.189665][ T3829] ? trace_hardirqs_on+0x67/0x240 [ 1412.194710][ T3829] ? lock_sock_nested+0x9a/0x120 [ 1412.199654][ T3829] ? __local_bh_enable_ip+0x15a/0x270 [ 1412.205040][ T3829] tcp_sendmsg+0x30/0x50 [ 1412.209287][ T3829] inet_sendmsg+0x9e/0xe0 [ 1412.213621][ T3829] ? inet_send_prepare+0x4e0/0x4e0 [ 1412.218736][ T3829] sock_sendmsg+0xd7/0x130 [ 1412.223164][ T3829] __sys_sendto+0x262/0x380 [ 1412.227681][ T3829] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1412.233053][ T3829] ? __mutex_unlock_slowpath+0xf0/0x6a0 [ 1412.238594][ T3829] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1412.244815][ T3829] ? fput_many+0x12c/0x1a0 [ 1412.249214][ T3829] ? fput+0x1b/0x20 [ 1412.253009][ T3829] ? ksys_write+0x1cf/0x290 [ 1412.257586][ T3829] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1412.263028][ T3829] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1412.268472][ T3829] ? do_syscall_64+0x26/0x790 [ 1412.273135][ T3829] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1412.279189][ T3829] __x64_sys_sendto+0xe1/0x1a0 [ 1412.283942][ T3829] do_syscall_64+0xfa/0x790 [ 1412.288430][ T3829] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1412.294306][ T3829] RIP: 0033:0x45a679 [ 1412.298183][ T3829] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1412.317767][ T3829] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1412.326262][ T3829] RAX: ffffffffffffffda RBX: 00007f1d88fdcc90 RCX: 000000000045a679 [ 1412.334226][ T3829] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1412.342178][ T3829] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1412.350129][ T3829] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1412.358078][ T3829] R13: 00000000004c978e R14: 00000000004e1530 R15: 0000000000000004 [ 1412.372290][ T3947] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1412.382639][ T3947] CPU: 0 PID: 3947 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1412.392073][ T3947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1412.402108][ T3947] Call Trace: [ 1412.405390][ T3947] dump_stack+0x197/0x210 [ 1412.409731][ T3947] dump_header+0x177/0x1152 [ 1412.414240][ T3947] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1412.420052][ T3947] ? ___ratelimit+0x2c8/0x595 [ 1412.424734][ T3947] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1412.430548][ T3947] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1412.435971][ T3947] ? trace_hardirqs_on+0x67/0x240 [ 1412.441019][ T3947] ? pagefault_out_of_memory+0x11c/0x11c [ 1412.446647][ T3947] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1412.452434][ T3947] ? ___ratelimit+0x60/0x595 [ 1412.457056][ T3947] ? do_raw_spin_unlock+0x178/0x270 [ 1412.462249][ T3947] oom_kill_process.cold+0x10/0x15 [ 1412.467339][ T3947] out_of_memory+0x334/0x13c0 [ 1412.472004][ T3947] ? find_held_lock+0x35/0x130 [ 1412.476760][ T3947] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1412.482544][ T3947] ? oom_killer_disable+0x280/0x280 [ 1412.487815][ T3947] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1412.493467][ T3947] ? memcg_oom_wake_function+0x700/0x700 [ 1412.499090][ T3947] ? do_raw_spin_unlock+0x178/0x270 [ 1412.504275][ T3947] ? _raw_spin_unlock+0x28/0x40 [ 1412.509149][ T3947] try_charge+0xf76/0x14d0 [ 1412.513557][ T3947] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1412.519098][ T3947] ? mark_held_locks+0xa4/0xf0 [ 1412.523842][ T3947] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1412.529573][ T3947] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1412.535397][ T3947] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1412.541013][ T3947] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1412.546283][ T3947] ? trace_hardirqs_on+0x67/0x240 [ 1412.551302][ T3947] mem_cgroup_charge_skmem+0x15e/0x300 [ 1412.556751][ T3947] ? mem_cgroup_sk_free+0x90/0x90 [ 1412.561766][ T3947] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1412.568008][ T3947] ? __sk_mem_raise_allocated+0x63f/0x1410 [ 1412.573803][ T3947] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1412.580040][ T3947] __sk_mem_raise_allocated+0x56e/0x1410 [ 1412.585648][ T3947] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1412.591869][ T3947] __sk_mem_schedule+0x6d/0xe0 [ 1412.596618][ T3947] tcp_sendmsg_locked+0x1733/0x33a0 [ 1412.601806][ T3947] ? tcp_sendpage+0x60/0x60 [ 1412.606291][ T3947] ? trace_hardirqs_on+0x67/0x240 [ 1412.611296][ T3947] ? lock_sock_nested+0x9a/0x120 [ 1412.616224][ T3947] ? __local_bh_enable_ip+0x15a/0x270 [ 1412.621586][ T3947] tcp_sendmsg+0x30/0x50 [ 1412.625809][ T3947] inet_sendmsg+0x9e/0xe0 [ 1412.630127][ T3947] ? inet_send_prepare+0x4e0/0x4e0 [ 1412.635227][ T3947] sock_sendmsg+0xd7/0x130 [ 1412.639630][ T3947] __sys_sendto+0x262/0x380 [ 1412.644113][ T3947] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1412.649474][ T3947] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1412.655691][ T3947] ? put_timespec64+0xda/0x140 [ 1412.660451][ T3947] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1412.666167][ T3947] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1412.671605][ T3947] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1412.677041][ T3947] ? do_syscall_64+0x26/0x790 [ 1412.681734][ T3947] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1412.687787][ T3947] __x64_sys_sendto+0xe1/0x1a0 [ 1412.692539][ T3947] do_syscall_64+0xfa/0x790 [ 1412.697029][ T3947] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1412.702914][ T3947] RIP: 0033:0x45a679 [ 1412.706797][ T3947] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1412.726388][ T3947] RSP: 002b:00007f273de74c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1412.734797][ T3947] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1412.742749][ T3947] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1412.750699][ T3947] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 00000000006e0b00 [ 1412.758650][ T3947] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f273de756d4 [ 1412.766644][ T3947] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1412.776333][ T3947] memory: usage 307124kB, limit 307200kB, failcnt 11 [ 1412.783171][ T3947] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1412.790186][ T3947] Memory cgroup stats for /syz1: [ 1412.790314][ T3947] anon 4358144 [ 1412.790314][ T3947] file 94208 [ 1412.790314][ T3947] kernel_stack 36864 [ 1412.790314][ T3947] slab 4718592 [ 1412.790314][ T3947] sock 304799744 [ 1412.790314][ T3947] shmem 0 [ 1412.790314][ T3947] file_mapped 0 [ 1412.790314][ T3947] file_dirty 0 [ 1412.790314][ T3947] file_writeback 0 [ 1412.790314][ T3947] anon_thp 4194304 [ 1412.790314][ T3947] inactive_anon 135168 [ 1412.790314][ T3947] active_anon 4358144 [ 1412.790314][ T3947] inactive_file 0 [ 1412.790314][ T3947] active_file 135168 [ 1412.790314][ T3947] unevictable 0 [ 1412.790314][ T3947] slab_reclaimable 1622016 [ 1412.790314][ T3947] slab_unreclaimable 3096576 [ 1412.790314][ T3947] pgfault 170082 [ 1412.790314][ T3947] pgmajfault 0 [ 1412.790314][ T3947] workingset_refault 0 [ 1412.790314][ T3947] workingset_activate 0 [ 1412.790314][ T3947] workingset_nodereclaim 0 [ 1412.790314][ T3947] pgrefill 109 [ 1412.790314][ T3947] pgscan 109 [ 1412.790314][ T3947] pgsteal 0 [ 1412.920699][ T3947] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=3945,uid=0 [ 1412.984339][ T3947] Memory cgroup out of memory: Killed process 3947 (syz-executor.1) total-vm:72712kB, anon-rss:4252kB, file-rss:35808kB, shmem-rss:0kB, UID:0 pgtables:147456kB oom_score_adj:1000 [ 1413.005286][ T1100] oom_reaper: reaped process 3947 (syz-executor.1), now anon-rss:0kB, file-rss:34848kB, shmem-rss:0kB 11:57:05 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:05 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:05 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) 11:57:05 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x780c00) 11:57:05 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x23000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:05 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x800, 0x2) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x37, 0x0, 0xf5) connect(r2, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) [ 1413.283389][ T4165] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1413.294173][ T4165] CPU: 0 PID: 4165 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1413.303645][ T4165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1413.313700][ T4165] Call Trace: [ 1413.317005][ T4165] dump_stack+0x197/0x210 [ 1413.321346][ T4165] dump_header+0x177/0x1152 [ 1413.325845][ T4165] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1413.331653][ T4165] ? ___ratelimit+0x2c8/0x595 [ 1413.336334][ T4165] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1413.342131][ T4165] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1413.347405][ T4165] ? trace_hardirqs_on+0x67/0x240 [ 1413.352429][ T4165] ? pagefault_out_of_memory+0x11c/0x11c [ 1413.358060][ T4165] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1413.363865][ T4165] ? ___ratelimit+0x60/0x595 [ 1413.368453][ T4165] ? do_raw_spin_unlock+0x178/0x270 [ 1413.373653][ T4165] oom_kill_process.cold+0x10/0x15 [ 1413.378762][ T4165] out_of_memory+0x334/0x13c0 [ 1413.383436][ T4165] ? find_held_lock+0x35/0x130 [ 1413.388202][ T4165] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1413.394003][ T4165] ? oom_killer_disable+0x280/0x280 [ 1413.399201][ T4165] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1413.404744][ T4165] ? memcg_oom_wake_function+0x700/0x700 [ 1413.410380][ T4165] ? do_raw_spin_unlock+0x178/0x270 [ 1413.415576][ T4165] ? _raw_spin_unlock+0x28/0x40 [ 1413.423547][ T4165] try_charge+0xf76/0x14d0 [ 1413.427971][ T4165] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1413.433521][ T4165] ? mark_held_locks+0xa4/0xf0 [ 1413.438268][ T4165] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1413.443881][ T4165] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1413.449669][ T4165] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1413.455286][ T4165] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1413.460557][ T4165] ? trace_hardirqs_on+0x67/0x240 [ 1413.465573][ T4165] mem_cgroup_charge_skmem+0x15e/0x300 [ 1413.471019][ T4165] ? mem_cgroup_sk_free+0x90/0x90 [ 1413.476034][ T4165] ? __kasan_check_write+0x14/0x20 [ 1413.481132][ T4165] ? __alloc_skb+0x3d0/0x5e0 [ 1413.485710][ T4165] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1413.491941][ T4165] __sk_mem_raise_allocated+0x56e/0x1410 [ 1413.497564][ T4165] __sk_mem_schedule+0x6d/0xe0 [ 1413.502316][ T4165] tcp_sendmsg_locked+0x1733/0x33a0 [ 1413.507514][ T4165] ? tcp_sendpage+0x60/0x60 [ 1413.512001][ T4165] ? trace_hardirqs_on+0x67/0x240 [ 1413.517007][ T4165] ? lock_sock_nested+0x9a/0x120 [ 1413.521930][ T4165] ? __local_bh_enable_ip+0x15a/0x270 [ 1413.527305][ T4165] tcp_sendmsg+0x30/0x50 [ 1413.531534][ T4165] inet_sendmsg+0x9e/0xe0 [ 1413.535848][ T4165] ? inet_send_prepare+0x4e0/0x4e0 [ 1413.540944][ T4165] sock_sendmsg+0xd7/0x130 [ 1413.545341][ T4165] __sys_sendto+0x262/0x380 [ 1413.549826][ T4165] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1413.555193][ T4165] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1413.561414][ T4165] ? put_timespec64+0xda/0x140 [ 1413.566162][ T4165] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1413.571869][ T4165] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1413.577311][ T4165] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1413.582759][ T4165] ? do_syscall_64+0x26/0x790 [ 1413.587426][ T4165] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1413.593475][ T4165] __x64_sys_sendto+0xe1/0x1a0 [ 1413.598225][ T4165] do_syscall_64+0xfa/0x790 [ 1413.602726][ T4165] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1413.608604][ T4165] RIP: 0033:0x45a679 [ 1413.612489][ T4165] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1413.632071][ T4165] RSP: 002b:00007f273de95c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1413.640465][ T4165] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1413.648418][ T4165] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1413.656372][ T4165] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000780c00 [ 1413.664323][ T4165] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f273de966d4 [ 1413.672278][ T4165] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1413.691194][ T4165] memory: usage 307180kB, limit 307200kB, failcnt 25 [ 1413.699599][ T4165] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1413.711126][ T4165] Memory cgroup stats for /syz1: [ 1413.711258][ T4165] anon 2248704 [ 1413.711258][ T4165] file 94208 [ 1413.711258][ T4165] kernel_stack 73728 [ 1413.711258][ T4165] slab 4718592 [ 1413.711258][ T4165] sock 306847744 [ 1413.711258][ T4165] shmem 0 [ 1413.711258][ T4165] file_mapped 0 [ 1413.711258][ T4165] file_dirty 0 [ 1413.711258][ T4165] file_writeback 0 [ 1413.711258][ T4165] anon_thp 2097152 [ 1413.711258][ T4165] inactive_anon 135168 [ 1413.711258][ T4165] active_anon 2248704 [ 1413.711258][ T4165] inactive_file 0 [ 1413.711258][ T4165] active_file 135168 [ 1413.711258][ T4165] unevictable 0 [ 1413.711258][ T4165] slab_reclaimable 1622016 [ 1413.711258][ T4165] slab_unreclaimable 3096576 [ 1413.711258][ T4165] pgfault 170181 [ 1413.711258][ T4165] pgmajfault 0 [ 1413.711258][ T4165] workingset_refault 0 [ 1413.711258][ T4165] workingset_activate 0 [ 1413.711258][ T4165] workingset_nodereclaim 0 [ 1413.711258][ T4165] pgrefill 142 [ 1413.711258][ T4165] pgscan 179 [ 1413.711258][ T4165] pgsteal 0 [ 1413.818436][ T4165] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=4161,uid=0 11:57:06 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x820d00) 11:57:06 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x70e00) [ 1413.868886][ T4165] Memory cgroup out of memory: Killed process 4161 (syz-executor.1) total-vm:72580kB, anon-rss:2152kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:143360kB oom_score_adj:1000 [ 1413.888736][ T1100] oom_reaper: reaped process 4161 (syz-executor.1), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB 11:57:06 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) [ 1413.999827][ T4280] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1414.010774][ T4280] CPU: 0 PID: 4280 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1414.020255][ T4280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1414.030393][ T4280] Call Trace: [ 1414.030415][ T4280] dump_stack+0x197/0x210 [ 1414.030439][ T4280] dump_header+0x177/0x1152 [ 1414.042515][ T4280] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1414.048325][ T4280] ? ___ratelimit+0x2c8/0x595 [ 1414.052996][ T4280] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1414.058791][ T4280] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1414.064060][ T4280] ? trace_hardirqs_on+0x67/0x240 [ 1414.069106][ T4280] ? pagefault_out_of_memory+0x11c/0x11c [ 1414.074736][ T4280] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1414.080537][ T4280] ? ___ratelimit+0x60/0x595 [ 1414.085114][ T4280] ? do_raw_spin_unlock+0x178/0x270 [ 1414.090304][ T4280] oom_kill_process.cold+0x10/0x15 [ 1414.095412][ T4280] out_of_memory+0x334/0x13c0 [ 1414.100080][ T4280] ? find_held_lock+0x35/0x130 [ 1414.104845][ T4280] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1414.110643][ T4280] ? oom_killer_disable+0x280/0x280 [ 1414.115835][ T4280] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1414.121371][ T4280] ? memcg_oom_wake_function+0x700/0x700 [ 1414.127084][ T4280] ? do_raw_spin_unlock+0x178/0x270 [ 1414.132270][ T4280] ? _raw_spin_unlock+0x28/0x40 [ 1414.137115][ T4280] try_charge+0xf76/0x14d0 [ 1414.141525][ T4280] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1414.147073][ T4280] ? mark_held_locks+0xa4/0xf0 [ 1414.151821][ T4280] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1414.157438][ T4280] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1414.163225][ T4280] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1414.168839][ T4280] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1414.174107][ T4280] ? trace_hardirqs_on+0x67/0x240 [ 1414.179118][ T4280] mem_cgroup_charge_skmem+0x15e/0x300 [ 1414.184557][ T4280] ? mem_cgroup_sk_free+0x90/0x90 [ 1414.189562][ T4280] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1414.195779][ T4280] ? __sk_mem_raise_allocated+0x63f/0x1410 [ 1414.201566][ T4280] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1414.207798][ T4280] __sk_mem_raise_allocated+0x56e/0x1410 [ 1414.213412][ T4280] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1414.219637][ T4280] __sk_mem_schedule+0x6d/0xe0 [ 1414.224388][ T4280] tcp_sendmsg_locked+0x1733/0x33a0 [ 1414.229581][ T4280] ? tcp_sendpage+0x60/0x60 [ 1414.234077][ T4280] ? trace_hardirqs_on+0x67/0x240 [ 1414.239095][ T4280] ? lock_sock_nested+0x9a/0x120 [ 1414.244016][ T4280] ? __local_bh_enable_ip+0x15a/0x270 [ 1414.249393][ T4280] tcp_sendmsg+0x30/0x50 [ 1414.253623][ T4280] inet_sendmsg+0x9e/0xe0 [ 1414.257959][ T4280] ? inet_send_prepare+0x4e0/0x4e0 [ 1414.263057][ T4280] sock_sendmsg+0xd7/0x130 [ 1414.267458][ T4280] __sys_sendto+0x262/0x380 [ 1414.271945][ T4280] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1414.277312][ T4280] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1414.283550][ T4280] ? put_timespec64+0xda/0x140 [ 1414.288298][ T4280] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1414.294008][ T4280] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1414.299448][ T4280] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1414.304890][ T4280] ? do_syscall_64+0x26/0x790 [ 1414.309551][ T4280] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1414.315600][ T4280] __x64_sys_sendto+0xe1/0x1a0 [ 1414.320351][ T4280] do_syscall_64+0xfa/0x790 [ 1414.324839][ T4280] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1414.330709][ T4280] RIP: 0033:0x45a679 [ 1414.334598][ T4280] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1414.354180][ T4280] RSP: 002b:00007f273de95c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1414.362574][ T4280] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1414.370528][ T4280] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1414.378479][ T4280] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000820d00 [ 1414.386433][ T4280] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f273de966d4 [ 1414.394386][ T4280] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1414.413094][ C0] net_ratelimit: 21 callbacks suppressed [ 1414.413103][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1414.424588][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:57:06 executing program 4: r0 = socket$inet6(0xa, 0x4, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) connect$ax25(0xffffffffffffffff, &(0x7f0000000000)={{0x3, @default, 0x8}, [@default, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default]}, 0x48) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = accept4(r0, 0x0, 0x0, 0x0) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x23780, 0x0) ioctl$SCSI_IOCTL_GET_PCI(r3, 0x5387, &(0x7f00000000c0)) setsockopt$inet6_opts(r2, 0x29, 0x37, 0x0, 0x0) connect(r2, &(0x7f00007a8000)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e24, @remote}}, 0x80) 11:57:06 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1414.496385][ T4175] gfs2: not a GFS2 filesystem [ 1414.509123][ T4280] memory: usage 307196kB, limit 307200kB, failcnt 40 [ 1414.548096][ T4280] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1414.619487][ T4280] Memory cgroup stats for /syz1: [ 1414.619607][ T4280] anon 73728 [ 1414.619607][ T4280] file 94208 [ 1414.619607][ T4280] kernel_stack 73728 [ 1414.619607][ T4280] slab 4853760 [ 1414.619607][ T4280] sock 308899840 [ 1414.619607][ T4280] shmem 0 [ 1414.619607][ T4280] file_mapped 0 [ 1414.619607][ T4280] file_dirty 0 [ 1414.619607][ T4280] file_writeback 0 [ 1414.619607][ T4280] anon_thp 0 [ 1414.619607][ T4280] inactive_anon 135168 [ 1414.619607][ T4280] active_anon 73728 [ 1414.619607][ T4280] inactive_file 0 11:57:07 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', 0x0, 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) [ 1414.619607][ T4280] active_file 135168 [ 1414.619607][ T4280] unevictable 0 [ 1414.619607][ T4280] slab_reclaimable 1757184 [ 1414.619607][ T4280] slab_unreclaimable 3096576 [ 1414.619607][ T4280] pgfault 170709 [ 1414.619607][ T4280] pgmajfault 0 [ 1414.619607][ T4280] workingset_refault 0 [ 1414.619607][ T4280] workingset_activate 0 [ 1414.619607][ T4280] workingset_nodereclaim 0 [ 1414.619607][ T4280] pgrefill 175 [ 1414.619607][ T4280] pgscan 214 [ 1414.619607][ T4280] pgsteal 0 [ 1414.619607][ T4280] pgactivate 165 [ 1414.798947][ T4280] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=4268,uid=0 11:57:07 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x24030000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:07 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xa0100) 11:57:07 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) socket$inet(0x2, 0x5, 0x6) r2 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x37, 0x0, 0x0) connect(r2, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) [ 1414.922791][ T4280] Memory cgroup out of memory: Killed process 4268 (syz-executor.1) total-vm:72712kB, anon-rss:156kB, file-rss:35804kB, shmem-rss:0kB, UID:0 pgtables:143360kB oom_score_adj:1000 [ 1415.000159][ T1100] oom_reaper: reaped process 4268 (syz-executor.1), now anon-rss:0kB, file-rss:34848kB, shmem-rss:0kB [ 1415.029071][ T4302] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1415.039379][ T4302] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock 11:57:07 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x850000) [ 1415.048918][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1415.054946][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1415.060829][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1415.066609][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1415.071321][ T4302] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1415.123863][ T4302] EXT4-fs error (device loop3): ext4_fill_super:4488: inode #2: comm syz-executor.3: iget: root inode unallocated [ 1415.136223][ T4517] gfs2: not a GFS2 filesystem [ 1415.144648][ T4302] EXT4-fs (loop3): get root inode failed [ 1415.161334][ T4302] EXT4-fs (loop3): mount failed [ 1415.182013][ T4527] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 1415.195614][ T4527] CPU: 0 PID: 4527 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1415.205098][ T4527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1415.215153][ T4527] Call Trace: [ 1415.218433][ T4527] dump_stack+0x197/0x210 [ 1415.222749][ T4527] dump_header+0x177/0x1152 [ 1415.227241][ T4527] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1415.233029][ T4527] ? ___ratelimit+0x2c8/0x595 [ 1415.237690][ T4527] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1415.243478][ T4527] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1415.248749][ T4527] ? trace_hardirqs_on+0x67/0x240 [ 1415.253755][ T4527] ? pagefault_out_of_memory+0x11c/0x11c [ 1415.259372][ T4527] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1415.265158][ T4527] ? ___ratelimit+0x60/0x595 [ 1415.269739][ T4527] ? do_raw_spin_unlock+0x178/0x270 [ 1415.274945][ T4527] oom_kill_process.cold+0x10/0x15 [ 1415.280038][ T4527] out_of_memory+0x334/0x13c0 [ 1415.284699][ T4527] ? find_held_lock+0x35/0x130 [ 1415.289447][ T4527] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1415.295235][ T4527] ? oom_killer_disable+0x280/0x280 [ 1415.300421][ T4527] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1415.305946][ T4527] ? memcg_oom_wake_function+0x700/0x700 [ 1415.311563][ T4527] ? do_raw_spin_unlock+0x178/0x270 [ 1415.316743][ T4527] ? _raw_spin_unlock+0x28/0x40 [ 1415.321576][ T4527] try_charge+0xf76/0x14d0 [ 1415.325975][ T4527] ? find_held_lock+0x35/0x130 [ 1415.330728][ T4527] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1415.336253][ T4527] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1415.341778][ T4527] ? find_held_lock+0x35/0x130 [ 1415.346521][ T4527] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1415.352061][ T4527] __memcg_kmem_charge_memcg+0x7c/0x130 [ 1415.357585][ T4527] ? memcg_kmem_put_cache+0x1a0/0x1a0 [ 1415.362957][ T4527] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1415.368492][ T4527] __memcg_kmem_charge+0x13a/0x3a0 [ 1415.373588][ T4527] __alloc_pages_nodemask+0x4f5/0x910 [ 1415.378943][ T4527] ? kvm_clock_read+0x18/0x30 [ 1415.383608][ T4527] ? __alloc_pages_slowpath+0x2900/0x2900 [ 1415.389307][ T4527] ? find_held_lock+0x35/0x130 [ 1415.394056][ T4527] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1415.399756][ T4527] ? do_huge_pmd_anonymous_page+0xceb/0x1a50 [ 1415.405716][ T4527] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1415.411937][ T4527] alloc_pages_current+0x107/0x210 [ 1415.417034][ T4527] pte_alloc_one+0x1b/0x1a0 [ 1415.421518][ T4527] __pte_alloc+0x20/0x310 [ 1415.425832][ T4527] __handle_mm_fault+0x2f6c/0x3da0 [ 1415.430932][ T4527] ? vm_iomap_memory+0x1a0/0x1a0 [ 1415.435848][ T4527] ? handle_mm_fault+0x292/0xa50 [ 1415.440770][ T4527] ? handle_mm_fault+0x7a0/0xa50 [ 1415.445689][ T4527] ? __kasan_check_read+0x11/0x20 [ 1415.450697][ T4527] handle_mm_fault+0x3b2/0xa50 [ 1415.455445][ T4527] __do_page_fault+0x536/0xd80 [ 1415.460200][ T4527] do_page_fault+0x38/0x590 [ 1415.464687][ T4527] page_fault+0x39/0x40 [ 1415.468825][ T4527] RIP: 0033:0x40d827 [ 1415.472704][ T4527] Code: 8c 02 50 bf 75 00 48 83 c0 08 48 83 f8 48 75 e6 49 63 c6 0f b6 4c 24 5b 48 69 c0 a8 00 00 00 88 88 c0 bf 75 00 e8 99 59 ff ff <83> 05 d6 27 55 00 01 80 7c 24 59 00 74 0b f6 44 24 18 01 0f 84 e5 [ 1415.492376][ T4527] RSP: 002b:00007ffcdfc67e30 EFLAGS: 00010217 [ 1415.498420][ T4527] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000000045a679 [ 1415.506370][ T4527] RDX: 0000000000000000 RSI: 0000000000000081 RDI: 000000000075bf28 [ 1415.514320][ T4527] RBP: 000000000075bf2c R08: 00007f273de96700 R09: ffffffffffffffff [ 1415.522297][ T4527] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000075bf20 11:57:07 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', 0x0, 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) [ 1415.530247][ T4527] R13: 0000000000000006 R14: 0000000000000000 R15: 000000000075bf2c 11:57:07 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x110f00) [ 1415.577150][ T4527] memory: usage 307200kB, limit 307200kB, failcnt 84 [ 1415.641758][ T4527] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1415.674274][ T4527] Memory cgroup stats for /syz1: [ 1415.674656][ T4527] anon 73728 [ 1415.674656][ T4527] file 94208 [ 1415.674656][ T4527] kernel_stack 73728 [ 1415.674656][ T4527] slab 4853760 [ 1415.674656][ T4527] sock 309035008 [ 1415.674656][ T4527] shmem 0 [ 1415.674656][ T4527] file_mapped 0 [ 1415.674656][ T4527] file_dirty 0 [ 1415.674656][ T4527] file_writeback 0 [ 1415.674656][ T4527] anon_thp 0 [ 1415.674656][ T4527] inactive_anon 135168 [ 1415.674656][ T4527] active_anon 73728 [ 1415.674656][ T4527] inactive_file 0 [ 1415.674656][ T4527] active_file 135168 [ 1415.674656][ T4527] unevictable 0 [ 1415.674656][ T4527] slab_reclaimable 1757184 [ 1415.674656][ T4527] slab_unreclaimable 3096576 11:57:08 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x3e030000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:08 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) 11:57:08 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @remote, 0x3}, 0x1c) setsockopt$inet6_buf(r1, 0x29, 0xf87fb566622a3418, &(0x7f0000000300)="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", 0x1000) r3 = accept4(r0, 0x0, 0x0, 0x0) r4 = gettid() timer_create(0x8, &(0x7f00000000c0)={0x0, 0x32, 0x4, @tid=r4}, &(0x7f00000002c0)) syz_open_procfs(r4, &(0x7f0000000000)='net/ip6_mr_cache\x00') setsockopt$inet6_opts(r3, 0x29, 0x37, 0x0, 0x0) connect(r3, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) [ 1415.674656][ T4527] pgfault 170808 [ 1415.674656][ T4527] pgmajfault 0 [ 1415.674656][ T4527] workingset_refault 0 [ 1415.674656][ T4527] workingset_activate 0 [ 1415.674656][ T4527] workingset_nodereclaim 0 [ 1415.674656][ T4527] pgrefill 241 [ 1415.674656][ T4527] pgscan 214 [ 1415.674656][ T4527] pgsteal 0 [ 1415.674656][ T4527] pgactivate 198 [ 1415.771348][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1415.777143][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1415.783056][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1415.788901][ C1] protocol 88fb is buggy, dev hsr_slave_0 11:57:08 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x8c0e00) [ 1415.835582][ T4527] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=4527,uid=0 [ 1415.856160][ T4527] Memory cgroup out of memory: Killed process 4527 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1415.942839][ T4741] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1415.953770][ T4741] CPU: 0 PID: 4741 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1415.963263][ T4741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1415.973308][ T4741] Call Trace: [ 1415.976604][ T4741] dump_stack+0x197/0x210 [ 1415.980945][ T4741] dump_header+0x177/0x1152 [ 1415.985455][ T4741] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1415.991266][ T4741] ? ___ratelimit+0x2c8/0x595 [ 1415.995945][ T4741] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1416.001745][ T4741] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1416.001763][ T4741] ? trace_hardirqs_on+0x67/0x240 [ 1416.001783][ T4741] ? pagefault_out_of_memory+0x11c/0x11c [ 1416.017675][ T4741] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1416.023486][ T4741] ? ___ratelimit+0x60/0x595 [ 1416.028076][ T4741] ? do_raw_spin_unlock+0x178/0x270 [ 1416.033284][ T4741] oom_kill_process.cold+0x10/0x15 [ 1416.038397][ T4741] out_of_memory+0x334/0x13c0 [ 1416.038413][ T4741] ? find_held_lock+0x35/0x130 [ 1416.038435][ T4741] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1416.038451][ T4741] ? oom_killer_disable+0x280/0x280 [ 1416.038478][ T4741] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1416.038491][ T4741] ? memcg_oom_wake_function+0x700/0x700 [ 1416.038510][ T4741] ? do_raw_spin_unlock+0x178/0x270 [ 1416.075236][ T4741] ? _raw_spin_unlock+0x28/0x40 [ 1416.080102][ T4741] try_charge+0xf76/0x14d0 [ 1416.084541][ T4741] ? find_held_lock+0x35/0x130 [ 1416.089319][ T4741] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1416.094869][ T4741] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1416.100423][ T4741] ? find_held_lock+0x35/0x130 [ 1416.105193][ T4741] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1416.110755][ T4741] __memcg_kmem_charge_memcg+0x7c/0x130 [ 1416.116303][ T4741] ? memcg_kmem_put_cache+0x1a0/0x1a0 [ 1416.121683][ T4741] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1416.127239][ T4741] __memcg_kmem_charge+0x13a/0x3a0 [ 1416.132360][ T4741] copy_process+0x79d/0x7230 [ 1416.136964][ T4741] ? find_held_lock+0x35/0x130 [ 1416.141751][ T4741] ? __cleanup_sighand+0xc0/0xc0 [ 1416.146698][ T4741] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1416.152855][ T4741] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1416.159111][ T4741] ? debug_smp_processor_id+0x33/0x18a [ 1416.164582][ T4741] ? __kasan_check_read+0x11/0x20 [ 1416.169614][ T4741] _do_fork+0x146/0x1090 [ 1416.173863][ T4741] ? copy_init_mm+0x20/0x20 [ 1416.178378][ T4741] ? lock_downgrade+0x920/0x920 [ 1416.183240][ T4741] __x64_sys_clone+0x19a/0x260 [ 1416.188015][ T4741] ? __ia32_sys_vfork+0xd0/0xd0 [ 1416.192870][ T4741] ? __blkcg_punt_bio_submit+0x1e0/0x1e0 [ 1416.198528][ T4741] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1416.203820][ T4741] ? trace_hardirqs_on+0x67/0x240 [ 1416.208856][ T4741] do_syscall_64+0xfa/0x790 [ 1416.213376][ T4741] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1416.219261][ T4741] RIP: 0033:0x45d049 [ 1416.223137][ T4741] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75 11:57:08 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x140200) 11:57:08 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) semget(0x2, 0x4, 0x85) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x37, 0x0, 0x0) connect(r2, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) [ 1416.242756][ T4741] RSP: 002b:00007ffcdfc67cf8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 1416.251150][ T4741] RAX: ffffffffffffffda RBX: 00007f273de96700 RCX: 000000000045d049 [ 1416.259118][ T4741] RDX: 00007f273de969d0 RSI: 00007f273de95db0 RDI: 00000000003d0f00 [ 1416.267084][ T4741] RBP: 00007ffcdfc67f10 R08: 00007f273de96700 R09: 00007f273de96700 [ 1416.275048][ T4741] R10: 00007f273de969d0 R11: 0000000000000202 R12: 0000000000000000 [ 1416.283010][ T4741] R13: 00007ffcdfc67daf R14: 00007f273de969c0 R15: 000000000075bf2c [ 1416.304600][ T4741] memory: usage 307200kB, limit 307200kB, failcnt 154 [ 1416.311911][ T4741] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1416.318851][ T4741] Memory cgroup stats for /syz1: [ 1416.318944][ T4741] anon 73728 [ 1416.318944][ T4741] file 94208 [ 1416.318944][ T4741] kernel_stack 36864 [ 1416.318944][ T4741] slab 4853760 [ 1416.318944][ T4741] sock 309035008 [ 1416.318944][ T4741] shmem 0 [ 1416.318944][ T4741] file_mapped 0 [ 1416.318944][ T4741] file_dirty 0 [ 1416.318944][ T4741] file_writeback 0 [ 1416.318944][ T4741] anon_thp 0 [ 1416.318944][ T4741] inactive_anon 135168 [ 1416.318944][ T4741] active_anon 73728 [ 1416.318944][ T4741] inactive_file 0 [ 1416.318944][ T4741] active_file 135168 [ 1416.318944][ T4741] unevictable 0 [ 1416.318944][ T4741] slab_reclaimable 1757184 [ 1416.318944][ T4741] slab_unreclaimable 3096576 [ 1416.318944][ T4741] pgfault 170841 [ 1416.318944][ T4741] pgmajfault 0 [ 1416.318944][ T4741] workingset_refault 0 [ 1416.318944][ T4741] workingset_activate 0 [ 1416.318944][ T4741] workingset_nodereclaim 0 [ 1416.318944][ T4741] pgrefill 274 [ 1416.318944][ T4741] pgscan 247 [ 1416.318944][ T4741] pgsteal 0 [ 1416.318944][ T4741] pgactivate 231 [ 1416.423632][ T4741] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=4741,uid=0 [ 1416.454454][ T4740] gfs2: not a GFS2 filesystem 11:57:08 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', 0x0, 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) 11:57:08 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) [ 1416.528832][ T4741] Memory cgroup out of memory: Killed process 4741 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1416.550568][ T1100] oom_reaper: reaped process 4741 (syz-executor.1), now anon-rss:0kB, file-rss:33920kB, shmem-rss:0kB 11:57:09 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x8f0100) 11:57:09 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x37, 0x0, 0x0) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x8c0757eb6af1e027, 0x0) ioctl$RTC_PIE_OFF(r3, 0x7006) connect(r2, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) 11:57:09 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142802) 11:57:09 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x3f000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1416.796908][ T5073] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1416.807304][ T5073] CPU: 1 PID: 5073 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1416.816754][ T5073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1416.826884][ T5073] Call Trace: [ 1416.830186][ T5073] dump_stack+0x197/0x210 [ 1416.834521][ T5073] dump_header+0x177/0x1152 [ 1416.834539][ T5073] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1416.834553][ T5073] ? ___ratelimit+0x2c8/0x595 [ 1416.834566][ T5073] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1416.834582][ T5073] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1416.834605][ T5073] ? trace_hardirqs_on+0x67/0x240 [ 1416.865624][ T5073] ? pagefault_out_of_memory+0x11c/0x11c [ 1416.871259][ T5073] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1416.877066][ T5073] ? ___ratelimit+0x60/0x595 [ 1416.881674][ T5073] ? do_raw_spin_unlock+0x178/0x270 [ 1416.886885][ T5073] oom_kill_process.cold+0x10/0x15 [ 1416.892024][ T5073] out_of_memory+0x334/0x13c0 [ 1416.896695][ T5073] ? find_held_lock+0x35/0x130 [ 1416.901457][ T5073] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1416.907267][ T5073] ? oom_killer_disable+0x280/0x280 [ 1416.912479][ T5073] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1416.918031][ T5073] ? memcg_oom_wake_function+0x700/0x700 [ 1416.923671][ T5073] ? do_raw_spin_unlock+0x178/0x270 [ 1416.928882][ T5073] ? _raw_spin_unlock+0x28/0x40 [ 1416.933743][ T5073] try_charge+0xf76/0x14d0 [ 1416.938200][ T5073] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1416.943745][ T5073] ? percpu_ref_tryget+0x102/0x230 [ 1416.948862][ T5073] ? rcu_read_lock_held+0x9c/0xb0 [ 1416.953892][ T5073] ? __kasan_check_read+0x11/0x20 [ 1416.958928][ T5073] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1416.964476][ T5073] mem_cgroup_try_charge+0x136/0x590 [ 1416.969768][ T5073] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1416.975405][ T5073] wp_page_copy+0x407/0x1560 [ 1416.979993][ T5073] ? find_held_lock+0x35/0x130 [ 1416.980016][ T5073] ? follow_pfn+0x2a0/0x2a0 [ 1416.980032][ T5073] ? lock_downgrade+0x920/0x920 [ 1416.980050][ T5073] ? swp_swapcount+0x540/0x540 [ 1416.980070][ T5073] ? do_raw_spin_unlock+0x178/0x270 [ 1416.980086][ T5073] do_wp_page+0x543/0x1540 [ 1416.980105][ T5073] ? finish_mkwrite_fault+0x5c0/0x5c0 [ 1416.980129][ T5073] __handle_mm_fault+0x327b/0x3da0 [ 1416.980150][ T5073] ? vm_iomap_memory+0x1a0/0x1a0 [ 1416.980165][ T5073] ? handle_mm_fault+0x292/0xa50 [ 1416.980195][ T5073] ? handle_mm_fault+0x7a0/0xa50 [ 1416.980218][ T5073] ? __kasan_check_read+0x11/0x20 [ 1416.989477][ T5073] handle_mm_fault+0x3b2/0xa50 [ 1417.013993][ T5073] __do_page_fault+0x536/0xd80 [ 1417.038845][ T5073] do_page_fault+0x38/0x590 [ 1417.038884][ T5073] page_fault+0x39/0x40 [ 1417.038897][ T5073] RIP: 0033:0x431756 [ 1417.038912][ T5073] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 a6 71 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 ec 59 64 00 85 c0 0f 84 [ 1417.038920][ T5073] RSP: 002b:00007ffcdfc67c20 EFLAGS: 00010206 [ 1417.038932][ T5073] RAX: 00000000000205b1 RBX: 000000000071a640 RCX: 0000000000000121 [ 1417.038941][ T5073] RDX: 0000000000fa1930 RSI: 0000000000fa1a50 RDI: 0000000000000000 [ 1417.038949][ T5073] RBP: 0000000000000121 R08: ffffffffffffffff R09: 0000000000000000 [ 1417.038957][ T5073] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000071a698 [ 1417.038965][ T5073] R13: 000000000071a698 R14: 0000000000000000 R15: 0000000000002710 [ 1417.100930][ T5073] memory: usage 307200kB, limit 307200kB, failcnt 196 [ 1417.158874][ T5073] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1417.169320][ T5073] Memory cgroup stats for /syz1: [ 1417.170003][ T5073] anon 73728 [ 1417.170003][ T5073] file 94208 [ 1417.170003][ T5073] kernel_stack 36864 [ 1417.170003][ T5073] slab 4853760 [ 1417.170003][ T5073] sock 309035008 [ 1417.170003][ T5073] shmem 0 [ 1417.170003][ T5073] file_mapped 0 [ 1417.170003][ T5073] file_dirty 0 [ 1417.170003][ T5073] file_writeback 0 [ 1417.170003][ T5073] anon_thp 0 [ 1417.170003][ T5073] inactive_anon 135168 [ 1417.170003][ T5073] active_anon 73728 [ 1417.170003][ T5073] inactive_file 0 [ 1417.170003][ T5073] active_file 135168 [ 1417.170003][ T5073] unevictable 0 [ 1417.170003][ T5073] slab_reclaimable 1757184 [ 1417.170003][ T5073] slab_unreclaimable 3096576 [ 1417.170003][ T5073] pgfault 170907 [ 1417.170003][ T5073] pgmajfault 0 [ 1417.170003][ T5073] workingset_refault 0 [ 1417.170003][ T5073] workingset_activate 0 [ 1417.170003][ T5073] workingset_nodereclaim 0 [ 1417.170003][ T5073] pgrefill 274 [ 1417.170003][ T5073] pgscan 280 11:57:09 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142803) [ 1417.170003][ T5073] pgsteal 0 [ 1417.170003][ T5073] pgactivate 264 [ 1417.269474][ T5073] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=5073,uid=0 11:57:09 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) ioctl$FS_IOC_GETVERSION(r3, 0x80087601, &(0x7f0000000000)) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r4 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet6_opts(r4, 0x29, 0x37, 0x0, 0x0) connect(r4, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) 11:57:09 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x4801, 0x0) [ 1417.336104][ T5073] Memory cgroup out of memory: Killed process 5073 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 11:57:09 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) [ 1417.398874][ T5076] gfs2: not a GFS2 filesystem 11:57:09 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142804) 11:57:09 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x990200) 11:57:10 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x40000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:10 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142807) 11:57:10 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x4801, 0x0) [ 1417.738306][ T5366] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1417.749110][ T5366] CPU: 0 PID: 5366 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1417.758579][ T5366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1417.768626][ T5366] Call Trace: [ 1417.771923][ T5366] dump_stack+0x197/0x210 [ 1417.776252][ T5366] dump_header+0x177/0x1152 [ 1417.780779][ T5366] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1417.786561][ T5366] ? ___ratelimit+0x2c8/0x595 [ 1417.791226][ T5366] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1417.797037][ T5366] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1417.802314][ T5366] ? trace_hardirqs_on+0x67/0x240 [ 1417.807312][ T5366] ? pagefault_out_of_memory+0x11c/0x11c [ 1417.812921][ T5366] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1417.818703][ T5366] ? ___ratelimit+0x60/0x595 [ 1417.823268][ T5366] ? do_raw_spin_unlock+0x178/0x270 [ 1417.828441][ T5366] oom_kill_process.cold+0x10/0x15 [ 1417.833529][ T5366] out_of_memory+0x334/0x13c0 [ 1417.838180][ T5366] ? find_held_lock+0x35/0x130 [ 1417.842925][ T5366] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1417.848706][ T5366] ? oom_killer_disable+0x280/0x280 [ 1417.853885][ T5366] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1417.859406][ T5366] ? memcg_oom_wake_function+0x700/0x700 [ 1417.865017][ T5366] ? do_raw_spin_unlock+0x178/0x270 [ 1417.870206][ T5366] ? _raw_spin_unlock+0x28/0x40 [ 1417.875054][ T5366] try_charge+0xf76/0x14d0 [ 1417.879459][ T5366] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1417.884978][ T5366] ? percpu_ref_tryget+0x102/0x230 [ 1417.890067][ T5366] ? rcu_read_lock_held+0x9c/0xb0 [ 1417.895082][ T5366] ? __kasan_check_read+0x11/0x20 [ 1417.900084][ T5366] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1417.905605][ T5366] mem_cgroup_try_charge+0x136/0x590 [ 1417.910868][ T5366] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1417.916479][ T5366] __handle_mm_fault+0x1f1f/0x3da0 [ 1417.921571][ T5366] ? vm_iomap_memory+0x1a0/0x1a0 [ 1417.926485][ T5366] ? handle_mm_fault+0x292/0xa50 [ 1417.931411][ T5366] ? handle_mm_fault+0x7a0/0xa50 [ 1417.936324][ T5366] ? __kasan_check_read+0x11/0x20 [ 1417.941330][ T5366] handle_mm_fault+0x3b2/0xa50 [ 1417.946078][ T5366] __do_page_fault+0x536/0xd80 [ 1417.950864][ T5366] do_page_fault+0x38/0x590 [ 1417.955382][ T5366] page_fault+0x39/0x40 [ 1417.959629][ T5366] RIP: 0033:0x45d02d [ 1417.963503][ T5366] Code: 5b 5d f3 c3 66 0f 1f 84 00 00 00 00 00 48 c7 c0 ea ff ff ff 48 85 ff 0f 84 e0 8c fb ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 <48> 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 [ 1417.983234][ T5366] RSP: 002b:00007ffcdfc67cf8 EFLAGS: 00010202 [ 1417.989275][ T5366] RAX: ffffffffffffffea RBX: 00007f273de96700 RCX: 00007f273de96700 [ 1417.997256][ T5366] RDX: 00000000003d0f00 RSI: 00007f273de95db0 RDI: 0000000000411260 [ 1418.005289][ T5366] RBP: 00007ffcdfc67f10 R08: 00007f273de969d0 R09: 00007f273de96700 [ 1418.013322][ T5366] R10: 00007f273de95dc0 R11: 0000000000000246 R12: 0000000000000000 [ 1418.021270][ T5366] R13: 00007ffcdfc67daf R14: 00007f273de969c0 R15: 000000000075bf2c 11:57:10 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_int(r2, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0xe2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x1}, 0x1c) sendmsg$inet6(r2, &(0x7f00000008c0)={&(0x7f0000000180)={0xa, 0xfffe, 0x0, @local, 0xa}, 0x1c, &(0x7f0000000780)}, 0x60) r5 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet6_opts(r5, 0x29, 0x37, 0x0, 0x0) connect(r5, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuset.memory_pressure\x00', 0x0, 0x0) bind$tipc(r6, &(0x7f0000000040)=@id={0x1e, 0x3, 0x1, {0x4e20, 0x4}}, 0x10) [ 1418.033340][ T5366] memory: usage 307200kB, limit 307200kB, failcnt 226 [ 1418.040401][ T5366] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1418.047463][ T5366] Memory cgroup stats for /syz1: [ 1418.047582][ T5366] anon 73728 [ 1418.047582][ T5366] file 94208 [ 1418.047582][ T5366] kernel_stack 36864 [ 1418.047582][ T5366] slab 4853760 [ 1418.047582][ T5366] sock 309035008 [ 1418.047582][ T5366] shmem 0 [ 1418.047582][ T5366] file_mapped 0 [ 1418.047582][ T5366] file_dirty 0 [ 1418.047582][ T5366] file_writeback 0 [ 1418.047582][ T5366] anon_thp 0 [ 1418.047582][ T5366] inactive_anon 135168 [ 1418.047582][ T5366] active_anon 73728 [ 1418.047582][ T5366] inactive_file 0 [ 1418.047582][ T5366] active_file 135168 [ 1418.047582][ T5366] unevictable 0 [ 1418.047582][ T5366] slab_reclaimable 1757184 [ 1418.047582][ T5366] slab_unreclaimable 3096576 [ 1418.047582][ T5366] pgfault 170973 [ 1418.047582][ T5366] pgmajfault 0 [ 1418.047582][ T5366] workingset_refault 0 [ 1418.047582][ T5366] workingset_activate 0 [ 1418.047582][ T5366] workingset_nodereclaim 0 [ 1418.047582][ T5366] pgrefill 307 [ 1418.047582][ T5366] pgscan 313 [ 1418.047582][ T5366] pgsteal 0 [ 1418.047582][ T5366] pgactivate 264 11:57:10 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142808) 11:57:10 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', 0x0, 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) [ 1418.265500][ T5366] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=5366,uid=0 [ 1418.282326][ T5366] Memory cgroup out of memory: Killed process 5366 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1418.303542][ T1100] oom_reaper: reaped process 5366 (syz-executor.1), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB [ 1418.339247][ T5425] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 1418.370360][ T5422] gfs2: not a GFS2 filesystem 11:57:10 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142809) 11:57:10 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xa30300) 11:57:10 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x4801, 0x0) 11:57:10 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = accept4(r0, 0x0, 0x0, 0x0) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x800, 0x0) writev(r1, &(0x7f0000001500)=[{&(0x7f00000001c0)="45850e935ca18ef5fed18693920fc9f7c89dfa6cdc8a20fd405b605e6d44b30cecc1ad5f2ab3d87590efb996442d7439df8c9b87116784a86e4027b7718213a1da6b863c1362e35ce118e3fe51d49bcc197cdb24235d39fc0b05176aed0dfe9e5d7da6776a72cba7bafc781901b441abc9772fda9990fdb9dbe0b38a9249b02ff3824c70d573bc16572dada4ced1c56e4e67581fc5929b5056febd45685b85d4f55bb9fe43fe458b", 0xa8}, {&(0x7f00000002c0)="e9693e2eb28935947b74ad01a4ad84c93b395499b816d8b873337eedfc5d5aba864c07f207aaefab0f5a8e41e0da36cd4b5122f4be161eb1cf7ab8f3d488adae6cf1f3d37a1f495dbc07275e2a9dd1cc23ab906b42f12c", 0x57}, {&(0x7f0000000340)="cb3ae30ea63328b51e35a09e90acf2ab7b847fab7e649976cd8f2b3023a5571c0e51bde33e3d24447f81772379b5a60d66357a3ba8fe1f08af898dd09f11579e53809469b51b15137eb392791c6dce5c938837dc65a2ef71ed956ebaaa514c9beb3348c121b8d1ffdf005b40373cd6f2ca3a13e737e8cbd6e49ddcf4d193d9944d72610ad90f38259ac8cf098f80f89c2e284f2b30a0411b2a71e627617584d2cb43123475211b42e9b2c0a16abd007f32cd89de58f165cc68ad4a6b64e5f4511e7e783ae2b12d5ff756980340d0e31811f4aba032c6a08b39bf83590507aa2a50a38aa96487f2", 0xe7}, {&(0x7f0000000440)="77131151d2684325a5bff13479be8d51c1707ca0a490d88bedb4fc6295487089ca063a7980abe85f8da7982460ad77d94e1e10b7da439965dfc518a96bb62e37ad101b4d599671cc398b3a9e826dec3fce5929d392821468c1b75ad9270bc1a384c28efe15f1791019cbb9214bdfd527f81887afca70ea88870963f834ff3be45d", 0x81}, {&(0x7f0000000500)="2dd7bce973a4217f2616b3ebed1cee966689cb40ca02a1cd2cf94a1e7c699058a44118f5e0a1319180bb383ba33a90cc935b808b0a670f2ef215b7f68b62028598e10bc74e184bdf0e294087103e48e227734ad987865672f31a0d1376c29b3f7e854fd75959ed6d447610274a1a4fb1a557d5274bd84dd7957151a80eeab224cc3cc6a1fa8966aaef4d8a3877d3cc0f95d1adcf417b16db9eb8ed40dbf705f81552917c39717d389be9e2289fa3bfaeadff98e4bde8611e71679f7f833dca201268847940159364fb8eabed4dcbc1eac8118a4654e739a78f7540665e18b7e6dabae03f0593837d84b7770395b15d69e5e02b5c1ec0fee2d6691475c689c47a5b46f46934056efd6f028e661480b10b333c297accb2e246c3a5972a0f67d295a4cdbe467b7201c1d5db82d8ee1c7ae7f7f8c1ac5e96bd47a4ff6fcab4bfa85e2827e3b8686f0afea0dfaa25b035b34f21841454886fd11cdfed299bc8477b1ed5f2ad5ec1bf6e2248d7b8ea07485674d3cbf7b0e232692692de3fe031da9b484ed48025537b798ef2bfe237cf706036f7987fd9d570aa82ecd9004adae290cd8ec79e37ad996d7ca8066538ac3fdcf94a33d00ab61b23ab9893407b2bdf74a3c7bef34384efae02aaaa2723d88845744b620c0f23a49d85695f1022005e1d94530c373005461cb3661dc702d7dbb85c76b246cef402f519c5f4414209d02add15cd40b904b7e45e8f4d426394d6409ebef4abd42f4dafd9b39d393b7630ce0ba2a5086305065165b3b0e56684383a6417b93580fdd54c28cc977f069a7d1a8fd97108db7718b80826792768e23c6f73cf13af6bc1cb683ffedbc30831654be127dd6e88f9aaeef73392d916b8b7dee1a7a1327860638c9b1b92f5345397a1fbb5ebc0d85114c4eae2cb19e21bc1a62ea3ce5f8a8d62aa6ba4a9b66e9ad2f5f9180260cef22150b9ab2c60118922c5b740d9a126bd040c6197b619dcfa477e5b7e990b2964a4886722a8ba8b957b9019fa9de63f1cd2c74473fc53360e8bac12b112040698894e8cd3f39887f6cc6eb36500db79ab1c21ba6b535ea2fadcd4ceae072e7f3f713a9103a81de0e5c97ed8dcadb2fda166d655c62eccc6a05ef75206436eeceac2b2ab675e8a8707371b971d2deb5c4a3eaee0daf416447e3b1f141ff7f83a138152d0e0449a14b8f7e7007005ce279b76fa8e713befedf1a6b7cab9c47de4712fc9d7418c41d889e3717e1d51573a3bdbf0b29dcbbde87e8a4c82af66e7adeb612462779d6be451cd7f99f376981f6f0e5b68e95295cea1c320cf558786c7fa98614a4a4fcf67a34e22177d2d57e93dc33e2fa7d5c8295804419baaee3763e52c2654384fa0212450bb5126764aed5ccdcb1b456189eb6530c4deed7ac239ba9561ba04563423a66ec2a4aa31ebda77430c3b66d33e726a869afc7b043888131999cac0d18b0ae2d7d61e017e12e59b631dd224442348c0596c4696cff136ed50688100ee52a54ee6d342b51252919087481b0b78818ae525cc6ea3545df1a367f214fea2f7ee20379895c665c6ed3c099a18c52186a4e4e3d4fcceb0bed3de7fd489dcb49e83c4324476be6598ac3120097c757bc8b80857ee132326b45d418c40a46283314121b8ef633be4e7e483378af1f9f6a405616b5d580bfb521038271781e211ba780b1037efe205f2489362d75f250e5701ccef2f4af4ebb651932bbb71c281ec80e136e6e93cdc6698c672c741e72e84f3b9c64b703de74f9c0220b7ade65f43a4ad0c5f67ad4d05509c65000564bac4cef59c67daa60affddfbc7fdb768c7e4c7952f3edad61c2af68c1f7a3080daad8652613255b80da8768924ca3f7bdfcfb9c4517367e37d0f0d08b495dc7d53256031fbf88454b919eb1bdf141b0fa3ff775754d8316f7ece080dc5225d685d45f2cbf405469df5e5065e779a9ec0e2016c6d63bbb1aa80ad6039b4d59bb8a97a3fe2bb844bb92c51836fe3cc71dbff02d0f023ef0c400f83ff9cef6d1b9979c8b07d41cc0e5b341ffa66d5076a35940a5cfc486ccd5ed922ed8632b688bdd1feac1fc2daf0b35fe964785d3a19ec67e6e0e43d6e4d9b4c26f12d84de593c7f696a0a2db89550248a51f9ead53edf5212d5c1385f3fe7d607beab5d89a1007c2de568cddbb4ef3415ffe8feaf4b553321681d18b3e507fef33ca13af7a48c30f03dccd7cae8c90d801023b373b37f21fbd2d70eb259cc02fa0543544010a004cb34ea883061e2a6b7c9a3696e9932b276cbcef39fa2b54094902f271b7aee4e1669fef1515436a707e122a78fe22ff46827c9a21307c5b0da81697c49bfe2e42bc2c6daa952819bb79ab1a236d5890a4fc825b5fd3a5d0bbde20ab7ffd8e95c8ae8f5bc9193609e0026668e046cbe9068e8e815d6937421215c0300edcd8bbb38ee3fd1443a7e1cac016d5bbc923d5b54c3de643899554c0c1b8581d9af95b51fee38d35191734fa9677d6e2941dc6ec08b22fa91f47a37080d8983dccf34835774411e916a3a39e73fe6c2df6bb2baf538f69fbcbebae17ca962c05ed559ac35ed574c62a8d0bd4f87685cabb92579b0d173b3c007c530a54683eaf55be10415b498227ef0401b9efd25fb02266fe4a8784049f0ddafe7f6542fa36fd254f7806c6836cd46adb51e8f582cde8341d316ac993ccc2770609e94019cd710bddc7aba88fcf7cb146e2664a533bbc59eb19df01339418ccf90a8bf4f467eb329ae6a80c41d3952f476f7d9c21fd20f7be9d3e13dceee00112fa70deb89ec6cc9038333ddee5c7488592780d49e9faeb08d27a651fa82eebb2b7de6b643f6753bb79a377e62aff2c6a7d07cfe51f3b4af98850f1228df91a0f74f4657ea89c2baa41f3eccef08ec289a326ee391ee11633fe053bcadecef445d276e719c4b9c3cb16614fbd18f701ea346f4069cda4b3c3f8d192bc59afdf5f7af7c0c47b5e8388fe3bbff2c48102b4f819f315829d4adf4d9d6ecf86266c747d9495aaf9c02a39dc911451cfedf11c5e7df52deefc40675609e851c1bd545a1f1bfca4fd06bb33211e28364259535f071c147754f5732b8ae52c83b55c4ce0f736ab9e6435bc96ae68778439b2332875a4b29bee0b166a07a397363c0ef9288072600dd99c15d9252d1d38e2224a81911c9b57b6c1b60312b4cd5f0f5222463da90fc1d5d8192dc50ed80fb4d038972c62f88ec1880808b80c0ec7c9d0dfe8489db34fe29dd1139817bcba3bb402fa11db6d45c574853238d0754a3827c0e49f6366fd15e7acc9c2e1f2400e86a0cf15f94c92e2e88f891744579346ae5bd2abfcb76e04c6f005b2ec6ed7c570e4d9f5f2dea36889256f91b05b69020c348345d0b230d275d5804681af57e639c9fae87bf0c3a1a4fbd98d5bfb002dab8c18e6e499fb0b348713b63b7ebe7c5ec9394295a1c7608f6e464048495436beac5db37f4ac3dd0315b476c4675472c96df6c0c9965bc0db34072e226d068214a0b28db89ef999134a8e70ce26f41aa6da4b0175f52df60db95733eec0ea0b5938547ad12658c8c29f7dbecb348cdbc0a904bc880c4b7e3fc3230cc6327c1871c943232167506a0422eea0b45dd26ce9184f55d4bfa060da5c6e51bbe49baa4cd6fd6af093fc1c8204cd6566af5b1180bd635cacbd40e7f0e07f442801aa7efa4968ad715d7c0a36a4092c8f2a82826308c8da7bd1c6a94fb08866a40eecd0ef8059ce5b61774f843367637e7f5bf7d495d7ba3409c111e8b9d385825c8e26ea7fac61df95c57d7560024add1904072f85c078374e67afbf088fe558e7d85e5bae3421135a1d15e4085c82003b1de54973a477a684dd5117d25351e593fd7adf3deb9b6674802beb05009842743ce47320ff2082d68de5e97aa088591ff8a16ef0f9670e2ae234b140da655c2503336ea84f608f587b4e4bee1a62db5ef9e918a1903b581660813ad6618b744a6c2e5baa4ee7e5cd456b706e2a9247ea89e1661198b1c5d2994c86a3719b6ef4c6cde4ce680a06485abdc295277232c5bebd33d6fb0c6c6e8329012eb57e2c37b67ab79165db95f02f04023f5c152b56f453624b41568dbbc4647a535890136e4a90d3d992353ba136fbd4c66c37d8b8b773b8b9254b11311fa8beb27cb577d26b14d7a99595be6278adfcfe875692605fb252f231bd2fa5532eafc4bb7c4430bd594335a426ffc6b2a64b539a1ced694d2a19ccc97529e76753369828e4f14d8a2744da26578c2a262517c4826c9342a1e8708c17e3ca7de1c27cfd30dc07079c477a98438f18c58b6193078122beb05bc1efcc5bcebb43257e540054eeda2fd1b3470f7269c1b3d73bb5320483f88acc70df0e37f786ef5668a60edef8b93c0530bbb1231eb6f3d896f5ede7605c58f01006493939305f011d4d4053f2b6cf917f5638837318a7ecc2ec242b7bb098403843fab49732f66a2336f0e010630db3ed6ba1a126162e2caec0d8a50474bf088767d14492d927bdc8f0923bd2e733ca48312c15c1f8622900993e06a4b72251555e305706f33a7cbf52062b067114e2c2cb2bccad9ef64ea2ef282b6f7b31019cd99d03ff98771646d9a2b7188c395111bff186fd7eeb09400d0a2dbb418f6464a6e14bf5ed41a79b952a0f5f75a759c16e31045f32222da0cafce299c3ef55f7f5aec956e935eb6f79ff89915ddc95a5358434024388a43d50b7523a72c7aab0f1229ae8ee51dfc240c5da4708357f4fa1de2ebade04c54fe346872818b1ed6421b5182139993889e7d05333855f9c5ec845a9c881abad5cfb57a33f41a0a8ba20f673eb89893927994dbf9fb61cc6abd282e2aa548851da916183280afcef19fef45376f8af6aa342427413f94b7cfd55cfeb4adb23d5705e28046e9895f10e1f2c3872308b9b2a3f4ebc22dc6d9d08e6c41bed07123e7eeebe1b465d7568451e0c824a59536ac8f637c83eddb5c1e5767bd23f90cf62eb1d45ea9fd143bd19cae54c982e9e93c80289bf959dac944c1e3c870a6855ffa48a1c70a1bfd559acb3afee23f48540cd75866936ca8138992d99d5b92dabdc26c3140c670aaaf6bf71ff096de9baebdad589ac43880ceeef9b178a27130476f786c3227d99aa1defdbc9b1e938cfc7424d14229e3fb4f9680c653420e6b50adb81790301f3e1217c1b1404651ba72a015d50467d6f2363ffc99350459f60b4fe699dd1b82a829da5aa0a8a6989bae0f7e9606a4c64002daacb12030a6ac146609129a2c07ce96b83368ef91ba9ec3122b0b21abb3e3a054736a29f412a1d5e775e5aba6ccb2c95e103ab5b4ed36135757fdece7e541152c3f6cf32987885f22ba1ab3c4cfdd64d29c6cb0eab575e88638d4918d1c39b8bee35d0b7450a57af3cf6192e76c7eef1f28c65437a34d51551aaa522f1b6a2a814d8805d8d2a43282fe590e5e467dc1e023631897e3043e2b5d97a2c98a05bbcb6b0f8fc8858f30ae8e4f344edd2ec6185c0d71d6778ba900c219622a814e37b8c20d018e41b5670823f2fbdf67d85acef16c5cc2d66d22474cb0b0a50de898657005f2657fdbfe48ac8af8ab94509d45522647c4e977f22f5b433e4d9fd99d24f73d8b5686e4efac44e609872fe51644f5fe3434ca3934b3e40e46d3820094823c8e0578ac747393c8a63e16c6be6e4264dba9e28ca5344e7c51dfa708991c87863e645bfd7254bd6d6f306c97b433b51c84a362b47e339446e15cf35886ad392f9a215d9cf3ccee68b81a7a167b4a9ab0a7e52e7d09571de7bb23c0ae454f7e8b69", 0x1000}], 0x5) ioctl$RTC_PIE_OFF(r3, 0x7006) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r5 = dup2(r4, r4) write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000080), 0xa) ioctl$PPPIOCGUNIT(r5, 0x80047456, &(0x7f0000000100)) ioctl$VIDIOC_G_MODULATOR(r5, 0xc0445636, &(0x7f0000000000)={0x4b76, "b890515a18fe1bf51549c98a5024b8115f8254fb332198c86db2ea6987cb529c", 0x40, 0x5, 0xb3b, 0x1, 0x8}) setsockopt$inet6_opts(r2, 0x29, 0x37, 0x0, 0x0) connect(r2, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) [ 1418.689895][ T5542] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1418.718910][ T5542] CPU: 0 PID: 5542 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1418.728520][ T5542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 11:57:11 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', 0x0, 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) 11:57:11 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x48000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1418.738577][ T5542] Call Trace: [ 1418.741876][ T5542] dump_stack+0x197/0x210 [ 1418.746214][ T5542] dump_header+0x177/0x1152 [ 1418.750717][ T5542] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1418.756519][ T5542] ? ___ratelimit+0x2c8/0x595 [ 1418.761198][ T5542] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1418.767008][ T5542] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1418.772298][ T5542] ? trace_hardirqs_on+0x67/0x240 [ 1418.777329][ T5542] ? pagefault_out_of_memory+0x11c/0x11c [ 1418.782969][ T5542] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1418.788786][ T5542] ? ___ratelimit+0x60/0x595 [ 1418.793384][ T5542] ? do_raw_spin_unlock+0x178/0x270 [ 1418.798579][ T5542] oom_kill_process.cold+0x10/0x15 [ 1418.803692][ T5542] out_of_memory+0x334/0x13c0 [ 1418.808365][ T5542] ? find_held_lock+0x35/0x130 [ 1418.813129][ T5542] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1418.818939][ T5542] ? oom_killer_disable+0x280/0x280 [ 1418.818969][ T5542] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1418.818985][ T5542] ? memcg_oom_wake_function+0x700/0x700 [ 1418.819008][ T5542] ? do_raw_spin_unlock+0x178/0x270 [ 1418.829723][ T5542] ? _raw_spin_unlock+0x28/0x40 [ 1418.829745][ T5542] try_charge+0xf76/0x14d0 [ 1418.829760][ T5542] ? find_held_lock+0x35/0x130 [ 1418.829784][ T5542] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1418.829797][ T5542] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1418.829816][ T5542] ? find_held_lock+0x35/0x130 [ 1418.870523][ T5542] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1418.876116][ T5542] __memcg_kmem_charge_memcg+0x7c/0x130 [ 1418.881667][ T5542] ? memcg_kmem_put_cache+0x1a0/0x1a0 [ 1418.887053][ T5542] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1418.892601][ T5542] __memcg_kmem_charge+0x13a/0x3a0 [ 1418.897725][ T5542] copy_process+0x79d/0x7230 [ 1418.902322][ T5542] ? find_held_lock+0x35/0x130 [ 1418.907104][ T5542] ? __cleanup_sighand+0xc0/0xc0 [ 1418.910149][ T5653] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 1418.912038][ T5542] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1418.912055][ T5542] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1418.912068][ T5542] ? debug_smp_processor_id+0x33/0x18a 11:57:11 executing program 4: r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvme-fabrics\x00', 0x40, 0x0) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r0, &(0x7f00000000c0)="b16fcbb0d72a498d28a67387fc247e175cd7", &(0x7f0000000100)=""/162, 0x4}, 0x20) r1 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r1, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x0, 0x0) setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f0000000040)=0x1, 0x4) r3 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r3, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r4 = accept4(r1, 0x0, 0x0, 0x0) r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r6 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e23, @broadcast}, 0x2cd6c0946aa55ec) sendto$inet(r6, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r7 = dup2(r6, r6) write$UHID_GET_REPORT_REPLY(r7, &(0x7f0000000080), 0xa) setsockopt$CAN_RAW_JOIN_FILTERS(r7, 0x65, 0x6, &(0x7f00000002c0), 0x4) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @empty}, r8}}, 0x48) setsockopt$inet6_opts(r4, 0x29, 0x37, 0x0, 0x0) connect(r4, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) [ 1418.912087][ T5542] ? __kasan_check_read+0x11/0x20 [ 1418.941433][ T5542] _do_fork+0x146/0x1090 [ 1418.945687][ T5542] ? copy_init_mm+0x20/0x20 [ 1418.950209][ T5542] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1418.956458][ T5542] ? debug_smp_processor_id+0x33/0x18a [ 1418.961931][ T5542] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1418.968091][ T5542] __x64_sys_clone+0x19a/0x260 [ 1418.972857][ T5542] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 1418.978837][ T5542] ? __ia32_sys_vfork+0xd0/0xd0 [ 1418.983693][ T5542] ? __blkcg_punt_bio_submit+0x1e0/0x1e0 [ 1418.989344][ T5542] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1418.994649][ T5542] ? trace_hardirqs_on+0x67/0x240 [ 1418.999683][ T5542] do_syscall_64+0xfa/0x790 [ 1419.004185][ T5542] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1419.010077][ T5542] RIP: 0033:0x45d049 [ 1419.013961][ T5542] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75 [ 1419.033544][ T5542] RSP: 002b:00007ffcdfc67cf8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 1419.041940][ T5542] RAX: ffffffffffffffda RBX: 00007f273de96700 RCX: 000000000045d049 [ 1419.049892][ T5542] RDX: 00007f273de969d0 RSI: 00007f273de95db0 RDI: 00000000003d0f00 [ 1419.057860][ T5542] RBP: 00007ffcdfc67f10 R08: 00007f273de96700 R09: 00007f273de96700 [ 1419.065811][ T5542] R10: 00007f273de969d0 R11: 0000000000000202 R12: 0000000000000000 [ 1419.073805][ T5542] R13: 00007ffcdfc67daf R14: 00007f273de969c0 R15: 000000000075bf2c 11:57:11 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x14280a) [ 1419.086499][ T5542] memory: usage 307200kB, limit 307200kB, failcnt 259 [ 1419.096343][ T5542] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1419.104927][ T5542] Memory cgroup stats for /syz1: [ 1419.105003][ T5542] anon 73728 [ 1419.105003][ T5542] file 94208 [ 1419.105003][ T5542] kernel_stack 36864 [ 1419.105003][ T5542] slab 4853760 [ 1419.105003][ T5542] sock 309035008 [ 1419.105003][ T5542] shmem 0 [ 1419.105003][ T5542] file_mapped 0 [ 1419.105003][ T5542] file_dirty 0 [ 1419.105003][ T5542] file_writeback 0 [ 1419.105003][ T5542] anon_thp 0 [ 1419.105003][ T5542] inactive_anon 135168 [ 1419.105003][ T5542] active_anon 73728 [ 1419.105003][ T5542] inactive_file 0 [ 1419.105003][ T5542] active_file 135168 [ 1419.105003][ T5542] unevictable 0 [ 1419.105003][ T5542] slab_reclaimable 1757184 [ 1419.105003][ T5542] slab_unreclaimable 3096576 [ 1419.105003][ T5542] pgfault 171006 [ 1419.105003][ T5542] pgmajfault 0 [ 1419.105003][ T5542] workingset_refault 0 [ 1419.105003][ T5542] workingset_activate 0 [ 1419.105003][ T5542] workingset_nodereclaim 0 [ 1419.105003][ T5542] pgrefill 307 [ 1419.105003][ T5542] pgscan 313 [ 1419.105003][ T5542] pgsteal 0 [ 1419.105003][ T5542] pgactivate 297 [ 1419.206718][ T5542] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=5542,uid=0 [ 1419.229832][ T5542] Memory cgroup out of memory: Killed process 5542 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1419.254377][ T1100] oom_reaper: reaped process 5542 (syz-executor.1), now anon-rss:0kB, file-rss:33920kB, shmem-rss:0kB 11:57:11 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xad0400) 11:57:11 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x4801, 0x0) [ 1419.288082][ T5759] gfs2: not a GFS2 filesystem [ 1419.451160][ T5777] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1419.461631][ T5777] CPU: 1 PID: 5777 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1419.471079][ T5777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1419.471086][ T5777] Call Trace: [ 1419.471108][ T5777] dump_stack+0x197/0x210 [ 1419.471129][ T5777] dump_header+0x177/0x1152 [ 1419.471145][ T5777] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1419.471158][ T5777] ? ___ratelimit+0x2c8/0x595 [ 1419.471172][ T5777] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1419.471192][ T5777] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1419.503754][ T5777] ? trace_hardirqs_on+0x67/0x240 [ 1419.503773][ T5777] ? pagefault_out_of_memory+0x11c/0x11c [ 1419.503790][ T5777] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1419.503805][ T5777] ? ___ratelimit+0x60/0x595 [ 1419.503820][ T5777] ? do_raw_spin_unlock+0x178/0x270 [ 1419.503835][ T5777] oom_kill_process.cold+0x10/0x15 [ 1419.503854][ T5777] out_of_memory+0x334/0x13c0 [ 1419.550842][ T5777] ? find_held_lock+0x35/0x130 [ 1419.555621][ T5777] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1419.561445][ T5777] ? oom_killer_disable+0x280/0x280 [ 1419.569959][ T5777] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1419.575513][ T5777] ? memcg_oom_wake_function+0x700/0x700 [ 1419.581157][ T5777] ? do_raw_spin_unlock+0x178/0x270 [ 1419.586365][ T5777] ? _raw_spin_unlock+0x28/0x40 [ 1419.591224][ T5777] try_charge+0xf76/0x14d0 [ 1419.595642][ T5777] ? find_held_lock+0x35/0x130 [ 1419.600433][ T5777] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1419.605977][ T5777] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1419.611534][ T5777] ? find_held_lock+0x35/0x130 [ 1419.616315][ T5777] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1419.621879][ T5777] __memcg_kmem_charge_memcg+0x7c/0x130 [ 1419.627425][ T5777] ? memcg_kmem_put_cache+0x1a0/0x1a0 [ 1419.632801][ T5777] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1419.638347][ T5777] __memcg_kmem_charge+0x13a/0x3a0 [ 1419.643457][ T5777] copy_process+0x79d/0x7230 11:57:12 executing program 4: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20, 0x8}, 0x74) listen(r0, 0x20000003) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x37, 0x0, 0x0) r3 = socket$inet_dccp(0x2, 0x6, 0x0) accept4$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, &(0x7f0000000040)=0x10, 0x1000) connect(r2, &(0x7f00007a8000)=@generic={0x0, "8c36b043d081c3c1503af6a768406b9267f60ac286da2338bd8e3f6ba990189977170a0705ea90c13e26ba0b966b9b9d3289c8784f16963ce7c312649ce2996cd4e7126f704ab2546e516d216ed2fb7a95ff906185874a2d44029a01f46a380e73c5477efe9e01548612afd6c667be500d748038f499a492ef8fe4e62653"}, 0x80) 11:57:12 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', 0x0, 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) [ 1419.648051][ T5777] ? find_held_lock+0x35/0x130 [ 1419.652833][ T5777] ? __cleanup_sighand+0xc0/0xc0 [ 1419.657778][ T5777] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1419.663928][ T5777] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1419.670169][ T5777] ? debug_smp_processor_id+0x33/0x18a [ 1419.675635][ T5777] ? __kasan_check_read+0x11/0x20 [ 1419.680672][ T5777] _do_fork+0x146/0x1090 [ 1419.684918][ T5777] ? copy_init_mm+0x20/0x20 [ 1419.689433][ T5777] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1419.695672][ T5777] ? debug_smp_processor_id+0x33/0x18a [ 1419.701137][ T5777] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1419.707287][ T5777] __x64_sys_clone+0x19a/0x260 [ 1419.712035][ T5777] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 1419.717998][ T5777] ? __ia32_sys_vfork+0xd0/0xd0 [ 1419.722835][ T5777] ? __blkcg_punt_bio_submit+0x1e0/0x1e0 [ 1419.728463][ T5777] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1419.733731][ T5777] ? trace_hardirqs_on+0x67/0x240 [ 1419.738738][ T5777] do_syscall_64+0xfa/0x790 [ 1419.743226][ T5777] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1419.749095][ T5777] RIP: 0033:0x45d049 [ 1419.752970][ T5777] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75 [ 1419.772555][ T5777] RSP: 002b:00007ffcdfc67cf8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 1419.780943][ T5777] RAX: ffffffffffffffda RBX: 00007f273de96700 RCX: 000000000045d049 [ 1419.788894][ T5777] RDX: 00007f273de969d0 RSI: 00007f273de95db0 RDI: 00000000003d0f00 11:57:12 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x14280e) [ 1419.796846][ T5777] RBP: 00007ffcdfc67f10 R08: 00007f273de96700 R09: 00007f273de96700 [ 1419.804800][ T5777] R10: 00007f273de969d0 R11: 0000000000000202 R12: 0000000000000000 [ 1419.812752][ T5777] R13: 00007ffcdfc67daf R14: 00007f273de969c0 R15: 000000000075bf2c [ 1419.895115][ T5777] memory: usage 307200kB, limit 307200kB, failcnt 297 [ 1419.902365][ T5777] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1419.909880][ T5777] Memory cgroup stats for /syz1: [ 1419.910187][ T5777] anon 73728 [ 1419.910187][ T5777] file 94208 [ 1419.910187][ T5777] kernel_stack 0 [ 1419.910187][ T5777] slab 4853760 [ 1419.910187][ T5777] sock 309035008 [ 1419.910187][ T5777] shmem 0 [ 1419.910187][ T5777] file_mapped 0 [ 1419.910187][ T5777] file_dirty 0 [ 1419.910187][ T5777] file_writeback 0 [ 1419.910187][ T5777] anon_thp 0 [ 1419.910187][ T5777] inactive_anon 135168 [ 1419.910187][ T5777] active_anon 73728 [ 1419.910187][ T5777] inactive_file 0 [ 1419.910187][ T5777] active_file 135168 [ 1419.910187][ T5777] unevictable 0 [ 1419.910187][ T5777] slab_reclaimable 1757184 [ 1419.910187][ T5777] slab_unreclaimable 3096576 [ 1419.910187][ T5777] pgfault 171039 [ 1419.910187][ T5777] pgmajfault 0 [ 1419.910187][ T5777] workingset_refault 0 [ 1419.910187][ T5777] workingset_activate 0 [ 1419.910187][ T5777] workingset_nodereclaim 0 11:57:12 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x14280f) [ 1419.910187][ T5777] pgrefill 340 [ 1419.910187][ T5777] pgscan 346 [ 1419.910187][ T5777] pgsteal 0 [ 1419.910187][ T5777] pgactivate 330 [ 1420.013882][ T5778] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 1420.052205][ T5777] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=5777,uid=0 [ 1420.068007][ T5777] Memory cgroup out of memory: Killed process 5777 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1420.086612][ T1100] oom_reaper: reaped process 5777 (syz-executor.1), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB 11:57:12 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) recvmsg(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000180)=""/85, 0x55}, {0x0}], 0x2}, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r1, 0x0, 0xccf3, 0x0, 0x0, 0x800e00545) shutdown(r0, 0x0) poll(&(0x7f0000000040), 0x2000000000000014, 0x4e) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r2, 0x0, 0x17, 0x0, 0x0, 0x800e003be) r3 = socket$inet_udp(0x2, 0x2, 0x0) poll(&(0x7f0000000040)=[{r3, 0x80}], 0x1, 0x8004c) shutdown(r1, 0x0) [ 1420.098774][ C1] net_ratelimit: 18 callbacks suppressed [ 1420.098781][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1420.110308][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1420.116184][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1420.122042][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1420.127808][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:57:12 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x4c000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:12 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x4801, 0x0) 11:57:12 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xb70500) 11:57:12 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x4801, 0x0) 11:57:12 executing program 4: [ 1420.461614][ T6208] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1420.471942][ T6208] CPU: 1 PID: 6208 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1420.481397][ T6208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1420.492321][ T6208] Call Trace: [ 1420.495618][ T6208] dump_stack+0x197/0x210 [ 1420.499951][ T6208] dump_header+0x177/0x1152 [ 1420.499971][ T6208] ? _raw_spin_unlock_irqrestore+0x66/0xe0 11:57:12 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142811) [ 1420.499984][ T6208] ? ___ratelimit+0x2c8/0x595 [ 1420.499998][ T6208] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1420.500019][ T6208] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1420.510295][ T6208] ? trace_hardirqs_on+0x67/0x240 [ 1420.510313][ T6208] ? pagefault_out_of_memory+0x11c/0x11c [ 1420.510329][ T6208] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1420.510345][ T6208] ? ___ratelimit+0x60/0x595 [ 1420.510360][ T6208] ? do_raw_spin_unlock+0x178/0x270 [ 1420.510376][ T6208] oom_kill_process.cold+0x10/0x15 [ 1420.510392][ T6208] out_of_memory+0x334/0x13c0 [ 1420.510407][ T6208] ? find_held_lock+0x35/0x130 [ 1420.510427][ T6208] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1420.510443][ T6208] ? oom_killer_disable+0x280/0x280 [ 1420.510467][ T6208] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1420.525336][ T6144] gfs2: not a GFS2 filesystem [ 1420.526183][ T6208] ? memcg_oom_wake_function+0x700/0x700 [ 1420.526208][ T6208] ? do_raw_spin_unlock+0x178/0x270 [ 1420.526226][ T6208] ? _raw_spin_unlock+0x28/0x40 [ 1420.526248][ T6208] try_charge+0xf76/0x14d0 [ 1420.608013][ T6208] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1420.613549][ T6208] ? percpu_ref_tryget+0x102/0x230 [ 1420.618655][ T6208] ? rcu_read_lock_held+0x9c/0xb0 [ 1420.623672][ T6208] ? __kasan_check_read+0x11/0x20 [ 1420.628688][ T6208] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1420.634240][ T6208] mem_cgroup_try_charge+0x136/0x590 [ 1420.639520][ T6208] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1420.645134][ T6208] wp_page_copy+0x407/0x1560 [ 1420.648832][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1420.649797][ T6208] ? find_held_lock+0x35/0x130 [ 1420.649822][ T6208] ? follow_pfn+0x2a0/0x2a0 [ 1420.655569][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1420.660280][ T6208] ? lock_downgrade+0x920/0x920 [ 1420.660298][ T6208] ? swp_swapcount+0x540/0x540 [ 1420.660321][ T6208] ? do_raw_spin_unlock+0x178/0x270 [ 1420.660339][ T6208] do_wp_page+0x543/0x1540 [ 1420.660363][ T6208] ? finish_mkwrite_fault+0x5c0/0x5c0 [ 1420.695060][ T6208] __handle_mm_fault+0x327b/0x3da0 [ 1420.700186][ T6208] ? vm_iomap_memory+0x1a0/0x1a0 [ 1420.705150][ T6208] ? handle_mm_fault+0x292/0xa50 [ 1420.710195][ T6208] ? handle_mm_fault+0x7a0/0xa50 [ 1420.715140][ T6208] ? __kasan_check_read+0x11/0x20 [ 1420.720168][ T6208] handle_mm_fault+0x3b2/0xa50 [ 1420.724928][ T6208] __do_page_fault+0x536/0xd80 [ 1420.729691][ T6208] do_page_fault+0x38/0x590 [ 1420.734205][ T6208] page_fault+0x39/0x40 [ 1420.738432][ T6208] RIP: 0033:0x431756 [ 1420.742310][ T6208] Code: 1f 44 00 00 48 29 e8 31 c9 48 81 fb 40 a6 71 00 0f 95 c1 48 8d 34 2a 48 83 cd 01 48 c1 e1 02 48 83 c8 01 48 09 e9 48 89 73 58 <48> 89 4a 08 48 89 46 08 48 8d 4a 10 8b 05 ec 59 64 00 85 c0 0f 84 [ 1420.761915][ T6208] RSP: 002b:00007ffcdfc67c20 EFLAGS: 00010206 [ 1420.767972][ T6208] RAX: 00000000000205b1 RBX: 000000000071a640 RCX: 0000000000000121 [ 1420.775925][ T6208] RDX: 0000000000fa1930 RSI: 0000000000fa1a50 RDI: 0000000000000000 [ 1420.783894][ T6208] RBP: 0000000000000121 R08: ffffffffffffffff R09: 0000000000000000 [ 1420.791862][ T6208] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000071a698 [ 1420.799833][ T6208] R13: 000000000071a698 R14: 0000000000000000 R15: 0000000000002710 [ 1420.814096][ T6208] memory: usage 307200kB, limit 307200kB, failcnt 334 [ 1420.821143][ T6208] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1420.827980][ T6208] Memory cgroup stats for /syz1: [ 1420.828051][ T6208] anon 73728 [ 1420.828051][ T6208] file 94208 [ 1420.828051][ T6208] kernel_stack 36864 [ 1420.828051][ T6208] slab 4853760 [ 1420.828051][ T6208] sock 309035008 [ 1420.828051][ T6208] shmem 0 [ 1420.828051][ T6208] file_mapped 0 [ 1420.828051][ T6208] file_dirty 0 [ 1420.828051][ T6208] file_writeback 0 [ 1420.828051][ T6208] anon_thp 0 [ 1420.828051][ T6208] inactive_anon 135168 [ 1420.828051][ T6208] active_anon 73728 [ 1420.828051][ T6208] inactive_file 0 [ 1420.828051][ T6208] active_file 135168 [ 1420.828051][ T6208] unevictable 0 [ 1420.828051][ T6208] slab_reclaimable 1757184 [ 1420.828051][ T6208] slab_unreclaimable 3096576 [ 1420.828051][ T6208] pgfault 171072 [ 1420.828051][ T6208] pgmajfault 0 [ 1420.828051][ T6208] workingset_refault 0 [ 1420.828051][ T6208] workingset_activate 0 [ 1420.828051][ T6208] workingset_nodereclaim 0 [ 1420.828051][ T6208] pgrefill 373 [ 1420.828051][ T6208] pgscan 379 [ 1420.828051][ T6208] pgsteal 0 [ 1420.828051][ T6208] pgactivate 330 [ 1420.924524][ T6208] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=6208,uid=0 [ 1420.940950][ T6208] Memory cgroup out of memory: Killed process 6208 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1420.959485][ T1100] oom_reaper: reaped process 6208 (syz-executor.1), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB 11:57:13 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xc10600) 11:57:13 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x60000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:13 executing program 4: [ 1421.088774][ T6178] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 1421.170117][ T6325] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1421.209513][ T6325] CPU: 1 PID: 6325 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1421.219006][ T6325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1421.229056][ T6325] Call Trace: [ 1421.232347][ T6325] dump_stack+0x197/0x210 [ 1421.236705][ T6325] dump_header+0x177/0x1152 [ 1421.241212][ T6325] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1421.247016][ T6325] ? ___ratelimit+0x2c8/0x595 [ 1421.251696][ T6325] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1421.257503][ T6325] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1421.262795][ T6325] ? trace_hardirqs_on+0x67/0x240 [ 1421.267841][ T6325] ? pagefault_out_of_memory+0x11c/0x11c [ 1421.273475][ T6325] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1421.279282][ T6325] ? ___ratelimit+0x60/0x595 [ 1421.283874][ T6325] ? do_raw_spin_unlock+0x178/0x270 [ 1421.288763][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1421.289071][ T6325] oom_kill_process.cold+0x10/0x15 [ 1421.294841][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1421.299859][ T6325] out_of_memory+0x334/0x13c0 [ 1421.299874][ T6325] ? find_held_lock+0x35/0x130 [ 1421.299893][ T6325] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 11:57:13 executing program 4: 11:57:13 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x4801, 0x0) 11:57:13 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142814) [ 1421.299911][ T6325] ? oom_killer_disable+0x280/0x280 [ 1421.305679][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1421.310282][ T6325] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1421.310301][ T6325] ? memcg_oom_wake_function+0x700/0x700 [ 1421.342879][ T6325] ? do_raw_spin_unlock+0x178/0x270 [ 1421.348089][ T6325] ? _raw_spin_unlock+0x28/0x40 [ 1421.352946][ T6325] try_charge+0xf76/0x14d0 [ 1421.357373][ T6325] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1421.362918][ T6325] ? percpu_ref_tryget+0x102/0x230 [ 1421.368022][ T6325] ? rcu_read_lock_held+0x9c/0xb0 [ 1421.373040][ T6325] ? __kasan_check_read+0x11/0x20 [ 1421.378077][ T6325] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1421.383633][ T6325] mem_cgroup_try_charge+0x136/0x590 [ 1421.388924][ T6325] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1421.394555][ T6325] __handle_mm_fault+0x1f1f/0x3da0 [ 1421.399670][ T6325] ? vm_iomap_memory+0x1a0/0x1a0 [ 1421.404606][ T6325] ? handle_mm_fault+0x292/0xa50 [ 1421.409557][ T6325] ? handle_mm_fault+0x7a0/0xa50 [ 1421.414503][ T6325] ? __kasan_check_read+0x11/0x20 [ 1421.419529][ T6325] handle_mm_fault+0x3b2/0xa50 [ 1421.424288][ T6325] __do_page_fault+0x536/0xd80 [ 1421.429051][ T6325] do_page_fault+0x38/0x590 [ 1421.433549][ T6325] page_fault+0x39/0x40 [ 1421.437685][ T6325] RIP: 0033:0x411e6f [ 1421.441594][ T6325] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41 [ 1421.461200][ T6325] RSP: 002b:00007ffcdfc67d40 EFLAGS: 00010206 [ 1421.467256][ T6325] RAX: 00007f273de76000 RBX: 0000000000020000 RCX: 000000000045a6ca [ 1421.475212][ T6325] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000 [ 1421.483170][ T6325] RBP: 00007ffcdfc67e20 R08: ffffffffffffffff R09: 0000000000000000 [ 1421.491218][ T6325] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcdfc67f10 [ 1421.499175][ T6325] R13: 00007f273de96700 R14: 0000000000000000 R15: 000000000075bf2c [ 1421.510489][ T6325] memory: usage 307200kB, limit 307200kB, failcnt 363 [ 1421.517255][ T6325] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1421.524361][ T6325] Memory cgroup stats for /syz1: [ 1421.524477][ T6325] anon 73728 [ 1421.524477][ T6325] file 94208 [ 1421.524477][ T6325] kernel_stack 36864 [ 1421.524477][ T6325] slab 4853760 [ 1421.524477][ T6325] sock 309035008 [ 1421.524477][ T6325] shmem 0 [ 1421.524477][ T6325] file_mapped 0 [ 1421.524477][ T6325] file_dirty 0 [ 1421.524477][ T6325] file_writeback 0 [ 1421.524477][ T6325] anon_thp 0 [ 1421.524477][ T6325] inactive_anon 135168 [ 1421.524477][ T6325] active_anon 73728 [ 1421.524477][ T6325] inactive_file 0 [ 1421.524477][ T6325] active_file 135168 [ 1421.524477][ T6325] unevictable 0 [ 1421.524477][ T6325] slab_reclaimable 1757184 [ 1421.524477][ T6325] slab_unreclaimable 3096576 [ 1421.524477][ T6325] pgfault 171138 [ 1421.524477][ T6325] pgmajfault 0 [ 1421.524477][ T6325] workingset_refault 0 [ 1421.524477][ T6325] workingset_activate 0 [ 1421.524477][ T6325] workingset_nodereclaim 0 [ 1421.524477][ T6325] pgrefill 406 [ 1421.524477][ T6325] pgscan 412 [ 1421.524477][ T6325] pgsteal 0 [ 1421.524477][ T6325] pgactivate 363 [ 1421.638835][ T6325] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=6325,uid=0 11:57:14 executing program 4: [ 1421.708511][ T6333] gfs2: not a GFS2 filesystem 11:57:14 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x4801, 0x0) 11:57:14 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x68000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1421.808888][ T6325] Memory cgroup out of memory: Killed process 6325 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 11:57:14 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x1428e0) [ 1421.915127][ T1100] oom_reaper: reaped process 6325 (syz-executor.1), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB [ 1421.944074][ T6443] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 1421.959743][ T6454] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:14 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x1e0300) 11:57:14 executing program 4: 11:57:14 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xcb0700) 11:57:14 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{0x0, 0x0, 0x400}], 0x4801, 0x0) [ 1422.108499][ T6462] gfs2: not a GFS2 filesystem 11:57:14 executing program 4: 11:57:14 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x4801, 0x0) [ 1422.210874][ T6470] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1422.234126][ T6470] CPU: 0 PID: 6470 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1422.243615][ T6470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1422.253672][ T6470] Call Trace: [ 1422.256968][ T6470] dump_stack+0x197/0x210 [ 1422.261304][ T6470] dump_header+0x177/0x1152 [ 1422.265805][ T6470] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1422.271619][ T6470] ? ___ratelimit+0x2c8/0x595 [ 1422.276297][ T6470] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1422.282097][ T6470] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1422.287386][ T6470] ? trace_hardirqs_on+0x67/0x240 [ 1422.292424][ T6470] ? pagefault_out_of_memory+0x11c/0x11c [ 1422.298087][ T6470] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1422.303895][ T6470] ? ___ratelimit+0x60/0x595 [ 1422.308490][ T6470] ? do_raw_spin_unlock+0x178/0x270 [ 1422.313692][ T6470] oom_kill_process.cold+0x10/0x15 [ 1422.318798][ T6470] out_of_memory+0x334/0x13c0 [ 1422.323466][ T6470] ? find_held_lock+0x35/0x130 [ 1422.328236][ T6470] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1422.334048][ T6470] ? oom_killer_disable+0x280/0x280 [ 1422.339259][ T6470] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1422.344807][ T6470] ? memcg_oom_wake_function+0x700/0x700 [ 1422.350452][ T6470] ? do_raw_spin_unlock+0x178/0x270 [ 1422.355658][ T6470] ? _raw_spin_unlock+0x28/0x40 [ 1422.360517][ T6470] try_charge+0xf76/0x14d0 [ 1422.364940][ T6470] ? find_held_lock+0x35/0x130 [ 1422.369727][ T6470] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1422.375276][ T6470] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1422.380828][ T6470] ? find_held_lock+0x35/0x130 [ 1422.385594][ T6470] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1422.391171][ T6470] __memcg_kmem_charge_memcg+0x7c/0x130 [ 1422.396722][ T6470] ? memcg_kmem_put_cache+0x1a0/0x1a0 [ 1422.402103][ T6470] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1422.407779][ T6470] __memcg_kmem_charge+0x13a/0x3a0 [ 1422.412906][ T6470] copy_process+0x79d/0x7230 [ 1422.417500][ T6470] ? find_held_lock+0x35/0x130 [ 1422.422284][ T6470] ? __cleanup_sighand+0xc0/0xc0 [ 1422.427224][ T6470] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1422.433380][ T6470] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1422.439743][ T6470] ? debug_smp_processor_id+0x33/0x18a [ 1422.445205][ T6470] ? __kasan_check_read+0x11/0x20 [ 1422.450237][ T6470] _do_fork+0x146/0x1090 [ 1422.454488][ T6470] ? copy_init_mm+0x20/0x20 [ 1422.459003][ T6470] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1422.465368][ T6470] ? debug_smp_processor_id+0x33/0x18a [ 1422.470827][ T6470] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1422.470847][ T6470] __x64_sys_clone+0x19a/0x260 [ 1422.470862][ T6470] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 1422.470875][ T6470] ? __ia32_sys_vfork+0xd0/0xd0 [ 1422.470888][ T6470] ? __blkcg_punt_bio_submit+0x1e0/0x1e0 [ 1422.470911][ T6470] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1422.481817][ T6470] ? trace_hardirqs_on+0x67/0x240 11:57:14 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x280400) 11:57:14 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x320500) [ 1422.481840][ T6470] do_syscall_64+0xfa/0x790 [ 1422.481860][ T6470] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1422.481872][ T6470] RIP: 0033:0x45d049 [ 1422.481885][ T6470] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75 [ 1422.481900][ T6470] RSP: 002b:00007ffcdfc67cf8 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 1422.550854][ T6470] RAX: ffffffffffffffda RBX: 00007f273de96700 RCX: 000000000045d049 11:57:14 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x6c000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1422.558838][ T6470] RDX: 00007f273de969d0 RSI: 00007f273de95db0 RDI: 00000000003d0f00 [ 1422.566812][ T6470] RBP: 00007ffcdfc67f10 R08: 00007f273de96700 R09: 00007f273de96700 [ 1422.574796][ T6470] R10: 00007f273de969d0 R11: 0000000000000202 R12: 0000000000000000 [ 1422.582773][ T6470] R13: 00007ffcdfc67daf R14: 00007f273de969c0 R15: 000000000075bf2c [ 1422.595791][ T6470] memory: usage 307072kB, limit 307200kB, failcnt 403 [ 1422.625804][ T6470] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1422.646494][ T6470] Memory cgroup stats for /syz1: [ 1422.646607][ T6470] anon 73728 [ 1422.646607][ T6470] file 94208 [ 1422.646607][ T6470] kernel_stack 73728 [ 1422.646607][ T6470] slab 4853760 [ 1422.646607][ T6470] sock 309035008 [ 1422.646607][ T6470] shmem 0 [ 1422.646607][ T6470] file_mapped 0 [ 1422.646607][ T6470] file_dirty 0 [ 1422.646607][ T6470] file_writeback 0 [ 1422.646607][ T6470] anon_thp 0 [ 1422.646607][ T6470] inactive_anon 135168 [ 1422.646607][ T6470] active_anon 73728 [ 1422.646607][ T6470] inactive_file 0 [ 1422.646607][ T6470] active_file 135168 [ 1422.646607][ T6470] unevictable 0 [ 1422.646607][ T6470] slab_reclaimable 1757184 [ 1422.646607][ T6470] slab_unreclaimable 3096576 [ 1422.646607][ T6470] pgfault 171171 [ 1422.646607][ T6470] pgmajfault 0 [ 1422.646607][ T6470] workingset_refault 0 [ 1422.646607][ T6470] workingset_activate 0 [ 1422.646607][ T6470] workingset_nodereclaim 0 [ 1422.646607][ T6470] pgrefill 406 [ 1422.646607][ T6470] pgscan 445 [ 1422.646607][ T6470] pgsteal 0 [ 1422.646607][ T6470] pgactivate 363 [ 1422.782577][ T6470] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=6470,uid=0 [ 1422.804177][ T6470] Memory cgroup out of memory: Killed process 6470 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 11:57:15 executing program 4: 11:57:15 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xd50800) [ 1422.828271][ T6578] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 1422.835836][ T1100] oom_reaper: reaped process 6470 (syz-executor.1), now anon-rss:0kB, file-rss:33920kB, shmem-rss:0kB [ 1422.847093][ T6594] gfs2: not a GFS2 filesystem [ 1422.899515][ T6595] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:15 executing program 4: 11:57:15 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{0x0, 0x0, 0x400}], 0x4801, 0x0) [ 1423.038042][ T6607] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1423.048968][ T6607] CPU: 1 PID: 6607 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1423.058430][ T6607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1423.068486][ T6607] Call Trace: [ 1423.071797][ T6607] dump_stack+0x197/0x210 [ 1423.076145][ T6607] dump_header+0x177/0x1152 [ 1423.080658][ T6607] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1423.086475][ T6607] ? ___ratelimit+0x2c8/0x595 [ 1423.091158][ T6607] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1423.096966][ T6607] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1423.102261][ T6607] ? trace_hardirqs_on+0x67/0x240 [ 1423.107295][ T6607] ? pagefault_out_of_memory+0x11c/0x11c [ 1423.112934][ T6607] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1423.118749][ T6607] ? ___ratelimit+0x60/0x595 [ 1423.123346][ T6607] ? do_raw_spin_unlock+0x178/0x270 [ 1423.128553][ T6607] oom_kill_process.cold+0x10/0x15 [ 1423.133666][ T6607] out_of_memory+0x334/0x13c0 [ 1423.138335][ T6607] ? find_held_lock+0x35/0x130 [ 1423.143103][ T6607] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1423.148917][ T6607] ? oom_killer_disable+0x280/0x280 [ 1423.154135][ T6607] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1423.159685][ T6607] ? memcg_oom_wake_function+0x700/0x700 [ 1423.165327][ T6607] ? do_raw_spin_unlock+0x178/0x270 [ 1423.170534][ T6607] ? _raw_spin_unlock+0x28/0x40 [ 1423.175395][ T6607] try_charge+0xf76/0x14d0 [ 1423.179913][ T6607] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1423.185463][ T6607] ? mark_held_locks+0xa4/0xf0 [ 1423.190232][ T6607] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1423.195869][ T6607] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1423.201676][ T6607] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1423.207315][ T6607] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1423.212608][ T6607] ? trace_hardirqs_on+0x67/0x240 [ 1423.217641][ T6607] mem_cgroup_charge_skmem+0x15e/0x300 [ 1423.223108][ T6607] ? mem_cgroup_sk_free+0x90/0x90 [ 1423.228144][ T6607] ? __kasan_check_write+0x14/0x20 [ 1423.233248][ T6607] ? __alloc_skb+0x3d0/0x5e0 [ 1423.237843][ T6607] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1423.244090][ T6607] __sk_mem_raise_allocated+0x56e/0x1410 [ 1423.244116][ T6607] __sk_mem_schedule+0x6d/0xe0 [ 1423.244138][ T6607] tcp_sendmsg_locked+0x1733/0x33a0 [ 1423.244170][ T6607] ? tcp_sendpage+0x60/0x60 [ 1423.254518][ T6607] ? trace_hardirqs_on+0x67/0x240 [ 1423.254535][ T6607] ? lock_sock_nested+0x9a/0x120 [ 1423.254551][ T6607] ? __local_bh_enable_ip+0x15a/0x270 [ 1423.254573][ T6607] tcp_sendmsg+0x30/0x50 [ 1423.283735][ T6607] inet_sendmsg+0x9e/0xe0 [ 1423.288047][ T6607] ? inet_send_prepare+0x4e0/0x4e0 [ 1423.293139][ T6607] sock_sendmsg+0xd7/0x130 [ 1423.297537][ T6607] __sys_sendto+0x262/0x380 [ 1423.302032][ T6607] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1423.307405][ T6607] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1423.313627][ T6607] ? put_timespec64+0xda/0x140 [ 1423.318381][ T6607] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1423.324099][ T6607] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1423.329553][ T6607] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1423.335022][ T6607] ? do_syscall_64+0x26/0x790 [ 1423.339700][ T6607] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1423.345757][ T6607] __x64_sys_sendto+0xe1/0x1a0 [ 1423.350517][ T6607] do_syscall_64+0xfa/0x790 [ 1423.355026][ T6607] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1423.360904][ T6607] RIP: 0033:0x45a679 [ 1423.364787][ T6607] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 11:57:15 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x3c0600) [ 1423.384370][ T6607] RSP: 002b:00007f273de95c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1423.392758][ T6607] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1423.400715][ T6607] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1423.408678][ T6607] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000d50800 [ 1423.416648][ T6607] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f273de966d4 [ 1423.424664][ T6607] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1423.441300][ T6607] memory: usage 307188kB, limit 307200kB, failcnt 415 [ 1423.448080][ T6607] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1423.455219][ T6607] Memory cgroup stats for /syz1: [ 1423.455357][ T6607] anon 73728 [ 1423.455357][ T6607] file 94208 [ 1423.455357][ T6607] kernel_stack 36864 [ 1423.455357][ T6607] slab 4853760 [ 1423.455357][ T6607] sock 309174272 [ 1423.455357][ T6607] shmem 0 [ 1423.455357][ T6607] file_mapped 0 [ 1423.455357][ T6607] file_dirty 0 [ 1423.455357][ T6607] file_writeback 0 [ 1423.455357][ T6607] anon_thp 0 [ 1423.455357][ T6607] inactive_anon 135168 [ 1423.455357][ T6607] active_anon 73728 [ 1423.455357][ T6607] inactive_file 0 [ 1423.455357][ T6607] active_file 135168 [ 1423.455357][ T6607] unevictable 0 [ 1423.455357][ T6607] slab_reclaimable 1757184 [ 1423.455357][ T6607] slab_unreclaimable 3096576 [ 1423.455357][ T6607] pgfault 171270 [ 1423.455357][ T6607] pgmajfault 0 [ 1423.455357][ T6607] workingset_refault 0 [ 1423.455357][ T6607] workingset_activate 0 [ 1423.455357][ T6607] workingset_nodereclaim 0 [ 1423.455357][ T6607] pgrefill 406 11:57:15 executing program 4: [ 1423.455357][ T6607] pgscan 445 [ 1423.455357][ T6607] pgsteal 0 [ 1423.455357][ T6607] pgactivate 363 [ 1423.460375][ T6607] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=6605,uid=0 [ 1423.460491][ T6607] Memory cgroup out of memory: Killed process 6605 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:143360kB oom_score_adj:1000 11:57:16 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xdf0900) [ 1423.628772][ T1100] oom_reaper: reaped process 6605 (syz-executor.1), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB [ 1423.736391][ T6613] EXT4-fs (loop2): VFS: Can't find ext4 filesystem 11:57:16 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x4801, 0x0) 11:57:16 executing program 4: [ 1423.781288][ T6714] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1423.801336][ T6714] CPU: 1 PID: 6714 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1423.810828][ T6714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1423.820883][ T6714] Call Trace: [ 1423.824179][ T6714] dump_stack+0x197/0x210 [ 1423.828507][ T6714] dump_header+0x177/0x1152 [ 1423.833019][ T6714] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1423.838834][ T6714] ? ___ratelimit+0x2c8/0x595 [ 1423.843518][ T6714] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1423.849331][ T6714] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1423.854634][ T6714] ? trace_hardirqs_on+0x67/0x240 [ 1423.859672][ T6714] ? pagefault_out_of_memory+0x11c/0x11c [ 1423.865313][ T6714] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1423.871122][ T6714] ? ___ratelimit+0x60/0x595 [ 1423.875728][ T6714] ? do_raw_spin_unlock+0x178/0x270 11:57:16 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x6e030000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1423.880937][ T6714] oom_kill_process.cold+0x10/0x15 [ 1423.886066][ T6714] out_of_memory+0x334/0x13c0 [ 1423.890746][ T6714] ? find_held_lock+0x35/0x130 [ 1423.895519][ T6714] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1423.901330][ T6714] ? oom_killer_disable+0x280/0x280 [ 1423.906549][ T6714] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1423.912103][ T6714] ? memcg_oom_wake_function+0x700/0x700 [ 1423.917751][ T6714] ? do_raw_spin_unlock+0x178/0x270 [ 1423.922953][ T6714] ? _raw_spin_unlock+0x28/0x40 [ 1423.927815][ T6714] try_charge+0xf76/0x14d0 11:57:16 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x460700) [ 1423.932250][ T6714] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1423.937814][ T6714] ? mark_held_locks+0xa4/0xf0 [ 1423.942584][ T6714] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1423.948210][ T6714] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1423.954016][ T6714] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1423.959660][ T6714] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1423.964935][ T6714] ? trace_hardirqs_on+0x67/0x240 [ 1423.969953][ T6714] mem_cgroup_charge_skmem+0x15e/0x300 [ 1423.975400][ T6714] ? mem_cgroup_sk_free+0x90/0x90 [ 1423.980410][ T6714] ? __kasan_check_write+0x14/0x20 [ 1423.985516][ T6714] ? __alloc_skb+0x3d0/0x5e0 [ 1423.990101][ T6714] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1423.996333][ T6714] __sk_mem_raise_allocated+0x56e/0x1410 [ 1424.001949][ T6714] __sk_mem_schedule+0x6d/0xe0 [ 1424.006719][ T6714] tcp_sendmsg_locked+0x1733/0x33a0 [ 1424.011928][ T6714] ? tcp_sendpage+0x60/0x60 [ 1424.016421][ T6714] ? trace_hardirqs_on+0x67/0x240 [ 1424.021424][ T6714] ? lock_sock_nested+0x9a/0x120 [ 1424.026379][ T6714] ? __local_bh_enable_ip+0x15a/0x270 [ 1424.031747][ T6714] tcp_sendmsg+0x30/0x50 [ 1424.035980][ T6714] inet_sendmsg+0x9e/0xe0 [ 1424.040311][ T6714] ? inet_send_prepare+0x4e0/0x4e0 [ 1424.045456][ T6714] sock_sendmsg+0xd7/0x130 [ 1424.049871][ T6714] __sys_sendto+0x262/0x380 [ 1424.054364][ T6714] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1424.059745][ T6714] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1424.065974][ T6714] ? put_timespec64+0xda/0x140 [ 1424.070724][ T6714] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1424.076437][ T6714] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1424.081873][ T6714] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1424.087311][ T6714] ? do_syscall_64+0x26/0x790 [ 1424.091979][ T6714] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1424.098037][ T6714] __x64_sys_sendto+0xe1/0x1a0 [ 1424.102791][ T6714] do_syscall_64+0xfa/0x790 [ 1424.107274][ T6714] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1424.113143][ T6714] RIP: 0033:0x45a679 [ 1424.117021][ T6714] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1424.136627][ T6714] RSP: 002b:00007f273de95c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1424.145032][ T6714] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1424.152981][ T6714] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1424.160937][ T6714] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000df0900 [ 1424.168909][ T6714] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f273de966d4 [ 1424.176872][ T6714] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1424.198043][ T6714] memory: usage 307172kB, limit 307200kB, failcnt 426 [ 1424.204871][ T6714] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1424.204878][ T6714] Memory cgroup stats for /syz1: [ 1424.206423][ T6714] anon 73728 [ 1424.206423][ T6714] file 94208 [ 1424.206423][ T6714] kernel_stack 36864 [ 1424.206423][ T6714] slab 4853760 [ 1424.206423][ T6714] sock 309174272 [ 1424.206423][ T6714] shmem 0 [ 1424.206423][ T6714] file_mapped 0 [ 1424.206423][ T6714] file_dirty 0 [ 1424.206423][ T6714] file_writeback 0 [ 1424.206423][ T6714] anon_thp 0 [ 1424.206423][ T6714] inactive_anon 135168 [ 1424.206423][ T6714] active_anon 73728 [ 1424.206423][ T6714] inactive_file 0 [ 1424.206423][ T6714] active_file 135168 [ 1424.206423][ T6714] unevictable 0 [ 1424.206423][ T6714] slab_reclaimable 1757184 [ 1424.206423][ T6714] slab_unreclaimable 3096576 [ 1424.206423][ T6714] pgfault 171336 [ 1424.206423][ T6714] pgmajfault 0 [ 1424.206423][ T6714] workingset_refault 0 [ 1424.206423][ T6714] workingset_activate 0 [ 1424.206423][ T6714] workingset_nodereclaim 0 [ 1424.206423][ T6714] pgrefill 406 [ 1424.206423][ T6714] pgscan 445 [ 1424.206423][ T6714] pgsteal 0 [ 1424.206423][ T6714] pgactivate 363 [ 1424.308444][ T6714] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=6701,uid=0 11:57:16 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{0x0, 0x0, 0x400}], 0x4801, 0x0) 11:57:16 executing program 4: [ 1424.361906][ T6714] Memory cgroup out of memory: Killed process 6701 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:143360kB oom_score_adj:1000 [ 1424.414949][ T1100] oom_reaper: reaped process 6701 (syz-executor.1), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB 11:57:16 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xe90a00) 11:57:16 executing program 4: 11:57:16 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x500800) [ 1424.557355][ T6734] gfs2: not a GFS2 filesystem [ 1424.608139][ T6742] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:17 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0), 0x0, 0x400}], 0x4801, 0x0) 11:57:17 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x4801, 0x0) 11:57:17 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x74000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1424.879504][ T6806] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 11:57:17 executing program 4: [ 1424.925645][ T6806] CPU: 1 PID: 6806 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1424.935150][ T6806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1424.945224][ T6806] Call Trace: [ 1424.948551][ T6806] dump_stack+0x197/0x210 [ 1424.952904][ T6806] dump_header+0x177/0x1152 [ 1424.957428][ T6806] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1424.963241][ T6806] ? ___ratelimit+0x2c8/0x595 [ 1424.968014][ T6806] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1424.973831][ T6806] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1424.979127][ T6806] ? trace_hardirqs_on+0x67/0x240 [ 1424.984159][ T6806] ? pagefault_out_of_memory+0x11c/0x11c [ 1424.989802][ T6806] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1424.995616][ T6806] ? ___ratelimit+0x60/0x595 [ 1425.000219][ T6806] ? do_raw_spin_unlock+0x178/0x270 [ 1425.005422][ T6806] oom_kill_process.cold+0x10/0x15 [ 1425.010537][ T6806] out_of_memory+0x334/0x13c0 [ 1425.015211][ T6806] ? find_held_lock+0x35/0x130 [ 1425.019977][ T6806] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1425.025786][ T6806] ? oom_killer_disable+0x280/0x280 [ 1425.030974][ T6806] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1425.036502][ T6806] ? memcg_oom_wake_function+0x700/0x700 [ 1425.042135][ T6806] ? do_raw_spin_unlock+0x178/0x270 [ 1425.047328][ T6806] ? _raw_spin_unlock+0x28/0x40 [ 1425.052163][ T6806] try_charge+0xf76/0x14d0 [ 1425.056593][ T6806] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1425.062131][ T6806] ? mark_held_locks+0xa4/0xf0 [ 1425.066889][ T6806] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1425.072503][ T6806] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1425.078289][ T6806] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1425.083912][ T6806] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1425.089211][ T6806] ? trace_hardirqs_on+0x67/0x240 [ 1425.094332][ T6806] mem_cgroup_charge_skmem+0x15e/0x300 [ 1425.099782][ T6806] ? mem_cgroup_sk_free+0x90/0x90 [ 1425.104806][ T6806] ? __kasan_check_write+0x14/0x20 [ 1425.109909][ T6806] ? __alloc_skb+0x3d0/0x5e0 [ 1425.114484][ T6806] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1425.120834][ T6806] __sk_mem_raise_allocated+0x56e/0x1410 [ 1425.126461][ T6806] __sk_mem_schedule+0x6d/0xe0 [ 1425.131208][ T6806] tcp_sendmsg_locked+0x1733/0x33a0 [ 1425.136395][ T6806] ? tcp_sendpage+0x60/0x60 [ 1425.140896][ T6806] ? trace_hardirqs_on+0x67/0x240 [ 1425.145912][ T6806] ? lock_sock_nested+0x9a/0x120 [ 1425.150847][ T6806] ? __local_bh_enable_ip+0x15a/0x270 [ 1425.156213][ T6806] tcp_sendmsg+0x30/0x50 [ 1425.160466][ T6806] inet_sendmsg+0x9e/0xe0 [ 1425.164792][ T6806] ? inet_send_prepare+0x4e0/0x4e0 [ 1425.169894][ T6806] sock_sendmsg+0xd7/0x130 [ 1425.174288][ T6806] __sys_sendto+0x262/0x380 [ 1425.178787][ T6806] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1425.184190][ T6806] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1425.190419][ T6806] ? put_timespec64+0xda/0x140 [ 1425.195161][ T6806] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1425.200885][ T6806] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1425.206334][ T6806] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1425.211771][ T6806] ? do_syscall_64+0x26/0x790 [ 1425.216426][ T6806] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1425.222483][ T6806] __x64_sys_sendto+0xe1/0x1a0 [ 1425.227244][ T6806] do_syscall_64+0xfa/0x790 [ 1425.231730][ T6806] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1425.237597][ T6806] RIP: 0033:0x45a679 [ 1425.241486][ T6806] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1425.261085][ T6806] RSP: 002b:00007f273de95c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1425.269490][ T6806] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 11:57:17 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x5a0900) [ 1425.277438][ T6806] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1425.285394][ T6806] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000e90a00 [ 1425.293400][ T6806] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f273de966d4 [ 1425.301356][ T6806] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1425.312708][ T6806] memory: usage 307192kB, limit 307200kB, failcnt 440 [ 1425.319600][ T6806] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1425.326528][ T6806] Memory cgroup stats for /syz1: [ 1425.326670][ T6806] anon 0 [ 1425.326670][ T6806] file 94208 [ 1425.326670][ T6806] kernel_stack 36864 [ 1425.326670][ T6806] slab 4853760 [ 1425.326670][ T6806] sock 309174272 [ 1425.326670][ T6806] shmem 0 [ 1425.326670][ T6806] file_mapped 0 [ 1425.326670][ T6806] file_dirty 0 [ 1425.326670][ T6806] file_writeback 0 [ 1425.326670][ T6806] anon_thp 0 [ 1425.326670][ T6806] inactive_anon 135168 [ 1425.326670][ T6806] active_anon 0 [ 1425.326670][ T6806] inactive_file 0 [ 1425.326670][ T6806] active_file 135168 [ 1425.326670][ T6806] unevictable 0 [ 1425.326670][ T6806] slab_reclaimable 1757184 [ 1425.326670][ T6806] slab_unreclaimable 3096576 [ 1425.326670][ T6806] pgfault 171435 [ 1425.326670][ T6806] pgmajfault 0 [ 1425.326670][ T6806] workingset_refault 0 [ 1425.326670][ T6806] workingset_activate 0 [ 1425.326670][ T6806] workingset_nodereclaim 0 [ 1425.326670][ T6806] pgrefill 439 [ 1425.326670][ T6806] pgscan 445 [ 1425.326670][ T6806] pgsteal 0 [ 1425.326670][ T6806] pgactivate 363 [ 1425.421967][ T6806] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=6791,uid=0 [ 1425.422093][ T6806] Memory cgroup out of memory: Killed process 6791 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:143360kB oom_score_adj:1000 [ 1425.423117][ T1100] oom_reaper: reaped process 6791 (syz-executor.1), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB [ 1425.455404][ C0] net_ratelimit: 19 callbacks suppressed [ 1425.455412][ C0] protocol 88fb is buggy, dev hsr_slave_0 11:57:17 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xf30b00) [ 1425.455469][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1425.455580][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1425.455630][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1425.540366][ T6872] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1425.551725][ T6872] CPU: 0 PID: 6872 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1425.561200][ T6872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1425.571258][ T6872] Call Trace: [ 1425.574556][ T6872] dump_stack+0x197/0x210 [ 1425.574578][ T6872] dump_header+0x177/0x1152 [ 1425.574600][ T6872] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1425.589196][ T6872] ? ___ratelimit+0x2c8/0x595 [ 1425.593871][ T6872] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1425.593890][ T6872] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1425.593912][ T6872] ? trace_hardirqs_on+0x67/0x240 [ 1425.609977][ T6872] ? pagefault_out_of_memory+0x11c/0x11c [ 1425.615647][ T6872] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1425.621457][ T6872] ? ___ratelimit+0x60/0x595 [ 1425.626053][ T6872] ? do_raw_spin_unlock+0x178/0x270 [ 1425.626074][ T6872] oom_kill_process.cold+0x10/0x15 [ 1425.626092][ T6872] out_of_memory+0x334/0x13c0 [ 1425.636365][ T6872] ? find_held_lock+0x35/0x130 [ 1425.636388][ T6872] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1425.636405][ T6872] ? oom_killer_disable+0x280/0x280 [ 1425.636428][ T6872] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1425.662340][ T6872] ? memcg_oom_wake_function+0x700/0x700 [ 1425.666699][ T6873] gfs2: not a GFS2 filesystem [ 1425.668001][ T6872] ? do_raw_spin_unlock+0x178/0x270 [ 1425.668021][ T6872] ? _raw_spin_unlock+0x28/0x40 [ 1425.668042][ T6872] try_charge+0xf76/0x14d0 11:57:18 executing program 4: [ 1425.668067][ T6872] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1425.692674][ T6872] ? mark_held_locks+0xa4/0xf0 [ 1425.697448][ T6872] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1425.703119][ T6872] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1425.708931][ T6872] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1425.714555][ T6872] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1425.719823][ T6872] ? trace_hardirqs_on+0x67/0x240 [ 1425.724832][ T6872] mem_cgroup_charge_skmem+0x15e/0x300 [ 1425.730269][ T6872] ? mem_cgroup_sk_free+0x90/0x90 [ 1425.735281][ T6872] ? __kasan_check_write+0x14/0x20 [ 1425.740381][ T6872] ? __alloc_skb+0x3d0/0x5e0 [ 1425.744960][ T6872] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1425.751189][ T6872] __sk_mem_raise_allocated+0x56e/0x1410 [ 1425.756812][ T6872] __sk_mem_schedule+0x6d/0xe0 [ 1425.761560][ T6872] tcp_sendmsg_locked+0x1733/0x33a0 [ 1425.766746][ T6872] ? tcp_sendpage+0x60/0x60 [ 1425.771248][ T6872] ? trace_hardirqs_on+0x67/0x240 [ 1425.776249][ T6872] ? lock_sock_nested+0x9a/0x120 [ 1425.781196][ T6872] ? __local_bh_enable_ip+0x15a/0x270 [ 1425.786555][ T6872] tcp_sendmsg+0x30/0x50 [ 1425.790816][ T6872] inet_sendmsg+0x9e/0xe0 [ 1425.795154][ T6872] ? inet_send_prepare+0x4e0/0x4e0 [ 1425.800247][ T6872] sock_sendmsg+0xd7/0x130 [ 1425.804645][ T6872] __sys_sendto+0x262/0x380 [ 1425.809163][ T6872] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1425.814543][ T6872] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1425.820763][ T6872] ? put_timespec64+0xda/0x140 [ 1425.825504][ T6872] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1425.831213][ T6872] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1425.836663][ T6872] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1425.842109][ T6872] ? do_syscall_64+0x26/0x790 [ 1425.846768][ T6872] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1425.852824][ T6872] __x64_sys_sendto+0xe1/0x1a0 [ 1425.857571][ T6872] do_syscall_64+0xfa/0x790 [ 1425.862179][ T6872] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1425.868101][ T6872] RIP: 0033:0x45a679 [ 1425.872954][ T6872] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1425.892625][ T6872] RSP: 002b:00007f273de95c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1425.901039][ T6872] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1425.909001][ T6872] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1425.916951][ T6872] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000f30b00 [ 1425.924899][ T6872] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f273de966d4 [ 1425.932849][ T6872] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1425.949426][ T6872] memory: usage 307168kB, limit 307200kB, failcnt 455 [ 1425.956221][ T6872] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1425.963169][ T6872] Memory cgroup stats for /syz1: [ 1425.963274][ T6872] anon 73728 [ 1425.963274][ T6872] file 94208 [ 1425.963274][ T6872] kernel_stack 36864 [ 1425.963274][ T6872] slab 4853760 [ 1425.963274][ T6872] sock 309317632 [ 1425.963274][ T6872] shmem 0 [ 1425.963274][ T6872] file_mapped 0 [ 1425.963274][ T6872] file_dirty 0 [ 1425.963274][ T6872] file_writeback 0 [ 1425.963274][ T6872] anon_thp 0 [ 1425.963274][ T6872] inactive_anon 135168 [ 1425.963274][ T6872] active_anon 73728 [ 1425.963274][ T6872] inactive_file 0 [ 1425.963274][ T6872] active_file 135168 [ 1425.963274][ T6872] unevictable 0 [ 1425.963274][ T6872] slab_reclaimable 1757184 [ 1425.963274][ T6872] slab_unreclaimable 3096576 [ 1425.963274][ T6872] pgfault 171501 [ 1425.963274][ T6872] pgmajfault 0 [ 1425.963274][ T6872] workingset_refault 0 [ 1425.963274][ T6872] workingset_activate 0 [ 1425.963274][ T6872] workingset_nodereclaim 0 [ 1425.963274][ T6872] pgrefill 439 [ 1425.963274][ T6872] pgscan 445 [ 1425.963274][ T6872] pgsteal 0 [ 1425.963274][ T6872] pgactivate 396 [ 1426.059400][ T6872] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=6871,uid=0 [ 1426.074913][ T6872] Memory cgroup out of memory: Killed process 6871 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:143360kB oom_score_adj:1000 [ 1426.094486][ T1100] oom_reaper: reaped process 6871 (syz-executor.1), now anon-rss:0kB, file-rss:34836kB, shmem-rss:0kB 11:57:18 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0), 0x0, 0x400}], 0x4801, 0x0) 11:57:18 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000100), 0x4801, 0x0) 11:57:18 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xfd0c00) 11:57:18 executing program 4: 11:57:18 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x7a000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1426.328865][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1426.334789][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1426.340727][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1426.346698][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1426.352605][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1426.372033][ T6980] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 11:57:18 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x640a00) [ 1426.441060][ T6980] CPU: 1 PID: 6980 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1426.450569][ T6980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1426.460632][ T6980] Call Trace: [ 1426.463940][ T6980] dump_stack+0x197/0x210 [ 1426.468291][ T6980] dump_header+0x177/0x1152 [ 1426.472816][ T6980] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1426.478631][ T6980] ? ___ratelimit+0x2c8/0x595 [ 1426.483319][ T6980] ? _raw_spin_unlock_irqrestore+0x66/0xe0 11:57:18 executing program 4: [ 1426.489167][ T6980] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1426.494484][ T6980] ? trace_hardirqs_on+0x67/0x240 [ 1426.499521][ T6980] ? pagefault_out_of_memory+0x11c/0x11c [ 1426.505162][ T6980] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1426.510974][ T6980] ? ___ratelimit+0x60/0x595 [ 1426.515575][ T6980] ? do_raw_spin_unlock+0x178/0x270 [ 1426.520784][ T6980] oom_kill_process.cold+0x10/0x15 [ 1426.525907][ T6980] out_of_memory+0x334/0x13c0 [ 1426.530591][ T6980] ? find_held_lock+0x35/0x130 [ 1426.535370][ T6980] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1426.541175][ T6980] ? oom_killer_disable+0x280/0x280 [ 1426.546364][ T6980] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1426.551899][ T6980] ? memcg_oom_wake_function+0x700/0x700 [ 1426.557527][ T6980] ? do_raw_spin_unlock+0x178/0x270 [ 1426.562706][ T6980] ? _raw_spin_unlock+0x28/0x40 [ 1426.567544][ T6980] try_charge+0xf76/0x14d0 [ 1426.571971][ T6980] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1426.577520][ T6980] ? mark_held_locks+0xa4/0xf0 [ 1426.582265][ T6980] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1426.587876][ T6980] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1426.593664][ T6980] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1426.599289][ T6980] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1426.604571][ T6980] ? trace_hardirqs_on+0x67/0x240 [ 1426.609586][ T6980] mem_cgroup_charge_skmem+0x15e/0x300 [ 1426.615036][ T6980] ? mem_cgroup_sk_free+0x90/0x90 [ 1426.620052][ T6980] ? __kasan_check_write+0x14/0x20 [ 1426.625245][ T6980] ? __alloc_skb+0x3d0/0x5e0 [ 1426.629844][ T6980] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1426.636114][ T6980] __sk_mem_raise_allocated+0x56e/0x1410 [ 1426.641734][ T6980] __sk_mem_schedule+0x6d/0xe0 [ 1426.646483][ T6980] tcp_sendmsg_locked+0x1733/0x33a0 [ 1426.651698][ T6980] ? tcp_sendpage+0x60/0x60 [ 1426.656198][ T6980] ? trace_hardirqs_on+0x67/0x240 [ 1426.661202][ T6980] ? lock_sock_nested+0x9a/0x120 [ 1426.666121][ T6980] ? __local_bh_enable_ip+0x15a/0x270 [ 1426.671489][ T6980] tcp_sendmsg+0x30/0x50 [ 1426.675725][ T6980] inet_sendmsg+0x9e/0xe0 [ 1426.680048][ T6980] ? inet_send_prepare+0x4e0/0x4e0 [ 1426.685159][ T6980] sock_sendmsg+0xd7/0x130 [ 1426.689564][ T6980] __sys_sendto+0x262/0x380 [ 1426.694058][ T6980] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1426.699439][ T6980] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1426.705681][ T6980] ? put_timespec64+0xda/0x140 [ 1426.710458][ T6980] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1426.716174][ T6980] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1426.721609][ T6980] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1426.727044][ T6980] ? do_syscall_64+0x26/0x790 [ 1426.731710][ T6980] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1426.737767][ T6980] __x64_sys_sendto+0xe1/0x1a0 [ 1426.742512][ T6980] do_syscall_64+0xfa/0x790 [ 1426.747009][ T6980] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1426.752886][ T6980] RIP: 0033:0x45a679 [ 1426.756760][ T6980] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1426.776352][ T6980] RSP: 002b:00007f273de95c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1426.784751][ T6980] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1426.792715][ T6980] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1426.800668][ T6980] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000fd0c00 [ 1426.808696][ T6980] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f273de966d4 [ 1426.816667][ T6980] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1426.827823][ T6980] memory: usage 307180kB, limit 307200kB, failcnt 500 [ 1426.834720][ T6980] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1426.841966][ T6980] Memory cgroup stats for /syz1: [ 1426.842073][ T6980] anon 208896 [ 1426.842073][ T6980] file 94208 [ 1426.842073][ T6980] kernel_stack 36864 [ 1426.842073][ T6980] slab 4714496 [ 1426.842073][ T6980] sock 309317632 [ 1426.842073][ T6980] shmem 0 [ 1426.842073][ T6980] file_mapped 0 [ 1426.842073][ T6980] file_dirty 0 [ 1426.842073][ T6980] file_writeback 0 [ 1426.842073][ T6980] anon_thp 0 [ 1426.842073][ T6980] inactive_anon 135168 [ 1426.842073][ T6980] active_anon 208896 [ 1426.842073][ T6980] inactive_file 0 [ 1426.842073][ T6980] active_file 135168 [ 1426.842073][ T6980] unevictable 0 [ 1426.842073][ T6980] slab_reclaimable 1757184 [ 1426.842073][ T6980] slab_unreclaimable 2957312 [ 1426.842073][ T6980] pgfault 171600 [ 1426.842073][ T6980] pgmajfault 0 [ 1426.842073][ T6980] workingset_refault 0 [ 1426.842073][ T6980] workingset_activate 0 [ 1426.842073][ T6980] workingset_nodereclaim 0 [ 1426.842073][ T6980] pgrefill 439 [ 1426.842073][ T6980] pgscan 445 [ 1426.842073][ T6980] pgsteal 0 [ 1426.842073][ T6980] pgactivate 396 [ 1426.847103][ T6980] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=6916,uid=0 [ 1426.938114][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1426.961593][ T6980] Memory cgroup out of memory: Killed process 6916 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:143360kB oom_score_adj:1000 11:57:19 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttynull\x00', 0x88800, 0x0) ioctl$TIOCSSERIAL(r1, 0x541f, &(0x7f00000000c0)={0x1, 0x2, 0x0, 0x8, 0x7, 0x8001, 0x46d, 0x7d, 0x7, 0x80, 0x9c, 0x3, 0x6, 0xf9cd, &(0x7f0000000040)=""/73, 0x7, 0x8, 0x3}) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = eventfd2(0x2, 0x100001) ioctl$FS_IOC_GETVERSION(r2, 0x80087601, &(0x7f0000000140)) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1426.988767][ T6995] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 1426.993373][ T1100] oom_reaper: reaped process 6916 (syz-executor.1), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB 11:57:19 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x6e0b00) 11:57:19 executing program 4: 11:57:19 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0), 0x0, 0x400}], 0x4801, 0x0) [ 1427.193647][ T7001] gfs2: not a GFS2 filesystem 11:57:19 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{0x0, 0x0, 0x400}], 0x4801, 0x0) [ 1427.256364][ T7015] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1427.298646][ T7015] CPU: 1 PID: 7015 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1427.308154][ T7015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1427.318332][ T7015] Call Trace: [ 1427.321639][ T7015] dump_stack+0x197/0x210 [ 1427.325983][ T7015] dump_header+0x177/0x1152 [ 1427.330499][ T7015] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1427.336329][ T7015] ? ___ratelimit+0x2c8/0x595 [ 1427.341033][ T7015] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1427.346849][ T7015] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1427.352147][ T7015] ? trace_hardirqs_on+0x67/0x240 [ 1427.357185][ T7015] ? pagefault_out_of_memory+0x11c/0x11c [ 1427.362829][ T7015] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1427.368644][ T7015] ? ___ratelimit+0x60/0x595 [ 1427.373240][ T7015] ? do_raw_spin_unlock+0x178/0x270 [ 1427.378449][ T7015] oom_kill_process.cold+0x10/0x15 [ 1427.383569][ T7015] out_of_memory+0x334/0x13c0 [ 1427.389642][ T7015] ? find_held_lock+0x35/0x130 11:57:19 executing program 4: 11:57:19 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x7c000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1427.394416][ T7015] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1427.400226][ T7015] ? oom_killer_disable+0x280/0x280 [ 1427.405441][ T7015] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1427.410995][ T7015] ? memcg_oom_wake_function+0x700/0x700 [ 1427.416648][ T7015] ? do_raw_spin_unlock+0x178/0x270 [ 1427.421853][ T7015] ? _raw_spin_unlock+0x28/0x40 [ 1427.426712][ T7015] try_charge+0xf76/0x14d0 [ 1427.431147][ T7015] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1427.436703][ T7015] ? mark_held_locks+0xa4/0xf0 [ 1427.441470][ T7015] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1427.447098][ T7015] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1427.452896][ T7015] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1427.458539][ T7015] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1427.463835][ T7015] ? trace_hardirqs_on+0x67/0x240 [ 1427.469543][ T7015] mem_cgroup_charge_skmem+0x15e/0x300 [ 1427.475007][ T7015] ? mem_cgroup_sk_free+0x90/0x90 [ 1427.480036][ T7015] ? __kasan_check_write+0x14/0x20 [ 1427.485148][ T7015] ? __alloc_skb+0x3d0/0x5e0 [ 1427.485167][ T7015] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 11:57:19 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x780c00) [ 1427.485186][ T7015] __sk_mem_raise_allocated+0x56e/0x1410 [ 1427.485208][ T7015] __sk_mem_schedule+0x6d/0xe0 [ 1427.496043][ T7015] tcp_sendmsg_locked+0x1733/0x33a0 [ 1427.496080][ T7015] ? tcp_sendpage+0x60/0x60 [ 1427.496101][ T7015] ? trace_hardirqs_on+0x67/0x240 [ 1427.521136][ T7015] ? lock_sock_nested+0x9a/0x120 [ 1427.521155][ T7015] ? __local_bh_enable_ip+0x15a/0x270 [ 1427.521179][ T7015] tcp_sendmsg+0x30/0x50 [ 1427.521197][ T7015] inet_sendmsg+0x9e/0xe0 [ 1427.521212][ T7015] ? inet_send_prepare+0x4e0/0x4e0 [ 1427.521227][ T7015] sock_sendmsg+0xd7/0x130 [ 1427.521243][ T7015] __sys_sendto+0x262/0x380 [ 1427.521267][ T7015] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1427.531568][ T7015] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1427.531585][ T7015] ? put_timespec64+0xda/0x140 [ 1427.531600][ T7015] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1427.531628][ T7015] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1427.531642][ T7015] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1427.531656][ T7015] ? do_syscall_64+0x26/0x790 [ 1427.531672][ T7015] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1427.531690][ T7015] __x64_sys_sendto+0xe1/0x1a0 [ 1427.531709][ T7015] do_syscall_64+0xfa/0x790 [ 1427.531727][ T7015] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1427.531738][ T7015] RIP: 0033:0x45a679 [ 1427.531754][ T7015] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1427.531762][ T7015] RSP: 002b:00007f273de95c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1427.531774][ T7015] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1427.531783][ T7015] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1427.531791][ T7015] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1427.531800][ T7015] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f273de966d4 [ 1427.531807][ T7015] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1427.551841][ T7015] memory: usage 307168kB, limit 307200kB, failcnt 513 [ 1427.655270][ T7015] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1427.702304][ T7015] Memory cgroup stats for /syz1: [ 1427.702421][ T7015] anon 69632 [ 1427.702421][ T7015] file 94208 [ 1427.702421][ T7015] kernel_stack 36864 [ 1427.702421][ T7015] slab 4714496 [ 1427.702421][ T7015] sock 309317632 [ 1427.702421][ T7015] shmem 0 [ 1427.702421][ T7015] file_mapped 0 [ 1427.702421][ T7015] file_dirty 0 [ 1427.702421][ T7015] file_writeback 0 [ 1427.702421][ T7015] anon_thp 0 [ 1427.702421][ T7015] inactive_anon 135168 [ 1427.702421][ T7015] active_anon 73728 [ 1427.702421][ T7015] inactive_file 0 [ 1427.702421][ T7015] active_file 135168 [ 1427.702421][ T7015] unevictable 0 [ 1427.702421][ T7015] slab_reclaimable 1757184 [ 1427.702421][ T7015] slab_unreclaimable 2957312 [ 1427.702421][ T7015] pgfault 171699 [ 1427.702421][ T7015] pgmajfault 0 [ 1427.702421][ T7015] workingset_refault 0 [ 1427.702421][ T7015] workingset_activate 0 [ 1427.702421][ T7015] workingset_nodereclaim 0 [ 1427.702421][ T7015] pgrefill 439 [ 1427.702421][ T7015] pgscan 445 [ 1427.702421][ T7015] pgsteal 0 [ 1427.702421][ T7015] pgactivate 396 11:57:20 executing program 4: [ 1427.813588][ T7015] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=7013,uid=0 [ 1427.837700][ T7015] Memory cgroup out of memory: Killed process 7013 (syz-executor.1) total-vm:72580kB, anon-rss:104kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:143360kB oom_score_adj:1000 [ 1427.870219][ T1100] oom_reaper: reaped process 7013 (syz-executor.1), now anon-rss:0kB, file-rss:34836kB, shmem-rss:0kB 11:57:20 executing program 4: 11:57:20 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x1, 0x0) getsockopt$EBT_SO_GET_INFO(r0, 0x0, 0x80, &(0x7f0000000100)={'broute\x00'}, &(0x7f00000001c0)=0x78) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r2, 0x5386, &(0x7f0000000080)) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IP_VS_SO_SET_EDITDEST(r4, 0x0, 0x489, &(0x7f0000000000)={{0x67, @multicast2, 0x4e21, 0x4, 'ovf\x00', 0xa, 0x2, 0x62}, {@multicast2, 0x4e22, 0x2000, 0x20, 0x8, 0x80000001}}, 0x44) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r3, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1427.969077][ T7136] gfs2: not a GFS2 filesystem 11:57:20 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{0x0, 0x0, 0x400}], 0x4801, 0x0) 11:57:20 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001", 0x1d, 0x400}], 0x4801, 0x0) 11:57:20 executing program 4: 11:57:20 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x820d00) [ 1428.159297][ T3485] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 1428.239064][ T3485] CPU: 0 PID: 3485 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1428.248575][ T3485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1428.258636][ T3485] Call Trace: [ 1428.261934][ T3485] dump_stack+0x197/0x210 [ 1428.266278][ T3485] dump_header+0x177/0x1152 [ 1428.270793][ T3485] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1428.276600][ T3485] ? ___ratelimit+0x2c8/0x595 [ 1428.281281][ T3485] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1428.287097][ T3485] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1428.292389][ T3485] ? trace_hardirqs_on+0x67/0x240 [ 1428.297422][ T3485] ? pagefault_out_of_memory+0x11c/0x11c [ 1428.303061][ T3485] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1428.308871][ T3485] ? ___ratelimit+0x60/0x595 [ 1428.313466][ T3485] ? do_raw_spin_unlock+0x178/0x270 [ 1428.318677][ T3485] oom_kill_process.cold+0x10/0x15 [ 1428.323797][ T3485] out_of_memory+0x334/0x13c0 [ 1428.328475][ T3485] ? find_held_lock+0x35/0x130 [ 1428.333258][ T3485] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1428.339072][ T3485] ? oom_killer_disable+0x280/0x280 [ 1428.344302][ T3485] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1428.349865][ T3485] ? memcg_oom_wake_function+0x700/0x700 [ 1428.355516][ T3485] ? do_raw_spin_unlock+0x178/0x270 [ 1428.360727][ T3485] ? _raw_spin_unlock+0x28/0x40 [ 1428.365597][ T3485] try_charge+0xf76/0x14d0 [ 1428.370031][ T3485] ? find_held_lock+0x35/0x130 [ 1428.374818][ T3485] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1428.380377][ T3485] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1428.385942][ T3485] ? find_held_lock+0x35/0x130 [ 1428.390718][ T3485] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1428.390745][ T3485] __memcg_kmem_charge_memcg+0x7c/0x130 [ 1428.390760][ T3485] ? memcg_kmem_put_cache+0x1a0/0x1a0 [ 1428.390778][ T3485] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1428.390806][ T3485] __memcg_kmem_charge+0x13a/0x3a0 [ 1428.401881][ T3485] copy_process+0x79d/0x7230 [ 1428.401896][ T3485] ? __kasan_check_read+0x11/0x20 [ 1428.401909][ T3485] ? mark_lock+0xc2/0x1220 [ 1428.401923][ T3485] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1428.401949][ T3485] ? __cleanup_sighand+0xc0/0xc0 [ 1428.401962][ T3485] ? __might_fault+0x12b/0x1e0 [ 1428.401980][ T3485] ? __might_fault+0x12b/0x1e0 [ 1428.417985][ T3485] _do_fork+0x146/0x1090 [ 1428.438198][ T3485] ? copy_init_mm+0x20/0x20 [ 1428.438224][ T3485] ? __kasan_check_read+0x11/0x20 [ 1428.438237][ T3485] ? _copy_to_user+0x118/0x160 [ 1428.438257][ T3485] __x64_sys_clone+0x19a/0x260 [ 1428.475921][ T3485] ? __ia32_sys_vfork+0xd0/0xd0 [ 1428.480805][ T3485] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1428.486145][ T3485] ? trace_hardirqs_on+0x67/0x240 [ 1428.491197][ T3485] do_syscall_64+0xfa/0x790 [ 1428.495758][ T3485] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1428.501664][ T3485] RIP: 0033:0x458c4a [ 1428.505569][ T3485] Code: f7 d8 64 89 04 25 d4 02 00 00 64 4c 8b 0c 25 10 00 00 00 31 d2 4d 8d 91 d0 02 00 00 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 f5 00 00 00 85 c0 41 89 c5 0f 85 fc 00 00 [ 1428.525181][ T3485] RSP: 002b:00007ffcdfc67f90 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 11:57:20 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x7c020000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:20 executing program 4: 11:57:20 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x850000) [ 1428.533601][ T3485] RAX: ffffffffffffffda RBX: 00007ffcdfc67f90 RCX: 0000000000458c4a [ 1428.541583][ T3485] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 1428.549576][ T3485] RBP: 00007ffcdfc67fd0 R08: 0000000000000001 R09: 0000000000fa0940 [ 1428.557560][ T3485] R10: 0000000000fa0c10 R11: 0000000000000246 R12: 0000000000000001 [ 1428.565532][ T3485] R13: 0000000000000000 R14: 0000000000000000 R15: 00007ffcdfc68020 [ 1428.583904][ T3485] memory: usage 307420kB, limit 307200kB, failcnt 582 [ 1428.590830][ T3485] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1428.597674][ T3485] Memory cgroup stats for /syz1: [ 1428.602075][ T3485] anon 69632 [ 1428.602075][ T3485] file 94208 [ 1428.602075][ T3485] kernel_stack 36864 [ 1428.602075][ T3485] slab 4714496 [ 1428.602075][ T3485] sock 310018048 [ 1428.602075][ T3485] shmem 0 [ 1428.602075][ T3485] file_mapped 0 [ 1428.602075][ T3485] file_dirty 0 [ 1428.602075][ T3485] file_writeback 0 [ 1428.602075][ T3485] anon_thp 0 [ 1428.602075][ T3485] inactive_anon 135168 [ 1428.602075][ T3485] active_anon 73728 [ 1428.602075][ T3485] inactive_file 0 [ 1428.602075][ T3485] active_file 135168 [ 1428.602075][ T3485] unevictable 0 [ 1428.602075][ T3485] slab_reclaimable 1757184 [ 1428.602075][ T3485] slab_unreclaimable 2957312 [ 1428.602075][ T3485] pgfault 171864 [ 1428.602075][ T3485] pgmajfault 0 [ 1428.602075][ T3485] workingset_refault 0 [ 1428.602075][ T3485] workingset_activate 0 [ 1428.602075][ T3485] workingset_nodereclaim 0 [ 1428.602075][ T3485] pgrefill 439 [ 1428.602075][ T3485] pgscan 445 [ 1428.602075][ T3485] pgsteal 0 [ 1428.602075][ T3485] pgactivate 396 [ 1428.703884][ T3485] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=3485,uid=0 [ 1428.725539][ T3485] Memory cgroup out of memory: Killed process 3485 (syz-executor.1) total-vm:72448kB, anon-rss:104kB, file-rss:35776kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:0 [ 1428.749780][ T1100] oom_reaper: reaped process 3485 (syz-executor.1), now anon-rss:0kB, file-rss:34880kB, shmem-rss:0kB [ 1428.793364][ T7263] gfs2: not a GFS2 filesystem 11:57:21 executing program 4: 11:57:21 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{0x0, 0x0, 0x400}], 0x4801, 0x0) 11:57:21 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001", 0x1d, 0x400}], 0x4801, 0x0) 11:57:21 executing program 4: [ 1429.246087][ T7387] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:22 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000380)={0xa, 0x2, 0xfc, 0x2}, 0x7) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f00000002c0)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r2, 0xc0182101, &(0x7f0000000340)={r5, 0x5, 0x8}) getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000140)=0x1, &(0x7f00000001c0)=0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r6 = socket$inet(0x2, 0x4000000000000001, 0x0) r7 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x701442, 0x0) ioctl$PPPIOCSNPMODE(r7, 0x4008744b, &(0x7f0000000040)={0xc025}) r8 = syz_open_dev$audion(&(0x7f0000000200)='/dev/audio#\x00', 0x1000, 0x142) ioctl$IMADDTIMER(r8, 0x80044940, &(0x7f0000000240)=0xf4240) r9 = syz_open_dev$vcsa(&(0x7f0000000480)='/dev/vcsa#\x00', 0x8, 0x23000) fchmod(r9, 0x102) ioctl$KVM_DEASSIGN_DEV_IRQ(r9, 0x4040ae75, &(0x7f00000003c0)={0x1, 0x0, 0x0, 0x1}) bind$inet(r6, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r6, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) futex(&(0x7f0000000080)=0x1, 0x89, 0x1, &(0x7f00000000c0)={0x77359400}, &(0x7f0000000100)=0x2, 0x1) setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r6, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:22 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x80020000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:22 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x8c0e00) 11:57:22 executing program 4: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$dsp1(0xffffffffffffff9c, &(0x7f0000000680)='/dev/dsp1\x00', 0x0, 0x0) 11:57:22 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001", 0x1d, 0x400}], 0x4801, 0x0) 11:57:22 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0), 0x0, 0x400}], 0x4801, 0x0) 11:57:22 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='stack\x00') ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000040)={0x0, 'vxcan1\x00', {0x2}, 0x2}) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x15, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f00000000c0)={0xd6, 0x8, 0x5, 0x9, 0x0}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000002c0)={r4, 0x401, 0x1000, "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"}, 0x1008) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:22 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x5aeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x660c, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0) r0 = socket$kcm(0x10, 0x200000000000003, 0x4) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)="4c000000120081ae08060c04f711253f9333848f400100000000000000ca1b4e7d06a6bd7c493872f750375ed08a562ad6e74704008f93b82afb9bbc7a461eb886a5e54e8ff53144612ad5d0", 0x4c}], 0x1}, 0x0) [ 1429.856126][ T7414] gfs2: not a GFS2 filesystem [ 1429.938953][ T7424] EXT4-fs (loop2): VFS: Can't find ext4 filesystem 11:57:22 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0), 0x0, 0x400}], 0x4801, 0x0) 11:57:22 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x8f0100) 11:57:22 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000", 0x2c, 0x400}], 0x4801, 0x0) 11:57:22 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x82000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1430.247884][ T7569] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:22 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000", 0x2c, 0x400}], 0x4801, 0x0) [ 1430.438460][ T7647] gfs2: not a GFS2 filesystem 11:57:22 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0), 0x0, 0x400}], 0x4801, 0x0) 11:57:22 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x5aeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x660c, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0) r0 = socket$kcm(0x10, 0x200000000000003, 0x4) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)="4c000000120081ae08060c04f711253f9333848f400100000000000000ca1b4e7d06a6bd7c493872f750375ed08a562ad6e74704008f93b82afb9bbc7a461eb886a5e54e8ff53144612ad5d0", 0x4c}], 0x1}, 0x0) 11:57:22 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x990200) [ 1430.648787][ C1] net_ratelimit: 16 callbacks suppressed [ 1430.648796][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1430.660368][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1430.666253][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1430.672182][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1430.677966][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:57:23 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x8cffffff, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1430.727704][ T7691] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 1430.734957][ T7721] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:23 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x5aeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x660c, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0) r0 = socket$kcm(0x10, 0x200000000000003, 0x4) sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)="4c000000120081ae08060c04f711253f9333848f400100000000000000ca1b4e7d06a6bd7c493872f750375ed08a562ad6e74704008f93b82afb9bbc7a461eb886a5e54e8ff53144612ad5d0", 0x4c}], 0x1}, 0x0) [ 1430.957601][ T7775] gfs2: not a GFS2 filesystem [ 1431.049096][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1431.054944][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1431.689316][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1431.695170][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1431.701108][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1432.781234][ T7950] IPVS: ftp: loaded support on port[0] = 21 [ 1432.906225][ T7950] chnl_net:caif_netlink_parms(): no params data found [ 1432.962413][ T7950] bridge0: port 1(bridge_slave_0) entered blocking state [ 1432.970463][ T7950] bridge0: port 1(bridge_slave_0) entered disabled state [ 1432.983167][ T7950] device bridge_slave_0 entered promiscuous mode [ 1432.991656][ T7950] bridge0: port 2(bridge_slave_1) entered blocking state [ 1432.998940][ T7950] bridge0: port 2(bridge_slave_1) entered disabled state [ 1433.006773][ T7950] device bridge_slave_1 entered promiscuous mode [ 1433.028548][ T7950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1433.041348][ T7950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1433.063848][ T7950] team0: Port device team_slave_0 added [ 1433.071598][ T7950] team0: Port device team_slave_1 added [ 1433.143402][ T7950] device hsr_slave_0 entered promiscuous mode [ 1433.199265][ T7950] device hsr_slave_1 entered promiscuous mode [ 1433.253727][ T7950] bridge0: port 2(bridge_slave_1) entered blocking state [ 1433.260845][ T7950] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1433.268120][ T7950] bridge0: port 1(bridge_slave_0) entered blocking state [ 1433.275223][ T7950] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1433.327426][ T7950] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1433.343278][ T9026] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1433.353606][ T9026] bridge0: port 1(bridge_slave_0) entered disabled state [ 1433.363930][ T9026] bridge0: port 2(bridge_slave_1) entered disabled state [ 1433.373094][ T9026] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 1433.386803][ T7950] 8021q: adding VLAN 0 to HW filter on device team0 [ 1433.401969][T27114] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1433.410377][T27114] bridge0: port 1(bridge_slave_0) entered blocking state [ 1433.417408][T27114] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1433.432656][ T9026] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1433.441996][ T9026] bridge0: port 2(bridge_slave_1) entered blocking state [ 1433.449112][ T9026] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1433.470618][T27114] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 1433.480477][T27114] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 1433.501385][T27114] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 1433.510513][T27114] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1433.518626][T27114] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1433.534196][ T7950] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1433.556713][ T9026] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1433.564263][ T9026] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1433.578189][ T7950] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1433.697101][ T7965] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1433.707796][ T7965] CPU: 0 PID: 7965 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1433.717354][ T7965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1433.727393][ T7965] Call Trace: [ 1433.730674][ T7965] dump_stack+0x197/0x210 [ 1433.734993][ T7965] dump_header+0x177/0x1152 [ 1433.739476][ T7965] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1433.745261][ T7965] ? ___ratelimit+0x2c8/0x595 [ 1433.749917][ T7965] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1433.755733][ T7965] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1433.761009][ T7965] ? trace_hardirqs_on+0x67/0x240 [ 1433.766049][ T7965] ? pagefault_out_of_memory+0x11c/0x11c [ 1433.771663][ T7965] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1433.777449][ T7965] ? ___ratelimit+0x60/0x595 [ 1433.782017][ T7965] ? do_raw_spin_unlock+0x178/0x270 [ 1433.787197][ T7965] oom_kill_process.cold+0x10/0x15 [ 1433.792307][ T7965] out_of_memory+0x334/0x13c0 [ 1433.796975][ T7965] ? find_held_lock+0x35/0x130 [ 1433.801721][ T7965] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1433.807556][ T7965] ? oom_killer_disable+0x280/0x280 [ 1433.812741][ T7965] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1433.818265][ T7965] ? memcg_oom_wake_function+0x700/0x700 [ 1433.823879][ T7965] ? do_raw_spin_unlock+0x178/0x270 [ 1433.829069][ T7965] ? _raw_spin_unlock+0x28/0x40 [ 1433.833909][ T7965] try_charge+0xf76/0x14d0 [ 1433.838310][ T7965] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1433.843857][ T7965] ? mark_held_locks+0xa4/0xf0 [ 1433.848613][ T7965] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1433.854230][ T7965] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1433.860031][ T7965] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1433.865648][ T7965] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1433.870915][ T7965] ? trace_hardirqs_on+0x67/0x240 [ 1433.875923][ T7965] mem_cgroup_charge_skmem+0x15e/0x300 [ 1433.881368][ T7965] ? mem_cgroup_sk_free+0x90/0x90 [ 1433.886375][ T7965] ? __kasan_check_write+0x14/0x20 [ 1433.891468][ T7965] ? __alloc_skb+0x3d0/0x5e0 [ 1433.896054][ T7965] __sk_mem_raise_allocated+0x56e/0x1410 [ 1433.901692][ T7965] __sk_mem_schedule+0x6d/0xe0 [ 1433.906445][ T7965] tcp_sendmsg_locked+0x1733/0x33a0 [ 1433.911634][ T7965] ? tcp_sendpage+0x60/0x60 [ 1433.916120][ T7965] ? trace_hardirqs_on+0x67/0x240 [ 1433.921133][ T7965] ? lock_sock_nested+0x9a/0x120 [ 1433.926081][ T7965] ? __local_bh_enable_ip+0x15a/0x270 [ 1433.931437][ T7965] tcp_sendmsg+0x30/0x50 [ 1433.935698][ T7965] inet_sendmsg+0x9e/0xe0 [ 1433.940126][ T7965] ? inet_send_prepare+0x4e0/0x4e0 [ 1433.945217][ T7965] sock_sendmsg+0xd7/0x130 [ 1433.949615][ T7965] __sys_sendto+0x262/0x380 [ 1433.954096][ T7965] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1433.959515][ T7965] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1433.965743][ T7965] ? put_timespec64+0xda/0x140 [ 1433.970488][ T7965] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1433.976209][ T7965] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1433.981735][ T7965] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1433.987189][ T7965] ? do_syscall_64+0x26/0x790 [ 1433.991846][ T7965] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1433.997897][ T7965] __x64_sys_sendto+0xe1/0x1a0 [ 1434.002688][ T7965] do_syscall_64+0xfa/0x790 [ 1434.007186][ T7965] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1434.013086][ T7965] RIP: 0033:0x45a679 [ 1434.016992][ T7965] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1434.036575][ T7965] RSP: 002b:00007f138b242c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1434.044971][ T7965] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1434.052925][ T7965] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000004 [ 1434.060877][ T7965] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1434.068915][ T7965] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f138b2436d4 [ 1434.076865][ T7965] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1434.093064][ T7965] memory: usage 307200kB, limit 307200kB, failcnt 617 [ 1434.100297][ T7965] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1434.107142][ T7965] Memory cgroup stats for /syz1: [ 1434.107225][ T7965] anon 204800 [ 1434.107225][ T7965] file 94208 [ 1434.107225][ T7965] kernel_stack 73728 [ 1434.107225][ T7965] slab 4308992 [ 1434.107225][ T7965] sock 310018048 [ 1434.107225][ T7965] shmem 0 [ 1434.107225][ T7965] file_mapped 0 [ 1434.107225][ T7965] file_dirty 0 [ 1434.107225][ T7965] file_writeback 0 [ 1434.107225][ T7965] anon_thp 0 [ 1434.107225][ T7965] inactive_anon 135168 [ 1434.107225][ T7965] active_anon 208896 [ 1434.107225][ T7965] inactive_file 0 [ 1434.107225][ T7965] active_file 135168 [ 1434.107225][ T7965] unevictable 0 [ 1434.107225][ T7965] slab_reclaimable 1622016 [ 1434.107225][ T7965] slab_unreclaimable 2686976 [ 1434.107225][ T7965] pgfault 171963 [ 1434.107225][ T7965] pgmajfault 0 [ 1434.107225][ T7965] workingset_refault 0 [ 1434.107225][ T7965] workingset_activate 0 [ 1434.107225][ T7965] workingset_nodereclaim 0 [ 1434.107225][ T7965] pgrefill 439 [ 1434.107225][ T7965] pgscan 445 11:57:26 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sloppy_tcp\x00', 0x2, 0x0) syncfs(r0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:26 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000", 0x2c, 0x400}], 0x4801, 0x0) 11:57:26 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xa30300) 11:57:26 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001", 0x1d, 0x400}], 0x4801, 0x0) 11:57:26 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xa0000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:26 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self//exe\x00', 0x3, 0x0) flistxattr(r2, 0x0, 0xfffffffffffffca5) [ 1434.107225][ T7965] pgsteal 0 [ 1434.107225][ T7965] pgactivate 429 [ 1434.204126][ T7965] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=7964,uid=0 [ 1434.219619][ T7965] Memory cgroup out of memory: Killed process 7964 (syz-executor.1) total-vm:72584kB, anon-rss:144kB, file-rss:35808kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1434.238274][ T1100] oom_reaper: reaped process 7964 (syz-executor.1), now anon-rss:0kB, file-rss:34848kB, shmem-rss:0kB [ 1434.359745][ T7980] syz-executor.1 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 1434.379030][ T7980] CPU: 1 PID: 7980 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1434.388606][ T7980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1434.398665][ T7980] Call Trace: [ 1434.401966][ T7980] dump_stack+0x197/0x210 [ 1434.406290][ T7980] dump_header+0x177/0x1152 [ 1434.410790][ T7980] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1434.416592][ T7980] ? ___ratelimit+0x2c8/0x595 [ 1434.421250][ T7980] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1434.427038][ T7980] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1434.432305][ T7980] ? trace_hardirqs_on+0x67/0x240 [ 1434.437318][ T7980] ? pagefault_out_of_memory+0x11c/0x11c [ 1434.442931][ T7980] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1434.448720][ T7980] ? ___ratelimit+0x60/0x595 [ 1434.453299][ T7980] ? do_raw_spin_unlock+0x178/0x270 [ 1434.458488][ T7980] oom_kill_process.cold+0x10/0x15 [ 1434.463604][ T7980] out_of_memory+0x334/0x13c0 [ 1434.468284][ T7980] ? find_held_lock+0x35/0x130 [ 1434.473045][ T7980] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1434.478929][ T7980] ? oom_killer_disable+0x280/0x280 [ 1434.484130][ T7980] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1434.489691][ T7980] ? memcg_oom_wake_function+0x700/0x700 [ 1434.495357][ T7980] ? do_raw_spin_unlock+0x178/0x270 [ 1434.500566][ T7980] ? _raw_spin_unlock+0x28/0x40 [ 1434.505428][ T7980] try_charge+0xf76/0x14d0 [ 1434.509849][ T7980] ? find_held_lock+0x35/0x130 [ 1434.514642][ T7980] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1434.520199][ T7980] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1434.525745][ T7980] ? find_held_lock+0x35/0x130 [ 1434.530502][ T7980] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1434.536062][ T7980] __memcg_kmem_charge_memcg+0x7c/0x130 [ 1434.541633][ T7980] ? memcg_kmem_put_cache+0x1a0/0x1a0 [ 1434.547017][ T7980] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1434.552573][ T7980] __memcg_kmem_charge+0x13a/0x3a0 [ 1434.557691][ T7980] __alloc_pages_nodemask+0x4f5/0x910 [ 1434.563067][ T7980] ? free_transhuge_page+0x2a7/0x3b0 [ 1434.568449][ T7980] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1434.574699][ T7980] ? __alloc_pages_slowpath+0x2900/0x2900 [ 1434.580426][ T7980] ? __put_compound_page+0x90/0xd0 [ 1434.585550][ T7980] ? put_page+0x1c1/0x220 [ 1434.589885][ T7980] ? do_huge_pmd_anonymous_page+0xceb/0x1a50 [ 1434.595867][ T7980] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1434.602206][ T7980] alloc_pages_current+0x107/0x210 11:57:26 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xad0400) 11:57:27 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1434.607326][ T7980] pte_alloc_one+0x1b/0x1a0 [ 1434.611839][ T7980] __pte_alloc+0x20/0x310 [ 1434.616181][ T7980] __handle_mm_fault+0x2f6c/0x3da0 [ 1434.621305][ T7980] ? vm_iomap_memory+0x1a0/0x1a0 [ 1434.626340][ T7980] ? handle_mm_fault+0x292/0xa50 [ 1434.631291][ T7980] ? handle_mm_fault+0x7a0/0xa50 [ 1434.636230][ T7980] ? __kasan_check_read+0x11/0x20 [ 1434.641261][ T7980] handle_mm_fault+0x3b2/0xa50 [ 1434.646036][ T7980] __do_page_fault+0x536/0xd80 [ 1434.650814][ T7980] do_page_fault+0x38/0x590 [ 1434.655324][ T7980] page_fault+0x39/0x40 [ 1434.659499][ T7980] RIP: 0033:0x441991 [ 1434.663394][ T7980] Code: 2e 0f 1f 84 00 00 00 00 00 48 81 fa 00 04 00 00 77 77 89 d1 c1 e9 05 74 60 ff c9 48 8b 06 4c 8b 46 08 4c 8b 4e 10 4c 8b 56 18 <48> 89 07 4c 89 47 08 4c 89 4f 10 4c 89 57 18 48 8d 76 20 48 8d 7f [ 1434.682994][ T7980] RSP: 002b:00007ffd5d6ab8c8 EFLAGS: 00010246 [ 1434.689574][ T7980] RAX: 79732f636f72702f RBX: 000000000075c9a0 RCX: 0000000000000000 [ 1434.697531][ T7980] RDX: 0000000000000021 RSI: 0000000000760158 RDI: 0000000020000000 [ 1434.705495][ T7980] RBP: 0000000000760138 R08: 70692f74656e2f73 R09: 6c732f73762f3476 [ 1434.713458][ T7980] R10: 7063745f7970706f R11: 0000000000000246 R12: 000000000075bf20 [ 1434.721414][ T7980] R13: 000000000015e2c0 R14: 0000000000760140 R15: 000000000075bf2c [ 1434.731601][ T7980] memory: usage 307200kB, limit 307200kB, failcnt 632 [ 1434.738383][ T7980] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1434.738390][ T7980] Memory cgroup stats for /syz1: [ 1434.741888][ T7980] anon 65536 [ 1434.741888][ T7980] file 94208 [ 1434.741888][ T7980] kernel_stack 36864 [ 1434.741888][ T7980] slab 4308992 [ 1434.741888][ T7980] sock 310018048 [ 1434.741888][ T7980] shmem 0 [ 1434.741888][ T7980] file_mapped 0 [ 1434.741888][ T7980] file_dirty 0 [ 1434.741888][ T7980] file_writeback 0 [ 1434.741888][ T7980] anon_thp 0 [ 1434.741888][ T7980] inactive_anon 135168 [ 1434.741888][ T7980] active_anon 73728 [ 1434.741888][ T7980] inactive_file 0 [ 1434.741888][ T7980] active_file 135168 [ 1434.741888][ T7980] unevictable 0 [ 1434.741888][ T7980] slab_reclaimable 1622016 [ 1434.741888][ T7980] slab_unreclaimable 2686976 [ 1434.741888][ T7980] pgfault 172029 [ 1434.741888][ T7980] pgmajfault 0 [ 1434.741888][ T7980] workingset_refault 0 [ 1434.741888][ T7980] workingset_activate 0 [ 1434.741888][ T7980] workingset_nodereclaim 0 [ 1434.741888][ T7980] pgrefill 439 [ 1434.741888][ T7980] pgscan 445 [ 1434.741888][ T7980] pgsteal 0 [ 1434.741888][ T7980] pgactivate 429 [ 1434.842289][ T7980] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=7980,uid=0 [ 1434.860986][ T7980] Memory cgroup out of memory: Killed process 7980 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 11:57:27 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r0, 0x8982, &(0x7f0000000080)) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) getsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000000)={@loopback, @empty}, &(0x7f0000000040)=0xc) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000200)="f729010100000000000070b9fed4815f8364baef90903952871b425801d4b846f864f8", 0x23, 0x20004000, 0x0, 0x1d) [ 1434.915115][ T7971] gfs2: not a GFS2 filesystem [ 1434.967727][ T8009] EXT4-fs (loop2): VFS: Can't find ext4 filesystem 11:57:27 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001", 0x1d, 0x400}], 0x4801, 0x0) [ 1435.033827][ T8137] syz-executor.1 invoked oom-killer: gfp_mask=0x40cc0(GFP_KERNEL|__GFP_COMP), order=1, oom_score_adj=1000 [ 1435.057252][ T8137] CPU: 0 PID: 8137 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1435.066747][ T8137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1435.076797][ T8137] Call Trace: [ 1435.080080][ T8137] dump_stack+0x197/0x210 [ 1435.084398][ T8137] dump_header+0x177/0x1152 [ 1435.088884][ T8137] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1435.094674][ T8137] ? ___ratelimit+0x2c8/0x595 [ 1435.099333][ T8137] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1435.105121][ T8137] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1435.110389][ T8137] ? trace_hardirqs_on+0x67/0x240 [ 1435.115396][ T8137] ? pagefault_out_of_memory+0x11c/0x11c [ 1435.121012][ T8137] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1435.126812][ T8137] ? ___ratelimit+0x60/0x595 [ 1435.131392][ T8137] ? do_raw_spin_unlock+0x178/0x270 [ 1435.136575][ T8137] oom_kill_process.cold+0x10/0x15 [ 1435.141685][ T8137] out_of_memory+0x334/0x13c0 [ 1435.146341][ T8137] ? find_held_lock+0x35/0x130 [ 1435.151091][ T8137] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1435.156876][ T8137] ? oom_killer_disable+0x280/0x280 [ 1435.162061][ T8137] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1435.167590][ T8137] ? memcg_oom_wake_function+0x700/0x700 [ 1435.173207][ T8137] ? do_raw_spin_unlock+0x178/0x270 [ 1435.178388][ T8137] ? _raw_spin_unlock+0x28/0x40 [ 1435.183220][ T8137] try_charge+0xf76/0x14d0 [ 1435.187617][ T8137] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1435.193846][ T8137] ? perf_trace_lock+0x80/0x4c0 [ 1435.198684][ T8137] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1435.204210][ T8137] ? __lockdep_free_key_range+0x120/0x120 [ 1435.209923][ T8137] ? cache_grow_begin+0x122/0xc60 [ 1435.214926][ T8137] ? find_held_lock+0x35/0x130 [ 1435.219670][ T8137] ? cache_grow_begin+0x122/0xc60 [ 1435.224684][ T8137] __memcg_kmem_charge_memcg+0x7c/0x130 [ 1435.230208][ T8137] ? lock_downgrade+0x920/0x920 [ 1435.235034][ T8137] ? memcg_kmem_put_cache+0x1a0/0x1a0 [ 1435.240404][ T8137] ? __kasan_check_read+0x11/0x20 [ 1435.245412][ T8137] cache_grow_begin+0x5e8/0xc60 [ 1435.250328][ T8137] ? __sanitizer_cov_trace_cmp8+0x1/0x20 [ 1435.255941][ T8137] ? mempolicy_slab_node+0x139/0x390 [ 1435.261217][ T8137] fallback_alloc+0x1f8/0x2d0 [ 1435.265878][ T8137] ____cache_alloc_node+0x1bc/0x1d0 [ 1435.271055][ T8137] ? trace_hardirqs_off+0x62/0x240 [ 1435.276148][ T8137] kmem_cache_alloc+0x1ef/0x710 [ 1435.280987][ T8137] sk_prot_alloc+0x67/0x310 [ 1435.285472][ T8137] sk_alloc+0x39/0xfd0 [ 1435.289525][ T8137] inet_create+0x363/0xdf0 [ 1435.293932][ T8137] __sock_create+0x3ce/0x730 [ 1435.298510][ T8137] __sys_socket+0x103/0x220 [ 1435.302994][ T8137] ? move_addr_to_kernel+0x80/0x80 [ 1435.308087][ T8137] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1435.313531][ T8137] ? do_syscall_64+0x26/0x790 [ 1435.318211][ T8137] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1435.324296][ T8137] ? do_syscall_64+0x26/0x790 [ 1435.328994][ T8137] __x64_sys_socket+0x73/0xb0 [ 1435.333682][ T8137] do_syscall_64+0xfa/0x790 [ 1435.338181][ T8137] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1435.344072][ T8137] RIP: 0033:0x45a679 [ 1435.347954][ T8137] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1435.367543][ T8137] RSP: 002b:00007f138b242c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 1435.375940][ T8137] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a679 [ 1435.383892][ T8137] RDX: 0000000000000000 RSI: 4000000000000001 RDI: 0000000000000002 [ 1435.391843][ T8137] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 1435.399793][ T8137] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f138b2436d4 [ 1435.407743][ T8137] R13: 00000000004ca51c R14: 00000000004e3630 R15: 00000000ffffffff 11:57:27 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:27 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xc0ed0000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:27 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1435.593592][ T8137] memory: usage 307192kB, limit 307200kB, failcnt 676 [ 1435.618066][ T8137] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1435.637427][ T8300] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:28 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe", 0x33, 0x400}], 0x4801, 0x0) 11:57:28 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xb70500) [ 1435.658732][ T8308] gfs2: not a GFS2 filesystem [ 1435.680048][ T8137] Memory cgroup stats for /syz1: [ 1435.680169][ T8137] anon 65536 [ 1435.680169][ T8137] file 94208 [ 1435.680169][ T8137] kernel_stack 36864 [ 1435.680169][ T8137] slab 4308992 [ 1435.680169][ T8137] sock 310018048 [ 1435.680169][ T8137] shmem 0 [ 1435.680169][ T8137] file_mapped 0 [ 1435.680169][ T8137] file_dirty 0 [ 1435.680169][ T8137] file_writeback 0 [ 1435.680169][ T8137] anon_thp 0 [ 1435.680169][ T8137] inactive_anon 135168 [ 1435.680169][ T8137] active_anon 73728 [ 1435.680169][ T8137] inactive_file 0 11:57:28 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1435.680169][ T8137] active_file 135168 [ 1435.680169][ T8137] unevictable 0 [ 1435.680169][ T8137] slab_reclaimable 1622016 [ 1435.680169][ T8137] slab_unreclaimable 2686976 [ 1435.680169][ T8137] pgfault 172095 [ 1435.680169][ T8137] pgmajfault 0 [ 1435.680169][ T8137] workingset_refault 0 [ 1435.680169][ T8137] workingset_activate 0 [ 1435.680169][ T8137] workingset_nodereclaim 0 [ 1435.680169][ T8137] pgrefill 439 [ 1435.680169][ T8137] pgscan 445 [ 1435.680169][ T8137] pgsteal 0 [ 1435.680169][ T8137] pgactivate 429 [ 1435.780601][ T8137] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=8122,uid=0 [ 1435.829023][ T8137] Memory cgroup out of memory: Killed process 8122 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1435.850052][ T1100] oom_reaper: reaped process 8122 (syz-executor.1), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB 11:57:28 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x340000, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) sendto$inet(r1, 0x0, 0x0, 0x400a100, 0x0, 0xfffffffffffffe5a) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:28 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001", 0x1d, 0x400}], 0x4801, 0x0) 11:57:28 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:28 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe", 0x33, 0x400}], 0x4801, 0x0) 11:57:28 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xd4020000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1436.088778][ C0] net_ratelimit: 27 callbacks suppressed [ 1436.088787][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1436.100413][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1436.106251][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1436.112077][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:57:28 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xc10600) 11:57:28 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1436.255262][ T8429] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1436.274199][ T8429] CPU: 0 PID: 8429 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1436.283676][ T8429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1436.293728][ T8429] Call Trace: [ 1436.297023][ T8429] dump_stack+0x197/0x210 [ 1436.301346][ T8429] dump_header+0x177/0x1152 [ 1436.305831][ T8429] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1436.311622][ T8429] ? ___ratelimit+0x2c8/0x595 [ 1436.316288][ T8429] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1436.322072][ T8429] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1436.327352][ T8429] ? trace_hardirqs_on+0x67/0x240 [ 1436.332360][ T8429] ? pagefault_out_of_memory+0x11c/0x11c [ 1436.337973][ T8429] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1436.343756][ T8429] ? ___ratelimit+0x60/0x595 [ 1436.348326][ T8429] ? do_raw_spin_unlock+0x178/0x270 [ 1436.353506][ T8429] oom_kill_process.cold+0x10/0x15 [ 1436.358610][ T8429] out_of_memory+0x334/0x13c0 [ 1436.363265][ T8429] ? find_held_lock+0x35/0x130 [ 1436.368011][ T8429] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1436.373841][ T8429] ? oom_killer_disable+0x280/0x280 [ 1436.379026][ T8429] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1436.384669][ T8429] ? memcg_oom_wake_function+0x700/0x700 [ 1436.390295][ T8429] ? do_raw_spin_unlock+0x178/0x270 [ 1436.395497][ T8429] ? _raw_spin_unlock+0x28/0x40 [ 1436.400360][ T8429] try_charge+0xf76/0x14d0 [ 1436.404760][ T8429] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1436.410284][ T8429] ? percpu_ref_tryget+0x102/0x230 [ 1436.415378][ T8429] ? rcu_read_lock_held+0x9c/0xb0 [ 1436.420381][ T8429] ? __kasan_check_read+0x11/0x20 [ 1436.425386][ T8429] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1436.430912][ T8429] mem_cgroup_try_charge+0x136/0x590 [ 1436.436191][ T8429] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1436.441807][ T8429] wp_page_copy+0x407/0x1560 [ 1436.446378][ T8429] ? find_held_lock+0x35/0x130 [ 1436.451137][ T8429] ? follow_pfn+0x2a0/0x2a0 [ 1436.455625][ T8429] ? lock_downgrade+0x920/0x920 [ 1436.460450][ T8429] ? vm_normal_page+0x15d/0x3c0 [ 1436.465284][ T8429] ? __pte_alloc_kernel+0x210/0x210 [ 1436.470462][ T8429] ? do_raw_spin_unlock+0x178/0x270 [ 1436.475643][ T8429] do_wp_page+0x543/0x1540 [ 1436.480048][ T8429] ? do_raw_spin_lock+0x12a/0x2e0 [ 1436.485062][ T8429] ? lock_acquire+0x190/0x410 [ 1436.489719][ T8429] ? finish_mkwrite_fault+0x5c0/0x5c0 [ 1436.495076][ T8429] ? fault_around_bytes_set+0xa0/0xa0 [ 1436.500429][ T8429] __handle_mm_fault+0x327b/0x3da0 [ 1436.505537][ T8429] ? vm_iomap_memory+0x1a0/0x1a0 [ 1436.510461][ T8429] ? handle_mm_fault+0x292/0xa50 [ 1436.515382][ T8429] ? handle_mm_fault+0x7a0/0xa50 [ 1436.520313][ T8429] ? __kasan_check_read+0x11/0x20 [ 1436.525312][ T8429] handle_mm_fault+0x3b2/0xa50 [ 1436.530067][ T8429] __do_page_fault+0x536/0xd80 [ 1436.534818][ T8429] do_page_fault+0x38/0x590 [ 1436.539386][ T8429] page_fault+0x39/0x40 [ 1436.543517][ T8429] RIP: 0033:0x40f6c8 [ 1436.547396][ T8429] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 64 fe 4b 00 31 c0 e8 13 27 ff ff 31 ff e8 5c 23 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 7e 2f 66 00 [ 1436.567086][ T8429] RSP: 002b:00007ffd5d6ab800 EFLAGS: 00010246 [ 1436.573136][ T8429] RAX: 000000007876e88b RBX: 00000000bb6ad91a RCX: 0000001b2d620000 [ 1436.581083][ T8429] RDX: 0000000000000000 RSI: 000000000000088b RDI: ffffffff7876e88b [ 1436.589043][ T8429] RBP: 000000000000000b R08: 000000007876e88b R09: 000000007876e88f [ 1436.597098][ T8429] R10: 00007ffd5d6ab9a0 R11: 0000000000000246 R12: 000000000075bfa8 [ 1436.605054][ T8429] R13: 0000000080000000 R14: 00007f138d244008 R15: 000000000000000b [ 1436.615947][ T8429] memory: usage 307200kB, limit 307200kB, failcnt 693 [ 1436.618960][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1436.623077][ T8429] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1436.628526][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1436.641208][ T8429] Memory cgroup stats for /syz1: [ 1436.641318][ T8429] anon 16384 [ 1436.641318][ T8429] file 94208 [ 1436.641318][ T8429] kernel_stack 73728 [ 1436.641318][ T8429] slab 4308992 [ 1436.641318][ T8429] sock 310018048 [ 1436.641318][ T8429] shmem 0 [ 1436.641318][ T8429] file_mapped 0 [ 1436.641318][ T8429] file_dirty 0 [ 1436.641318][ T8429] file_writeback 0 [ 1436.641318][ T8429] anon_thp 0 [ 1436.641318][ T8429] inactive_anon 135168 [ 1436.641318][ T8429] active_anon 20480 [ 1436.641318][ T8429] inactive_file 0 [ 1436.641318][ T8429] active_file 135168 [ 1436.641318][ T8429] unevictable 0 [ 1436.641318][ T8429] slab_reclaimable 1622016 [ 1436.641318][ T8429] slab_unreclaimable 2686976 [ 1436.641318][ T8429] pgfault 172161 [ 1436.641318][ T8429] pgmajfault 0 [ 1436.641318][ T8429] workingset_refault 0 [ 1436.641318][ T8429] workingset_activate 0 [ 1436.641318][ T8429] workingset_nodereclaim 0 [ 1436.641318][ T8429] pgrefill 439 [ 1436.641318][ T8429] pgscan 445 [ 1436.641318][ T8429] pgsteal 0 [ 1436.641318][ T8429] pgactivate 429 [ 1436.737577][ T8429] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=8429,uid=0 11:57:29 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) ioctl$USBDEVFS_CLAIM_PORT(r3, 0x80045518, &(0x7f0000000040)=0x88c) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) ioctl$SNDCTL_DSP_GETODELAY(r4, 0x80045017, &(0x7f0000000000)) [ 1436.753112][ T8429] Memory cgroup out of memory: Killed process 8429 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1436.771812][ T1100] oom_reaper: reaped process 8429 (syz-executor.1), now anon-rss:0kB, file-rss:33920kB, shmem-rss:0kB [ 1436.870245][ T8444] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 1436.871215][ T8442] gfs2: not a GFS2 filesystem [ 1436.888764][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1436.894652][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1436.900551][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1436.906343][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1436.914049][ T8441] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:29 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:29 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe", 0x33, 0x400}], 0x4801, 0x0) 11:57:29 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000", 0x2c, 0x400}], 0x4801, 0x0) [ 1437.126957][ T8456] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 11:57:29 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xd6000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:29 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xcb0700) 11:57:29 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1437.180103][ T8456] CPU: 1 PID: 8456 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1437.189621][ T8456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1437.199678][ T8456] Call Trace: [ 1437.202968][ T8456] dump_stack+0x197/0x210 [ 1437.207283][ T8456] dump_header+0x177/0x1152 [ 1437.211793][ T8456] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1437.217608][ T8456] ? ___ratelimit+0x2c8/0x595 [ 1437.222288][ T8456] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1437.228088][ T8456] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1437.233354][ T8456] ? trace_hardirqs_on+0x67/0x240 [ 1437.238354][ T8456] ? pagefault_out_of_memory+0x11c/0x11c [ 1437.243963][ T8456] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1437.249745][ T8456] ? ___ratelimit+0x60/0x595 [ 1437.254313][ T8456] ? do_raw_spin_unlock+0x178/0x270 [ 1437.259500][ T8456] oom_kill_process.cold+0x10/0x15 [ 1437.264599][ T8456] out_of_memory+0x334/0x13c0 [ 1437.269255][ T8456] ? find_held_lock+0x35/0x130 [ 1437.274009][ T8456] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1437.279803][ T8456] ? oom_killer_disable+0x280/0x280 [ 1437.285039][ T8456] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1437.290561][ T8456] ? memcg_oom_wake_function+0x700/0x700 [ 1437.296173][ T8456] ? do_raw_spin_unlock+0x178/0x270 [ 1437.301369][ T8456] ? _raw_spin_unlock+0x28/0x40 [ 1437.306197][ T8456] try_charge+0xf76/0x14d0 [ 1437.310596][ T8456] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1437.316115][ T8456] ? percpu_ref_tryget+0x102/0x230 [ 1437.321202][ T8456] ? rcu_read_lock_held+0x9c/0xb0 [ 1437.326202][ T8456] ? __kasan_check_read+0x11/0x20 [ 1437.331217][ T8456] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1437.336744][ T8456] mem_cgroup_try_charge+0x136/0x590 [ 1437.342009][ T8456] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1437.347655][ T8456] wp_page_copy+0x407/0x1560 [ 1437.352229][ T8456] ? find_held_lock+0x35/0x130 [ 1437.356972][ T8456] ? follow_pfn+0x2a0/0x2a0 [ 1437.361494][ T8456] ? lock_downgrade+0x920/0x920 [ 1437.366319][ T8456] ? vm_normal_page+0x15d/0x3c0 [ 1437.371175][ T8456] ? __pte_alloc_kernel+0x210/0x210 [ 1437.376360][ T8456] ? do_raw_spin_unlock+0x178/0x270 [ 1437.381538][ T8456] do_wp_page+0x543/0x1540 [ 1437.385927][ T8456] ? do_raw_spin_lock+0x12a/0x2e0 [ 1437.390968][ T8456] ? lock_acquire+0x190/0x410 [ 1437.395626][ T8456] ? finish_mkwrite_fault+0x5c0/0x5c0 [ 1437.400972][ T8456] ? fault_around_bytes_set+0xa0/0xa0 [ 1437.406326][ T8456] __handle_mm_fault+0x327b/0x3da0 [ 1437.411419][ T8456] ? vm_iomap_memory+0x1a0/0x1a0 [ 1437.416331][ T8456] ? handle_mm_fault+0x292/0xa50 [ 1437.422817][ T8456] ? handle_mm_fault+0x7a0/0xa50 [ 1437.427763][ T8456] ? __kasan_check_read+0x11/0x20 [ 1437.432769][ T8456] handle_mm_fault+0x3b2/0xa50 [ 1437.437513][ T8456] __do_page_fault+0x536/0xd80 [ 1437.442271][ T8456] do_page_fault+0x38/0x590 [ 1437.446752][ T8456] page_fault+0x39/0x40 [ 1437.450887][ T8456] RIP: 0033:0x40f6c8 [ 1437.454776][ T8456] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 64 fe 4b 00 31 c0 e8 13 27 ff ff 31 ff e8 5c 23 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 7e 2f 66 00 [ 1437.474383][ T8456] RSP: 002b:00007ffd5d6ab800 EFLAGS: 00010246 [ 1437.480438][ T8456] RAX: 000000007876e88b RBX: 00000000bb6ad91a RCX: 0000001b2d620000 [ 1437.488399][ T8456] RDX: 0000000000000000 RSI: 000000000000088b RDI: ffffffff7876e88b [ 1437.496350][ T8456] RBP: 000000000000000b R08: 000000007876e88b R09: 000000007876e88f [ 1437.504453][ T8456] R10: 00007ffd5d6ab9a0 R11: 0000000000000246 R12: 000000000075bfa8 [ 1437.512411][ T8456] R13: 0000000080000000 R14: 00007f138d244008 R15: 000000000000000b [ 1437.525429][ T8456] memory: usage 307200kB, limit 307200kB, failcnt 738 [ 1437.533571][ T8456] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1437.540940][ T8456] Memory cgroup stats for /syz1: [ 1437.541058][ T8456] anon 16384 [ 1437.541058][ T8456] file 94208 [ 1437.541058][ T8456] kernel_stack 73728 [ 1437.541058][ T8456] slab 4173824 [ 1437.541058][ T8456] sock 310018048 [ 1437.541058][ T8456] shmem 0 [ 1437.541058][ T8456] file_mapped 0 [ 1437.541058][ T8456] file_dirty 0 [ 1437.541058][ T8456] file_writeback 0 [ 1437.541058][ T8456] anon_thp 0 [ 1437.541058][ T8456] inactive_anon 135168 [ 1437.541058][ T8456] active_anon 20480 [ 1437.541058][ T8456] inactive_file 0 [ 1437.541058][ T8456] active_file 135168 [ 1437.541058][ T8456] unevictable 0 [ 1437.541058][ T8456] slab_reclaimable 1486848 [ 1437.541058][ T8456] slab_unreclaimable 2686976 [ 1437.541058][ T8456] pgfault 172194 [ 1437.541058][ T8456] pgmajfault 0 [ 1437.541058][ T8456] workingset_refault 0 [ 1437.541058][ T8456] workingset_activate 0 [ 1437.541058][ T8456] workingset_nodereclaim 0 [ 1437.541058][ T8456] pgrefill 474 [ 1437.541058][ T8456] pgscan 445 [ 1437.541058][ T8456] pgsteal 0 [ 1437.541058][ T8456] pgactivate 429 [ 1437.546109][ T8456] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=8456,uid=0 [ 1437.667926][ T8456] Memory cgroup out of memory: Killed process 8456 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 11:57:30 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:30 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r2 = socket$inet(0x2, 0x5, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) accept$unix(r1, &(0x7f00000001c0), &(0x7f0000000140)=0x6e) r3 = accept4$vsock_stream(r1, &(0x7f0000000240), 0x10, 0x80000) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r5 = dup2(r4, r4) write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000080), 0xa) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = dup2(r3, 0xffffffffffffffff) write$UHID_GET_REPORT_REPLY(r6, &(0x7f0000000080), 0xa) setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, 0x0, 0x2da) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r7 = socket$inet(0x2, 0x4000000000000001, 0x0) sendto$inet(r7, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r8 = socket$kcm(0xa, 0x2, 0x73) bind$inet6(r8, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r11 = dup3(r9, r10, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r11, 0x8912, 0x400200) r12 = socket$kcm(0xa, 0x2, 0x73) r13 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r13}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r13, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) r15 = openat$full(0xffffffffffffff9c, &(0x7f0000000380)='/dev/full\x00', 0x29d7e8825abe29f2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], 0x0, 0x9, r15, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfe40) bind(r12, &(0x7f0000000080)=@hci={0x1f, r14}, 0x80) r16 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsu\x00', 0x200002, 0x0) r17 = socket$inet(0x2, 0x609978d957956f94, 0x1f) bind$inet(r17, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r17, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r17, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r17, r17) sendto$inet(r17, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x10d) ioctl$sock_FIOGETOWN(r17, 0x8903, &(0x7f0000000040)=0x0) write$cgroup_pid(r16, &(0x7f0000000100)=r18, 0x12) close(r12) socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r4, &(0x7f0000000340)="fb993c30154707000000e78927a37cf0a21db78947675cb5ab69673207030fd203055122c40cf9e13573413015eb", 0xfd50, 0x88090, 0x0, 0xffffffffffffffa5) [ 1437.867414][ T8574] gfs2: not a GFS2 filesystem [ 1437.891031][ T8579] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:30 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xd50800) [ 1437.967440][ T8588] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1437.978447][ T8588] CPU: 0 PID: 8588 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1437.987933][ T8588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1437.987940][ T8588] Call Trace: [ 1437.987964][ T8588] dump_stack+0x197/0x210 [ 1437.987987][ T8588] dump_header+0x177/0x1152 [ 1438.010120][ T8588] ? _raw_spin_unlock_irqrestore+0x66/0xe0 11:57:30 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1438.015927][ T8588] ? ___ratelimit+0x2c8/0x595 [ 1438.015944][ T8588] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1438.015961][ T8588] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1438.015979][ T8588] ? trace_hardirqs_on+0x67/0x240 [ 1438.015997][ T8588] ? pagefault_out_of_memory+0x11c/0x11c [ 1438.016012][ T8588] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1438.016029][ T8588] ? ___ratelimit+0x60/0x595 [ 1438.052731][ T8588] ? do_raw_spin_unlock+0x178/0x270 [ 1438.057942][ T8588] oom_kill_process.cold+0x10/0x15 [ 1438.063065][ T8588] out_of_memory+0x334/0x13c0 [ 1438.067748][ T8588] ? find_held_lock+0x35/0x130 [ 1438.072528][ T8588] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1438.078347][ T8588] ? oom_killer_disable+0x280/0x280 [ 1438.083567][ T8588] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1438.089119][ T8588] ? memcg_oom_wake_function+0x700/0x700 [ 1438.094768][ T8588] ? do_raw_spin_unlock+0x178/0x270 [ 1438.099975][ T8588] ? _raw_spin_unlock+0x28/0x40 [ 1438.104833][ T8588] try_charge+0xf76/0x14d0 [ 1438.109268][ T8588] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 11:57:30 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xdf0900) [ 1438.114822][ T8588] ? mark_held_locks+0xa4/0xf0 [ 1438.119589][ T8588] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1438.125221][ T8588] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1438.131026][ T8588] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1438.136669][ T8588] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1438.141963][ T8588] ? trace_hardirqs_on+0x67/0x240 [ 1438.146998][ T8588] mem_cgroup_charge_skmem+0x15e/0x300 [ 1438.152463][ T8588] ? mem_cgroup_sk_free+0x90/0x90 [ 1438.157496][ T8588] ? __sanitizer_cov_trace_cmp8+0x18/0x20 11:57:30 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xe90a00) [ 1438.163222][ T8588] ? __sk_mem_raise_allocated+0x63f/0x1410 [ 1438.169036][ T8588] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1438.175292][ T8588] __sk_mem_raise_allocated+0x56e/0x1410 [ 1438.180930][ T8588] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1438.187183][ T8588] __sk_mem_schedule+0x6d/0xe0 [ 1438.192043][ T8588] tcp_sendmsg_locked+0x1733/0x33a0 [ 1438.197262][ T8588] ? tcp_sendpage+0x60/0x60 [ 1438.201772][ T8588] ? trace_hardirqs_on+0x67/0x240 [ 1438.206790][ T8588] ? lock_sock_nested+0x9a/0x120 [ 1438.211734][ T8588] ? __local_bh_enable_ip+0x15a/0x270 [ 1438.217125][ T8588] tcp_sendmsg+0x30/0x50 [ 1438.221380][ T8588] inet_sendmsg+0x9e/0xe0 [ 1438.225716][ T8588] ? inet_send_prepare+0x4e0/0x4e0 [ 1438.230836][ T8588] sock_sendmsg+0xd7/0x130 [ 1438.235261][ T8588] __sys_sendto+0x262/0x380 [ 1438.239775][ T8588] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1438.245313][ T8588] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1438.251556][ T8588] ? put_timespec64+0xda/0x140 [ 1438.256328][ T8588] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1438.262070][ T8588] ? trace_hardirqs_on_thunk+0x1a/0x1c 11:57:30 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xf30b00) [ 1438.267541][ T8588] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1438.273009][ T8588] ? do_syscall_64+0x26/0x790 [ 1438.277686][ T8588] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1438.283757][ T8588] __x64_sys_sendto+0xe1/0x1a0 [ 1438.288526][ T8588] do_syscall_64+0xfa/0x790 [ 1438.293044][ T8588] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1438.298938][ T8588] RIP: 0033:0x45a679 [ 1438.302839][ T8588] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1438.322456][ T8588] RSP: 002b:00007f138b242c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1438.330878][ T8588] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1438.338857][ T8588] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1438.346834][ T8588] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1438.354807][ T8588] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f138b2436d4 [ 1438.362788][ T8588] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1438.381317][ T8588] memory: usage 307200kB, limit 307200kB, failcnt 765 [ 1438.381327][ T8588] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1438.381332][ T8588] Memory cgroup stats for /syz1: [ 1438.381452][ T8588] anon 16384 [ 1438.381452][ T8588] file 94208 [ 1438.381452][ T8588] kernel_stack 36864 [ 1438.381452][ T8588] slab 4173824 [ 1438.381452][ T8588] sock 310018048 [ 1438.381452][ T8588] shmem 0 [ 1438.381452][ T8588] file_mapped 0 [ 1438.381452][ T8588] file_dirty 0 [ 1438.381452][ T8588] file_writeback 0 [ 1438.381452][ T8588] anon_thp 0 [ 1438.381452][ T8588] inactive_anon 135168 [ 1438.381452][ T8588] active_anon 20480 [ 1438.381452][ T8588] inactive_file 0 [ 1438.381452][ T8588] active_file 135168 [ 1438.381452][ T8588] unevictable 0 [ 1438.381452][ T8588] slab_reclaimable 1486848 [ 1438.381452][ T8588] slab_unreclaimable 2686976 [ 1438.381452][ T8588] pgfault 172326 [ 1438.381452][ T8588] pgmajfault 0 [ 1438.381452][ T8588] workingset_refault 0 [ 1438.381452][ T8588] workingset_activate 0 [ 1438.381452][ T8588] workingset_nodereclaim 0 [ 1438.381452][ T8588] pgrefill 474 [ 1438.381452][ T8588] pgscan 478 [ 1438.381452][ T8588] pgsteal 0 [ 1438.381452][ T8588] pgactivate 429 [ 1438.491755][ T8588] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=8583,uid=0 [ 1438.507288][ T8588] Memory cgroup out of memory: Killed process 8583 (syz-executor.1) total-vm:72712kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 11:57:30 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0xfd0c00) [ 1438.588593][ T8574] gfs2: not a GFS2 filesystem 11:57:31 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ff", 0x37, 0x400}], 0x4801, 0x0) 11:57:31 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000", 0x2c, 0x400}], 0x4801, 0x0) 11:57:31 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x200, 0x0) ioctl$SIOCX25SCUDMATCHLEN(r0, 0x89e7, &(0x7f0000000040)={0x69}) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:31 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xda030000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:31 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:31 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_GET_DEBUGREGS(0xffffffffffffffff, 0x8080aea1, &(0x7f0000000000)) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1438.736864][ T1100] oom_reaper: reaped process 8583 (syz-executor.1), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB [ 1438.819704][ T8620] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1438.830086][ T8620] CPU: 0 PID: 8620 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1438.839533][ T8620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1438.839540][ T8620] Call Trace: [ 1438.839561][ T8620] dump_stack+0x197/0x210 [ 1438.839580][ T8620] dump_header+0x177/0x1152 [ 1438.839595][ T8620] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1438.839606][ T8620] ? ___ratelimit+0x2c8/0x595 [ 1438.839618][ T8620] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1438.839651][ T8620] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1438.839667][ T8620] ? trace_hardirqs_on+0x67/0x240 [ 1438.839681][ T8620] ? pagefault_out_of_memory+0x11c/0x11c [ 1438.839695][ T8620] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1438.839708][ T8620] ? ___ratelimit+0x60/0x595 [ 1438.839721][ T8620] ? do_raw_spin_unlock+0x178/0x270 [ 1438.839739][ T8620] oom_kill_process.cold+0x10/0x15 [ 1438.839756][ T8620] out_of_memory+0x334/0x13c0 [ 1438.839770][ T8620] ? find_held_lock+0x35/0x130 [ 1438.839789][ T8620] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1438.839804][ T8620] ? oom_killer_disable+0x280/0x280 [ 1438.839829][ T8620] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1438.839857][ T8620] ? memcg_oom_wake_function+0x700/0x700 [ 1438.839878][ T8620] ? do_raw_spin_unlock+0x178/0x270 [ 1438.878242][ T8620] ? _raw_spin_unlock+0x28/0x40 [ 1438.878264][ T8620] try_charge+0xf76/0x14d0 [ 1438.878289][ T8620] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 11:57:31 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$NBD_DO_IT(r2, 0xab03) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1438.888559][ T8620] ? percpu_ref_tryget+0x102/0x230 [ 1438.888577][ T8620] ? rcu_read_lock_held+0x9c/0xb0 [ 1438.888593][ T8620] ? __kasan_check_read+0x11/0x20 [ 1438.888613][ T8620] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1438.900018][ T8620] mem_cgroup_try_charge+0x136/0x590 [ 1438.909759][ T8620] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1438.909779][ T8620] __handle_mm_fault+0x1f1f/0x3da0 [ 1438.909799][ T8620] ? vm_iomap_memory+0x1a0/0x1a0 [ 1438.909815][ T8620] ? handle_mm_fault+0x292/0xa50 [ 1439.012845][ T8620] ? handle_mm_fault+0x7a0/0xa50 [ 1439.017789][ T8620] ? __kasan_check_read+0x11/0x20 [ 1439.022823][ T8620] handle_mm_fault+0x3b2/0xa50 [ 1439.027576][ T8620] __do_page_fault+0x536/0xd80 [ 1439.032328][ T8620] do_page_fault+0x38/0x590 [ 1439.036821][ T8620] page_fault+0x39/0x40 [ 1439.040965][ T8620] RIP: 0033:0x4005c0 [ 1439.044843][ T8620] Code: 01 e9 cd 01 00 00 48 8b 44 24 10 48 0b 44 24 28 75 20 48 8b 14 24 48 8b 7c 24 20 be 02 00 00 00 e8 15 56 00 00 48 8b 4c 24 08 <66> 89 01 e9 a1 01 00 00 48 8b 44 24 08 48 8b 14 24 be 02 00 00 00 [ 1439.064424][ T8620] RSP: 002b:00007ffd5d6ab890 EFLAGS: 00010206 [ 1439.070472][ T8620] RAX: 0000000000000002 RBX: 000000000075c9a0 RCX: 0000000020e68000 [ 1439.078437][ T8620] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002 [ 1439.086483][ T8620] RBP: 0000000000760420 R08: 0000000000000000 R09: 0000000000000000 [ 1439.094438][ T8620] R10: 00007ffd5d6ab9a0 R11: 0000000000000246 R12: 000000000075bf20 [ 1439.102390][ T8620] R13: 000000000015f444 R14: 0000000000760428 R15: 000000000075bf2c [ 1439.111805][ T8620] memory: usage 307200kB, limit 307200kB, failcnt 808 [ 1439.118571][ T8620] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1439.125520][ T8620] Memory cgroup stats for /syz1: [ 1439.125627][ T8620] anon 16384 [ 1439.125627][ T8620] file 94208 [ 1439.125627][ T8620] kernel_stack 73728 [ 1439.125627][ T8620] slab 4173824 [ 1439.125627][ T8620] sock 310018048 [ 1439.125627][ T8620] shmem 0 [ 1439.125627][ T8620] file_mapped 0 [ 1439.125627][ T8620] file_dirty 0 [ 1439.125627][ T8620] file_writeback 0 [ 1439.125627][ T8620] anon_thp 0 [ 1439.125627][ T8620] inactive_anon 135168 [ 1439.125627][ T8620] active_anon 20480 [ 1439.125627][ T8620] inactive_file 0 [ 1439.125627][ T8620] active_file 135168 [ 1439.125627][ T8620] unevictable 0 [ 1439.125627][ T8620] slab_reclaimable 1486848 [ 1439.125627][ T8620] slab_unreclaimable 2686976 [ 1439.125627][ T8620] pgfault 172392 [ 1439.125627][ T8620] pgmajfault 0 [ 1439.125627][ T8620] workingset_refault 0 [ 1439.125627][ T8620] workingset_activate 0 [ 1439.125627][ T8620] workingset_nodereclaim 0 [ 1439.125627][ T8620] pgrefill 474 [ 1439.125627][ T8620] pgscan 478 [ 1439.125627][ T8620] pgsteal 0 [ 1439.125627][ T8620] pgactivate 429 11:57:31 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x10, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1439.267268][ T8620] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=8620,uid=0 [ 1439.282886][ T8620] Memory cgroup out of memory: Killed process 8620 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1439.323243][ T1100] oom_reaper: reaped process 8620 (syz-executor.1), now anon-rss:0kB, file-rss:34824kB, shmem-rss:0kB 11:57:31 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$TIOCGSERIAL(r2, 0x541e, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=""/4096}) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) [ 1439.397428][ T8618] EXT4-fs (loop2): VFS: Can't find ext4 filesystem 11:57:31 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000", 0x2c, 0x400}], 0x4801, 0x0) 11:57:31 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvme-fabrics\x00', 0x250802, 0x0) readv(r0, &(0x7f0000000340)=[{&(0x7f00000000c0)=""/81, 0x51}, {&(0x7f0000000140)=""/9, 0x9}, {&(0x7f00000001c0)=""/61, 0x3d}, {&(0x7f0000000200)=""/36, 0x24}, {&(0x7f00000002c0)=""/92, 0x5c}], 0x5) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1439.543865][ T8642] gfs2: not a GFS2 filesystem 11:57:31 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ff", 0x37, 0x400}], 0x4801, 0x0) 11:57:31 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x10, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:32 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x4000000, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x6) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r2 = gettid() timer_create(0x8, &(0x7f00000000c0)={0x0, 0x32, 0x4, @tid=r2}, &(0x7f00000002c0)) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhost-vsock\x00', 0x2, 0x0) r3 = syz_open_procfs(r2, &(0x7f0000000000)='net/raw6\x00') ioctl$DRM_IOCTL_SG_ALLOC(r3, 0xc0106438, &(0x7f0000000040)={0x3ff}) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) listen(r1, 0x80000000) 11:57:32 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x10, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:32 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xdc010000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:32 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe", 0x33, 0x400}], 0x4801, 0x0) 11:57:32 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0x2, 0x2) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$KVM_PPC_GET_SMMU_INFO(r2, 0x8250aea6, &(0x7f0000000000)=""/100) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1439.824406][ T8657] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1439.878873][ T8657] CPU: 0 PID: 8657 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1439.888436][ T8657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1439.898557][ T8657] Call Trace: [ 1439.901867][ T8657] dump_stack+0x197/0x210 [ 1439.901892][ T8657] dump_header+0x177/0x1152 [ 1439.901908][ T8657] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1439.901926][ T8657] ? ___ratelimit+0x2c8/0x595 [ 1439.910756][ T8657] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1439.910773][ T8657] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1439.910791][ T8657] ? trace_hardirqs_on+0x67/0x240 [ 1439.910806][ T8657] ? pagefault_out_of_memory+0x11c/0x11c [ 1439.910822][ T8657] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1439.910836][ T8657] ? ___ratelimit+0x60/0x595 [ 1439.910856][ T8657] ? do_raw_spin_unlock+0x178/0x270 [ 1439.959075][ T8657] oom_kill_process.cold+0x10/0x15 [ 1439.964203][ T8657] out_of_memory+0x334/0x13c0 [ 1439.968895][ T8657] ? find_held_lock+0x35/0x130 [ 1439.973683][ T8657] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1439.979527][ T8657] ? oom_killer_disable+0x280/0x280 [ 1439.984751][ T8657] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1439.990312][ T8657] ? memcg_oom_wake_function+0x700/0x700 [ 1439.995968][ T8657] ? do_raw_spin_unlock+0x178/0x270 [ 1440.001196][ T8657] ? _raw_spin_unlock+0x28/0x40 [ 1440.006067][ T8657] try_charge+0xf76/0x14d0 [ 1440.010649][ T8657] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1440.016214][ T8657] ? mark_held_locks+0xa4/0xf0 [ 1440.020994][ T8657] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1440.026667][ T8657] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1440.032485][ T8657] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1440.038135][ T8657] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1440.043455][ T8657] ? trace_hardirqs_on+0x67/0x240 [ 1440.048502][ T8657] mem_cgroup_charge_skmem+0x15e/0x300 [ 1440.053976][ T8657] ? mem_cgroup_sk_free+0x90/0x90 [ 1440.059017][ T8657] ? __kasan_check_write+0x14/0x20 [ 1440.064146][ T8657] ? __alloc_skb+0x3d0/0x5e0 [ 1440.068755][ T8657] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1440.075021][ T8657] __sk_mem_raise_allocated+0x56e/0x1410 [ 1440.080677][ T8657] __sk_mem_schedule+0x6d/0xe0 [ 1440.085588][ T8657] tcp_sendmsg_locked+0x1733/0x33a0 [ 1440.090904][ T8657] ? tcp_sendpage+0x60/0x60 [ 1440.095511][ T8657] ? trace_hardirqs_on+0x67/0x240 [ 1440.100550][ T8657] ? lock_sock_nested+0x9a/0x120 [ 1440.105504][ T8657] ? __local_bh_enable_ip+0x15a/0x270 [ 1440.111084][ T8657] tcp_sendmsg+0x30/0x50 [ 1440.115351][ T8657] inet_sendmsg+0x9e/0xe0 [ 1440.119693][ T8657] ? inet_send_prepare+0x4e0/0x4e0 [ 1440.124814][ T8657] sock_sendmsg+0xd7/0x130 [ 1440.129243][ T8657] __sys_sendto+0x262/0x380 [ 1440.133767][ T8657] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1440.139177][ T8657] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1440.145430][ T8657] ? put_timespec64+0xda/0x140 [ 1440.150222][ T8657] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1440.155970][ T8657] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1440.161447][ T8657] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1440.166935][ T8657] ? do_syscall_64+0x26/0x790 [ 1440.171630][ T8657] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1440.177715][ T8657] __x64_sys_sendto+0xe1/0x1a0 [ 1440.182499][ T8657] do_syscall_64+0xfa/0x790 [ 1440.187148][ T8657] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1440.193053][ T8657] RIP: 0033:0x45a679 [ 1440.196962][ T8657] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1440.216579][ T8657] RSP: 002b:00007f138b242c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1440.225004][ T8657] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1440.232985][ T8657] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1440.240964][ T8657] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1440.248943][ T8657] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f138b2436d4 [ 1440.256926][ T8657] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff 11:57:32 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x1, 0x0) ioctl$TCSETSF(r1, 0x5404, &(0x7f00000000c0)={0x6ec1, 0x5, 0xc93f, 0x3, 0x11, 0x3f, 0x4e, 0xd4, 0x1, 0x22, 0x4, 0x6}) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg\x00', 0x400, 0x0) connect$nfc_raw(r2, &(0x7f0000000040)={0x27, 0x0, 0x1}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:32 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0) [ 1440.276686][ T8657] memory: usage 307196kB, limit 307200kB, failcnt 842 [ 1440.297413][ T8657] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1440.316562][ T8657] Memory cgroup stats for /syz1: [ 1440.316668][ T8657] anon 16384 [ 1440.316668][ T8657] file 94208 [ 1440.316668][ T8657] kernel_stack 73728 [ 1440.316668][ T8657] slab 4173824 [ 1440.316668][ T8657] sock 310018048 [ 1440.316668][ T8657] shmem 0 [ 1440.316668][ T8657] file_mapped 0 [ 1440.316668][ T8657] file_dirty 0 [ 1440.316668][ T8657] file_writeback 0 [ 1440.316668][ T8657] anon_thp 0 [ 1440.316668][ T8657] inactive_anon 135168 [ 1440.316668][ T8657] active_anon 20480 [ 1440.316668][ T8657] inactive_file 0 [ 1440.316668][ T8657] active_file 135168 [ 1440.316668][ T8657] unevictable 0 [ 1440.316668][ T8657] slab_reclaimable 1486848 [ 1440.316668][ T8657] slab_unreclaimable 2686976 11:57:32 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={0x0}, &(0x7f00000000c0)=0xc) prlimit64(r2, 0xf, &(0x7f0000000100)={0x9, 0x86a}, &(0x7f0000000140)) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r4, r4) sendto$inet(r4, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) setsockopt$IP_VS_SO_SET_EDITDEST(r4, 0x0, 0x489, &(0x7f0000000000)={{0x2b, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x2, 0x0, 'ovf\x00', 0x2, 0x5ed67f96}, {@multicast1, 0x4e24, 0x349c8a0dacc32242, 0x42, 0x9, 0x20}}, 0x44) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r3, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1440.316668][ T8657] pgfault 172458 [ 1440.316668][ T8657] pgmajfault 0 [ 1440.316668][ T8657] workingset_refault 0 [ 1440.316668][ T8657] workingset_activate 0 [ 1440.316668][ T8657] workingset_nodereclaim 0 [ 1440.316668][ T8657] pgrefill 474 [ 1440.316668][ T8657] pgscan 478 [ 1440.316668][ T8657] pgsteal 0 [ 1440.316668][ T8657] pgactivate 429 [ 1440.415787][ T8657] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=8650,uid=0 11:57:32 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0) [ 1440.439700][ T8657] Memory cgroup out of memory: Killed process 8650 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1440.478565][ T1100] oom_reaper: reaped process 8650 (syz-executor.1), now anon-rss:0kB, file-rss:34836kB, shmem-rss:0kB 11:57:32 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$ASHMEM_GET_SIZE(r2, 0x7704, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:32 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ff", 0x37, 0x400}], 0x4801, 0x0) [ 1440.537403][ T8789] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 1440.576863][ T8792] gfs2: not a GFS2 filesystem 11:57:33 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0xffffff4a, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000000)={'vcan0\x00', {0x2, 0x4e21, @local}}) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r2, r2) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:33 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0) 11:57:33 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe", 0x33, 0x400}], 0x4801, 0x0) [ 1440.829137][ T8917] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 1440.829171][ T8897] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1440.856712][ T8897] CPU: 1 PID: 8897 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1440.866211][ T8897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1440.876375][ T8897] Call Trace: [ 1440.879909][ T8897] dump_stack+0x197/0x210 [ 1440.884268][ T8897] dump_header+0x177/0x1152 [ 1440.888782][ T8897] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1440.894602][ T8897] ? ___ratelimit+0x2c8/0x595 [ 1440.899294][ T8897] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1440.905198][ T8897] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1440.910590][ T8897] ? trace_hardirqs_on+0x67/0x240 [ 1440.915637][ T8897] ? pagefault_out_of_memory+0x11c/0x11c [ 1440.921469][ T8897] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 11:57:33 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xdc030000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1440.927291][ T8897] ? ___ratelimit+0x60/0x595 [ 1440.931891][ T8897] ? do_raw_spin_unlock+0x178/0x270 [ 1440.937108][ T8897] oom_kill_process.cold+0x10/0x15 [ 1440.942241][ T8897] out_of_memory+0x334/0x13c0 [ 1440.946931][ T8897] ? find_held_lock+0x35/0x130 [ 1440.951713][ T8897] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1440.957535][ T8897] ? oom_killer_disable+0x280/0x280 [ 1440.962759][ T8897] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1440.968324][ T8897] ? memcg_oom_wake_function+0x700/0x700 [ 1440.973979][ T8897] ? do_raw_spin_unlock+0x178/0x270 [ 1440.979193][ T8897] ? _raw_spin_unlock+0x28/0x40 [ 1440.984065][ T8897] try_charge+0xf76/0x14d0 [ 1440.988513][ T8897] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1440.994076][ T8897] ? percpu_ref_tryget+0x102/0x230 [ 1440.999200][ T8897] ? rcu_read_lock_held+0x9c/0xb0 [ 1441.004321][ T8897] ? __kasan_check_read+0x11/0x20 [ 1441.009363][ T8897] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1441.014929][ T8897] mem_cgroup_try_charge+0x136/0x590 [ 1441.020223][ T8897] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1441.025957][ T8897] __handle_mm_fault+0x1f1f/0x3da0 [ 1441.031084][ T8897] ? vm_iomap_memory+0x1a0/0x1a0 [ 1441.036032][ T8897] ? handle_mm_fault+0x292/0xa50 [ 1441.040993][ T8897] ? handle_mm_fault+0x7a0/0xa50 [ 1441.045943][ T8897] ? __kasan_check_read+0x11/0x20 [ 1441.051026][ T8897] handle_mm_fault+0x3b2/0xa50 [ 1441.055894][ T8897] __do_page_fault+0x536/0xd80 [ 1441.060763][ T8897] do_page_fault+0x38/0x590 [ 1441.065308][ T8897] page_fault+0x39/0x40 [ 1441.069466][ T8897] RIP: 0033:0x4005c0 [ 1441.073373][ T8897] Code: 01 e9 cd 01 00 00 48 8b 44 24 10 48 0b 44 24 28 75 20 48 8b 14 24 48 8b 7c 24 20 be 02 00 00 00 e8 15 56 00 00 48 8b 4c 24 08 <66> 89 01 e9 a1 01 00 00 48 8b 44 24 08 48 8b 14 24 be 02 00 00 00 [ 1441.092988][ T8897] RSP: 002b:00007ffd5d6ab890 EFLAGS: 00010206 [ 1441.099060][ T8897] RAX: 0000000000000002 RBX: 000000000075c9a0 RCX: 0000000020e68000 [ 1441.107041][ T8897] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002 [ 1441.115159][ T8897] RBP: 00000000007603c0 R08: 0000000000000000 R09: 0000000000000000 11:57:33 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) getsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040), &(0x7f0000000080)=0x4) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000000), 0xffffffffffffff3c) ioctl$KVM_SET_XSAVE(r1, 0x5000aea5, &(0x7f00000002c0)={"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"}) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x6000ceff, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xe}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1441.123133][ T8897] R10: 00007ffd5d6ab9a0 R11: 0000000000000246 R12: 000000000075bf20 [ 1441.131111][ T8897] R13: 000000000015fc16 R14: 00000000007603c8 R15: 000000000075bf2c [ 1441.139733][ C1] net_ratelimit: 22 callbacks suppressed [ 1441.139742][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1441.151305][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1441.157197][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1441.163081][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1441.168900][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:57:33 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self//exe\x00', 0x3, 0x0) [ 1441.177616][ T8897] memory: usage 307200kB, limit 307200kB, failcnt 883 [ 1441.185014][ T8897] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1441.192558][ T8897] Memory cgroup stats for /syz1: [ 1441.192664][ T8897] anon 16384 [ 1441.192664][ T8897] file 94208 [ 1441.192664][ T8897] kernel_stack 73728 [ 1441.192664][ T8897] slab 4173824 [ 1441.192664][ T8897] sock 310018048 [ 1441.192664][ T8897] shmem 0 [ 1441.192664][ T8897] file_mapped 0 [ 1441.192664][ T8897] file_dirty 0 [ 1441.192664][ T8897] file_writeback 0 [ 1441.192664][ T8897] anon_thp 0 [ 1441.192664][ T8897] inactive_anon 135168 [ 1441.192664][ T8897] active_anon 20480 [ 1441.192664][ T8897] inactive_file 0 [ 1441.192664][ T8897] active_file 135168 [ 1441.192664][ T8897] unevictable 0 [ 1441.192664][ T8897] slab_reclaimable 1486848 [ 1441.192664][ T8897] slab_unreclaimable 2686976 [ 1441.192664][ T8897] pgfault 172524 [ 1441.192664][ T8897] pgmajfault 0 [ 1441.192664][ T8897] workingset_refault 0 [ 1441.192664][ T8897] workingset_activate 0 [ 1441.192664][ T8897] workingset_nodereclaim 0 [ 1441.192664][ T8897] pgrefill 474 [ 1441.192664][ T8897] pgscan 478 [ 1441.192664][ T8897] pgsteal 0 [ 1441.192664][ T8897] pgactivate 429 [ 1441.289649][ T8897] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=8897,uid=0 [ 1441.306299][ T8897] Memory cgroup out of memory: Killed process 8897 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 11:57:33 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1441.325162][ T1100] oom_reaper: reaped process 8897 (syz-executor.1), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB [ 1441.418643][ T8933] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1441.440479][ T8933] CPU: 0 PID: 8933 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1441.449982][ T8933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1441.449988][ T8933] Call Trace: [ 1441.450009][ T8933] dump_stack+0x197/0x210 [ 1441.450033][ T8933] dump_header+0x177/0x1152 [ 1441.472575][ T8933] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1441.478395][ T8933] ? ___ratelimit+0x2c8/0x595 [ 1441.483085][ T8933] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1441.485690][ T8938] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 1441.488956][ T8933] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1441.488975][ T8933] ? trace_hardirqs_on+0x67/0x240 [ 1441.488998][ T8933] ? pagefault_out_of_memory+0x11c/0x11c [ 1441.511511][ T8933] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1441.517322][ T8933] ? ___ratelimit+0x60/0x595 [ 1441.522000][ T8933] ? do_raw_spin_unlock+0x178/0x270 [ 1441.527209][ T8933] oom_kill_process.cold+0x10/0x15 [ 1441.532419][ T8933] out_of_memory+0x334/0x13c0 [ 1441.537110][ T8933] ? find_held_lock+0x35/0x130 [ 1441.541891][ T8933] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1441.547710][ T8933] ? oom_killer_disable+0x280/0x280 [ 1441.552934][ T8933] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1441.558497][ T8933] ? memcg_oom_wake_function+0x700/0x700 [ 1441.564152][ T8933] ? do_raw_spin_unlock+0x178/0x270 [ 1441.569355][ T8933] ? _raw_spin_unlock+0x28/0x40 [ 1441.574213][ T8933] try_charge+0xf76/0x14d0 [ 1441.578646][ T8933] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1441.584283][ T8933] ? percpu_ref_tryget+0x102/0x230 [ 1441.589410][ T8933] ? rcu_read_lock_held+0x9c/0xb0 [ 1441.594454][ T8933] ? __kasan_check_read+0x11/0x20 [ 1441.599497][ T8933] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1441.605056][ T8933] mem_cgroup_try_charge+0x136/0x590 [ 1441.610356][ T8933] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1441.616005][ T8933] __handle_mm_fault+0x1f1f/0x3da0 [ 1441.621153][ T8933] ? vm_iomap_memory+0x1a0/0x1a0 [ 1441.626102][ T8933] ? handle_mm_fault+0x292/0xa50 [ 1441.631077][ T8933] ? handle_mm_fault+0x7a0/0xa50 [ 1441.636040][ T8933] ? __kasan_check_read+0x11/0x20 [ 1441.641084][ T8933] handle_mm_fault+0x3b2/0xa50 [ 1441.645875][ T8933] __do_page_fault+0x536/0xd80 [ 1441.650676][ T8933] do_page_fault+0x38/0x590 [ 1441.655195][ T8933] page_fault+0x39/0x40 [ 1441.659366][ T8933] RIP: 0033:0x4005c0 11:57:34 executing program 4: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x8f0100) 11:57:34 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53", 0x39, 0x400}], 0x4801, 0x0) 11:57:34 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4, 0x2) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x20000, 0x0) setsockopt$inet6_tcp_TLS_RX(r1, 0x6, 0x2, &(0x7f00000000c0)=@ccm_128={{0x304}, "591e3fd81e9427b4", "42832d5a7c8b3dacbd9f3eae2cdfadfc", "2efa6212", "d539034ee259c1e1"}, 0x28) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(0xffffffffffffffff, 0xc0605345, &(0x7f0000000000)={0x2, 0x1, {0x3, 0x3, 0x533, 0x1, 0x1ff}}) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r1, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)={0xf4, r2, 0x4, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x18, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x570}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}, @TIPC_NLA_BEARER={0xbc, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x8, @dev={0xfe, 0x80, [], 0xe}, 0x2}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x80000001, @remote, 0x1000}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x400, @rand_addr="a45123326a3087d613e810c8292f561a", 0x3}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'bcsf0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @rand_addr=0x8d}}, {0x14, 0x2, @in={0x2, 0x4e24, @multicast1}}}}]}, @TIPC_NLA_NODE={0xc, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x81}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040100) [ 1441.663449][ T8933] Code: 01 e9 cd 01 00 00 48 8b 44 24 10 48 0b 44 24 28 75 20 48 8b 14 24 48 8b 7c 24 20 be 02 00 00 00 e8 15 56 00 00 48 8b 4c 24 08 <66> 89 01 e9 a1 01 00 00 48 8b 44 24 08 48 8b 14 24 be 02 00 00 00 [ 1441.683059][ T8933] RSP: 002b:00007ffd5d6ab890 EFLAGS: 00010206 [ 1441.689140][ T8933] RAX: 0000000000000002 RBX: 000000000075c9a0 RCX: 0000000020e68000 [ 1441.697316][ T8933] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002 [ 1441.705299][ T8933] RBP: 00000000007603c0 R08: 0000000000000000 R09: 0000000000000000 [ 1441.713404][ T8933] R10: 00007ffd5d6ab9a0 R11: 0000000000000246 R12: 000000000075bf20 [ 1441.721691][ T8933] R13: 000000000015fe6a R14: 00000000007603c8 R15: 000000000075bf2c [ 1441.730136][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1441.736279][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1441.744066][ T8933] memory: usage 307112kB, limit 307200kB, failcnt 905 [ 1441.750992][ T8933] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1441.757837][ T8933] Memory cgroup stats for /syz1: [ 1441.757942][ T8933] anon 16384 [ 1441.757942][ T8933] file 94208 [ 1441.757942][ T8933] kernel_stack 73728 [ 1441.757942][ T8933] slab 4173824 [ 1441.757942][ T8933] sock 310018048 [ 1441.757942][ T8933] shmem 0 [ 1441.757942][ T8933] file_mapped 0 [ 1441.757942][ T8933] file_dirty 0 [ 1441.757942][ T8933] file_writeback 0 [ 1441.757942][ T8933] anon_thp 0 [ 1441.757942][ T8933] inactive_anon 135168 [ 1441.757942][ T8933] active_anon 20480 [ 1441.757942][ T8933] inactive_file 0 [ 1441.757942][ T8933] active_file 135168 [ 1441.757942][ T8933] unevictable 0 [ 1441.757942][ T8933] slab_reclaimable 1486848 [ 1441.757942][ T8933] slab_unreclaimable 2686976 [ 1441.757942][ T8933] pgfault 172590 [ 1441.757942][ T8933] pgmajfault 0 [ 1441.757942][ T8933] workingset_refault 0 [ 1441.757942][ T8933] workingset_activate 0 [ 1441.757942][ T8933] workingset_nodereclaim 0 [ 1441.757942][ T8933] pgrefill 474 [ 1441.757942][ T8933] pgscan 478 [ 1441.757942][ T8933] pgsteal 0 [ 1441.757942][ T8933] pgactivate 429 [ 1441.763043][ T8933] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=8933,uid=0 [ 1441.878467][ T8933] Memory cgroup out of memory: Killed process 8933 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1441.897186][ T1100] oom_reaper: reaped process 8933 (syz-executor.1), now anon-rss:0kB, file-rss:34824kB, shmem-rss:0kB [ 1441.966321][ T8931] gfs2: not a GFS2 filesystem 11:57:34 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe", 0x33, 0x400}], 0x4801, 0x0) 11:57:34 executing program 4: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x8f0100) 11:57:34 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xe4010000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:34 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53", 0x39, 0x400}], 0x4801, 0x0) 11:57:34 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) setsockopt$RDS_GET_MR_FOR_DEST(r1, 0x114, 0x7, &(0x7f00000001c0)={@x25={0x9, @remote={[], 0x0}}, {&(0x7f0000000000)=""/218, 0xda}, &(0x7f0000000100), 0x28}, 0xa0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:34 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xfffffffffffff4ab, 0x2480) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r2}, 0x10) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) ioctl$FBIOBLANK(r4, 0x4611, 0x4) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r5, 0x1d, r2, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x284ba3c5cd55c1de}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="04100000640010002abd7000fcdbdf250000000000000000", @ANYRES32=r5, @ANYBLOB="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", @ANYRES32, @ANYBLOB="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"], 0x1004}, 0x1, 0x0, 0x0, 0x4000}, 0x24068800) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:34 executing program 4: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x8f0100) [ 1442.318618][ T9205] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:34 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$TIOCGICOUNT(r2, 0x545d, 0x0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:34 executing program 0: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-monitor\x00', 0x281080, 0x0) io_setup(0x2, &(0x7f0000000500)=0x0) io_cancel(r1, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x3, 0x2, r0, &(0x7f0000000540)="b1fd8563df8895c487e974a145654c301bcb66336e26e9fe7fe3e352b7bb33890c08b2d674623d4ce4f42a6d779b0249b46f1149e8db824b0e76ff95bd91c87335eeb0d8f335a4ed052e6b558a63a1470636871529ae53e79802cfd39d57c9323e3701f4c10028bc976521677ff4849c5992ee64b9070fc2f1df7b42c8969ac716e4b042097da795daa5d9bebcc12dcf8b16a08dae156185cd8f46fe8a2444e7431dcb48b1c4ef389e1b475abd7d84d5b1132370cea27dcf405f791831659b5d59ba32f12aff4d8190729fc84eb6029f48", 0xd1, 0x7fff, 0x0, 0x2}, &(0x7f0000000680)) ioctl$SIOCX25CALLACCPTAPPRV(r0, 0x89e8) r2 = syz_open_dev$vcsu(&(0x7f0000000080)='/dev/vcsu#\x00', 0x1, 0x101000) getsockopt$inet_mreqn(r2, 0x0, 0x24, &(0x7f00000000c0)={@multicast2, @local}, &(0x7f0000000100)=0xc) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) recvmsg$can_j1939(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000002c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff}}, 0x80, &(0x7f0000000240)=[{&(0x7f0000000340)=""/112, 0x70}], 0x1, &(0x7f00000003c0)=""/235, 0xeb}, 0x1) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='vevh0_tp\xa8\x80E\xd6\xd9\xf4~\x00', 0xfffffffffffffee8) r5 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000080), 0xa) renameat(r5, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00') r6 = socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, 0x0, 0xfffffe18) r7 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r7, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000000), &(0x7f0000000040)=0x4) r8 = creat(&(0x7f0000001cc0)='./file0\x00', 0x1) recvmsg$kcm(r8, &(0x7f0000001e00)={&(0x7f0000001d00)=@l2, 0x80, &(0x7f0000001d80), 0x0, &(0x7f0000001dc0)=""/47, 0x2f}, 0x120) sendto$inet(r7, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r7, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1442.456399][ T9209] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1442.488797][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1442.494642][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1442.500562][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1442.519585][ T9209] CPU: 0 PID: 9209 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1442.529183][ T9209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1442.539254][ T9209] Call Trace: [ 1442.542572][ T9209] dump_stack+0x197/0x210 [ 1442.546935][ T9209] dump_header+0x177/0x1152 [ 1442.551607][ T9209] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1442.557510][ T9209] ? ___ratelimit+0x2c8/0x595 [ 1442.562200][ T9209] ? _raw_spin_unlock_irqrestore+0x66/0xe0 11:57:34 executing program 4: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{0x0, 0x0, 0x400}], 0x4801, 0x0) [ 1442.568182][ T9209] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1442.573487][ T9209] ? trace_hardirqs_on+0x67/0x240 [ 1442.578530][ T9209] ? pagefault_out_of_memory+0x11c/0x11c [ 1442.584182][ T9209] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1442.590005][ T9209] ? ___ratelimit+0x60/0x595 [ 1442.594611][ T9209] ? do_raw_spin_unlock+0x178/0x270 [ 1442.599955][ T9209] oom_kill_process.cold+0x10/0x15 [ 1442.605107][ T9209] out_of_memory+0x334/0x13c0 [ 1442.605124][ T9209] ? find_held_lock+0x35/0x130 [ 1442.605146][ T9209] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1442.605164][ T9209] ? oom_killer_disable+0x280/0x280 [ 1442.605191][ T9209] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1442.605208][ T9209] ? memcg_oom_wake_function+0x700/0x700 [ 1442.605229][ T9209] ? do_raw_spin_unlock+0x178/0x270 [ 1442.605246][ T9209] ? _raw_spin_unlock+0x28/0x40 [ 1442.605266][ T9209] try_charge+0xf76/0x14d0 [ 1442.605292][ T9209] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1442.605311][ T9209] ? mark_held_locks+0xa4/0xf0 [ 1442.605325][ T9209] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1442.605341][ T9209] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1442.605354][ T9209] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1442.605368][ T9209] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1442.605387][ T9209] ? trace_hardirqs_on+0x67/0x240 [ 1442.605404][ T9209] mem_cgroup_charge_skmem+0x15e/0x300 [ 1442.605418][ T9209] ? mem_cgroup_sk_free+0x90/0x90 [ 1442.605434][ T9209] ? __kasan_check_write+0x14/0x20 [ 1442.605449][ T9209] ? __alloc_skb+0x3d0/0x5e0 [ 1442.605471][ T9209] __sk_mem_raise_allocated+0x56e/0x1410 [ 1442.605496][ T9209] __sk_mem_schedule+0x6d/0xe0 [ 1442.605517][ T9209] tcp_sendmsg_locked+0x1733/0x33a0 [ 1442.605553][ T9209] ? tcp_sendpage+0x60/0x60 [ 1442.605569][ T9209] ? trace_hardirqs_on+0x67/0x240 [ 1442.605584][ T9209] ? lock_sock_nested+0x9a/0x120 [ 1442.605601][ T9209] ? __local_bh_enable_ip+0x15a/0x270 [ 1442.605624][ T9209] tcp_sendmsg+0x30/0x50 [ 1442.605642][ T9209] inet_sendmsg+0x9e/0xe0 [ 1442.605657][ T9209] ? inet_send_prepare+0x4e0/0x4e0 [ 1442.605674][ T9209] sock_sendmsg+0xd7/0x130 11:57:35 executing program 4: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{0x0, 0x0, 0x400}], 0x4801, 0x0) [ 1442.605689][ T9209] __sys_sendto+0x262/0x380 [ 1442.605705][ T9209] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1442.605737][ T9209] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1442.605751][ T9209] ? put_timespec64+0xda/0x140 [ 1442.605765][ T9209] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1442.605791][ T9209] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1442.605806][ T9209] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1442.605820][ T9209] ? do_syscall_64+0x26/0x790 [ 1442.605835][ T9209] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1442.605852][ T9209] __x64_sys_sendto+0xe1/0x1a0 [ 1442.605870][ T9209] do_syscall_64+0xfa/0x790 [ 1442.605889][ T9209] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1442.605900][ T9209] RIP: 0033:0x45a679 [ 1442.605915][ T9209] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1442.605923][ T9209] RSP: 002b:00007f138b242c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1442.605938][ T9209] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1442.605947][ T9209] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000004 [ 1442.605956][ T9209] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1442.605965][ T9209] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f138b2436d4 [ 1442.605973][ T9209] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1442.617488][ T9209] memory: usage 307180kB, limit 307200kB, failcnt 923 [ 1442.914579][ T9209] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1442.922991][ T9209] Memory cgroup stats for /syz1: [ 1442.923092][ T9209] anon 16384 [ 1442.923092][ T9209] file 94208 [ 1442.923092][ T9209] kernel_stack 36864 [ 1442.923092][ T9209] slab 4173824 [ 1442.923092][ T9209] sock 310177792 [ 1442.923092][ T9209] shmem 0 [ 1442.923092][ T9209] file_mapped 0 [ 1442.923092][ T9209] file_dirty 0 [ 1442.923092][ T9209] file_writeback 0 [ 1442.923092][ T9209] anon_thp 0 [ 1442.923092][ T9209] inactive_anon 135168 [ 1442.923092][ T9209] active_anon 20480 [ 1442.923092][ T9209] inactive_file 0 [ 1442.923092][ T9209] active_file 135168 [ 1442.923092][ T9209] unevictable 0 [ 1442.923092][ T9209] slab_reclaimable 1486848 [ 1442.923092][ T9209] slab_unreclaimable 2686976 [ 1442.923092][ T9209] pgfault 172689 [ 1442.923092][ T9209] pgmajfault 0 [ 1442.923092][ T9209] workingset_refault 0 [ 1442.923092][ T9209] workingset_activate 0 [ 1442.923092][ T9209] workingset_nodereclaim 0 [ 1442.923092][ T9209] pgrefill 474 [ 1442.923092][ T9209] pgscan 478 [ 1442.923092][ T9209] pgsteal 0 [ 1442.923092][ T9209] pgactivate 429 [ 1443.021331][ T9209] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=9207,uid=0 [ 1443.043870][ T9209] Memory cgroup out of memory: Killed process 9207 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1443.062849][ T1100] oom_reaper: reaped process 9207 (syz-executor.1), now anon-rss:0kB, file-rss:34836kB, shmem-rss:0kB 11:57:35 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x2d7) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r1 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r1, 0x0, 0x6d, 0x40020f7a, &(0x7f0000000000)={0x2, 0x5e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bsg\x00', 0x733000, 0x0) ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000080)={0xf7ef4305711cb434, 0x0, &(0x7f0000ffd000/0x3000)=nil}) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) ioctl$PIO_FONTRESET(r4, 0x4b6d, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1443.107355][ T9222] gfs2: not a GFS2 filesystem [ 1443.116904][ T9224] EXT4-fs (loop2): VFS: Can't find ext4 filesystem 11:57:35 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ff", 0x37, 0x400}], 0x4801, 0x0) 11:57:35 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xec000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:35 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x0, 0x6) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x101200, 0x0) setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f0000000040)={0x5de, {{0xa, 0x4e22, 0x2, @empty, 0x4}}}, 0x88) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:35 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53", 0x39, 0x400}], 0x4801, 0x0) 11:57:35 executing program 4: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{0x0, 0x0, 0x400}], 0x4801, 0x0) 11:57:35 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0xfffffc4f, 0x80001, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300)='TIPC\x00') sendmsg$TIPC_CMD_GET_MAX_PORTS(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000580)={0x1c, r4, 0x10d, 0x0, 0x0, {{}, 0x0, 0x4}}, 0x1c}}, 0x0) sendmsg$TIPC_CMD_GET_MAX_PORTS(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2a10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r4, 0x18, 0x70bd25, 0x25dfdbfd, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x40000084) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1443.584474][ T9554] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1443.598625][ T9554] CPU: 1 PID: 9554 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1443.608305][ T9554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1443.608311][ T9554] Call Trace: [ 1443.608334][ T9554] dump_stack+0x197/0x210 [ 1443.608356][ T9554] dump_header+0x177/0x1152 [ 1443.630533][ T9554] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1443.636659][ T9554] ? ___ratelimit+0x2c8/0x595 [ 1443.641352][ T9554] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1443.647306][ T9554] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1443.652610][ T9554] ? trace_hardirqs_on+0x67/0x240 [ 1443.657774][ T9554] ? pagefault_out_of_memory+0x11c/0x11c [ 1443.663425][ T9554] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1443.669245][ T9554] ? ___ratelimit+0x60/0x595 [ 1443.673855][ T9554] ? do_raw_spin_unlock+0x178/0x270 [ 1443.679072][ T9554] oom_kill_process.cold+0x10/0x15 [ 1443.684302][ T9554] out_of_memory+0x334/0x13c0 [ 1443.688997][ T9554] ? find_held_lock+0x35/0x130 [ 1443.693781][ T9554] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1443.699772][ T9554] ? oom_killer_disable+0x280/0x280 [ 1443.704988][ T9554] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1443.710554][ T9554] ? memcg_oom_wake_function+0x700/0x700 [ 1443.716207][ T9554] ? do_raw_spin_unlock+0x178/0x270 [ 1443.721419][ T9554] ? _raw_spin_unlock+0x28/0x40 [ 1443.726288][ T9554] try_charge+0xf76/0x14d0 [ 1443.730785][ T9554] ? find_held_lock+0x35/0x130 [ 1443.735574][ T9554] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1443.741135][ T9554] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1443.746700][ T9554] ? find_held_lock+0x35/0x130 [ 1443.751573][ T9554] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1443.757146][ T9554] __memcg_kmem_charge_memcg+0x7c/0x130 [ 1443.762796][ T9554] ? memcg_kmem_put_cache+0x1a0/0x1a0 [ 1443.768170][ T9554] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1443.773716][ T9554] __memcg_kmem_charge+0x13a/0x3a0 [ 1443.778916][ T9554] copy_process+0x79d/0x7230 [ 1443.783550][ T9554] ? find_held_lock+0x35/0x130 [ 1443.788318][ T9554] ? __cleanup_sighand+0xc0/0xc0 [ 1443.793253][ T9554] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1443.799402][ T9554] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1443.805654][ T9554] ? debug_smp_processor_id+0x33/0x18a [ 1443.811116][ T9554] ? __kasan_check_read+0x11/0x20 [ 1443.816160][ T9554] _do_fork+0x146/0x1090 [ 1443.820415][ T9554] ? copy_init_mm+0x20/0x20 [ 1443.825051][ T9554] ? lock_downgrade+0x920/0x920 [ 1443.829908][ T9554] __x64_sys_clone+0x19a/0x260 [ 1443.834672][ T9554] ? __ia32_sys_vfork+0xd0/0xd0 [ 1443.839521][ T9554] ? __blkcg_punt_bio_submit+0x1e0/0x1e0 [ 1443.845155][ T9554] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1443.850655][ T9554] ? trace_hardirqs_on+0x67/0x240 [ 1443.855709][ T9554] do_syscall_64+0xfa/0x790 [ 1443.860384][ T9554] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1443.866399][ T9554] RIP: 0033:0x45d049 [ 1443.870428][ T9554] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75 [ 1443.890037][ T9554] RSP: 002b:00007ffd5d6ab798 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 1443.898442][ T9554] RAX: ffffffffffffffda RBX: 00007f138b222700 RCX: 000000000045d049 [ 1443.906407][ T9554] RDX: 00007f138b2229d0 RSI: 00007f138b221db0 RDI: 00000000003d0f00 [ 1443.914378][ T9554] RBP: 00007ffd5d6ab9b0 R08: 00007f138b222700 R09: 00007f138b222700 [ 1443.922526][ T9554] R10: 00007f138b2229d0 R11: 0000000000000202 R12: 0000000000000000 11:57:36 executing program 4: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) [ 1443.930495][ T9554] R13: 00007ffd5d6ab84f R14: 00007f138b2229c0 R15: 000000000075bfd4 [ 1443.952358][ T9554] memory: usage 307200kB, limit 307200kB, failcnt 943 [ 1443.961316][ T9554] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1443.969334][ T9554] Memory cgroup stats for /syz1: [ 1443.969451][ T9554] anon 16384 [ 1443.969451][ T9554] file 94208 [ 1443.969451][ T9554] kernel_stack 36864 11:57:36 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_init_net_socket$netrom(0x6, 0x5, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) r3 = openat$cgroup_ro(r2, &(0x7f0000000000)='pids.events\x00', 0x0, 0x0) ioctl$TCFLSH(r3, 0x540b, 0x0) [ 1443.969451][ T9554] slab 4173824 [ 1443.969451][ T9554] sock 310177792 [ 1443.969451][ T9554] shmem 0 [ 1443.969451][ T9554] file_mapped 0 [ 1443.969451][ T9554] file_dirty 0 [ 1443.969451][ T9554] file_writeback 0 [ 1443.969451][ T9554] anon_thp 0 [ 1443.969451][ T9554] inactive_anon 135168 [ 1443.969451][ T9554] active_anon 20480 [ 1443.969451][ T9554] inactive_file 0 [ 1443.969451][ T9554] active_file 135168 [ 1443.969451][ T9554] unevictable 0 [ 1443.969451][ T9554] slab_reclaimable 1486848 [ 1443.969451][ T9554] slab_unreclaimable 2686976 [ 1443.969451][ T9554] pgfault 172755 [ 1443.969451][ T9554] pgmajfault 0 [ 1443.969451][ T9554] workingset_refault 0 [ 1443.969451][ T9554] workingset_activate 0 [ 1443.969451][ T9554] workingset_nodereclaim 0 [ 1443.969451][ T9554] pgrefill 474 [ 1443.969451][ T9554] pgscan 478 [ 1443.969451][ T9554] pgsteal 0 [ 1443.969451][ T9554] pgactivate 429 [ 1444.069587][ T9555] gfs2: not a GFS2 filesystem 11:57:36 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ff", 0x37, 0x400}], 0x4801, 0x0) [ 1444.076239][ T9554] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=9554,uid=0 [ 1444.099051][ T9554] Memory cgroup out of memory: Killed process 9554 (syz-executor.1) total-vm:72712kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000 11:57:36 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x4, &(0x7f0000000000)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1444.231549][ T9678] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 1444.250023][ T1100] oom_reaper: reaped process 9554 (syz-executor.1), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB 11:57:36 executing program 4: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) 11:57:36 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a}], 0x4801, 0x0) 11:57:36 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) getsockopt$inet6_dccp_buf(r2, 0x21, 0xc0, &(0x7f0000000000)=""/86, &(0x7f0000000080)=0x56) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r3 = syz_open_dev$vcsu(&(0x7f00000000c0)='/dev/vcsu#\x00', 0x4, 0x40800) sendto$inet(r3, 0x0, 0x2d3, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @multicast1}, 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) r6 = socket$inet(0x2, 0x4000000000000001, 0x3f) bind$inet(r6, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r6, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r6, r6) sendto$inet(r6, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) bind$inet(r6, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r5, r5) sendto$inet(r5, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) write$binfmt_aout(r5, &(0x7f0000001540)=ANY=[@ANYBLOB="cc001f1f9802000092020000ac0100007d010000ff0300000000000000000000be8e9cc2c832f4637211ea481dd8aaa4d891233b25202b7f9a28e863d4b568c641ae6589df1da2aa37eead62c13bdd4565fae9dceb596d38601ba2a983ed188e8f7b75f8f96fe5e9a4ac75147965e90784c2f5fb682b9e0f5d9cc02be0e782e1ddbd69077a629a4b86a6322d4d898eecba99627540c1a731edac5e03d9509c37833aa5fe12f9d84c2134df878c69703c9220dafbca03575aba43c8ac16ac04401fff12a5930201a787ea2f7bc3186d2a0be45084543611a82ae8827fb4984f28f71a22fb3bc3bbd7362c4f9a62517e5a4c8d049f5415aac417c61450d1b03737bbaa184bec4e390874a0f9555231b0218e341073fa02c31d78fc64befab068dbb93419878ce3dc726bef26e680f89c2f766fccaf6064e1653c2678a932e4f01c42ea2243d41f6300dacf773c1e040c319cb88ac58097ba90e9a061995562c6e6011384f468d2b8c48b9f24bc7a3baf857f39e4a1f52b6a2604042ac438eb6d077912a092c3a904db873395e7f479920f50292a3c438d1eb1c6f3340aca84bd70812d4cdcba7106ced91b23073d52770d658c5dd7e77add835a56162d24da91c384a7560c54927668630aa4a31ed53e28f42baa779a97999e41469901659e1d2cda49bb24c60c592fd23f8598c54563a25318d68037eb3afe869d3353ced485a8d72c8abafd84c90073ac07712a22ae75206f74fef1cfbf83f1ebfd0810a793570b8fbcb053a95b74cc4dfc4558f6c852b615cb7024d4309fc50d9cf95b87a84714fa0dfefb871bd4cc501d86f2ced2018989eccac7c43eb6ae8f280f9ae6725e40e9a058e1de15848a095e3f9a6341a16f520422995977e02fa39d6b85d7b76d131cfcacd3ea8fdc38ee4d489ce28f45989c4ec5b3ee289e0470976a9c5c40d3beb5b3095ae63856a07356f546a7c9236a6b09383627aa67ea7cc5a7f456e00689da845646cc638130cf6b90930ee115867aa2bf38f3a1d4052336848ba0b61be55d3224da35e220447474e68af38bd8c63dbefbe56e3d47dc30435ee9617de7ddf917e87a10375c326524bfbd3f1017c8b22854be54df83433c581e1d2e62cd7533140800f277466d2066c1207ed19e3c5c1311e66552855c4ecdb0dda71ebf6cd8110634e0ab66cb14a8fe4bd9e1f5d519996214a54c329be1a0ee3629068eaba2d4d91801cdb356a8e57a414b080092515c9a5ba5fb8d80efc858ef023ffbd688da910676cce2d0558a1d6321072edde0cb5c11b54fcc03b0987f2c8dffd230bbdf23e416ee026d7cadb56ea98ddc8b497a33a0157721f7010dab580c8eca36ee60720befeb35060e383fe2a3db60406d7c7a82b0f368865b94a37b00155a28260c65683cce29079a0b2afe1db007450f9a76b2f8e6a913787f3f6b48630c051319786dec3d1762003781b1606fe2733ad1ff62589492b24993499a4e0395bf1fbf7de734bd428ee7df76f45c5656f81faaafa09a90b88d0722cc5f3daaace7f880da1d3f9424c5e2e792f6404972d8435948f16ede3104ff6777d2d181b9215fd496e6dda5bfdea252ca11e59f26fd20a0c5a9d885be9e54b0f521d5a314904e01b044b619c8da7d34204eb755f511a1f9ff65361591f06c4fe6a50c691c28eadec6e42c891c1c21378a4eff8f895b1d85a7e723cd9d92968b479ce108cec52ba25c12b599022b5541a70e99aefe1d3b11facb82cf1ad9a47abd169a11ef7c3c1a5065118d2b56d3a331860a45aef777ebbf5491dbd39a9f05a7873ef16fbdf919f45cea4f871d696ec5e7346bce780f4b50a01753289327a72cd89267f8bdf89117ccc6dac4621dd926577b64890f61def7708908c366c46c6b17ab783cb42b4485e483bad52d02eeacc0ea1570e9a6f466495b8671550941d1f47327276cf02bd4594a38000029bf24b6e3e94a6b4ab392ebc660e9fb37c170f973b3145a1229a1b7201ff3df0515d073f373e070a360e715963c7517a72e12c86d77c2ce22a82ddf119de1a5986a9bbf87013e35c14cf26c305e24fdbd106db4548d3b2b2ff69ea8b5d623457710cd93a4e29a1f22c6fd010d431af1f3ad30aa4d948587f7cc177097659f7063c1dedf1dc8efcf48982b05b5dd91dbef53d0be85dc7569d79ad0d64293494f47547451141b7db9382dba09d40c46892b14c7d275ffa2bdd881563f8b4c5a36cb6689cfb4f2a765397213c8bf2e6020f6c154266dd68db01cc647343fb2105d71ee6b88c7b2be4c4ea2f77dcb2dcd4eac4159f524f71b84031f61528672e9718c8af23163569b613def8e2cedbc7d5b2a725973b978a86a2ac79ac6a909efd1dbadb5cd4fcaab3405c1c93b48d9acfa01d1740e1e9f5bd8f17d7d27aaba0257fe3a245312df5005286b9a9cbe43a2e00d0f3d6d4140239d095833d011f03dc750882152537b8b5bccf59f762d737578f56d32a236b872e921d20ab31ad51e972614fce80043a52780f6324e8629550cc04967ea4839f0d9ae0f7c578fd1f9b2127aa2cf4d0e3892ef7e82f4a3e026dfdb8ef15559e3e0a85b943f70a3d6379bcad3236081741cddced34cd90fa625feb0897d23e1a36fe38089d82556ea8534c427475f6b1bcd049cdb1bd80f124caf631976aa7a366fb76542ffe1cc524a36bd71298e61f26f2acf53bf79a6ae051018b86384985b1393f255bb5506b11e9b3450cad4d842880948223723cf6c70b33d46c560468c7ed7798aa64cf51d06afe8ae915f248f8901cd57c6d8ad1b100b98cf2e977b394c4031fcc4c367d0dacb9f31c521568bac6e509c43fa31faec7488c181950567d59e856eadc09520537a8dc6e026161629154908e8a0f090ecc6c638dc6960c211c8cfadd644ec68ceee775c09eeec866fb226a07bacb6b4cfb7c2802ef65d883a68898e2737cac7259defa8219537f402026f58954db3bdc72a49fb7d71f506fb14aae643e43eae1789c08f699becd073b77cab8e8d02e7c6758894e6cd3ce185a49f6cb25d6c58619404d76b8ac5f7efa7e41f4cd3ee13db764b84449e8d04af48ab26934bc600e5d177a288177740c14c06061d7b8467d2155c897637ab65f3a4d08f5677d6dfcae2a2a9cf8c1304d8cc7a7008727ac36cb2f041a4b55640138c202eaa4d4b968d9c958b0191ed169b892fc029b17fe42b053df9a57e9afef5d736eb63ed0320ccc7223e8fd15fb19cdb604ea9f599421b554c02d5ffc571ef1a93c72f925bf2e8eb00ea8cee49b0c83a33694995878e49dbfdb4c94b2f1024790a5a708d9cf47c203fe4d38271e8e4065d290554ab3f3f1b0b224b584eaadd23d5790cb023d155ed3e45e37db59b2e7b0bdd35ca0d94bbd8d32779b2d4ddaa21c7f9031e5ffc99d9ef2a6434dc747474222160553e92383c22f52dc46ea6a04b3b248fefa925afa6496fe5c612aae27e1bf8ffa2f2ecfe965bf4c66abae62441d5de2b7466099c963da4e9e252786a8f80eb686689238e2dfc18534ac382bc3e0f7952d5c4c4fa292419cf05a7c66ae2e0e0a850fc51a7a655f80f9aed01aa8edeeb1530639e80605507ce7ec122083efa6e0f325a74d30a0ee79ed55dde891565069b9f139ff10304dd62f98e4f73bc725aa0ddae6bfd80bb2e82072895f1f936f82db0656259e80dc3d61fd7dc7e74154e54a288896904e2c079d9ea478669750be99b75febacde1ec48616e78c0272cbd19fc4010971b261baf4440c663fd29e1212132db823234dd166638438fd0c242a6bad32eb35c5a1e21c1bd16dcfd0349592b1d633028e5448a65b970a90fa3d17143ac704ff8a1c7e1dbcd0ebe8c645fdc3e510a75bf25c48fb33b2e9ea0ed646c2e5b2c7f252a237125c3d81d09fb3249d4bfeab7920567a31941b32aa15d5b4c40e8a03b45ae68b85d09570e1609732c6e51e1221e48de1086daae4db094fc679a9836b4dceacc3f79e4b4c7d8ce50e5e512245676b3de74b1da35ab03856e7815628051e245a893b839a2dc94eb1da7eb743b08930bbdc0701ec31e21ba5faaad95916897e2b341701ecdb3b460793c58c254508c437191d88b8623e6b81e0182dd915306d0b6eb0ed35d9253ef5c5075ef28fb9805b20af8f5093cc054474c8d6c150097677276a9b07bb77fe7fe2846765cbc9a2b32cf43ae4f4ff2402da093aaa11d3a27089e046b5c7e3b4a309cd90f97947e88b0819415025e8e3e84459676fb89c96a9929ead20ce249e79f766490e54f659af083cb2af5066e508f584d9a384d402b5c888766f727da87322c11c0e2fe66c6ed4af565974684b5932fcb07ebd52a0e08151e5a4f787d130f49cb6dfeef238fbf70cda434ccf180d3ae92f24e4348c436b76e09a152528e072837349773ba7dd7433dda5ca976fc14ad3b7fa485bc74936ea43c1be15e8c1b57ad71c851fd0ccf900e4c15f1bd9fb0310393260bad226fab96cc955e5f73e146efb7159c88ed53be1421cf9457e432b07a5d461a05ad8f3afee0eca9b7c687ba328de60237909423dc0c0a64c543bd1e0022f4d1d2e87fd457cc185431b3b9078bda310b924510a31402262a602792920b51cfbec13ca2acc2a4ad1d85aaeec9855ddaf9b3ab8cbb5cc6553e1727fd05afa81fb611a840aa56fade51608d715115647635508a8488a5eb961f0d1e1298e58269f2a1373730f766b590e74b966efcd9c6783a89eb476628d00f9d42a3c284f90b9fdd88fbedcbfa235af715f2f9726a0f583f7b0d0a7659c03357b932216aeb5e39d116ca182cdd15a257dfb572b7928dba8e2fa102bf855f3a2a3c9ca1325bbf78e5f9736a284400f2db8ade2915b75affdafe0754beba230c113de8932024621921f76669219573b2d90078ebe91c39da0523557bae3ae980b57487f7d8f5ac07bd973a42b96d74a14678842d3ccdd6a9314b24d897ab1da497a244929212fd18c3b1469281a5562dfa1612a16568e423ae1d8c179ceaa0452338b4e6be8e5e72602522366bd77dd525154f447b0c65b9e144788359a649d1928e2e04fcb782b15d592988f3026ad26a3dbbeba77c17e87b51b9cc46fac544cf6c902de5f7638fe3d4b3d519720b1af63cb9075269487139cd0bc718c10092aa866d3f93aab750839c0395716d819bbb8ae644e14de9c4ffbf60c07dc4249a58eb0e8079a368b7c89745bf5c0ffddd4d3985670f314be208a569410e5c11f173ae38701b64fba2c310b5765e5f0d759a196620c7b8981c96f93aa3447e3fe9afeeaeb36a8ea1f54f9991f9b8ca1c470dd0cb3469a046a9148d27498ecf5e3241f7aa88c063d983cba1f7bba52d0a7c1879e93449a7ae860617705bb4503aae112dc68dfeab83ead03d578bf88993570cabf2e674a4919602f549fe42763c4318e3344f6670de37a26119cf5072fa7a844b95b9df2dc215f66dfc3e8b192ccaf9fdcfc63d773bd8241dfe7b71f3174aeebd36168bc0f0163b6f8f0f9b6eb12241f44269af711f591a7a7862c1f613611f1bd783a40ae008da0824a981088d8eb9ce22ccc64a3f8bfc37f0582633550ce6ef590a5a3f1ca241b4deabe82d1e9b20f0fc09601bd0286a0493353b31b6080765a8abdb2bbd3b1dd11b2bd01f93652fcd3ad10b26f16a32601267815a2096c964606646f8483025f09b517f17054684aa72fe8f28192ca288f74f8e8ec13abc2020c0401b62b382d3f6b676c8391bba000c0958abc0cf7d6c8191f0280313af8a18b0a93886880d26b806c6e10948cc93a3cbdb20ab4f2d3d38026bb71883bc9d10711d3c191083c639b07b6d16921dc9de27cbdc4685c73dff7de4e24627e00c9e352e219ae900"/4896], 0x1320) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0xfffffffffffffeda, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r7 = dup2(r4, r4) write$UHID_GET_REPORT_REPLY(r7, &(0x7f0000000080), 0xa) sendmsg$tipc(r7, &(0x7f0000000240)={&(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x0, 0x1}, 0x1}}, 0x10, &(0x7f0000001400)=[{&(0x7f00000001c0)="48325a17ca821d38dc80420ba0ec470561c77493acb9e1774bf98177dd7549d731999e1a076c367329fc4576668d62a18903a3cccc36cd6218cecba61b5ed41ae24b70ba46c02a", 0x47}, {&(0x7f00000002c0)="9bfa7b8ee9b5abc4c349a7fee2502a6a0159c3383c88e408e9ccb1279b34efd7242f7700937c3db8e33cfcfbbb0b1bd2b3677064a93390beaa780eff0fba104124f89391a1fb8b6770b5da1ec6b037d2fd1ed5118332d1174fbc1126c75a7e45c641777edc27c9df20d2f06f7dc52842d56b5e4e95", 0x75}, {&(0x7f0000000140)="49ba2ce2f8db2c905589ea81ee11bfd944d30ed4cb085d91a51b692de3da3420c08cb496c792554f836a66c8d6", 0x2d}, {&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000001340)="5e92401086758a3f5bbbc394349ceb585b915406be9b8afd27bb22f50eeef075ede4754d21fe09d34e317c6403428a11a0ea4b061e14e1be5cf86b240393f75778a1e8037026c6f41c4d4178e2f4e9a6b4c38eace12f4b908a28a5dcab26747b99d8db2025ceaf5cc6dd3d15be7ecf77d41072c5493f0b73e6fb1826212189c41a1b2996729acb45ce463179e422d33553969c", 0x93}], 0x5, &(0x7f0000001480)="d676cd1c8589a8a10c325ed334cfbf710381205ea576b50627a30489c2c2f4c9260f68ecb1abcc2e64314c6f2e545e4703a2d13be3e1a253be493682f9b89d0fc99039615a36c83f0e61dd03ac2643ecf4a9f65a320c2c434cad3520ee7c191404725160fe13d58a7aaf73c875345d986df6c04674dfd2d1cd1221e2b990f1c08747b0887e749905941907e077f635a73bc3335bfa03ebbc82c413d963d727cfaf3cc1d438ff6ff5519a37", 0xab, 0x10048800}, 0x4040000) 11:57:36 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xee030000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:36 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ff", 0x37, 0x400}], 0x4801, 0x0) 11:57:36 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x2, 0x0) ioctl$SNDRV_PCM_IOCTL_XRUN(r1, 0x4148, 0x0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1444.619657][ T9903] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 11:57:37 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x103880, 0x0) ioctl$KDDELIO(r1, 0x4b35, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f00000002c0)="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", 0xffffff23, 0xc0, 0x0, 0x142800) [ 1444.732450][ T9903] CPU: 0 PID: 9903 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1444.742085][ T9903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1444.752314][ T9903] Call Trace: [ 1444.755626][ T9903] dump_stack+0x197/0x210 [ 1444.759970][ T9903] dump_header+0x177/0x1152 [ 1444.764477][ T9903] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1444.770504][ T9903] ? ___ratelimit+0x2c8/0x595 [ 1444.775234][ T9903] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1444.781049][ T9903] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1444.786349][ T9903] ? trace_hardirqs_on+0x67/0x240 [ 1444.791386][ T9903] ? pagefault_out_of_memory+0x11c/0x11c [ 1444.797019][ T9903] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1444.803120][ T9903] ? ___ratelimit+0x60/0x595 [ 1444.807712][ T9903] ? do_raw_spin_unlock+0x178/0x270 [ 1444.812928][ T9903] oom_kill_process.cold+0x10/0x15 [ 1444.818141][ T9903] out_of_memory+0x334/0x13c0 [ 1444.822817][ T9903] ? find_held_lock+0x35/0x130 [ 1444.827580][ T9903] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1444.833471][ T9903] ? oom_killer_disable+0x280/0x280 [ 1444.838684][ T9903] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1444.844384][ T9903] ? memcg_oom_wake_function+0x700/0x700 [ 1444.850164][ T9903] ? do_raw_spin_unlock+0x178/0x270 [ 1444.855442][ T9903] ? _raw_spin_unlock+0x28/0x40 [ 1444.860291][ T9903] try_charge+0xf76/0x14d0 [ 1444.864715][ T9903] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1444.870268][ T9903] ? percpu_ref_tryget+0x102/0x230 [ 1444.875382][ T9903] ? rcu_read_lock_held+0x9c/0xb0 [ 1444.880588][ T9903] ? __kasan_check_read+0x11/0x20 [ 1444.885623][ T9903] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1444.891176][ T9903] mem_cgroup_try_charge+0x136/0x590 [ 1444.896471][ T9903] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1444.902100][ T9903] __handle_mm_fault+0x1f1f/0x3da0 [ 1444.907308][ T9903] ? vm_iomap_memory+0x1a0/0x1a0 [ 1444.912250][ T9903] ? handle_mm_fault+0x292/0xa50 [ 1444.917262][ T9903] ? handle_mm_fault+0x7a0/0xa50 [ 1444.922386][ T9903] ? __kasan_check_read+0x11/0x20 [ 1444.927577][ T9903] handle_mm_fault+0x3b2/0xa50 [ 1444.932362][ T9903] __do_page_fault+0x536/0xd80 [ 1444.937139][ T9903] do_page_fault+0x38/0x590 [ 1444.941650][ T9903] page_fault+0x39/0x40 [ 1444.945945][ T9903] RIP: 0033:0x4005c0 [ 1444.949854][ T9903] Code: 01 e9 cd 01 00 00 48 8b 44 24 10 48 0b 44 24 28 75 20 48 8b 14 24 48 8b 7c 24 20 be 02 00 00 00 e8 15 56 00 00 48 8b 4c 24 08 <66> 89 01 e9 a1 01 00 00 48 8b 44 24 08 48 8b 14 24 be 02 00 00 00 [ 1444.969578][ T9903] RSP: 002b:00007ffd5d6ab890 EFLAGS: 00010206 [ 1444.975637][ T9903] RAX: 0000000000000002 RBX: 000000000075c9a0 RCX: 0000000020000280 [ 1444.983599][ T9903] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002 [ 1444.991563][ T9903] RBP: 0000000000760330 R08: 0000000000000000 R09: 0000000000000000 [ 1444.999644][ T9903] R10: 00007ffd5d6ab9a0 R11: 0000000000000246 R12: 000000000075bf20 [ 1445.007614][ T9903] R13: 0000000000160ab5 R14: 0000000000760338 R15: 000000000075bf2c [ 1445.019940][ T9903] memory: usage 307200kB, limit 307200kB, failcnt 975 [ 1445.081983][ T9903] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 11:57:37 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a}], 0x4801, 0x0) [ 1445.123760][T10018] gfs2: not a GFS2 filesystem 11:57:37 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0xfffffde8) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x8001, 0x0) timerfd_gettime(r2, &(0x7f0000000080)) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000000c0)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000140)=0x0) getpgrp(r3) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000000)=0x2, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r4 = socket$inet(0x2, 0x44a7921f0d791d2a, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r5 = syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0xfffffffffffffc00, 0x84000) read$alg(r5, &(0x7f00000001c0)=""/101, 0x65) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r4, r4) sendto$inet(r4, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) shutdown(r4, 0x1) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:37 executing program 4: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x4801, 0x0) [ 1445.179349][ T9903] Memory cgroup stats for /syz1: [ 1445.179461][ T9903] anon 16384 [ 1445.179461][ T9903] file 94208 [ 1445.179461][ T9903] kernel_stack 36864 [ 1445.179461][ T9903] slab 4173824 [ 1445.179461][ T9903] sock 310177792 [ 1445.179461][ T9903] shmem 0 [ 1445.179461][ T9903] file_mapped 0 [ 1445.179461][ T9903] file_dirty 0 [ 1445.179461][ T9903] file_writeback 0 [ 1445.179461][ T9903] anon_thp 0 [ 1445.179461][ T9903] inactive_anon 135168 [ 1445.179461][ T9903] active_anon 20480 [ 1445.179461][ T9903] inactive_file 0 [ 1445.179461][ T9903] active_file 135168 [ 1445.179461][ T9903] unevictable 0 [ 1445.179461][ T9903] slab_reclaimable 1486848 [ 1445.179461][ T9903] slab_unreclaimable 2686976 [ 1445.179461][ T9903] pgfault 172821 [ 1445.179461][ T9903] pgmajfault 0 [ 1445.179461][ T9903] workingset_refault 0 [ 1445.179461][ T9903] workingset_activate 0 [ 1445.179461][ T9903] workingset_nodereclaim 0 [ 1445.179461][ T9903] pgrefill 474 [ 1445.179461][ T9903] pgscan 478 [ 1445.179461][ T9903] pgsteal 0 [ 1445.179461][ T9903] pgactivate 429 11:57:37 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53", 0x39, 0x400}], 0x4801, 0x0) [ 1445.367919][ T9903] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=9903,uid=0 [ 1445.403405][ T9903] Memory cgroup out of memory: Killed process 9903 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000 11:57:37 executing program 4: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x6e0b00) [ 1445.489592][ T1100] oom_reaper: reaped process 9903 (syz-executor.1), now anon-rss:0kB, file-rss:34824kB, shmem-rss:0kB 11:57:37 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x232904, 0x0) accept4$inet(r0, &(0x7f00000000c0), &(0x7f0000000100)=0x10, 0x800) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0xffffffaa, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0xfffffe28) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x119000, 0x0) write$FUSE_WRITE(r4, &(0x7f00000001c0)={0x18, 0x0, 0x1, {0x64074a69}}, 0xffffffffffffff31) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) write$RDMA_USER_CM_CMD_QUERY_ROUTE(r3, &(0x7f0000000000)={0x5, 0x10, 0xfa00, {&(0x7f00000002c0), 0xffffffffffffffff, 0x1}}, 0x18) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:37 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xf0030000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1445.548808][T10045] EXT4-fs (loop2): VFS: Can't find ext4 filesystem 11:57:37 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) fchdir(0xffffffffffffffff) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) ioctl$sock_SIOCDELDLCI(0xffffffffffffffff, 0x8981, &(0x7f0000000000)={'ipddp0\x00', 0xf}) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1445.673128][T10260] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1445.684695][T10260] CPU: 1 PID: 10260 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1445.694264][T10260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1445.704314][T10260] Call Trace: [ 1445.708042][T10260] dump_stack+0x197/0x210 [ 1445.712462][T10260] dump_header+0x177/0x1152 [ 1445.716964][T10260] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1445.722782][T10260] ? ___ratelimit+0x2c8/0x595 [ 1445.727591][T10260] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1445.733527][T10260] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1445.738837][T10260] ? trace_hardirqs_on+0x67/0x240 [ 1445.743959][T10260] ? pagefault_out_of_memory+0x11c/0x11c [ 1445.749597][T10260] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1445.755418][T10260] ? ___ratelimit+0x60/0x595 [ 1445.760119][T10260] ? do_raw_spin_unlock+0x178/0x270 [ 1445.765336][T10260] oom_kill_process.cold+0x10/0x15 [ 1445.770621][T10260] out_of_memory+0x334/0x13c0 [ 1445.775302][T10260] ? find_held_lock+0x35/0x130 [ 1445.780072][T10260] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1445.785881][T10260] ? oom_killer_disable+0x280/0x280 [ 1445.791236][T10260] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1445.797063][T10260] ? memcg_oom_wake_function+0x700/0x700 [ 1445.802735][T10260] ? do_raw_spin_unlock+0x178/0x270 [ 1445.808029][T10260] ? _raw_spin_unlock+0x28/0x40 [ 1445.812889][T10260] try_charge+0xf76/0x14d0 [ 1445.817531][T10260] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1445.823180][T10260] ? percpu_ref_tryget+0x102/0x230 [ 1445.828511][T10260] ? rcu_read_lock_held+0x9c/0xb0 [ 1445.833542][T10260] ? __kasan_check_read+0x11/0x20 [ 1445.838708][T10260] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1445.844269][T10260] mem_cgroup_try_charge+0x136/0x590 [ 1445.849573][T10260] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1445.855523][T10260] wp_page_copy+0x407/0x1560 [ 1445.860119][T10260] ? find_held_lock+0x35/0x130 [ 1445.865080][T10260] ? follow_pfn+0x2a0/0x2a0 [ 1445.869592][T10260] ? lock_downgrade+0x920/0x920 [ 1445.874515][T10260] ? swp_swapcount+0x540/0x540 [ 1445.879301][T10260] ? do_raw_spin_unlock+0x178/0x270 [ 1445.884680][T10260] do_wp_page+0x543/0x1540 [ 1445.889239][T10260] ? finish_mkwrite_fault+0x5c0/0x5c0 [ 1445.894635][T10260] __handle_mm_fault+0x327b/0x3da0 [ 1445.899769][T10260] ? vm_iomap_memory+0x1a0/0x1a0 [ 1445.904838][T10260] ? handle_mm_fault+0x292/0xa50 [ 1445.909795][T10260] ? handle_mm_fault+0x7a0/0xa50 [ 1445.914745][T10260] ? __kasan_check_read+0x11/0x20 [ 1445.919878][T10260] handle_mm_fault+0x3b2/0xa50 [ 1445.924748][T10260] __do_page_fault+0x536/0xd80 [ 1445.929528][T10260] do_page_fault+0x38/0x590 [ 1445.934035][T10260] page_fault+0x39/0x40 [ 1445.938184][T10260] RIP: 0033:0x40d0d8 [ 1445.942078][T10260] Code: d9 48 8b 47 78 48 83 f8 ff 0f 84 0b 01 00 00 48 8b 73 18 48 83 fe ff 74 29 48 81 fe e7 03 00 00 0f 87 67 01 00 00 48 c1 e6 04 86 80 80 75 00 01 48 89 86 88 80 75 00 66 2e 0f 1f 84 00 00 00 [ 1445.961690][T10260] RSP: 002b:00007ffd5d6ab8a0 EFLAGS: 00010246 [ 1445.967922][T10260] RAX: 0000000000000003 RBX: 000000000075bf20 RCX: 0000000000000001 [ 1445.975903][T10260] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 000000000075bf20 [ 1445.983958][T10260] RBP: 000000000000002d R08: ffffffffffffffff R09: ffffffffffffffff [ 1445.992023][T10260] R10: 00007ffd5d6ab9a0 R11: 0000000000000246 R12: 000000000075bf20 [ 1446.000002][T10260] R13: 0000000000160f0b R14: 0000000000160f38 R15: 000000000075bf2c [ 1446.013296][T10260] memory: usage 307200kB, limit 307200kB, failcnt 1018 [ 1446.020357][T10260] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1446.020363][T10260] Memory cgroup stats for /syz1: [ 1446.020479][T10260] anon 16384 [ 1446.020479][T10260] file 94208 [ 1446.020479][T10260] kernel_stack 36864 [ 1446.020479][T10260] slab 4173824 [ 1446.020479][T10260] sock 310177792 [ 1446.020479][T10260] shmem 0 [ 1446.020479][T10260] file_mapped 0 [ 1446.020479][T10260] file_dirty 0 [ 1446.020479][T10260] file_writeback 0 [ 1446.020479][T10260] anon_thp 0 [ 1446.020479][T10260] inactive_anon 135168 [ 1446.020479][T10260] active_anon 20480 [ 1446.020479][T10260] inactive_file 0 [ 1446.020479][T10260] active_file 135168 [ 1446.020479][T10260] unevictable 0 [ 1446.020479][T10260] slab_reclaimable 1486848 [ 1446.020479][T10260] slab_unreclaimable 2686976 [ 1446.020479][T10260] pgfault 172887 [ 1446.020479][T10260] pgmajfault 0 [ 1446.020479][T10260] workingset_refault 0 [ 1446.020479][T10260] workingset_activate 0 [ 1446.020479][T10260] workingset_nodereclaim 0 [ 1446.020479][T10260] pgrefill 474 [ 1446.020479][T10260] pgscan 478 [ 1446.020479][T10260] pgsteal 0 [ 1446.020479][T10260] pgactivate 429 [ 1446.033110][T10260] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=10260,uid=0 [ 1446.181819][T10252] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:38 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a}], 0x4801, 0x0) [ 1446.216596][T10260] Memory cgroup out of memory: Killed process 10260 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1446.269231][ T1100] oom_reaper: reaped process 10260 (syz-executor.1), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB [ 1446.281594][T10259] gfs2: not a GFS2 filesystem 11:57:38 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='veth1\xff\x00\x00\x00\xff\xff\xff\x7f\xff\xef\x10', 0xfffffffffffffd83) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$RTC_VL_READ(r2, 0x80047013, &(0x7f0000000000)) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:38 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53", 0x39, 0x400}], 0x4801, 0x0) [ 1446.395363][T10289] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1446.405888][T10289] CPU: 1 PID: 10289 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1446.415444][T10289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1446.425638][T10289] Call Trace: [ 1446.428949][T10289] dump_stack+0x197/0x210 [ 1446.433299][T10289] dump_header+0x177/0x1152 [ 1446.437820][T10289] ? _raw_spin_unlock_irqrestore+0x66/0xe0 11:57:38 executing program 4: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x6e0b00) [ 1446.443638][T10289] ? ___ratelimit+0x2c8/0x595 [ 1446.448328][T10289] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1446.454144][T10289] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1446.459443][T10289] ? trace_hardirqs_on+0x67/0x240 [ 1446.464480][T10289] ? pagefault_out_of_memory+0x11c/0x11c [ 1446.470133][T10289] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1446.475954][T10289] ? ___ratelimit+0x60/0x595 [ 1446.480559][T10289] ? do_raw_spin_unlock+0x178/0x270 [ 1446.490376][T10289] oom_kill_process.cold+0x10/0x15 11:57:38 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x46000, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x2) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r5 = dup2(r4, r4) write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000080), 0xa) r6 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r6, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r6, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r7 = dup2(r6, r6) write$UHID_GET_REPORT_REPLY(r7, &(0x7f0000000080), 0xa) dup2(r7, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) tee(r1, r0, 0x0, 0x1) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000040)="4f00000000000000000015f40d92b97a79b2e7d726a2b3000da16535ab33bb8d3c623dce7bc7199679a5fbefd9d74b3dc1e6e79bf7cc2919179447cf03ca1c11c82e20662e4b0a6468303a694adc5ce8afd6e3f5d2b8", 0xfffffffffffffea0, 0x8c3, 0x0, 0x0) [ 1446.495504][T10289] out_of_memory+0x334/0x13c0 [ 1446.500195][T10289] ? find_held_lock+0x35/0x130 [ 1446.504980][T10289] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1446.510837][T10289] ? oom_killer_disable+0x280/0x280 [ 1446.516074][T10289] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1446.521639][T10289] ? memcg_oom_wake_function+0x700/0x700 [ 1446.527292][T10289] ? do_raw_spin_unlock+0x178/0x270 [ 1446.532508][T10289] ? _raw_spin_unlock+0x28/0x40 [ 1446.537381][T10289] try_charge+0xf76/0x14d0 11:57:38 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xf5ffffff, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1446.541827][T10289] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1446.547518][T10289] ? percpu_ref_tryget+0x102/0x230 [ 1446.552796][T10289] ? rcu_read_lock_held+0x9c/0xb0 [ 1446.557840][T10289] ? __kasan_check_read+0x11/0x20 [ 1446.562887][T10289] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1446.568448][T10289] mem_cgroup_try_charge+0x136/0x590 [ 1446.573760][T10289] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1446.579411][T10289] wp_page_copy+0x407/0x1560 [ 1446.584312][T10289] ? find_held_lock+0x35/0x130 [ 1446.589085][T10289] ? follow_pfn+0x2a0/0x2a0 [ 1446.593594][T10289] ? lock_downgrade+0x920/0x920 [ 1446.598555][T10289] ? vm_normal_page+0x15d/0x3c0 [ 1446.603400][T10289] ? __pte_alloc_kernel+0x210/0x210 [ 1446.608736][T10289] ? do_raw_spin_unlock+0x178/0x270 [ 1446.613943][T10289] do_wp_page+0x543/0x1540 [ 1446.618494][T10289] ? do_raw_spin_lock+0x12a/0x2e0 [ 1446.623514][T10289] ? lock_acquire+0x190/0x410 [ 1446.628326][T10289] ? finish_mkwrite_fault+0x5c0/0x5c0 [ 1446.633691][T10289] ? fault_around_bytes_set+0xa0/0xa0 [ 1446.639073][T10289] __handle_mm_fault+0x327b/0x3da0 [ 1446.644354][T10289] ? vm_iomap_memory+0x1a0/0x1a0 [ 1446.649049][ C0] net_ratelimit: 23 callbacks suppressed [ 1446.649057][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1446.649389][T10289] ? handle_mm_fault+0x292/0xa50 [ 1446.655068][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1446.660743][T10289] ? handle_mm_fault+0x7a0/0xa50 [ 1446.660759][T10289] ? __kasan_check_read+0x11/0x20 [ 1446.660777][T10289] handle_mm_fault+0x3b2/0xa50 [ 1446.660801][T10289] __do_page_fault+0x536/0xd80 [ 1446.665843][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1446.671458][T10289] do_page_fault+0x38/0x590 [ 1446.671481][T10289] page_fault+0x39/0x40 [ 1446.676446][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1446.681411][T10289] RIP: 0033:0x40f6c8 [ 1446.681428][T10289] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 64 fe 4b 00 31 c0 e8 13 27 ff ff 31 ff e8 5c 23 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 7e 2f 66 00 [ 1446.681439][T10289] RSP: 002b:00007ffd5d6ab800 EFLAGS: 00010246 [ 1446.741665][T10289] RAX: 000000008f473831 RBX: 0000000020624878 RCX: 0000001b2d620000 [ 1446.749776][T10289] RDX: 0000000000000000 RSI: 0000000000001831 RDI: ffffffff8f473831 [ 1446.757751][T10289] RBP: 0000000000000009 R08: 000000008f473831 R09: 000000008f473835 [ 1446.765810][T10289] R10: 00007ffd5d6ab9a0 R11: 0000000000000246 R12: 000000000075bfa8 [ 1446.773786][T10289] R13: 0000000080000000 R14: 00007f138d244008 R15: 0000000000000009 [ 1446.786225][T10289] memory: usage 307180kB, limit 307200kB, failcnt 1050 [ 1446.793178][T10289] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1446.800197][T10289] Memory cgroup stats for /syz1: [ 1446.800313][T10289] anon 16384 [ 1446.800313][T10289] file 94208 [ 1446.800313][T10289] kernel_stack 36864 [ 1446.800313][T10289] slab 4173824 [ 1446.800313][T10289] sock 310177792 [ 1446.800313][T10289] shmem 0 [ 1446.800313][T10289] file_mapped 0 [ 1446.800313][T10289] file_dirty 0 [ 1446.800313][T10289] file_writeback 0 [ 1446.800313][T10289] anon_thp 0 [ 1446.800313][T10289] inactive_anon 135168 [ 1446.800313][T10289] active_anon 20480 [ 1446.800313][T10289] inactive_file 0 [ 1446.800313][T10289] active_file 135168 [ 1446.800313][T10289] unevictable 0 [ 1446.800313][T10289] slab_reclaimable 1486848 [ 1446.800313][T10289] slab_unreclaimable 2686976 [ 1446.800313][T10289] pgfault 172953 [ 1446.800313][T10289] pgmajfault 0 [ 1446.800313][T10289] workingset_refault 0 [ 1446.800313][T10289] workingset_activate 0 [ 1446.800313][T10289] workingset_nodereclaim 0 [ 1446.800313][T10289] pgrefill 474 [ 1446.800313][T10289] pgscan 478 [ 1446.800313][T10289] pgsteal 0 [ 1446.800313][T10289] pgactivate 429 [ 1446.805439][T10289] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=10289,uid=0 [ 1446.941943][T10290] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 1446.993915][T10289] Memory cgroup out of memory: Killed process 10289 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1447.049760][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1447.055749][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1447.099286][T10387] gfs2: not a GFS2 filesystem 11:57:39 executing program 4: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x6e0b00) [ 1447.131050][ T1100] oom_reaper: reaped process 10289 (syz-executor.1), now anon-rss:0kB, file-rss:34820kB, shmem-rss:0kB 11:57:39 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x100000001, 0x4600c1) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000000)={0x13, 0x10, 0xfa00, {0x0, r3, 0xffffff1f}}, 0x18) write$RDMA_USER_CM_CMD_JOIN_MCAST(r1, &(0x7f0000000080)={0x16, 0x98, 0xfa00, {&(0x7f0000000040), 0x1, r3, 0x4, 0x1, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x27}}}}, 0xa0) 11:57:39 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x0, 0x0) [ 1447.250088][T10396] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 1447.334904][T10403] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1447.347608][T10403] CPU: 1 PID: 10403 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1447.357191][T10403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1447.367257][T10403] Call Trace: [ 1447.370572][T10403] dump_stack+0x197/0x210 [ 1447.375131][T10403] dump_header+0x177/0x1152 [ 1447.379656][T10403] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1447.385477][T10403] ? ___ratelimit+0x2c8/0x595 [ 1447.390169][T10403] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1447.395991][T10403] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1447.401380][T10403] ? trace_hardirqs_on+0x67/0x240 [ 1447.406549][T10403] ? pagefault_out_of_memory+0x11c/0x11c [ 1447.412201][T10403] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1447.418036][T10403] ? ___ratelimit+0x60/0x595 [ 1447.422728][T10403] ? do_raw_spin_unlock+0x178/0x270 [ 1447.428107][T10403] oom_kill_process.cold+0x10/0x15 [ 1447.433235][T10403] out_of_memory+0x334/0x13c0 [ 1447.437932][T10403] ? find_held_lock+0x35/0x130 [ 1447.442712][T10403] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1447.448533][T10403] ? oom_killer_disable+0x280/0x280 [ 1447.453759][T10403] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1447.459323][T10403] ? memcg_oom_wake_function+0x700/0x700 [ 1447.464974][T10403] ? do_raw_spin_unlock+0x178/0x270 [ 1447.470278][T10403] ? _raw_spin_unlock+0x28/0x40 [ 1447.475252][T10403] try_charge+0xf76/0x14d0 [ 1447.479693][T10403] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 11:57:39 executing program 4: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x5a0900) [ 1447.485244][T10403] ? percpu_ref_tryget+0x102/0x230 [ 1447.490368][T10403] ? rcu_read_lock_held+0x9c/0xb0 [ 1447.495491][T10403] ? __kasan_check_read+0x11/0x20 [ 1447.500537][T10403] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1447.506237][T10403] mem_cgroup_try_charge+0x136/0x590 [ 1447.511555][T10403] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1447.517204][T10403] wp_page_copy+0x407/0x1560 [ 1447.521809][T10403] ? find_held_lock+0x35/0x130 [ 1447.526745][T10403] ? follow_pfn+0x2a0/0x2a0 [ 1447.531268][T10403] ? lock_downgrade+0x920/0x920 [ 1447.536124][T10403] ? vm_normal_page+0x15d/0x3c0 [ 1447.536139][T10403] ? __pte_alloc_kernel+0x210/0x210 [ 1447.536158][T10403] ? do_raw_spin_unlock+0x178/0x270 [ 1447.551535][T10403] do_wp_page+0x543/0x1540 [ 1447.551550][T10403] ? do_raw_spin_lock+0x12a/0x2e0 [ 1447.551564][T10403] ? lock_acquire+0x190/0x410 [ 1447.551578][T10403] ? finish_mkwrite_fault+0x5c0/0x5c0 [ 1447.551592][T10403] ? fault_around_bytes_set+0xa0/0xa0 [ 1447.551614][T10403] __handle_mm_fault+0x327b/0x3da0 [ 1447.551636][T10403] ? vm_iomap_memory+0x1a0/0x1a0 [ 1447.551654][T10403] ? handle_mm_fault+0x292/0xa50 [ 1447.551677][T10403] ? handle_mm_fault+0x7a0/0xa50 [ 1447.596361][T10403] ? __kasan_check_read+0x11/0x20 [ 1447.601383][T10403] handle_mm_fault+0x3b2/0xa50 [ 1447.606148][T10403] __do_page_fault+0x536/0xd80 [ 1447.610916][T10403] do_page_fault+0x38/0x590 [ 1447.615417][T10403] page_fault+0x39/0x40 [ 1447.619565][T10403] RIP: 0033:0x40f6c8 [ 1447.623455][T10403] Code: 8b 34 c6 4a 8d 04 2e 48 3d ff ff ff 7e 0f 86 77 ff ff ff bf 64 fe 4b 00 31 c0 e8 13 27 ff ff 31 ff e8 5c 23 ff ff 0f 1f 40 00 <89> 3c b5 00 00 73 00 eb b6 31 ed 0f 1f 44 00 00 80 3d 7e 2f 66 00 [ 1447.643264][T10403] RSP: 002b:00007ffd5d6ab800 EFLAGS: 00010246 [ 1447.649335][T10403] RAX: 000000007876e88b RBX: 00000000bb6ad91a RCX: 0000001b2d620000 [ 1447.657297][T10403] RDX: 0000000000000000 RSI: 000000000000088b RDI: ffffffff7876e88b [ 1447.665268][T10403] RBP: 000000000000000b R08: 000000007876e88b R09: 000000007876e88f [ 1447.673233][T10403] R10: 00007ffd5d6ab9a0 R11: 0000000000000246 R12: 000000000075bfa8 11:57:40 executing program 0: pipe(&(0x7f00000000c0)) syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x6e, 0x28080) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x200000, 0x0) sendto$inet(r0, 0x0, 0xfffffffffffffff8, 0x21, 0x0, 0xfffffffffffffec8) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = syz_open_dev$vcsu(&(0x7f0000000040)='/dev/vcsu#\x00', 0x7ff, 0x100) ioctl$SG_SET_RESERVED_SIZE(r2, 0x2275, &(0x7f0000000080)=0x1) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) connect$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x2, {0x4313f453ab3bc538, 0x1, 0x3}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:40 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53", 0x39, 0x400}], 0x4801, 0x0) 11:57:40 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xf6ffffff, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1447.681195][T10403] R13: 0000000080000000 R14: 00007f138d244008 R15: 000000000000000b [ 1447.689496][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1447.695305][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1447.701398][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1447.707373][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1447.752038][T10425] EXT4-fs (loop2): bad geometry: block count 1080 exceeds size of device (1 blocks) [ 1447.798390][T10403] memory: usage 307200kB, limit 307200kB, failcnt 1088 [ 1447.851746][T10403] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1447.877641][T10522] gfs2: not a GFS2 filesystem [ 1447.914620][T10403] Memory cgroup stats for /syz1: [ 1447.914744][T10403] anon 16384 [ 1447.914744][T10403] file 94208 [ 1447.914744][T10403] kernel_stack 73728 [ 1447.914744][T10403] slab 4173824 [ 1447.914744][T10403] sock 310177792 [ 1447.914744][T10403] shmem 0 [ 1447.914744][T10403] file_mapped 0 [ 1447.914744][T10403] file_dirty 0 [ 1447.914744][T10403] file_writeback 0 [ 1447.914744][T10403] anon_thp 0 [ 1447.914744][T10403] inactive_anon 135168 [ 1447.914744][T10403] active_anon 20480 [ 1447.914744][T10403] inactive_file 0 11:57:40 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x0, 0x0) 11:57:40 executing program 4: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x5a0900) 11:57:40 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket(0xa, 0x40000000002, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00?\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x19, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x20000630, 0x20000660], 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]}, 0x280) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = fcntl$dupfd(r2, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket(0xa, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x3c0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) prctl$PR_GET_FP_MODE(0x2e) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r5, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1447.914744][T10403] active_file 135168 [ 1447.914744][T10403] unevictable 0 [ 1447.914744][T10403] slab_reclaimable 1486848 [ 1447.914744][T10403] slab_unreclaimable 2686976 [ 1447.914744][T10403] pgfault 173019 [ 1447.914744][T10403] pgmajfault 0 [ 1447.914744][T10403] workingset_refault 0 [ 1447.914744][T10403] workingset_activate 0 [ 1447.914744][T10403] workingset_nodereclaim 0 [ 1447.914744][T10403] pgrefill 474 [ 1447.914744][T10403] pgscan 478 [ 1447.914744][T10403] pgsteal 0 [ 1447.914744][T10403] pgactivate 429 [ 1448.031439][T10403] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=10403,uid=0 [ 1448.052926][T10403] Memory cgroup out of memory: Killed process 10403 (syz-executor.1) total-vm:72580kB, anon-rss:96kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:131072kB oom_score_adj:1000 [ 1448.080582][ T1100] oom_reaper: reaped process 10403 (syz-executor.1), now anon-rss:0kB, file-rss:33920kB, shmem-rss:0kB [ 1448.127736][T10531] EXT4-fs (loop3): VFS: Can't find ext4 filesystem 11:57:40 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0) getsockopt$packet_buf(r0, 0x107, 0xd, &(0x7f0000000040)=""/169, &(0x7f0000000100)=0xa9) r1 = accept4(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0xc0000) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:40 executing program 4: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x5a0900) [ 1448.324949][T10581] EXT4-fs (loop2): bad geometry: block count 1080 exceeds size of device (1 blocks) 11:57:40 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a}], 0x4801, 0x0) 11:57:40 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xf9fdffff, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:40 executing program 4 (fault-call:1 fault-nth:0): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:40 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x0, 0x0) 11:57:40 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x109080) ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000040)={0xdc8569f0fc3f00a6, @reserved}) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:40 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$VIDIOC_G_FBUF(r1, 0x8030560a, &(0x7f0000000100)={0x3, 0x2, &(0x7f0000000080)="dfbd60937240925f48837cf21fdbeb9258f32897456633a98c5c14e075627611b391e2d8bd509c8b59ee09dd4f979d1e5d8641ac075fd5fa10286ee2488d51c13c43cad6d88a5b7acd1f04ebf3bae2d1e9fd4a0d64da3718b0540f82c710e94bc44370cd94324e7bbd474e4eb117d9af6584a2a5", {0x2, 0x3, 0x20363059, 0x1, 0x9, 0x1, 0x1, 0x8}}) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @rand_addr=0x10001}, 0x10) 11:57:41 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1448.754423][T10670] EXT4-fs (loop3): VFS: Can't find ext4 filesystem [ 1448.768801][T10677] EXT4-fs (loop2): bad geometry: block count 1080 exceeds size of device (1 blocks) 11:57:41 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a}], 0x4801, 0x0) 11:57:41 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1448.922744][T10688] gfs2: not a GFS2 filesystem 11:57:41 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400002, &(0x7f0000000200)=""/163) 11:57:41 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) ioctl$RTC_VL_CLR(0xffffffffffffffff, 0x7014) 11:57:41 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a}], 0x4801, 0x0) 11:57:41 executing program 2: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket(0xa, 0x40000000002, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00?\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x19, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x20000630, 0x20000660], 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000000500000000000000000076657468305f746f5f7465616d00000064756d6d79300000000000000000000064756d0004300000000000000000000073797a6b616c6c8279a7e00000000000ffffffffffff000000000000ffffffffffff00000000000000007000000070000000a000000072656469726563740000000000000000000000000000000000000000000000000800000000000000ffffffff000000000b00000000000000000073797a6b616c6c65723100000000000067726574617030000000000000000000766c616e30000000000000000000000064756d6d7930000000000000000000000180c2000000000000000000aaaaaaaaaabb00000000000000007000000070000000a8000000736e6174000000000000000000000000000000000000000001b700000000000010000000000000000000000000000000ffffffff00000000"]}, 0x280) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = fcntl$dupfd(r2, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket(0xa, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x3c0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) prctl$PR_GET_FP_MODE(0x2e) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r5, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:41 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xfa030000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:41 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) getrlimit(0x4, &(0x7f0000000000)) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:41 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400003, &(0x7f0000000200)=""/163) 11:57:41 executing program 2: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket(0xa, 0x40000000002, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00?\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x19, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x20000630, 0x20000660], 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]}, 0x280) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = fcntl$dupfd(r2, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket(0xa, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x3c0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) prctl$PR_GET_FP_MODE(0x2e) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r5, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:41 executing program 1: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-monitor\x00', 0x420000, 0x0) write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f00000001c0)={0x1, 0x1f}, 0x2) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x60380, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300)='TIPC\x00') r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r5 = dup2(r4, r4) write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000080), 0xa) splice(r2, &(0x7f0000000640)=0x20b, r5, &(0x7f0000000680)=0x7ff, 0xbf57, 0x0) r6 = syz_open_dev$mouse(&(0x7f00000002c0)='/dev/input/mouse#\x00', 0x3, 0x20000) sendmsg$TIPC_CMD_GET_MAX_PORTS(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000580)={0xfffffe45, r3, 0x10d, 0x0, 0x0, {{}, 0x0, 0x4}}, 0x1c}}, 0x0) sendmsg$TIPC_CMD_SET_NODE_ADDR(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10840}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r3, 0x10, 0x70bd27, 0x25dfdbff, {{}, 0x0, 0x8001, 0x0, {0x8, 0x11, 0x2f3}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x40) setsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000200)=@srh={0x1d, 0x8, 0x4, 0x4, 0x8, 0x28, 0x7, [@local, @mcast2, @ipv4={[], [], @initdev={0xac, 0x1e, 0x1, 0x0}}, @mcast1]}, 0x48) fcntl$getown(r2, 0x9) ioctl$DRM_IOCTL_VERSION(r0, 0xc0406400, &(0x7f0000000540)={0x5e742c2d, 0xffff, 0x2, 0xa2, &(0x7f0000000340)=""/162, 0x10, &(0x7f0000000400)=""/16, 0xe4, &(0x7f0000000440)=""/228}) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r7 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r7, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r7, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r7, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:41 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400300, &(0x7f0000000200)=""/163) 11:57:41 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x0, 0x0) [ 1449.577891][T10834] gfs2: not a GFS2 filesystem [ 1449.595062][T10840] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1449.605629][T10840] CPU: 1 PID: 10840 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1449.615209][T10840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 11:57:42 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0xffffffffffffff65, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1449.625375][T10840] Call Trace: [ 1449.628698][T10840] dump_stack+0x197/0x210 [ 1449.633167][T10840] dump_header+0x177/0x1152 [ 1449.637692][T10840] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1449.643516][T10840] ? ___ratelimit+0x2c8/0x595 [ 1449.648218][T10840] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1449.654048][T10840] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1449.659443][T10840] ? trace_hardirqs_on+0x67/0x240 [ 1449.664482][T10840] ? pagefault_out_of_memory+0x11c/0x11c [ 1449.670145][T10840] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1449.676007][T10840] ? ___ratelimit+0x60/0x595 [ 1449.680620][T10840] ? do_raw_spin_unlock+0x178/0x270 [ 1449.685842][T10840] oom_kill_process.cold+0x10/0x15 [ 1449.690988][T10840] out_of_memory+0x334/0x13c0 [ 1449.695687][T10840] ? find_held_lock+0x35/0x130 [ 1449.700476][T10840] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1449.706450][T10840] ? oom_killer_disable+0x280/0x280 [ 1449.711692][T10840] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1449.717258][T10840] ? memcg_oom_wake_function+0x700/0x700 [ 1449.722908][T10840] ? do_raw_spin_unlock+0x178/0x270 [ 1449.728234][T10840] ? _raw_spin_unlock+0x28/0x40 [ 1449.733088][T10840] try_charge+0xf76/0x14d0 [ 1449.737599][T10840] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1449.743143][T10840] ? mark_held_locks+0xa4/0xf0 [ 1449.747901][T10840] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1449.753531][T10840] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1449.759347][T10840] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1449.764977][T10840] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1449.770288][T10840] ? trace_hardirqs_on+0x67/0x240 [ 1449.775308][T10840] mem_cgroup_charge_skmem+0x15e/0x300 [ 1449.781078][T10840] ? mem_cgroup_sk_free+0x90/0x90 [ 1449.786094][T10840] ? __kasan_check_write+0x14/0x20 [ 1449.791199][T10840] ? __alloc_skb+0x3d0/0x5e0 [ 1449.795787][T10840] __sk_mem_raise_allocated+0x56e/0x1410 [ 1449.801415][T10840] __sk_mem_schedule+0x6d/0xe0 [ 1449.806172][T10840] tcp_sendmsg_locked+0x1733/0x33a0 [ 1449.811375][T10840] ? tcp_sendpage+0x60/0x60 [ 1449.815873][T10840] ? trace_hardirqs_on+0x67/0x240 [ 1449.820889][T10840] ? lock_sock_nested+0x9a/0x120 [ 1449.825903][T10840] ? __local_bh_enable_ip+0x15a/0x270 [ 1449.831271][T10840] tcp_sendmsg+0x30/0x50 [ 1449.835509][T10840] inet_sendmsg+0x9e/0xe0 [ 1449.839827][T10840] ? inet_send_prepare+0x4e0/0x4e0 [ 1449.844931][T10840] sock_sendmsg+0xd7/0x130 [ 1449.849357][T10840] __sys_sendto+0x262/0x380 [ 1449.853854][T10840] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1449.859235][T10840] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1449.865553][T10840] ? put_timespec64+0xda/0x140 [ 1449.870327][T10840] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1449.876067][T10840] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1449.881524][T10840] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1449.886977][T10840] ? do_syscall_64+0x26/0x790 [ 1449.891653][T10840] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1449.897722][T10840] __x64_sys_sendto+0xe1/0x1a0 [ 1449.902534][T10840] do_syscall_64+0xfa/0x790 [ 1449.907034][T10840] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1449.912965][T10840] RIP: 0033:0x45a679 [ 1449.916858][T10840] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1449.936460][T10840] RSP: 002b:00007f138b242c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1449.944864][T10840] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1449.952829][T10840] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000006 [ 1449.960792][T10840] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1449.968757][T10840] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f138b2436d4 [ 1449.976722][T10840] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff 11:57:42 executing program 2: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket(0xa, 0x40000000002, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00?\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x19, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x20000630, 0x20000660], 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]}, 0x280) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = fcntl$dupfd(r2, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket(0xa, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x3c0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) prctl$PR_GET_FP_MODE(0x2e) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r5, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1450.085133][T10840] memory: usage 307184kB, limit 307200kB, failcnt 1099 [ 1450.120625][T10840] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1450.128327][T10840] Memory cgroup stats for /syz1: [ 1450.128454][T10840] anon 4460544 [ 1450.128454][T10840] file 94208 [ 1450.128454][T10840] kernel_stack 73728 [ 1450.128454][T10840] slab 4173824 [ 1450.128454][T10840] sock 305856512 [ 1450.128454][T10840] shmem 0 [ 1450.128454][T10840] file_mapped 0 [ 1450.128454][T10840] file_dirty 0 [ 1450.128454][T10840] file_writeback 0 [ 1450.128454][T10840] anon_thp 4194304 [ 1450.128454][T10840] inactive_anon 135168 [ 1450.128454][T10840] active_anon 4374528 [ 1450.128454][T10840] inactive_file 0 [ 1450.128454][T10840] active_file 135168 [ 1450.128454][T10840] unevictable 0 11:57:42 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x403f00, &(0x7f0000000200)=""/163) 11:57:42 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$inet6_mtu(r1, 0x29, 0x17, 0x0, &(0x7f0000000000)) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x9) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:42 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xfe030000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1450.128454][T10840] slab_reclaimable 1486848 [ 1450.128454][T10840] slab_unreclaimable 2686976 [ 1450.128454][T10840] pgfault 173415 [ 1450.128454][T10840] pgmajfault 0 [ 1450.128454][T10840] workingset_refault 0 [ 1450.128454][T10840] workingset_activate 0 [ 1450.128454][T10840] workingset_nodereclaim 0 [ 1450.128454][T10840] pgrefill 474 [ 1450.128454][T10840] pgscan 478 [ 1450.128454][T10840] pgsteal 0 [ 1450.223635][T10840] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=10839,uid=0 [ 1450.239232][T10840] Memory cgroup out of memory: Killed process 10839 (syz-executor.1) total-vm:72580kB, anon-rss:4192kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1450.241433][ T1100] oom_reaper: reaped process 10839 (syz-executor.1), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB 11:57:42 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x121001, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:42 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x404000, &(0x7f0000000200)=""/163) [ 1450.420442][T10964] gfs2: not a GFS2 filesystem 11:57:42 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x0, 0x0) 11:57:42 executing program 2: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket(0xa, 0x40000000002, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00?\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00', 0x19, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x20000630, 0x20000660], 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]}, 0x280) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = fcntl$dupfd(r2, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket(0xa, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x3c0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) prctl$PR_GET_FP_MODE(0x2e) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r5, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:42 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x2d) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r2 = dup2(0xffffffffffffffff, r1) sendto$inet(r2, 0x0, 0xfffffffffffffdd0, 0x200087fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1450.577240][T11001] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 11:57:43 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xff000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:43 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x20400000, &(0x7f0000000200)=""/163) [ 1450.688878][T11001] CPU: 0 PID: 11001 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1450.698479][T11001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1450.708547][T11001] Call Trace: [ 1450.711854][T11001] dump_stack+0x197/0x210 [ 1450.716202][T11001] dump_header+0x177/0x1152 [ 1450.720723][T11001] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1450.726537][T11001] ? ___ratelimit+0x2c8/0x595 [ 1450.731228][T11001] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1450.737042][T11001] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1450.742336][T11001] ? trace_hardirqs_on+0x67/0x240 [ 1450.747372][T11001] ? pagefault_out_of_memory+0x11c/0x11c [ 1450.753010][T11001] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1450.753028][T11001] ? ___ratelimit+0x60/0x595 [ 1450.753044][T11001] ? do_raw_spin_unlock+0x178/0x270 [ 1450.753068][T11001] oom_kill_process.cold+0x10/0x15 [ 1450.768623][T11001] out_of_memory+0x334/0x13c0 [ 1450.768641][T11001] ? find_held_lock+0x35/0x130 [ 1450.768662][T11001] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1450.768678][T11001] ? oom_killer_disable+0x280/0x280 [ 1450.768709][T11001] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1450.799723][T11001] ? memcg_oom_wake_function+0x700/0x700 [ 1450.805370][T11001] ? do_raw_spin_unlock+0x178/0x270 [ 1450.810583][T11001] ? _raw_spin_unlock+0x28/0x40 [ 1450.815445][T11001] try_charge+0xf76/0x14d0 [ 1450.819870][T11001] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 1450.825437][T11001] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1450.830991][T11001] ? mark_held_locks+0xa4/0xf0 [ 1450.835762][T11001] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1450.841412][T11001] ? sk_forced_mem_schedule+0x146/0x170 [ 1450.846957][T11001] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1450.852596][T11001] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1450.857887][T11001] ? trace_hardirqs_on+0x67/0x240 [ 1450.862923][T11001] mem_cgroup_charge_skmem+0x15e/0x300 [ 1450.868391][T11001] ? mem_cgroup_sk_free+0x90/0x90 [ 1450.873452][T11001] ? __kmalloc_reserve.isra.0+0xf0/0xf0 [ 1450.879007][T11001] sk_forced_mem_schedule+0x146/0x170 [ 1450.884385][T11001] sk_stream_alloc_skb+0x176/0xc90 11:57:43 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) mmap$usbmon(&(0x7f0000cb4000/0x2000)=nil, 0x2000, 0x8, 0x110, r1, 0xa1) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1450.889511][T11001] tcp_connect+0x1059/0x4540 [ 1450.894125][T11001] ? __tcp_transmit_skb+0x38f0/0x38f0 [ 1450.899516][T11001] ? secure_ipv6_port_ephemeral+0x250/0x250 [ 1450.905418][T11001] ? dst_release+0x62/0xe0 [ 1450.909843][T11001] ? prandom_u32_state+0x13/0x180 [ 1450.914875][T11001] tcp_v4_connect+0x158f/0x1d80 [ 1450.919731][T11001] ? tcp_v4_parse_md5_keys+0x270/0x270 [ 1450.925184][T11001] ? __kasan_check_read+0x11/0x20 [ 1450.930232][T11001] __inet_stream_connect+0x852/0xeb0 [ 1450.935528][T11001] ? tcp_sendmsg_locked+0x230a/0x33a0 [ 1450.940910][T11001] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 1450.946468][T11001] ? ipv4_mib_init_net+0x570/0x570 [ 1450.951588][T11001] ? kmem_cache_alloc_trace+0x397/0x790 [ 1450.957143][T11001] ? __kasan_check_read+0x11/0x20 [ 1450.962181][T11001] tcp_sendmsg_locked+0x24bc/0x33a0 [ 1450.967386][T11001] ? __kasan_check_read+0x11/0x20 [ 1450.972428][T11001] ? mark_lock+0xc2/0x1220 [ 1450.976854][T11001] ? mark_held_locks+0xa4/0xf0 [ 1450.981732][T11001] ? tcp_sendpage+0x60/0x60 11:57:43 executing program 2 (fault-call:4 fault-nth:0): syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1450.986240][T11001] ? lock_sock_nested+0x9a/0x120 [ 1450.991186][T11001] ? trace_hardirqs_on+0x67/0x240 [ 1450.996220][T11001] ? lock_sock_nested+0x9a/0x120 [ 1451.001156][T11001] ? __local_bh_enable_ip+0x15a/0x270 [ 1451.006518][T11001] tcp_sendmsg+0x30/0x50 [ 1451.010763][T11001] inet_sendmsg+0x9e/0xe0 [ 1451.015122][T11001] ? inet_send_prepare+0x4e0/0x4e0 [ 1451.020230][T11001] sock_sendmsg+0xd7/0x130 [ 1451.024656][T11001] __sys_sendto+0x262/0x380 [ 1451.029181][T11001] ? __ia32_sys_getpeername+0xb0/0xb0 11:57:43 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) ioctl$RTC_AIE_ON(r1, 0x7001) r2 = socket$inet(0x2, 0x4000000000000001, 0x3) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x91, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xd}}, 0xd2) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1451.034576][T11001] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1451.040821][T11001] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1451.046555][T11001] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1451.052025][T11001] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1451.057493][T11001] ? do_syscall_64+0x26/0x790 [ 1451.062166][T11001] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1451.068216][T11001] __x64_sys_sendto+0xe1/0x1a0 [ 1451.072965][T11001] do_syscall_64+0xfa/0x790 [ 1451.077455][T11001] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1451.083334][T11001] RIP: 0033:0x45a679 [ 1451.087219][T11001] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1451.106805][T11001] RSP: 002b:00007f138b242c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1451.115202][T11001] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1451.123157][T11001] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 1451.131132][T11001] RBP: 000000000075bf20 R08: 0000000020e68000 R09: 0000000000000010 [ 1451.139085][T11001] R10: 00000000200007fe R11: 0000000000000246 R12: 00007f138b2436d4 [ 1451.147036][T11001] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1451.158258][T11001] memory: usage 307200kB, limit 307200kB, failcnt 1123 [ 1451.165483][T11001] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1451.172509][T11001] Memory cgroup stats for /syz1: [ 1451.172627][T11001] anon 4358144 [ 1451.172627][T11001] file 94208 [ 1451.172627][T11001] kernel_stack 73728 [ 1451.172627][T11001] slab 4173824 [ 1451.172627][T11001] sock 305856512 [ 1451.172627][T11001] shmem 0 [ 1451.172627][T11001] file_mapped 0 [ 1451.172627][T11001] file_dirty 0 [ 1451.172627][T11001] file_writeback 0 [ 1451.172627][T11001] anon_thp 4194304 [ 1451.172627][T11001] inactive_anon 135168 [ 1451.172627][T11001] active_anon 4358144 [ 1451.172627][T11001] inactive_file 0 [ 1451.172627][T11001] active_file 135168 [ 1451.172627][T11001] unevictable 0 [ 1451.172627][T11001] slab_reclaimable 1486848 [ 1451.172627][T11001] slab_unreclaimable 2686976 [ 1451.172627][T11001] pgfault 173481 [ 1451.172627][T11001] pgmajfault 0 [ 1451.172627][T11001] workingset_refault 0 [ 1451.172627][T11001] workingset_activate 0 [ 1451.172627][T11001] workingset_nodereclaim 0 [ 1451.172627][T11001] pgrefill 474 [ 1451.172627][T11001] pgscan 478 [ 1451.172627][T11001] pgsteal 0 [ 1451.266305][T11001] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=10972,uid=0 [ 1451.281858][T11001] Memory cgroup out of memory: Killed process 10972 (syz-executor.1) total-vm:72712kB, anon-rss:4192kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1451.302393][ T1100] oom_reaper: reaped process 10972 (syz-executor.1), now anon-rss:0kB, file-rss:34824kB, shmem-rss:0kB 11:57:43 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r2 = dup2(r0, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) getsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000), 0x10) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r3, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1451.393725][T11088] gfs2: not a GFS2 filesystem [ 1451.458973][T11089] EXT4-fs (loop3): bad geometry: block count 1080 exceeds size of device (1 blocks) [ 1451.477927][T11111] FAULT_INJECTION: forcing a failure. [ 1451.477927][T11111] name failslab, interval 1, probability 0, space 0, times 0 [ 1451.527256][T11111] CPU: 0 PID: 11111 Comm: syz-executor.2 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1451.536855][T11111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1451.546899][T11111] Call Trace: [ 1451.550190][T11111] dump_stack+0x197/0x210 [ 1451.554527][T11111] should_fail.cold+0xa/0x15 [ 1451.559123][T11111] ? fault_create_debugfs_attr+0x180/0x180 [ 1451.564916][T11111] ? ___might_sleep+0x163/0x2c0 [ 1451.569750][T11111] __should_failslab+0x121/0x190 [ 1451.574688][T11111] should_failslab+0x9/0x14 [ 1451.575586][T11109] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1451.579193][T11111] __kmalloc+0x2e0/0x770 [ 1451.579210][T11111] ? rcu_read_lock_sched_held+0x9c/0xd0 [ 1451.579229][T11111] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1451.579250][T11111] ? strnlen_user+0x1ed/0x2e0 [ 1451.610004][T11111] ? __x64_sys_memfd_create+0x13c/0x470 [ 1451.615538][T11111] __x64_sys_memfd_create+0x13c/0x470 [ 1451.620913][T11111] ? memfd_fcntl+0x18c0/0x18c0 [ 1451.625685][T11111] ? do_syscall_64+0x26/0x790 [ 1451.630525][T11111] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1451.635799][T11111] ? trace_hardirqs_on+0x67/0x240 [ 1451.640835][T11111] do_syscall_64+0xfa/0x790 [ 1451.645337][T11111] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1451.651214][T11111] RIP: 0033:0x45a679 [ 1451.655122][T11111] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1451.674733][T11111] RSP: 002b:00007f378505da88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1451.683139][T11111] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 000000000045a679 [ 1451.691097][T11111] RDX: 0000000020013730 RSI: 0000000000000000 RDI: 00000000004bf712 [ 1451.699056][T11111] RBP: 000000000075bfc8 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 1451.707132][T11111] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f378505e6d4 [ 1451.715222][T11111] R13: 00000000004caa0e R14: 00000000004e3e70 R15: 0000000000000007 [ 1451.723224][T11109] CPU: 1 PID: 11109 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1451.732774][T11109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1451.742828][T11109] Call Trace: [ 1451.746149][T11109] dump_stack+0x197/0x210 [ 1451.750486][T11109] dump_header+0x177/0x1152 [ 1451.754999][T11109] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1451.760803][T11109] ? ___ratelimit+0x2c8/0x595 [ 1451.765472][T11109] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1451.771273][T11109] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1451.776572][T11109] ? trace_hardirqs_on+0x67/0x240 [ 1451.781604][T11109] ? pagefault_out_of_memory+0x11c/0x11c [ 1451.787243][T11109] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1451.793054][T11109] ? ___ratelimit+0x60/0x595 [ 1451.797647][T11109] ? do_raw_spin_unlock+0x178/0x270 [ 1451.802854][T11109] oom_kill_process.cold+0x10/0x15 [ 1451.807977][T11109] out_of_memory+0x334/0x13c0 [ 1451.812661][T11109] ? find_held_lock+0x35/0x130 [ 1451.817436][T11109] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1451.823240][T11109] ? oom_killer_disable+0x280/0x280 [ 1451.828436][T11109] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1451.833980][T11109] ? memcg_oom_wake_function+0x700/0x700 [ 1451.839608][T11109] ? do_raw_spin_unlock+0x178/0x270 [ 1451.844793][T11109] ? _raw_spin_unlock+0x28/0x40 [ 1451.849634][T11109] try_charge+0xf76/0x14d0 [ 1451.854039][T11109] ? find_held_lock+0x35/0x130 [ 1451.858798][T11109] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1451.864334][T11109] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1451.869906][T11109] ? find_held_lock+0x35/0x130 [ 1451.874670][T11109] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1451.880214][T11109] __memcg_kmem_charge_memcg+0x7c/0x130 [ 1451.885750][T11109] ? memcg_kmem_put_cache+0x1a0/0x1a0 [ 1451.891112][T11109] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1451.896646][T11109] __memcg_kmem_charge+0x13a/0x3a0 [ 1451.901746][T11109] copy_process+0x79d/0x7230 [ 1451.906340][T11109] ? find_held_lock+0x35/0x130 [ 1451.911100][T11109] ? __cleanup_sighand+0xc0/0xc0 [ 1451.916018][T11109] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1451.922164][T11109] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1451.928387][T11109] ? debug_smp_processor_id+0x33/0x18a [ 1451.933832][T11109] ? __kasan_check_read+0x11/0x20 [ 1451.938847][T11109] _do_fork+0x146/0x1090 [ 1451.943076][T11109] ? copy_init_mm+0x20/0x20 [ 1451.947569][T11109] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1451.953789][T11109] ? debug_smp_processor_id+0x33/0x18a [ 1451.959231][T11109] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 1451.965386][T11109] __x64_sys_clone+0x19a/0x260 [ 1451.970135][T11109] ? rcu_read_lock_any_held.part.0+0x50/0x50 [ 1451.976196][T11109] ? __ia32_sys_vfork+0xd0/0xd0 [ 1451.981026][T11109] ? __blkcg_punt_bio_submit+0x1e0/0x1e0 [ 1451.986648][T11109] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1451.991918][T11109] ? trace_hardirqs_on+0x67/0x240 [ 1451.996927][T11109] do_syscall_64+0xfa/0x790 [ 1452.001420][T11109] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1452.007294][T11109] RIP: 0033:0x45d049 [ 1452.011175][T11109] Code: ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 0f 8c ae 8c fb ff 74 01 c3 31 ed 48 f7 c7 00 00 01 00 75 [ 1452.030760][T11109] RSP: 002b:00007ffd5d6ab798 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 1452.039153][T11109] RAX: ffffffffffffffda RBX: 00007f138b222700 RCX: 000000000045d049 [ 1452.047105][T11109] RDX: 00007f138b2229d0 RSI: 00007f138b221db0 RDI: 00000000003d0f00 [ 1452.055057][T11109] RBP: 00007ffd5d6ab9b0 R08: 00007f138b222700 R09: 00007f138b222700 [ 1452.063012][T11109] R10: 00007f138b2229d0 R11: 0000000000000202 R12: 0000000000000000 [ 1452.070967][T11109] R13: 00007ffd5d6ab84f R14: 00007f138b2229c0 R15: 000000000075bfd4 [ 1452.080392][ C1] net_ratelimit: 28 callbacks suppressed [ 1452.080402][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1452.091881][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1452.097744][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1452.103690][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1452.109511][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:57:44 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x0, 0x0) 11:57:44 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) mmap(&(0x7f0000481000/0x1000)=nil, 0x1000, 0x7, 0x31, r3, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) ioctl$RTC_UIE_OFF(0xffffffffffffffff, 0x7004) 11:57:44 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) getrandom(&(0x7f0000000000)=""/96, 0x60, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x291) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x80, 0x0) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r0, 0x111, 0x3, 0x0, 0x4) openat$audio1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio1\x00', 0x2000, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000100)=@req={0xfffffffa, 0x5, 0x4, 0x8}, 0x10) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000001c0)=0x2041007a) r2 = socket$inet(0x2, 0x80000, 0xfc) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x40, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x1b5) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='syzkaller0\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1452.167067][T11109] memory: usage 307200kB, limit 307200kB, failcnt 1152 [ 1452.175471][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1452.181299][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1452.196859][T11109] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1452.218078][T11109] Memory cgroup stats for /syz1: [ 1452.218192][T11109] anon 4321280 [ 1452.218192][T11109] file 94208 [ 1452.218192][T11109] kernel_stack 36864 [ 1452.218192][T11109] slab 4173824 [ 1452.218192][T11109] sock 305856512 [ 1452.218192][T11109] shmem 0 [ 1452.218192][T11109] file_mapped 0 [ 1452.218192][T11109] file_dirty 0 [ 1452.218192][T11109] file_writeback 0 [ 1452.218192][T11109] anon_thp 4194304 [ 1452.218192][T11109] inactive_anon 135168 [ 1452.218192][T11109] active_anon 4321280 [ 1452.218192][T11109] inactive_file 0 11:57:44 executing program 2 (fault-call:4 fault-nth:1): syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1452.218192][T11109] active_file 135168 [ 1452.218192][T11109] unevictable 0 [ 1452.218192][T11109] slab_reclaimable 1486848 [ 1452.218192][T11109] slab_unreclaimable 2686976 [ 1452.218192][T11109] pgfault 173547 [ 1452.218192][T11109] pgmajfault 0 [ 1452.218192][T11109] workingset_refault 0 [ 1452.218192][T11109] workingset_activate 0 [ 1452.218192][T11109] workingset_nodereclaim 0 [ 1452.218192][T11109] pgrefill 474 [ 1452.218192][T11109] pgscan 478 [ 1452.218192][T11109] pgsteal 0 [ 1452.312275][T11109] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=11109,uid=0 [ 1452.328293][T11109] Memory cgroup out of memory: Killed process 11109 (syz-executor.1) total-vm:72712kB, anon-rss:4192kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 11:57:44 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x2000, 0x10) setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000040), 0x4) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/149) [ 1452.415973][ T1100] oom_reaper: reaped process 11109 (syz-executor.1), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB [ 1452.498615][T11361] FAULT_INJECTION: forcing a failure. [ 1452.498615][T11361] name failslab, interval 1, probability 0, space 0, times 0 [ 1452.534115][T11361] CPU: 1 PID: 11361 Comm: syz-executor.2 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1452.543708][T11361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1452.553774][T11361] Call Trace: [ 1452.557075][T11361] dump_stack+0x197/0x210 [ 1452.561419][T11361] should_fail.cold+0xa/0x15 [ 1452.566029][T11361] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1452.572287][T11361] ? fault_create_debugfs_attr+0x180/0x180 [ 1452.578110][T11361] ? ___might_sleep+0x163/0x2c0 [ 1452.582980][T11361] __should_failslab+0x121/0x190 [ 1452.587929][T11361] ? shmem_destroy_inode+0x80/0x80 [ 1452.593051][T11361] should_failslab+0x9/0x14 [ 1452.597563][T11361] kmem_cache_alloc+0x2aa/0x710 [ 1452.602414][T11361] ? __alloc_fd+0x487/0x620 [ 1452.606926][T11361] ? shmem_destroy_inode+0x80/0x80 [ 1452.612312][T11361] shmem_alloc_inode+0x1c/0x50 [ 1452.617083][T11361] alloc_inode+0x68/0x1e0 [ 1452.621423][T11361] new_inode_pseudo+0x19/0xf0 [ 1452.626109][T11361] new_inode+0x1f/0x40 [ 1452.630188][T11361] shmem_get_inode+0x84/0x7e0 [ 1452.634880][T11361] __shmem_file_setup.part.0+0x7e/0x2b0 [ 1452.640452][T11361] shmem_file_setup+0x66/0x90 [ 1452.645137][T11361] __x64_sys_memfd_create+0x2a2/0x470 [ 1452.650521][T11361] ? memfd_fcntl+0x18c0/0x18c0 [ 1452.655322][T11361] ? do_syscall_64+0x26/0x790 [ 1452.660006][T11361] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1452.665297][T11361] ? trace_hardirqs_on+0x67/0x240 [ 1452.670342][T11361] do_syscall_64+0xfa/0x790 [ 1452.674853][T11361] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1452.680743][T11361] RIP: 0033:0x45a679 [ 1452.684768][T11361] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1452.704418][T11361] RSP: 002b:00007f378505da88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1452.712824][T11361] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 000000000045a679 [ 1452.720799][T11361] RDX: 0000000020013730 RSI: 0000000000000000 RDI: 00000000004bf712 [ 1452.728770][T11361] RBP: 000000000075bfc8 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 1452.736730][T11361] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f378505e6d4 11:57:45 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @multicast2}, 0x10) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1452.744678][T11361] R13: 00000000004caa0e R14: 00000000004e3e70 R15: 0000000000000007 11:57:45 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xffefffff, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:45 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @remote}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0) write$apparmor_current(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="7065726d686174203078303030303030303030303030303030315e766574683100000000ffffffffffef00766574683100000000ffffffffffef0070707030eb5d266264657673797374656d2c2f00000000000000000000000f635806d55e34a1c78c1bf5ea6f4f06a551050efe617ae74d665a"], 0x59) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) syz_genetlink_get_family_id$SEG6(&(0x7f00000001c0)='SEG6\x00') r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x14008, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) ioctl$VIDIOC_ENUM_DV_TIMINGS(r4, 0xc0945662, &(0x7f00000000c0)={0x5f4, 0x0, [], {0x0, @reserved}}) prctl$PR_MCE_KILL(0x21, 0x0, 0xfefa88e78343d8dc) 11:57:45 executing program 2 (fault-call:4 fault-nth:2): syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:45 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r0, r0) r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ocfs2_control\x00', 0x60000, 0x0) sendto$inet(r1, &(0x7f0000000000), 0x0, 0xc0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000000000)="091de4a0c5b7e6e672dab23bf3bf9546b9c95a0d0bf084bf5e49b90830694e73549e4bb80c90b5667f7dded33510420ed6acdd6931f9de0cf6e7957e855ea7848aaf6b0bf4a167395bcddfae6edb22ae7560db6732e83ec109d38f70eb696ea724dd5b0736d66e5842fc1fcd069b0567f06eb163ac498d3b84ccf3285f1b6bb43005856ba7", 0x85, 0x20000002, &(0x7f00000000c0)={0x2, 0x4e24, @local}, 0x10) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x2e4) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1453.028916][T11403] EXT4-fs (loop3): bad geometry: block count 1080 exceeds size of device (1 blocks) [ 1453.054066][T11457] gfs2: not a GFS2 filesystem 11:57:45 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x1e}}, 0xfffffffffffffd97) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x400000, 0x0) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000040)=0x3, 0x4) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) setsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000080)=0x2, 0x4) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) sendmsg$xdp(r1, &(0x7f0000000480)={&(0x7f0000000200)={0x2c, 0x4, 0x0, 0x10}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000240)="c053b6b7c7242510ef08752f3c0fb9a3b6072c6a18fd7a186a07c97038e7132c72af958410ff760249f0a6830076eecfd39d77ae4eb4da", 0x37}, {&(0x7f0000000380)="40f24f37ae473203f653f7cbbd688a19b8c8c123e20d514e7125fc48d585db36195e2ec0480a4beece80d91e807a465c0dbe284526cb90fe679e18b95d6f708ab79cf2d7d7c3afe5fc17d04d1aceda8293a9fa4a27dcbc4da41c18797207cda17b1d8f5a0c5a015647ec8f66", 0x6c}, {&(0x7f0000000400)="70f1e711991ec1386a8a41b4aa3f517e010bf2a4555b47d5d5e580a1cff7559eaf0717030deb076e", 0x28}], 0x3}, 0x1) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0xd) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) openat$cgroup_ro(r1, &(0x7f0000000140)='cpuset.memory_pressure\x00', 0x0, 0x0) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) sendto$inet(r1, &(0x7f00000000c0)="89a30ba730b024ab996d49e446b1b09c5779d8c3a724b440df1646de5e71063e236c7dcfae39e5c21b22296caa19fb054a0abf63dc39aa10343399eb924a45addcf4a96e7c5fe63771186b582bec6f83eb22a6c4e228090c3a4670f928760f1a9c4bf738b3e4", 0x171, 0xc0, 0x0, 0xfffffffffffffd6f) r4 = openat$vsock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vsock\x00', 0x210002, 0x0) recvfrom(r4, &(0x7f00000002c0)=""/192, 0xc0, 0x40012142, 0x0, 0x0) 11:57:45 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r2, r2) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r3}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r4, 0x1d, r3, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) r5 = socket(0x11, 0x80009, 0x3) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f00000000c0)={0x3, 0x2, 0x4, 0x92, 0x0}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp_SCTP_MAXSEG(r5, 0x84, 0xd, &(0x7f00000001c0)=@assoc_value={r6, 0x9}, &(0x7f0000000200)=0x8) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'irlan0\x00', r4}) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r7 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r7, &(0x7f0000000080), 0xa) setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000000)='vc\x00\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00AO\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1453.174153][T11527] FAULT_INJECTION: forcing a failure. [ 1453.174153][T11527] name failslab, interval 1, probability 0, space 0, times 0 [ 1453.208917][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1453.214775][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1453.220682][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1453.242299][T11527] CPU: 1 PID: 11527 Comm: syz-executor.2 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1453.251989][T11527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1453.262052][T11527] Call Trace: [ 1453.265356][T11527] dump_stack+0x197/0x210 [ 1453.269704][T11527] should_fail.cold+0xa/0x15 [ 1453.274305][T11527] ? fault_create_debugfs_attr+0x180/0x180 [ 1453.280127][T11527] ? ___might_sleep+0x163/0x2c0 [ 1453.284987][T11527] __should_failslab+0x121/0x190 [ 1453.289951][T11527] should_failslab+0x9/0x14 [ 1453.294470][T11527] kmem_cache_alloc+0x2aa/0x710 [ 1453.299327][T11527] ? current_time+0x6b/0x110 [ 1453.303999][T11527] ? ktime_get_coarse_real_ts64+0xeb/0x2a0 [ 1453.309892][T11527] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1453.316138][T11527] ? timestamp_truncate+0x20f/0x2f0 [ 1453.321343][T11527] __d_alloc+0x2e/0x8c0 [ 1453.321365][T11527] d_alloc_pseudo+0x1e/0x70 [ 1453.321384][T11527] alloc_file_pseudo+0xe2/0x280 [ 1453.330020][T11527] ? alloc_file+0x4d0/0x4d0 [ 1453.330040][T11527] ? lockdep_annotate_inode_mutex_key+0x5b/0x70 [ 1453.330065][T11527] __shmem_file_setup.part.0+0x108/0x2b0 [ 1453.330084][T11527] shmem_file_setup+0x66/0x90 [ 1453.330103][T11527] __x64_sys_memfd_create+0x2a2/0x470 [ 1453.330120][T11527] ? memfd_fcntl+0x18c0/0x18c0 [ 1453.330137][T11527] ? do_syscall_64+0x26/0x790 [ 1453.330152][T11527] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1453.330167][T11527] ? trace_hardirqs_on+0x67/0x240 [ 1453.330189][T11527] do_syscall_64+0xfa/0x790 [ 1453.330210][T11527] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1453.330222][T11527] RIP: 0033:0x45a679 [ 1453.330240][T11527] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1453.414967][T11527] RSP: 002b:00007f378505da88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1453.423400][T11527] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 000000000045a679 [ 1453.431382][T11527] RDX: 0000000020013730 RSI: 0000000000000000 RDI: 00000000004bf712 [ 1453.439360][T11527] RBP: 000000000075bfc8 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 1453.447335][T11527] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f378505e6d4 [ 1453.455312][T11527] R13: 00000000004caa0e R14: 00000000004e3e70 R15: 0000000000000007 11:57:45 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$TIOCGSID(r2, 0x5429, &(0x7f00000001c0)=0x0) ptrace(0x4208, r3) r4 = geteuid() getresuid(&(0x7f00000000c0), &(0x7f0000000100)=0x0, &(0x7f0000000140)) mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='9p\x00', 0x3400, &(0x7f00000002c0)={'trans=unix,', {[{@version_9p2000='version=9p2000'}, {@afid={'afid', 0x3d, 0x100000000}}, {@cachetag={'cachetag', 0x3d, 'veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00'}}, {@cache_loose='cache=loose'}, {@nodevmap='nodevmap'}, {@fscache='fscache'}, {@access_client='access=client'}], [{@appraise_type='appraise_type=imasig'}, {@fowner_eq={'fowner', 0x3d, r4}}, {@fowner_gt={'fowner>', r5}}, {@audit='audit'}, {@mask={'mask', 0x3d, 'MAY_WRITE'}}]}}) 11:57:45 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xffffefff, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:45 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x200000, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x41c080, 0x2) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x4e20, 0x9, @ipv4={[], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0xc59, 0x3ff, 0x3, 0x4, 0x10}, &(0x7f0000000100)=0x98) r5 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/btrfs-control\x00', 0x80, 0x0) ioctl$RTC_IRQP_READ(r5, 0x8008700b, &(0x7f0000000380)) setsockopt$inet_sctp_SCTP_RESET_ASSOC(r2, 0x84, 0x78, &(0x7f0000000140)=r4, 0x4) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r6 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r6, &(0x7f0000000080), 0xa) write$UHID_GET_REPORT_REPLY(r6, &(0x7f0000000080)={0xa, 0x0, 0x0, 0x40}, 0xa) ioctl$BLKDISCARD(r1, 0x1277, &(0x7f0000000000)=0x4) r7 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r7, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r7, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r8 = dup2(r7, r7) write$UHID_GET_REPORT_REPLY(r8, &(0x7f0000000080), 0xa) ioctl$EXT4_IOC_GROUP_EXTEND(r8, 0x40086607, &(0x7f00000003c0)=0x5) socket$rds(0x15, 0x5, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:45 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x3db) ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000)) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) getsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000040)=ANY=[@ANYBLOB="0487c6fdbb656de1ab148811b9002000"], &(0x7f0000000080)=0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:46 executing program 2 (fault-call:4 fault-nth:3): syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:46 executing program 3 (fault-call:1 fault-nth:0): syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1453.669031][T11683] gfs2: not a GFS2 filesystem [ 1453.773320][T11763] FAULT_INJECTION: forcing a failure. [ 1453.773320][T11763] name failslab, interval 1, probability 0, space 0, times 0 [ 1453.809055][T11763] CPU: 0 PID: 11763 Comm: syz-executor.3 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1453.818656][T11763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1453.818668][T11763] Call Trace: [ 1453.818696][T11763] dump_stack+0x197/0x210 [ 1453.818718][T11763] should_fail.cold+0xa/0x15 [ 1453.818736][T11763] ? fault_create_debugfs_attr+0x180/0x180 [ 1453.818760][T11763] ? ___might_sleep+0x163/0x2c0 [ 1453.832236][T11763] __should_failslab+0x121/0x190 [ 1453.832255][T11763] should_failslab+0x9/0x14 [ 1453.832276][T11763] __kmalloc+0x2e0/0x770 [ 1453.865484][T11763] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 1453.871730][T11763] ? fput_many+0x12c/0x1a0 [ 1453.876228][T11763] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1453.882457][T11763] ? strnlen_user+0x1ed/0x2e0 [ 1453.887121][T11763] ? __x64_sys_memfd_create+0x13c/0x470 [ 1453.892916][T11763] __x64_sys_memfd_create+0x13c/0x470 [ 1453.898276][T11763] ? memfd_fcntl+0x18c0/0x18c0 [ 1453.903045][T11763] ? do_syscall_64+0x26/0x790 [ 1453.907703][T11763] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1453.912973][T11763] ? trace_hardirqs_on+0x67/0x240 [ 1453.917984][T11763] do_syscall_64+0xfa/0x790 [ 1453.922477][T11763] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1453.928349][T11763] RIP: 0033:0x45a679 [ 1453.932230][T11763] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1453.951821][T11763] RSP: 002b:00007ff242c77a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1453.960215][T11763] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 000000000045a679 11:57:46 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) r2 = openat$cgroup_ro(r1, &(0x7f0000000000)='rdma.current\x00', 0x0, 0x0) ioctl$VIDIOC_G_PRIORITY(r2, 0x80045643, 0x6) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r3, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1453.968168][T11763] RDX: 0000000020013730 RSI: 0000000000000000 RDI: 00000000004bf712 [ 1453.976126][T11763] RBP: 000000000075bfc8 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 1453.984084][T11763] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff242c786d4 [ 1453.992041][T11763] R13: 00000000004caa0e R14: 00000000004e3e70 R15: 0000000000000005 11:57:46 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r0, r0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x50b372e8e7a4c4b0, 0x1010, r0, 0xc116a000) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:46 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) socket$inet(0x2, 0x6, 0x1) r1 = gettid() timer_create(0x8, &(0x7f00000000c0)={0x0, 0x32, 0x4, @tid=r1}, &(0x7f00000002c0)) r2 = gettid() timer_create(0x8, &(0x7f00000000c0)={0x0, 0x32, 0x4, @tid=r2}, &(0x7f00000002c0)) r3 = getpgid(r2) r4 = gettid() timer_create(0x8, &(0x7f00000000c0)={0x0, 0x32, 0x4, @tid=r4}, &(0x7f00000002c0)) r5 = gettid() timer_create(0x8, &(0x7f00000000c0)={0x0, 0x32, 0x4, @tid=r5}, &(0x7f00000002c0)) r6 = gettid() timer_create(0x8, &(0x7f00000000c0)={0x0, 0x32, 0x4, @tid=r6}, &(0x7f00000002c0)) r7 = clone3(&(0x7f0000002880)={0x1000000, &(0x7f0000002600), &(0x7f0000002640), &(0x7f0000002680), 0x3b, 0x0, &(0x7f00000026c0)=""/88, 0x58, &(0x7f0000002740)=""/213, &(0x7f0000002840)=[r5, 0x0, r6, 0x0], 0x4}, 0x50) r8 = gettid() timer_create(0x8, &(0x7f00000000c0)={0x0, 0x32, 0x4, @tid=r8}, &(0x7f00000002c0)) clone3(&(0x7f0000002940)={0x102000, &(0x7f0000000540), &(0x7f0000000580), &(0x7f00000005c0), 0x38, 0x0, &(0x7f0000000600)=""/4096, 0x1000, &(0x7f0000001600)=""/4096, &(0x7f0000002900)=[r1, r3, r4, r7, r8], 0x5}, 0x50) r9 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x400081, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r9, 0xc10c5541, &(0x7f0000000040)={0x20, 0xffffffff, 0x7, 0x0, 0x0, [], [], [], 0x2, 0xfff}) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x40000, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r10 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snapshot\x00', 0x200, 0x0) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r9, 0x84, 0x1b, &(0x7f00000002c0)={0x0, 0x85, "fc6b6efaf52a312b9447669c93404046d14cd321ad382142afaf5617551dc727b707099fee25edc6f928d5b3a405ed0929e8fd13a5b32a3ad0fa43672d5282942e59d6db05657958492a304ed60967961f069f6f153222b62103148f7ca5a6cce261cdf45f9e1fcd97975ac31daeb593bf960e75fd854695f958d0da90fe8cba3985b713ab"}, &(0x7f0000000200)=0x8d) getxattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)=@known='trusted.overlay.origin\x00', &(0x7f0000000440)=""/227, 0xe3) getsockopt$inet_sctp_SCTP_MAXSEG(r10, 0x84, 0xd, &(0x7f0000000240)=@assoc_id=r11, &(0x7f0000000380)=0x4) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1454.178973][T11860] FAULT_INJECTION: forcing a failure. [ 1454.178973][T11860] name failslab, interval 1, probability 0, space 0, times 0 [ 1454.251617][T11860] CPU: 1 PID: 11860 Comm: syz-executor.2 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1454.261221][T11860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1454.271293][T11860] Call Trace: [ 1454.274601][T11860] dump_stack+0x197/0x210 [ 1454.278968][T11860] should_fail.cold+0xa/0x15 [ 1454.283571][T11860] ? perf_trace_lock+0xeb/0x4c0 [ 1454.288435][T11860] ? fault_create_debugfs_attr+0x180/0x180 [ 1454.294277][T11860] ? ___might_sleep+0x163/0x2c0 [ 1454.299231][T11860] __should_failslab+0x121/0x190 [ 1454.304185][T11860] should_failslab+0x9/0x14 [ 1454.308697][T11860] kmem_cache_alloc+0x2aa/0x710 [ 1454.313552][T11860] ? rwlock_bug.part.0+0x90/0x90 [ 1454.318492][T11860] ? lock_downgrade+0x920/0x920 [ 1454.323350][T11860] __alloc_file+0x27/0x340 [ 1454.327775][T11860] alloc_empty_file+0x72/0x170 [ 1454.332561][T11860] alloc_file+0x5e/0x4d0 [ 1454.336815][T11860] alloc_file_pseudo+0x189/0x280 [ 1454.341763][T11860] ? alloc_file+0x4d0/0x4d0 11:57:46 executing program 1: ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000380)={0xffffffffffffffff}) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) sched_setattr(0x0, 0x0, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r2, r2) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup2(r3, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$inet(0x2, 0x0, 0x0) r6 = socket$inet_sctp(0x2, 0x5, 0x84) r7 = dup3(r5, r6, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10) sendto$inet(r7, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) sendto$inet(r6, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f00000003c0)=ANY=[@ANYBLOB="ce383249b695fdff3d863d45396f134eb7215a3598be188472894f3902b488fda42452961ed768d8cd5716fd8c5484", @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000a8a000)=0xc) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r7, 0x84, 0x7a, &(0x7f000059aff8)={r8}, &(0x7f000034f000)=0x2059b000) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r4, 0x84, 0xf, &(0x7f0000000000)={r8, @in6={{0xa, 0x4e24, 0x7, @dev={0xfe, 0x80, [], 0x16}, 0x6}}, 0x7, 0x7e, 0x7e56, 0x8, 0x101}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000480)=ANY=[@ANYRES32=r8, @ANYBLOB="c8000000689c3a799963c9ee1ed9b97b3ca7554d3386c87ef5a862244376ada7244a3c07b6a3a63b0912926fd11148fd4bca71132d3b7033bc6472a728e17eed4ec87e98aaf6b15f2e0eb46c7d28666bc2ec5299fd1ebcd1060fe27c6e9af2dee79b3586e1dd1c318d0a17265767f0cd0da57642bef7cdf102ad8f2c726e98733cc6871e82ebaa532f9ac533e6354a693f81790a1dacbcf333a0309a11a6bc21cb9a8785a8d1c6e04e7af413d63409dc38cc1b1a01005462c597785d12f04d2a4cd4f90fa966247adbed40476f364d6163ce8ec0f183bee8da23189c474122084edba3308c2babe75d65986cc62da8f7fd09b7d8933d731bd6"], &(0x7f00000001c0)=0xd0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_read_part_table(0xffffffffffffffff, 0x1, &(0x7f0000000200)=[{&(0x7f0000000000)="0200eeffffff01000000ff07000000000000000000000000000000000000000000004200000000000000000000000000000000000000000000000000000055aa", 0x40, 0x1c0}]) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r9 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ubi_ctrl\x00', 0x521000, 0x0) waitid$P_PIDFD(0x3, r9, &(0x7f0000000100), 0x4, &(0x7f00000002c0)) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:46 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xfffffdf9, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1454.346284][T11860] ? lockdep_annotate_inode_mutex_key+0x5b/0x70 [ 1454.352545][T11860] __shmem_file_setup.part.0+0x108/0x2b0 [ 1454.358191][T11860] shmem_file_setup+0x66/0x90 [ 1454.362869][T11860] __x64_sys_memfd_create+0x2a2/0x470 [ 1454.368266][T11860] ? memfd_fcntl+0x18c0/0x18c0 [ 1454.373038][T11860] ? do_syscall_64+0x26/0x790 [ 1454.377732][T11860] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1454.383025][T11860] ? trace_hardirqs_on+0x67/0x240 [ 1454.388071][T11860] do_syscall_64+0xfa/0x790 [ 1454.392584][T11860] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1454.398479][T11860] RIP: 0033:0x45a679 [ 1454.402377][T11860] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1454.421979][T11860] RSP: 002b:00007f378505da88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1454.430394][T11860] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 000000000045a679 [ 1454.438368][T11860] RDX: 0000000020013730 RSI: 0000000000000000 RDI: 00000000004bf712 [ 1454.446344][T11860] RBP: 000000000075bfc8 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 1454.454318][T11860] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f378505e6d4 [ 1454.462290][T11860] R13: 00000000004caa0e R14: 00000000004e3e70 R15: 0000000000000007 11:57:46 executing program 3 (fault-call:1 fault-nth:1): syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1454.605754][T11945] gfs2: not a GFS2 filesystem 11:57:47 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='eql\x00', 0x10) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000000)) 11:57:47 executing program 2 (fault-call:4 fault-nth:4): syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1454.703472][T12044] FAULT_INJECTION: forcing a failure. [ 1454.703472][T12044] name failslab, interval 1, probability 0, space 0, times 0 11:57:47 executing program 4: r0 = socket$rds(0x15, 0x5, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000001e00)) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000007, 0x31, r2, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r3, r3) sendto$inet(r3, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) ioctl$sock_inet_SIOCGIFBRDADDR(r3, 0x8919, &(0x7f0000000000)={'lo\x00', {0x2, 0x4e20, @empty}}) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r5 = dup2(r4, r4) write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000080), 0xa) write$binfmt_aout(r5, &(0x7f00000002c0)={{0x108, 0xa1, 0x0, 0x21a, 0x7f, 0x10000, 0xd4, 0x8}, "59164a7a988a9eca71ed5a7825c3c6819c8a00c58204c9422547fc5069156b1dcc65c358b681ef834e31be0134b5b22c6d8f89c876d887cd", [[], [], [], [], [], [], [], [], []]}, 0x958) [ 1454.953238][T12196] FAULT_INJECTION: forcing a failure. [ 1454.953238][T12196] name failslab, interval 1, probability 0, space 0, times 0 [ 1454.998977][T12196] CPU: 0 PID: 12196 Comm: syz-executor.2 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1455.008576][T12196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1455.018632][T12196] Call Trace: [ 1455.021936][T12196] dump_stack+0x197/0x210 [ 1455.026280][T12196] should_fail.cold+0xa/0x15 [ 1455.030879][T12196] ? memcg_kmem_put_cache+0xad/0x1a0 [ 1455.036175][T12196] ? fault_create_debugfs_attr+0x180/0x180 [ 1455.041994][T12196] ? ___might_sleep+0x163/0x2c0 [ 1455.046867][T12196] __should_failslab+0x121/0x190 [ 1455.051818][T12196] should_failslab+0x9/0x14 [ 1455.056336][T12196] kmem_cache_alloc+0x2aa/0x710 [ 1455.061209][T12196] ? kmem_cache_alloc+0x364/0x710 [ 1455.066242][T12196] security_file_alloc+0x39/0x170 [ 1455.071279][T12196] __alloc_file+0xde/0x340 [ 1455.075706][T12196] alloc_empty_file+0x72/0x170 [ 1455.080477][T12196] alloc_file+0x5e/0x4d0 [ 1455.084728][T12196] alloc_file_pseudo+0x189/0x280 [ 1455.089674][T12196] ? alloc_file+0x4d0/0x4d0 [ 1455.094202][T12196] ? lockdep_annotate_inode_mutex_key+0x5b/0x70 [ 1455.100460][T12196] __shmem_file_setup.part.0+0x108/0x2b0 [ 1455.106098][T12196] shmem_file_setup+0x66/0x90 [ 1455.110786][T12196] __x64_sys_memfd_create+0x2a2/0x470 [ 1455.116167][T12196] ? memfd_fcntl+0x18c0/0x18c0 [ 1455.120940][T12196] ? do_syscall_64+0x26/0x790 [ 1455.125620][T12196] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1455.130912][T12196] ? trace_hardirqs_on+0x67/0x240 [ 1455.135962][T12196] do_syscall_64+0xfa/0x790 [ 1455.140475][T12196] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1455.146369][T12196] RIP: 0033:0x45a679 [ 1455.150266][T12196] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1455.169879][T12196] RSP: 002b:00007f378505da88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1455.178297][T12196] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 000000000045a679 [ 1455.186273][T12196] RDX: 0000000020013730 RSI: 0000000000000000 RDI: 00000000004bf712 11:57:47 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) getsockopt$inet_sctp_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:47 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xffffff7f, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1455.194248][T12196] RBP: 000000000075bfc8 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 1455.202214][T12196] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f378505e6d4 [ 1455.202223][T12196] R13: 00000000004caa0e R14: 00000000004e3e70 R15: 0000000000000007 [ 1455.218936][T12044] CPU: 1 PID: 12044 Comm: syz-executor.3 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1455.228477][T12044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1455.238531][T12044] Call Trace: [ 1455.241837][T12044] dump_stack+0x197/0x210 [ 1455.246187][T12044] should_fail.cold+0xa/0x15 [ 1455.250788][T12044] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1455.257031][T12044] ? fault_create_debugfs_attr+0x180/0x180 [ 1455.262846][T12044] ? ___might_sleep+0x163/0x2c0 [ 1455.267716][T12044] __should_failslab+0x121/0x190 [ 1455.272661][T12044] ? shmem_destroy_inode+0x80/0x80 [ 1455.277780][T12044] should_failslab+0x9/0x14 [ 1455.282290][T12044] kmem_cache_alloc+0x2aa/0x710 [ 1455.287135][T12044] ? __alloc_fd+0x487/0x620 [ 1455.291646][T12044] ? shmem_destroy_inode+0x80/0x80 [ 1455.296768][T12044] shmem_alloc_inode+0x1c/0x50 [ 1455.301537][T12044] alloc_inode+0x68/0x1e0 [ 1455.305874][T12044] new_inode_pseudo+0x19/0xf0 [ 1455.310550][T12044] new_inode+0x1f/0x40 [ 1455.314613][T12044] shmem_get_inode+0x84/0x7e0 [ 1455.319298][T12044] __shmem_file_setup.part.0+0x7e/0x2b0 [ 1455.324851][T12044] shmem_file_setup+0x66/0x90 [ 1455.329537][T12044] __x64_sys_memfd_create+0x2a2/0x470 [ 1455.334967][T12044] ? memfd_fcntl+0x18c0/0x18c0 [ 1455.339740][T12044] ? do_syscall_64+0x26/0x790 [ 1455.344437][T12044] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1455.349740][T12044] ? trace_hardirqs_on+0x67/0x240 [ 1455.354788][T12044] do_syscall_64+0xfa/0x790 [ 1455.359301][T12044] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1455.365207][T12044] RIP: 0033:0x45a679 [ 1455.369103][T12044] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1455.388798][T12044] RSP: 002b:00007ff242c77a88 EFLAGS: 00000246 ORIG_RAX: 000000000000013f 11:57:47 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/bsg\x00', 0x8000, 0x0) accept4$alg(r1, 0x0, 0x0, 0x80000) mount$binder(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='binder\x00', 0x20014, &(0x7f0000000080)={[{@max={'max', 0x3d, 0x4}}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}]}) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='ceth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x3) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1455.397214][T12044] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 000000000045a679 [ 1455.405186][T12044] RDX: 0000000020013730 RSI: 0000000000000000 RDI: 00000000004bf712 [ 1455.413160][T12044] RBP: 000000000075bfc8 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 1455.421138][T12044] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff242c786d4 [ 1455.429116][T12044] R13: 00000000004caa0e R14: 00000000004e3e70 R15: 0000000000000005 11:57:47 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg\x00', 0xa1df6e2211f6f052, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup2(r1, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet(0x2, 0x0, 0x0) r4 = socket$inet_sctp(0x2, 0x5, 0x84) r5 = dup3(r3, r4, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10) sendto$inet(r5, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) sendto$inet(r4, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f000025e000)={0x2, [0x0, 0x0]}, &(0x7f0000a8a000)=0xc) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r5, 0x84, 0x7a, &(0x7f000059aff8)={r6}, &(0x7f000034f000)=0x2059b000) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000000)={r6, @in6={{0xa, 0x4e24, 0x7, @dev={0xfe, 0x80, [], 0x16}, 0x6}}, 0x7, 0x7e, 0x7e56, 0x8, 0x101}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000040)={0x7288, 0x1, 0xd06, 0x7fffffff, r6}, &(0x7f0000000080)=0x10) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000000c0)={r7, 0x8, 0x1000}, &(0x7f0000000100)=0x8) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r8 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r8, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r8, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r8, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:47 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1455.469499][T12280] gfs2: not a GFS2 filesystem 11:57:48 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r0, r0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) accept(r0, &(0x7f0000000000)=@generic, &(0x7f0000000080)=0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:48 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) r0 = pkey_alloc(0x0, 0x3) pkey_mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, r0) pkey_mprotect(&(0x7f00007a0000/0x2000)=nil, 0x2000, 0x1000004, r0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) finit_module(r1, &(0x7f0000000000)='\\security//#\x00', 0x0) watch_devices(r1, 0x67, 0x0) 11:57:48 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xffffff8c, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1455.813075][T12398] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 1455.850305][T12398] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 1455.873358][T12398] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1455.934505][T12398] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 1455.966887][T12488] gfs2: not a GFS2 filesystem 11:57:48 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$caif_stream(0x25, 0x1, 0x4) r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) ioctl$sock_SIOCBRADDBR(r1, 0x89a0, &(0x7f00000000c0)='erspan0\x00') r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r2}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xfffffffffffffee2) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r3, 0x1d, r2, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) connect(r0, &(0x7f0000000000)=@can={0x1d, r3}, 0x80) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x23002, 0x0) sendto$inet(r4, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:48 executing program 2 (fault-call:4 fault-nth:5): syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:48 executing program 4: r0 = gettid() ptrace$getsig(0x4202, r0, 0x3, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:48 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='\nxt4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1456.182983][T12598] FAULT_INJECTION: forcing a failure. [ 1456.182983][T12598] name failslab, interval 1, probability 0, space 0, times 0 [ 1456.233962][T12598] CPU: 1 PID: 12598 Comm: syz-executor.2 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1456.243566][T12598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1456.253633][T12598] Call Trace: [ 1456.256944][T12598] dump_stack+0x197/0x210 [ 1456.261300][T12598] should_fail.cold+0xa/0x15 [ 1456.265908][T12598] ? fault_create_debugfs_attr+0x180/0x180 [ 1456.271733][T12598] ? ___might_sleep+0x163/0x2c0 [ 1456.276710][T12598] __should_failslab+0x121/0x190 11:57:48 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xfffffff5, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1456.281667][T12598] should_failslab+0x9/0x14 [ 1456.286190][T12598] __kmalloc+0x2e0/0x770 [ 1456.290448][T12598] ? mark_held_locks+0xf0/0xf0 [ 1456.295222][T12598] ? stack_trace_save+0xac/0xe0 [ 1456.300088][T12598] ? tomoyo_realpath_from_path+0xc5/0x660 [ 1456.305829][T12598] tomoyo_realpath_from_path+0xc5/0x660 [ 1456.311466][T12598] ? tomoyo_path_perm+0x1cb/0x430 [ 1456.316508][T12598] tomoyo_path_perm+0x230/0x430 [ 1456.322412][T12598] ? tomoyo_path_perm+0x1cb/0x430 [ 1456.327460][T12598] ? tomoyo_check_open_permission+0x3e0/0x3e0 [ 1456.333552][T12598] ? rcu_read_lock_held+0x9c/0xb0 [ 1456.338609][T12598] ? rcu_read_lock_any_held+0xcd/0xf0 [ 1456.343991][T12598] ? rcu_read_lock_bh_held+0xb0/0xb0 [ 1456.349300][T12598] tomoyo_path_truncate+0x1d/0x30 [ 1456.354409][T12598] security_path_truncate+0xf2/0x150 [ 1456.359713][T12598] do_sys_ftruncate+0x3d9/0x550 [ 1456.364683][T12598] __x64_sys_ftruncate+0x59/0x80 [ 1456.369638][T12598] do_syscall_64+0xfa/0x790 [ 1456.374154][T12598] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1456.380048][T12598] RIP: 0033:0x45a647 [ 1456.383956][T12598] Code: 24 29 d7 48 69 ff e8 03 00 00 48 89 7c 24 08 48 89 e7 e8 dc e4 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 b8 4d 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1456.403567][T12598] RSP: 002b:00007f378507ea88 EFLAGS: 00000213 ORIG_RAX: 000000000000004d [ 1456.411991][T12598] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 000000000045a647 [ 1456.420069][T12598] RDX: 0000000020013730 RSI: 0000000008100000 RDI: 0000000000000006 11:57:48 executing program 4: mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000011, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:48 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) setsockopt$MISDN_TIME_STAMP(r1, 0x0, 0x1, &(0x7f0000000000), 0x4) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1456.420099][T12598] RBP: 000000000075bf20 R08: fe03f80fe03f80ff R09: 00000000fbad8001 [ 1456.420109][T12598] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000000000006 [ 1456.420118][T12598] R13: 00000000004caa0e R14: 00000000004e3e70 R15: 0000000000000005 [ 1456.451135][T12598] ERROR: Out of memory at tomoyo_realpath_from_path. 11:57:48 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) syz_open_dev$ptys(0xc, 0x3, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1456.644596][T12743] gfs2: not a GFS2 filesystem 11:57:49 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x9c, 0x20000002, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x82400) connect$pptp(r0, &(0x7f0000000080)={0x18, 0x2, {0x0, @broadcast}}, 0x1e) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) r3 = socket$bt_rfcomm(0x1f, 0x0, 0x3) setsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, &(0x7f0000000340)=0x1, 0x4) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) ioctl$TIOCLINUX3(r2, 0x541c, &(0x7f0000000000)) sendto$inet(r1, &(0x7f0000000000), 0x0, 0x40, 0x0, 0x0) unlink(&(0x7f00000000c0)='./file0\x00') [ 1456.716447][T12598] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps superblock 11:57:49 executing program 4: syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x1, 0x2) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:49 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) sendto$inet(r1, &(0x7f0000000000), 0xfffffffffffffc4c, 0xc0, 0x0, 0x0) 11:57:49 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='%xt4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1456.853368][T12598] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1456.862547][T12598] EXT4-fs error (device loop2): ext4_orphan_get:1247: comm syz-executor.2: bad orphan inode 28 [ 1456.911567][T12598] ext4_test_bit(bit=27, block=4) = 0 [ 1456.932203][T12598] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue 11:57:49 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x20901, 0xc6) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0xfffffffffffffea8) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0xc000, 0x0) accept$inet(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, &(0x7f0000000080)=0x10) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0xec) sendto$inet(r2, &(0x7f0000000000), 0x0, 0x400001c0, 0x0, 0x0) 11:57:49 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:49 executing program 1: r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/btrfs-control\x00', 0x400, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f00000002c0)={0xffffffff, [[0x4, 0xbe, 0x6, 0x621, 0xab, 0x3, 0x1ff], [0x2400000, 0x1, 0xe3eb, 0x200, 0x66, 0x6, 0x10001, 0x7], [0x9, 0x1ff, 0x292, 0xfffffbff, 0x2, 0x1, 0x0, 0x6c61e7aa]], [], [{0x400, 0x0, 0x5}, {0x8, 0x5, 0x200}, {0x3, 0x14, 0x9}, {0x20d, 0x1ff, 0x3}, {0x0, 0x1, 0xfffffff9}, {0xaac, 0xfffffbff, 0xfffffffd}, {0x8, 0x4, 0x8}, {0x7, 0x4, 0x5}, {0x0, 0x1, 0x7}, {0x8}, {0x2, 0x7fffffff, 0x3b}, {0x2, 0x2a, 0x3}], [], 0x4}) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup2(r4, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet(0x2, 0x0, 0x0) r7 = socket$inet_sctp(0x2, 0x5, 0x84) r8 = dup3(r6, r7, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000d6cff0), 0x0) sendto$inet(r8, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) sendto$inet(r7, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000025e000)=ANY=[@ANYBLOB="a154dd36", @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000a8a000)=0xc) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r8, 0x84, 0x7a, &(0x7f000059aff8)={r9}, &(0x7f000034f000)=0x2059b000) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r5, 0x84, 0xf, &(0x7f0000000000)={r9, @in6={{0xa, 0x4e24, 0x7, @dev={0xfe, 0x80, [], 0x16}, 0x6}}, 0x7, 0x7e, 0x7e56, 0x8, 0x101}, &(0x7f00000000c0)=0x98) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f0000000000)={r9, 0x7ff}, 0x8) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:49 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xfffffff6, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:49 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f00002be000/0x1000)=nil, 0x1000, &(0x7f0000000200)=""/163) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = syz_open_dev$usbfs(&(0x7f00000001c0)='/dev/bus/usb/00#/00#\x00', 0x80, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) r4 = dup2(r3, r1) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) r5 = accept(r4, &(0x7f0000000000)=@l2, &(0x7f0000000080)=0x80) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f00000000c0)={0x0, 0xfff}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r5, 0x84, 0x18, &(0x7f0000000140)={r6, 0x7f}, &(0x7f0000000180)=0x8) 11:57:49 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='\\xt4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:49 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='syzkaller1\x00', 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1457.368794][ C0] net_ratelimit: 23 callbacks suppressed [ 1457.368802][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1457.380318][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1457.386196][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1457.392017][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1457.408714][T13103] gfs2: not a GFS2 filesystem 11:57:49 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsu\x00', 0x101000, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f00000002c0)={{{@in=@broadcast, @in6=@mcast1}}, {{@in=@loopback}, 0x0, @in6=@mcast1}}, &(0x7f00000000c0)=0xe8) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x5) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvram\x00', 0x40, 0x0) r4 = socket$inet(0x2, 0x4, 0x81) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r3, 0x4010ae74, &(0x7f0000000040)={0x0, 0xf5, 0x1}) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r2, r2) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x1) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:49 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x10010, r1, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1457.522876][T13101] syz-executor.1 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 11:57:49 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x101161970, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1457.597516][T13101] CPU: 0 PID: 13101 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1457.607123][T13101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1457.607130][T13101] Call Trace: [ 1457.607153][T13101] dump_stack+0x197/0x210 [ 1457.607180][T13101] dump_header+0x177/0x1152 [ 1457.629309][T13101] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1457.635117][T13101] ? ___ratelimit+0x2c8/0x595 [ 1457.635135][T13101] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1457.635152][T13101] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1457.635170][T13101] ? trace_hardirqs_on+0x67/0x240 [ 1457.635189][T13101] ? pagefault_out_of_memory+0x11c/0x11c [ 1457.661555][T13101] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1457.667374][T13101] ? ___ratelimit+0x60/0x595 [ 1457.671972][T13101] ? do_raw_spin_unlock+0x178/0x270 [ 1457.677180][T13101] oom_kill_process.cold+0x10/0x15 [ 1457.682324][T13101] out_of_memory+0x334/0x13c0 [ 1457.687008][T13101] ? find_held_lock+0x35/0x130 [ 1457.691793][T13101] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1457.697610][T13101] ? oom_killer_disable+0x280/0x280 [ 1457.702829][T13101] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1457.708407][T13101] ? memcg_oom_wake_function+0x700/0x700 [ 1457.708431][T13101] ? do_raw_spin_unlock+0x178/0x270 [ 1457.708452][T13101] ? _raw_spin_unlock+0x28/0x40 [ 1457.724133][T13101] try_charge+0xf76/0x14d0 [ 1457.728572][T13101] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1457.734131][T13101] ? mark_held_locks+0xa4/0xf0 [ 1457.738900][T13101] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1457.744551][T13101] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1457.750382][T13101] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1457.756019][T13101] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1457.761313][T13101] ? trace_hardirqs_on+0x67/0x240 [ 1457.766364][T13101] mem_cgroup_charge_skmem+0x15e/0x300 [ 1457.771827][T13101] ? mem_cgroup_sk_free+0x90/0x90 [ 1457.776860][T13101] ? __kasan_check_write+0x14/0x20 [ 1457.781991][T13101] ? __alloc_skb+0x3d0/0x5e0 [ 1457.786601][T13101] __sk_mem_raise_allocated+0x56e/0x1410 [ 1457.792249][T13101] __sk_mem_schedule+0x6d/0xe0 [ 1457.797024][T13101] tcp_sendmsg_locked+0x1733/0x33a0 [ 1457.802248][T13101] ? tcp_sendpage+0x60/0x60 [ 1457.806754][T13101] ? trace_hardirqs_on+0x67/0x240 [ 1457.811781][T13101] ? lock_sock_nested+0x9a/0x120 [ 1457.816726][T13101] ? __local_bh_enable_ip+0x15a/0x270 [ 1457.822110][T13101] tcp_sendmsg+0x30/0x50 [ 1457.826474][T13101] inet_sendmsg+0x9e/0xe0 [ 1457.830816][T13101] ? inet_send_prepare+0x4e0/0x4e0 [ 1457.835944][T13101] sock_sendmsg+0xd7/0x130 [ 1457.840366][T13101] __sys_sendto+0x262/0x380 11:57:50 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video2\x00', 0x2, 0x0) 11:57:50 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='e\nt4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1457.845002][T13101] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1457.850400][T13101] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1457.856652][T13101] ? put_timespec64+0xda/0x140 [ 1457.861424][T13101] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1457.867156][T13101] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1457.872638][T13101] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1457.872654][T13101] ? do_syscall_64+0x26/0x790 [ 1457.872669][T13101] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe 11:57:50 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000000000)=0x1, 0x4) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) write$dsp(0xffffffffffffffff, &(0x7f00000002c0)="23f1b1523094cf7844b52a7fe5d9871dda5938f868599ac01ad79a1f262d62a08576ddf1bac75aeec25f38bef3c32b5b1eb4f3ad710c89fcd94b8f4c2c469407ec62b24638042ed239db81395e22e973388d6e58d7fcf92c5cef22e447a1128960a37b2b415e06ae1b11760030e486ed1952f8fcc41eeacd0f477ffc5d09a71ab16c2c21520bb2f8b17e8c38a6d3244cab4a946945ac9b4d6cde7f8bb710bce640663a5798de5594f1dde322a5c76b7617d96602e69a426990ee139c0a380ef544f771dd9f0f5abb1f0626df5f7c22c8d2623fdc09332f", 0xd7) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1457.872687][T13101] __x64_sys_sendto+0xe1/0x1a0 [ 1457.872707][T13101] do_syscall_64+0xfa/0x790 [ 1457.872726][T13101] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1457.872737][T13101] RIP: 0033:0x45a679 [ 1457.872753][T13101] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1457.872761][T13101] RSP: 002b:00007f138b242c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1457.872775][T13101] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1457.872784][T13101] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000004 [ 1457.872793][T13101] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1457.872801][T13101] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f138b2436d4 [ 1457.872810][T13101] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1457.880430][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1457.880482][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1457.938883][T13337] gfs2: not a GFS2 filesystem [ 1457.981290][T13101] memory: usage 307180kB, limit 307200kB, failcnt 1164 [ 1457.981300][T13101] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1457.981304][T13101] Memory cgroup stats for /syz1: [ 1457.981435][T13101] anon 10629120 [ 1457.981435][T13101] file 94208 [ 1457.981435][T13101] kernel_stack 73728 [ 1457.981435][T13101] slab 4173824 [ 1457.981435][T13101] sock 299335680 [ 1457.981435][T13101] shmem 0 [ 1457.981435][T13101] file_mapped 0 [ 1457.981435][T13101] file_dirty 0 [ 1457.981435][T13101] file_writeback 0 [ 1457.981435][T13101] anon_thp 10485760 [ 1457.981435][T13101] inactive_anon 135168 [ 1457.981435][T13101] active_anon 10629120 [ 1457.981435][T13101] inactive_file 0 [ 1457.981435][T13101] active_file 135168 [ 1457.981435][T13101] unevictable 0 [ 1457.981435][T13101] slab_reclaimable 1486848 [ 1457.981435][T13101] slab_unreclaimable 2686976 [ 1457.981435][T13101] pgfault 174504 [ 1457.981435][T13101] pgmajfault 0 [ 1457.981435][T13101] workingset_refault 0 [ 1457.981435][T13101] workingset_activate 0 [ 1457.981435][T13101] workingset_nodereclaim 0 [ 1457.981435][T13101] pgrefill 474 [ 1457.981435][T13101] pgscan 478 [ 1457.981435][T13101] pgsteal 0 [ 1457.981452][T13101] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0-1,oom_memcg=/syz1,task_memcg=/syz1,task=syz-executor.1,pid=13099,uid=0 [ 1457.981570][T13101] Memory cgroup out of memory: Killed process 13099 (syz-executor.1) total-vm:72712kB, anon-rss:10380kB, file-rss:35804kB, shmem-rss:0kB, UID:0 pgtables:155648kB oom_score_adj:1000 [ 1457.986839][ T1100] oom_reaper: reaped process 13099 (syz-executor.1), now anon-rss:0kB, file-rss:34844kB, shmem-rss:0kB [ 1458.336157][T13439] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 1458.408990][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1458.414834][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1458.427596][T13439] EXT4-fs: failed to create workqueue [ 1458.447625][T13439] EXT4-fs (loop2): mount failed [ 1458.488836][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1458.494667][ C1] protocol 88fb is buggy, dev hsr_slave_1 11:57:50 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='%xt4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:50 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000948000/0x1000)=nil, 0x1000, &(0x7f0000000200)=""/163) r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x280, 0x0) mmap$watch_queue(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0xd82bf05c24eff7a, 0x110, r0, 0x0) 11:57:50 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) ioctl$KVM_SMI(r1, 0xaeb7) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-monitor\x00', 0x10000, 0x0) setsockopt$bt_l2cap_L2CAP_CONNINFO(r3, 0x6, 0x2, &(0x7f0000000100)={0x9, 0x81, 0x4, 0x6}, 0x6) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r2, 0x8982, &(0x7f0000000000)) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x40, 0x0) ioctl$IOC_PR_RESERVE(r4, 0x401070c9, &(0x7f00000001c0)={0x1f, 0x8000, 0x1}) 11:57:50 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xedc000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:50 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000)="0ac8d9df921e5fda14bb96d3f0b20e1487acdc0f3520bb59ea06ba83b87f8d3cae2092102a7e8c170e1858f1b00cc8e65cd37857da2cc3d0c8f4272cd0fcc8fb866db33eb83164ac3cfe5fe79e613353c8ace34fc2ea38104b5132621ddf72fa9088c2cd1fdb8bc25d2505", 0xffffffffffffff10, 0x4004800, 0x0, 0x0) 11:57:51 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='e%t4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1458.767685][T13677] gfs2: not a GFS2 filesystem 11:57:51 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000000)={0x5, 0x0, 0xfc1, 0x8, 0x4, 0x44, 0x0, 0x9, 0x4, 0x20, 0x7, 0x7ff}) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:51 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x30, 0xffffffffffffffff, 0x2000) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x0, 0x0) ioctl$VIDIOC_LOG_STATUS(r0, 0x5646, 0x0) 11:57:51 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x1, 0x0) ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000000040)) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$EVIOCGKEY(r2, 0x80404518, &(0x7f0000000080)=""/211) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:51 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x1000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1459.167851][T14013] gfs2: not a GFS2 filesystem 11:57:51 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) ioctl$VIDIOC_G_FBUF(r1, 0x8030560a, &(0x7f00000000c0)={0xe1, 0x2, &(0x7f0000000000)="7132fc56797035c12adb36e5175f45de451c90c189bfaa24b61b7bdc8b6086e9cb13d917073c61691331de5be8934432434032ba3287617369aba7be544db87da1c35b45d5e989f39f59d6e8ddd19bc3a4eb5c9e7960dcee097fa624aad46e7ffd1d88e118d41a7d8f6999e72ae1bcea45f385faf165ba8a3f33e1489420f005da2bf9de5fe3", {0xfffffff9, 0x1, 0x38416761, 0x1, 0xf5, 0x2, 0x9, 0x9}}) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:51 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='e\\t4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:51 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='\\xt4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:51 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x1, 0x38d8991b03e320b5) ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000180)="2c2ff854a53bbb65a9d2cd8de06b5a866536bf59416b155e7b89acf3b83460865ee0159a6bdf43b3327773378ee6441e454d7d325985e3ef246d0028d64f2eb12d19c05b450da3c081b47ec429e3f2984b7cdb14431e730e85faf7a760b6e26b74e3b90edd1ebffb43715a9f491f0b15426693dcae34b928f8817f9e71b6d1c1b549adedfc3f4b53ccc363f50ffef304a96ae63fc0d803d2411fbbab484da726f1984d82836df463b91e0e6272a4378029c871b504e8e4e8c5d30b4d68b0b2ecb0733a0cae0493800bee9ebdd391016bd4697083f2e2769eac1ae27edf1dd2afcb720350d80a9be80a278d730dba0991e388c5f284c37ab7009d14e0feb3cafd") mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f00000000c0)=""/158) 11:57:51 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x4000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:51 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r0, r0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f0000000000)=[@in6={0xa, 0x4e21, 0x3, @dev={0xfe, 0x80, [], 0x1b}, 0x7fffffff}, @in={0x2, 0x4e24, @multicast1}, @in6={0xa, 0x4e24, 0x1000, @ipv4={[], [], @remote}, 0x6}, @in6={0xa, 0x4e23, 0x800, @rand_addr="2c5fd3bfd0be1ebc6e692ee51cc04a4d", 0x1000}, @in6={0xa, 0x4e20, 0x7, @remote, 0x3}, @in={0x2, 0x4e20, @remote}, @in6={0xa, 0x4e21, 0x1, @mcast2, 0x8}, @in6={0xa, 0x4e22, 0x4, @dev={0xfe, 0x80, [], 0x7}, 0x1eb48da}, @in={0x2, 0x4e23, @multicast2}, @in={0x2, 0x4e23, @multicast1}], 0xe8) [ 1459.560827][T14291] gfs2: not a GFS2 filesystem 11:57:51 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f00000001c0)={0x2, {{0xa, 0x4e23, 0x0, @mcast2, 0x8001}}}, 0x88) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff6000/0x1000)=nil, &(0x7f0000ff7000/0x8000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000000)="7cef4bf591bf73a5ed1b1d9f9129802309b03d4706040cf873656d3a9024191a2ce9c7ef17e0a4563954fcb3218aabdcd82a9649c25fae53b94ed9ad664458b676d4047a43059c8295290b879477fcd00e64677f3b89c73321f56874cb3aac944a1099436f22c4f7695b719c54cfba6a51b74ee7a192595b487c26a88a0d055b4f0b959c0d182b2872adfab77ff81fe445b70ea60acaca45dfd95a359c6ffb9906bb49daccff3ae35a9610cfbb22f7aa78bb1bfdd6f5879faf5da0dc2915bea8b8ae3e2c3c3de4d2e4e9b5fc7fe1cf", 0xcf, r2}, 0x68) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:52 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x14}}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:52 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r2, 0xc0305710, &(0x7f0000000000)={0x1, 0x4, 0x9, 0xfbf}) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e20, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$IP_VS_SO_SET_EDITDEST(r0, 0x0, 0x489, &(0x7f00000000c0)={{0x58, @broadcast, 0x4e20, 0x4, 'lblcr\x00', 0x37, 0xffffffff, 0x3e}, {@rand_addr=0x7, 0x4e20, 0x0, 0x2, 0x7, 0x6}}, 0x44) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:52 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_init_net_socket$llc(0x1a, 0x5, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) getsockopt$SO_J1939_PROMISC(r1, 0x6b, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x4) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r3, r3) sendto$inet(r3, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r5 = dup2(r4, r4) write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000080), 0xa) r6 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r6, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r6, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r6, r6) sendto$inet(r6, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r7 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r7, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r7, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r8 = dup2(r7, r7) write$UHID_GET_REPORT_REPLY(r8, &(0x7f0000000080), 0xa) ioctl$FIDEDUPERANGE(r3, 0xc0189436, &(0x7f00000000c0)={0x1ff, 0x1, 0x5, 0x0, 0x0, [{r5, 0x0, 0xe7d}, {r6, 0x0, 0x3ff}, {0xffffffffffffffff, 0x0, 0x40}, {r2, 0x0, 0x7}, {r8, 0x0, 0x6}]}) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x4000000, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:52 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ex\n4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:52 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r2 = openat$cgroup_ro(r1, &(0x7f0000000100)='cgroup.controllers\x00', 0x0, 0x0) getsockopt$inet_tcp_buf(r2, 0x6, 0x8, &(0x7f00000001c0)=""/89, &(0x7f0000000140)=0x59) setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x48f, &(0x7f00000000c0)={0x89, @multicast2, 0x4e24, 0x3, 'wrr\x00', 0x0, 0x0, 0x7d}, 0x2c) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x10000, 0x0) ioctl$sock_bt_hidp_HIDPCONNDEL(r4, 0x400448c9, &(0x7f0000000040)={{0xff, 0x7, 0x0, 0x8, 0x9, 0x20}, 0x2}) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080)='/dev/adsp1\x00', 0x2000, 0x0) sendto$inet(r3, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) ioctl$VIDIOC_DQBUF(r1, 0xc0585611, &(0x7f00000002c0)={0x10000000, 0x2, 0x4, 0x70000, {}, {0x3, 0xc, 0x21, 0xb0, 0x20, 0x8, "b32d07b2"}, 0x1e, 0x1, @offset=0x7, 0x4}) [ 1459.871776][T14443] IPVS: set_ctl: invalid protocol: 88 255.255.255.255:20000 [ 1459.885493][T14518] IPVS: set_ctl: invalid protocol: 88 255.255.255.255:20000 11:57:52 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xe000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1460.001080][T14555] IPVS: set_ctl: invalid protocol: 137 224.0.0.2:20004 11:57:52 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0xfffffffffffffebb, 0x0, 0x0, 0xfffffffffffffeff) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) prctl$PR_SET_FPEMU(0xa, 0x1) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$LOOP_SET_BLOCK_SIZE(r2, 0x4c09, 0x7) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x28200, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1460.073629][T14555] IPVS: set_ctl: invalid protocol: 137 224.0.0.2:20004 11:57:52 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='e%t4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1460.137907][T14416] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 11:57:52 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x8, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x2, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) setsockopt$rose(r2, 0x104, 0x2, &(0x7f00000000c0)=0x1, 0x4) openat$cgroup_ro(r0, &(0x7f0000000080)='cpuacct.usage_user\x00', 0x0, 0x0) r3 = open(&(0x7f0000000000)='./file0\x00', 0x110080, 0x20) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r3, 0x80045530, &(0x7f0000000040)) [ 1460.216975][T14416] CPU: 0 PID: 14416 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1460.226579][T14416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1460.236642][T14416] Call Trace: [ 1460.239945][T14416] dump_stack+0x197/0x210 [ 1460.244326][T14416] dump_header+0x177/0x1152 [ 1460.248840][T14416] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1460.254646][T14416] ? ___ratelimit+0x2c8/0x595 [ 1460.259328][T14416] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1460.265157][T14416] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1460.270449][T14416] ? trace_hardirqs_on+0x67/0x240 [ 1460.275483][T14416] ? pagefault_out_of_memory+0x11c/0x11c [ 1460.281121][T14416] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1460.286924][T14416] ? ___ratelimit+0x60/0x595 [ 1460.291507][T14416] ? do_raw_spin_unlock+0x178/0x270 [ 1460.296715][T14416] oom_kill_process.cold+0x10/0x15 [ 1460.301829][T14416] out_of_memory+0x334/0x13c0 [ 1460.301846][T14416] ? find_held_lock+0x35/0x130 [ 1460.301866][T14416] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1460.301881][T14416] ? oom_killer_disable+0x280/0x280 [ 1460.301907][T14416] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1460.301922][T14416] ? memcg_oom_wake_function+0x700/0x700 [ 1460.301944][T14416] ? do_raw_spin_unlock+0x178/0x270 [ 1460.301961][T14416] ? _raw_spin_unlock+0x28/0x40 [ 1460.301981][T14416] try_charge+0xf76/0x14d0 [ 1460.302008][T14416] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1460.302027][T14416] ? mark_held_locks+0xa4/0xf0 [ 1460.311455][T14416] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1460.311471][T14416] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1460.311482][T14416] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1460.311496][T14416] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1460.311514][T14416] ? trace_hardirqs_on+0x67/0x240 [ 1460.311533][T14416] mem_cgroup_charge_skmem+0x15e/0x300 [ 1460.391233][T14416] ? mem_cgroup_sk_free+0x90/0x90 [ 1460.396262][T14416] ? __kasan_check_write+0x14/0x20 [ 1460.401382][T14416] ? __alloc_skb+0x3d0/0x5e0 [ 1460.405980][T14416] __sk_mem_raise_allocated+0x56e/0x1410 [ 1460.411631][T14416] __sk_mem_schedule+0x6d/0xe0 [ 1460.416789][T14416] tcp_sendmsg_locked+0x1733/0x33a0 [ 1460.422016][T14416] ? tcp_sendpage+0x60/0x60 [ 1460.426529][T14416] ? trace_hardirqs_on+0x67/0x240 [ 1460.431575][T14416] ? lock_sock_nested+0x9a/0x120 [ 1460.436523][T14416] ? __local_bh_enable_ip+0x15a/0x270 [ 1460.441909][T14416] tcp_sendmsg+0x30/0x50 [ 1460.446174][T14416] inet_sendmsg+0x9e/0xe0 [ 1460.450513][T14416] ? inet_send_prepare+0x4e0/0x4e0 [ 1460.455644][T14416] sock_sendmsg+0xd7/0x130 [ 1460.460061][T14416] __sys_sendto+0x262/0x380 [ 1460.464575][T14416] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1460.469973][T14416] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1460.476217][T14416] ? put_timespec64+0xda/0x140 [ 1460.480988][T14416] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1460.492277][T14416] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1460.497741][T14416] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1460.503214][T14416] ? do_syscall_64+0x26/0x790 [ 1460.507898][T14416] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1460.513968][T14416] __x64_sys_sendto+0xe1/0x1a0 [ 1460.518741][T14416] do_syscall_64+0xfa/0x790 [ 1460.523264][T14416] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1460.529156][T14416] RIP: 0033:0x45a679 [ 1460.529172][T14416] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1460.529180][T14416] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c 11:57:52 executing program 4: getegid() mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) r0 = gettid() timer_create(0x8, &(0x7f00000000c0)={0x0, 0x32, 0x4, @tid=r0}, &(0x7f00000002c0)) ioprio_set$pid(0x1, r0, 0x100) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x20000, 0x0) r2 = accept4$x25(0xffffffffffffffff, &(0x7f0000000480)={0x9, @remote}, &(0x7f00000004c0)=0x12, 0x800) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) r5 = syz_open_dev$sndpcmc(&(0x7f0000000500)='/dev/snd/pcmC#D#c\x00', 0x10001, 0x385083) sendmsg$unix(r1, &(0x7f0000000580)={&(0x7f0000000040)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000280)=[{&(0x7f0000000180)="23d8e8529602d39893d1d39d2bfff4700f7f853782eb0896a072e3480727fbef5b9d94d3452256c0f743ed7cbc928371545f9d12b06bab06434c9ec55fdf0fde75ea9f41d2c28ea52aab3e97fdeb23984daafcf953794a9565d268058685c0a463c8ebd1555aa7f7237a7ac1e0d965e14a9ce2e11cf2eec0ce6a74f686ed7c0c19c22e108c6988b58573ac80d9bf440f94112e8ac410b8dd5f2412ab3e425d79c01e659f5728b692c5bac3edb5bc4c172614cb8b70d57fb9e7a667389e18efbdc6042e765c3e835a22f09d94cda83926eecac00e8589499faba06078a708c07537d529b188fe96bba9b44336", 0xec}, {&(0x7f0000000300)="1c61d2d8730df0c69abcf0b9fafabc9c6fa72ef50fc8b0c47a7c9d0f81f7de0502ff7ea1ef83c02953a3928f94d8f64569eed83bd587229b4cacf2244a50c4c7c5b2131fc67eced24c60e47b7c8d2a3caa3c551d51d2f67c5284e190cc1050a54a0b4b385abeabdbb52608208c174961aba7b7c917a869ef8e5345dc85db6f0446d9eaab484c81f629db51070193ebe42d2606c635a46332c80fccd8c289475bfb00f12a60eda5bffd830d42f2c6642cc51b666cec9af4faa3c458a10a0fd910f96421334927d55a310498ac821246e69404ab56b44514d17ae517d77be5f038dd1dbf9d15ba739169ad4e40868dfcaca1533c725b2b5837b1535c61319e20", 0xff}, {&(0x7f0000000400)="32289455945801407396318d4d3f9bceb6ee93262e498b763859d87d656acf20e28568658908ff358914285ac9398bd70124281468eee7d8e3d70d32f36490c0ef35a0cc69d9210cb7cc3ed9", 0x4c}], 0x3, &(0x7f0000000540)=[@rights={{0x1c, 0x1, 0x1, [r2, r4, r5]}}], 0x20, 0x1}, 0x40000410) mincore(&(0x7f00007cf000/0x3000)=nil, 0x3000, &(0x7f00000000c0)=""/180) 11:57:52 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) pwritev(r2, &(0x7f0000000100)=[{&(0x7f0000000000)="8a1e785dcf13933f375eeb610b93d311b63b0995e81cf3b8bb802e5ba4ea09a96b16495fd5d85e77288c140e6fbf78b2d8b10dbeac505f38138518a36d8004880120fdc6724f2b70046b44ebda8b37756592867ef765efe5a787073d0a450bd2da6cc59233b1198db510ae3509c81a2f8d9300ae016e90bb851dc10ff4d47d23d818062c838c975f70fff7d0e913762d82dda7336d6e525d678cfda42339e3c9eb4ffdec892e1f370f7d600a33e7f72eebe006a1ab7828fd6f94f5cab691a0a3eea7ae6928b98c41da00739b723f410506117abed48084e0c341f041c60e5fe77417f030c3e38940a576344c7981ed8f91b1749a29", 0xf5}, {&(0x7f00000002c0)="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", 0x1000}], 0x2, 0xffffffffffffff70) 11:57:52 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x80) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:52 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20\x00', 0x400, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x2) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:52 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ex%4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1460.529195][T14416] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1460.529205][T14416] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000005 [ 1460.529213][T14416] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1460.529222][T14416] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1460.529237][T14416] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1460.642990][T14578] gfs2: not a GFS2 filesystem [ 1460.703408][T14416] memory: usage 307188kB, limit 307200kB, failcnt 37 [ 1460.719789][T14416] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1460.726655][T14416] Memory cgroup stats for /syz0: [ 1460.726761][T14416] anon 6701056 [ 1460.726761][T14416] file 262144 [ 1460.726761][T14416] kernel_stack 110592 [ 1460.726761][T14416] slab 4775936 [ 1460.726761][T14416] sock 302510080 [ 1460.726761][T14416] shmem 0 [ 1460.726761][T14416] file_mapped 0 [ 1460.726761][T14416] file_dirty 0 [ 1460.726761][T14416] file_writeback 0 [ 1460.726761][T14416] anon_thp 6291456 [ 1460.726761][T14416] inactive_anon 0 [ 1460.726761][T14416] active_anon 6615040 [ 1460.726761][T14416] inactive_file 53248 [ 1460.726761][T14416] active_file 0 [ 1460.726761][T14416] unevictable 0 [ 1460.726761][T14416] slab_reclaimable 1486848 [ 1460.726761][T14416] slab_unreclaimable 3289088 [ 1460.726761][T14416] pgfault 168960 [ 1460.726761][T14416] pgmajfault 0 [ 1460.726761][T14416] workingset_refault 0 [ 1460.726761][T14416] workingset_activate 0 [ 1460.726761][T14416] workingset_nodereclaim 0 [ 1460.726761][T14416] pgrefill 44 [ 1460.726761][T14416] pgscan 67 [ 1460.726761][T14416] pgsteal 0 [ 1460.726761][T14416] pgactivate 0 [ 1460.888043][T14416] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14408,uid=0 [ 1460.939729][T14416] Memory cgroup out of memory: Killed process 14408 (syz-executor.0) total-vm:72712kB, anon-rss:4240kB, file-rss:35808kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1461.030332][ T1100] oom_reaper: reaped process 14408 (syz-executor.0), now anon-rss:0kB, file-rss:34848kB, shmem-rss:0kB 11:57:53 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) ioctl$IOC_PR_CLEAR(r3, 0x401070cd, &(0x7f0000000100)={0x8cb}) r4 = open(&(0x7f0000000440)='./file0\x00', 0x20102, 0x23bae06a9eefcc4b) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r4, 0x84, 0x1c, &(0x7f0000000480), &(0x7f00000004c0)=0x4) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) r5 = add_key(&(0x7f00000001c0)='.dead\x00', &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000340)="248bd63d9b8d8dec8fdc2d5cdd8535fd9db6510ebadf34a09fa6eaee86a30ea3cdb0c5289d2d57ec939e99f19e26057f5365f9979d2dbde18561fbfa6aad18df0099b8f34ee38c1cafef5f6b448fd61ee8251b0a5b43918e627fc698578c0fd5d39c1bbaeedd81dfb21d2b97a71ce46d9cde44a5de9b4ed239effd07cb43b3baf87058467a39431cd65b55018ef3c3de65403209f7e13201bea87be84affa6441a0b11301eb951409253bd6476861ed8637e2e9d87869d8804fcf62020170b6203485369fa34828a377088b339de729227e9bea87b4ac5de857d9cc4391fc4500c79a0681dfb62934b51fe68d1e04f7da2", 0xf1, 0xffffffffffffffff) keyctl$get_keyring_id(0x0, r5, 0x80) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300)='TIPC\x00') sendmsg$TIPC_CMD_GET_MAX_PORTS(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000580)={0x1c, r7, 0x10d, 0x0, 0x0, {{}, 0x0, 0x4}}, 0x1c}}, 0x0) r8 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r8, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r8, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r9 = dup2(r8, r8) write$UHID_GET_REPORT_REPLY(r9, &(0x7f0000000080), 0xa) setsockopt$sock_linger(r9, 0x1, 0xd, &(0x7f0000000140)={0x1, 0x1}, 0x8) sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4e220000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r7, 0x10, 0x70bd28, 0x25dfdbfb, {{}, 0x0, 0x4, 0x0, {0x8, 0x11, 0x101}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000841}, 0x80) 11:57:53 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) ioctl$sock_SIOCGIFBR(r3, 0x8940, &(0x7f00000000c0)=@get={0x1, &(0x7f0000000000)=""/141, 0x2}) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1) ioctl$PPPIOCGL2TPSTATS(r3, 0x80487436, &(0x7f0000000100)="6c6831cdb7e7624ea10569a545c2b9f222fa56275ddfe0e0769b1506df480ab370b32ed7d97661181725aa7937bd75d783cf4e0e5219ff8674732023a505ea") bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:53 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x100000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:53 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000480)='/dev/vsock\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FUSE_DEV_IOC_CLONE(r1, 0x8004e500, &(0x7f0000000100)=r1) r3 = dup2(r2, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet(0x2, 0x0, 0x0) r5 = socket$inet_sctp(0x2, 0x5, 0x84) r6 = dup3(r4, r5, 0x0) r7 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000007740)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r7, 0x0, 0x82, &(0x7f0000007780)={'nat\x00'}, &(0x7f0000007800)=0x78) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10) sendto$inet(r6, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) sendto$inet(r5, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000140)=ANY=[@ANYBLOB="00b7d1ae3512ac45c6c3afc606695f8dce72cfc7a68fc5418c1fbdd9e3fb4793cc22bee62dfe4e9a4da4c3c55ae071a69ca6689c", @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000a8a000)=0xc) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r6, 0x84, 0x7a, &(0x7f000059aff8)={r8}, &(0x7f000034f000)=0x2059b000) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r3, 0x84, 0xf, &(0x7f0000000000)={r8, @in6={{0xa, 0x4e24, 0x7, @dev={0xfe, 0x80, [], 0x16}, 0x6}}, 0x7, 0x7e, 0x7e56, 0x8, 0x101}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f00000004c0)={r8, 0x6}, &(0x7f0000000500)=0x8) r9 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0xd22551fb3b55a382, 0x0) getsockopt$inet_sctp6_SCTP_INITMSG(r9, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:53 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) ioctl$RTC_WKALM_RD(r1, 0x80287010, &(0x7f0000000000)) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1461.179629][T14827] gfs2: not a GFS2 filesystem 11:57:53 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='e\\t4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:53 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x3, 0x2) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:53 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ex\\4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:53 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x200000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1461.447266][T15015] Unknown ioctl -2147162880 11:57:54 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ocfs2_control\x00', 0x802, 0x0) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x28c, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x24}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0xe23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) r5 = accept4$unix(r4, &(0x7f0000000100)=@abs, &(0x7f00000001c0)=0x6e, 0x40800) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='erspan0\x00', 0x10) r6 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r6, &(0x7f0000000080), 0xa) r7 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r7, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r7, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r8 = dup2(r7, r7) write$UHID_GET_REPORT_REPLY(r8, &(0x7f0000000080), 0xa) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000280)='devlink\x00') sendmsg$DEVLINK_CMD_PORT_SET(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002700)={0x44, r10, 0x1, 0x0, 0x0, {0x25, 0x2}, [{{@nsim={{0x10, 0x1, 'netdevsim\x00'}, {0x10, 0x2, {'netdevsim', 0x0}}}, {0x3}}, {0x8}}]}, 0x44}}, 0x0) sendmsg$DEVLINK_CMD_PORT_GET(r8, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x88, r10, 0xe02, 0x70bd29, 0x25dfdbfd, {}, [{{@pci={{0x8, 0x1, 'pci\x00'}, {0x14, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0x10, 0x1, 'netdevsim\x00'}, {0x10, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0x10, 0x1, 'netdevsim\x00'}, {0x10, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}]}, 0x88}, 0x1, 0x0, 0x0, 0x28084}, 0x4) getsockopt$inet_sctp6_SCTP_MAXSEG(r6, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0, 0xfffffff7}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000200)=ANY=[@ANYRES32=r11, @ANYBLOB="350000009fc24bcdb5652d6aac3d612af444178600c5015597446e8c406c613299673bd715a8bca78f80e2a6a6e2359abbf2a13938edefcb8d343ca0e91422a51863faf21f5938611096324d918f5be0"], &(0x7f00000000c0)=0x3d) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:54 executing program 4: mmap(&(0x7f0000470000/0x1000)=nil, 0x1000, 0x7db4edeecda4e56d, 0x31, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0xa, 0x2, 0x73) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f0000006fc0)=[{{0x0, 0x0, 0x0}}], 0x300, 0x0, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:54 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext\a\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1461.706240][T15066] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1461.756341][T15015] Unknown ioctl -2147162880 [ 1461.784495][T15072] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. 11:57:54 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) recvfrom$llc(r2, &(0x7f00000002c0)=""/4096, 0x1000, 0x60, &(0x7f0000000000)={0x1a, 0x201, 0x6b, 0x3f, 0x20, 0x81, @dev={[], 0xc}}, 0x10) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1461.829845][T15060] gfs2: not a GFS2 filesystem 11:57:54 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x300000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:54 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000)="d755c87bb3dc7e6a00"/23, 0xfffffffffffffe67, 0x50, 0x0, 0x14288e) [ 1462.044687][T15218] gfs2: not a GFS2 filesystem 11:57:54 executing program 0: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0xbd080, 0x0) sendto$inet(r0, 0x0, 0x0, 0x4, 0x0, 0x957ca61b709202bc) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r2 = accept$alg(0xffffffffffffffff, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00', 0xfffffffffffffe6f) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r4, 0x40405514, &(0x7f0000000000)={0x0, 0x0, 0x4, 0x4, '\x00', 0x5}) 11:57:54 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ex%4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:54 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext\n\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:54 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x2b7, 0x24042041, 0x0, 0xfffffffffffffff6) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:54 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x400000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:54 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xff, 0x44000) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000040)={0x0, @aes128}) 11:57:54 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = dup(0xffffffffffffffff) sendto(r0, &(0x7f00000002c0)="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", 0x1000, 0x0, &(0x7f0000000000)=@pptp={0x18, 0x2, {0x3, @dev={0xac, 0x14, 0x14, 0x10}}}, 0x80) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1462.468158][T15431] gfs2: not a GFS2 filesystem 11:57:54 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0xfffffffffffffe31) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1462.501260][T15432] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1462.504842][T15438] net_ratelimit: 38 callbacks suppressed [ 1462.504863][T15438] TCP: out of memory -- consider tuning tcp_mem [ 1462.533209][T15438] TCP: out of memory -- consider tuning tcp_mem [ 1462.568772][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1462.574658][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1462.606606][T15432] CPU: 0 PID: 15432 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1462.616214][T15432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1462.626269][T15432] Call Trace: [ 1462.629567][T15432] dump_stack+0x197/0x210 [ 1462.633906][T15432] dump_header+0x177/0x1152 [ 1462.638418][T15432] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1462.644260][T15432] ? ___ratelimit+0x2c8/0x595 [ 1462.648943][T15432] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1462.654762][T15432] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1462.660487][T15432] ? trace_hardirqs_on+0x67/0x240 [ 1462.665624][T15432] ? pagefault_out_of_memory+0x11c/0x11c [ 1462.671260][T15432] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1462.677108][T15432] ? ___ratelimit+0x60/0x595 [ 1462.677125][T15432] ? do_raw_spin_unlock+0x178/0x270 [ 1462.677145][T15432] oom_kill_process.cold+0x10/0x15 [ 1462.677163][T15432] out_of_memory+0x334/0x13c0 [ 1462.677183][T15432] ? find_held_lock+0x35/0x130 [ 1462.701483][T15432] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1462.707694][T15432] ? oom_killer_disable+0x280/0x280 [ 1462.712921][T15432] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1462.718566][T15432] ? memcg_oom_wake_function+0x700/0x700 [ 1462.724223][T15432] ? do_raw_spin_unlock+0x178/0x270 [ 1462.729436][T15432] ? _raw_spin_unlock+0x28/0x40 [ 1462.734402][T15432] try_charge+0xf76/0x14d0 [ 1462.738847][T15432] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1462.744408][T15432] ? mark_held_locks+0xa4/0xf0 [ 1462.749183][T15432] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1462.754948][T15432] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1462.760767][T15432] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1462.766408][T15432] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1462.771809][T15432] ? trace_hardirqs_on+0x67/0x240 [ 1462.776843][T15432] mem_cgroup_charge_skmem+0x15e/0x300 [ 1462.782305][T15432] ? mem_cgroup_sk_free+0x90/0x90 [ 1462.787337][T15432] ? __kmalloc_node_track_caller+0x4e/0x70 [ 1462.793155][T15432] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1462.799406][T15432] ? __phys_addr+0xa4/0x120 [ 1462.803930][T15432] __sk_mem_raise_allocated+0x56e/0x1410 [ 1462.809583][T15432] __sk_mem_schedule+0x6d/0xe0 [ 1462.814364][T15432] sk_stream_alloc_skb+0x771/0xc90 [ 1462.819492][T15432] tcp_sendmsg_locked+0xcb1/0x33a0 [ 1462.824630][T15432] ? tcp_sendpage+0x60/0x60 [ 1462.829144][T15432] ? trace_hardirqs_on+0x67/0x240 [ 1462.834202][T15432] ? lock_sock_nested+0x9a/0x120 [ 1462.839150][T15432] ? __local_bh_enable_ip+0x15a/0x270 [ 1462.840775][T15599] TCP: out of memory -- consider tuning tcp_mem [ 1462.844536][T15432] tcp_sendmsg+0x30/0x50 [ 1462.844556][T15432] inet_sendmsg+0x9e/0xe0 [ 1462.844572][T15432] ? inet_send_prepare+0x4e0/0x4e0 [ 1462.844595][T15432] sock_sendmsg+0xd7/0x130 [ 1462.857479][T15599] TCP: out of memory -- consider tuning tcp_mem [ 1462.859370][T15432] __sys_sendto+0x262/0x380 [ 1462.859392][T15432] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1462.859427][T15432] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1462.859451][T15432] ? put_timespec64+0xda/0x140 [ 1462.895996][T15432] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1462.901742][T15432] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1462.907220][T15432] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1462.912694][T15432] ? do_syscall_64+0x26/0x790 [ 1462.916706][T15601] TCP: out of memory -- consider tuning tcp_mem [ 1462.917379][T15432] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1462.917401][T15432] __x64_sys_sendto+0xe1/0x1a0 [ 1462.917422][T15432] do_syscall_64+0xfa/0x790 [ 1462.917445][T15432] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1462.931048][T15601] TCP: out of memory -- consider tuning tcp_mem [ 1462.934568][T15432] RIP: 0033:0x45a679 11:57:55 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r0, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, 0x0, 0x0) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r4, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:55 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x200000, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0xc0505350, &(0x7f0000000040)={{0x3f, 0x5}, {0x5d, 0x1f}, 0xfffffffa, 0x6, 0x2}) 11:57:55 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) getsockopt$ARPT_SO_GET_INFO(r1, 0x0, 0x60, &(0x7f0000000000)={'filter\x00'}, &(0x7f00000000c0)=0x44) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000140)='team_slave_0\x00', 0x0) r4 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x7fff) ioctl$KVM_RUN(r5, 0xae80, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:55 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x400000, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000040)=0x800, 0x4) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:55 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2000, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/renderD128\x00', 0x240000, 0x0) [ 1462.934584][T15432] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1462.934593][T15432] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1462.934608][T15432] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1462.934617][T15432] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1462.934624][T15432] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1462.934638][T15432] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1462.987287][T15604] TCP: out of memory -- consider tuning tcp_mem [ 1462.991070][T15432] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1462.992020][ C0] TCP: out of memory -- consider tuning tcp_mem [ 1463.068795][T15432] memory: usage 307200kB, limit 307200kB, failcnt 126 [ 1463.086170][T15432] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1463.106844][T15432] Memory cgroup stats for /syz0: [ 1463.106977][T15432] anon 4493312 [ 1463.106977][T15432] file 126976 [ 1463.106977][T15432] kernel_stack 110592 [ 1463.106977][T15432] slab 4775936 [ 1463.106977][T15432] sock 304640000 [ 1463.106977][T15432] shmem 0 [ 1463.106977][T15432] file_mapped 0 [ 1463.106977][T15432] file_dirty 0 [ 1463.106977][T15432] file_writeback 0 [ 1463.106977][T15432] anon_thp 4194304 [ 1463.106977][T15432] inactive_anon 0 [ 1463.106977][T15432] active_anon 4562944 [ 1463.106977][T15432] inactive_file 53248 [ 1463.106977][T15432] active_file 0 [ 1463.106977][T15432] unevictable 0 [ 1463.106977][T15432] slab_reclaimable 1486848 [ 1463.106977][T15432] slab_unreclaimable 3289088 [ 1463.106977][T15432] pgfault 169224 [ 1463.106977][T15432] pgmajfault 0 [ 1463.106977][T15432] workingset_refault 0 [ 1463.106977][T15432] workingset_activate 0 [ 1463.106977][T15432] workingset_nodereclaim 0 [ 1463.106977][T15432] pgrefill 110 [ 1463.106977][T15432] pgscan 100 [ 1463.106977][T15432] pgsteal 33 [ 1463.106977][T15432] pgactivate 33 [ 1463.218001][T15432] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=32435,uid=0 [ 1463.244813][T15432] Memory cgroup out of memory: Killed process 32435 (syz-executor.0) total-vm:72712kB, anon-rss:2192kB, file-rss:35784kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000 [ 1463.263079][T15430] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1463.264540][ T1100] oom_reaper: reaped process 32435 (syz-executor.0), now anon-rss:0kB, file-rss:34824kB, shmem-rss:0kB [ 1463.274976][T15430] CPU: 1 PID: 15430 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1463.293843][T15430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1463.303897][T15430] Call Trace: [ 1463.307200][T15430] dump_stack+0x197/0x210 [ 1463.311539][T15430] dump_header+0x177/0x1152 [ 1463.316049][T15430] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1463.321852][T15430] ? ___ratelimit+0x2c8/0x595 [ 1463.326530][T15430] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1463.332341][T15430] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1463.337634][T15430] ? trace_hardirqs_on+0x67/0x240 [ 1463.342700][T15430] ? pagefault_out_of_memory+0x11c/0x11c [ 1463.348317][T15430] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1463.354118][T15430] ? ___ratelimit+0x60/0x595 [ 1463.358710][T15430] ? do_raw_spin_unlock+0x178/0x270 [ 1463.363901][T15430] oom_kill_process.cold+0x10/0x15 [ 1463.369004][T15430] out_of_memory+0x334/0x13c0 [ 1463.373678][T15430] ? find_held_lock+0x35/0x130 [ 1463.378447][T15430] ? oom_killer_disable+0x280/0x280 [ 1463.383646][T15430] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1463.389182][T15430] ? memcg_oom_wake_function+0x700/0x700 [ 1463.394849][T15430] ? do_raw_spin_unlock+0x178/0x270 [ 1463.400106][T15430] ? _raw_spin_unlock+0x28/0x40 [ 1463.404940][T15430] try_charge+0xa54/0x14d0 [ 1463.409363][T15430] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1463.414901][T15430] ? percpu_ref_tryget+0x102/0x230 [ 1463.420002][T15430] ? rcu_read_lock_held+0x9c/0xb0 [ 1463.425020][T15430] ? __kasan_check_read+0x11/0x20 [ 1463.430043][T15430] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1463.435579][T15430] mem_cgroup_try_charge+0x136/0x590 [ 1463.440892][T15430] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1463.446510][T15430] __handle_mm_fault+0x1f1f/0x3da0 [ 1463.451623][T15430] ? vm_iomap_memory+0x1a0/0x1a0 [ 1463.456558][T15430] ? handle_mm_fault+0x292/0xa50 [ 1463.461495][T15430] ? handle_mm_fault+0x7a0/0xa50 [ 1463.466445][T15430] ? __kasan_check_read+0x11/0x20 [ 1463.471475][T15430] handle_mm_fault+0x3b2/0xa50 [ 1463.476236][T15430] __do_page_fault+0x536/0xd80 [ 1463.481002][T15430] do_page_fault+0x38/0x590 [ 1463.485488][T15430] page_fault+0x39/0x40 [ 1463.489633][T15430] RIP: 0033:0x411e6f [ 1463.493530][T15430] Code: 0f 84 c8 02 00 00 48 83 bd 78 ff ff ff 00 0f 84 f9 04 00 00 48 8b 95 68 ff ff ff 44 89 95 38 ff ff ff 4c 8d ac 10 00 f7 ff ff <49> 89 85 90 06 00 00 49 8d 85 10 03 00 00 49 89 95 98 06 00 00 41 [ 1463.513136][T15430] RSP: 002b:00007fffbbd61640 EFLAGS: 00010206 [ 1463.519203][T15430] RAX: 00007f1d88f9c000 RBX: 0000000000020000 RCX: 000000000045a6ca [ 1463.527168][T15430] RDX: 0000000000021000 RSI: 0000000000021000 RDI: 0000000000000000 [ 1463.535123][T15430] RBP: 00007fffbbd61720 R08: ffffffffffffffff R09: 0000000000000000 [ 1463.543075][T15430] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffbbd61810 [ 1463.551046][T15430] R13: 00007f1d88fbc700 R14: 0000000000000001 R15: 000000000075bfd4 [ 1463.566564][T15430] memory: usage 304988kB, limit 307200kB, failcnt 135 [ 1463.588822][T15430] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1463.595700][T15430] Memory cgroup stats for /syz0: [ 1463.595820][T15430] anon 2277376 [ 1463.595820][T15430] file 126976 [ 1463.595820][T15430] kernel_stack 73728 [ 1463.595820][T15430] slab 4775936 [ 1463.595820][T15430] sock 304775168 [ 1463.595820][T15430] shmem 0 [ 1463.595820][T15430] file_mapped 0 [ 1463.595820][T15430] file_dirty 0 [ 1463.595820][T15430] file_writeback 0 [ 1463.595820][T15430] anon_thp 2097152 [ 1463.595820][T15430] inactive_anon 0 [ 1463.595820][T15430] active_anon 2277376 [ 1463.595820][T15430] inactive_file 53248 [ 1463.595820][T15430] active_file 0 [ 1463.595820][T15430] unevictable 0 [ 1463.595820][T15430] slab_reclaimable 1486848 [ 1463.595820][T15430] slab_unreclaimable 3289088 [ 1463.595820][T15430] pgfault 169224 [ 1463.595820][T15430] pgmajfault 0 [ 1463.595820][T15430] workingset_refault 0 11:57:56 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ex\\4\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:56 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @remote}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) syz_mount_image$bfs(&(0x7f0000000000)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x83ed, 0x8, &(0x7f0000000640)=[{&(0x7f0000000080)="a8b3b154225c9a4d7b306a1cc6b7a6a9eb3a7748865eef907efaa32c35d67f78e3c9cd42a77b8816bc614125bf40fd6ebc2c9a0e7aa81dcd7dd79265d3180279c8d250eb84e1280eec22b125b00550c38332915ccbf6abea71665317c169739f2ad3", 0x62, 0x6}, {&(0x7f0000000100)="3e86b65479c170bf8b7326aeb9ccd764a5a3e1f1d852ca2e54924d32642039a399ab63360454ebe4a2157501827919c0d6e1cb1359a0cff486ac19ab83c44726a466d3082f8bb184b5ce4dc5d54dc7", 0x4f, 0xec88}, {&(0x7f00000001c0)="4d4b152f5b494a876139baa9df9ab21f5bba6f899a665048ff2d8912ac5aa27db5c4adde22afffeaf62244eecb5345a66f5036026e794e3a9f0badf643f5f982fb531ad2a7746b4bee6cc2d70d404925f410d3ecb5a76e95231c9e7b3ddc81e2b5c41a2ced18d7e3a2306b61492caddc5750a9daf009b1611390fdd4e8919b600c83f514ec442b8b5de57c507ece85c3528e09e1063878a0b751a31738f8bfcf715755ab45a5d337e3ac098cafcf74ff1f3dcfaa680fd0fb918c", 0xba}, {&(0x7f00000002c0)="d06d1ae9dd605fa25fcc22be4349855a101bb3ed30d41b59e56045fe3b571bb9249bbed77297e79c3d2e0a89638da5187d6be586031e0110b341e6989b4e51e76c35b65bcbb1c2d65efeb6b654b505430da2896838bd0d94c9088ced359e02e9a7d5a6546d3285a0c137d63006bfe54ed91323cbb6b7bf14c3f4bde0f24b878afe9269648f80339b059afc29f52a1563e093fa38e002cb39b72b7d647d5a9fe7e1d98078d45d29f40ec53bc8f01c219b72f877", 0xb3, 0x1f}, {&(0x7f0000000380)="dd0ad47c7a211b82768aa0512b3f6521a7b10580be7ce0be0111de31c317dff9327fd9e5af28565c36a294676ff84d0272700755d047e52a4049ff6cb92b8170789db6a79ac6e566ca51f6bbd1894ee5b33742405bee3a98c16fc632bb6146eb909334093c3929a010e2facb5e3623c931cdb4e7b0d086303dc6afa906b0ce355c6eb1d0b5366334c48ad4558a74b2a6230f75ffa1390d1b006e92b3afb1c9e40ae70338a72edb2c01e42044991df470904b14036b21ef662a4ffd98fa6206cab7b3d891d19e5a4a6f", 0xc9, 0x100}, {&(0x7f0000000480)="994c604b5a5b43d6d446f064798880b07861780fef4482676404f4610a17179db559566a74e6c91d5d577e2071956b6ed2e549511a26e5f3d6248146fc5f0f837924b37d9094d0b029acff22835a1b29ad589a9124552a4d004bf49a2420425774e9b89bdefecaccc5b106eb3529845526cc6ffc35fd0123ec30d81a74ae1d55f4075074b7ef182c6486b8a572df801344c53670da7fc34dcdabae0ce0157053e6c3131d3f6118b19a4c6f766e1c88003f0b3c5b162c0374a95bb2925f9daa5b", 0xc0, 0xff}, {&(0x7f0000000540)="6035b3fb4fd9eac2466dbb23ea7c5f11f180d16f0c2d904113535b", 0x1b}, {&(0x7f0000000580)="df1c30c7ab05389f29f861fe12ec3ac605eb6a585dcc55fcb6245e68702d3f092ae74190e8a8068217a7250c05ac3344a61ace3d85f385030277280290fb2d0d814e40b61a875d2ffcbee2194fbe1f8e5451785550bcabf86d1cd0dea40799193f27eeab960d78b71ce11f15044c2f47fb4c7884318d8deb95ca0457f587b77671ffa27ae13e55c33814b25cf4c0d47641b32646a5f199c4e7e23ddd04604461e4e452b8", 0xa4, 0x7fff}], 0x6102d, 0x0) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000740)='/dev/nvram\x00', 0x258800, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000780)={0x4, 0x0, [0x0, 0x0, 0x0, 0x0]}) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000700)) [ 1463.595820][T15430] workingset_activate 0 [ 1463.595820][T15430] workingset_nodereclaim 0 [ 1463.595820][T15430] pgrefill 110 [ 1463.595820][T15430] pgscan 100 [ 1463.595820][T15430] pgsteal 33 [ 1463.595820][T15430] pgactivate 33 [ 1463.728915][T15430] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15430,uid=0 [ 1463.744537][T15430] Memory cgroup out of memory: Killed process 15430 (syz-executor.0) total-vm:72712kB, anon-rss:2196kB, file-rss:35804kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1463.763394][ T1100] oom_reaper: reaped process 15430 (syz-executor.0), now anon-rss:0kB, file-rss:34852kB, shmem-rss:0kB 11:57:56 executing program 4: r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x800, 0x1000) ioctl$PPPIOCGIDLE(r0, 0x8010743f, &(0x7f0000000040)) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) 11:57:56 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x500000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:56 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext%\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:56 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) getsockopt$MISDN_TIME_STAMP(r3, 0x0, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x4) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) io_uring_register$IORING_REGISTER_FILES_UPDATE(r4, 0x6, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[r0]}, 0x1) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1463.977846][T15684] gfs2: not a GFS2 filesystem [ 1464.023818][T15752] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1464.035086][T15752] CPU: 1 PID: 15752 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1464.044643][T15752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1464.054701][T15752] Call Trace: [ 1464.057979][T15752] dump_stack+0x197/0x210 [ 1464.062295][T15752] dump_header+0x177/0x1152 [ 1464.066784][T15752] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1464.072571][T15752] ? ___ratelimit+0x2c8/0x595 [ 1464.077231][T15752] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1464.083021][T15752] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1464.088312][T15752] ? trace_hardirqs_on+0x67/0x240 [ 1464.093447][T15752] ? pagefault_out_of_memory+0x11c/0x11c [ 1464.099079][T15752] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1464.104877][T15752] ? ___ratelimit+0x60/0x595 [ 1464.109458][T15752] ? do_raw_spin_unlock+0x178/0x270 [ 1464.114652][T15752] oom_kill_process.cold+0x10/0x15 [ 1464.119762][T15752] out_of_memory+0x334/0x13c0 [ 1464.124430][T15752] ? find_held_lock+0x35/0x130 [ 1464.129189][T15752] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1464.134981][T15752] ? oom_killer_disable+0x280/0x280 [ 1464.140172][T15752] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1464.145713][T15752] ? memcg_oom_wake_function+0x700/0x700 [ 1464.151331][T15752] ? do_raw_spin_unlock+0x178/0x270 [ 1464.156513][T15752] ? _raw_spin_unlock+0x28/0x40 [ 1464.161352][T15752] try_charge+0xf76/0x14d0 [ 1464.165761][T15752] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1464.171291][T15752] ? mark_held_locks+0xa4/0xf0 [ 1464.176038][T15752] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1464.181656][T15752] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1464.187442][T15752] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1464.193058][T15752] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1464.198328][T15752] ? trace_hardirqs_on+0x67/0x240 [ 1464.203339][T15752] mem_cgroup_charge_skmem+0x15e/0x300 [ 1464.208878][T15752] ? mem_cgroup_sk_free+0x90/0x90 [ 1464.213884][T15752] ? __kasan_check_write+0x14/0x20 [ 1464.218986][T15752] ? __alloc_skb+0x3d0/0x5e0 [ 1464.223561][T15752] __sk_mem_raise_allocated+0x56e/0x1410 [ 1464.229180][T15752] __sk_mem_schedule+0x6d/0xe0 [ 1464.233945][T15752] tcp_sendmsg_locked+0x1733/0x33a0 [ 1464.239161][T15752] ? tcp_sendpage+0x60/0x60 [ 1464.243647][T15752] ? trace_hardirqs_on+0x67/0x240 [ 1464.248660][T15752] ? lock_sock_nested+0x9a/0x120 [ 1464.253583][T15752] ? __local_bh_enable_ip+0x15a/0x270 [ 1464.258941][T15752] tcp_sendmsg+0x30/0x50 [ 1464.263168][T15752] inet_sendmsg+0x9e/0xe0 [ 1464.267479][T15752] ? inet_send_prepare+0x4e0/0x4e0 [ 1464.272578][T15752] sock_sendmsg+0xd7/0x130 [ 1464.276978][T15752] __sys_sendto+0x262/0x380 [ 1464.281465][T15752] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1464.286834][T15752] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1464.293061][T15752] ? put_timespec64+0xda/0x140 [ 1464.297809][T15752] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1464.303531][T15752] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1464.308971][T15752] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1464.314412][T15752] ? do_syscall_64+0x26/0x790 [ 1464.319073][T15752] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1464.325120][T15752] __x64_sys_sendto+0xe1/0x1a0 [ 1464.329873][T15752] do_syscall_64+0xfa/0x790 [ 1464.334361][T15752] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1464.340236][T15752] RIP: 0033:0x45a679 [ 1464.344119][T15752] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1464.363702][T15752] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1464.372097][T15752] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1464.380056][T15752] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1464.388009][T15752] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1464.395963][T15752] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1464.403913][T15752] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff 11:57:56 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x80000, 0x0) ioctl$VIDIOC_ENUMINPUT(r1, 0xc050561a, &(0x7f0000000040)={0x2, "3627adbbf2eb943a48d80a2d818c5febe9e83dc6b7b4bbd10b5105e8493f9032", 0x9537385bb482c723, 0x9, 0x5, 0x1000, 0x2, 0x2}) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1464.449389][T15752] memory: usage 307188kB, limit 307200kB, failcnt 148 [ 1464.476607][T15752] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1464.526086][T15752] Memory cgroup stats for /syz0: [ 1464.526208][T15752] anon 4464640 [ 1464.526208][T15752] file 126976 [ 1464.526208][T15752] kernel_stack 73728 [ 1464.526208][T15752] slab 4775936 [ 1464.526208][T15752] sock 305057792 [ 1464.526208][T15752] shmem 0 [ 1464.526208][T15752] file_mapped 0 [ 1464.526208][T15752] file_dirty 0 [ 1464.526208][T15752] file_writeback 0 [ 1464.526208][T15752] anon_thp 4194304 [ 1464.526208][T15752] inactive_anon 0 [ 1464.526208][T15752] active_anon 4464640 [ 1464.526208][T15752] inactive_file 53248 11:57:56 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x600000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1464.526208][T15752] active_file 0 [ 1464.526208][T15752] unevictable 0 [ 1464.526208][T15752] slab_reclaimable 1486848 [ 1464.526208][T15752] slab_unreclaimable 3289088 [ 1464.526208][T15752] pgfault 169290 [ 1464.526208][T15752] pgmajfault 0 [ 1464.526208][T15752] workingset_refault 0 [ 1464.526208][T15752] workingset_activate 0 [ 1464.526208][T15752] workingset_nodereclaim 0 [ 1464.526208][T15752] pgrefill 110 [ 1464.526208][T15752] pgscan 100 [ 1464.526208][T15752] pgsteal 33 [ 1464.526208][T15752] pgactivate 33 11:57:57 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2b5551865279cbde, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0xe7) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) sendto$inet(r3, 0x0, 0x0, 0x200047fe, &(0x7f0000000380)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r4, r4) sendto$inet(r4, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r6 = dup2(r5, r5) write$UHID_GET_REPORT_REPLY(r6, &(0x7f0000000080), 0xa) r7 = dup2(r4, r6) write$UHID_GET_REPORT_REPLY(r7, &(0x7f0000000080), 0xa) r8 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/qat_adf_ctl\x00', 0x20200, 0x0) getsockopt$ax25_int(r8, 0x101, 0x1, &(0x7f00000002c0), &(0x7f0000000300)=0x4) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000000c0)={0xffffffffffffffff}, 0xb60965714502ca7e, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r7, &(0x7f0000000140)={0xb, 0x10, 0xfa00, {&(0x7f0000000000), r9, 0x4}}, 0x18) 11:57:57 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext\a\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1464.780066][T15752] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15724,uid=0 [ 1464.818531][T15909] gfs2: not a GFS2 filesystem 11:57:57 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext-\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:57 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg\x00', 0x102, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x3ff, @empty, 0x8}, 0x1c) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1464.937672][T15752] Memory cgroup out of memory: Killed process 15724 (syz-executor.0) total-vm:72712kB, anon-rss:4240kB, file-rss:35804kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 11:57:57 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x148010, 0xffffffffffffffff, 0x0) fcntl$getflags(0xffffffffffffffff, 0x408) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x16801, 0x0) write$vhci(r0, &(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, "bd4e0198bdaafc8a9a2205ea"}, 0xd) [ 1465.003373][ T1100] oom_reaper: reaped process 15724 (syz-executor.0), now anon-rss:0kB, file-rss:34852kB, shmem-rss:0kB 11:57:57 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x700000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:57 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) open(&(0x7f0000000000)='./file0\x00', 0x98c00, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:57 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) ioctl$MON_IOCQ_RING_SIZE(r1, 0x9205) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f00000000c0)={0x0}, &(0x7f0000000100)=0x8) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r6 = dup2(r5, r5) write$UHID_GET_REPORT_REPLY(r6, &(0x7f0000000080), 0xa) mq_timedreceive(r6, &(0x7f00000001c0)=""/38, 0x26, 0xfffffffeffffffff, 0x0) setsockopt$inet_sctp6_SCTP_MAXSEG(r3, 0x84, 0xd, &(0x7f0000000140)=@assoc_value={r4, 0x2}, 0x8) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r7 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r7, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r7, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}, 0x10) setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r7, &(0x7f0000000000)="7cb53ee8245874c28357884c0654c414513104a2a63fe9013b79cae3c07dbbb8cce7f27920f5ff2bc92387ec14becca83f8cc17cc948efec61430b454b5c2795e9ca43c3ee47534b7538367f4f4e022225cba0479aa9a1411fd010945929f14d18c7f4f321a027cf20ea406b9735d5d50ea867e887fad8f874c3165a8cd39eb7abf1ec34b9abf57581b52e5706173a14e8c8d9c114a5d5b9ab1811ef960d264be3ef50e281ab456bd07e29c81a1928d8282fa737", 0xfffffded, 0x40000, 0x0, 0x13) 11:57:57 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x4) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1465.319903][T16144] gfs2: not a GFS2 filesystem 11:57:57 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x101446, 0x0) write$P9_RWALK(r0, &(0x7f0000000040)={0x64, 0x6f, 0xfffc, {0x7, [{0x40, 0x1, 0x2}, {0x1, 0x4, 0x7}, {0x10, 0x4, 0x4}, {0x40, 0x3, 0x8}, {0x32, 0x2, 0x7}, {0x1, 0x3, 0x1}, {0x2, 0x4, 0x4}]}}, 0x64) 11:57:57 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x800000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:57 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext/\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:57 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bsg\x00', 0x800000, 0x0) getsockopt$bt_sco_SCO_CONNINFO(r2, 0x11, 0x2, &(0x7f00000002c0)=""/241, &(0x7f00000001c0)=0xf1) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) r4 = dup3(r0, r3, 0x80000) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r5, r5) sendto$inet(r5, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) getsockopt$SO_COOKIE(r5, 0x1, 0x39, &(0x7f00000000c0), &(0x7f0000000100)=0x8) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r4, 0xc058534b, &(0x7f0000000000)={0x80, 0x5, 0x0, 0x80000000, 0x800, 0xffff7fff}) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:58 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext\n\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1465.669870][T16268] gfs2: not a GFS2 filesystem 11:57:58 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet_dccp(0x2, 0x6, 0x0) setsockopt$inet_MCAST_LEAVE_GROUP(r0, 0x0, 0x2d, &(0x7f0000000080)={0x0, {{0x2, 0x4e23, @remote}}}, 0x88) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) r1 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x2, 0x210001) fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f0000000040)) 11:57:58 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x900000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:58 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) socket(0x2, 0x80000, 0x9) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) getsockopt$inet_tcp_int(r0, 0x6, 0x3e, &(0x7f0000000000), &(0x7f0000000040)=0x2) [ 1466.094101][T16548] gfs2: not a GFS2 filesystem 11:57:58 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext:\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:58 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext%\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:58 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x175, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0xffffffffffffffe0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000f80)=ANY=[@ANYBLOB="033daa00"/16]) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:58 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ffd000/0x2000)=nil, 0x2000, &(0x7f00000000c0)=""/153) r0 = getpgid(0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x630381, 0x0) ioctl$FIBMAP(r1, 0x1, &(0x7f0000000040)=0x2) ioprio_get$pid(0x0, r0) 11:57:58 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) ioctl$sock_ifreq(r0, 0x8e, &(0x7f0000000000)={'batadv0\x00', @ifru_hwaddr=@random="3c32b1070855"}) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0xd) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:58 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xa00000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:57:59 executing program 4: r0 = openat$watch_queue(0xffffffffffffff9c, &(0x7f0000000000)='/dev/watch_queue\x00', 0x1, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, r0, 0xb1b83000) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$EVIOCGBITKEY(r2, 0x80404521, &(0x7f0000000040)=""/196) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:57:59 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x6e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:57:59 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) prctl$PR_SET_SPECULATION_CTRL(0x35, 0x0) [ 1466.835585][T16856] gfs2: not a GFS2 filesystem [ 1466.917653][T16916] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1466.950736][T16916] CPU: 1 PID: 16916 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 11:57:59 executing program 4: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xd, &(0x7f00000004c0)={0x6, &(0x7f00000001c0)=[{0x8, 0x3, 0x3f, 0x5}, {0xfde, 0x8, 0x3f, 0xec5}, {0x480, 0x3, 0x3f, 0x3}, {0x6, 0x7, 0x1, 0x3f}, {0x2, 0xf2, 0x53, 0x801}, {0x200, 0x4, 0x0, 0x5}]}) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) r2 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000500)='/proc/capi/capi20ncci\x00', 0x40, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000440)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(0xffffffffffffffff, 0x80082102, &(0x7f0000000080)=r3) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) [ 1466.960306][T16916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1466.970362][T16916] Call Trace: [ 1466.973677][T16916] dump_stack+0x197/0x210 [ 1466.978011][T16916] dump_header+0x177/0x1152 [ 1466.982534][T16916] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1466.988341][T16916] ? ___ratelimit+0x2c8/0x595 [ 1466.993025][T16916] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1466.998829][T16916] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1467.004125][T16916] ? trace_hardirqs_on+0x67/0x240 [ 1467.009159][T16916] ? pagefault_out_of_memory+0x11c/0x11c [ 1467.014799][T16916] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1467.020613][T16916] ? ___ratelimit+0x60/0x595 [ 1467.025220][T16916] ? do_raw_spin_unlock+0x178/0x270 [ 1467.030425][T16916] oom_kill_process.cold+0x10/0x15 [ 1467.035542][T16916] out_of_memory+0x334/0x13c0 [ 1467.040227][T16916] ? find_held_lock+0x35/0x130 [ 1467.044997][T16916] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1467.050803][T16916] ? oom_killer_disable+0x280/0x280 [ 1467.056004][T16916] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1467.061546][T16916] ? memcg_oom_wake_function+0x700/0x700 11:57:59 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e20, @multicast1}, 0xdfbc204d34fbc966) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) write$evdev(r3, &(0x7f00000002c0)=[{{0x77359400}, 0x16, 0x5, 0x1f}, {{0x0, 0x2710}, 0x3, 0x1, 0xee2}, {{}, 0x4, 0x6, 0x322fc2b3}, {{0x77359400}, 0x4, 0x9a8f, 0x12}, {{r4, r5/1000+10000}, 0x11, 0x7, 0x100}, {{0x0, 0x7530}, 0x3, 0x3f, 0x40}, {{r6, r7/1000+10000}, 0x4, 0x7, 0x40}, {{0x77359400}, 0x16, 0x8, 0x2}, {{0x77359400}, 0x0, 0x1000, 0x1}, {{}, 0x11, 0x20, 0x80000000}], 0xf0) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r8 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r8, &(0x7f0000000080), 0xa) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0xfffffffffffffeb6) r9 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r9, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r9, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r9, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r9, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1467.067200][T16916] ? do_raw_spin_unlock+0x178/0x270 [ 1467.072406][T16916] ? _raw_spin_unlock+0x28/0x40 [ 1467.077271][T16916] try_charge+0xf76/0x14d0 [ 1467.081709][T16916] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1467.087269][T16916] ? mark_held_locks+0xa4/0xf0 [ 1467.092051][T16916] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1467.097705][T16916] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1467.103634][T16916] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1467.109286][T16916] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1467.114584][T16916] ? trace_hardirqs_on+0x67/0x240 [ 1467.119618][T16916] mem_cgroup_charge_skmem+0x15e/0x300 [ 1467.125086][T16916] ? mem_cgroup_sk_free+0x90/0x90 [ 1467.130128][T16916] ? __kasan_check_write+0x14/0x20 [ 1467.135245][T16916] ? __alloc_skb+0x3d0/0x5e0 [ 1467.139845][T16916] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1467.146096][T16916] __sk_mem_raise_allocated+0x56e/0x1410 [ 1467.151745][T16916] __sk_mem_schedule+0x6d/0xe0 [ 1467.156524][T16916] tcp_sendmsg_locked+0x1733/0x33a0 [ 1467.161758][T16916] ? tcp_sendpage+0x60/0x60 [ 1467.166272][T16916] ? trace_hardirqs_on+0x67/0x240 [ 1467.171303][T16916] ? lock_sock_nested+0x9a/0x120 [ 1467.176238][T16916] ? __local_bh_enable_ip+0x15a/0x270 [ 1467.181609][T16916] tcp_sendmsg+0x30/0x50 [ 1467.185847][T16916] inet_sendmsg+0x9e/0xe0 [ 1467.190159][T16916] ? inet_send_prepare+0x4e0/0x4e0 [ 1467.195255][T16916] sock_sendmsg+0xd7/0x130 [ 1467.199664][T16916] __sys_sendto+0x262/0x380 [ 1467.204168][T16916] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1467.209584][T16916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 11:57:59 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x20000000, &(0x7f0000000040)={0x2, 0x4e23, @remote}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) socketpair(0x0, 0x4, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r2, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x880404}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x60, r3, 0x300, 0x70bd2c, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_SERVICE={0x4c, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x1e}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x2}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xcd6}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x2}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x5f}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x20040820}, 0x48000) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) connect$netlink(r4, &(0x7f0000000000)=@unspec, 0xc) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1467.215803][T16916] ? put_timespec64+0xda/0x140 [ 1467.220560][T16916] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1467.226294][T16916] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1467.231752][T16916] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1467.237217][T16916] ? do_syscall_64+0x26/0x790 [ 1467.241894][T16916] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1467.247960][T16916] __x64_sys_sendto+0xe1/0x1a0 [ 1467.252725][T16916] do_syscall_64+0xfa/0x790 [ 1467.257239][T16916] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1467.263129][T16916] RIP: 0033:0x45a679 [ 1467.267023][T16916] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1467.286729][T16916] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1467.295144][T16916] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1467.303115][T16916] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1467.311097][T16916] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1467.319073][T16916] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1467.327047][T16916] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1467.356854][T16916] memory: usage 307200kB, limit 307200kB, failcnt 275 11:57:59 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext\\\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:59 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext-\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:57:59 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) r2 = dup3(r1, 0xffffffffffffffff, 0x80000) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000000)={&(0x7f0000ff0000/0xe000)=nil, 0xe000}, &(0x7f0000000040)=0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r3, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1467.369295][T16916] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1467.378507][T16916] Memory cgroup stats for /syz0: [ 1467.379341][T16916] anon 176128 [ 1467.379341][T16916] file 126976 [ 1467.379341][T16916] kernel_stack 73728 [ 1467.379341][T16916] slab 4640768 [ 1467.379341][T16916] sock 309460992 [ 1467.379341][T16916] shmem 0 [ 1467.379341][T16916] file_mapped 0 [ 1467.379341][T16916] file_dirty 0 [ 1467.379341][T16916] file_writeback 0 [ 1467.379341][T16916] anon_thp 0 [ 1467.379341][T16916] inactive_anon 0 [ 1467.379341][T16916] active_anon 90112 [ 1467.379341][T16916] inactive_file 53248 [ 1467.379341][T16916] active_file 0 [ 1467.379341][T16916] unevictable 0 [ 1467.379341][T16916] slab_reclaimable 1486848 [ 1467.379341][T16916] slab_unreclaimable 3153920 [ 1467.379341][T16916] pgfault 169851 [ 1467.379341][T16916] pgmajfault 0 [ 1467.379341][T16916] workingset_refault 0 [ 1467.379341][T16916] workingset_activate 0 [ 1467.379341][T16916] workingset_nodereclaim 0 [ 1467.379341][T16916] pgrefill 143 [ 1467.379341][T16916] pgscan 133 [ 1467.379341][T16916] pgsteal 33 [ 1467.379341][T16916] pgactivate 66 [ 1467.508950][T16916] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16899,uid=0 11:57:59 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0xc00000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1467.601534][T16916] Memory cgroup out of memory: Killed process 16899 (syz-executor.0) total-vm:72712kB, anon-rss:100kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 11:58:00 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, r1, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000200)=""/163) 11:58:00 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcsu\x00', 0x30202, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) connect$bt_l2cap(r3, &(0x7f00000000c0)={0x1f, 0x7601, {0x0, 0x5, 0xfd, 0x5, 0xcc, 0xff}, 0xcbcf, 0x2}, 0xe) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) ioctl$LOOP_SET_FD(r0, 0x4c00, r4) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) fsetxattr$security_selinux(r5, &(0x7f0000000000)='security.selinux\x00', &(0x7f0000000040)='system_u:object_r:kmsg_device_t:s0\x00', 0x23, 0x2) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r5, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1467.719839][ T1100] oom_reaper: reaped process 16899 (syz-executor.0), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB [ 1467.768836][ C0] net_ratelimit: 31 callbacks suppressed [ 1467.768845][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1467.780398][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1467.786215][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1467.792040][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:58:00 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r0, r0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000000)={0x1, 0x89, "8cb7ad5762ac38c491432921f52f64b248ff6c9edd1b0661f65c385e71d944a9427d337e26477440238b5b8f549c5b77b202fd36e0da1e762ed2d9fd9be40042460e1756199877b6e039568c2a76a753d8826638afa4f5326dbf283e5afa525a0a702386c3aacc976fcd0050abc8652c6c703072bf3ff3ff9e6a02da18f3c941ea254a1d0f83530f88"}) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) r3 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_STATUS(r3, 0x80984120, &(0x7f00000001c0)) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) ioctl$SG_GET_NUM_WAITING(r4, 0x227d, &(0x7f00000000c0)) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:58:00 executing program 0: setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1467.928754][ C0] TCP: out of memory -- consider tuning tcp_mem [ 1468.004700][T17216] gfs2: not a GFS2 filesystem 11:58:00 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x02', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1468.049754][T17219] TCP: out of memory -- consider tuning tcp_mem [ 1468.082337][T17251] TCP: out of memory -- consider tuning tcp_mem [ 1468.088695][ C0] TCP: out of memory -- consider tuning tcp_mem [ 1468.117448][T17252] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1468.136033][T17252] CPU: 1 PID: 17252 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1468.145595][T17252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1468.145602][T17252] Call Trace: [ 1468.145627][T17252] dump_stack+0x197/0x210 [ 1468.145651][T17252] dump_header+0x177/0x1152 [ 1468.145668][T17252] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1468.145686][T17252] ? ___ratelimit+0x2c8/0x595 [ 1468.178287][T17252] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1468.184275][T17252] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1468.189572][T17252] ? trace_hardirqs_on+0x67/0x240 [ 1468.194608][T17252] ? pagefault_out_of_memory+0x11c/0x11c [ 1468.200250][T17252] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1468.206180][T17252] ? ___ratelimit+0x60/0x595 [ 1468.210773][T17252] ? do_raw_spin_unlock+0x178/0x270 [ 1468.210795][T17252] oom_kill_process.cold+0x10/0x15 [ 1468.210812][T17252] out_of_memory+0x334/0x13c0 [ 1468.210826][T17252] ? find_held_lock+0x35/0x130 [ 1468.210845][T17252] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1468.210861][T17252] ? oom_killer_disable+0x280/0x280 [ 1468.210885][T17252] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1468.210901][T17252] ? memcg_oom_wake_function+0x700/0x700 [ 1468.210919][T17252] ? do_raw_spin_unlock+0x178/0x270 [ 1468.210938][T17252] ? _raw_spin_unlock+0x28/0x40 [ 1468.262867][T17252] try_charge+0xf76/0x14d0 [ 1468.267305][T17252] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1468.272862][T17252] ? mark_held_locks+0xa4/0xf0 [ 1468.277632][T17252] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1468.283269][T17252] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1468.289077][T17252] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1468.294717][T17252] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1468.300040][T17252] ? trace_hardirqs_on+0x67/0x240 [ 1468.305081][T17252] mem_cgroup_charge_skmem+0x15e/0x300 [ 1468.310545][T17252] ? mem_cgroup_sk_free+0x90/0x90 [ 1468.315576][T17252] ? __kasan_check_write+0x14/0x20 [ 1468.320701][T17252] ? __alloc_skb+0x3d0/0x5e0 [ 1468.325305][T17252] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1468.331560][T17252] __sk_mem_raise_allocated+0x56e/0x1410 [ 1468.337212][T17252] __sk_mem_schedule+0x6d/0xe0 [ 1468.341990][T17252] tcp_sendmsg_locked+0x1733/0x33a0 [ 1468.347222][T17252] ? tcp_sendpage+0x60/0x60 [ 1468.351850][T17252] ? trace_hardirqs_on+0x67/0x240 [ 1468.356916][T17252] ? lock_sock_nested+0x9a/0x120 [ 1468.361861][T17252] ? __local_bh_enable_ip+0x15a/0x270 11:58:00 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x1000000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1468.367248][T17252] tcp_sendmsg+0x30/0x50 [ 1468.371501][T17252] inet_sendmsg+0x9e/0xe0 [ 1468.375841][T17252] ? inet_send_prepare+0x4e0/0x4e0 [ 1468.380958][T17252] sock_sendmsg+0xd7/0x130 [ 1468.385386][T17252] __sys_sendto+0x262/0x380 [ 1468.389897][T17252] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1468.395296][T17252] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1468.401546][T17252] ? put_timespec64+0xda/0x140 [ 1468.406318][T17252] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1468.412055][T17252] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1468.417523][T17252] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1468.422988][T17252] ? do_syscall_64+0x26/0x790 [ 1468.427698][T17252] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1468.433774][T17252] __x64_sys_sendto+0xe1/0x1a0 [ 1468.438549][T17252] do_syscall_64+0xfa/0x790 [ 1468.443065][T17252] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1468.448980][T17252] RIP: 0033:0x45a679 11:58:00 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext/\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1468.452885][T17252] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1468.472497][T17252] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1468.480918][T17252] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1468.488897][T17252] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1468.496887][T17252] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1468.504883][T17252] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1468.512858][T17252] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1468.534400][T17252] memory: usage 307152kB, limit 307200kB, failcnt 337 11:58:00 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) clock_gettime(0x0, &(0x7f0000000400)={0x0, 0x0}) recvmmsg(r2, &(0x7f00000003c0)=[{{&(0x7f00000000c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x80, &(0x7f00000001c0)=[{&(0x7f00000002c0)=""/203, 0xcb}, {&(0x7f0000000140)=""/22, 0x16}], 0x2, &(0x7f0000000200)=""/114, 0x72}, 0x20}], 0x1, 0x0, &(0x7f0000000440)={r3, r4+10000000}) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r6 = dup2(r5, r5) write$UHID_GET_REPORT_REPLY(r6, &(0x7f0000000080), 0xa) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r6, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1468.568922][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1468.574755][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1468.618018][T17252] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1468.665251][T17252] Memory cgroup stats for /syz0: [ 1468.665365][T17252] anon 176128 [ 1468.665365][T17252] file 126976 [ 1468.665365][T17252] kernel_stack 36864 [ 1468.665365][T17252] slab 4640768 [ 1468.665365][T17252] sock 309460992 [ 1468.665365][T17252] shmem 0 [ 1468.665365][T17252] file_mapped 0 [ 1468.665365][T17252] file_dirty 0 [ 1468.665365][T17252] file_writeback 0 [ 1468.665365][T17252] anon_thp 0 [ 1468.665365][T17252] inactive_anon 0 [ 1468.665365][T17252] active_anon 90112 [ 1468.665365][T17252] inactive_file 53248 [ 1468.665365][T17252] active_file 0 [ 1468.665365][T17252] unevictable 0 [ 1468.665365][T17252] slab_reclaimable 1486848 [ 1468.665365][T17252] slab_unreclaimable 3153920 [ 1468.665365][T17252] pgfault 169917 [ 1468.665365][T17252] pgmajfault 0 [ 1468.665365][T17252] workingset_refault 0 [ 1468.665365][T17252] workingset_activate 0 [ 1468.665365][T17252] workingset_nodereclaim 0 [ 1468.665365][T17252] pgrefill 176 [ 1468.665365][T17252] pgscan 166 [ 1468.665365][T17252] pgsteal 33 [ 1468.665365][T17252] pgactivate 99 [ 1468.873350][T17448] gfs2: not a GFS2 filesystem 11:58:01 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x03', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1469.071020][T17252] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17251,uid=0 [ 1469.142041][T17252] Memory cgroup out of memory: Killed process 17252 (syz-executor.0) total-vm:72580kB, anon-rss:152kB, file-rss:35800kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1469.160888][ T1100] oom_reaper: reaped process 17252 (syz-executor.0), now anon-rss:0kB, file-rss:34840kB, shmem-rss:0kB 11:58:01 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x1202000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:58:01 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext:\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:01 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) ioctl$sock_inet_SIOCRTMSG(r1, 0x890d, &(0x7f0000000040)={0x0, {0x2, 0x4e23, @local}, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e20}, 0x20, 0x0, 0x0, 0x0, 0x9, &(0x7f0000000000)='gre0\x00', 0x6, 0x1, 0xffc0}) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:58:01 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x2a5a0eb9aeeec685}) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup2(r3, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$inet(0x2, 0x0, 0x0) r6 = socket$inet_sctp(0x2, 0x5, 0x84) r7 = dup3(r5, r6, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e22, @remote}], 0x10) sendto$inet(r7, &(0x7f0000000400)="09db1f784faf97e105000aae996d9838c70946d2abc148292b33fba504de5fed6aa77a5b6fac4afd129244c90b7053b25dd207ce40577dbc5a5b6a8feb755154706ce4a7178cde50413af69f3f6f03476bcef4c7f2790d2cce0b0d7e419ecaf48413826d25a46b774268f0ad3d66cc073f8bf35e667d71734ce17b9416aae55d7f7d926d763c1d4b43552dfb07c44760b1dd8add481cf35363993c9525298dc7d85e6e4baa722f9b1e71b5b021631dc26b8af85583e3df19ce2ac099b1fa6ba3552c75921574144d12d513bfff6fe53f0147b5fc9e196e061f795d0ea7c18be1b661787691e0be681cf3df7a0e522c00f116c812fec0820d783d95cfec00880b25c6b8562e82f1cf2af225f048ead7e8de8d32710232b6ab0cb208aae50fab95bfa606a1467908c818585f84b1f2ee", 0x12f, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0xfffffffffffffd70) sendto$inet(r6, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f000025e000)=ANY=[@ANYBLOB="222a8ffa", @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000a8a000)=0xc) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r7, 0x84, 0x7a, &(0x7f000059aff8)={r8}, &(0x7f000034f000)=0x2059b000) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r4, 0x84, 0xf, &(0x7f0000000000)={r8, @in6={{0xa, 0x4e24, 0x7, @dev={0xfe, 0x80, [], 0x16}, 0x6}}, 0x7, 0x7e, 0x7e56, 0x8, 0x101}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000080)={r8, 0x63}, &(0x7f00000000c0)=0x8) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) [ 1469.544390][T17574] gfs2: not a GFS2 filesystem [ 1469.597918][T17584] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1469.610066][T17584] CPU: 1 PID: 17584 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1469.619613][T17584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1469.629676][T17584] Call Trace: [ 1469.632979][T17584] dump_stack+0x197/0x210 [ 1469.637317][T17584] dump_header+0x177/0x1152 [ 1469.637337][T17584] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1469.637351][T17584] ? ___ratelimit+0x2c8/0x595 [ 1469.637366][T17584] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1469.637388][T17584] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1469.663413][T17584] ? trace_hardirqs_on+0x67/0x240 [ 1469.668447][T17584] ? pagefault_out_of_memory+0x11c/0x11c [ 1469.674103][T17584] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1469.679907][T17584] ? ___ratelimit+0x60/0x595 [ 1469.679924][T17584] ? do_raw_spin_unlock+0x178/0x270 [ 1469.679948][T17584] oom_kill_process.cold+0x10/0x15 [ 1469.679964][T17584] out_of_memory+0x334/0x13c0 [ 1469.679977][T17584] ? find_held_lock+0x35/0x130 [ 1469.679997][T17584] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1469.680012][T17584] ? oom_killer_disable+0x280/0x280 [ 1469.680034][T17584] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1469.680053][T17584] ? memcg_oom_wake_function+0x700/0x700 [ 1469.727468][T17584] ? do_raw_spin_unlock+0x178/0x270 [ 1469.732681][T17584] ? _raw_spin_unlock+0x28/0x40 [ 1469.737547][T17584] try_charge+0xf76/0x14d0 [ 1469.741980][T17584] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 11:58:02 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000001c0)='ve\x00\x001\x00\x05\x00\x00\x00\x00\x00\x90\x05\x9c\x05', 0xfe0e) r2 = dup2(r1, r1) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) getsockopt$bt_BT_POWER(r4, 0x112, 0x9, &(0x7f00000000c0)=0x95, &(0x7f0000000100)=0x1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x840, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r5, &(0x7f0000000040)={0x20000000}) [ 1469.747536][T17584] ? mark_held_locks+0xa4/0xf0 [ 1469.752312][T17584] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1469.757957][T17584] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1469.763767][T17584] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1469.769416][T17584] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1469.774710][T17584] ? trace_hardirqs_on+0x67/0x240 [ 1469.779748][T17584] mem_cgroup_charge_skmem+0x15e/0x300 [ 1469.785207][T17584] ? mem_cgroup_sk_free+0x90/0x90 [ 1469.790227][T17584] ? __kasan_check_write+0x14/0x20 [ 1469.790245][T17584] ? __alloc_skb+0x3d0/0x5e0 [ 1469.790263][T17584] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1469.790282][T17584] __sk_mem_raise_allocated+0x56e/0x1410 [ 1469.790305][T17584] __sk_mem_schedule+0x6d/0xe0 [ 1469.790326][T17584] tcp_sendmsg_locked+0x1733/0x33a0 [ 1469.790362][T17584] ? tcp_sendpage+0x60/0x60 [ 1469.790382][T17584] ? trace_hardirqs_on+0x67/0x240 [ 1469.831336][T17584] ? lock_sock_nested+0x9a/0x120 [ 1469.836282][T17584] ? __local_bh_enable_ip+0x15a/0x270 [ 1469.841669][T17584] tcp_sendmsg+0x30/0x50 [ 1469.845930][T17584] inet_sendmsg+0x9e/0xe0 [ 1469.850271][T17584] ? inet_send_prepare+0x4e0/0x4e0 [ 1469.855388][T17584] sock_sendmsg+0xd7/0x130 [ 1469.859814][T17584] __sys_sendto+0x262/0x380 [ 1469.864328][T17584] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1469.869728][T17584] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1469.876070][T17584] ? put_timespec64+0xda/0x140 [ 1469.880847][T17584] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1469.886589][T17584] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1469.892069][T17584] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1469.897634][T17584] ? do_syscall_64+0x26/0x790 [ 1469.902318][T17584] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1469.908394][T17584] __x64_sys_sendto+0xe1/0x1a0 [ 1469.913164][T17584] do_syscall_64+0xfa/0x790 [ 1469.917659][T17584] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1469.923531][T17584] RIP: 0033:0x45a679 [ 1469.927409][T17584] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 11:58:02 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x2000000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1469.947008][T17584] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1469.955405][T17584] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1469.963358][T17584] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000004 [ 1469.971315][T17584] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1469.979271][T17584] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1469.987225][T17584] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1470.017970][T17584] memory: usage 307200kB, limit 307200kB, failcnt 360 [ 1470.034597][T17584] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1470.048797][T17584] Memory cgroup stats for /syz0: [ 1470.048912][T17584] anon 2240512 [ 1470.048912][T17584] file 126976 [ 1470.048912][T17584] kernel_stack 36864 [ 1470.048912][T17584] slab 4640768 11:58:02 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x04', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1470.048912][T17584] sock 307441664 [ 1470.048912][T17584] shmem 0 [ 1470.048912][T17584] file_mapped 0 [ 1470.048912][T17584] file_dirty 0 [ 1470.048912][T17584] file_writeback 0 [ 1470.048912][T17584] anon_thp 2097152 [ 1470.048912][T17584] inactive_anon 0 [ 1470.048912][T17584] active_anon 2240512 [ 1470.048912][T17584] inactive_file 53248 [ 1470.048912][T17584] active_file 0 [ 1470.048912][T17584] unevictable 0 [ 1470.048912][T17584] slab_reclaimable 1486848 [ 1470.048912][T17584] slab_unreclaimable 3153920 [ 1470.048912][T17584] pgfault 170016 [ 1470.048912][T17584] pgmajfault 0 [ 1470.048912][T17584] workingset_refault 0 [ 1470.048912][T17584] workingset_activate 0 [ 1470.048912][T17584] workingset_nodereclaim 0 [ 1470.048912][T17584] pgrefill 176 [ 1470.048912][T17584] pgscan 166 [ 1470.048912][T17584] pgsteal 33 [ 1470.048912][T17584] pgactivate 99 11:58:02 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000000000)=""/68) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) r4 = socket$xdp(0x2c, 0x3, 0x0) fsetxattr$security_ima(r4, &(0x7f0000000100)='security.ima\x00', &(0x7f0000000140)=@md5={0x1, "8320a8491692fbc21b18e8b2052e86f1"}, 0x11, 0x1) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r5 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000080), 0xa) getxattr(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=@random={'os2.', 'security.ima\x00'}, &(0x7f0000000240)=""/53, 0x35) setsockopt$packet_tx_ring(r5, 0x107, 0xd, &(0x7f00000000c0)=@req={0x99, 0x0, 0x4, 0x10001}, 0x10) [ 1470.163250][T17584] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17583,uid=0 [ 1470.185739][T17584] Memory cgroup out of memory: Killed process 17583 (syz-executor.0) total-vm:72712kB, anon-rss:2148kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 11:58:02 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$rds(0x15, 0x5, 0x0) setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ocfs2_control\x00', 0x7c78a84934016880, 0x0) ioctl$DRM_IOCTL_AGP_ENABLE(r2, 0x40086432, &(0x7f0000000040)=0x10001) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = accept4(0xffffffffffffffff, &(0x7f0000000100)=@generic, &(0x7f00000001c0)=0x80, 0x80000) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r4, 0x84, 0xc, &(0x7f0000000200), &(0x7f00000002c0)=0x4) r5 = dup2(r3, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet(0x2, 0x0, 0x0) r7 = socket$inet_sctp(0x2, 0x5, 0x84) r8 = dup3(r6, r7, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r7, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10) sendto$inet(r8, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) sendto$inet(r7, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000025e000)={0x2, [0x0, 0x0]}, &(0x7f0000a8a000)=0xc) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r8, 0x84, 0x7a, &(0x7f000059aff8)={r9}, &(0x7f000034f000)=0x2059b000) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r5, 0x84, 0xf, &(0x7f0000000000)={r9, @in6={{0xa, 0x4e24, 0x7, @dev={0xfe, 0x80, [], 0x16}, 0x6}}, 0x7, 0x7e, 0x7e56, 0x8, 0x101}, &(0x7f00000000c0)=0x98) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000080)={r9, 0x2}, 0x8) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1470.215502][ T1100] oom_reaper: reaped process 17583 (syz-executor.0), now anon-rss:0kB, file-rss:34832kB, shmem-rss:0kB 11:58:02 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='\xc9U\x00\x001\xfc\xff\xff\xff\xff\xff\xff\xff\xff\xef\x00', 0xffffffffffffff9d) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1470.483219][T17707] gfs2: not a GFS2 filesystem 11:58:02 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext\\\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:02 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) setsockopt$inet_opts(r1, 0x0, 0x0, &(0x7f0000000000)="12f3901a215b019aeed8a4b9426ff74128905a07464c8b24505e4c7059f424b925f836fbce3828cc4c6099257ed23522e49683bd3cb9e7406987d0220292d0b4e4f7d1c0aca4150ac1e8eb6dfbb151abac9c3604c2f179017ce3d127b6755bdfa4e5a1a6d7f14cdc4cec4f2279c53a2c6e1f2f0c8edbbcecc30c3fa8ba74822e180f", 0x82) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1470.698773][T17762] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 11:58:03 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x2003000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:58:03 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r1, 0x8924, &(0x7f0000000040)={'nlmon0\x00'}) [ 1470.834830][T17762] CPU: 0 PID: 17762 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1470.844435][T17762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1470.854509][T17762] Call Trace: [ 1470.857826][T17762] dump_stack+0x197/0x210 [ 1470.862174][T17762] dump_header+0x177/0x1152 [ 1470.866829][T17762] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1470.872641][T17762] ? ___ratelimit+0x2c8/0x595 [ 1470.877330][T17762] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1470.883146][T17762] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1470.888437][T17762] ? trace_hardirqs_on+0x67/0x240 [ 1470.893474][T17762] ? pagefault_out_of_memory+0x11c/0x11c [ 1470.899113][T17762] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1470.904945][T17762] ? ___ratelimit+0x60/0x595 [ 1470.909542][T17762] ? do_raw_spin_unlock+0x178/0x270 [ 1470.914747][T17762] oom_kill_process.cold+0x10/0x15 [ 1470.919885][T17762] out_of_memory+0x334/0x13c0 [ 1470.924566][T17762] ? find_held_lock+0x35/0x130 [ 1470.929341][T17762] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1470.935152][T17762] ? oom_killer_disable+0x280/0x280 [ 1470.940462][T17762] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1470.946013][T17762] ? memcg_oom_wake_function+0x700/0x700 [ 1470.951655][T17762] ? do_raw_spin_unlock+0x178/0x270 [ 1470.956867][T17762] ? _raw_spin_unlock+0x28/0x40 [ 1470.961728][T17762] try_charge+0xf76/0x14d0 [ 1470.966185][T17762] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1470.971742][T17762] ? mark_held_locks+0xa4/0xf0 [ 1470.976511][T17762] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1470.982146][T17762] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1470.987956][T17762] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1470.993593][T17762] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1470.998883][T17762] ? trace_hardirqs_on+0x67/0x240 [ 1471.003916][T17762] mem_cgroup_charge_skmem+0x15e/0x300 [ 1471.009380][T17762] ? mem_cgroup_sk_free+0x90/0x90 [ 1471.014407][T17762] ? __kasan_check_write+0x14/0x20 [ 1471.019525][T17762] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1471.025776][T17762] __sk_mem_raise_allocated+0x56e/0x1410 [ 1471.031423][T17762] __sk_mem_schedule+0x6d/0xe0 [ 1471.036198][T17762] tcp_sendmsg_locked+0x1733/0x33a0 [ 1471.041421][T17762] ? tcp_sendpage+0x60/0x60 [ 1471.045933][T17762] ? trace_hardirqs_on+0x67/0x240 [ 1471.050958][T17762] ? lock_sock_nested+0x9a/0x120 [ 1471.055899][T17762] ? __local_bh_enable_ip+0x15a/0x270 [ 1471.061282][T17762] tcp_sendmsg+0x30/0x50 [ 1471.065559][T17762] inet_sendmsg+0x9e/0xe0 [ 1471.069893][T17762] ? inet_send_prepare+0x4e0/0x4e0 [ 1471.075028][T17762] sock_sendmsg+0xd7/0x130 [ 1471.079459][T17762] __sys_sendto+0x262/0x380 [ 1471.083969][T17762] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1471.089365][T17762] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1471.095613][T17762] ? put_timespec64+0xda/0x140 [ 1471.100387][T17762] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1471.106129][T17762] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1471.111593][T17762] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1471.117059][T17762] ? do_syscall_64+0x26/0x790 [ 1471.121740][T17762] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1471.127813][T17762] __x64_sys_sendto+0xe1/0x1a0 [ 1471.132618][T17762] do_syscall_64+0xfa/0x790 [ 1471.137132][T17762] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1471.143041][T17762] RIP: 0033:0x45a679 [ 1471.146948][T17762] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1471.166553][T17762] RSP: 002b:00007f1d88f9ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1471.174970][T17762] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1471.182940][T17762] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000004 [ 1471.190927][T17762] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000142800 [ 1471.198894][T17762] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88f9b6d4 [ 1471.206866][T17762] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1471.260491][T17836] gfs2: not a GFS2 filesystem 11:58:03 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x05', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1471.309377][T17762] memory: usage 307200kB, limit 307200kB, failcnt 413 [ 1471.337833][T17762] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1471.410357][T17762] Memory cgroup stats for /syz0: [ 1471.410473][T17762] anon 2260992 [ 1471.410473][T17762] file 126976 [ 1471.410473][T17762] kernel_stack 110592 [ 1471.410473][T17762] slab 4505600 [ 1471.410473][T17762] sock 307441664 [ 1471.410473][T17762] shmem 0 [ 1471.410473][T17762] file_mapped 0 [ 1471.410473][T17762] file_dirty 0 [ 1471.410473][T17762] file_writeback 0 [ 1471.410473][T17762] anon_thp 2097152 [ 1471.410473][T17762] inactive_anon 0 [ 1471.410473][T17762] active_anon 2260992 [ 1471.410473][T17762] inactive_file 53248 [ 1471.410473][T17762] active_file 0 [ 1471.410473][T17762] unevictable 0 [ 1471.410473][T17762] slab_reclaimable 1486848 [ 1471.410473][T17762] slab_unreclaimable 3018752 [ 1471.410473][T17762] pgfault 170115 [ 1471.410473][T17762] pgmajfault 0 [ 1471.410473][T17762] workingset_refault 0 [ 1471.410473][T17762] workingset_activate 0 [ 1471.410473][T17762] workingset_nodereclaim 0 [ 1471.410473][T17762] pgrefill 176 [ 1471.410473][T17762] pgscan 166 [ 1471.410473][T17762] pgsteal 33 [ 1471.410473][T17762] pgactivate 99 11:58:03 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x02', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1471.509694][T17762] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17703,uid=0 11:58:03 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ocfs2_control\x00', 0x40000, 0x0) ioctl$UI_SET_MSCBIT(r1, 0x40045568, 0x5) [ 1471.611557][T17762] Memory cgroup out of memory: Killed process 17703 (syz-executor.0) total-vm:72976kB, anon-rss:2216kB, file-rss:35796kB, shmem-rss:0kB, UID:0 pgtables:159744kB oom_score_adj:1000 11:58:04 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x2010000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1471.735519][ T1100] oom_reaper: reaped process 17703 (syz-executor.0), now anon-rss:0kB, file-rss:34860kB, shmem-rss:0kB [ 1471.916382][T17969] gfs2: not a GFS2 filesystem 11:58:04 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x06', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:04 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x2300000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:58:04 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.stat\x00', 0x0, 0x0) ioctl$GIO_FONTX(r1, 0x4b6b, &(0x7f0000000040)={0x1bb, 0x1d, &(0x7f00000002c0)}) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r2, r2) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) accept4$packet(r1, &(0x7f0000000940)={0x11, 0x0, 0x0}, &(0x7f0000000980)=0x14, 0x800) sendmsg$inet(r3, &(0x7f0000000a40)={&(0x7f0000000080)={0x2, 0x4e20, @multicast2}, 0x10, &(0x7f00000008c0)=[{&(0x7f00000000c0)="f11d5aa76176f26d1461781468de3160d480870844086cf47ddc5cc3b6091dd27a80a81a67e145bedcefbbc7c8d55521c40d6d7bc7ad738b3444fd7a0d7c54dd917d6d8f2e896745af4e1facace48ef7dbae039cbc3baf6240352596436340da44f84ad26016539d5fb6a45f549ad5065d46d7ef36450eb9ebaf05dec55790ac32064dd986692edab705", 0x8a}, {&(0x7f00000001c0)="3a4df22eb8c90bd449158f4e53bb8b82e21dc6603c8fda4b8147c40f8c523cbc81ef1c26", 0x24}, {&(0x7f00000006c0)="6295fa3e76355cb6d0ee3b0fe4ce6b2dd389015ee502ac922d1ee08743cc9f4799223812a78fe38faad816d677fb1afe97f7993f6785e716aed2758985f414076b036482fa59887edaa5146dd661987402520f8cb3e39180eb9d2d4aea7a51a9cccdff5cf540c26bc4b1fc212325599c4c20d81468959c92fbb9d1993bbcd2c62f348b565e0a3e0e285e6f786ca5f6b279187e5111bdebf65cfc794be557b754304b5478a433d19df96037a3d2ae2b857c630e74f2d8709cde5cd92cea73048c0a4fbd001b4e5b1165fc2b0e13a7a91b05e366a88dcdd20313edbc41", 0xdc}, {&(0x7f00000007c0)="cb3c6247bc32ad9ae7f146f769f9dc8355c098bab10f8bd7f61318050f4a3878a316c63f03bc513426328268b7ed0201808199f178a343705c2c7e24f2caf6ec35ddada8e11bf24f622dbad1647d6891fc93fa3784850e61f8046d63b7bca27d334b4bc678f57d605462274102bfbf43cb687c8fe82695df0ed2440414467e2f937d6ab463c3cb9da27c6a1434bdb37cb4f28f04b71bf9cfdc0005a1b90d376efe58407bbc83825d158429048d99110c44487bf168d9e36414ed5b28fb9d11f6a8ddde64ce40edfa25093d866a6840ff18cb22b968da1c48397c2ac00b2359b6708de8", 0xe3}, {&(0x7f0000000200)="4f9b27a5fc2e53ad928e6c6d500d99f0d61623e7ba1df01b802270c8786f9aed8a48df8068cb4ebe2ce91154a3a7f60b515946cc7f3ed318fc793f916ffafbe734211a5a54f24a07940bd8b969639fba", 0x50}], 0x5, &(0x7f00000009c0)=[@ip_ttl={{0x14, 0x0, 0x2, 0xffffff20}}, @ip_ttl={{0x14, 0x0, 0x2, 0x5}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x4}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x12}}}}], 0x68}, 0x4) 11:58:04 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x03', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:04 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) sendmmsg$inet(r2, &(0x7f0000002d40)=[{{&(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000040)="30ce66bb66f843b5cb717de1d4cf3f447fa305418940756feb8ef51742028b1a19f54e6ec963d78d427be3cb4fda198d9be45ec1631410f4e7cc63ff5eb1ebaf4d85b7efe119ea2f90b067c39f4f8ff6739d7f0732e7bddd82d75f272a9ed34531e48a5d42bc56351eb65b5eb050f3", 0x6f}, {&(0x7f00000000c0)="e7972eb689a54528bfebc3df39da4b6120047331396645d86792dd74b94523438fd5f28490ab4dbfe7dab7f0581b6ec4fcefc5a48922889f0b5992f39a79d99e0e9a0fde1b300061f4f85b0144e86c3842", 0x51}], 0x2, &(0x7f00000001c0)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0xfc}}], 0x18}}, {{0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f00000002c0)="3dea2b9bea67e4d69381d85034fb873f910911d5c0f35122eea2cc8f525d230ab23e4fbe02d7da2e35889e735f7f23a0206c64b83b4b04b589b090c30d86974722019c32ccf5bc420071fef9d189ad25e008fac3a42a58250af44eeb764e8dc7f93d1c2727aa82b4c6d0a6da59d3138da2dbb3a427a815217f51e7ddfe773a5e9a79720d93f5f7fafc42a9697d725b701c3763a82d210aa5eef860086cb4e5e60e1834", 0xa3}, {&(0x7f0000000200)="f40655a6b76b3acef7360730f32b1e0266e8462294b52c70a8955a331f8a7c79ac4b55b4aa7d2a575908ad36045842b40260fc66dcf73b133e02354f3dcb9d265ebaad275f8195e59e531fc5d9c2d479e81c50a5e87ce50f7a437674b3bbd1d4e78535a8bb7074d4784fb2cff426e74b0b92097601", 0x75}, {&(0x7f0000000380)="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", 0x1000}, {&(0x7f0000001380)="df937f95de3f5bdaa76054f2ef56d006ba642915da6c4739ec33efa5b63ae0638d1788934bbcf21f91448e3b66f8ad3ed1a54c0477b3d62e39662c76c16985df633e2f07ad503b7fbe8a0b6ec80a66fd785d974a9726e14069e8a11ce80d94d3708fbd845fee6056d6bcfa08cb8ead716269f80d9b51732fe864624db849d40b24c6b5fe75439a72e6c248c0303c973fe4a97a5fbcf7de3133bbd1aedf1984d0c17e75dfcb1e7b0fd40370d08ae009356b531367df110992aff70c307234b100e52f719fb4812d0714d1d8c37a1e003d58c8189d441e5057da945580312351e3736fcafb06d4", 0xe6}, {&(0x7f0000001480)="0e01942758f897566a0af276d618b84d800a", 0x12}], 0x5, &(0x7f0000001540)=[@ip_ttl={{0x14, 0x0, 0x2, 0x2}}], 0x18}}, {{&(0x7f0000001580)={0x2, 0x4e24, @rand_addr=0x4}, 0x10, &(0x7f0000002b40)=[{&(0x7f00000015c0)="291bb881a88423e1437b4da57906207cffafa6d68e3473dd452ddf4dab1fbc0839fb7b281372561dea251befaeb85c5eb1376ffd88e36c41299b4bbe0c6fdb54cc8647490e02a0d1e531506c85dd498a3c48c630e19892520bd6578835f097a458e321fe3c72ea6cd95d07e546f5fccb6b88d8997b", 0x75}, {&(0x7f0000001640)="ab8739dc5d827e10798c2f79faaf2d6dd589961ea64dd5487fbae02eee515a8424818d573d261973862b042461755c254db229eaaed48ee49873398ae1f7952e9869ebe544179cc096a23925a1c8ec672a5b085b9e0285cf6926ddf6af673e0781e0eb44eff2346916b59f8cde5b43772e5787f7d30adaadf6884364de8785e4b4380a7ecb6fe7ca0d831b60172c20bbf91ce7edbb0588adac1a3bf788fff7e6b6c3c3efefd4ceba93409cf19b794b4d05c37e9266f0da5dc4e32dddc07d54711f217ec27bca939a004a2314", 0xcc}, {&(0x7f0000001740)="5320bd1be09d4bcbb6fb2dda3a3965d3a78c4a5a6546f125837770386ce61b79f6df235eebd3f1e2b7369c715d65351f283e7ea90c5df9cc2a05d1b54e5ae44bc730e9b64089aebdfecf03979d4205162ae53320e1b6cc2f15b1675cfc16fbe62df5b43e12b62b876f4943250cf0f022cd88b7ab3685ff48becdfdd687432acba1525f1fe95b88b10ea758ebf955dd5f2c4cd3d5681796e1b70324f88bd5c8eb0fc80056cb100e6d433e1a257016bf6479e2816aefd7e5146d5ded9474d7133986cae3aaaa334c9cefdfdf5bdfda352c5d13c2348431da55df874070bb29ac51da59258dbff5c354c8cca1423018f471e3a370ce70", 0xf5}, {&(0x7f0000001840)="93ab45ed28b822aa24", 0x9}, {&(0x7f0000001880)="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", 0xfa}, {&(0x7f0000001980)="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", 0x1000}, {&(0x7f0000002980)="ff6909a053f091927e3c71608fae52b527d3585945ce756a18c8c4c9f35e6a8dc58b6b95a148813b59621ae6aea0d88a022e45cad360024667be6a1e5e3526466393559e4b006f5ee0892e8eb3a675a7f9580218ce8275309a7e4ff72796cb8eb4d9b8fee2cf05e94a235e2e6ef31aa0c4248b1c19df1fcf5ddfd081d09f888b9d9260ad7a59b98137139c5638cff21dc13699a36c56e8fa25f276163c3704948a81fc9e243317b252b364940fe0c869d37a6c3c9d4468305bc58c4fdb95470fe3525a1a4e752d967f0c", 0xca}, {&(0x7f0000002a80)="e8680a955bafe5b95f28c3be1990eb5d72655d09d8bf3905a02c86bf43025a86a044a12aef350810f40278e6ef892c192340eb55d8120315e1a8c51715cfd3de5e947ca7185a83b58f7ea606332d8635b447448c6d516ceb818df15fbc00b8b1936eecee7be2f6febbbdf568e9e2e5ac75930d73ddd5d0952447fc975ca8e9bc35b4e21fffd54290c185fee9b64652a86792add84c519cf09a89c6308659c3bb8d5416ca97c9ec45090e", 0xaa}], 0x8, &(0x7f0000002bc0)=[@ip_retopts={{0x4c, 0x0, 0x7, {[@rr={0x7, 0x27, 0x80, [@multicast1, @dev={0xac, 0x14, 0x14, 0xb}, @remote, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, @broadcast, @loopback]}, @rr={0x7, 0x13, 0x3f, [@initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2]}, @end, @noop]}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x9}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x6}}, @ip_retopts={{0xcc, 0x0, 0x7, {[@cipso={0x86, 0x62, 0x40, [{0x6, 0x9, "2527ea8370ae48"}, {0x5171acf75507fe6d, 0x5, "730e0f"}, {0x11a5e46ef5024229, 0xb, "b95dc1348b08180a0d"}, {0x5, 0x11, "9c9595cb1c08f734f8e2280152843c"}, {0x0, 0x11, "8f8e86db681a2834b653197d53fb5a"}, {0x5, 0x11, "d63bfecc966079ad9220ea2d15d9ac"}, {0x6eccdd1f2261f42c, 0x10, "b3a29b9f00b44b28a02833225303"}]}, @ra={0x94, 0x6, 0xff}, @generic={0x86, 0x4, "a18f"}, @ssrr={0x89, 0x1f, 0x7f, [@multicast2, @dev, @multicast1, @rand_addr=0x4eb, @remote, @rand_addr=0x1ff, @rand_addr=0x7f]}, @lsrr={0x83, 0x27, 0x43, [@multicast2, @multicast2, @remote, @empty, @broadcast, @loopback, @loopback, @broadcast, @rand_addr=0x9]}, @lsrr={0x83, 0x7, 0x0, [@loopback]}]}}}], 0x150}}], 0x3, 0x1) [ 1472.306363][T18087] gfs2: not a GFS2 filesystem [ 1472.355381][T18088] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1472.369085][T18088] CPU: 1 PID: 18088 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1472.378640][T18088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1472.388703][T18088] Call Trace: [ 1472.388727][T18088] dump_stack+0x197/0x210 [ 1472.388748][T18088] dump_header+0x177/0x1152 [ 1472.388764][T18088] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1472.388781][T18088] ? ___ratelimit+0x2c8/0x595 [ 1472.406660][T18088] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1472.406678][T18088] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1472.406693][T18088] ? trace_hardirqs_on+0x67/0x240 [ 1472.406712][T18088] ? pagefault_out_of_memory+0x11c/0x11c [ 1472.433102][T18088] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1472.438905][T18088] ? ___ratelimit+0x60/0x595 [ 1472.443488][T18088] ? do_raw_spin_unlock+0x178/0x270 [ 1472.448695][T18088] oom_kill_process.cold+0x10/0x15 [ 1472.453801][T18088] out_of_memory+0x334/0x13c0 [ 1472.458475][T18088] ? find_held_lock+0x35/0x130 [ 1472.463257][T18088] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1472.469072][T18088] ? oom_killer_disable+0x280/0x280 [ 1472.474282][T18088] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1472.474298][T18088] ? memcg_oom_wake_function+0x700/0x700 [ 1472.474320][T18088] ? do_raw_spin_unlock+0x178/0x270 [ 1472.490643][T18088] ? _raw_spin_unlock+0x28/0x40 [ 1472.490667][T18088] try_charge+0xf76/0x14d0 [ 1472.490693][T18088] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1472.490712][T18088] ? mark_held_locks+0xa4/0xf0 [ 1472.490727][T18088] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1472.490741][T18088] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1472.490752][T18088] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1472.490764][T18088] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1472.490778][T18088] ? trace_hardirqs_on+0x67/0x240 [ 1472.490793][T18088] mem_cgroup_charge_skmem+0x15e/0x300 [ 1472.490805][T18088] ? mem_cgroup_sk_free+0x90/0x90 [ 1472.490817][T18088] ? __kasan_check_write+0x14/0x20 [ 1472.490829][T18088] ? __alloc_skb+0x3d0/0x5e0 [ 1472.490844][T18088] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1472.490860][T18088] __sk_mem_raise_allocated+0x56e/0x1410 [ 1472.490882][T18088] __sk_mem_schedule+0x6d/0xe0 [ 1472.490902][T18088] tcp_sendmsg_locked+0x1733/0x33a0 [ 1472.490936][T18088] ? tcp_sendpage+0x60/0x60 [ 1472.490951][T18088] ? trace_hardirqs_on+0x67/0x240 [ 1472.490965][T18088] ? lock_sock_nested+0x9a/0x120 [ 1472.490981][T18088] ? __local_bh_enable_ip+0x15a/0x270 [ 1472.491002][T18088] tcp_sendmsg+0x30/0x50 [ 1472.491018][T18088] inet_sendmsg+0x9e/0xe0 [ 1472.491032][T18088] ? inet_send_prepare+0x4e0/0x4e0 [ 1472.491048][T18088] sock_sendmsg+0xd7/0x130 [ 1472.491063][T18088] __sys_sendto+0x262/0x380 [ 1472.491085][T18088] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1472.627667][T18088] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1472.633923][T18088] ? put_timespec64+0xda/0x140 [ 1472.638701][T18088] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1472.644444][T18088] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1472.649927][T18088] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1472.655400][T18088] ? do_syscall_64+0x26/0x790 [ 1472.660084][T18088] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1472.666161][T18088] __x64_sys_sendto+0xe1/0x1a0 [ 1472.670944][T18088] do_syscall_64+0xfa/0x790 [ 1472.675459][T18088] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1472.681349][T18088] RIP: 0033:0x45a679 [ 1472.685265][T18088] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1472.705037][T18088] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1472.713454][T18088] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1472.721430][T18088] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1472.729403][T18088] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1472.737378][T18088] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1472.747872][T18088] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff 11:58:05 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x2bb, 0x2400882b, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r0, r0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) sendto$inet(r0, &(0x7f00000002c0)="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", 0x1000, 0x10, 0x0, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x0, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, &(0x7f0000000140)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r2, 0x400, 0x70bd27, 0x25dfdbff, {{}, 0x0, 0xb, 0x0, {0xc, 0x14, 'syz0\x00'}}, ["", "", "", ""]}, 0x28}}, 0x48040) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x37, 0x10, &(0x7f0000000200)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0xfffffffffffffe00) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r3, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:58:05 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x2403000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1472.964060][T18088] memory: usage 307196kB, limit 307200kB, failcnt 441 [ 1473.013611][T18088] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1473.062810][T18088] Memory cgroup stats for /syz0: [ 1473.062938][T18088] anon 2314240 [ 1473.062938][T18088] file 126976 [ 1473.062938][T18088] kernel_stack 73728 [ 1473.062938][T18088] slab 4505600 [ 1473.062938][T18088] sock 307580928 [ 1473.062938][T18088] shmem 0 [ 1473.062938][T18088] file_mapped 0 [ 1473.062938][T18088] file_dirty 0 [ 1473.062938][T18088] file_writeback 0 [ 1473.062938][T18088] anon_thp 2097152 [ 1473.062938][T18088] inactive_anon 0 [ 1473.062938][T18088] active_anon 2314240 [ 1473.062938][T18088] inactive_file 53248 11:58:05 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\a', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1473.062938][T18088] active_file 0 [ 1473.062938][T18088] unevictable 0 [ 1473.062938][T18088] slab_reclaimable 1486848 [ 1473.062938][T18088] slab_unreclaimable 3018752 [ 1473.062938][T18088] pgfault 170214 [ 1473.062938][T18088] pgmajfault 0 [ 1473.062938][T18088] workingset_refault 0 [ 1473.062938][T18088] workingset_activate 0 [ 1473.062938][T18088] workingset_nodereclaim 0 [ 1473.062938][T18088] pgrefill 176 [ 1473.062938][T18088] pgscan 166 [ 1473.062938][T18088] pgsteal 33 [ 1473.062938][T18088] pgactivate 132 11:58:05 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x04', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1473.229286][T18225] gfs2: not a GFS2 filesystem [ 1473.256254][T18088] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=18086,uid=0 [ 1473.289192][ C0] net_ratelimit: 26 callbacks suppressed [ 1473.289200][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1473.300719][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:58:05 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r1, &(0x7f0000000080), 0xa) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r2, r2) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f00000002c0)={r2}) r4 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000002e00)='/proc/capi/capi20\x00', 0x40000, 0x0) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r5, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r5, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10) setsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r5, r5) sendto$inet(r5, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) sendmmsg(r3, &(0x7f0000005540)=[{{&(0x7f0000000300)=@llc={0x1a, 0x226, 0x80, 0x7f, 0xff, 0x5, @dev={[], 0x27}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000380)="91bcc4270fceded26c43e431b2c218edf7a8549e563bf202f30c3d2f4ffcd64bbf5c1046539d746fc14299c923ff8583c3dca470f5f611ccdf323d2811be7ea070b790cef4edc495bc93c311b2ebd0746db96b6d23d49cc51304cecfdfdda48653e1c974624bce63157edf22188f2dfd3e22a21466222294f6f8ae8f790ad936305981656b97adea49552e3e3dc9e11da61e088d476615858ffd9de324076b79bffeea5efd", 0xa5}], 0x1}}, {{&(0x7f0000000480)=@rxrpc=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e23, 0x9, @ipv4={[], [], @empty}, 0xffffffff}}, 0x80, &(0x7f00000029c0)=[{&(0x7f0000000500)="f9e0fcd252714024d28b2f64af383001d56931b097ecd1383623c5f3abb52a4493615969b937b544bd2eab9fc4a0f84ba7cc4dc1a5bcd5410f6554b05db30af220197b4dc812ffa0587c3786437e021ef77339d5eed4ed1fc599848bf24de4d5270725bbd9ef5dcdb4ee059d6105569d458a0a55c13f355c0e6f1d0678abf1888048f77b333271d4df0bbf944ed8f615d0a20dd0d40a2585594bef8f1c60ff73558bcf9bd69b5182c8b3ae1ca813ec5b6c81e502a18b739b2e5e832e12db773ab7e3418a815a97858a3c3b3f91dd5ac432647267f250be48bca32505fb219087262b0d30ab5012acf0", 0xe9}, {&(0x7f0000000600)="20ab4c3b2895d1111467c2694693fa44c8aac32679d884362de957183624b23f29d5a2d53cae138330bd72258ed2ebd3eec92c07b1ae99ea8f75a2f812610db9eca8a6fa66e0670e97ed1d45b8e6ecb14940b0ca0a985c9d32f1f877c1eda373df9e786a03ccf5ca1730a2f99f10fc0cc0c229da235fb9a7a430571a614688d422531806959f0c4e48fe062121c4543e60b444889be153b5aaa7b8b4405c77e35242407e546a719d0cf0f698e4aee9920092bc27c792bbfac77c5ec4dc943ef283289e2ec252", 0xc6}, {&(0x7f0000000700)="33ab98d566281ddeeaadb57e6c0668c67e30e390246f4f0e45189f4c7561e2fa39eb65797800d0fc25a16b771e34e7d4acbb2c6c903fea1800f0606604d094838d19860e3c3d5fdc9e8b6f54b7c2cf50360ad6cf69b58e3ac05853", 0x5b}, {&(0x7f0000000780)="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", 0x1000}, {&(0x7f0000001780)="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", 0x1000}, {&(0x7f0000002780)="d4f43e498f5b1d39fe19fa1ef2bb199e6be04ddcf9e08e5ff02bb05fa644d1cff26ce3e33f3eccd6a8279bb7532733d1ea6e2d3148ee27025663641b39128276990acd49d7821c96666dba050ff675f3750efe1cb4e0cdfbc02bde2df22e65a267faebcec4829fdaf2c6d816f6418c48de08b7d7c04e193f366b3b10a2b623c8142d8c4ee32b8fffcbb179e41822f10a0942a5b4e9bc248767afcef0ce82fd36c0cca4c737651d4c2f99ec5d7e7b2b4c91a2456bbbcfe1de9ffab128c0568d3686276221d5fb809c9d1bd5e2f2a11904", 0xd0}, {&(0x7f0000002880)="a9753c07a229b45fa06f9f78ac68d9953efeb06193d865761cf94d857ffdf251c7ea106372c7179934a93767abec107c64637cbe65", 0x35}, {&(0x7f00000028c0)="6c928bb5d74ade7bbcf822d9966b9faab1a8eebd5a6691a581d84b9e9fcbe08df087932392109054426ac378ba22779972c785ceffdddf03c9e0dbcf11459576942d5109af83bfcde0027f1e289edca52b1bd293da2869ed45fcaf6a2a5d089c3a73255624469879d4e79c09e9ac68bb8704caa2a2a35d3431200eef6b9c51731e8feed8017779aacbb01699d46efee9bd4e20f58dc7194337b443390c61ad0fc47b4df47f0096c6bb08e0ae81de110d79e3b9b59fc89defa2e512a567c52c722f5a6a71f7a9e301e2fa77895b74a5a02ac187f3914bc3e4e8f1e28f21faee99de10f62e90485f64e2d04af7949219d55eed5cee", 0xf4}], 0x8, &(0x7f0000005640)=ANY=[@ANYBLOB="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"], 0x390}}, {{&(0x7f0000002e40)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x0, 0x1, 0x2, 0x1, {0xa, 0x4e24, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0xfff}}}, 0x80, &(0x7f0000004180)=[{&(0x7f0000002ec0)="f30b616f91753a6caacb2b35d8112f68c5e714be73d30a08a98f25e0bde8948ed485293bb5779ade45262d7c05dfe412d6b9a838a1f9e78e19e6a75aed996c216b7bca55275e702f234a6912a66a9be5573812efb2c13823047e8336f3899f516163158751bda5f484876277b7a43a2881652d7eb5c35aebdb2f83cc0ac840daa5fad935d62e699ea2bb688e0e10deb5143da229a8b59c4a28861c85c987ea941570c5172f19624589d946fdfca3b7a1864b7090826b46b2f09b4ca4da7b13de85f69ed3a7521cfe63dbdd129409f74f77d033eae4802accddebf7c9acf0dff6f4a67b39a42a51de", 0xe8}, {&(0x7f0000002fc0)="f0f6648632cd3c1705fec5f14eb6", 0xe}, {&(0x7f0000003000)="ed2a1186d1ae7234d7c7c696e54cd7522d48f9b252d4f51808a0719eb4520e08bca618c7a70fda10b6b9fd1d34bd017ab273c3c66bb72f689786fcd8c72058e4363ed4119a11721c9721b5dd833569bce34eeb35f19bae892cb8eec0757ef09cc82e83ecfabbbd6af9af9231ab19bae66214a205fb9b99786c0b46ded85d079eccf2e994d99cd4613c6aa15d9446467b60265ad63915a5ab3670270a4ecdcc55f37afa012d9497740876ddd538c3796c6331b87484d7c116c7d8c00354e1c7a39ae95094c2", 0xc5}, {&(0x7f0000003100)="3ed244a1bb6f7eccdf7f2c1bf86ea484abdfebd429c51b91dda42c57400bbb071c407a6aca97b1c034960680ba2adaec3d045f367afa836f673dd4bc7a32ada429e612ac0e008a144b9e2be47c74d9cee161f1667b9cd251900ba28d0409ad58d4d800acb38f476f6b26956edf67ca2489e8f3f21961fef39f8e545df764379f70efd3a4ff17896f7fb294f36f0ff5376fc7c8cf14b02cd66f8436df41530a3fff6625998ca0b4c8adf89749d40f7a313d04b83cc1d1fa77cef7a2768b24d64fef06e98c0406d90c7db105bf4d82d4765a23f9bb443ba13415cd48c551036acd0aa6a04b54b7df73c08f5f51393f834a36409ae253bbfa6cf6038219d8995f13d36dcd458bb7587e48d511d2f9f0520f7599bd1fd13f3b88942059d116d1a47bb2147d8d9092542aa1bb5a4194e33463bcb88aa2f0e61d7a471e2a1bf180420a05a04ae810c0f87f121fde5b07ebc22f0f6f9803475ba4658f5e7db1da1b478021fe5f554259af665b885b1a5e37f492d8ffa4dd98ab59f45f4a1d89145aa06e4edbc7c9522852f45726c122990f693665623e8a09ecdc7799913865a2e143ccfe355ead1bec02591f683789b3376b13df7104daeb9aa9716ec6bf3f58af1f30eb3b22ecf9c24caceb92bd0e2dba8d6ed5ebdfb1ad5dea104a51c29fd1c09e6c9810017df1adf8858300033a60ff8d9686f86715c94553a8a2437c5a0df7a97df9c87245fb0ea25c8198097eb47112cb1f1a4ba5a2925525713169eb6ecd518e7a17f7516618bb9cafeef792e6bc7ddaecda1ecc5b5de848a49cbd87d52c583dda9a8ec3666a5380acff93aef3b39609e3c6a39fc9d764926963b3a12f629d010153115472c62784e5bc7a75207fa0f25f0cd2891b5eea8c0a88e09b25193f10d352696e74496b8d8b65cbd8b3ee46de73ad1241c3d597b9322ce23b5446b3921c780f4c8a94002716c575b5d97baf242df09cd94aee3e9365c1f63b92618f40ebe01db86a330a159804349fa622d3a919df2d3b4ef8b6eb3a3ff0b5736559fd5da890dec837cc6ac2df4532afc6f70e3460e0162d1d846709badf448d6b3e8dfdab91f3b67d0d01a0398c506a8729e782b1053317f5857054240e94a28bc002d208a750ac7c9ed2d776f1b66d4344acb273d23b8d084cd06af8b44896518987808c2673843ad0a8d704edf7c759768e7d747de17e60d74a842e196b4852c76a76b00b2e562256ac677a35ac918171139abe73e393ae4ebca53e8e9046c4fa5206dd9a631c70888c4864c9757f5a7dfbc95df45a5591c4b3acb581bc58f6f94c7fbe962201bc55a9d91087ea271776c302b57b57a82ffa908694774fd120fbd1228d45df33f955991cc0db547386f3673f90beb564c3286a5fb58d48f947912185e0a88063a0ec0e12fc618ac4dc9bbf609c3299cba5ae66fbfb44e713f293f644920efc023077a3d04043937cf97e1efe02857d8e5fee7cc76079e4ff89b81422a49efff563a2700312333c4f2ffa96edb1ba54ae978ce9249a16c2760cafdcbcb3f0c3e9868dcfd16d32154823e80f7fe7a2efb8d8e372eb535ffbef70d66f57efba79ef20bd59e28dadcedd5b1ee685c255aec1ac47c7ddd165a47ae210ec2a9110dafb4e4afeaa9cd1754cc49ee72d25a9f5c004b82c2806ec9ea1d797579657205bc4a81270b23f64746fefffdc12235d5ff9654ebe0c8db1b64cc41877161409ed1dd0b4df4d010997cf71135bdef517613d1e866021fc5c006eb297c6baa9fe32fecf50b3d02a8e4137402605cf97216c55fa5a1f3af538b6d0776fb83770e9bd2ecbcdc42b71b11e63c317c0e6e16c58ea41c4dc64c77cd5f40b396aff1bbbf0b198748680fc002007d333d1f350dfecf7ac4fddb0f4c7a6a1a92d573f7e90828b7a014ec86accc5896d1ae33d9dca1ee16eee9689b1b2c08186b0e5bb11db586dc5d984ac78a4c982185758215c22d16e7591117df1214f599e5df1ef2c13022a5f7e1f3ecf87d3e7bf8fc35ffdcd9ee2471fb4f65fe567c6d64b1f7453982d3090ac8f3016fdb3f8176514cc14399fbb9cf2969fccabadc7375a768c1e52b4825011b63942394338bed8b3368af79d9c6c8c591ddb91505cc9c41a38785833d1c5aacfc5eb71db5bebae6024af0354c4c382fd6951e7e637308da5c465b92228aba4332fc2e05fcd473a716db2c791ec285c5358a3c0823f5e94394e2cc09f5240dae09d401cef5ce77379fabdd01fb3d903d43c0e44f96899f4b8b19bd0438ce4ba62d9117e8b833c688ef472175b273ae1fd4a0d52dfb81c645f764b99cc4f5811bed7cc442eb9ffa5aee8418e69b85b42a1e4255da4523b2d7afcbf5b183511e59423b12d707f53344aa2a981c199b649a3b95492fddf979b4b7750c1b7246f17f02229742d8baee6cb0616435005130297e38f11ed24ce87bc03878d28bf78f5d5244c9a8808e61ddf38e2cd1360ca17ef879fe6b42648aa03454764f2ece66a37f6ef50de14fab1f13fe26e183789f2d2d5b18a13b2f24344b8450ac8fdd733353dcec557d6370da0c922c5b3887669b0c0e1792c24e6be518677a0e461a007a954623a8ff452b9732f658dfdbdd9a0fcddf9408aa1f4ad2d22f9efcfef048dd3ffca507c3a8e9ec350d208253de703f45711c84f03f2f49ffedd2f4527f4fe0d6efc2bb5a3cfdd4a40e2a4830d1335768654a23939f36aa4caa33140022de2c29de4466477860c20cadcac53c484ee9588ea57cf19acab73c9322b0d3c9b05110d851a1b6bfa7bd9e9416ea2251206a1a2d4eaf5b33c94a2dce16fb016df98af10875993057c27a9182658fc9e508972c7469cf42665d70c0c4be4f772dfe955be0f72cd73b50c0a0013e5463a0b9b6196db5717b560192545d7109fa9e31922e8d365822a18071058f1e4c564f06ed201e87b8d8e30ad99bf1bd64703992da3f2fa24b1ebfc9af5db7d143d50eefa2585e6b39659b86cf2eb88995fc368a865e74ed59c764f54d1dd264eb4927201f624e6b187adc83462290af530d1e11b33b7377095963d646252c56f1c6d834857b02f7e6b1438082b770181f6c4e8f4d2b6a243ff20ad6c65619ac2e41a05021ed0e2deaefd6c3fbebc9a1f39377ee6c7a70776da0b823ba0e5e08e53471d994f1f6065d237cf59f124820ebdfb37d1de6de703a4f559ea7ce36b4b280b58817dd46d2caccf32f62368743e8e0d83e5ad24f4b71b485bb079b68e0c7eaebc83a2aa500c52650f01835ac1ca0ab652fcbe8b0a08e2c69b2b203c882815b3ac7bfdb2fac08950b2d40b97e61aa33e59c5921f9b708473ab10e57c8c2e37111b89b542d8af4bfa96ffdf3c40700024bb25f014d6c5c8910baaacd45aa0d0e9b53a7e177261888eba940d16e7ef4b8bc5a73ec5ea3d87bfba68fd84eebd7da73b92dc153064957c548fead9f3aad1bc752d9db9eabe73bdceab389105ff3fd064e5d1ccf72de5f3cedb8f5e516ab1e8a7d801e9205e193c9c308f91c4c05d203b733ed96f5679cd0022397d1526b548462b074b4b1508a1141a9ad3c8061cd130ae573210203d975ffeb51f15ab4d56ee1b1f621bd2a332dc53c00015c70212fb196e987bc3d1c8f3cf79ace29b4919b3ce9028c46c784ce0e8eac4c964ef1cbcf39e937500bc1e5b3d0701ac393ff54b5b8c850b8ec605775bed31f0e2b8f4c8cc8cd8bb8f97ea4ab81d316184a117fb7148c4b5a6220006a000f22286ab0cbf1cbbcb6bed7a28ab30ef84e4f949b403d823527cf48ca095caedfefbad543bfa98a9264177cbb86c5427195b36c117d4de85d63ae24f91164a6a67ed31fbbfb79ab3836c81182b2ac097c02a64c2a779cacc1fa293a33447a0b8b5ac06fd24ea9efde79aa80ce171ff599987f5913f3b6f2a754a05ecb6316375ffec319439909ddb36cab62940aa40929b55bfca04c50364f9750f41ea04c55f50e2f9c553580deb0240c9cf10719a105b1f4eff81f9c3c1750e56cf530394b45a3a35e266b203edf18d96a348a5d10c6cd2865f27ed9a6186961af51509d721724dd4459877c830f9b1b75df9fb9bc4626f7eef3cda75f0818fd6d7f29bc46eab3edf325d9a9d1c98d1070c31018afac2bd2c3cfd087ea7c6d34eb41553cb6d78acfaacf530008b1d1305453f75a161d3189febae018cb74597c5ea77c952d0b4479347dda08a215e8585dce591f586aad8ee55b6e4a7ae8948351323d5d795f161fb4e78e2f7e13f812a225ec855b79fa5f891c3cb2963e7242267c64a6f844857049cccd117845bdadf8241461b3c69a9beee09672e56c6f53d74f7ece2d1979a958f2ee996d05c265a0210c59323b1ba94e26c2b59f60c615a066c40002cd51c7d6e3bf4379c31cb8823d0753c11ca81f07e2992ba4e39069637b86240a5d572ef5890d544cc71a6d3b15514bef7361e9a2a33b3962a4bcb55ea394cbc9bd92a7291ea56480e6c45609ecbc11471514687f9e62b2bc6e0044953ec1aeb4ec426ac48f9f1a7111dc6906c0f535bcd19b2ecf0f851bc8596abd90abd9b63d252b5d193b37a8e6572d52fb03530e6833138e8aa424ee84ed605a885e38692e8a93183fa14d29f731a77c35dbe54c55b79ebabaf5150064a5d330ecbb828b653b24cf9348b5b754fa45ef0dbd41b7188df7e191c71ab57eebe3d2971988bb1832a9aa47da5a31ab1c3480e689fb883a2fcfc5d3c08f9b6b672f0ca8f4ab07d49d0b7b7b8cd0a284091b46d3c776c9a9ab3caadbcaaaa1fade637b83f5433eb3bfefb15290ec66df119ef30d6e2f8f5dbfa943cf31d943a3e4281e8beb61a740fda30e3ed83409f986b149b665bd35c18bb282af38aae17be1cc214b4a160766fab8629eeace9191c5377a892f9be2757214b86d43693522da737bba576e674ce1aeef78467c081b5374e09d206595fc641d0a50d6d296b10f549ad224bf99f91c1116b4644e06a8120de11da866d8154a5d56e8103937a6546682bd8b18ac13e077498a0e051db245d63794d41598a896c5138a7351813bbe7694968a426eb26cf72c6f6bdfbcdb57443190f038e125b5b19ef5a614c52a3faf85b313e764d7504f74ad51f00daf5389d1228589f671deec9497b84f66e1065b41c3386e7f0e3f1b7667a8dc22e7a87c6b9f9856f6f54e4bce91e903c1c33e7566428c2c4ca8d768f246bddb46496659d84f883493e25c96e135019dc37abf9c51a07a65cff3134389765e7c24b488aa4e6e42ade7141f09b04528067385222e9af61f53a63fcca10a316a97b60c4d47be910ba35deaaecb5182a38fdebcc818d39421fc3f439f0b3619063b637d85555e779e4606af0d8490a51726fa74b866a32fdf472bc457b521e6772aaa4972bd7d53a2b0d58daf0f36490f29cd772d0376e37e8a42bdc3f3ee5eb22c47d8690171a7e998aaa1d5eb81d0945a64aa4ba1cc9fd969577bb8dde13042d01c06c1abd56198603d1c760afa79c25254b38294668ca510ef31a6ae8fdd5d6f946126f568ff04ef76fd0610ad4d826e5b0edb7b137528436f29aef893a8fc2aaeee07cf5bf04e04667c68ad4cc2d64946bd7862f2dcea801930fdd8126e05b421dc9606601927341f7b3fce2f44110076f327f42e33a181519703c05c51318ee58514253c09159ea165d910704c0aae3b9a346bc399f2b2e44b8dacfa39c6bd79556e01cf395167cdbb0611aa6ec3e7b74549b6a0a89d95bcf16770138b73a8b8bfac22ffc2cbb1bc9dd90012654fbc5d74ccfe77d4b21a0db73c8e778cb5173520ec0d9097590486a6d", 0x1000}, {&(0x7f0000004100)="52158dd473cf3e3a6578381c6b2fcaff61e9b0286b82cbf6506a17e91d90fc601697a86707d5469607a44742d93bf85088ed0049a99ca394a924dc98606ca28f33eeeab42e7cb8bf34163a1e", 0x4c}], 0x5, &(0x7f0000004200)=[{0xa8, 0x111, 0x10000, "924eb3dee39cdc144ee9d8d727fe7b2dbb6bbed5a9eb2e3f8aa3749958856e101f81d826fcabd7c952837e7c9a87796424e86a625d82043f81f7f8393b69aa886afe2d2624555035223fa8a77b835624778cedb673e1750f7a1f41cab4bde869530e27ed1fbc78a3828f1cfb2499f116ae0fe8f9808eae89c4fef9814e34674b9cbfb27c54b81e73deaee47290f1661e1794ee3318d0cf"}, {0x38, 0x10e, 0xfff, "e112b0c93c3fd39bfa1b293885815b200e74b0084c662ac9b7b71ec5e229f4b53a1b71d090fcaed5"}, {0x78, 0x108, 0x4, "d2c13c4093deab80c214fc2132cda0894224c57319e00ada7d4e4fb8d79e518db1f76b714545963758bfc0587cf8603147371e975441face57d057521f2dc7e2119e9c8169a72ef1ad024df41c1a6671cf107a78b4eadc64a993612b896ad6fcd3a51d"}, {0x1010, 0x3a, 0xc, "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"}, {0x68, 0x112, 0xfffffece, "6d12737aa3ada70191cebb1738232a0e4b3bc5d1f052b6b8c20a8fceef0ff886bd1ddca36f0225aa7ef1cdfb627f02066977b5f099fb0d5a869b5c322112dc4d95571927c08b2539ac2135de2adfc5a09c768bbe8061e0e5"}], 0x11d0}}, {{&(0x7f0000005400)=@pppol2tp={0x18, 0x1, {0x0, r5, {0x2, 0x4e24, @multicast2}, 0x3, 0x0, 0x1}}, 0x80, &(0x7f0000005500)=[{&(0x7f0000005480)="0cea519535945703a1ce3ab70443ec845f1388106c6beadc7d3e8ad63535b07a58ec27deede610e42911e6ff9968d707e5c934febf2ddeb671e55859a918e3b1ea75b0bf579448e3dc905bedb2f323a95318b466f79feff3e6a665265657db12b36b9f78ae643be439438c07", 0x6c}], 0x1}}], 0x4, 0x4849) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r6 = dup(0xffffffffffffffff) getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) sendto$inet(0xffffffffffffffff, 0x0, 0xffffffffffffff1e, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r7 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r7, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r7, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r7, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r8 = accept4(0xffffffffffffffff, &(0x7f0000000080)=@ethernet={0x0, @broadcast}, &(0x7f0000000100)=0x239, 0x80000) arch_prctl$ARCH_GET_FS(0x1003, &(0x7f0000000140)) setsockopt$inet_MCAST_JOIN_GROUP(r8, 0x0, 0x2a, &(0x7f00000001c0)={0x5, {{0x2, 0x4e24, @rand_addr=0x8}}}, 0x88) [ 1473.319226][T18088] Memory cgroup out of memory: Killed process 18086 (syz-executor.0) total-vm:72712kB, anon-rss:2148kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 11:58:05 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x3e03000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1473.400686][ T1100] oom_reaper: reaped process 18086 (syz-executor.0), now anon-rss:0kB, file-rss:34836kB, shmem-rss:0kB 11:58:05 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) sendto$inet(r1, &(0x7f0000000000), 0x0, 0xc0, 0x0, 0x0) [ 1473.528802][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1473.534643][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1473.540534][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1473.546405][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 1473.552233][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 1473.619226][T18347] gfs2: not a GFS2 filesystem 11:58:06 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r2, 0x40106614, &(0x7f0000000000)) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='batadv0\x00', 0xb) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:58:06 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\b', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1473.811854][T18354] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000 [ 1473.868793][T18354] CPU: 0 PID: 18354 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1473.878403][T18354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1473.888459][T18354] Call Trace: [ 1473.891757][T18354] dump_stack+0x197/0x210 [ 1473.896101][T18354] dump_header+0x177/0x1152 [ 1473.900611][T18354] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1473.906420][T18354] ? ___ratelimit+0x2c8/0x595 [ 1473.911115][T18354] ? _raw_spin_unlock_irqrestore+0x66/0xe0 11:58:06 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x05', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1473.916927][T18354] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1473.922220][T18354] ? trace_hardirqs_on+0x67/0x240 [ 1473.927252][T18354] ? pagefault_out_of_memory+0x11c/0x11c [ 1473.932890][T18354] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1473.938698][T18354] ? ___ratelimit+0x60/0x595 [ 1473.943307][T18354] ? do_raw_spin_unlock+0x178/0x270 [ 1473.949019][T18354] oom_kill_process.cold+0x10/0x15 [ 1473.954141][T18354] out_of_memory+0x334/0x13c0 [ 1473.958828][T18354] ? find_held_lock+0x35/0x130 [ 1473.963605][T18354] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1473.969406][T18354] ? oom_killer_disable+0x280/0x280 [ 1473.969430][T18354] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1473.969446][T18354] ? memcg_oom_wake_function+0x700/0x700 [ 1473.969466][T18354] ? do_raw_spin_unlock+0x178/0x270 [ 1473.969485][T18354] ? _raw_spin_unlock+0x28/0x40 [ 1473.995853][T18354] try_charge+0xf76/0x14d0 [ 1474.000281][T18354] ? find_held_lock+0x35/0x130 [ 1474.005056][T18354] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1474.010604][T18354] ? get_mem_cgroup_from_mm+0x139/0x310 11:58:06 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) r3 = openat$cgroup_ro(r2, &(0x7f0000000140)='cpuset.memory_pressure\x00', 0x0, 0x0) ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000240)={0x3, 0x0, &(0x7f00000001c0)=""/86, &(0x7f00000002c0)=""/240, &(0x7f00000003c0)=""/172}) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r5 = dup2(r4, r4) write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000080), 0xa) setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000100)={0x4, 0x0, 0x4000}, 0x4) r6 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r6, &(0x7f0000000080), 0xa) r7 = accept(r6, &(0x7f0000000000)=@nfc_llcp, &(0x7f0000000080)=0x80) setsockopt$packet_drop_memb(r7, 0x107, 0x2, &(0x7f00000000c0)={0x0, 0x1, 0x6, @remote}, 0x10) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) socket$unix(0x1, 0x1, 0x0) r8 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r8, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r8, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r8, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1474.016155][T18354] ? find_held_lock+0x35/0x130 [ 1474.020941][T18354] ? get_mem_cgroup_from_mm+0x139/0x310 [ 1474.026503][T18354] __memcg_kmem_charge_memcg+0x7c/0x130 [ 1474.032051][T18354] ? memcg_kmem_put_cache+0x1a0/0x1a0 [ 1474.037434][T18354] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1474.042985][T18354] __memcg_kmem_charge+0x13a/0x3a0 [ 1474.048102][T18354] __alloc_pages_nodemask+0x4f5/0x910 [ 1474.053925][T18354] ? __alloc_pages_slowpath+0x2900/0x2900 [ 1474.059648][T18354] ? lock_downgrade+0x920/0x920 [ 1474.064513][T18354] ? __kasan_check_read+0x11/0x20 [ 1474.069557][T18354] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1474.075803][T18354] alloc_pages_current+0x107/0x210 [ 1474.080924][T18354] pte_alloc_one+0x1b/0x1a0 [ 1474.085440][T18354] do_huge_pmd_anonymous_page+0x665/0x1a50 [ 1474.091247][T18354] ? mark_lock+0xc2/0x1220 [ 1474.095674][T18354] ? debug_smp_processor_id+0x33/0x18a [ 1474.101161][T18354] ? prep_transhuge_page+0xa0/0xa0 [ 1474.106284][T18354] ? debug_smp_processor_id+0x33/0x18a [ 1474.111747][T18354] ? perf_trace_lock+0xeb/0x4c0 11:58:06 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0x100000014, 0x0, 0x0, 0x12e16d) [ 1474.116624][T18354] __handle_mm_fault+0x3073/0x3da0 [ 1474.121760][T18354] ? vm_iomap_memory+0x1a0/0x1a0 [ 1474.126717][T18354] ? handle_mm_fault+0x292/0xa50 [ 1474.131708][T18354] ? handle_mm_fault+0x7a0/0xa50 [ 1474.136664][T18354] ? __kasan_check_read+0x11/0x20 [ 1474.141702][T18354] handle_mm_fault+0x3b2/0xa50 [ 1474.146474][T18354] __do_page_fault+0x536/0xd80 [ 1474.151256][T18354] do_page_fault+0x38/0x590 [ 1474.155759][T18354] page_fault+0x39/0x40 [ 1474.159909][T18354] RIP: 0033:0x4005c0 [ 1474.163809][T18354] Code: 01 e9 cd 01 00 00 48 8b 44 24 10 48 0b 44 24 28 75 20 48 8b 14 24 48 8b 7c 24 20 be 02 00 00 00 e8 15 56 00 00 48 8b 4c 24 08 <66> 89 01 e9 a1 01 00 00 48 8b 44 24 08 48 8b 14 24 be 02 00 00 00 [ 1474.183412][T18354] RSP: 002b:00007fffbbd616f0 EFLAGS: 00010206 [ 1474.189457][T18354] RAX: 0000000000000002 RBX: 000000000075c9a0 RCX: 0000000020e68000 [ 1474.197415][T18354] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002 [ 1474.205389][T18354] RBP: 00000000007603c0 R08: 0000000000000000 R09: 0000000000000000 11:58:06 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x3f00000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1474.213364][T18354] R10: 00007fffbbd61800 R11: 0000000000000246 R12: 000000000075bf20 [ 1474.221343][T18354] R13: 0000000000167ca9 R14: 00000000007603c8 R15: 000000000075bf2c [ 1474.233316][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1474.239192][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1474.245045][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1474.272992][T18354] memory: usage 299368kB, limit 307200kB, failcnt 450 [ 1474.280026][T18354] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1474.286987][T18354] Memory cgroup stats for /syz0: [ 1474.287117][T18354] anon 143360 [ 1474.287117][T18354] file 126976 [ 1474.287117][T18354] kernel_stack 36864 [ 1474.287117][T18354] slab 4505600 [ 1474.287117][T18354] sock 299585536 [ 1474.287117][T18354] shmem 0 [ 1474.287117][T18354] file_mapped 0 [ 1474.287117][T18354] file_dirty 0 [ 1474.287117][T18354] file_writeback 0 [ 1474.287117][T18354] anon_thp 0 [ 1474.287117][T18354] inactive_anon 0 [ 1474.287117][T18354] active_anon 143360 [ 1474.287117][T18354] inactive_file 53248 [ 1474.287117][T18354] active_file 0 [ 1474.287117][T18354] unevictable 0 [ 1474.287117][T18354] slab_reclaimable 1486848 [ 1474.287117][T18354] slab_unreclaimable 3018752 [ 1474.287117][T18354] pgfault 170280 [ 1474.287117][T18354] pgmajfault 0 [ 1474.287117][T18354] workingset_refault 0 [ 1474.287117][T18354] workingset_activate 0 [ 1474.287117][T18354] workingset_nodereclaim 0 [ 1474.287117][T18354] pgrefill 209 [ 1474.287117][T18354] pgscan 199 [ 1474.287117][T18354] pgsteal 33 [ 1474.287117][T18354] pgactivate 132 11:58:06 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r0, r0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000000)={'netdevsim0\x00', {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}}) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1474.411818][T18354] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=18354,uid=0 [ 1474.427887][T18354] Memory cgroup out of memory: Killed process 18354 (syz-executor.0) total-vm:72580kB, anon-rss:100kB, file-rss:34816kB, shmem-rss:0kB, UID:0 pgtables:135168kB oom_score_adj:1000 [ 1474.446892][ T1100] oom_reaper: reaped process 18354 (syz-executor.0), now anon-rss:0kB, file-rss:33856kB, shmem-rss:0kB [ 1474.613479][T18484] gfs2: not a GFS2 filesystem 11:58:07 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\t', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:07 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x06', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:07 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x4000000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:58:07 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00'}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:58:07 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r0}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000440)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xfffffffffffffde5) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r1, 0x1d, r0, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) ioctl$FBIOGET_FSCREENINFO(r0, 0x4602, &(0x7f00000001c0)) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000000)={@loopback, @rand_addr=0xffffffff, r1}, 0xc) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) r3 = socket$inet(0x2, 0x3, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) getsockopt(r4, 0xfff, 0x0, &(0x7f0000000340)=""/243, &(0x7f0000000080)=0xf3) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) syz_open_dev$media(&(0x7f00000000c0)='/dev/media#\x00', 0x7, 0x462100) [ 1475.097446][T18618] gfs2: not a GFS2 filesystem 11:58:07 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\n', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:07 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000040)={0x0, @nfc={0x27, 0x0, 0x1, 0x1}, @sco={0x1f, {0x3, 0xff, 0x7, 0x8, 0x8, 0x55}}, @sco={0x1f, {0x5, 0x5, 0x9, 0x8, 0x7, 0x2d}}, 0x1ba, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000000)='bond0\x00', 0x2, 0x5, 0x8}) sendto$inet(r0, &(0x7f00000000c0)="e5b91362199acbd3729dfb0fb4aef9016409d3dfb666c2598083d9c44c66399793e750b4a818b61cfdab401f268c3556125f21ac679df3b1bd44f6e5b4e44448d6830948d53bb1d1915f856ee6a519273cf1daf987b3f0ed15feb2b5d3337171a866d35d5b2dcbcaeb6959c2a78a64bf02e304da624abd6c5282c5c8c125439890", 0xfffffe6a, 0x1000, 0x0, 0xffffffffffffff48) 11:58:07 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\a', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:07 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x4800000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1475.773826][T18761] gfs2: not a GFS2 filesystem 11:58:08 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\f', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:08 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x4c00000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:58:08 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4#', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:08 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\b', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1476.423542][T18888] gfs2: not a GFS2 filesystem 11:58:09 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x6000000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:58:09 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4-', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1476.830781][T19011] gfs2: not a GFS2 filesystem 11:58:09 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\t', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:09 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r0, r0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x20241, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) sendto$inet(r1, 0x0, 0xffffff96, 0x40, 0x0, 0xfffffffffffffc88) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r3, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r4 = dup2(r3, r3) write$UHID_GET_REPORT_REPLY(r4, &(0x7f0000000080), 0xa) write$UHID_INPUT2(r4, &(0x7f00000002c0)={0xc, 0x1000, "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"}, 0x1006) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:58:09 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x3c, r1, 0x439, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x28, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'caif0\x00'}]}]}, 0x3c}, 0x1, 0x4c00}, 0x0) sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)={0x4c, r1, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x19}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xffff7fff}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x8}}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x85}, 0x8000) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = accept$ax25(0xffffffffffffffff, &(0x7f0000000000)={{0x3, @default}, [@bcast, @rose, @netrom, @default, @rose, @default, @netrom, @netrom]}, &(0x7f0000000080)=0x48) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, 0x0, 0xfffffffffffffe99) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r5 = dup2(r4, r4) write$UHID_GET_REPORT_REPLY(r5, &(0x7f0000000080), 0xa) r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r6}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r6, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r7, 0x1d, r6, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) sendmsg$nl_route_sched(r5, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x28230030}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=@newtfilter={0x30, 0x2c, 0x4, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, r7, {0x7ff9, 0x4}, {}, {0xfff3, 0x8}}, [@TCA_CHAIN={0x8, 0xb, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x2}, 0x90) sendto$inet(r3, 0x0, 0x24c, 0x200007fe, &(0x7f0000000100)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r3, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1477.161778][T19029] IPVS: Error connecting to the multicast addr 11:58:09 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r2 = dup2(r1, r1) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000080), 0xa) write$binfmt_misc(r2, &(0x7f0000000000)={'syz1', "8619bf874509ed79c90f295a3105f1b38fc3b3ef1349cc8d9e2d148619c4d89cfe2954c747fdc4db624c6f4c2f88bcfe1c4e8afc05cba09e37c69cab2019ddf88e3674de8d19607ab5e9815e917265201bf5b7de8f2287c4d559c3dfe7a41e6b340b52a476d3b807d6955820dc6bfc3b777cc2a8900c16a23f359e4262b393acd027a7461cc5afa57671e95a65d3ab0a9926f0c7def77708470467682b7d0da4bbd15a"}, 0xa7) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:58:09 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x6800000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:58:09 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$sock_x25_SIOCDELRT(r0, 0x890c, &(0x7f0000000000)={@null=' \x00', 0x9, 'dummy0\x00'}) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1477.322869][T19026] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=3, oom_score_adj=1000 [ 1477.335573][T19026] CPU: 0 PID: 19026 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1477.345145][T19026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1477.355201][T19026] Call Trace: [ 1477.358512][T19026] dump_stack+0x197/0x210 [ 1477.362856][T19026] dump_header+0x177/0x1152 [ 1477.367370][T19026] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1477.373184][T19026] ? ___ratelimit+0x2c8/0x595 [ 1477.377871][T19026] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1477.383691][T19026] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1477.388990][T19026] ? trace_hardirqs_on+0x67/0x240 [ 1477.394018][T19026] ? pagefault_out_of_memory+0x11c/0x11c [ 1477.399674][T19026] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1477.405485][T19026] ? ___ratelimit+0x60/0x595 [ 1477.410084][T19026] ? do_raw_spin_unlock+0x178/0x270 [ 1477.415301][T19026] oom_kill_process.cold+0x10/0x15 [ 1477.420426][T19026] out_of_memory+0x334/0x13c0 [ 1477.425110][T19026] ? find_held_lock+0x35/0x130 [ 1477.429882][T19026] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1477.435699][T19026] ? oom_killer_disable+0x280/0x280 [ 1477.440910][T19026] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1477.446455][T19026] ? memcg_oom_wake_function+0x700/0x700 [ 1477.452102][T19026] ? do_raw_spin_unlock+0x178/0x270 [ 1477.457318][T19026] ? _raw_spin_unlock+0x28/0x40 [ 1477.462184][T19026] try_charge+0xf76/0x14d0 [ 1477.466626][T19026] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 11:58:09 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getpid() r1 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x0, 0x0) write$cgroup_int(0xffffffffffffffff, 0x0, 0x0) ioctl$TCGETS(r1, 0x5401, 0x0) r2 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x3, 0x0) r3 = memfd_create(&(0x7f0000003500)='trusted-procuser^(@cpusetGPL-/]mime_typeGPL][)\x00', 0x0) ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3) ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r3) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) sigaltstack(&(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000000)) r4 = socket$inet(0x2, 0x6, 0xff) ioctl$sock_inet_SIOCGIFDSTADDR(r4, 0x8917, &(0x7f0000000100)={'syzkaller0\x00', {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x28}}}) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r4, r4) sendto$inet(r4, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) pwrite64(r4, &(0x7f0000000040)="04160a3c785b2f74b129601326a256c0f8c85824bb48d4c0e7776605e1d9dcb697f0390d3ee33ec5491fc1ad1ebdbd3207dfe22ff78ebaad6e15992e404992da8b9ebba09c6e7f8055f4c61be1b70d724323684c5aa749cbd12633f3ce87cf085b3862ba49591ea4683af71d0c5a00315fd7695c5791e2b02e056e7fa1d875f46eb4581dbd79a8d2d3addd298929b10127bc483074", 0x95, 0x6) [ 1477.472182][T19026] ? mark_held_locks+0xa4/0xf0 [ 1477.476950][T19026] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1477.482590][T19026] ? __sk_mem_raise_allocated+0x56e/0x1410 [ 1477.488429][T19026] ? mem_cgroup_charge_skmem+0x11a/0x300 [ 1477.494068][T19026] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1477.499383][T19026] ? trace_hardirqs_on+0x67/0x240 [ 1477.504419][T19026] mem_cgroup_charge_skmem+0x15e/0x300 [ 1477.509883][T19026] ? mem_cgroup_sk_free+0x90/0x90 [ 1477.514919][T19026] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 1477.520645][T19026] ? __sk_mem_raise_allocated+0x63f/0x1410 [ 1477.526462][T19026] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 1477.532710][T19026] __sk_mem_raise_allocated+0x56e/0x1410 [ 1477.538351][T19026] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 1477.544607][T19026] __sk_mem_schedule+0x6d/0xe0 [ 1477.549383][T19026] tcp_sendmsg_locked+0x1733/0x33a0 [ 1477.554608][T19026] ? tcp_sendpage+0x60/0x60 [ 1477.559120][T19026] ? trace_hardirqs_on+0x67/0x240 [ 1477.564149][T19026] ? lock_sock_nested+0x9a/0x120 [ 1477.569099][T19026] ? __local_bh_enable_ip+0x15a/0x270 [ 1477.574486][T19026] tcp_sendmsg+0x30/0x50 [ 1477.578739][T19026] inet_sendmsg+0x9e/0xe0 [ 1477.583084][T19026] ? inet_send_prepare+0x4e0/0x4e0 [ 1477.588205][T19026] sock_sendmsg+0xd7/0x130 [ 1477.592631][T19026] __sys_sendto+0x262/0x380 [ 1477.597148][T19026] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1477.602546][T19026] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 1477.608796][T19026] ? put_timespec64+0xda/0x140 [ 1477.613566][T19026] ? ns_to_kernel_old_timeval+0x100/0x100 [ 1477.619301][T19026] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1477.624768][T19026] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1477.630245][T19026] ? do_syscall_64+0x26/0x790 [ 1477.634951][T19026] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1477.641029][T19026] __x64_sys_sendto+0xe1/0x1a0 [ 1477.645833][T19026] do_syscall_64+0xfa/0x790 [ 1477.650350][T19026] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1477.656240][T19026] RIP: 0033:0x45a679 [ 1477.660140][T19026] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 1477.679748][T19026] RSP: 002b:00007f1d88fdcc78 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1477.688196][T19026] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000045a679 [ 1477.696264][T19026] RDX: 00000000fffffdef RSI: 0000000020000000 RDI: 0000000000000003 [ 1477.704354][T19026] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000142800 [ 1477.712330][T19026] R10: 00000000000000c0 R11: 0000000000000246 R12: 00007f1d88fdd6d4 [ 1477.720309][T19026] R13: 00000000004c978e R14: 00000000004e1530 R15: 00000000ffffffff [ 1477.743627][T19026] memory: usage 307200kB, limit 307200kB, failcnt 483 [ 1477.750580][T19026] swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 1477.757548][T19026] Memory cgroup stats for /syz0: [ 1477.757680][T19026] anon 4337664 [ 1477.757680][T19026] file 126976 [ 1477.757680][T19026] kernel_stack 110592 [ 1477.757680][T19026] slab 4366336 [ 1477.757680][T19026] sock 305496064 [ 1477.757680][T19026] shmem 0 [ 1477.757680][T19026] file_mapped 0 [ 1477.757680][T19026] file_dirty 0 [ 1477.757680][T19026] file_writeback 0 [ 1477.757680][T19026] anon_thp 4194304 [ 1477.757680][T19026] inactive_anon 0 [ 1477.757680][T19026] active_anon 4337664 [ 1477.757680][T19026] inactive_file 53248 [ 1477.757680][T19026] active_file 0 [ 1477.757680][T19026] unevictable 0 [ 1477.757680][T19026] slab_reclaimable 1486848 [ 1477.757680][T19026] slab_unreclaimable 2879488 [ 1477.757680][T19026] pgfault 170610 [ 1477.757680][T19026] pgmajfault 0 [ 1477.757680][T19026] workingset_refault 0 [ 1477.757680][T19026] workingset_activate 0 [ 1477.757680][T19026] workingset_nodereclaim 0 [ 1477.757680][T19026] pgrefill 209 [ 1477.757680][T19026] pgscan 232 [ 1477.757680][T19026] pgsteal 33 [ 1477.757680][T19026] pgactivate 165 11:58:10 executing program 2: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) pipe2(&(0x7f00000004c0), 0x0) mount$bpf(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[], [{@fsuuid={'fsuuid'}}]}) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @loopback}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c}) syz_mount_image$ext4(&(0x7f0000000080)='ext4\n', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1477.959542][T19155] gfs2: not a GFS2 filesystem 11:58:10 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4H', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) 11:58:10 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0xfe7733b2342b2de6, 0x2e) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x80087ff, &(0x7f0000e68000)={0x2, 0x4e23, @remote}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) r2 = dup2(r1, r0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e27, @loopback}, 0xfffffffffffffe24) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:58:10 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) r1 = gettid() timer_create(0x8, &(0x7f00000000c0)={0x0, 0x32, 0x4, @tid=r1}, &(0x7f00000002c0)) getresgid(&(0x7f00000005c0), &(0x7f0000000500)=0x0, &(0x7f00000004c0)) setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100)={r1, 0x0, r2}, 0xc) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r3 = dup2(r0, r0) write$UHID_GET_REPORT_REPLY(r3, &(0x7f0000000080), 0xa) ioctl$SNDRV_PCM_IOCTL_UNLINK(r3, 0x4161, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r4 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f00000003c0)={'broute\x00', 0x0, 0x3, 0x87, [], 0x5, &(0x7f00000001c0)=[{}, {}, {}, {}, {}], &(0x7f0000000300)=""/135}, &(0x7f0000000140)=0x78) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r4, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r4, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1478.119766][T19026] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=19025,uid=0 11:58:10 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x6c00000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) [ 1478.228886][T19026] Memory cgroup out of memory: Killed process 19025 (syz-executor.0) total-vm:72844kB, anon-rss:4248kB, file-rss:35796kB, shmem-rss:0kB, UID:0 pgtables:139264kB oom_score_adj:1000 [ 1478.315747][ T1100] oom_reaper: reaped process 19025 (syz-executor.0), now anon-rss:0kB, file-rss:34836kB, shmem-rss:0kB [ 1478.328782][ C0] net_ratelimit: 23 callbacks suppressed [ 1478.328792][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1478.340313][ C0] protocol 88fb is buggy, dev hsr_slave_1 11:58:10 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='lapb0\x00', 0xff73) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r1, r1) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000040)) sendto$inet(r1, &(0x7f00000000c0)="f4315042b28597cb649a4ec9bf540509a34346b99e607f7edc98240f449f11866c86b7d2f212b58da4a6149124f805bb4d76441a2ae39bdf6c3ac92f881496a208786e54d12b7500000000000000fa2ae59b57317648a7eae4d9a18e24d5901062166bd50e1ec61f0340b952be9fc476d610fc5734d900"/131, 0x8b7804a541a4882c, 0x40400c0, 0x0, 0x1fb) [ 1478.409526][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 1478.415361][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 1478.425791][T19281] gfs2: not a GFS2 filesystem 11:58:10 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x4400, 0x0) r1 = syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000880)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="f510000000000000000000000000e5c07cdcc8ec0c9200c105a50600438b088020178fb2af5bfd824d59f2a7cb9ebf66339c0dddc1f025"], 0x14}}, 0x0) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r2, r2) sendto$inet(r2, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@initdev}}, &(0x7f00000000c0)=0xe8) ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000100)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x43, 0x4}, 0x4}}, @llc={0x1a, 0xd5e8e600e8a041b7, 0x0, 0x33, 0x5, 0x3, @broadcast}, @xdp={0x2c, 0x0, 0x0, 0x1}, 0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x7fffffff, 0x3, 0x7}) r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r5}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r5, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r6, 0x1d, r5, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) r7 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r7, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r7, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r8 = dup2(r7, r7) write$UHID_GET_REPORT_REPLY(r8, &(0x7f0000000080), 0xa) getpeername$packet(r8, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000200)=0x14) r10 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r10, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r10, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r10, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r11 = dup2(r10, r10) write$UHID_GET_REPORT_REPLY(r11, &(0x7f0000000080), 0xa) r12 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r12}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r12, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r13, 0x1d, r12, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) ioctl$ifreq_SIOCGIFINDEX_team(r11, 0x8933, &(0x7f0000000240)={'team0\x00', r13}) r15 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r15}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r15, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r16, 0x1d, r15, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) r17 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r17}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r17, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r18, 0x1d, r17, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) r19 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r19, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r19, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r19, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r19, r19) sendto$inet(r19, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) getsockopt$inet_pktinfo(r19, 0x0, 0x8, &(0x7f00000003c0)={0x0, @multicast2, @empty}, &(0x7f0000000400)=0xc) r21 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r21}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r21, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r22, 0x1d, r21, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'team0\x00', r22}) r24 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r24}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r24, 0x0, 0x10, &(0x7f0000000780)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r25, 0x1d, r24, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) r26 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000300)='cgroup.controllers\x00', 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000000)='wls\x00\x00\x00\x00\x00\x00', r26}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r26, 0x0, 0x10, &(0x7f0000000480)={{{@in=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@loopback}}, &(0x7f00000005c0)=0x264ac798f5e45c69) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xd2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, [], r27, 0x1d, r26, 0x8, 0x0, 0x0, 0x10, 0x0}, 0xfffffd08) r28 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r28, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r28, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r28, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) r29 = dup2(r28, r28) write$UHID_GET_REPORT_REPLY(r29, &(0x7f0000000080), 0xa) getsockname$packet(r29, &(0x7f0000000700)={0x11, 0x0, 0x0}, &(0x7f0000000740)=0x14) sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000000ec0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000e80)={&(0x7f0000000780)={0x6c8, r1, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x4}}, {{0x8, 0x1, r4}, {0x1d8, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r6}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x1000}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x24e9}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0xec6a}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r9}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x6}}, {0x8}}}]}}, {{0x8, 0x1, r14}, {0x278, 0x2, [{0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r16}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x20}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'roundrobin\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x40}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8}}}, {0x54, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x24, 0x4, [{0x3, 0xfe, 0x7f, 0xff}, {0x8c5, 0x1, 0x8, 0x8660}, {0x6, 0x0, 0x3, 0x7fffffff}, {0xf4, 0x9, 0x80, 0x209}]}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8}}}, {0x44, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x14, 0x4, 'activebackup\x00'}}}]}}, {{0x8, 0x1, r18}, {0xf8, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r20}}}, {0x3c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0xc, 0x4, [{0x3f, 0x20, 0x8, 0x3}]}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r23}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0x1f}}, {0x8, 0x6, r25}}}]}}, {{0x8, 0x1, r27}, {0x140, 0x2, [{0x4c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x1c, 0x4, [{0x0, 0xc9, 0x2, 0x200}, {0x8, 0x8, 0x7, 0x7fff}, {0x7, 0x4, 0x1, 0x69aeed21}]}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x10001}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x3c61}}, {0x8, 0x6, r30}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x3}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0xe0}}, {0x8}}}]}}]}, 0x6c8}, 0x1, 0x0, 0x0, 0x7099b118f7a72e5f}, 0x85a4721eca4e1b7e) r31 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r31, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r31, 0x0, 0x0, 0xc00c841, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r31, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r31, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:58:10 executing program 0: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) dup2(r0, r0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) getsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x8) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) sendto$inet(r1, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) 11:58:11 executing program 1: sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612) r1 = openat$watch_queue(0xffffffffffffff9c, &(0x7f0000000000)='/dev/watch_queue\x00', 0x40480, 0x0) watch_devices(r1, 0x37, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='veth1\x00\x00\x00\x00\xff\xff\xff\xff\xff\xef\x00', 0x10) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x142800) [ 1478.755979][T19389] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 1478.798776][T19389] CPU: 0 PID: 19389 Comm: syz-executor.0 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1478.808367][T19389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1478.818426][T19389] Call Trace: [ 1478.821730][T19389] dump_stack+0x197/0x210 [ 1478.826081][T19389] dump_header+0x177/0x1152 [ 1478.830597][T19389] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1478.836420][T19389] ? ___ratelimit+0x2c8/0x595 [ 1478.840756][T19400] TCP: out of memory -- consider tuning tcp_mem [ 1478.841113][T19389] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1478.853137][T19389] ? lockdep_hardirqs_on+0x421/0x5e0 [ 1478.858439][T19389] ? trace_hardirqs_on+0x67/0x240 [ 1478.863485][T19389] ? pagefault_out_of_memory+0x11c/0x11c [ 1478.869135][T19389] ? _raw_spin_unlock_irqrestore+0x9f/0xe0 [ 1478.874958][T19389] ? ___ratelimit+0x60/0x595 [ 1478.876713][T19400] ------------[ cut here ]------------ [ 1478.879568][T19389] ? do_raw_spin_unlock+0x178/0x270 [ 1478.879590][T19389] oom_kill_process.cold+0x10/0x15 [ 1478.879606][T19389] out_of_memory+0x334/0x13c0 [ 1478.879621][T19389] ? find_held_lock+0x35/0x130 [ 1478.879640][T19389] ? mem_cgroup_unmark_under_oom+0x8d/0xb0 [ 1478.879660][T19389] ? oom_killer_disable+0x280/0x280 [ 1478.885254][T19400] refcount_t: underflow; use-after-free. [ 1478.890415][T19389] mem_cgroup_out_of_memory+0x1d8/0x240 [ 1478.890431][T19389] ? memcg_oom_wake_function+0x700/0x700 [ 1478.890452][T19389] ? do_raw_spin_unlock+0x178/0x270 [ 1478.890470][T19389] ? _raw_spin_unlock+0x28/0x40 [ 1478.890488][T19389] try_charge+0xf76/0x14d0 [ 1478.890513][T19389] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 1478.897107][T19400] WARNING: CPU: 1 PID: 19400 at lib/refcount.c:28 refcount_warn_saturate+0x1dc/0x1f0 [ 1478.900525][T19389] ? percpu_ref_tryget+0x102/0x230 [ 1478.905262][T19400] Kernel panic - not syncing: panic_on_warn set ... [ 1478.911067][T19389] ? rcu_read_lock_held+0x9c/0xb0 [ 1478.979302][T19389] ? __kasan_check_read+0x11/0x20 [ 1478.984327][T19389] ? get_mem_cgroup_from_mm+0x151/0x310 [ 1478.989858][T19389] mem_cgroup_try_charge+0x136/0x590 [ 1478.995134][T19389] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 1479.000751][T19389] __handle_mm_fault+0x1f1f/0x3da0 [ 1479.005849][T19389] ? vm_iomap_memory+0x1a0/0x1a0 [ 1479.010771][T19389] ? handle_mm_fault+0x292/0xa50 [ 1479.015697][T19389] ? handle_mm_fault+0x7a0/0xa50 [ 1479.020622][T19389] ? __kasan_check_read+0x11/0x20 [ 1479.025639][T19389] handle_mm_fault+0x3b2/0xa50 [ 1479.030413][T19389] __do_page_fault+0x536/0xd80 [ 1479.035169][T19389] do_page_fault+0x38/0x590 [ 1479.039680][T19389] page_fault+0x39/0x40 [ 1479.043818][T19389] RIP: 0033:0x45d02d [ 1479.047701][T19389] Code: 5b 5d f3 c3 66 0f 1f 84 00 00 00 00 00 48 c7 c0 ea ff ff ff 48 85 ff 0f 84 e0 8c fb ff 48 85 f6 0f 84 d7 8c fb ff 48 83 ee 10 <48> 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 [ 1479.067301][T19389] RSP: 002b:00007fffbbd615f8 EFLAGS: 00010202 [ 1479.073353][T19389] RAX: ffffffffffffffea RBX: 00007f1d88fbc700 RCX: 00007f1d88fbc700 [ 1479.081307][T19389] RDX: 00000000003d0f00 RSI: 00007f1d88fbbdb0 RDI: 0000000000411260 [ 1479.089260][T19389] RBP: 00007fffbbd61810 R08: 00007f1d88fbc9d0 R09: 00007f1d88fbc700 [ 1479.097229][T19389] R10: 00007f1d88fbbdc0 R11: 0000000000000246 R12: 0000000000000000 [ 1479.105196][T19389] R13: 00007fffbbd616af R14: 00007f1d88fbc9c0 R15: 000000000075bfd4 [ 1479.113175][T19400] CPU: 1 PID: 19400 Comm: syz-executor.1 Not tainted 5.4.0-next-20191204-syzkaller #0 [ 1479.122713][T19297] kobject: 'loop3' (000000007a2115bd): kobject_uevent_env [ 1479.122758][T19297] kobject: 'loop3' (000000007a2115bd): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1479.129808][T19400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1479.129814][T19400] Call Trace: [ 1479.129834][T19400] dump_stack+0x197/0x210 [ 1479.129853][T19400] ? refcount_warn_saturate+0x150/0x1f0 [ 1479.129867][T19400] panic+0x2e3/0x75c [ 1479.129879][T19400] ? add_taint.cold+0x16/0x16 [ 1479.129900][T19400] ? __kasan_check_write+0x14/0x20 [ 1479.129914][T19400] ? __warn.cold+0x14/0x3e [ 1479.129925][T19400] ? __warn+0xd9/0x1cf [ 1479.129940][T19400] ? refcount_warn_saturate+0x1dc/0x1f0 [ 1479.129953][T19400] __warn.cold+0x2f/0x3e [ 1479.129967][T19400] ? refcount_warn_saturate+0x1dc/0x1f0 [ 1479.129993][T19400] report_bug+0x289/0x300 [ 1479.130114][T19400] do_error_trap+0x11b/0x200 [ 1479.130132][T19400] do_invalid_op+0x37/0x50 [ 1479.214145][T19400] ? refcount_warn_saturate+0x1dc/0x1f0 [ 1479.219701][T19400] invalid_op+0x23/0x30 [ 1479.223983][T19400] RIP: 0010:refcount_warn_saturate+0x1dc/0x1f0 [ 1479.230143][T19400] Code: e9 d8 fe ff ff 48 89 df e8 81 53 23 fe e9 85 fe ff ff e8 67 b0 e5 fd 48 c7 c7 60 b8 6f 88 c6 05 5d d7 ec 06 01 e8 93 5c b6 fd <0f> 0b e9 ac fe ff ff 0f 1f 00 66 2e 0f 1f 84 00 00 00 00 00 55 48 11:58:11 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$gfs2(&(0x7f0000000180)='gfs2\x00', &(0x7f00000001c0)='./file0\x00', 0x6e03000000000000, 0x0, 0x0, 0x0, &(0x7f00000007c0)={[{@nobarrier='nobarrier'}]}) 11:58:11 executing program 3: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000580)="62f23e748cdfecc0d3bcb88248f9f8f8e87edc5637656d6e511dcdc6041c8d8a0957939950c15c7ac6360c7820e1d5957ba4167f17600b58767db91e29eb92a20f86dddfb0f8dda322d3ddeadba924051c7894f228f090746b1a55e851e7dcaae4d8411f6806d216b4f2e7eca231a301cc0c9bb4bb5598a94336a99790d3b77dcda45483c1fb1194c56ddfddb587442754e6c815", 0x94, 0x9}], 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4L', &(0x7f0000000200)='./file0\x00', 0x0, 0xcec, &(0x7f0000000100)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000100000001000000004000000040000080000000001c00006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4801, 0x0) [ 1479.231067][ T4089] kobject: 'loop3' (000000007a2115bd): kobject_uevent_env [ 1479.250247][T19400] RSP: 0018:ffffc9000c907d40 EFLAGS: 00010282 [ 1479.250258][T19400] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 1479.250266][T19400] RDX: 0000000000000000 RSI: ffffffff815e5806 RDI: fffff52001920f9a [ 1479.250274][T19400] RBP: ffffc9000c907d50 R08: ffff888096272280 R09: ffffed1015d26621 [ 1479.250282][T19400] R10: ffffed1015d26620 R11: ffff8880ae933107 R12: 0000000000000003 [ 1479.250289][T19400] R13: ffff8880911e2c58 R14: ffff8880911e2c00 R15: ffffffff8a021880 [ 1479.250374][T19400] ? vprintk_func+0x86/0x189 [ 1479.250429][T19400] put_watch+0xa2/0xb0 [ 1479.295640][T19405] kobject: 'loop3' (000000007a2115bd): kobject_uevent_env [ 1479.303360][T19400] watch_queue_release+0x34b/0xc40 [ 1479.303386][T19400] __fput+0x2ff/0x890 [ 1479.303403][T19400] ? __post_watch_notification+0x840/0x840 [ 1479.303418][T19400] ____fput+0x16/0x20 [ 1479.303434][T19400] task_work_run+0x145/0x1c0 [ 1479.303454][T19400] exit_to_usermode_loop+0x316/0x380 [ 1479.303473][T19400] do_syscall_64+0x676/0x790 [ 1479.335359][T19405] kobject: 'loop3' (000000007a2115bd): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1479.338048][T19400] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1479.338067][T19400] RIP: 0033:0x414211 [ 1479.342780][ T4089] kobject: 'loop3' (000000007a2115bd): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 1479.348345][T19400] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 1479.402536][T19400] RSP: 002b:00007ffd5d6ab8c0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 1479.410950][T19400] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000414211 [ 1479.418921][T19400] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 1479.426892][T19400] RBP: 0000000000000001 R08: 00000000e5bb5c5f R09: 00000000e5bb5c63 [ 1479.434858][T19400] R10: 00007ffd5d6ab9a0 R11: 0000000000000293 R12: 000000000075bf20 [ 1479.442839][T19400] R13: 0000000000169087 R14: 00000000007608e0 R15: 000000000075bf2c [ 1479.452792][T19400] Kernel Offset: disabled [ 1479.457318][T19400] Rebooting in 86400 seconds..