_cmp4+0x16/0x20
[  559.010958]  ? futex_wait_queue_me+0x550/0x820
[  559.015530]  ? refill_pi_state_cache.part.7+0x300/0x300
[  559.020885]  ? find_held_lock+0x36/0x1c0
[  559.024950]  ? lock_downgrade+0x8e0/0x8e0
[  559.029110]  kvm_set_memory_region+0x2e/0x50
[  559.033512]  kvm_vm_ioctl+0x668/0x1d90
[  559.037396]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  559.042486]  ? futex_wake+0x2f6/0x750
[  559.046283]  ? kvm_set_memory_region+0x50/0x50
[  559.050868]  ? get_futex_key+0x1e90/0x1e90
[  559.055093]  ? __lock_acquire+0x7f5/0x5140
[  559.059317]  ? perf_trace_lock+0xd6/0x900
[  559.063450]  ? perf_trace_lock_acquire+0xe3/0x980
[  559.068283]  ? zap_class+0x720/0x720
[  559.071982]  ? perf_trace_lock+0x900/0x900
[  559.076207]  ? do_futex+0x249/0x27d0
[  559.079907]  ? graph_lock+0x170/0x170
[  559.083697]  ? perf_trace_lock_acquire+0xe3/0x980
[  559.088532]  ? exit_robust_list+0x290/0x290
[  559.092841]  ? find_held_lock+0x36/0x1c0
[  559.096896]  ? lock_downgrade+0x8e0/0x8e0
[  559.101045]  ? rcu_is_watching+0x85/0x140
[  559.105181]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  559.110365]  ? __fget+0x40c/0x650
[  559.113811]  ? expand_files.part.8+0x9a0/0x9a0
[  559.118378]  ? lock_downgrade+0x8e0/0x8e0
[  559.122515]  ? lock_release+0xa10/0xa10
[  559.126477]  ? _raw_spin_unlock+0x22/0x30
[  559.130614]  ? kvm_set_memory_region+0x50/0x50
[  559.135187]  do_vfs_ioctl+0x1cf/0x16a0
[  559.139065]  ? ioctl_preallocate+0x2e0/0x2e0
[  559.143460]  ? fget_raw+0x20/0x20
[  559.146906]  ? security_file_mprotect+0x94/0xc0
[  559.151563]  ? __x64_sys_futex+0x477/0x680
[  559.155788]  ? do_futex+0x27d0/0x27d0
[  559.159579]  ? security_file_ioctl+0x94/0xc0
[  559.163980]  ksys_ioctl+0xa9/0xd0
[  559.167427]  __x64_sys_ioctl+0x73/0xb0
[  559.171303]  do_syscall_64+0x1b1/0x800
[  559.175175]  ? finish_task_switch+0x1ca/0x810
[  559.179660]  ? syscall_return_slowpath+0x5c0/0x5c0
[  559.184577]  ? syscall_return_slowpath+0x30f/0x5c0
[  559.189495]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  559.194848]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  559.199682]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  559.204856] RIP: 0033:0x455979
[  559.208035] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  559.215733] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  559.222987] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  559.230245] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  559.237504] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  559.244757] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:10 executing program 2:
r0 = socket(0xf, 0x2, 0x1)
ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f00000002c0)=ANY=[@ANYRES32=r0, @ANYBLOB="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"])
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'bond_slave_1\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="3b0000000300000000000000000000fb0000002000000000000000000000000021a3262edb84ffd51c6e6fd052ed9f117d284e09d2c362c1fa230346950098a5ab60801c4fa1b7d5a95c8ba52d7d179a8142b055426c9acd262e65466be693405b837a1178a0c48db2dc603d9111e64b69fb187fa2abe217a5d0bc3c4133cad1d46896717fe21e54c710"]})
setsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, &(0x7f0000000100)=0xfee7, 0x4)
kexec_load(0x3, 0x5, &(0x7f0000000680)=[{&(0x7f0000000040)="5226d3e2cc10445dd5517534b33002177d936aee62982f47caa19fb01d89c0c67421e55187791fedec2e3cd016d89993e2c3e0d34a059c2ae6cd9aa3b3cd55fd7df1653c79f1dc0fd878afb79a59c5a7e931786acf0802da889f27622aff5c3d05fca8b3935aa48340ac39b9bee40828f88909f8de1f0c5692d05299cb7f", 0x7e, 0x8, 0x1ff}, {&(0x7f0000000500)="964a5d8c9ceef0969b6ccde1b5d857ffcf071d28497bea260984105b5259de705dc93139a6450af38afe354188fe9e12c78f7a28ccfdb8aa59304d9dc6c6e646424c6dbb36f1f340ba0947209b619c2ad44b9c7ecc00c348adb58b40b96b3d577d3bf9009f803c560c671e0e445cf2df7fed4beda4b4201b99d2e1042a05f5545d24dcc63b72b5", 0x87, 0xffff000000000000, 0x7}, {&(0x7f00000000c0)="10ae8742f1b4e5f0d1eef7a11ebc66a1ee7f312bd7ba46699a92c0bc82434555b74d4e2f317c8279360f68741dd5c297", 0x30, 0x7fff, 0x7}, {&(0x7f00000005c0)="7149e1846c72c716e94b0c00e017", 0xe, 0x0, 0x7fff}, {&(0x7f0000000600)="64f731083b19b5c7ac994ef13052cbe3b3c36d56685ef1888291cc85fa366e8b45526ee88d7012b0c6e4bd800ffba75628c8a91da184fea61eec1259cde5fb92231c1c744467315142fad310872048ea93c4", 0x52, 0x7, 0x3}], 0x80000)
clock_gettime(0x5, &(0x7f0000000140))
r1 = semget$private(0x0, 0x3, 0x430)
semctl$SEM_STAT(r1, 0x4, 0x12, &(0x7f0000000180)=""/72)

2018/05/02 02:14:10 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000004f040000d0"], 0x1)

2018/05/02 02:14:10 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(0xffffffffffffffff, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, r0, 0x0)

2018/05/02 02:14:10 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000c41ff7)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
setsockopt$netrom_NETROM_T4(r0, 0x103, 0x6, &(0x7f0000000100)=0x81, 0x4)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x4, <r2=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f00000000c0)={0x0, 0x1, 0x1, &(0x7f0000000400)})
truncate(&(0x7f0000000280)='./file0\x00', 0x3f)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000240)={&(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x4, 0x3, 0x6, 0x6})

2018/05/02 02:14:10 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000ffffff800000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:10 executing program 1:
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r2, r1, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x8001)
dup2(r2, r4)

2018/05/02 02:14:10 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0xffffff7f, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:10 executing program 7:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x800, 0x0)
ioctl$TUNGETIFF(r0, 0x800454d2, &(0x7f0000000040))
fcntl$setlease(r0, 0x400, 0x1)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000000c0)={{{@in=@loopback, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@rand_addr}, 0x0, @in=@multicast1}}, &(0x7f00000001c0)=0xe8)
r2 = gettid()
r3 = getpgrp(0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000001500)={0x0, <r4=>0x0})
r5 = getpgrp(0xffffffffffffffff)
r6 = gettid()
getresuid(&(0x7f0000001a00), &(0x7f0000001a40)=<r7=>0x0, &(0x7f0000001a80))
stat(&(0x7f0000001ac0)='./file0\x00', &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0})
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000001b80)=<r9=>0x0)
r10 = getuid()
lstat(&(0x7f0000001bc0)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
fcntl$getownex(r0, 0x10, &(0x7f0000001c80)={0x0, <r12=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001cc0)={0x0, <r13=>0x0}, &(0x7f0000001d00)=0xc)
stat(&(0x7f0000001d40)='./file0\x00', &(0x7f0000001d80)={0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001e00)={<r15=>0x0}, &(0x7f0000001e40)=0xc)
r16 = geteuid()
stat(&(0x7f0000001e80)='./file0\x00', &(0x7f0000001ec0)={0x0, 0x0, 0x0, 0x0, 0x0, <r17=>0x0})
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000001f40)=<r18=>0x0)
lstat(&(0x7f0000001f80)='./file0\x00', &(0x7f0000001fc0)={0x0, 0x0, 0x0, 0x0, <r19=>0x0})
getgroups(0x7, &(0x7f0000002040)=[0x0, 0x0, 0x0, 0x0, 0x0, <r20=>0xffffffffffffffff, 0x0])
fcntl$getownex(r0, 0x10, &(0x7f0000002080)={0x0, <r21=>0x0})
fstat(r0, &(0x7f00000020c0)={0x0, 0x0, 0x0, 0x0, <r22=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000002140)={0x0, 0x0, <r23=>0x0}, &(0x7f0000002180)=0xc)
sendmsg$netlink(r0, &(0x7f0000002300)={&(0x7f0000000080)=@kern={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000019c0)=[{&(0x7f0000000200)={0x12e0, 0x14, 0x108, 0x70bd2b, 0x25dfdbfc, "", [@nested={0xc, 0x8e, [@typed={0x8, 0x82, @uid=r1}]}, @generic="60c15022f22d33f316a5e9109645bc7e3fdba3223f8e45a2248a941900d7e2c3115259f39d6f66f3a3887421b0e17c6b39799a444506b70decadde7a1d6368b49c1bb98cda6ba13624415a1cfe7e8e9a2f69a66b772e9a1b35a23c7f9d88ff3dd0", @nested={0xb0, 0x61, [@generic="10af6dc307b820cc3d265505796ac150d0618393b8a24567db88f90f90835414d57f2e501978ba21b458dc38ba5c1e58b3421507d0c10e2051cfe2602bd63b78174b84bde19264dcd99592cf8f43a375e643484b2aa677b6db2c579ef27693917e88b997", @generic="203c59b176f4ce51eb7dc465a01adcab6fe78217df45380eb1521328ca65b33ff8ac5fbb0607c7a1ec5592f3963e7a6f45bbf5dd202d91439e648d9ea283", @typed={0x8, 0x38, @fd=r0}]}, @generic="7f1514929dfa2c7a0315b52bf6b12a9efa09f86ec247cb37d263442a7b9a5fc00646c0b72aee064e8c0c0107e392825517de1cc97acaf9b3c13480e408b45b2b51f008044d54523b92bf2ff86f1b724113fa4e7daf2faf4dd97caad186aea05a38f4486ed29740b6f12a46065b329b53e71b5d2ecdc5db3087733380da75852b0f5e26e2f971aa47f7d98ada6767635631e1530654fd39c30f44c69b1bd9ca4717aa9e856df6dfa3775297493431e11246e8f6630f8add1e68d3eb3398ad053339ce6bb711b632ab7f9ab922a659865d3ef7c492578cc3880c019fe7e3f3470297", @typed={0x8, 0x7c, @u32=0x7}, @generic="80ac24c9dc28d974916f311aeffc54973da4e0b8f5172b5ae3c2033d4b18cc7b014390c91ab4e56adfa5b91e8f6df45019c4e61419c025a5118ddf1da172050fdd10accd774102665e2c20ab684354d278090b50bc9070e3c3587a3d634890fe4d917e4ea671dee754929611bc806dcb34b069b47053b7246f8a5e273dc0273a9e7dfaff7bbe451f300f8dafbaf74d55e0c186ff64f107354d85f2c11a09df2c97878dc1fe2e14e6c69461891738fbce65dfc2a6ea0eb7a6867be8c2002b88", @generic="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", @typed={0x8, 0x3b, @ipv4=@dev={0xac, 0x14, 0x14, 0x17}}]}, 0x12e0}, {&(0x7f0000001540)={0x23c, 0x1b, 0xd00, 0x70bd2c, 0x25dfdbfe, "", [@nested={0x21c, 0x10, [@generic="8cda66fb5321d06c45b954162bc417a01c7e3d136a2288330ffbb688a22f60bd9bf9dc8f0f8c2b2cdf7bc84dca6d16090348d9740876dcac4185ad3786b6e82ebd66470f20a55b61451529a2", @generic="e847d7797831fcfe68a7e0e996aadaf9dbc91916830736224b059bb7c49bd4ec63375159ddc2c06157bbf52783510fb75d81ef48031e8442f689e1283c1b352fc219b13dce885b0e65745e87128fe0c5d847c0c6807a2323963e70aeb045f5883210c245a3336b269381b39f72bc29a00aca76613dc505c09e77d0b3f8069e73a02fcf493ebea008bb153b87948c891ce429973af83b24024396437f197535586a7fb17a0463848ff342d1edddb2b724f05a53986d05", @typed={0x8, 0x73, @ipv4=@rand_addr=0x1f}, @typed={0x8, 0x13, @pid=r2}, @typed={0x4, 0x63}, @generic="4039dc1ca94eb2ee56587a2d961707a106238417832bcd6f77716482f34140ed36689a075410211fddbbb2b7d59927f71d496672a27569044df692fc65d0dc60fde1d158b70e299f4eb617a9647b93253672429de3acaef441634dc39aab758f1824aeb016db3576cc2e681127bf31a279d4c48df8fd64a7c321716443535acf3e2484c2a163464d9f52b79cdad8305cfc77e44337647b979b4dedee083c5eff3202175dedf243f3461d58d4bdc7413bfcf8ba8c411b35462d873d641193d1e50142831881f5a33d54d5952d28f40f310e93382d72c865fabe469a06c29926e707e15ddf35f96b87389a600d72856a600e82", @typed={0x8, 0x32, @fd=r0}, @typed={0x8, 0x69, @pid=r3}]}, @typed={0x8, 0x61, @pid=r4}, @generic="841caa0f7554"]}, 0x23c}, {&(0x7f0000001780)={0x22c, 0x18, 0x96f72da2fa6b3712, 0x70bd2c, 0x25dfdbfe, "", [@typed={0x4, 0x7e}, @typed={0x8, 0x65, @pid=r5}, @generic="64dc6f21b40ba9cc1beb7a6ac3d9b92b012db475408aa0f02da1e27ca4778ea83ea09eeb8b7ac65a90f18929207966ff1a3a", @nested={0x4c, 0xc, [@typed={0xc, 0x48, @u64=0x54}, @typed={0x8, 0x58, @ipv4=@dev={0xac, 0x14, 0x14, 0x14}}, @typed={0x8, 0x79, @fd=r0}, @generic="920df4089881f3c7313b98c587e55772cc287b57a115eccce5858e9ac9101068005f2ca8a5592d932dff"]}, @generic="c93057b1440a69c997758983f3ddd5999d3d0f2bc75236353060781023148879ff8b435e1edc9d8b0ecd6c055dcfb7dc8274cf9247f65486d611f68e5c0fcbb85ff9a1d78576a0a4f6f093990cea9781998697b6270554261e3283efb1666b9eb1497f41e71fa269466b9bd3f32fef308650788a7a8a2d85fb36f3178aa9d640f215f54b9702848682bed4fbd908bce06c4bdab2970d7707551e1ae092f535339b515b56275772c3e2e12ea3054ed151acee8589ddd16200f1158619aef8ef9cbc6988ac9b7407f1d9a1d4bba0dba68c1a5fc9432fc9720d", @generic="79fb6d377d6a125184624b198c5b22570d7fdbeb7d23", @generic="2825f23ce44c51487d20dc88b7194dc600922ec002461fd621462753ad87f798ed40022356d890beca216413fdafd1e111c994ba4db2561b4d78e91da62880538f2d70d5b88195d2001b1651e3450ef67a4fd7b2660c0a611694a92bc5d17f0c3794f9d9a6e557e652c15e3d57cc12c5ea199f721f15e1621fc0e645680a04d74e7fec9ee86e15b466df571168aa92d8d2fd91b1a2a546686b586dd57fdb038aad54"]}, 0x22c}], 0x3, &(0x7f00000021c0)=[@rights={0x20, 0x1, 0x1, [r0, r0, r0, r0]}, @rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0, r0]}, @cred={0x20, 0x1, 0x2, r6, r7, r8}, @cred={0x20, 0x1, 0x2, r9, r10, r11}, @cred={0x20, 0x1, 0x2, r12, r13, r14}, @cred={0x20, 0x1, 0x2, r15, r16, r17}, @cred={0x20, 0x1, 0x2, r18, r19, r20}, @cred={0x20, 0x1, 0x2, r21, r22, r23}], 0x110, 0x4}, 0x4000010)
r24 = syz_open_procfs(r18, &(0x7f0000002340)='mounts\x00')
socket$bt_rfcomm(0x1f, 0x3, 0x3)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r24, &(0x7f0000002380)={0x10})

[  559.934590] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  559.946392] syz-executor4 cpuset=syz4 mems_allowed=0
[  559.951593] CPU: 0 PID: 28990 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  559.958867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  559.968243] Call Trace:
[  559.970846]  dump_stack+0x1b9/0x294
[  559.974496]  ? dump_stack_print_info.cold.2+0x52/0x52
[  559.979699]  ? graph_lock+0x170/0x170
[  559.983524]  warn_alloc.cold.118+0xb2/0x1b8
[  559.987867]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  559.992731]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  559.998812]  ? update_load_avg+0x2d9/0x2570
[  560.003149]  ? graph_lock+0x170/0x170
[  560.006966]  __vmalloc_node_range+0x45e/0x750
[  560.011473]  ? graph_lock+0x170/0x170
[  560.015283]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  560.020144]  __vmalloc_node_flags_caller+0x75/0x90
[  560.025094]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  560.029957]  kvmalloc_node+0xde/0x100
[  560.033771]  kvm_arch_create_memslot+0xa3/0x4e0
[  560.038465]  __kvm_set_memory_region+0x1d1b/0x2e50
[  560.043418]  ? kvm_vcpu_block+0x1050/0x1050
[  560.047750]  ? print_usage_bug+0xc0/0xc0
[  560.051823]  ? lock_downgrade+0x8e0/0x8e0
[  560.055978]  ? lock_downgrade+0x8e0/0x8e0
[  560.060142]  ? graph_lock+0x170/0x170
[  560.063956]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  560.068563]  ? __lock_acquire+0x7f5/0x5140
[  560.072812]  ? trace_hardirqs_on+0xd/0x10
[  560.076985]  ? find_held_lock+0x36/0x1c0
[  560.081077]  ? lock_downgrade+0x8e0/0x8e0
[  560.085267]  kvm_set_memory_region+0x2e/0x50
[  560.089695]  kvm_vm_ioctl+0x668/0x1d90
[  560.093596]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  560.099147]  ? __perf_event_task_sched_in+0x247/0xb80
[  560.104355]  ? kvm_set_memory_region+0x50/0x50
[  560.108951]  ? find_held_lock+0x36/0x1c0
[  560.113035]  ? lock_downgrade+0x8e0/0x8e0
[  560.117200]  ? finish_task_switch+0x182/0x810
[  560.121747]  ? kasan_check_read+0x11/0x20
[  560.125900]  ? graph_lock+0x170/0x170
[  560.129712]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  560.134308]  ? compat_start_thread+0x80/0x80
[  560.138728]  ? _raw_spin_unlock_irq+0x27/0x70
[  560.143230]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  560.148251]  ? trace_hardirqs_on+0xd/0x10
[  560.152406]  ? _raw_spin_unlock_irq+0x27/0x70
[  560.156904]  ? find_held_lock+0x36/0x1c0
[  560.160972]  ? lock_downgrade+0x8e0/0x8e0
[  560.165131]  ? kasan_check_read+0x11/0x20
[  560.169283]  ? rcu_is_watching+0x85/0x140
[  560.173436]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  560.178639]  ? __fget+0x40c/0x650
[  560.182111]  ? expand_files.part.8+0x9a0/0x9a0
[  560.186696]  ? lock_downgrade+0x8e0/0x8e0
[  560.190853]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  560.196393]  ? vma_set_page_prot+0x239/0x300
[  560.200810]  ? kvm_set_memory_region+0x50/0x50
[  560.205402]  do_vfs_ioctl+0x1cf/0x16a0
[  560.209305]  ? ioctl_preallocate+0x2e0/0x2e0
[  560.213715]  ? fget_raw+0x20/0x20
[  560.217171]  ? exit_to_usermode_loop+0x87/0x310
[  560.221839]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  560.227379]  ? security_file_ioctl+0x94/0xc0
[  560.231782]  ksys_ioctl+0xa9/0xd0
[  560.235240]  __x64_sys_ioctl+0x73/0xb0
[  560.239121]  do_syscall_64+0x1b1/0x800
[  560.242995]  ? finish_task_switch+0x1ca/0x810
[  560.247484]  ? syscall_return_slowpath+0x5c0/0x5c0
[  560.252402]  ? syscall_return_slowpath+0x30f/0x5c0
[  560.257323]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  560.262677]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  560.267512]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  560.272691] RIP: 0033:0x455979
[  560.275867] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/05/02 02:14:11 executing program 2:
r0 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x1, 0x40)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x204200, 0x0)
linkat(r0, &(0x7f0000000040)='./file0\x00', r1, &(0x7f00000000c0)='./file0\x00', 0x1400)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f00003b9fdc)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f0000000340))
getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f0000000480)={'broute\x00', 0x0, 0x3, 0x1, [], 0x9, &(0x7f0000000380)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000440)=""/1}, &(0x7f0000000500)=0x78)
r3 = syz_open_pts(r2, 0x1)
ioctl$TCXONC(r3, 0x5425, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000240)=0xffffffffffffff83)
r4 = add_key$user(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000180)="c25b903893e770625eee8c28b03a8c746e5e5066e109365f277b63406f11223910cde86b8f4331a5084c2b05b43cb66d01d8d4c47d42af73793647721478c132b537bf87a2b3e4178edf9c0e87379a95c941e92d82ec68e19e06c1f9fb6cc2a14bf801ffddb579817a53cb81b627e116df70539e7002613a7251e460440b308d613f7b11d1039cd07fddaa3af00b12bede800ebeea36b06067552ae698440a6c766ecdeff97a", 0xa6, 0xfffffffffffffff9)
ioctl$PIO_UNIMAP(r2, 0x4b67, &(0x7f0000000580)={0x2, &(0x7f0000000540)=[{0x0, 0x7f}, {0xffffffffffffff1e, 0x2}]})
r5 = add_key$keyring(&(0x7f0000000280)='keyring\x00', &(0x7f00000002c0)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$instantiate(0xc, r4, &(0x7f0000000300)="aeec025abfae61ab7c18b3c23d4753341b4f525251d82a44db3618007787f35645a3f59dcf811f980fe0578db0d78ee9cf7b8cba85", 0x35, r5)

2018/05/02 02:14:11 executing program 2:
r0 = memfd_create(&(0x7f0000002901)='dev ', 0x0)
write(r0, &(0x7f0000000240)="164690f1125c77a60000000000310109c3a850c34a4b43dc09f054a5c55a27fb5a46fbcb764f1a281c3af820b0fabb8d46d97f3e34583903815cf376f16fe8c47d8044423ba2b071eca4574c638ddf577cf46cdb4d45a6", 0x57)
sendfile(r0, r0, &(0x7f0000001000), 0xffef)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4, 0x11, r0, 0x0)
socketpair$packet(0x11, 0x3, 0x300, &(0x7f0000000000))
ppoll(&(0x7f00000000c0), 0x0, &(0x7f0000000100)={0x0, 0x989680}, &(0x7f0000000140), 0x8)

2018/05/02 02:14:11 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000a8040000d0"], 0x1)

2018/05/02 02:14:11 executing program 5:
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0xf42f, 0x0, @remote={0xac, 0x1c, 0x14, 0xbb}, @local={0xac, 0x14, 0x14, 0xaa}}, @igmp={0x0, 0x0, 0x0, @broadcast=0xffffffff}}}}}, &(0x7f0000000000)={0x0, 0x0, [0x0, 0x4]})

2018/05/02 02:14:11 executing program 5:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000280)={0x4, <r0=>0xffffffffffffff9c})
getpeername$llc(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000000300)=0x10)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
memfd_create(&(0x7f00000000c0)='keyring\x00', 0x2)
syslog(0x7fd, &(0x7f0000000180)=""/128, 0xfffffffffffffff9)

2018/05/02 02:14:11 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000057040000d0"], 0x1)

[  560.283565] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  560.290826] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  560.298084] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  560.305336] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  560.312591] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  560.320073] warn_alloc_show_mem: 1 callbacks suppressed
[  560.320076] Mem-Info:
[  560.327939] active_anon:78714 inactive_anon:80 isolated_anon:0
[  560.327939]  active_file:3735 inactive_file:12049 isolated_file:0
[  560.327939]  unevictable:0 dirty:159 writeback:0 unstable:0
[  560.327939]  slab_reclaimable:10708 slab_unreclaimable:105455
[  560.327939]  mapped:73911 shmem:88 pagetables:1159 bounce:0
[  560.327939]  free:1321082 free_pcp:239 free_cma:0
[  560.361623] Node 0 active_anon:314708kB inactive_anon:320kB active_file:14940kB inactive_file:48196kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295544kB dirty:636kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 135168kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  560.389781] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  560.415986] lowmem_reserve[]: 0 2830 6335 6335
[  560.420681] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:640kB free_cma:0kB
[  560.448440] lowmem_reserve[]: 0 0 3505 3505
[  560.452815] Node 0 Normal free:2374084kB min:37300kB low:46624kB high:55948kB active_anon:310424kB inactive_anon:320kB active_file:14940kB inactive_file:48196kB unevictable:0kB writepending:636kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5728kB pagetables:4192kB bounce:0kB free_pcp:740kB local_pcp:100kB free_cma:0kB
[  560.482639] lowmem_reserve[]: 0 0 0 0
[  560.486506] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  560.500215] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  560.516080] Node 0 Normal: 2671*4kB (UME) 2980*8kB (UME) 2949*16kB (UME) 3026*32kB (UME) 1472*64kB (UME) 322*128kB (UM) 195*256kB (UM) 102*512kB (UME) 70*1024kB (UME) 46*2048kB (UM) 438*4096kB (UM) = 2376044kB
[  560.534990] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  560.543607] 15871 total pagecache pages
[  560.547618] 0 pages in swap cache
[  560.551088] Swap cache stats: add 0, delete 0, find 0/0
[  560.556465] Free swap  = 0kB
[  560.559496] Total swap = 0kB
[  560.562539] 1965969 pages RAM
[  560.565664] 0 pages HighMem/MovableOnly
[  560.569653] 339347 pages reserved
[  560.596544] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  560.608427] syz-executor4 cpuset=syz4 mems_allowed=0
[  560.613614] CPU: 1 PID: 29032 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  560.620882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  560.630217] Call Trace:
[  560.632795]  dump_stack+0x1b9/0x294
[  560.636423]  ? dump_stack_print_info.cold.2+0x52/0x52
[  560.641610]  ? kasan_check_read+0x11/0x20
[  560.645757]  warn_alloc.cold.118+0xb2/0x1b8
[  560.650063]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  560.654906]  ? trace_hardirqs_on+0xd/0x10
[  560.659061]  ? _raw_spin_unlock_irq+0x27/0x70
[  560.663553]  ? finish_task_switch+0x1ca/0x810
[  560.668051]  ? lock_repin_lock+0x410/0x410
[  560.672296]  __vmalloc_node_range+0x45e/0x750
[  560.676796]  ? graph_lock+0x170/0x170
[  560.680587]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  560.685415]  __vmalloc_node_flags_caller+0x75/0x90
[  560.690338]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  560.695175]  kvmalloc_node+0xde/0x100
[  560.698964]  kvm_arch_create_memslot+0xa3/0x4e0
[  560.703626]  __kvm_set_memory_region+0x1d1b/0x2e50
[  560.708560]  ? kvm_vcpu_block+0x1050/0x1050
[  560.712875]  ? print_usage_bug+0xc0/0xc0
[  560.716925]  ? check_same_owner+0x320/0x320
[  560.721243]  ? do_raw_spin_unlock+0x9e/0x2e0
[  560.725665]  ? rcu_note_context_switch+0x710/0x710
[  560.730601]  ? lock_acquire+0x1dc/0x520
[  560.734580]  ? graph_lock+0x170/0x170
[  560.738386]  ? __might_sleep+0x95/0x190
[  560.742372]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  560.747918]  ? futex_wait_queue_me+0x550/0x820
[  560.752511]  ? __lock_acquire+0x7f5/0x5140
[  560.756755]  ? refill_pi_state_cache.part.7+0x300/0x300
[  560.762108]  ? find_held_lock+0x36/0x1c0
[  560.766158]  ? lock_downgrade+0x8e0/0x8e0
[  560.770302]  kvm_set_memory_region+0x2e/0x50
[  560.774698]  kvm_vm_ioctl+0x668/0x1d90
[  560.778568]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  560.784088]  ? __perf_event_task_sched_in+0x247/0xb80
[  560.789261]  ? kvm_set_memory_region+0x50/0x50
[  560.793828]  ? find_held_lock+0x36/0x1c0
[  560.797887]  ? lock_downgrade+0x8e0/0x8e0
[  560.802040]  ? finish_task_switch+0x182/0x810
[  560.806537]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  560.811736]  ? do_futex+0x249/0x27d0
[  560.815454]  ? kasan_check_read+0x11/0x20
[  560.819610]  ? graph_lock+0x170/0x170
[  560.823416]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  560.827999]  ? compat_start_thread+0x80/0x80
[  560.833631]  ? _raw_spin_unlock_irq+0x27/0x70
[  560.838132]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  560.843154]  ? exit_robust_list+0x290/0x290
[  560.847477]  ? find_held_lock+0x36/0x1c0
[  560.851534]  ? lock_downgrade+0x8e0/0x8e0
[  560.855667]  ? kasan_check_read+0x11/0x20
[  560.859799]  ? rcu_is_watching+0x85/0x140
[  560.863936]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  560.869552]  ? __fget+0x40c/0x650
[  560.872995]  ? do_raw_spin_unlock+0x1/0x2e0
[  560.877314]  ? expand_files.part.8+0x9a0/0x9a0
[  560.881881]  ? kasan_check_write+0x14/0x20
[  560.886097]  ? do_raw_spin_lock+0xc1/0x200
[  560.890320]  ? kvm_set_memory_region+0x50/0x50
[  560.894883]  do_vfs_ioctl+0x1cf/0x16a0
[  560.898756]  ? ioctl_preallocate+0x2e0/0x2e0
[  560.903147]  ? fget_raw+0x20/0x20
[  560.906587]  ? __x64_sys_futex+0x477/0x680
[  560.910817]  ? exit_to_usermode_loop+0x87/0x310
[  560.915490]  ? do_futex+0x27d0/0x27d0
[  560.919275]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  560.924796]  ? security_file_ioctl+0x94/0xc0
[  560.929198]  ksys_ioctl+0xa9/0xd0
[  560.932642]  __x64_sys_ioctl+0x73/0xb0
[  560.936533]  do_syscall_64+0x1b1/0x800
[  560.940410]  ? finish_task_switch+0x1ca/0x810
[  560.944896]  ? syscall_return_slowpath+0x5c0/0x5c0
[  560.949812]  ? syscall_return_slowpath+0x30f/0x5c0
[  560.954727]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  560.960077]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  560.964906]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  560.970080] RIP: 0033:0x455979
[  560.973250] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  560.980940] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  560.988193] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
2018/05/02 02:14:12 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000939f01)='net/anycast6\x00')
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_setup(0x0, &(0x7f0000000940))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000a40)='/dev/sequencer2\x00', 0x401, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000b00)='/dev/hwrng\x00', 0x40080, 0x0)
dup3(r2, r2, 0x80000)
syz_open_dev$midi(&(0x7f0000000cc0)='/dev/midi#\x00', 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000001d40)='net/llc\x00')
creat(&(0x7f0000001e80)='./file0\x00', 0x0)
syz_open_dev$sndmidi(&(0x7f0000002080)='/dev/snd/midiC#D#\x00', 0x0, 0x0)
io_submit(0x0, 0x0, &(0x7f0000002100))
mremap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
r3 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000240)='/selinux/enforce\x00', 0x8c002, 0x0)
io_setup(0xc12, &(0x7f0000000100)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000080)=[&(0x7f0000000040)={0x0, 0x8f000000, 0x4, 0x1, 0x0, r3, &(0x7f0000000000), 0xfe00, 0xe00}])
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000019c0)={@dev={0xfe, 0x80}}, 0x14)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000001c0)={@remote={0xfe, 0x80, [], 0xbb}}, 0x14)
preadv(r0, &(0x7f0000000100), 0x0, 0x8)

2018/05/02 02:14:12 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000b7040000d0"], 0x1)

2018/05/02 02:14:12 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000000)={&(0x7f00000001c0)={0x1c, 0x22, 0x109, 0x0, 0x0, {0x5}, [@typed={0x8, 0xa, @u32}]}, 0x1c}, 0x1}, 0x0)

2018/05/02 02:14:12 executing program 5:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='cpuset.mem_exclusive\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000040)={[0x33]}, 0x1)
socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000080))

2018/05/02 02:14:12 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000000020000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:12 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000), 0x0)
dup3(r1, r0, 0x0)

2018/05/02 02:14:12 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x1400000, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:12 executing program 1:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$sndseq(r2, &(0x7f0000000080)=[{0x2e, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r4 = semget$private(0x0, 0x3, 0x200)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x800, 0x0)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000240)={<r5=>0x0, 0x9}, &(0x7f0000000280)=0x8)
getsockopt$inet_sctp_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f00000002c0)={r5, 0x101}, &(0x7f0000000300)=0x8)
semctl$IPC_INFO(r4, 0x4, 0x3, &(0x7f00000000c0)=""/212)
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r1, r0, 0x1, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000040)=<r6=>0x0)
fcntl$setownex(r1, 0xf, &(0x7f00000001c0)={0x1, r6})
dup2(r1, r3)

[  560.995459] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  561.002718] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  561.009971] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:12 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000001a040000d0"], 0x1)

2018/05/02 02:14:12 executing program 5:
r0 = syz_open_dev$midi(&(0x7f0000000180)='/dev/midi#\x00', 0xfffffffeffffffff, 0x240040)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r0, 0x800448d2, &(0x7f00000004c0)={0x5, &(0x7f00000001c0)=[{}, {}, {}, {}, {}]})
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(serpent)\x00'}, 0x58)
dup2(r1, r1)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00001ec000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10)
ustat(0x3, &(0x7f0000000140))
r2 = accept$alg(r1, 0x0, 0x0)
sendmsg$alg(r2, &(0x7f0000f75fc8)={0x0, 0x0, &(0x7f0000ef5000), 0x0, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
io_setup(0x1, &(0x7f0000479000)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000738000)=[&(0x7f0000f73fc0)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f000079a000)="16", 0x1}])
r4 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x6, 0x400000)
ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0300000000000000060000000000000606000000200000000001000000"])

[  561.090624] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  561.102537] syz-executor4 cpuset=syz4 mems_allowed=0
[  561.107854] CPU: 0 PID: 29053 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  561.115141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  561.124508] Call Trace:
[  561.127115]  dump_stack+0x1b9/0x294
[  561.130769]  ? dump_stack_print_info.cold.2+0x52/0x52
[  561.135989]  ? perf_trace_lock_acquire+0xe3/0x980
2018/05/02 02:14:12 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000004a040000d0"], 0x1)

[  561.140853]  warn_alloc.cold.118+0xb2/0x1b8
[  561.145200]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  561.150059]  ? trace_hardirqs_on+0xd/0x10
[  561.154221]  ? _raw_spin_unlock_irq+0x27/0x70
[  561.158731]  ? finish_task_switch+0x1ca/0x810
[  561.163265]  __vmalloc_node_range+0x45e/0x750
[  561.167774]  ? graph_lock+0x170/0x170
[  561.171593]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  561.177495]  __vmalloc_node_flags_caller+0x75/0x90
[  561.182439]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  561.187306]  kvmalloc_node+0xde/0x100
2018/05/02 02:14:12 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000cd040000d0"], 0x1)

[  561.191126]  kvm_arch_create_memslot+0xa3/0x4e0
[  561.195823]  __kvm_set_memory_region+0x1d1b/0x2e50
[  561.200788]  ? kvm_vcpu_block+0x1050/0x1050
[  561.205128]  ? perf_trace_lock+0x900/0x900
[  561.209372]  ? lock_acquire+0x1dc/0x520
[  561.213364]  ? graph_lock+0x170/0x170
[  561.217221]  ? __might_sleep+0x95/0x190
[  561.221212]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  561.226764]  ? futex_wait_queue_me+0x550/0x820
[  561.231363]  ? refill_pi_state_cache.part.7+0x300/0x300
[  561.236741]  ? find_held_lock+0x36/0x1c0
[  561.240818]  ? lock_downgrade+0x8e0/0x8e0
[  561.245011]  kvm_set_memory_region+0x2e/0x50
[  561.249445]  kvm_vm_ioctl+0x668/0x1d90
[  561.253347]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  561.258468]  ? futex_wake+0x2f6/0x750
[  561.262287]  ? kvm_set_memory_region+0x50/0x50
[  561.267676]  ? get_futex_key+0x1e90/0x1e90
[  561.271934]  ? perf_trace_lock_acquire+0xe3/0x980
[  561.276793]  ? perf_trace_lock+0x900/0x900
[  561.281037]  ? do_futex+0x249/0x27d0
[  561.284758]  ? kasan_check_write+0x14/0x20
[  561.289003]  ? graph_lock+0x170/0x170
[  561.292827]  ? exit_robust_list+0x290/0x290
[  561.297169]  ? find_held_lock+0x36/0x1c0
[  561.301254]  ? lock_downgrade+0x8e0/0x8e0
[  561.305420]  ? kasan_check_read+0x11/0x20
[  561.309582]  ? rcu_is_watching+0x85/0x140
[  561.313739]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  561.318940]  ? __fget+0x40c/0x650
[  561.322408]  ? expand_files.part.8+0x9a0/0x9a0
[  561.327071]  ? lock_downgrade+0x8e0/0x8e0
[  561.331214]  ? __split_vma+0x5ac/0x7f0
[  561.335089]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  561.340613]  ? vma_set_page_prot+0x239/0x300
[  561.345016]  ? kvm_set_memory_region+0x50/0x50
[  561.349594]  do_vfs_ioctl+0x1cf/0x16a0
[  561.353469]  ? ioctl_preallocate+0x2e0/0x2e0
[  561.357862]  ? fget_raw+0x20/0x20
[  561.361305]  ? __x64_sys_futex+0x477/0x680
[  561.365531]  ? do_futex+0x27d0/0x27d0
[  561.369326]  ? security_file_ioctl+0x94/0xc0
[  561.373721]  ksys_ioctl+0xa9/0xd0
[  561.377162]  __x64_sys_ioctl+0x73/0xb0
[  561.381049]  do_syscall_64+0x1b1/0x800
[  561.384927]  ? finish_task_switch+0x1ca/0x810
[  561.389408]  ? syscall_return_slowpath+0x5c0/0x5c0
[  561.394342]  ? syscall_return_slowpath+0x30f/0x5c0
[  561.399267]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  561.404630]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  561.409471]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  561.414645] RIP: 0033:0x455979
[  561.417827] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  561.425526] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  561.432795] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  561.440056] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  561.447318] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  561.454568] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  561.462088] warn_alloc_show_mem: 1 callbacks suppressed
[  561.462091] Mem-Info:
[  561.469940] active_anon:79144 inactive_anon:80 isolated_anon:0
[  561.469940]  active_file:3737 inactive_file:12107 isolated_file:0
[  561.469940]  unevictable:0 dirty:169 writeback:0 unstable:0
[  561.469940]  slab_reclaimable:10698 slab_unreclaimable:105312
[  561.469940]  mapped:73895 shmem:88 pagetables:1098 bounce:0
[  561.469940]  free:1321492 free_pcp:375 free_cma:0
[  561.503590] Node 0 active_anon:316576kB inactive_anon:320kB active_file:14948kB inactive_file:48428kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295580kB dirty:676kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 135168kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  561.531769] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  561.557938] lowmem_reserve[]: 0 2830 6335 6335
[  561.562587] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:640kB free_cma:0kB
[  561.590318] lowmem_reserve[]: 0 0 3505 3505
[  561.594699] Node 0 Normal free:2369644kB min:37300kB low:46624kB high:55948kB active_anon:316576kB inactive_anon:320kB active_file:14948kB inactive_file:48428kB unevictable:0kB writepending:676kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5600kB pagetables:4392kB bounce:0kB free_pcp:764kB local_pcp:148kB free_cma:0kB
[  561.624507] lowmem_reserve[]: 0 0 0 0
[  561.628369] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  561.642104] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  561.657978] Node 0 Normal: 2475*4kB (UME) 2969*8kB (UME) 2982*16kB (UME) 3025*32kB (UME) 1472*64kB (UME) 323*128kB (UM) 195*256kB (UM) 102*512kB (UME) 70*1024kB (UME) 43*2048kB (UM) 438*4096kB (UM) = 2369652kB
[  561.676971] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  561.685585] 15918 total pagecache pages
[  561.689598] 0 pages in swap cache
[  561.693088] Swap cache stats: add 0, delete 0, find 0/0
[  561.698474] Free swap  = 0kB
[  561.701512] Total swap = 0kB
[  561.704550] 1965969 pages RAM
[  561.707683] 0 pages HighMem/MovableOnly
[  561.711671] 339347 pages reserved
[  561.748584] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  561.760637] syz-executor4 cpuset=syz4 mems_allowed=0
[  561.765981] CPU: 0 PID: 29072 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  561.773271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  561.782625] Call Trace:
[  561.785220]  dump_stack+0x1b9/0x294
[  561.788851]  ? dump_stack_print_info.cold.2+0x52/0x52
[  561.794051]  ? perf_trace_lock_acquire+0xe3/0x980
[  561.798889]  warn_alloc.cold.118+0xb2/0x1b8
[  561.803211]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  561.808141]  ? trace_hardirqs_on+0xd/0x10
[  561.812279]  ? _raw_spin_unlock_irq+0x27/0x70
[  561.816779]  ? finish_task_switch+0x1ca/0x810
[  561.821276]  __vmalloc_node_range+0x45e/0x750
[  561.825757]  ? graph_lock+0x170/0x170
[  561.829545]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  561.834377]  __vmalloc_node_flags_caller+0x75/0x90
[  561.839289]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  561.844118]  kvmalloc_node+0xde/0x100
[  561.847911]  kvm_arch_create_memslot+0xa3/0x4e0
[  561.852572]  __kvm_set_memory_region+0x1d1b/0x2e50
[  561.857523]  ? kvm_vcpu_block+0x1050/0x1050
[  561.861852]  ? print_usage_bug+0xc0/0xc0
[  561.865933]  ? perf_trace_lock+0x900/0x900
[  561.870177]  ? lock_acquire+0x1dc/0x520
[  561.874158]  ? graph_lock+0x170/0x170
[  561.877970]  ? __might_sleep+0x95/0x190
[  561.881959]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  561.887597]  ? futex_wait_queue_me+0x550/0x820
[  561.892186]  ? __lock_acquire+0x7f5/0x5140
[  561.896435]  ? refill_pi_state_cache.part.7+0x300/0x300
[  561.901809]  ? find_held_lock+0x36/0x1c0
[  561.905885]  ? lock_downgrade+0x8e0/0x8e0
[  561.910086]  kvm_set_memory_region+0x2e/0x50
[  561.914503]  kvm_vm_ioctl+0x668/0x1d90
[  561.918399]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  561.923949]  ? __perf_event_task_sched_in+0x247/0xb80
[  561.929150]  ? kvm_set_memory_region+0x50/0x50
[  561.933809]  ? find_held_lock+0x36/0x1c0
[  561.937884]  ? perf_trace_lock_acquire+0xe3/0x980
[  561.942730]  ? perf_trace_lock+0x900/0x900
[  561.946949]  ? do_futex+0x249/0x27d0
[  561.950652]  ? kasan_check_read+0x11/0x20
[  561.954791]  ? graph_lock+0x170/0x170
[  561.958581]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  561.963147]  ? compat_start_thread+0x80/0x80
[  561.967536]  ? _raw_spin_unlock_irq+0x27/0x70
[  561.972023]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  561.977039]  ? exit_robust_list+0x290/0x290
[  561.981347]  ? find_held_lock+0x36/0x1c0
[  561.985393]  ? lock_downgrade+0x8e0/0x8e0
[  561.989536]  ? kasan_check_read+0x11/0x20
[  561.993668]  ? rcu_is_watching+0x85/0x140
[  561.997809]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  562.003002]  ? __fget+0x40c/0x650
[  562.006448]  ? do_raw_spin_unlock+0x1/0x2e0
[  562.010760]  ? expand_files.part.8+0x9a0/0x9a0
[  562.015329]  ? kasan_check_write+0x14/0x20
[  562.019545]  ? do_raw_spin_lock+0xc1/0x200
[  562.023777]  ? kvm_set_memory_region+0x50/0x50
[  562.028351]  do_vfs_ioctl+0x1cf/0x16a0
[  562.032223]  ? ioctl_preallocate+0x2e0/0x2e0
[  562.036614]  ? fget_raw+0x20/0x20
[  562.040056]  ? __x64_sys_futex+0x477/0x680
[  562.044273]  ? exit_to_usermode_loop+0x87/0x310
[  562.048940]  ? do_futex+0x27d0/0x27d0
[  562.052724]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  562.058244]  ? security_file_ioctl+0x94/0xc0
[  562.062637]  ksys_ioctl+0xa9/0xd0
[  562.066073]  __x64_sys_ioctl+0x73/0xb0
[  562.069944]  do_syscall_64+0x1b1/0x800
[  562.073813]  ? finish_task_switch+0x1ca/0x810
[  562.078301]  ? syscall_return_slowpath+0x5c0/0x5c0
[  562.083218]  ? syscall_return_slowpath+0x30f/0x5c0
[  562.088129]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  562.093492]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  562.098325]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  562.103492] RIP: 0033:0x455979
[  562.106661] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  562.114349] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  562.121596] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  562.128844] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  562.136094] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  562.143343] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:13 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000001040000d0"], 0x1)

2018/05/02 02:14:13 executing program 7:
r0 = syz_open_dev$sg(&(0x7f0000001000)='/dev/sg#\x00', 0x0, 0x0)
r1 = socket$inet6(0xa, 0x400000001, 0x3)
accept(r1, 0x0, &(0x7f0000000000))
mmap(&(0x7f00002e4000/0x3000)=nil, 0x3000, 0x4, 0x40000000000032, 0xffffffffffffffff, 0x0)
r2 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x11, r2, 0x0)
name_to_handle_at(r0, &(0x7f00002e4000)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000001ffc), 0x1400)
name_to_handle_at(r2, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)={0x64, 0x1000, "e4513e7c02ee6efb98e495b2113fb52d5a621dc89eadd7da382aec2cdb2ab94194c065b04cbb54bc6254cb5a264713aa574b0d703088ad340879aefc68a75797c8e7d8010dcc4787b4edcfa673653b01038717b724db788ea5f90b8a"}, &(0x7f0000000140), 0x1000)

2018/05/02 02:14:13 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009107fffffff000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:13 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000eb0fb8)={0x1, 0x3, &(0x7f00009ff000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}, [], {0x95}}, &(0x7f0000000000)='syzkaller\x00', 0x101, 0xb7, &(0x7f00006ab000)=""/183}, 0x48)
sendto$inet(r0, &(0x7f0000000040), 0xffffffffffffff8b, 0x0, 0x0, 0xfffffd4a)
r2 = socket(0x10, 0xa, 0x74)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000040)=0x2, 0x4)
r3 = socket$kcm(0x29, 0x1000000000000005, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f000031aff8)={r0, r1})
r4 = syz_open_procfs(0x0, &(0x7f000018cff6)='net/kcm\x00\b\x00')
write(r3, &(0x7f00000000c0)='T', 0x1)
readv(r4, &(0x7f0000c43f70)=[{&(0x7f0000ea5000)=""/4096, 0x1000}], 0x1)

2018/05/02 02:14:13 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000), 0x0)
dup3(r1, r0, 0x0)

2018/05/02 02:14:13 executing program 1:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$sndseq(r2, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x6c, &(0x7f0000000140)=ANY=[@ANYRES32=<r4=>0x0, @ANYBLOB="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"], &(0x7f0000000040)=0x1008)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000001180)={r4, 0x6}, 0x8)
setsockopt$inet6_tcp_TLS_RX(r2, 0x6, 0x2, &(0x7f00000000c0)={0x303, 0x33}, 0x4)
syz_open_dev$tun(&(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x200100)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r1, r0, 0x1, 0x0)
dup2(r1, r3)

2018/05/02 02:14:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x5, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:13 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000180)='/dev/sg#\x00', 0x0, 0x0)
ioctl(r0, 0x2284, &(0x7f0000fe7000))
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_MRT6_DEL_MFC(r1, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e23, 0x3, @remote={0xfe, 0x80, [], 0xbb}, 0x26}, {0xa, 0x4e22, 0xffffffffffffffc5, @remote={0xfe, 0x80, [], 0xbb}, 0x1}, 0x1, [0x3, 0x4, 0x100000001, 0x4, 0x6, 0x87e, 0x5, 0xffffffffffffffa9]}, 0x5c)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000001dc0)='/dev/sequencer\x00', 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000001e00)={<r3=>0x0, 0x7}, &(0x7f0000001e40)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000001e80)={0x8, 0x8000, 0xff, 0x3ff, r3}, &(0x7f0000001ec0)=0x10)

2018/05/02 02:14:13 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000005e040000d0"], 0x1)

[  562.231509] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  562.243345] syz-executor4 cpuset=syz4 mems_allowed=0
[  562.248540] CPU: 0 PID: 29095 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  562.255826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  562.265188] Call Trace:
[  562.267793]  dump_stack+0x1b9/0x294
[  562.271438]  ? dump_stack_print_info.cold.2+0x52/0x52
[  562.276636]  ? graph_lock+0x170/0x170
2018/05/02 02:14:13 executing program 2:
r0 = socket$l2tp(0x18, 0x1, 0x1)
r1 = request_key(&(0x7f0000000080)='rxrpc\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000100)='.\x00', 0xfffffffffffffff8)
add_key(&(0x7f0000000000)='cifs.spnego\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, r1)
connect$l2tp(r0, &(0x7f0000348fd2)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote={0xac, 0x14, 0x0, 0xbb}}, 0x2}}, 0x2e)
ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000553ffc))

[  562.280452]  warn_alloc.cold.118+0xb2/0x1b8
[  562.284787]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  562.289644]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  562.295722]  ? update_load_avg+0x2d9/0x2570
[  562.300050]  ? graph_lock+0x170/0x170
[  562.304132]  __vmalloc_node_range+0x45e/0x750
[  562.308651]  ? graph_lock+0x170/0x170
[  562.313770]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  562.318625]  __vmalloc_node_flags_caller+0x75/0x90
[  562.323569]  ? kvm_arch_create_memslot+0xa3/0x4e0
2018/05/02 02:14:13 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000074040000d0"], 0x1)

[  562.328433]  kvmalloc_node+0xde/0x100
[  562.332245]  kvm_arch_create_memslot+0xa3/0x4e0
[  562.336932]  __kvm_set_memory_region+0x1d1b/0x2e50
[  562.341887]  ? kvm_vcpu_block+0x1050/0x1050
[  562.346220]  ? print_usage_bug+0xc0/0xc0
[  562.350297]  ? lock_downgrade+0x8e0/0x8e0
[  562.354452]  ? lock_downgrade+0x8e0/0x8e0
[  562.358616]  ? graph_lock+0x170/0x170
[  562.362420]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  562.367012]  ? __lock_acquire+0x7f5/0x5140
[  562.371256]  ? trace_hardirqs_on+0xd/0x10
[  562.375415]  ? find_held_lock+0x36/0x1c0
2018/05/02 02:14:13 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000087040000d0"], 0x1)

[  562.379496]  ? lock_downgrade+0x8e0/0x8e0
[  562.383678]  kvm_set_memory_region+0x2e/0x50
[  562.388094]  kvm_vm_ioctl+0x668/0x1d90
[  562.391992]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  562.397533]  ? __perf_event_task_sched_in+0x247/0xb80
[  562.402732]  ? kvm_set_memory_region+0x50/0x50
[  562.407322]  ? find_held_lock+0x36/0x1c0
[  562.411402]  ? lock_downgrade+0x8e0/0x8e0
[  562.415554]  ? finish_task_switch+0x182/0x810
[  562.420061]  ? kasan_check_read+0x11/0x20
[  562.424214]  ? graph_lock+0x170/0x170
[  562.428018]  ? do_raw_spin_trylock+0x1b0/0x1b0
2018/05/02 02:14:13 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000cf040000d0"], 0x1)

2018/05/02 02:14:13 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000002d040000d0"], 0x1)

[  562.432605]  ? compat_start_thread+0x80/0x80
[  562.437018]  ? _raw_spin_unlock_irq+0x27/0x70
[  562.441516]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  562.446535]  ? trace_hardirqs_on+0xd/0x10
[  562.450688]  ? _raw_spin_unlock_irq+0x27/0x70
[  562.455192]  ? find_held_lock+0x36/0x1c0
[  562.459265]  ? lock_downgrade+0x8e0/0x8e0
[  562.463421]  ? kasan_check_read+0x11/0x20
[  562.467572]  ? rcu_is_watching+0x85/0x140
[  562.471724]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  562.476930]  ? __fget+0x40c/0x650
2018/05/02 02:14:13 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000006040000d0"], 0x1)

2018/05/02 02:14:13 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000054040000d0"], 0x1)

[  562.480399]  ? expand_files.part.8+0x9a0/0x9a0
[  562.484984]  ? lock_downgrade+0x8e0/0x8e0
[  562.489145]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  562.494692]  ? vma_set_page_prot+0x239/0x300
[  562.499109]  ? kvm_set_memory_region+0x50/0x50
[  562.503699]  do_vfs_ioctl+0x1cf/0x16a0
[  562.507597]  ? ioctl_preallocate+0x2e0/0x2e0
[  562.512012]  ? fget_raw+0x20/0x20
[  562.515480]  ? exit_to_usermode_loop+0x87/0x310
[  562.520160]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  562.525705]  ? security_file_ioctl+0x94/0xc0
[  562.530126]  ksys_ioctl+0xa9/0xd0
[  562.533588]  __x64_sys_ioctl+0x73/0xb0
[  562.537483]  do_syscall_64+0x1b1/0x800
[  562.541376]  ? finish_task_switch+0x1ca/0x810
[  562.545882]  ? syscall_return_slowpath+0x5c0/0x5c0
[  562.550816]  ? syscall_return_slowpath+0x30f/0x5c0
[  562.555756]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  562.561123]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  562.565973]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  562.571164] RIP: 0033:0x455979
[  562.574352] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  562.582068] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  562.589339] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  562.596607] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  562.603876] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  562.611145] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  562.618733] warn_alloc_show_mem: 1 callbacks suppressed
[  562.618741] Mem-Info:
[  562.626603] active_anon:78607 inactive_anon:79 isolated_anon:0
[  562.626603]  active_file:3737 inactive_file:12087 isolated_file:0
[  562.626603]  unevictable:0 dirty:175 writeback:0 unstable:0
[  562.626603]  slab_reclaimable:10698 slab_unreclaimable:105347
[  562.626603]  mapped:73905 shmem:88 pagetables:1066 bounce:0
[  562.626603]  free:1321180 free_pcp:378 free_cma:0
[  562.660272] Node 0 active_anon:314428kB inactive_anon:316kB active_file:14948kB inactive_file:48348kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295620kB dirty:700kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 137216kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  562.688435] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  562.714684] lowmem_reserve[]: 0 2830 6335 6335
[  562.719316] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:640kB free_cma:0kB
[  562.747052] lowmem_reserve[]: 0 0 3505 3505
[  562.751423] Node 0 Normal free:2368124kB min:37300kB low:46624kB high:55948kB active_anon:314404kB inactive_anon:320kB active_file:14948kB inactive_file:48304kB unevictable:0kB writepending:780kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5632kB pagetables:4304kB bounce:0kB free_pcp:920kB local_pcp:220kB free_cma:0kB
[  562.781219] lowmem_reserve[]: 0 0 0 0
[  562.785067] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  562.798738] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  562.814610] Node 0 Normal: 2519*4kB (UME) 3004*8kB (UME) 2991*16kB (UME) 2918*32kB (UME) 1471*64kB (UME) 327*128kB (UM) 195*256kB (UM) 102*512kB (UME) 70*1024kB (UME) 44*2048kB (UM) 438*4096kB (UM) = 2369324kB
[  562.833542] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  562.842152] 15900 total pagecache pages
[  562.846162] 0 pages in swap cache
[  562.849644] Swap cache stats: add 0, delete 0, find 0/0
[  562.855035] Free swap  = 0kB
[  562.858087] Total swap = 0kB
[  562.861121] 1965969 pages RAM
[  562.864248] 0 pages HighMem/MovableOnly
[  562.868227] 339347 pages reserved
[  562.887179] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  562.899097] syz-executor4 cpuset=syz4 mems_allowed=0
[  562.904261] CPU: 0 PID: 29128 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  562.911531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  562.920876] Call Trace:
[  562.923458]  dump_stack+0x1b9/0x294
[  562.927075]  ? dump_stack_print_info.cold.2+0x52/0x52
[  562.932256]  warn_alloc.cold.118+0xb2/0x1b8
[  562.936571]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  562.941405]  ? mark_held_locks+0xc9/0x160
[  562.945544]  ? retint_kernel+0x10/0x10
[  562.949429]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  562.954437]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  562.959211]  ? retint_kernel+0x10/0x10
[  562.963091]  __vmalloc_node_range+0x45e/0x750
[  562.967588]  ? graph_lock+0x170/0x170
[  562.971392]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  562.976226]  __vmalloc_node_flags_caller+0x75/0x90
[  562.981138]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  562.985975]  kvmalloc_node+0xde/0x100
[  562.989760]  kvm_arch_create_memslot+0xa3/0x4e0
[  562.994423]  __kvm_set_memory_region+0x1d1b/0x2e50
[  562.999355]  ? kvm_vcpu_block+0x1050/0x1050
[  563.003690]  ? graph_lock+0x170/0x170
[  563.007511]  ? find_held_lock+0x36/0x1c0
[  563.011584]  ? lock_downgrade+0x8e0/0x8e0
[  563.015763]  kvm_set_memory_region+0x2e/0x50
[  563.020186]  kvm_vm_ioctl+0x668/0x1d90
[  563.024084]  ? __lock_acquire+0x7f5/0x5140
[  563.028332]  ? kvm_set_memory_region+0x50/0x50
[  563.032931]  ? debug_check_no_locks_freed+0x310/0x310
[  563.038124]  ? print_usage_bug+0xc0/0xc0
[  563.042194]  ? graph_lock+0x170/0x170
[  563.046422]  ? find_held_lock+0x36/0x1c0
[  563.050470]  ? lock_downgrade+0x8e0/0x8e0
[  563.054604]  ? kasan_check_read+0x11/0x20
[  563.058732]  ? rcu_is_watching+0x85/0x140
[  563.062863]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  563.068055]  ? __fget+0x40c/0x650
[  563.071502]  ? do_raw_spin_unlock+0x1/0x2e0
[  563.075824]  ? expand_files.part.8+0x9a0/0x9a0
[  563.080408]  ? kasan_check_write+0x14/0x20
[  563.084649]  ? do_raw_spin_lock+0xc1/0x200
[  563.088892]  ? _raw_spin_unlock+0x22/0x30
[  563.093045]  ? kvm_set_memory_region+0x50/0x50
[  563.097630]  do_vfs_ioctl+0x1cf/0x16a0
[  563.101528]  ? ioctl_preallocate+0x2e0/0x2e0
[  563.105941]  ? fget_raw+0x20/0x20
[  563.109393]  ? lock_downgrade+0x8e0/0x8e0
[  563.113522]  ? finish_task_switch+0x182/0x810
[  563.118006]  ? security_file_ioctl+0x94/0xc0
[  563.122409]  ksys_ioctl+0xa9/0xd0
[  563.125857]  __x64_sys_ioctl+0x73/0xb0
[  563.129732]  do_syscall_64+0x1b1/0x800
[  563.133604]  ? finish_task_switch+0x1ca/0x810
[  563.138086]  ? syscall_return_slowpath+0x5c0/0x5c0
[  563.143032]  ? syscall_return_slowpath+0x30f/0x5c0
[  563.147950]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  563.153309]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  563.158136]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  563.163306] RIP: 0033:0x455979
[  563.166593] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  563.174284] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  563.181534] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  563.188784] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  563.196037] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  563.203289] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:14 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000071040000d0"], 0x1)

2018/05/02 02:14:14 executing program 7:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
fsync(r0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4309(ccm(tnepres))\x00'}, 0x13d)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000240), 0x0)

2018/05/02 02:14:14 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)="6664001a000000")
getdents64(r0, &(0x7f00000004c0)=""/189, 0xabf70f75d9c5624)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000080)={<r1=>0x0, @in6={{0xa, 0x4e20, 0x5, @local={0xfe, 0x80, [], 0xaa}, 0x1}}, [0x8, 0x2, 0x2, 0x957, 0x16f, 0x1, 0xffffffffffffff7f, 0x10001, 0x81, 0x7fff, 0x7, 0x7, 0x4, 0x847, 0x4]}, &(0x7f0000000200)=0x100)
statx(r0, &(0x7f00000002c0)='./file0\x00', 0x1000, 0x8, &(0x7f0000000300))
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000400)={r1}, &(0x7f0000000440)=0x8)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000580)={r1, 0x7ff}, &(0x7f0000000480)=0x8)

2018/05/02 02:14:14 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000004000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:14 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000), 0x0)
dup3(r1, r0, 0x0)

2018/05/02 02:14:14 executing program 1:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x20080, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000180)=0x1, 0x36c)
mmap$binder(&(0x7f0000012000/0x3000)=nil, 0x3000, 0x2000000, 0x13, r0, 0x0)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x800)
socket$netlink(0x10, 0x3, 0xb)
clone(0x80002000, &(0x7f0000000240)="b0718ddf602f54c82f6368dfeeca031def1606b7adaade331e0cb204421050e1f9441c597518fb8f4a8fda8a09da7c32cda376d8021962fa704cb4770a5713c0c296ad7f8599b45d19946840180715", &(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000400)="b7075f19d9c176048d7e605e5ccb548ab772dbc333b6d9aadf97d1f3b4a913dbc378e5f01867d02652638e43819caa610bada1032bfdcc158a3e80d35b3776e848a67435c35f58c5bc05f3f313975f814755929aa4aa6e26ca6d6b260219ed4019be944d7100ee7a3f3f00dcd3eab8e0134c41754767779b03cf2f449aab289efa8f13e3a977b34197db503f91da914848b905fb5747fc7f6124ec7a0852196b6d05983d00354fe54b1ce137f053a87849e34c2f9c85695c5d282cab9e9fc503369f7833ea06d9baacd953")
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000100)={0x0, 0x6, 0x5}, &(0x7f0000000140)=0x8)
signalfd(r2, &(0x7f0000000000)={0x100000000}, 0x8)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f00000001c0)={0x81, <r5=>0x0, 0x0, 0x4})
ioctl$DRM_IOCTL_AGP_BIND(r3, 0x40106436, &(0x7f0000000200)={r5, 0x8})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x1000)=nil, 0x1000}, 0x1})
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r2, r1, 0x1, 0x0)
ioctl$BLKPBSZGET(r1, 0x127b, &(0x7f0000000040))
dup2(r2, r4)

2018/05/02 02:14:14 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0xfc01000000000000, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:14 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_X86_SET_MCE(r1, 0x4040ae9e, &(0x7f0000000000))

[  563.298696] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  563.310515] syz-executor4 cpuset=syz4 mems_allowed=0
[  563.315716] CPU: 0 PID: 29150 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  563.323058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  563.332416] Call Trace:
[  563.335014]  dump_stack+0x1b9/0x294
[  563.338653]  ? dump_stack_print_info.cold.2+0x52/0x52
[  563.343858]  ? graph_lock+0x170/0x170
[  563.347673]  warn_alloc.cold.118+0xb2/0x1b8
[  563.352012]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  563.356873]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  563.362952]  ? update_load_avg+0x2d9/0x2570
[  563.367278]  ? graph_lock+0x170/0x170
[  563.371102]  __vmalloc_node_range+0x45e/0x750
[  563.375602]  ? graph_lock+0x170/0x170
[  563.379395]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  563.384234]  __vmalloc_node_flags_caller+0x75/0x90
[  563.389162]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  563.393997]  kvmalloc_node+0xde/0x100
[  563.397802]  kvm_arch_create_memslot+0xa3/0x4e0
[  563.402467]  __kvm_set_memory_region+0x1d1b/0x2e50
[  563.407394]  ? kvm_vcpu_block+0x1050/0x1050
[  563.411702]  ? print_usage_bug+0xc0/0xc0
[  563.415761]  ? zap_class+0x720/0x720
[  563.419469]  ? lock_downgrade+0x8e0/0x8e0
[  563.423619]  ? graph_lock+0x170/0x170
[  563.427407]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  563.431977]  ? __lock_acquire+0x7f5/0x5140
[  563.436200]  ? trace_hardirqs_on+0xd/0x10
[  563.440339]  ? find_held_lock+0x36/0x1c0
[  563.444398]  ? lock_downgrade+0x8e0/0x8e0
[  563.448562]  kvm_set_memory_region+0x2e/0x50
[  563.452958]  kvm_vm_ioctl+0x668/0x1d90
[  563.456837]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  563.462368]  ? __perf_event_task_sched_in+0x247/0xb80
[  563.467545]  ? kvm_set_memory_region+0x50/0x50
[  563.472119]  ? find_held_lock+0x36/0x1c0
[  563.476169]  ? perf_trace_lock+0xd6/0x900
[  563.480306]  ? zap_class+0x720/0x720
[  563.484009]  ? finish_task_switch+0x182/0x810
[  563.488502]  ? kasan_check_read+0x11/0x20
[  563.492637]  ? graph_lock+0x170/0x170
[  563.496422]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  563.500992]  ? compat_start_thread+0x80/0x80
[  563.505394]  ? _raw_spin_unlock_irq+0x27/0x70
[  563.510928]  ? trace_hardirqs_on+0xd/0x10
[  563.515064]  ? _raw_spin_unlock_irq+0x27/0x70
[  563.519547]  ? find_held_lock+0x36/0x1c0
[  563.523606]  ? lock_downgrade+0x8e0/0x8e0
[  563.527745]  ? rcu_is_watching+0x85/0x140
[  563.531890]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  563.537074]  ? __fget+0x40c/0x650
[  563.540522]  ? expand_files.part.8+0x9a0/0x9a0
[  563.545090]  ? lock_downgrade+0x8e0/0x8e0
[  563.549240]  ? vma_set_page_prot+0x239/0x300
[  563.553646]  ? kvm_set_memory_region+0x50/0x50
[  563.558214]  do_vfs_ioctl+0x1cf/0x16a0
[  563.562094]  ? ioctl_preallocate+0x2e0/0x2e0
[  563.566488]  ? fget_raw+0x20/0x20
[  563.569938]  ? exit_to_usermode_loop+0x87/0x310
[  563.574598]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  563.580123]  ? security_file_ioctl+0x94/0xc0
[  563.584522]  ksys_ioctl+0xa9/0xd0
[  563.587967]  __x64_sys_ioctl+0x73/0xb0
[  563.591841]  do_syscall_64+0x1b1/0x800
[  563.595714]  ? finish_task_switch+0x1ca/0x810
[  563.600197]  ? syscall_return_slowpath+0x5c0/0x5c0
[  563.605113]  ? syscall_return_slowpath+0x30f/0x5c0
[  563.610034]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  563.615389]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  563.620221]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  563.625393] RIP: 0033:0x455979
[  563.628566] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  563.636262] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
2018/05/02 02:14:14 executing program 5:
r0 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r0, &(0x7f00005fafd2)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x11}}, 0x2, 0x1, 0x0, 0x4}}, 0x26)
connect$l2tp(r0, &(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote={0xfe, 0x80, [], 0xbb}}}}, 0x32)
r1 = accept4(r0, &(0x7f0000000100)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @multicast1}}}, &(0x7f0000000180)=0x80, 0x80800)
r2 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x2, 0x800)
setsockopt$inet6_MRT6_DEL_MFC_PROXY(r2, 0x29, 0xd3, &(0x7f0000000080)={{0xa, 0x4e21, 0x1ff, @loopback={0x0, 0x1}, 0x100}, {0xa, 0x4e20, 0x8001, @dev={0xfe, 0x80, [], 0x11}, 0x3f}, 0x8, [0x100000001, 0x2, 0x8231, 0x5, 0x80000000, 0xb69, 0x1, 0x1]}, 0x5c)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000001c0)={0x1, 0xb, 0x9, 0x6893, <r3=>0x0}, &(0x7f0000000200)=0x10)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000240)={r3, 0x14, "1e580b080d6a341acf3efcd3beed328028ee9517"}, &(0x7f0000000280)=0x1c)

2018/05/02 02:14:14 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000039040000d0"], 0x1)

[  563.643518] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  563.650775] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  563.658031] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  563.665284] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  563.672677] warn_alloc_show_mem: 1 callbacks suppressed
[  563.672680] Mem-Info:
[  563.680913] active_anon:76568 inactive_anon:80 isolated_anon:0
[  563.680913]  active_file:3737 inactive_file:12076 isolated_file:0
[  563.680913]  unevictable:0 dirty:195 writeback:0 unstable:0
2018/05/02 02:14:14 executing program 5:
r0 = syz_open_dev$sg(&(0x7f00000004c0)='/dev/sg#\x00', 0x0, 0x0)
personality(0x400000)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3)
ioctl$TIOCNOTTY(r0, 0x5422)
recvmsg$netrom(r0, &(0x7f00000003c0)={&(0x7f0000000040)=@full={{0x3, {"32d01e16a6be20"}, 0xff}, [{"12f029d2ad7e77"}, {"8712e28b8d8bc0"}, {"28a375ecc45035"}, {"af001be890eeb3"}, {"4438b9dcf0d40c"}, {"7b8908ae413d31"}, {"879c08a48c1b75"}, {"1cde8dfcadd774"}]}, 0x48, &(0x7f0000000340)=[{&(0x7f0000000100)="4e5e8efc55e09648b52e1bd3ac8963d5c9dae6ec118e86556a82bc3c2e9a976c30b16ab92989c452435b0c36d5852775eb7ef49d451439a4416277a0db28122eee420f2b77bbed9654ec734b0afcc6f28e640bdb5d0f8fd52ff0e24db8929468be9f66988c9fc6b48356e45ed0ea7a7297dfb965e38710995afd041ad9dc28d0d2e8f96ffcd5f805ae75adbdb9a274b87d7f35a07fcf", 0x96}, {&(0x7f00000002c0)="d6d1247471844a69ff", 0x9}], 0x2, &(0x7f0000000500)=ANY=[@ANYBLOB="0801000000000000170100000000000030da0d3291523b22847d6a81410165a45bd216601b98936651b6211bf36a1774f5745db5c47ebd13e92a835194d5472b8aba24afb5b6e5b583f2a25de070f44491586ec44168e6dd33c00c52ca67694a132e7b7994621b6bc292915da95461d17483b5533f03e31a5b55d01390c72a99e85e20e45d96f146e4876fe79296aa41783b5ac13f88e0d4a65a1e41246316ff485fff0b00c3a37bb4f85321dc78566f33a1eedb8ca7e9d3434acc89fe7c7596104eded5c0dbe182b34b726782267b32b6a28a56baffbb408b4efe36d68dc40b650520959a2f213ad020e7139c4b5f339c885720a9c14dd4e7811f36937fa86dead32252c7000000b800000000000000000000000800000032c0adff17f77411579a1025ce4137ac4ba85401c488a52832f58868057b1a9bfe69be35ae3f30ed818cd54d8c1921a1dfc531af16d16d42fef2b468fa49271ef6cbe75fd7a026c412a9e4342f65087dfc29bc99400b6a6451cf7c1a630806f97e7c2ea32cfd663d93cc26b6f5678cc39587d117570a3da46d95dd51741e49d9c55731d7d06444eb776efb7e18aab9c3a753af219437ba696d66cdb4edcccf7ea338000000000000"], 0x1c0, 0x4}, 0x40010060)
fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000400))
setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, &(0x7f00000006c0), 0x4)
r1 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, &(0x7f0000000440)={'ipvs\x00'}, &(0x7f0000000480)=0x1e)
prctl$intptr(0x1, 0x4)
setsockopt$sock_void(r0, 0x1, 0x24, 0x0, 0x0)
getsockopt$netlink(r1, 0x10e, 0x9, &(0x7f0000124ffc)=""/4, &(0x7f0000000000)=0x4)

[  563.680913]  slab_reclaimable:10695 slab_unreclaimable:105125
[  563.680913]  mapped:73908 shmem:88 pagetables:1113 bounce:0
[  563.680913]  free:1324230 free_pcp:367 free_cma:0
[  563.714628] Node 0 active_anon:308416kB inactive_anon:320kB active_file:14948kB inactive_file:48304kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295532kB dirty:780kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 137216kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:14:14 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
mmap(&(0x7f0000000000/0x9d7000)=nil, 0x9d7000, 0x0, 0x4d072, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00008a8ff0)={0x0, 0x0, &(0x7f0000d22000)}, &(0x7f0000f6affc)=0x10)

[  563.742794] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  563.769090] lowmem_reserve[]: 0 2830 6335 6335
2018/05/02 02:14:14 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000009d040000d0"], 0x1)

[  563.773732] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:640kB free_cma:0kB
[  563.801490] lowmem_reserve[]: 0 0 3505 3505
[  563.805882] Node 0 Normal free:2376752kB min:37300kB low:46624kB high:55948kB active_anon:310460kB inactive_anon:320kB active_file:14948kB inactive_file:48352kB unevictable:0kB writepending:828kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5760kB pagetables:4484kB bounce:0kB free_pcp:440kB local_pcp:232kB free_cma:0kB
[  563.835816] lowmem_reserve[]: 0 0 0 0
2018/05/02 02:14:14 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = open(&(0x7f0000042ff8)='./file0\x00', 0x80040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
ioctl$LOOP_SET_DIRECT_IO(0xffffffffffffffff, 0x4c08, 0x0)
rt_sigprocmask(0x3, &(0x7f0000da1000)={0xfffffffffffffffe}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000061000)={0xfffffffffffffffb}, &(0x7f0000039ff0), &(0x7f0000039ff0)={0x77359400, 0xffff}, 0x8)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
dup2(r0, r1)

[  563.839683] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  563.853393] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  563.869277] Node 0 Normal: 2476*4kB (UME) 2904*8kB (ME) 2989*16kB (UME) 3027*32kB (UME) 1471*64kB (UME) 345*128kB (UM) 194*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 48*2048kB (UM) 438*4096kB (UM) = 2382560kB
[  563.888140] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  563.896754] 15912 total pagecache pages
2018/05/02 02:14:14 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000090040000d0"], 0x1)

2018/05/02 02:14:14 executing program 2:
r0 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x9, 0x0)
ioctl$PIO_UNISCRNMAP(r0, 0x4b6a, &(0x7f0000000080)="d441cbe112b2c2c12719065cf97f3ee3645f5711f4ece07c9be6d3e63420d4e5358f4e6835b763532837740b081270fae18cd06f067cc1a5110d5ca3d4d931215daa72e50c0d9e5cb12a2a1919b2a5eebf4c7c338d7a248db5ded58c6b3ddda7d536a0d1bab4e89e61f2a05114d5e6bcf489d23f9ef4fa31a76c01997ce84d3eab3792")
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000e2d000)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000e4e000)=0x200000000)

2018/05/02 02:14:15 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000034000000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  563.900792] 0 pages in swap cache
[  563.904276] Swap cache stats: add 0, delete 0, find 0/0
[  563.909675] Free swap  = 0kB
[  563.912716] Total swap = 0kB
[  563.915798] 1965969 pages RAM
[  563.918926] 0 pages HighMem/MovableOnly
[  563.922928] 339347 pages reserved
[  563.959260] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  563.971115] syz-executor4 cpuset=syz4 mems_allowed=0
[  563.976321] CPU: 0 PID: 29182 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  563.983601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  563.992956] Call Trace:
[  563.995557]  dump_stack+0x1b9/0x294
[  563.999197]  ? dump_stack_print_info.cold.2+0x52/0x52
[  564.004574]  ? kasan_check_read+0x11/0x20
2018/05/02 02:14:15 executing program 7:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00006ffff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x204000, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r2, 0x50, &(0x7f00000000c0)}, 0x10)
sendmmsg$unix(r1, &(0x7f00009c5000), 0x4924967, 0x0)
recvmmsg(r0, &(0x7f0000525000)=[{{&(0x7f0000000000)=@l2, 0x80, &(0x7f00000023c0), 0x0, &(0x7f0000239000)}}], 0x2ff, 0x0, 0x0)

[  564.008744]  warn_alloc.cold.118+0xb2/0x1b8
[  564.013079]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  564.017956]  ? trace_hardirqs_on+0xd/0x10
[  564.022118]  ? _raw_spin_unlock_irq+0x27/0x70
[  564.026630]  ? finish_task_switch+0x1ca/0x810
[  564.031150]  ? lock_repin_lock+0x410/0x410
[  564.035406]  __vmalloc_node_range+0x45e/0x750
[  564.039913]  ? graph_lock+0x170/0x170
[  564.043733]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  564.048590]  __vmalloc_node_flags_caller+0x75/0x90
[  564.053529]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  564.058393]  kvmalloc_node+0xde/0x100
[  564.062206]  kvm_arch_create_memslot+0xa3/0x4e0
[  564.066915]  __kvm_set_memory_region+0x1d1b/0x2e50
[  564.071872]  ? kvm_vcpu_block+0x1050/0x1050
[  564.076215]  ? check_same_owner+0x320/0x320
[  564.080555]  ? do_raw_spin_unlock+0x9e/0x2e0
[  564.084975]  ? rcu_note_context_switch+0x710/0x710
[  564.089908]  ? lock_acquire+0x1dc/0x520
[  564.093896]  ? graph_lock+0x170/0x170
[  564.097695]  ? __might_sleep+0x95/0x190
[  564.101663]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  564.107200]  ? futex_wait_queue_me+0x550/0x820
[  564.111799]  ? refill_pi_state_cache.part.7+0x300/0x300
[  564.117177]  ? find_held_lock+0x36/0x1c0
[  564.121255]  ? lock_downgrade+0x8e0/0x8e0
[  564.125439]  kvm_set_memory_region+0x2e/0x50
[  564.129857]  kvm_vm_ioctl+0x668/0x1d90
[  564.133755]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  564.138853]  ? futex_wake+0x2f6/0x750
[  564.142730]  ? kvm_set_memory_region+0x50/0x50
[  564.147306]  ? get_futex_key+0x1e90/0x1e90
[  564.151565]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  564.156765]  ? do_futex+0x249/0x27d0
2018/05/02 02:14:15 executing program 1:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$sndseq(r2, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
setsockopt$packet_int(r1, 0x107, 0xe, &(0x7f00000000c0)=0x7, 0x4)
r3 = userfaultfd(0x100000000080800)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f0000000000)={0x2, <r4=>0x0, 0x1})
ioctl$DRM_IOCTL_AGP_FREE(r1, 0x40206435, &(0x7f0000000040)={0x5, r4, 0x10001, 0xf7a})
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r1, r0, 0x1, 0x0)
dup2(r1, r3)

[  564.160481]  ? graph_lock+0x170/0x170
[  564.164298]  ? exit_robust_list+0x290/0x290
[  564.168630]  ? find_held_lock+0x36/0x1c0
[  564.172709]  ? lock_downgrade+0x8e0/0x8e0
[  564.176874]  ? kasan_check_read+0x11/0x20
[  564.181030]  ? rcu_is_watching+0x85/0x140
[  564.185195]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  564.190401]  ? __fget+0x40c/0x650
[  564.193865]  ? do_raw_spin_unlock+0x1/0x2e0
[  564.198187]  ? expand_files.part.8+0x9a0/0x9a0
[  564.202768]  ? kasan_check_write+0x14/0x20
[  564.206994]  ? do_raw_spin_lock+0xc1/0x200
[  564.211221]  ? _raw_spin_unlock+0x22/0x30
[  564.215361]  ? kvm_set_memory_region+0x50/0x50
[  564.219928]  do_vfs_ioctl+0x1cf/0x16a0
[  564.223802]  ? ioctl_preallocate+0x2e0/0x2e0
[  564.228208]  ? fget_raw+0x20/0x20
[  564.231665]  ? __x64_sys_futex+0x477/0x680
[  564.235916]  ? do_futex+0x27d0/0x27d0
[  564.239740]  ? security_file_ioctl+0x94/0xc0
[  564.244221]  ksys_ioctl+0xa9/0xd0
[  564.247675]  __x64_sys_ioctl+0x73/0xb0
[  564.251548]  do_syscall_64+0x1b1/0x800
[  564.255426]  ? finish_task_switch+0x1ca/0x810
[  564.259904]  ? syscall_return_slowpath+0x5c0/0x5c0
[  564.264818]  ? syscall_return_slowpath+0x30f/0x5c0
[  564.269740]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  564.275086]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  564.279915]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  564.285094] RIP: 0033:0x455979
[  564.288282] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  564.295970] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  564.303223] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
2018/05/02 02:14:15 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(0xffffffffffffffff, r0, 0x0)

2018/05/02 02:14:15 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000b8040000d0"], 0x1)

[  564.310472] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  564.317725] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  564.324978] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:16 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(0xffffffffffffffff, r0, 0x0)

2018/05/02 02:14:16 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000016040000d0"], 0x1)

2018/05/02 02:14:16 executing program 5:
r0 = syz_open_pts(0xffffffffffffff9c, 0x400)
ioctl$KDSKBLED(r0, 0x4b65, 0x800)
prctl$intptr(0x22, 0x800000007)

2018/05/02 02:14:16 executing program 7:
r0 = syz_open_dev$binder(&(0x7f0000008000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x10, 0x20015, r0, 0x0)
mlock2(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0)
mlock2(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x18)
io_setup(0x1, &(0x7f0000000040)=<r2=>0x0)
io_submit(r2, 0x2, &(0x7f0000000300)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x9c62, r0, &(0x7f00000000c0)="7eb5b5901bbaa0fbb585bb28bb0be3b34a4c84bdb92b163534520baea76b54e74168d6ba9e274363480b23e847b78e00de99129d0ebde27214be96f7f8c9119cc3b32e5d771e0fc3f7ff325392c15c491c4b15173d07704f0346e53902d91aa3b055e8878b6758bc89bb0c9c80e82d1f9f9ff1c4d90f9beba7a7890120951ac208945b4e80ed2b1f2204c289af66bb67867c2e3afa03f9cee01ea98348e31b880e74c2d1eb660252d91dd7b9e4aed8655ba494bef42212448b7c8b76cee9c518f2", 0xc1, 0xe0, 0x0, 0x1, r1}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x6, 0x100000001, r1, &(0x7f0000000240)="c18c1548d2b2c38e359f89369cf7269cf96de8b3d20df799a155c5909406d6af286a75f86aa5eca3ba31ef5296a61467c7d0d0e8fa5ed34d5ad592e51cde37795fe8736daaf699025869fc27b63c0dc3fd01b1d19aaf567b5471f4eb977a8d957a446555ab5aecc0a4c4", 0x6a, 0x4, 0x0, 0x0, r1}])
r3 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x1, 0x0)
ioctl$RNDGETENTCNT(r3, 0x80045200, &(0x7f00000001c0))

2018/05/02 02:14:16 executing program 2:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
mmap$binder(&(0x7f0000848000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000000c0))
r1 = accept(r0, 0x0, &(0x7f0000000000))
pipe2(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x84800)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x8)
ioctl$KDMKTONE(r2, 0x4b30, 0x7)
setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f0000000100)={0x8000, {{0xa, 0x4e22, 0x1a, @local={0xfe, 0x80, [], 0xaa}, 0x4b44}}}, 0x88)

2018/05/02 02:14:16 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x200000000000000, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:16 executing program 1:
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x4})
dup3(r2, r3, 0x80000)
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
socketpair$inet_tcp(0x2, 0x1, 0x0, &(0x7f0000000000))
tee(r2, r1, 0x1, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000013000/0x4000)=nil, 0x4000}, 0x1})
dup2(r2, r4)

2018/05/02 02:14:16 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091004000000000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  565.332927] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  565.344776] syz-executor4 cpuset=syz4 mems_allowed=0
[  565.349970] CPU: 0 PID: 29221 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  565.357250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  565.366608] Call Trace:
[  565.369213]  dump_stack+0x1b9/0x294
[  565.372854]  ? dump_stack_print_info.cold.2+0x52/0x52
[  565.378059]  ? kasan_check_read+0x11/0x20
2018/05/02 02:14:16 executing program 2:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x7f2000)=nil, 0x7f2000, 0x3, 0x31, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000040)=@sack_info={<r2=>0x0, 0x100, 0x9}, &(0x7f0000000080)=0xc)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f00000000c0)={r2, 0x5}, &(0x7f0000000100)=0x8)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f00003fb000), 0xffffff0a}], 0x1, 0x0)
mbind(&(0x7f00003b5000/0x800000)=nil, 0x800000, 0x4, &(0x7f0000001ff8), 0x5, 0x2)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000240)={&(0x7f0000000140)=[0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0], 0x1, 0x6, 0x6, 0x4})

2018/05/02 02:14:16 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000005f040000d0"], 0x1)

2018/05/02 02:14:16 executing program 5:
r0 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f0000012000)=0xffffffffad36b24d, 0x4)
recvmsg(r0, &(0x7f0000000140)={&(0x7f00000000c0)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000000600), 0x0, &(0x7f00000006c0)=""/188, 0xbc, 0x1}, 0x10020)
setsockopt$sock_int(r0, 0x1, 0x1d, &(0x7f0000000000), 0x4)
sendmsg$key(r0, &(0x7f0000007000)={0x0, 0x0, &(0x7f000001b000)={&(0x7f000001bf30)={0x2, 0x12, 0x0, 0x0, 0x2}, 0x10}, 0x1}, 0x0)

[  565.382227]  warn_alloc.cold.118+0xb2/0x1b8
[  565.386562]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  565.391418]  ? trace_hardirqs_on+0xd/0x10
[  565.395592]  ? _raw_spin_unlock_irq+0x27/0x70
[  565.400114]  ? finish_task_switch+0x1ca/0x810
[  565.404634]  ? lock_repin_lock+0x410/0x410
[  565.408889]  __vmalloc_node_range+0x45e/0x750
[  565.413372]  ? graph_lock+0x170/0x170
[  565.417156]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  565.421985]  __vmalloc_node_flags_caller+0x75/0x90
[  565.426988]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  565.431819]  kvmalloc_node+0xde/0x100
[  565.435603]  kvm_arch_create_memslot+0xa3/0x4e0
[  565.440268]  __kvm_set_memory_region+0x1d1b/0x2e50
[  565.445198]  ? kvm_vcpu_block+0x1050/0x1050
[  565.449510]  ? check_same_owner+0x320/0x320
[  565.453815]  ? do_raw_spin_unlock+0x9e/0x2e0
[  565.458207]  ? rcu_note_context_switch+0x710/0x710
[  565.463125]  ? lock_acquire+0x1dc/0x520
[  565.467089]  ? graph_lock+0x170/0x170
[  565.470871]  ? __might_sleep+0x95/0x190
[  565.474839]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  565.480361]  ? futex_wait_queue_me+0x550/0x820
[  565.484928]  ? refill_pi_state_cache.part.7+0x300/0x300
[  565.490282]  ? find_held_lock+0x36/0x1c0
[  565.494342]  ? lock_downgrade+0x8e0/0x8e0
[  565.498496]  kvm_set_memory_region+0x2e/0x50
[  565.502890]  kvm_vm_ioctl+0x668/0x1d90
[  565.506764]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  565.511856]  ? futex_wake+0x2f6/0x750
[  565.515646]  ? kvm_set_memory_region+0x50/0x50
[  565.520213]  ? get_futex_key+0x1e90/0x1e90
[  565.524439]  ? kasan_check_write+0x14/0x20
[  565.528658]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  565.533831]  ? do_futex+0x249/0x27d0
[  565.537537]  ? kasan_check_write+0x14/0x20
[  565.541755]  ? graph_lock+0x170/0x170
[  565.545544]  ? exit_robust_list+0x290/0x290
[  565.549853]  ? find_held_lock+0x36/0x1c0
[  565.553905]  ? lock_downgrade+0x8e0/0x8e0
[  565.558043]  ? kasan_check_read+0x11/0x20
[  565.562174]  ? rcu_is_watching+0x85/0x140
[  565.566306]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  565.571485]  ? __fget+0x40c/0x650
[  565.574926]  ? expand_files.part.8+0x9a0/0x9a0
[  565.579489]  ? lock_downgrade+0x8e0/0x8e0
[  565.583624]  ? __split_vma+0x5ac/0x7f0
[  565.587497]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  565.593025]  ? vma_set_page_prot+0x239/0x300
[  565.597424]  ? kvm_set_memory_region+0x50/0x50
[  565.602027]  do_vfs_ioctl+0x1cf/0x16a0
[  565.605911]  ? ioctl_preallocate+0x2e0/0x2e0
[  565.610302]  ? fget_raw+0x20/0x20
[  565.613748]  ? __x64_sys_futex+0x477/0x680
[  565.617967]  ? do_futex+0x27d0/0x27d0
[  565.621753]  ? security_file_ioctl+0x94/0xc0
[  565.626149]  ksys_ioctl+0xa9/0xd0
[  565.629589]  __x64_sys_ioctl+0x73/0xb0
[  565.633470]  do_syscall_64+0x1b1/0x800
[  565.637350]  ? finish_task_switch+0x1ca/0x810
[  565.641831]  ? syscall_return_slowpath+0x5c0/0x5c0
[  565.646746]  ? syscall_return_slowpath+0x30f/0x5c0
[  565.651662]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  565.657020]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  565.661856]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  565.667032] RIP: 0033:0x455979
[  565.670465] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/05/02 02:14:16 executing program 1:
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = shmat(0xffffffffffffffff, &(0x7f0000010000/0x10000)=nil, 0x4000)
shmdt(r4)
r5 = userfaultfd(0x80000)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, &(0x7f0000000340)={0x0, 0x2, {0x0, 0x3, 0x3, 0x1, 0x1000}})
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000040)={0xaa})
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000440)=""/55)
ioctl$SG_GET_REQUEST_TABLE(r1, 0x2286, &(0x7f0000000180))
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r2, r1, 0x1, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000300)={0x0, 0x3f, 0x6, 0x2, 0xe1, 0x100, 0xfffffffffffff801}, 0xc)
r6 = add_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000140)="448771ae9798a7ee399f6bd533866d3140e91d81c18b55f26a8d3ed01d7854", 0x1f, 0x0)
keyctl$setperm(0x5, r6, 0x20000)
dup2(r2, r5)

[  565.678159] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  565.685412] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  565.692670] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  565.699925] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  565.707175] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  565.714562] warn_alloc_show_mem: 1 callbacks suppressed
[  565.714568] Mem-Info:
[  565.722456] active_anon:74483 inactive_anon:79 isolated_anon:0
[  565.722456]  active_file:3738 inactive_file:12099 isolated_file:0
[  565.722456]  unevictable:0 dirty:219 writeback:0 unstable:0
[  565.722456]  slab_reclaimable:10691 slab_unreclaimable:104359
[  565.722456]  mapped:73869 shmem:88 pagetables:1075 bounce:0
[  565.722456]  free:1327181 free_pcp:338 free_cma:0
[  565.756179] Node 0 active_anon:302104kB inactive_anon:316kB active_file:14952kB inactive_file:48396kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295576kB dirty:876kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 139264kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:14:16 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000046040000d0"], 0x1)

[  565.784326] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  565.810523] lowmem_reserve[]: 0 2830 6335 6335
2018/05/02 02:14:16 executing program 1:
r0 = syz_open_dev$mouse(&(0x7f0000000140)='/dev/input/mouse#\x00', 0x6, 0x800000000000000)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040)='/dev/snd/midiC#D#\x00', 0x7fff, 0x80400)
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x2b4340, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000300)={<r3=>0x0, @rand_addr, @loopback}, &(0x7f0000000340)=0xc)
ioctl$BLKROSET(r2, 0x125d, &(0x7f0000000380)=0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x20, 0x11, &(0x7f0000000580)=ANY=[@ANYRES16=r2, @ANYRES32=r0, @ANYBLOB="00000000000000009500000000000000000000000000000095000000000000000000000000000000850000000e000000000000000000000018180000", @ANYRES32=r1, @ANYBLOB="0000000000000000180000000100000000000000000400008500000003000000000000000000000018100000", @ANYPTR64, @ANYBLOB="00000000000000009500000000000000"], &(0x7f00000001c0), 0x80000000000006, 0xcb, &(0x7f0000000200)=""/203, 0x41f00, 0x1, [], r3}, 0x48)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$sndseq(r6, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
r7 = getpid()
fcntl$lock(r6, 0x5, &(0x7f0000000100)={0x1, 0x2, 0xacc5, 0x9, r7})
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000000)={0x0, @loopback, @broadcast}, &(0x7f0000000180)=0xc)
r8 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r8, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r8, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r6, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r5, r4, 0x1, 0x0)
dup2(r5, r8)

[  565.815204] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:640kB free_cma:0kB
[  565.842992] lowmem_reserve[]: 0 0 3505 3505
[  565.847429] Node 0 Normal free:2384532kB min:37300kB low:46624kB high:55948kB active_anon:302188kB inactive_anon:316kB active_file:14952kB inactive_file:48396kB unevictable:0kB writepending:876kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5792kB pagetables:4448kB bounce:0kB free_pcp:908kB local_pcp:344kB free_cma:0kB
[  565.877268] lowmem_reserve[]: 0 0 0 0
2018/05/02 02:14:16 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000067040000d0"], 0x1)

[  565.881128] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  565.894837] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  565.910715] Node 0 Normal: 1848*4kB (UME) 3263*8kB (UME) 2797*16kB (UME) 3020*32kB (UME) 1471*64kB (UME) 367*128kB (UM) 195*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 46*2048kB (UM) 438*4096kB (UM) = 2378600kB
2018/05/02 02:14:17 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000340000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  565.929704] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  565.938322] 15924 total pagecache pages
[  565.942337] 0 pages in swap cache
[  565.945826] Swap cache stats: add 0, delete 0, find 0/0
[  565.951221] Free swap  = 0kB
[  565.954258] Total swap = 0kB
[  565.957298] 1965969 pages RAM
[  565.960421] 0 pages HighMem/MovableOnly
[  565.964415] 339347 pages reserved
[  566.041549] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  566.053424] syz-executor4 cpuset=syz4 mems_allowed=0
[  566.058716] CPU: 1 PID: 29266 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  566.066085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  566.075436] Call Trace:
[  566.078038]  dump_stack+0x1b9/0x294
[  566.081691]  ? dump_stack_print_info.cold.2+0x52/0x52
[  566.086888]  ? perf_trace_lock_acquire+0xe3/0x980
[  566.091726]  warn_alloc.cold.118+0xb2/0x1b8
[  566.096039]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  566.100875]  ? trace_hardirqs_on+0xd/0x10
[  566.105018]  ? _raw_spin_unlock_irq+0x27/0x70
[  566.109506]  ? finish_task_switch+0x1ca/0x810
[  566.114049]  __vmalloc_node_range+0x45e/0x750
[  566.118540]  ? graph_lock+0x170/0x170
[  566.122334]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  566.127162]  __vmalloc_node_flags_caller+0x75/0x90
[  566.132081]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  566.136912]  kvmalloc_node+0xde/0x100
[  566.140704]  kvm_arch_create_memslot+0xa3/0x4e0
[  566.145375]  __kvm_set_memory_region+0x1d1b/0x2e50
[  566.150308]  ? kvm_vcpu_block+0x1050/0x1050
[  566.154614]  ? print_usage_bug+0xc0/0xc0
[  566.158669]  ? perf_trace_lock+0x900/0x900
[  566.162899]  ? lock_acquire+0x1dc/0x520
[  566.166861]  ? graph_lock+0x170/0x170
[  566.170655]  ? __might_sleep+0x95/0x190
[  566.174622]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  566.180148]  ? futex_wait_queue_me+0x550/0x820
[  566.184718]  ? __lock_acquire+0x7f5/0x5140
[  566.188941]  ? refill_pi_state_cache.part.7+0x300/0x300
[  566.194292]  ? find_held_lock+0x36/0x1c0
[  566.198348]  ? lock_downgrade+0x8e0/0x8e0
[  566.202512]  kvm_set_memory_region+0x2e/0x50
[  566.206929]  kvm_vm_ioctl+0x668/0x1d90
[  566.210811]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  566.216337]  ? __perf_event_task_sched_in+0x247/0xb80
[  566.221514]  ? kvm_set_memory_region+0x50/0x50
[  566.226091]  ? find_held_lock+0x36/0x1c0
[  566.230144]  ? perf_trace_lock_acquire+0xe3/0x980
[  566.234978]  ? perf_trace_lock+0x900/0x900
[  566.239201]  ? do_futex+0x249/0x27d0
[  566.242902]  ? kasan_check_read+0x11/0x20
[  566.247041]  ? graph_lock+0x170/0x170
[  566.250830]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  566.255405]  ? compat_start_thread+0x80/0x80
[  566.259802]  ? _raw_spin_unlock_irq+0x27/0x70
[  566.264284]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  566.269290]  ? exit_robust_list+0x290/0x290
[  566.273601]  ? find_held_lock+0x36/0x1c0
[  566.277659]  ? lock_downgrade+0x8e0/0x8e0
[  566.281799]  ? kasan_check_read+0x11/0x20
[  566.285933]  ? rcu_is_watching+0x85/0x140
[  566.290071]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  566.295257]  ? __fget+0x40c/0x650
[  566.298702]  ? do_raw_spin_unlock+0x1/0x2e0
[  566.303028]  ? expand_files.part.8+0x9a0/0x9a0
[  566.307607]  ? kasan_check_write+0x14/0x20
[  566.311828]  ? do_raw_spin_lock+0xc1/0x200
[  566.316077]  ? kvm_set_memory_region+0x50/0x50
[  566.320649]  do_vfs_ioctl+0x1cf/0x16a0
[  566.324528]  ? ioctl_preallocate+0x2e0/0x2e0
[  566.328927]  ? fget_raw+0x20/0x20
[  566.332374]  ? __x64_sys_futex+0x477/0x680
[  566.336598]  ? exit_to_usermode_loop+0x87/0x310
[  566.341256]  ? do_futex+0x27d0/0x27d0
[  566.345050]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  566.350574]  ? security_file_ioctl+0x94/0xc0
[  566.354974]  ksys_ioctl+0xa9/0xd0
[  566.358417]  __x64_sys_ioctl+0x73/0xb0
[  566.362291]  do_syscall_64+0x1b1/0x800
[  566.366166]  ? finish_task_switch+0x1ca/0x810
[  566.370649]  ? syscall_return_slowpath+0x5c0/0x5c0
[  566.375570]  ? syscall_return_slowpath+0x30f/0x5c0
[  566.380488]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  566.385851]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  566.390685]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  566.395862] RIP: 0033:0x455979
[  566.399036] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  566.406737] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  566.413991] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  566.421247] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  566.428502] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  566.435754] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:17 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000005000)='/dev/sg#\x00', 0x0, 0x8002)
write(r0, &(0x7f0000bfa000)="b6d3b85e1e8d225db3f3b29d7300000005cc796aed5ed2bc7018ce2c9b97ae21914d870000ffffbc9b16", 0x2a)
write(r0, &(0x7f0000e8efa7)="dbef803e3d9f5de1e52055bb7c8a326fe46092b6682d9ad789c5d7acad0e771f13d8cb59029b011ded54a09c41c6cfcfbcd743cc665c32af223d42438b496a0304891c88697aff07d4a70f330e6fe3a1c9c76f314ffab329", 0xffffffffffffff3b)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000100)="e59bc0530501a950a450a4ba9732cac72f9ed1a7f8c1bf597ea6feb27c620000b564c5747ac6a9617891a246d3f280b1996532c3", 0x34}], 0x178)
ioctl$sock_inet_SIOCSARP(r0, 0x227c, &(0x7f000035bfbc)={{0x2, 0x0, @rand_addr}, {}, 0x0, {0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}})

2018/05/02 02:14:17 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000006c89626c170000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@remote, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@rand_addr}, 0x0, @in=@remote}}, &(0x7f0000000140)=0xe8)
setfsuid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x20400, 0x0)
ioctl$PIO_FONT(r2, 0x4b61, &(0x7f0000000080)="2889")
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe2(&(0x7f0000000480)={0x0, <r4=>0x0}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, &(0x7f0000000240)="370f32ba2000b001ee0f01c9baf80c66b810813a8e66efbafc0ced66b8010000000f01c1360f01cf670f200766b9800000c00f326635010000000f30673e662e660cee", 0x43}], 0x1, 0x0, &(0x7f0000000080), 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r6 = dup3(r5, r4, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SMI(r6, 0xaeb7)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
arch_prctl(0x0, &(0x7f0000000100)="6c254dfaef0faa")
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, &(0x7f00000001c0)="c441c1dba20068000066baf80cb8c65f4f8aef66bafc0c66b8dc0366efc481f8ae583566b86c008ed0470f01ee66bad004b800000000efac66b8fd000f00d80f01df0f35", 0x44}], 0x0, 0x0, &(0x7f0000000240), 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$VT_WAITACTIVE(r4, 0x5607)
ioctl$KVM_SET_CPUID(r5, 0x4008ae8a, &(0x7f00000002c0)=ANY=[])
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

2018/05/02 02:14:17 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(0xffffffffffffffff, r0, 0x0)

2018/05/02 02:14:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x2000000, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:17 executing program 7:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
sendto$inet6(r1, &(0x7f0000003fd9), 0x0, 0x0, &(0x7f0000008000)={0xa, 0x0, 0xf}, 0x1c)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000040)={'veth1_to_team\x00', {0x2, 0x4e21, @local={0xac, 0x14, 0x14, 0xaa}}})
r2 = fcntl$dupfd(r0, 0x0, r1)
getsockopt$kcm_KCM_RECV_DISABLE(r2, 0x119, 0x1, &(0x7f0000000740), 0x4)

2018/05/02 02:14:17 executing program 1:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$sndseq(r2, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x807)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r1, r0, 0x1, 0x0)
dup2(r1, r3)

2018/05/02 02:14:17 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c3040000d0"], 0x1)

[  566.758156] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  566.769987] syz-executor4 cpuset=syz4 mems_allowed=0
[  566.775201] CPU: 1 PID: 29288 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  566.782476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  566.791828] Call Trace:
[  566.794414]  dump_stack+0x1b9/0x294
[  566.798053]  ? dump_stack_print_info.cold.2+0x52/0x52
[  566.803242]  ? graph_lock+0x170/0x170
[  566.807049]  warn_alloc.cold.118+0xb2/0x1b8
[  566.811368]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  566.816209]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  566.822266]  ? update_load_avg+0x2d9/0x2570
[  566.826574]  ? graph_lock+0x170/0x170
[  566.830370]  __vmalloc_node_range+0x45e/0x750
[  566.834857]  ? graph_lock+0x170/0x170
[  566.838651]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  566.843481]  __vmalloc_node_flags_caller+0x75/0x90
[  566.848401]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  566.853406]  kvmalloc_node+0xde/0x100
[  566.857194]  kvm_arch_create_memslot+0xa3/0x4e0
[  566.861859]  __kvm_set_memory_region+0x1d1b/0x2e50
[  566.866788]  ? kvm_vcpu_block+0x1050/0x1050
[  566.871096]  ? print_usage_bug+0xc0/0xc0
[  566.875150]  ? lock_downgrade+0x8e0/0x8e0
[  566.879294]  ? lock_downgrade+0x8e0/0x8e0
[  566.883435]  ? graph_lock+0x170/0x170
[  566.887225]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  566.891797]  ? __lock_acquire+0x7f5/0x5140
[  566.896027]  ? trace_hardirqs_on+0xd/0x10
[  566.900179]  ? find_held_lock+0x36/0x1c0
[  566.904237]  ? lock_downgrade+0x8e0/0x8e0
[  566.908398]  kvm_set_memory_region+0x2e/0x50
[  566.912795]  kvm_vm_ioctl+0x668/0x1d90
[  566.916676]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  566.922203]  ? __perf_event_task_sched_in+0x247/0xb80
[  566.927384]  ? kvm_set_memory_region+0x50/0x50
[  566.931966]  ? find_held_lock+0x36/0x1c0
[  566.936035]  ? lock_downgrade+0x8e0/0x8e0
[  566.940170]  ? finish_task_switch+0x182/0x810
[  566.944660]  ? kasan_check_read+0x11/0x20
[  566.948797]  ? graph_lock+0x170/0x170
[  566.952583]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  566.957155]  ? compat_start_thread+0x80/0x80
[  566.961552]  ? _raw_spin_unlock_irq+0x27/0x70
[  566.966045]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  566.972090]  ? trace_hardirqs_on+0xd/0x10
[  566.976227]  ? _raw_spin_unlock_irq+0x27/0x70
[  566.980713]  ? find_held_lock+0x36/0x1c0
[  566.984770]  ? lock_downgrade+0x8e0/0x8e0
[  566.988910]  ? kasan_check_read+0x11/0x20
[  566.993045]  ? rcu_is_watching+0x85/0x140
[  566.997188]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  567.002374]  ? __fget+0x40c/0x650
[  567.005821]  ? expand_files.part.8+0x9a0/0x9a0
[  567.010387]  ? lock_downgrade+0x8e0/0x8e0
[  567.014527]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  567.020053]  ? vma_set_page_prot+0x239/0x300
[  567.024452]  ? kvm_set_memory_region+0x50/0x50
[  567.029030]  do_vfs_ioctl+0x1cf/0x16a0
[  567.032913]  ? ioctl_preallocate+0x2e0/0x2e0
[  567.037309]  ? fget_raw+0x20/0x20
[  567.040759]  ? exit_to_usermode_loop+0x87/0x310
[  567.045432]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  567.050970]  ? security_file_ioctl+0x94/0xc0
[  567.055389]  ksys_ioctl+0xa9/0xd0
[  567.058833]  __x64_sys_ioctl+0x73/0xb0
[  567.062712]  do_syscall_64+0x1b1/0x800
[  567.066588]  ? syscall_return_slowpath+0x5c0/0x5c0
[  567.071506]  ? syscall_return_slowpath+0x30f/0x5c0
[  567.076427]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  567.081799]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  567.086634]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  567.091809] RIP: 0033:0x455979
[  567.094982] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  567.102692] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
2018/05/02 02:14:18 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000ab040000d0"], 0x1)

[  567.109946] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  567.117199] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  567.124460] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  567.131718] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  567.139225] warn_alloc_show_mem: 1 callbacks suppressed
[  567.139228] Mem-Info:
[  567.147083] active_anon:75535 inactive_anon:80 isolated_anon:0
[  567.147083]  active_file:3739 inactive_file:12113 isolated_file:0
[  567.147083]  unevictable:0 dirty:233 writeback:0 unstable:0
[  567.147083]  slab_reclaimable:10691 slab_unreclaimable:104487
[  567.147083]  mapped:73861 shmem:88 pagetables:1085 bounce:0
[  567.147083]  free:1325931 free_pcp:380 free_cma:0
[  567.180763] Node 0 active_anon:306352kB inactive_anon:320kB active_file:14956kB inactive_file:48452kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295444kB dirty:932kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 135168kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:14:18 executing program 5:
r0 = socket$inet6(0xa, 0x1, 0x8010000000000080)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f00000000c0)=ANY=[@ANYRES32=<r1=>0x0, @ANYBLOB='\x00\x00\b@'], &(0x7f00000001c0)=0x8)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000200)=@sack_info={r1, 0x8311, 0xb71}, 0xc)
bind$inet6(r0, &(0x7f000070ffe3)={0xa, 0x4e20}, 0x1c)
dup(r0)
getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000000000)={<r2=>0x0, @empty, @dev}, &(0x7f0000000040)=0xc)
ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000080)={@remote={0xfe, 0x80, [], 0xbb}, 0x6, r2})
sendto$inet6(r0, &(0x7f000023effe)="d5", 0x1, 0x0, &(0x7f000010e000)={0xa, 0x4e20, 0x0, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}}, 0x1c)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000001980)={0x0, 0x8c, "2f3aa23c2ff23a5b280e5ea5251f72c62b8bf7bd26dc51020aeb51c8e418e0c7a59c3b10e70fc9ce191db4cff838a36ae0012d7fd4f29776f56eb189149a838828b73e8f1e559fef88dce4cbf8e95ff9e8037c27ea7aa3d44655fded7fbe85d3808b36dbe282ff399627ab37c0f79b21918ed7f3cbd4629584e264786be6379b7615add837638885aa832c56"}, &(0x7f0000000280)=0x94)

2018/05/02 02:14:18 executing program 1:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
io_setup(0x81, &(0x7f00000001c0)=<r1=>0x0)
io_destroy(r1)
sendto$ax25(r0, &(0x7f0000000180)="10ad3b139283cee0cd15688d40161ea78120a930aa62f9fa8ee20019d8f9fc", 0x1f, 0x20000000, 0x0, 0x0)
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r2, r0, 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={<r5=>0x0, <r6=>0x0})
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000100)=[{0x4, 0xd6}, {0x8, 0x7}, {0x3, 0x1000}, {0x2, 0x2}, {0x4}, {0x0, 0x43}, {0xc, 0x5}, {0x3, 0x9}, {0x2}, {0x8, 0xf5}], 0xa)
timerfd_settime(r3, 0x1, &(0x7f0000000040)={{}, {r5, r6+30000000}}, &(0x7f00000000c0))
dup2(r2, r4)

[  567.208919] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  567.235101] lowmem_reserve[]: 0 2830 6335 6335
[  567.239767] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:728kB local_pcp:92kB free_cma:0kB
[  567.267427] lowmem_reserve[]: 0 0 3505 3505
[  567.271833] Node 0 Normal free:2387452kB min:37300kB low:46624kB high:55948kB active_anon:302152kB inactive_anon:320kB active_file:14956kB inactive_file:48452kB unevictable:0kB writepending:932kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5696kB pagetables:4340kB bounce:0kB free_pcp:728kB local_pcp:200kB free_cma:0kB
[  567.301652] lowmem_reserve[]: 0 0 0 0
[  567.305532] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  567.319217] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  567.335126] Node 0 Normal: 1912*4kB (UME) 3199*8kB (UME) 2807*16kB (UME) 3021*32kB (UME) 1471*64kB (UME) 367*128kB (UM) 195*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 49*2048kB (UM) 438*4096kB (UM) = 2384680kB
2018/05/02 02:14:18 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000003f000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:18 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000094040000d0"], 0x1)

[  567.354075] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  567.362717] 15939 total pagecache pages
[  567.366721] 0 pages in swap cache
[  567.370211] Swap cache stats: add 0, delete 0, find 0/0
[  567.375609] Free swap  = 0kB
[  567.378654] Total swap = 0kB
[  567.381699] 1965969 pages RAM
[  567.384825] 0 pages HighMem/MovableOnly
[  567.388829] 339347 pages reserved
2018/05/02 02:14:18 executing program 5:
r0 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8), 0x8)
mkdir(&(0x7f0000508ff6)='./control\x00', 0x0)
read(r0, &(0x7f0000e6d000)=""/384, 0x180)
r1 = signalfd(r0, &(0x7f0000432ff8)={0xfffffffffffffffe}, 0x8)
fsetxattr(r1, &(0x7f0000000000)=@known='com.apple.FinderInfo\x00', &(0x7f0000000040)='selfGPL)+\'user,vboxnet0md5sum)$proc#trusted{..vboxnet1md5sum!}em1\x00', 0x42, 0x2)
r2 = inotify_init1(0x0)
fcntl$setstatus(r2, 0x4, 0x72109c5fef5d34d3)
r3 = gettid()
fcntl$setown(r2, 0x8, r3)
rt_sigprocmask(0x0, &(0x7f000003b000)={0xbffffffffffffffe}, 0x0, 0x8)
fcntl$setsig(r2, 0xa, 0x20)
inotify_add_watch(r2, &(0x7f00007a7000)='./control\x00', 0xa4000960)
open(&(0x7f00003f5000)='./control\x00', 0x0, 0x0)

[  567.453263] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  567.465096] syz-executor4 cpuset=syz4 mems_allowed=0
[  567.470287] CPU: 1 PID: 29319 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  567.477563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  567.486920] Call Trace:
[  567.489516]  dump_stack+0x1b9/0x294
[  567.493161]  ? dump_stack_print_info.cold.2+0x52/0x52
[  567.498366]  ? perf_trace_lock_acquire+0xe3/0x980
2018/05/02 02:14:18 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000077040000d0"], 0x1)

[  567.503228]  warn_alloc.cold.118+0xb2/0x1b8
[  567.507564]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  567.512519]  __vmalloc_node_range+0x45e/0x750
[  567.517026]  ? graph_lock+0x170/0x170
[  567.520840]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  567.525693]  __vmalloc_node_flags_caller+0x75/0x90
[  567.530633]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  567.535491]  kvmalloc_node+0xde/0x100
[  567.539304]  kvm_arch_create_memslot+0xa3/0x4e0
[  567.544001]  __kvm_set_memory_region+0x1d1b/0x2e50
[  567.548962]  ? kvm_vcpu_block+0x1050/0x1050
2018/05/02 02:14:18 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c1040000d0"], 0x1)

[  567.553304]  ? perf_trace_lock+0x900/0x900
[  567.557557]  ? graph_lock+0x170/0x170
[  567.561383]  ? find_held_lock+0x36/0x1c0
[  567.565466]  ? lock_downgrade+0x8e0/0x8e0
[  567.569654]  kvm_set_memory_region+0x2e/0x50
[  567.574075]  kvm_vm_ioctl+0x668/0x1d90
[  567.577974]  ? __lock_acquire+0x7f5/0x5140
[  567.582221]  ? kvm_set_memory_region+0x50/0x50
[  567.586816]  ? debug_check_no_locks_freed+0x310/0x310
[  567.592015]  ? perf_trace_lock_acquire+0xe3/0x980
[  567.596876]  ? perf_trace_lock+0x900/0x900
2018/05/02 02:14:18 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000bb040000d0"], 0x1)

[  567.601125]  ? graph_lock+0x170/0x170
[  567.604938]  ? perf_trace_lock_acquire+0xe3/0x980
[  567.609809]  ? find_held_lock+0x36/0x1c0
[  567.613889]  ? lock_downgrade+0x8e0/0x8e0
[  567.618055]  ? kasan_check_read+0x11/0x20
[  567.622214]  ? rcu_is_watching+0x85/0x140
[  567.626376]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  567.631587]  ? __fget+0x40c/0x650
[  567.635052]  ? do_raw_spin_unlock+0x1/0x2e0
[  567.639377]  ? expand_files.part.8+0x9a0/0x9a0
[  567.645450]  ? kasan_check_write+0x14/0x20
[  567.649690]  ? do_raw_spin_lock+0xc1/0x200
2018/05/02 02:14:18 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000009c040000d0"], 0x1)

[  567.653939]  ? _raw_spin_unlock+0x22/0x30
[  567.658104]  ? kvm_set_memory_region+0x50/0x50
[  567.662693]  do_vfs_ioctl+0x1cf/0x16a0
[  567.666597]  ? ioctl_preallocate+0x2e0/0x2e0
[  567.671014]  ? fget_raw+0x20/0x20
[  567.674482]  ? lock_downgrade+0x8e0/0x8e0
[  567.678634]  ? finish_task_switch+0x182/0x810
[  567.683141]  ? security_file_ioctl+0x94/0xc0
[  567.687559]  ksys_ioctl+0xa9/0xd0
[  567.691021]  __x64_sys_ioctl+0x73/0xb0
[  567.694919]  do_syscall_64+0x1b1/0x800
[  567.698817]  ? finish_task_switch+0x1ca/0x810
[  567.703319]  ? syscall_return_slowpath+0x5c0/0x5c0
[  567.708257]  ? syscall_return_slowpath+0x30f/0x5c0
[  567.713201]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  567.718581]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  567.723434]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  567.728625] RIP: 0033:0x455979
[  567.731816] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  567.739531] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  567.746806] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  567.754075] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  567.761345] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  567.768616] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:18 executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x5, 0x7f, 0x1, 0x3, 0x0, 0xffffffffffffff9c}, 0x2c)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x6, 0x602240)
setsockopt$RDS_CANCEL_SENT_TO(r1, 0x114, 0x1, &(0x7f0000000080)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000214fd4)={0xc, 0x4, 0x4, 0x7fffffff, 0x0, r0, 0x0, [0x305f]}, 0x2c)

2018/05/02 02:14:18 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000001000d0040000d0"], 0x1)

2018/05/02 02:14:18 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, 0xffffffffffffffff, 0x0)

2018/05/02 02:14:18 executing program 7:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup3(r2, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x7})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendmsg$netrom(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000001c0)=@full={{0x3, {"447f4169709be6"}}, [{"9ddfcd991aeea6"}, {"b92c5306652f8f"}, {"ce623e28e2833f"}, {"02ea73fd100894"}, {"b9c88d6494bca4"}, {"663c923b8dbec7"}, {"70bfc4c33d1951"}, {"30991d33860384"}]}, 0x48, &(0x7f0000000140), 0x10e, &(0x7f0000000000), 0x0, 0x8000}, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000de9000)=[@text64={0x40, &(0x7f00000002c0)="b805000000b9000000000f01d98f8958010967420f0966ba410066b8030066ef83b90d0000000d440fc71d00000000654a0f01c80fd42e660fd4556fb9730200000f32"}], 0xaaaaaaaaaaaab20, 0x0, &(0x7f0000000140), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="0fec8cdfffb8b6008ec8baa100ed8044dca70f005943f3f30f236f66b9360200000f32f4653ef30fbc9e544d0f229c", 0x2f}], 0x1, 0x0, &(0x7f0000000140), 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
memfd_create(&(0x7f0000000080)='/dev/kvm\x00', 0x1)
setsockopt$inet6_icmp_ICMP_FILTER(r3, 0x1, 0x1, &(0x7f0000000100)={0x9}, 0x4)
ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f0000000000)={0xbe65, 0x2})

2018/05/02 02:14:18 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="0203000910ffffff80000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:18 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x60000000, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

[  567.887312] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  567.899380] syz-executor4 cpuset=syz4 mems_allowed=0
[  567.904607] CPU: 0 PID: 29356 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  567.911887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  567.921247] Call Trace:
[  567.923850]  dump_stack+0x1b9/0x294
[  567.927494]  ? dump_stack_print_info.cold.2+0x52/0x52
[  567.932695]  ? graph_lock+0x170/0x170
[  567.936514]  warn_alloc.cold.118+0xb2/0x1b8
[  567.940855]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  567.945717]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  567.951800]  ? update_load_avg+0x2d9/0x2570
[  567.956137]  ? graph_lock+0x170/0x170
[  567.959955]  __vmalloc_node_range+0x45e/0x750
[  567.964465]  ? graph_lock+0x170/0x170
[  567.968269]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  567.973106]  __vmalloc_node_flags_caller+0x75/0x90
[  567.978030]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  567.982869]  kvmalloc_node+0xde/0x100
[  567.986662]  kvm_arch_create_memslot+0xa3/0x4e0
[  567.991325]  __kvm_set_memory_region+0x1d1b/0x2e50
[  567.996247]  ? kvm_vcpu_block+0x1050/0x1050
[  568.000576]  ? print_usage_bug+0xc0/0xc0
[  568.004626]  ? lock_downgrade+0x8e0/0x8e0
[  568.008757]  ? lock_downgrade+0x8e0/0x8e0
[  568.012892]  ? graph_lock+0x170/0x170
[  568.016712]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  568.021321]  ? __lock_acquire+0x7f5/0x5140
[  568.025543]  ? trace_hardirqs_on+0xd/0x10
[  568.029676]  ? find_held_lock+0x36/0x1c0
[  568.033728]  ? lock_downgrade+0x8e0/0x8e0
[  568.037878]  kvm_set_memory_region+0x2e/0x50
[  568.042271]  kvm_vm_ioctl+0x668/0x1d90
[  568.046151]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  568.051682]  ? __perf_event_task_sched_in+0x247/0xb80
[  568.056859]  ? kvm_set_memory_region+0x50/0x50
[  568.061431]  ? find_held_lock+0x36/0x1c0
[  568.065482]  ? lock_downgrade+0x8e0/0x8e0
[  568.069612]  ? finish_task_switch+0x182/0x810
[  568.074095]  ? kasan_check_read+0x11/0x20
[  568.078227]  ? graph_lock+0x170/0x170
[  568.082012]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  568.086584]  ? compat_start_thread+0x80/0x80
[  568.090979]  ? _raw_spin_unlock_irq+0x27/0x70
[  568.095467]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  568.100474]  ? trace_hardirqs_on+0xd/0x10
[  568.104604]  ? _raw_spin_unlock_irq+0x27/0x70
[  568.109083]  ? find_held_lock+0x36/0x1c0
[  568.113131]  ? lock_downgrade+0x8e0/0x8e0
[  568.117266]  ? kasan_check_read+0x11/0x20
[  568.121395]  ? rcu_is_watching+0x85/0x140
[  568.125532]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  568.130711]  ? __fget+0x40c/0x650
[  568.134162]  ? expand_files.part.8+0x9a0/0x9a0
[  568.138725]  ? lock_downgrade+0x8e0/0x8e0
[  568.142865]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  568.148390]  ? vma_set_page_prot+0x239/0x300
[  568.152785]  ? kvm_set_memory_region+0x50/0x50
[  568.157361]  do_vfs_ioctl+0x1cf/0x16a0
[  568.161236]  ? ioctl_preallocate+0x2e0/0x2e0
[  568.165635]  ? fget_raw+0x20/0x20
[  568.169078]  ? exit_to_usermode_loop+0x87/0x310
[  568.173745]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  568.179269]  ? security_file_ioctl+0x94/0xc0
[  568.183661]  ksys_ioctl+0xa9/0xd0
[  568.187101]  __x64_sys_ioctl+0x73/0xb0
[  568.190971]  do_syscall_64+0x1b1/0x800
[  568.194839]  ? finish_task_switch+0x1ca/0x810
[  568.199318]  ? syscall_return_slowpath+0x5c0/0x5c0
[  568.204230]  ? syscall_return_slowpath+0x30f/0x5c0
[  568.209233]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  568.214582]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  568.219413]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  568.224586] RIP: 0033:0x455979
[  568.227765] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/05/02 02:14:19 executing program 2:
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @mcast1={0xff, 0x1, [], 0x1}, 0x4}, 0x7c)
sendmmsg(r0, &(0x7f0000007e00)=[{{0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f00000003c0)}}, {{&(0x7f00000004c0)=@in6={0xa, 0x4e22, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c, &(0x7f0000000680), 0x0, &(0x7f0000000240)=[{0x28, 0x29, 0x2, "2b07df2fd0846bc0964f4ffde3d917e382"}], 0x28}}], 0x2, 0x0)
r1 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x40201)
getsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000140)=@assoc_value={<r2=>0x0, 0x4}, &(0x7f0000000180)=0x8)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000001c0)={r2, 0x1, 0x20}, 0xc)
r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x10000, 0x0)
mq_getsetattr(r3, &(0x7f0000000040)={0x7ff, 0xfffffffffffffff8, 0x4, 0x2, 0x4, 0x800, 0x2, 0x2}, &(0x7f00000000c0))

2018/05/02 02:14:19 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000ffd0040000d0"], 0x1)

[  568.235460] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  568.242711] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  568.249968] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  568.257218] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  568.264558] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  568.271993] warn_alloc_show_mem: 1 callbacks suppressed
[  568.271996] Mem-Info:
[  568.279880] active_anon:79154 inactive_anon:78 isolated_anon:0
[  568.279880]  active_file:3739 inactive_file:12120 isolated_file:0
[  568.279880]  unevictable:0 dirty:240 writeback:0 unstable:0
[  568.279880]  slab_reclaimable:10705 slab_unreclaimable:104514
[  568.279880]  mapped:73885 shmem:88 pagetables:1108 bounce:0
[  568.279880]  free:1321738 free_pcp:280 free_cma:0
[  568.313566] Node 0 active_anon:318820kB inactive_anon:312kB active_file:14956kB inactive_file:48480kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295540kB dirty:960kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 155648kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  568.341750] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  568.367960] lowmem_reserve[]: 0 2830 6335 6335
[  568.372637] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:728kB local_pcp:636kB free_cma:0kB
[  568.400604] lowmem_reserve[]: 0 0 3505 3505
[  568.404997] Node 0 Normal free:2374724kB min:37300kB low:46624kB high:55948kB active_anon:312504kB inactive_anon:312kB active_file:14956kB inactive_file:48480kB unevictable:0kB writepending:960kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5792kB pagetables:4432kB bounce:0kB free_pcp:740kB local_pcp:32kB free_cma:0kB
[  568.434783] lowmem_reserve[]: 0 0 0 0
[  568.438659] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  568.452351] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  568.468236] Node 0 Normal: 1974*4kB (UME) 3153*8kB (UME) 2907*16kB (UME) 3021*32kB (UME) 1472*64kB (UME) 366*128kB (UM) 195*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 44*2048kB (UM) 438*4096kB (UM) = 2375856kB
[  568.487265] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  568.495887] 15946 total pagecache pages
[  568.499898] 0 pages in swap cache
[  568.503388] Swap cache stats: add 0, delete 0, find 0/0
[  568.508778] Free swap  = 0kB
[  568.511834] Total swap = 0kB
[  568.514901] 1965969 pages RAM
[  568.518054] 0 pages HighMem/MovableOnly
[  568.522067] 339347 pages reserved
[  568.554400] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  568.566250] syz-executor4 cpuset=syz4 mems_allowed=0
[  568.571462] CPU: 0 PID: 29377 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  568.578730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  568.588068] Call Trace:
[  568.590646]  dump_stack+0x1b9/0x294
[  568.594263]  ? dump_stack_print_info.cold.2+0x52/0x52
[  568.599465]  warn_alloc.cold.118+0xb2/0x1b8
[  568.603802]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  568.608664]  __vmalloc_node_range+0x45e/0x750
[  568.613148]  ? graph_lock+0x170/0x170
[  568.616937]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  568.621780]  __vmalloc_node_flags_caller+0x75/0x90
[  568.626703]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  568.631545]  kvmalloc_node+0xde/0x100
[  568.635336]  kvm_arch_create_memslot+0xa3/0x4e0
[  568.640005]  __kvm_set_memory_region+0x1d1b/0x2e50
[  568.644959]  ? kvm_vcpu_block+0x1050/0x1050
[  568.649297]  ? graph_lock+0x170/0x170
[  568.653121]  ? find_held_lock+0x36/0x1c0
[  568.657200]  ? lock_downgrade+0x8e0/0x8e0
[  568.661394]  kvm_set_memory_region+0x2e/0x50
[  568.665817]  kvm_vm_ioctl+0x668/0x1d90
[  568.669714]  ? __lock_acquire+0x7f5/0x5140
[  568.673969]  ? kvm_set_memory_region+0x50/0x50
[  568.678567]  ? debug_check_no_locks_freed+0x310/0x310
[  568.683784]  ? print_usage_bug+0xc0/0xc0
[  568.687839]  ? graph_lock+0x170/0x170
[  568.691631]  ? find_held_lock+0x36/0x1c0
[  568.695694]  ? lock_downgrade+0x8e0/0x8e0
[  568.699830]  ? kasan_check_read+0x11/0x20
[  568.703977]  ? rcu_is_watching+0x85/0x140
[  568.708117]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  568.713307]  ? __fget+0x40c/0x650
[  568.716766]  ? do_raw_spin_unlock+0x1/0x2e0
[  568.721072]  ? expand_files.part.8+0x9a0/0x9a0
[  568.725637]  ? kasan_check_write+0x14/0x20
[  568.729854]  ? do_raw_spin_lock+0xc1/0x200
[  568.734085]  ? _raw_spin_unlock+0x22/0x30
[  568.738218]  ? kvm_set_memory_region+0x50/0x50
[  568.742793]  do_vfs_ioctl+0x1cf/0x16a0
[  568.746676]  ? ioctl_preallocate+0x2e0/0x2e0
[  568.751074]  ? fget_raw+0x20/0x20
[  568.754511]  ? lock_downgrade+0x8e0/0x8e0
[  568.758651]  ? finish_task_switch+0x182/0x810
[  568.763219]  ? security_file_ioctl+0x94/0xc0
[  568.767622]  ksys_ioctl+0xa9/0xd0
[  568.771080]  __x64_sys_ioctl+0x73/0xb0
[  568.774969]  do_syscall_64+0x1b1/0x800
[  568.778858]  ? finish_task_switch+0x1ca/0x810
[  568.783343]  ? syscall_return_slowpath+0x5c0/0x5c0
[  568.788261]  ? syscall_return_slowpath+0x30f/0x5c0
[  568.793179]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  568.798544]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  568.803395]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  568.808587] RIP: 0033:0x455979
[  568.811773] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  568.819488] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  568.826757] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  568.834015] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  568.841277] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  568.848527] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:19 executing program 7:
r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x20000, 0x0)
getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000440), 0x4)
ioctl$SG_GET_PACK_ID(r1, 0x227c, &(0x7f0000000100))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
rmdir(&(0x7f0000000400)='./file0\x00')
write$vnet(r0, &(0x7f0000000300)={0x1, {&(0x7f0000000140)=""/141, 0x8d, &(0x7f0000000200)=""/241}}, 0x68)
getsockopt$IP_VS_SO_GET_DAEMON(r1, 0x0, 0x487, &(0x7f0000000380), &(0x7f00000003c0)=0x30)
ioctl$SG_SET_DEBUG(r1, 0x227e, &(0x7f00000000c0))

2018/05/02 02:14:19 executing program 5:
mmap(&(0x7f0000000000/0xfda000)=nil, 0xfda000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$urandom(&(0x7f0000000080)='/dev/urandom\x00', 0x0, 0xffffffffffffffff)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/route\x00')
r2 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x0)
socketpair(0xe, 0x806, 0x200, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={r2, 0xfffffffffffffe01, 0xb6, r3})
write$eventfd(r0, &(0x7f0000456000), 0x8)
sendto$ax25(r3, &(0x7f0000000140)="5ed267f0920a6e1748b59ab0a2fa0710c7c8fcbabdfe009433957e5714ddedc2516a5c489f94dfb895b4753642238d2ee31d5e889abc9b6f6be846977a1ad016dae0f29d899ef2f673bffd4d2234240888c1dbc622ca04b826c69f884cb30e9697b69e9b60bcb7bedee8a60182aa99b772eb6be01da4d77ef044dda69f5c84ab31f0f465", 0x84, 0x4000000, &(0x7f0000000200)={0x3, {"5e1721c84c29a1"}, 0x1}, 0x10)

2018/05/02 02:14:19 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, 0xffffffffffffffff, 0x0)

2018/05/02 02:14:19 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000176c62896c00000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x240a, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:19 executing program 1:
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80000)
pipe2(&(0x7f0000000040), 0x800)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000000)=0x304, 0x4)
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r2, r1, 0x1, 0x0)
dup2(r2, r4)

2018/05/02 02:14:19 executing program 2:
openat$urandom(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/urandom\x00', 0x400000, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f0000000000)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000010dfc)={0x14, 0x6, 0x1, 0xfffffffbffffffff}, 0x14}, 0x1}, 0x0)

2018/05/02 02:14:19 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000b5040000d0"], 0x1)

2018/05/02 02:14:20 executing program 5:
r0 = socket$inet6(0xa, 0x2000000000001, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000140)=0x5c812861, 0xc5)
setsockopt$inet6_int(r0, 0x29, 0x100000000002, &(0x7f0000ad2ffc)=0x1, 0x4)
bind$inet6(r0, &(0x7f0000402000)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c)
sendto$inet6(r0, &(0x7f00007a8fff), 0x0, 0xfffffefffffffffe, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c)
r1 = socket$inet6(0xa, 0x5, 0x6)
setsockopt$inet6_tcp_int(r1, 0x6, 0x11, &(0x7f0000000240)=0x18, 0x4)
getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000000040)=""/95, &(0x7f00000000c0)=0x15)
socketpair$inet_tcp(0x2, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
syz_open_dev$usbmon(&(0x7f0000000280)='/dev/usbmon#\x00', 0x7, 0x501900)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000200)={0x7, &(0x7f00000001c0)=[{0xfffffffffffffff7, 0x8000, 0x4, 0x3}, {0x0, 0x400, 0x7, 0xff}, {0x9, 0x803, 0x8001, 0x1}, {0x93, 0x101, 0x47, 0xffffffff00000001}, {0x5, 0x0, 0x400, 0x8001}, {0xfcc8, 0x3, 0x7fffffff, 0x1be}, {0x224b, 0x2, 0x100, 0x59}]}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000001000)={0x0, @in6={{0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}}}, 0x98)
getsockopt$inet6_buf(r3, 0x29, 0x30, &(0x7f0000001000)=""/144, &(0x7f00006efffc)=0x90)
setrlimit(0xf, &(0x7f0000000100)={0x85b, 0xe5f})

[  568.952627] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  568.964495] syz-executor4 cpuset=syz4 mems_allowed=0
[  568.969700] CPU: 1 PID: 29401 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  568.976981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  568.986342] Call Trace:
[  568.989033]  dump_stack+0x1b9/0x294
[  568.992684]  ? dump_stack_print_info.cold.2+0x52/0x52
[  568.997897]  ? perf_trace_lock_acquire+0xe3/0x980
[  569.002765]  warn_alloc.cold.118+0xb2/0x1b8
[  569.007106]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  569.011965]  ? trace_hardirqs_on+0xd/0x10
[  569.016135]  ? _raw_spin_unlock_irq+0x27/0x70
[  569.020643]  ? finish_task_switch+0x1ca/0x810
[  569.025169]  __vmalloc_node_range+0x45e/0x750
[  569.029665]  ? graph_lock+0x170/0x170
[  569.033463]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  569.038301]  __vmalloc_node_flags_caller+0x75/0x90
[  569.043225]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  569.048074]  kvmalloc_node+0xde/0x100
[  569.051870]  kvm_arch_create_memslot+0xa3/0x4e0
[  569.056541]  __kvm_set_memory_region+0x1d1b/0x2e50
[  569.061472]  ? kvm_vcpu_block+0x1050/0x1050
[  569.065791]  ? perf_trace_lock+0x900/0x900
[  569.070019]  ? lock_acquire+0x1dc/0x520
[  569.073988]  ? graph_lock+0x170/0x170
[  569.077783]  ? __might_sleep+0x95/0x190
[  569.081760]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  569.087286]  ? futex_wait_queue_me+0x550/0x820
[  569.091858]  ? refill_pi_state_cache.part.7+0x300/0x300
[  569.097215]  ? find_held_lock+0x36/0x1c0
[  569.101278]  ? lock_downgrade+0x8e0/0x8e0
[  569.105448]  kvm_set_memory_region+0x2e/0x50
[  569.109858]  kvm_vm_ioctl+0x668/0x1d90
[  569.113734]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  569.118832]  ? futex_wake+0x2f6/0x750
[  569.122624]  ? kvm_set_memory_region+0x50/0x50
[  569.127198]  ? get_futex_key+0x1e90/0x1e90
[  569.131435]  ? perf_trace_lock_acquire+0xe3/0x980
[  569.136271]  ? perf_trace_lock+0x900/0x900
[  569.140495]  ? do_futex+0x249/0x27d0
[  569.144199]  ? kasan_check_write+0x14/0x20
[  569.148423]  ? graph_lock+0x170/0x170
[  569.152224]  ? exit_robust_list+0x290/0x290
[  569.156539]  ? find_held_lock+0x36/0x1c0
[  569.160601]  ? lock_downgrade+0x8e0/0x8e0
[  569.164741]  ? kasan_check_read+0x11/0x20
[  569.168878]  ? rcu_is_watching+0x85/0x140
[  569.173023]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  569.178218]  ? __fget+0x40c/0x650
[  569.181675]  ? expand_files.part.8+0x9a0/0x9a0
[  569.186243]  ? lock_downgrade+0x8e0/0x8e0
[  569.190396]  ? __split_vma+0x5ac/0x7f0
[  569.194275]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  569.199800]  ? vma_set_page_prot+0x239/0x300
[  569.204202]  ? kvm_set_memory_region+0x50/0x50
[  569.208774]  do_vfs_ioctl+0x1cf/0x16a0
[  569.212655]  ? ioctl_preallocate+0x2e0/0x2e0
[  569.217055]  ? fget_raw+0x20/0x20
[  569.220506]  ? __x64_sys_futex+0x477/0x680
[  569.224742]  ? do_futex+0x27d0/0x27d0
[  569.228540]  ? security_file_ioctl+0x94/0xc0
[  569.232943]  ksys_ioctl+0xa9/0xd0
[  569.236391]  __x64_sys_ioctl+0x73/0xb0
[  569.240271]  do_syscall_64+0x1b1/0x800
[  569.244145]  ? finish_task_switch+0x1ca/0x810
[  569.248636]  ? syscall_return_slowpath+0x5c0/0x5c0
[  569.253554]  ? syscall_return_slowpath+0x30f/0x5c0
[  569.258478]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  569.263837]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  569.268674]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  569.273850] RIP: 0033:0x455979
[  569.277028] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  569.284726] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  569.291979] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  569.299235] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  569.306491] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  569.313754] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  569.321115] warn_alloc_show_mem: 1 callbacks suppressed
[  569.321118] Mem-Info:
[  569.328962] active_anon:79139 inactive_anon:80 isolated_anon:0
[  569.328962]  active_file:3739 inactive_file:12132 isolated_file:0
[  569.328962]  unevictable:0 dirty:253 writeback:0 unstable:0
[  569.328962]  slab_reclaimable:10729 slab_unreclaimable:104661
2018/05/02 02:14:20 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000006040000d0"], 0x1)

[  569.328962]  mapped:73916 shmem:88 pagetables:1110 bounce:0
[  569.328962]  free:1322017 free_pcp:419 free_cma:0
[  569.362644] Node 0 active_anon:316556kB inactive_anon:320kB active_file:14956kB inactive_file:48528kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295664kB dirty:1012kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 137216kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:14:20 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000092040000d0"], 0x1)

[  569.390885] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  569.417078] lowmem_reserve[]: 0 2830 6335 6335
[  569.421730] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:92kB free_cma:0kB
[  569.449402] lowmem_reserve[]: 0 0 3505 3505
2018/05/02 02:14:20 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000055040000d0"], 0x1)

[  569.453793] Node 0 Normal free:2368236kB min:37300kB low:46624kB high:55948kB active_anon:318640kB inactive_anon:320kB active_file:14956kB inactive_file:48528kB unevictable:0kB writepending:1012kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5856kB pagetables:4440kB bounce:0kB free_pcp:1344kB local_pcp:668kB free_cma:0kB
[  569.483833] lowmem_reserve[]: 0 0 0 0
[  569.487692] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
2018/05/02 02:14:20 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000001c040000d0"], 0x1)

[  569.501438] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  569.517328] Node 0 Normal: 1796*4kB (UME) 3600*8kB (UME) 2953*16kB (UME) 3025*32kB (UME) 1473*64kB (UME) 315*128kB (UM) 195*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 46*2048kB (UM) 438*4096kB (UM) = 2377216kB
[  569.536316] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  569.544932] 15958 total pagecache pages
[  569.548959] 0 pages in swap cache
2018/05/02 02:14:20 executing program 5:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x400000, 0x0)
getsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000040), &(0x7f0000000080)=0xb)
ioctl$sock_ifreq(r0, 0x8947, &(0x7f00000000c0)={"498ee3fcf2e178c5366a3e000000009c", @ifru_addrs=@ipx={0x4, 0x0, 0x0, "372861280f26"}})
accept4$packet(0xffffffffffffff9c, &(0x7f0000000380)={0x0, 0x0, <r2=>0x0}, &(0x7f00000003c0)=0x14, 0x80000)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e21}, @in6={0xa, 0x4e23, 0x2, @remote={0xfe, 0x80, [], 0xbb}, 0x7f}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1f}}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in6={0xa, 0x4e21, 0x2, @remote={0xfe, 0x80, [], 0xbb}, 0x7fffffff}, @in6={0xa, 0x4e24, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0x1ff}, @in6={0xa, 0x4e21, 0x1, @remote={0xfe, 0x80, [], 0xbb}, 0x9}], 0xa0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f00000001c0)={<r3=>0x0, 0x3f}, &(0x7f0000000200)=0x8)
setsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000240)={r3, 0x65, 0x0, 0x2}, 0x10)
setsockopt$inet6_mreq(r0, 0x29, 0x1d, &(0x7f0000000400)={@empty, r2}, 0x14)

2018/05/02 02:14:20 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="0203000910000000006c89626c1700000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:20 executing program 2:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
r1 = accept4$packet(0xffffffffffffff9c, 0x0, &(0x7f0000000000), 0xae3591e1e04299d9)
fcntl$getownex(r1, 0x10, &(0x7f0000000180))
ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000140))
write$rdma_cm(r0, &(0x7f0000000300)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r2=>0xffffffff}, 0x2}}, 0x20)
write$rdma_cm(r0, &(0x7f0000000080)=@bind={0x14, 0x88, 0xfa00, {r2, 0x30, 0x0, @ib={0x1b, 0x0, 0x0, {"b7282277581088e029061a8d63f69dd2"}}}}, 0x90)
write$rdma_cm(r0, &(0x7f0000000f40)=@connect={0x6, 0x118, 0xfa00, {{0x0, 0x0, "8910f89252d5ec41e8c349ba001bf1137bd98685e77c87eb337fad90921edb1d20a795d7a652f801f987700b6eea5da231b7df00b99f24f36adbd25360606e994b2b6180c2200acf803802ec3577e57a3839fa131a39f425e2071300ba993f6f68a66c88f5f8dd3ec8078ce8e526dbcbb5e06964c4574e32b9ff21aa793923ccfc8e3cd558816d73d68eb3ac19f102d020cccae63b4cbca868fe626bc749ddec084b8abe1c0f7c9607402eac1fa09546197c775e2032e9c0422164dfa672f2f425b7405906901b02d7cb95b4d582832910cd615eda15c1ca5568eee2531c1f3c0dfd8667db470ff45871d27ffe67954743de5ce0c6b571e8f2bc1fee2e81844f", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, r2}}, 0x120)

[  569.552440] Swap cache stats: add 0, delete 0, find 0/0
[  569.557864] Free swap  = 0kB
[  569.560907] Total swap = 0kB
[  569.563961] 1965969 pages RAM
[  569.567105] 0 pages HighMem/MovableOnly
[  569.571099] 339347 pages reserved
[  569.653847] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  569.665774] syz-executor4 cpuset=syz4 mems_allowed=0
[  569.670982] CPU: 0 PID: 29441 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  569.678265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  569.687628] Call Trace:
[  569.690233]  dump_stack+0x1b9/0x294
[  569.693874]  ? dump_stack_print_info.cold.2+0x52/0x52
[  569.699078]  ? kasan_check_read+0x11/0x20
[  569.703241]  warn_alloc.cold.118+0xb2/0x1b8
[  569.707576]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  569.712430]  ? trace_hardirqs_on+0xd/0x10
[  569.716585]  ? _raw_spin_unlock_irq+0x27/0x70
[  569.721073]  ? finish_task_switch+0x1ca/0x810
[  569.725659]  ? lock_repin_lock+0x410/0x410
[  569.729893]  __vmalloc_node_range+0x45e/0x750
[  569.734380]  ? graph_lock+0x170/0x170
[  569.738172]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  569.743005]  __vmalloc_node_flags_caller+0x75/0x90
[  569.747927]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  569.752759]  kvmalloc_node+0xde/0x100
[  569.756548]  kvm_arch_create_memslot+0xa3/0x4e0
[  569.761213]  __kvm_set_memory_region+0x1d1b/0x2e50
[  569.766142]  ? kvm_vcpu_block+0x1050/0x1050
[  569.770457]  ? zap_class+0x720/0x720
[  569.774156]  ? check_same_owner+0x320/0x320
[  569.778467]  ? rcu_note_context_switch+0x710/0x710
[  569.783385]  ? lock_acquire+0x1dc/0x520
[  569.787356]  ? graph_lock+0x170/0x170
[  569.791146]  ? __might_sleep+0x95/0x190
[  569.795111]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  569.800655]  ? futex_wait_queue_me+0x550/0x820
[  569.805224]  ? refill_pi_state_cache.part.7+0x300/0x300
[  569.810581]  ? find_held_lock+0x36/0x1c0
[  569.814636]  ? lock_downgrade+0x8e0/0x8e0
[  569.818802]  kvm_set_memory_region+0x2e/0x50
[  569.823202]  kvm_vm_ioctl+0x668/0x1d90
[  569.827076]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  569.832165]  ? futex_wake+0x2f6/0x750
[  569.835965]  ? kvm_set_memory_region+0x50/0x50
[  569.840536]  ? get_futex_key+0x1e90/0x1e90
[  569.844764]  ? perf_trace_lock+0xd6/0x900
[  569.848906]  ? zap_class+0x720/0x720
[  569.852615]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  569.857792]  ? do_futex+0x249/0x27d0
[  569.861491]  ? graph_lock+0x170/0x170
[  569.865299]  ? exit_robust_list+0x290/0x290
[  569.869612]  ? find_held_lock+0x36/0x1c0
[  569.873667]  ? lock_downgrade+0x8e0/0x8e0
[  569.877816]  ? rcu_is_watching+0x85/0x140
[  569.881955]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  569.887375]  ? __fget+0x40c/0x650
[  569.890819]  ? do_raw_spin_unlock+0x1/0x2e0
[  569.895129]  ? expand_files.part.8+0x9a0/0x9a0
[  569.899705]  ? kasan_check_write+0x14/0x20
[  569.903928]  ? do_raw_spin_lock+0xc1/0x200
[  569.908163]  ? _raw_spin_unlock+0x22/0x30
[  569.912302]  ? kvm_set_memory_region+0x50/0x50
[  569.916879]  do_vfs_ioctl+0x1cf/0x16a0
[  569.920759]  ? ioctl_preallocate+0x2e0/0x2e0
[  569.925154]  ? fget_raw+0x20/0x20
[  569.928601]  ? __x64_sys_futex+0x477/0x680
[  569.932824]  ? do_futex+0x27d0/0x27d0
[  569.936614]  ? security_file_ioctl+0x94/0xc0
[  569.941015]  ksys_ioctl+0xa9/0xd0
[  569.944462]  __x64_sys_ioctl+0x73/0xb0
[  569.948338]  do_syscall_64+0x1b1/0x800
[  569.952213]  ? finish_task_switch+0x1ca/0x810
[  569.956695]  ? syscall_return_slowpath+0x5c0/0x5c0
[  569.961610]  ? syscall_return_slowpath+0x30f/0x5c0
[  569.966528]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  569.971881]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  569.976714]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  569.981887] RIP: 0033:0x455979
[  569.985062] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  569.992760] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  570.000020] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  570.007277] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  570.014529] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  570.021870] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:21 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f0000065fc8)={&(0x7f0000002540)={0x10}, 0xc, &(0x7f0000fd1000)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000000a0abdb0599537e6d4a8c9e885fdff00"], 0x14}, 0x1}, 0x0)

2018/05/02 02:14:21 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000a5040000d0"], 0x1)

2018/05/02 02:14:21 executing program 5:
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000000340)={'broute\x00', 0x0, 0x4, 0x8b, [], 0x0, &(0x7f0000000240), &(0x7f0000000280)=""/139}, &(0x7f00000003c0)=0x78)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$pppoe(0x18, 0x1, 0x0)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f0000000040)={0x18, 0x0, {0x3, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 'syz_tun\x00'}}, 0x1e)
connect$pppoe(r1, &(0x7f00000001c0)={0x18, 0x0, {0x3, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 'ip6_vti0\x00'}}, 0x1e)
ioctl$PPPOEIOCSFWD(r2, 0x4008b100, &(0x7f0000000000)={0x18, 0x0, {0x3, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, 'rose0\x00'}})
getsockopt$sock_int(r0, 0x1, 0x0, &(0x7f0000002cc0), &(0x7f0000002d00)=0x4)
r3 = socket(0x11, 0x800000003, 0x0)
recvfrom$unix(r3, &(0x7f0000002d40)=""/224, 0xe0, 0x40010002, 0x0, 0x0)
bind(r3, &(0x7f00005a2000)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
setsockopt$bt_rfcomm_RFCOMM_LM(r3, 0x12, 0x3, &(0x7f0000000080)=0x10, 0x4)
ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000002800))
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8914, &(0x7f0000000000)={'nr0\x00', 0x800})
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'lo\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000100)={&(0x7f0000002e80)={0x10, 0xfffffff0, 0x0, 0x400000}, 0xae, &(0x7f0000002e40)={&(0x7f0000000180)=@setlink={0x28, 0x13, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_MASTER={0x8, 0xa, 0xf}]}, 0x28}, 0x1}, 0x0)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000002780)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000001400)=""/240, 0xf0}, {&(0x7f0000001500)=""/4096, 0x1000}, {&(0x7f0000002500)=""/248, 0xf8}, {&(0x7f0000002600)=""/217, 0xd9}], 0x5, &(0x7f0000002700)=[@cswp={0x58, 0x114, 0x7, {{0x8001, 0x1f8f}, &(0x7f0000000040)=0x4, &(0x7f0000000240)=0x8001, 0x0, 0xfd7e, 0x2, 0x100, 0x28, 0x40}}], 0x58, 0x8000}, 0x5)
pipe(&(0x7f0000002840)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_SETCRTC(r8, 0xc06864a2, &(0x7f00000028c0)={&(0x7f0000002880)=[0x708, 0x2], 0x2, 0x5, 0x401, 0x8e1b, 0xffffffffffffffff, 0x480, {0xf999, 0x6, 0xff, 0x800, 0x81, 0x40, 0x6, 0x1, 0x800, 0x9, 0x2, 0x40000000000000, 0x8001, 0x40, "24b28889379fe175ae901e4ba355fa20f8bfdd26285da1b7d92c2c3a964b1caa"}})
ioctl$DRM_IOCTL_AGP_RELEASE(r8, 0x6431)
setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x0, 0x48a, &(0x7f00000027c0)={0x9, 0xfffffffffffffe01, 0x401}, 0xfffffffffffffe00)
setsockopt$inet_tcp_int(r0, 0x6, 0x9, &(0x7f0000002c80)=0x7, 0x4)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000002980)={0x3, {{0xa, 0x4e22, 0x4000000000, @remote={0xfe, 0x80, [], 0xbb}, 0x4}}, {{0xa, 0x4e24, 0x7, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}, 0x2}}}, 0x108)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000002940)={'sit0\x00', 0x9000})
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e23, 0x81, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}, 0x100000001}, 0x1c)
getsockname(r5, &(0x7f0000002bc0)=@hci, &(0x7f0000002c40)=0x80)
getsockopt$inet_tcp_buf(r8, 0x6, 0xd, &(0x7f0000002ac0)=""/62, &(0x7f0000002b00)=0x3e)
bind$unix(r5, &(0x7f0000002b40)=@file={0x1, './file0\x00'}, 0x6e)

2018/05/02 02:14:21 executing program 2:
r0 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x202)
write$rdma_cm(r0, &(0x7f0000000700)=@reject={0x9, 0x108, 0xfa00, {0xffffffff, 0x0, "e621f6", "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"}}, 0x110)
syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x10000)

2018/05/02 02:14:21 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, 0xffffffffffffffff, 0x0)

2018/05/02 02:14:21 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000000003f00000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:21 executing program 1:
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getresgid(&(0x7f0000000000), &(0x7f0000000040), &(0x7f00000000c0)=<r2=>0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0, <r3=>0x0}, &(0x7f0000000140)=0xc)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, <r4=>0x0}, &(0x7f00000001c0)=0xc)
getgroups(0x7, &(0x7f0000000200)=[0xffffffffffffffff, <r5=>0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff])
r6 = getgid()
getgroups(0x5, &(0x7f0000000240)=[r2, r3, r4, r5, r6])
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000002c0)={0x5, 0x9, 0xb, 0x7, 0xfc05, 0x3, 0x7d, 0x1, <r7=>0x0}, &(0x7f0000000300)=0x20)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000340)={0xa4, 0x1000, 0x1, 0x81, 0x200, 0x99d6, 0xfff, 0x84d, r7}, 0x20)
pipe2(&(0x7f0000f61000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
write$sndseq(r9, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r10 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r10, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r10, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r9, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
ioctl$EVIOCSFF(r9, 0x40304580, &(0x7f0000000280)=ANY=[@ANYBLOB="00003f00ffff0400080010e303000100c8d1070001001b00"])
tee(r8, r1, 0x1, 0x0)
dup2(r8, r10)

2018/05/02 02:14:21 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0xa25, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

[  570.131156] bond0: enslaved VLAN challenged slave lo. Adding VLANs will be blocked as long as lo is part of bond bond0
[  570.142149] bond0: lo is up - this may be due to an out of date ifenslave
[  570.161372] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  570.173188] syz-executor4 cpuset=syz4 mems_allowed=0
[  570.178519] CPU: 0 PID: 29465 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  570.185798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  570.195153] Call Trace:
[  570.197762]  dump_stack+0x1b9/0x294
[  570.201416]  ? dump_stack_print_info.cold.2+0x52/0x52
[  570.206622]  ? kasan_check_read+0x11/0x20
[  570.210784]  warn_alloc.cold.118+0xb2/0x1b8
[  570.215116]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  570.219969]  ? trace_hardirqs_on+0xd/0x10
[  570.224135]  ? _raw_spin_unlock_irq+0x27/0x70
[  570.228644]  ? finish_task_switch+0x1ca/0x810
[  570.233160]  ? lock_repin_lock+0x410/0x410
[  570.237415]  __vmalloc_node_range+0x45e/0x750
[  570.241918]  ? graph_lock+0x170/0x170
[  570.245729]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  570.250583]  __vmalloc_node_flags_caller+0x75/0x90
[  570.255526]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  570.260384]  kvmalloc_node+0xde/0x100
[  570.264199]  kvm_arch_create_memslot+0xa3/0x4e0
[  570.268895]  __kvm_set_memory_region+0x1d1b/0x2e50
[  570.273850]  ? kvm_vcpu_block+0x1050/0x1050
[  570.278185]  ? check_same_owner+0x320/0x320
[  570.282523]  ? do_raw_spin_unlock+0x9e/0x2e0
[  570.286947]  ? rcu_note_context_switch+0x710/0x710
[  570.291884]  ? lock_acquire+0x1dc/0x520
[  570.295870]  ? graph_lock+0x170/0x170
[  570.299678]  ? __might_sleep+0x95/0x190
[  570.303666]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  570.309215]  ? futex_wait_queue_me+0x550/0x820
[  570.313821]  ? refill_pi_state_cache.part.7+0x300/0x300
[  570.319206]  ? find_held_lock+0x36/0x1c0
[  570.323303]  ? lock_downgrade+0x8e0/0x8e0
[  570.327490]  kvm_set_memory_region+0x2e/0x50
[  570.331910]  kvm_vm_ioctl+0x668/0x1d90
[  570.335808]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  570.340918]  ? futex_wake+0x2f6/0x750
[  570.344730]  ? kvm_set_memory_region+0x50/0x50
[  570.349321]  ? get_futex_key+0x1e90/0x1e90
[  570.353585]  ? kasan_check_write+0x14/0x20
[  570.357824]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  570.363021]  ? do_futex+0x249/0x27d0
[  570.366745]  ? kasan_check_write+0x14/0x20
[  570.370983]  ? graph_lock+0x170/0x170
[  570.374798]  ? exit_robust_list+0x290/0x290
[  570.379130]  ? find_held_lock+0x36/0x1c0
[  570.383206]  ? lock_downgrade+0x8e0/0x8e0
[  570.387370]  ? kasan_check_read+0x11/0x20
[  570.391521]  ? rcu_is_watching+0x85/0x140
[  570.395673]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  570.400879]  ? __fget+0x40c/0x650
[  570.404347]  ? expand_files.part.8+0x9a0/0x9a0
[  570.408930]  ? lock_downgrade+0x8e0/0x8e0
[  570.413087]  ? __split_vma+0x5ac/0x7f0
[  570.416985]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  570.422529]  ? vma_set_page_prot+0x239/0x300
[  570.426947]  ? kvm_set_memory_region+0x50/0x50
[  570.431540]  do_vfs_ioctl+0x1cf/0x16a0
[  570.435438]  ? ioctl_preallocate+0x2e0/0x2e0
[  570.439835]  ? fget_raw+0x20/0x20
[  570.443288]  ? __x64_sys_futex+0x477/0x680
[  570.447515]  ? do_futex+0x27d0/0x27d0
[  570.451303]  ? security_file_ioctl+0x94/0xc0
[  570.455701]  ksys_ioctl+0xa9/0xd0
[  570.459145]  __x64_sys_ioctl+0x73/0xb0
[  570.463027]  do_syscall_64+0x1b1/0x800
[  570.466900]  ? finish_task_switch+0x1ca/0x810
[  570.471382]  ? syscall_return_slowpath+0x5c0/0x5c0
[  570.476299]  ? syscall_return_slowpath+0x30f/0x5c0
[  570.481227]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  570.486581]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  570.491417]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  570.496589] RIP: 0033:0x455979
[  570.499761] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  570.507458] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  570.514711] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  570.521968] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
2018/05/02 02:14:21 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000036040000d0"], 0x1)

2018/05/02 02:14:21 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000002d040000d0"], 0x1)

2018/05/02 02:14:21 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000085040000d0"], 0x1)

2018/05/02 02:14:21 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000bd040000d0"], 0x1)

2018/05/02 02:14:21 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000b1040000d0"], 0x1)

2018/05/02 02:14:21 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000ce040000d0"], 0x1)

2018/05/02 02:14:21 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000035040000d0"], 0x1)

2018/05/02 02:14:21 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000089040000d0"], 0x1)

[  570.530878] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  570.538132] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  570.545485] warn_alloc_show_mem: 1 callbacks suppressed
[  570.545488] Mem-Info:
[  570.553482] active_anon:77576 inactive_anon:80 isolated_anon:0
[  570.553482]  active_file:3739 inactive_file:12143 isolated_file:0
[  570.553482]  unevictable:0 dirty:264 writeback:0 unstable:0
[  570.553482]  slab_reclaimable:10720 slab_unreclaimable:104944
[  570.553482]  mapped:73898 shmem:88 pagetables:1125 bounce:0
[  570.553482]  free:1323202 free_pcp:541 free_cma:0
[  570.587242] Node 0 active_anon:310404kB inactive_anon:320kB active_file:14956kB inactive_file:48572kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295692kB dirty:1056kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 141312kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  570.615480] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  570.641681] lowmem_reserve[]: 0 2830 6335 6335
[  570.646314] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:640kB free_cma:0kB
[  570.674059] lowmem_reserve[]: 0 0 3505 3505
[  570.678445] Node 0 Normal free:2377368kB min:37300kB low:46624kB high:55948kB active_anon:310304kB inactive_anon:320kB active_file:14956kB inactive_file:48572kB unevictable:0kB writepending:1056kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5664kB pagetables:4352kB bounce:0kB free_pcp:1232kB local_pcp:608kB free_cma:0kB
[  570.708435] lowmem_reserve[]: 0 0 0 0
[  570.712298] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  570.727768] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  570.743635] Node 0 Normal: 1858*4kB (UME) 3443*8kB (UME) 3009*16kB (UME) 3033*32kB (UME) 1473*64kB (UME) 315*128kB (UM) 195*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 46*2048kB (UM) 438*4096kB (UM) = 2377360kB
[  570.762556] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  570.771149] 15969 total pagecache pages
[  570.775159] 0 pages in swap cache
[  570.778664] Swap cache stats: add 0, delete 0, find 0/0
[  570.784049] Free swap  = 0kB
[  570.787087] Total swap = 0kB
[  570.790126] 1965969 pages RAM
[  570.793243] 0 pages HighMem/MovableOnly
[  570.797261] 339347 pages reserved
[  570.813855] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  570.825703] syz-executor4 cpuset=syz4 mems_allowed=0
[  570.826559] bond0: enslaved VLAN challenged slave lo. Adding VLANs will be blocked as long as lo is part of bond bond0
[  570.830884] CPU: 0 PID: 29465 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  570.841755] bond0: lo is up - this may be due to an out of date ifenslave
[  570.848971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  570.848978] Call Trace:
[  570.849005]  dump_stack+0x1b9/0x294
[  570.849026]  ? dump_stack_print_info.cold.2+0x52/0x52
[  570.876643]  ? kasan_check_read+0x11/0x20
[  570.880807]  warn_alloc.cold.118+0xb2/0x1b8
[  570.885129]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  570.889966]  ? trace_hardirqs_on+0xd/0x10
[  570.894100]  ? _raw_spin_unlock_irq+0x27/0x70
[  570.898581]  ? finish_task_switch+0x1ca/0x810
[  570.903074]  ? lock_repin_lock+0x410/0x410
[  570.907302]  __vmalloc_node_range+0x45e/0x750
[  570.911801]  ? graph_lock+0x170/0x170
[  570.915611]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  570.920451]  __vmalloc_node_flags_caller+0x75/0x90
[  570.925368]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  570.930197]  kvmalloc_node+0xde/0x100
[  570.933980]  kvm_arch_create_memslot+0xa3/0x4e0
[  570.938642]  __kvm_set_memory_region+0x1d1b/0x2e50
[  570.943570]  ? kvm_vcpu_block+0x1050/0x1050
[  570.947898]  ? check_same_owner+0x320/0x320
[  570.952218]  ? do_raw_spin_unlock+0x9e/0x2e0
[  570.956623]  ? rcu_note_context_switch+0x710/0x710
[  570.961546]  ? lock_acquire+0x1dc/0x520
[  570.965503]  ? graph_lock+0x170/0x170
[  570.969296]  ? __might_sleep+0x95/0x190
[  570.973276]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  570.978795]  ? futex_wait_queue_me+0x550/0x820
[  570.983359]  ? unwind_get_return_address+0x61/0xa0
[  570.988273]  ? refill_pi_state_cache.part.7+0x300/0x300
[  570.993623]  ? find_held_lock+0x36/0x1c0
[  570.997668]  ? lock_downgrade+0x8e0/0x8e0
[  571.001810]  kvm_set_memory_region+0x2e/0x50
[  571.006200]  kvm_vm_ioctl+0x668/0x1d90
[  571.010077]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  571.015189]  ? futex_wake+0x2f6/0x750
[  571.018979]  ? trace_hardirqs_off+0xd/0x10
[  571.023201]  ? kvm_set_memory_region+0x50/0x50
[  571.027768]  ? kfree+0x111/0x260
[  571.031134]  ? get_futex_key+0x1e90/0x1e90
[  571.035361]  ? __lock_acquire+0x7f5/0x5140
[  571.039587]  ? trace_hardirqs_on+0xd/0x10
[  571.043724]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  571.049499]  ? do_futex+0x249/0x27d0
[  571.053219]  ? kvm_debugfs_release+0x90/0x90
[  571.057633]  ? graph_lock+0x170/0x170
[  571.061438]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  571.066029]  ? compat_start_thread+0x80/0x80
[  571.070447]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  571.075472]  ? exit_robust_list+0x290/0x290
[  571.079804]  ? find_held_lock+0x36/0x1c0
[  571.083864]  ? lock_downgrade+0x8e0/0x8e0
[  571.088004]  ? kasan_check_read+0x11/0x20
[  571.092144]  ? rcu_is_watching+0x85/0x140
[  571.096283]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  571.101472]  ? __fget+0x40c/0x650
[  571.104910]  ? expand_files.part.8+0x9a0/0x9a0
[  571.109474]  ? lock_downgrade+0x8e0/0x8e0
[  571.113697]  ? lock_release+0xa10/0xa10
[  571.117669]  ? check_same_owner+0x320/0x320
[  571.122006]  ? kvm_set_memory_region+0x50/0x50
[  571.126589]  do_vfs_ioctl+0x1cf/0x16a0
[  571.130467]  ? ioctl_preallocate+0x2e0/0x2e0
[  571.134857]  ? fget_raw+0x20/0x20
[  571.138293]  ? security_file_mprotect+0x94/0xc0
[  571.142956]  ? __x64_sys_futex+0x477/0x680
[  571.147185]  ? do_futex+0x27d0/0x27d0
[  571.150965]  ? security_file_ioctl+0x94/0xc0
[  571.155357]  ksys_ioctl+0xa9/0xd0
[  571.158791]  __x64_sys_ioctl+0x73/0xb0
[  571.162660]  do_syscall_64+0x1b1/0x800
[  571.166528]  ? finish_task_switch+0x1ca/0x810
[  571.171023]  ? syscall_return_slowpath+0x5c0/0x5c0
[  571.175950]  ? syscall_return_slowpath+0x30f/0x5c0
[  571.180871]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  571.186218]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  571.191045]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  571.196224] RIP: 0033:0x455979
[  571.199399] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  571.207089] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  571.214343] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  571.221594] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  571.228848] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
2018/05/02 02:14:22 executing program 7:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$binder(&(0x7f0000745000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cgroup.controllers\x00', 0x0, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x9, {0x9, 0x6, 0x4, 0x7fffffff, 0x3, 0x1}, 0xfff}, 0xe)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x20011, r0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0)
ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f00000002c0)={<r2=>0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000004000)={0x8f, 0x0, &(0x7f0000000380)=[@exit_looper={0x630d}, @reply_sg={0x40486312, {{0x3, 0x0, 0x3, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@ptr={0x70742a85, 0x1, &(0x7f0000000140), 0x0, 0x1, 0x27}, @fda={0x66646185, 0x2, 0x4, 0x1e}, @fd={0x66642a85, 0x0, r1, 0x0, 0x2}], &(0x7f0000000280)=[0x0, 0x20, 0x28, 0x0, 0x0, 0x48, 0x38, 0x0]}, 0xfffffffffffffffb}}, @exit_looper={0x630d}, @free_buffer={0x40086303, r2}, @enter_looper={0x630c}, @enter_looper={0x630c}, @increfs_done={0x40106308, r2, 0x1}, @free_buffer={0x40086303, r2}, @acquire={0x40046305, 0x3}, @exit_looper={0x630d}], 0x1, 0x0, &(0x7f0000000100)="b1"})
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000080), &(0x7f00000000c0)=0x14)

2018/05/02 02:14:22 executing program 3 (fault-call:9 fault-nth:0):
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, r0, 0x0)

2018/05/02 02:14:22 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="0203000910007fffffff0000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:22 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000b9bff0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='dctcp\x00', 0x6)
sendto$inet(r0, &(0x7f0000fa0fff), 0xffffffffffffffbb, 0x20020003, &(0x7f0000385ff0)={0x2, 0x4e21, @loopback=0x7f000001}, 0x10)
r1 = semget$private(0x0, 0x1, 0x0)
semctl$GETZCNT(r1, 0x7, 0xf, &(0x7f0000000000)=""/10)
getsockopt$IPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x43, &(0x7f0000000080)={'HL\x00'}, &(0x7f00000000c0)=0x1e)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='veno\x00', 0x5)
shutdown(r0, 0x1)

2018/05/02 02:14:22 executing program 5:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = eventfd(0x14)
read$eventfd(r0, &(0x7f0000000080), 0x8)

2018/05/02 02:14:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x90b40200, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:22 executing program 1:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$sndseq(r2, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
munmap(&(0x7f0000011000/0x4000)=nil, 0x4000)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r1, r0, 0x1, 0x0)
dup2(r1, r3)

[  571.236107] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
2018/05/02 02:14:22 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000020040000d0"], 0x1)

[  571.372192] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  571.384073] syz-executor4 cpuset=syz4 mems_allowed=0
[  571.388712] binder: 29523:29524 ioctl c0306201 20004000 returned -14
[  571.389258] CPU: 1 PID: 29521 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  571.389268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  571.389274] Call Trace:
[  571.389300]  dump_stack+0x1b9/0x294
2018/05/02 02:14:22 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000040040000d0"], 0x1)

[  571.418596]  ? dump_stack_print_info.cold.2+0x52/0x52
[  571.423803]  ? perf_trace_lock_acquire+0xe3/0x980
[  571.428669]  warn_alloc.cold.118+0xb2/0x1b8
[  571.433004]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  571.437856]  ? trace_hardirqs_on+0xd/0x10
[  571.437920] binder: BINDER_SET_CONTEXT_MGR already set
[  571.442008]  ? _raw_spin_unlock_irq+0x27/0x70
[  571.442029]  ? finish_task_switch+0x1ca/0x810
[  571.442071]  __vmalloc_node_range+0x45e/0x750
[  571.442092]  ? graph_lock+0x170/0x170
[  571.442112]  ? kvm_arch_create_memslot+0xa3/0x4e0
2018/05/02 02:14:22 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000079040000d0"], 0x1)

2018/05/02 02:14:22 executing program 1:
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x7d73, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f00000001c0)={0x40000000})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r5, 0x84, 0x7, &(0x7f0000000040)={0x2}, 0x4)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000000c0)={<r6=>0x0, 0x60, 0x2}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x66, &(0x7f0000000140)={r6, 0xabd3}, &(0x7f0000000180)=0x8)
tee(r2, r1, 0x1, 0x0)
dup2(r2, r4)

2018/05/02 02:14:22 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = syz_open_dev$tun(&(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFINDEX(r1, 0x400454da, &(0x7f0000000040)=0x1000890000001)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={"623d015b814000", 0x4003})
sendmsg$nl_generic(r0, &(0x7f0000016000)={&(0x7f0000000200)={0x10}, 0x2db, &(0x7f000000d379)={&(0x7f0000000140)=ANY=[@ANYBLOB="14050000000000000000e7be7492cecda9520000"], 0x14}, 0x1}, 0x0)
splice(r0, &(0x7f0000000000), r0, &(0x7f0000000080), 0x3, 0x8)

[  571.442129]  __vmalloc_node_flags_caller+0x75/0x90
[  571.442144]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  571.442162]  kvmalloc_node+0xde/0x100
[  571.442180]  kvm_arch_create_memslot+0xa3/0x4e0
[  571.442206]  __kvm_set_memory_region+0x1d1b/0x2e50
[  571.492624]  ? kvm_vcpu_block+0x1050/0x1050
[  571.496963]  ? perf_trace_lock+0x900/0x900
[  571.501210]  ? lock_acquire+0x1dc/0x520
[  571.505204]  ? graph_lock+0x170/0x170
[  571.509014]  ? __might_sleep+0x95/0x190
[  571.513001]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
2018/05/02 02:14:22 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000073040000d0"], 0x1)

[  571.518549]  ? futex_wait_queue_me+0x550/0x820
[  571.523152]  ? refill_pi_state_cache.part.7+0x300/0x300
[  571.528524]  ? find_held_lock+0x36/0x1c0
[  571.532603]  ? lock_downgrade+0x8e0/0x8e0
[  571.536797]  kvm_set_memory_region+0x2e/0x50
[  571.541214]  kvm_vm_ioctl+0x668/0x1d90
[  571.545107]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  571.550565]  ? futex_wake+0x2f6/0x750
[  571.554379]  ? kvm_set_memory_region+0x50/0x50
[  571.558973]  ? get_futex_key+0x1e90/0x1e90
[  571.563228]  ? perf_trace_lock_acquire+0xe3/0x980
[  571.568087]  ? perf_trace_lock+0x900/0x900
2018/05/02 02:14:22 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000000f040000d0"], 0x1)

[  571.572333]  ? do_futex+0x249/0x27d0
[  571.576057]  ? kasan_check_write+0x14/0x20
[  571.580301]  ? graph_lock+0x170/0x170
[  571.584118]  ? exit_robust_list+0x290/0x290
[  571.588451]  ? find_held_lock+0x36/0x1c0
[  571.592538]  ? lock_downgrade+0x8e0/0x8e0
[  571.596703]  ? kasan_check_read+0x11/0x20
[  571.600889]  ? rcu_is_watching+0x85/0x140
[  571.605042]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  571.610247]  ? __fget+0x40c/0x650
[  571.613711]  ? expand_files.part.8+0x9a0/0x9a0
[  571.618292]  ? lock_downgrade+0x8e0/0x8e0
2018/05/02 02:14:22 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000017040000d0"], 0x1)

[  571.622448]  ? __split_vma+0x5ac/0x7f0
[  571.626352]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  571.631898]  ? vma_set_page_prot+0x239/0x300
[  571.636318]  ? kvm_set_memory_region+0x50/0x50
[  571.640912]  do_vfs_ioctl+0x1cf/0x16a0
[  571.644812]  ? ioctl_preallocate+0x2e0/0x2e0
[  571.649229]  ? fget_raw+0x20/0x20
[  571.652694]  ? __x64_sys_futex+0x477/0x680
[  571.656937]  ? do_futex+0x27d0/0x27d0
[  571.660754]  ? security_file_ioctl+0x94/0xc0
[  571.665176]  ksys_ioctl+0xa9/0xd0
[  571.668647]  __x64_sys_ioctl+0x73/0xb0
2018/05/02 02:14:22 executing program 2:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000240)={0xf7b, {{0xa, 0x4e22, 0x2, @empty, 0x7}}, 0x1, 0x1, [{{0xa, 0x4e22, 0x1, @loopback={0x0, 0x1}, 0x5}}]}, 0x110)
r1 = syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "0a4ceaa05d9a00000000000000039b3fd4cec307e8ef3d13eb790ec9c65abaf90d229db692542e5b78f8b29e0a27800f0000000000000009fb42f376589701a4"})
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0x40505330, &(0x7f0000000140)={{0xc1a}, {0xffffff80}, 0x0, 0x7})
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer\x00', 0x0, 0x0)
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f0000000080)={{0x1, 0x3}, 'port1\x00', 0x0, 0x100000, 0x85d, 0x6, 0x1, 0x1, 0x44, 0x0, 0x5, 0x7})

[  571.672547]  do_syscall_64+0x1b1/0x800
[  571.676442]  ? syscall_return_slowpath+0x5c0/0x5c0
[  571.681379]  ? syscall_return_slowpath+0x30f/0x5c0
[  571.686322]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  571.691705]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  571.696564]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  571.701759] RIP: 0033:0x455979
[  571.704951] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  571.712670] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  571.719945] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  571.727222] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  571.734506] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  571.741785] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  571.749134] warn_alloc_show_mem: 1 callbacks suppressed
[  571.749141] Mem-Info:
[  571.756993] active_anon:78655 inactive_anon:78 isolated_anon:0
[  571.756993]  active_file:3739 inactive_file:12149 isolated_file:0
[  571.756993]  unevictable:0 dirty:270 writeback:0 unstable:0
[  571.756993]  slab_reclaimable:10721 slab_unreclaimable:105074
[  571.756993]  mapped:73902 shmem:88 pagetables:1112 bounce:0
[  571.756993]  free:1322069 free_pcp:452 free_cma:0
[  571.790797] Node 0 active_anon:310384kB inactive_anon:312kB active_file:14956kB inactive_file:48596kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295508kB dirty:1080kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 141312kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  571.800810] binder: 29523:29524 ioctl 40046207 0 returned -16
[  571.819095] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  571.819175] lowmem_reserve[]: 0 2830 6335 6335
[  571.819241] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:92kB free_cma:0kB
[  571.819290] lowmem_reserve[]:
[  571.864866] binder: 29523:29525 ioctl c0306201 20004000 returned -14
[  571.884214]  0 0 3505 3505
[  571.884241] Node 0 Normal free:2376476kB min:37300kB low:46624kB high:55948kB active_anon:310384kB inactive_anon:312kB active_file:14956kB inactive_file:48596kB unevictable:0kB writepending:1080kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5696kB pagetables:4152kB bounce:0kB free_pcp:1200kB local_pcp:508kB free_cma:0kB
[  571.884307] lowmem_reserve[]: 0 0 0 0
[  571.930636] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  571.944319] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  571.960158] Node 0 Normal: 1951*4kB (UME) 3254*8kB (UME) 3057*16kB (UME) 3035*32kB (UME) 1474*64kB (UME) 312*128kB (UM) 195*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 48*2048kB (UM) 438*4096kB (UM) = 2380828kB
[  571.979046] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  571.987648] 15975 total pagecache pages
[  571.991649] 0 pages in swap cache
[  571.995126] Swap cache stats: add 0, delete 0, find 0/0
[  572.000502] Free swap  = 0kB
[  572.003536] Total swap = 0kB
[  572.006575] 1965969 pages RAM
[  572.009711] 0 pages HighMem/MovableOnly
[  572.013699] 339347 pages reserved
[  572.026234] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  572.038113] syz-executor4 cpuset=syz4 mems_allowed=0
[  572.043313] CPU: 1 PID: 29552 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  572.050594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  572.059949] Call Trace:
[  572.062560]  dump_stack+0x1b9/0x294
[  572.066206]  ? dump_stack_print_info.cold.2+0x52/0x52
[  572.071416]  ? kasan_check_read+0x11/0x20
[  572.075567]  warn_alloc.cold.118+0xb2/0x1b8
[  572.079895]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  572.084749]  ? trace_hardirqs_on+0xd/0x10
[  572.088898]  ? _raw_spin_unlock_irq+0x27/0x70
[  572.093383]  ? finish_task_switch+0x1ca/0x810
[  572.097880]  ? lock_repin_lock+0x410/0x410
[  572.102113]  __vmalloc_node_range+0x45e/0x750
[  572.106619]  ? graph_lock+0x170/0x170
[  572.110431]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  572.115272]  __vmalloc_node_flags_caller+0x75/0x90
[  572.120192]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  572.125033]  kvmalloc_node+0xde/0x100
[  572.128827]  kvm_arch_create_memslot+0xa3/0x4e0
[  572.133492]  __kvm_set_memory_region+0x1d1b/0x2e50
[  572.138687]  ? kvm_vcpu_block+0x1050/0x1050
[  572.143013]  ? check_same_owner+0x320/0x320
[  572.147332]  ? do_raw_spin_unlock+0x9e/0x2e0
[  572.151745]  ? rcu_note_context_switch+0x710/0x710
[  572.156677]  ? lock_acquire+0x1dc/0x520
[  572.160658]  ? graph_lock+0x170/0x170
[  572.164471]  ? __might_sleep+0x95/0x190
[  572.168459]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  572.174008]  ? futex_wait_queue_me+0x550/0x820
[  572.178606]  ? refill_pi_state_cache.part.7+0x300/0x300
[  572.183969]  ? find_held_lock+0x36/0x1c0
[  572.188031]  ? lock_downgrade+0x8e0/0x8e0
[  572.192189]  kvm_set_memory_region+0x2e/0x50
[  572.196585]  kvm_vm_ioctl+0x668/0x1d90
[  572.200456]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  572.205545]  ? futex_wake+0x2f6/0x750
[  572.209329]  ? kvm_set_memory_region+0x50/0x50
[  572.213894]  ? get_futex_key+0x1e90/0x1e90
[  572.218119]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  572.223291]  ? do_futex+0x249/0x27d0
[  572.226987]  ? graph_lock+0x170/0x170
[  572.230776]  ? exit_robust_list+0x290/0x290
[  572.235089]  ? find_held_lock+0x36/0x1c0
[  572.239139]  ? lock_downgrade+0x8e0/0x8e0
[  572.243269]  ? kasan_check_read+0x11/0x20
[  572.247398]  ? rcu_is_watching+0x85/0x140
[  572.251528]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  572.256702]  ? __fget+0x40c/0x650
[  572.260153]  ? do_raw_spin_unlock+0x1/0x2e0
[  572.264486]  ? expand_files.part.8+0x9a0/0x9a0
[  572.269073]  ? kasan_check_write+0x14/0x20
[  572.273305]  ? do_raw_spin_lock+0xc1/0x200
[  572.277535]  ? _raw_spin_unlock+0x22/0x30
[  572.281667]  ? kvm_set_memory_region+0x50/0x50
[  572.286232]  do_vfs_ioctl+0x1cf/0x16a0
[  572.290108]  ? ioctl_preallocate+0x2e0/0x2e0
[  572.294508]  ? fget_raw+0x20/0x20
[  572.297950]  ? __x64_sys_futex+0x477/0x680
[  572.302170]  ? do_futex+0x27d0/0x27d0
[  572.305956]  ? security_file_ioctl+0x94/0xc0
[  572.310350]  ksys_ioctl+0xa9/0xd0
[  572.313806]  __x64_sys_ioctl+0x73/0xb0
[  572.317683]  do_syscall_64+0x1b1/0x800
[  572.321565]  ? syscall_return_slowpath+0x5c0/0x5c0
[  572.326491]  ? syscall_return_slowpath+0x30f/0x5c0
[  572.331405]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  572.336760]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  572.341596]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  572.346764] RIP: 0033:0x455979
[  572.349936] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  572.357629] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  572.364882] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
2018/05/02 02:14:23 executing program 7:
socket$pptp(0x18, 0x1, 0x2)
r0 = socket$key(0xf, 0x3, 0x2)
dup2(0xffffffffffffffff, r0)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000580)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000001c0), 0xfffffef3)
write(r2, &(0x7f0000000300)="8c418b344a61cf222df6f08f820f174bee72fe0caa835c845790edff8f85ae", 0x1f)
read(r3, &(0x7f0000000200)=""/250, 0x50c7e3e3)
tee(r1, r4, 0x200, 0x0)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f0000000080)={<r5=>0x0, 0x4, 0x4, [0x1, 0x0, 0x4, 0x0]}, &(0x7f00000000c0)=0x10)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000100)={0x5, 0x8008, 0x7f, 0x7ff, r5}, &(0x7f0000000140)=0x10)
ioctl$KDGKBLED(r2, 0x4b64, &(0x7f0000000040))

2018/05/02 02:14:23 executing program 5:
ioctl$sock_bt_cmtp_CMTPCONNDEL(0xffffffffffffffff, 0x400443c9, &(0x7f0000001ac0)={{}, 0xb09})
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu\x00', 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x80, 0x0)
setsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000000c0)=0x6, 0x2)
readv(r1, &(0x7f0000000300)=[{&(0x7f0000000200)=""/5}, {&(0x7f0000000240)=""/188, 0x6}], 0x3b0)
sendto(r2, &(0x7f0000000100)="21f2c4a4a5542f7b544acf6ef561c93e4f9ee2c657e4f6245c8c6231e396dc2e1f69b59dcc0767e1e44b2ce74ca790961783f7d65818b9ce1158b8943e311146037dd2b260727441885835ec4c7d34e0bdf8a24e4ba04e392bad3dac2a84ad78f01fe45989fa9e3020b6ab1e55c31669680a32d954e140f79a2f88914b063f1ae11852fa77035c361b7f4b8c2af2e844cbbe5d58fc88f178208e11fbdd2dba6441c547dfc73c5e6a231ca898f97409091b797fbb509c0790c0bf95d438ae74687598a471237854a2c357909e329862c813c9882a5f1b35085073e197d6acd80cd580aa885eed463e36c0fa5a3fe0", 0xee, 0x10, &(0x7f0000000340)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'gcm_base(ecb(twofish),sha1-ssse3)\x00'}, 0x80)

2018/05/02 02:14:23 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, r0, 0x0)

2018/05/02 02:14:23 executing program 1:
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0xfffffffffffffffc)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
setsockopt$IP_VS_SO_SET_EDIT(r0, 0x0, 0x483, &(0x7f0000000000)={0x6c, @rand_addr=0x2, 0x4e23, 0x0, 'lblcr\x00', 0x18, 0x80, 0x6d}, 0x2c)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
write$sndseq(r0, &(0x7f00000000c0)=[{0x4, 0x3, 0x6, 0x5, @time, {0x4, 0x6}, {0x4, 0x7}, @control={0x1, 0x6, 0x1ff}}, {0xffffffffffff7fff, 0x800, 0xfff, 0x7, @tick=0x400, {0x8000, 0x263}, {0x3498, 0x400}, @raw32={[0x40, 0xfffffffffffffc00, 0x4]}}], 0x60)
dup2(r3, r2)
tee(r2, r1, 0x1, 0x0)
dup2(r2, r4)

2018/05/02 02:14:23 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x80ffff, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:23 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c0040000d0"], 0x1)

2018/05/02 02:14:23 executing program 2:
r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, &(0x7f0000000040)={{0x0, 0x80}, {0x3c, 0x2}})

2018/05/02 02:14:23 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000fbffffff0000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  572.372150] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  572.379407] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  572.386667] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
[  572.476857] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  572.488668] syz-executor4 cpuset=syz4 mems_allowed=0
[  572.493868] CPU: 1 PID: 29566 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  572.501150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  572.510503] Call Trace:
[  572.513103]  dump_stack+0x1b9/0x294
[  572.516744]  ? dump_stack_print_info.cold.2+0x52/0x52
[  572.521946]  ? kasan_check_read+0x11/0x20
[  572.526107]  warn_alloc.cold.118+0xb2/0x1b8
[  572.530441]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  572.535312]  ? trace_hardirqs_on+0xd/0x10
[  572.539495]  ? _raw_spin_unlock_irq+0x27/0x70
[  572.543999]  ? finish_task_switch+0x1ca/0x810
[  572.548515]  ? lock_repin_lock+0x410/0x410
[  572.552768]  __vmalloc_node_range+0x45e/0x750
[  572.557274]  ? graph_lock+0x170/0x170
[  572.561079]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  572.565927]  __vmalloc_node_flags_caller+0x75/0x90
[  572.570860]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  572.575701]  kvmalloc_node+0xde/0x100
[  572.579501]  kvm_arch_create_memslot+0xa3/0x4e0
[  572.584174]  __kvm_set_memory_region+0x1d1b/0x2e50
[  572.589112]  ? kvm_vcpu_block+0x1050/0x1050
[  572.593433]  ? check_same_owner+0x320/0x320
[  572.597742]  ? do_raw_spin_unlock+0x9e/0x2e0
[  572.602139]  ? rcu_note_context_switch+0x710/0x710
[  572.607055]  ? lock_acquire+0x1dc/0x520
[  572.611023]  ? graph_lock+0x170/0x170
[  572.614816]  ? __might_sleep+0x95/0x190
[  572.618781]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  572.624304]  ? futex_wait_queue_me+0x550/0x820
[  572.628876]  ? refill_pi_state_cache.part.7+0x300/0x300
[  572.634231]  ? find_held_lock+0x36/0x1c0
[  572.638289]  ? lock_downgrade+0x8e0/0x8e0
[  572.642451]  kvm_set_memory_region+0x2e/0x50
[  572.646850]  kvm_vm_ioctl+0x668/0x1d90
[  572.650724]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  572.655817]  ? futex_wake+0x2f6/0x750
[  572.659608]  ? kvm_set_memory_region+0x50/0x50
[  572.664186]  ? get_futex_key+0x1e90/0x1e90
[  572.668430]  ? kasan_check_write+0x14/0x20
[  572.672654]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  572.677831]  ? do_futex+0x249/0x27d0
[  572.681531]  ? kasan_check_write+0x14/0x20
[  572.685756]  ? graph_lock+0x170/0x170
[  572.689556]  ? exit_robust_list+0x290/0x290
[  572.693868]  ? find_held_lock+0x36/0x1c0
[  572.697925]  ? lock_downgrade+0x8e0/0x8e0
[  572.702238]  ? kasan_check_read+0x11/0x20
[  572.706371]  ? rcu_is_watching+0x85/0x140
[  572.710514]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  572.715707]  ? __fget+0x40c/0x650
[  572.719163]  ? expand_files.part.8+0x9a0/0x9a0
[  572.723730]  ? lock_downgrade+0x8e0/0x8e0
[  572.727866]  ? __split_vma+0x5ac/0x7f0
[  572.731744]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  572.737273]  ? vma_set_page_prot+0x239/0x300
[  572.741674]  ? kvm_set_memory_region+0x50/0x50
[  572.746248]  do_vfs_ioctl+0x1cf/0x16a0
[  572.750128]  ? ioctl_preallocate+0x2e0/0x2e0
[  572.754527]  ? fget_raw+0x20/0x20
[  572.757979]  ? __x64_sys_futex+0x477/0x680
[  572.762211]  ? do_futex+0x27d0/0x27d0
[  572.766008]  ? security_file_ioctl+0x94/0xc0
[  572.770415]  ksys_ioctl+0xa9/0xd0
[  572.773868]  __x64_sys_ioctl+0x73/0xb0
[  572.777743]  do_syscall_64+0x1b1/0x800
[  572.781617]  ? finish_task_switch+0x1ca/0x810
[  572.786101]  ? syscall_return_slowpath+0x5c0/0x5c0
[  572.791037]  ? syscall_return_slowpath+0x30f/0x5c0
[  572.795956]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  572.801310]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  572.806144]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  572.811319] RIP: 0033:0x455979
[  572.814492] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  572.822188] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  572.829442] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  572.836702] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  572.843955] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  572.851208] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  572.858733] warn_alloc_show_mem: 1 callbacks suppressed
[  572.858736] Mem-Info:
[  572.866637] active_anon:76053 inactive_anon:81 isolated_anon:0
[  572.866637]  active_file:3741 inactive_file:12176 isolated_file:0
2018/05/02 02:14:23 executing program 2:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000002a40)='/dev/vcsa#\x00', 0x3, 0x4a0040)
ioctl$KDSKBLED(r1, 0x4b65, 0x7)
recvmmsg(r0, &(0x7f0000008300)=[{{&(0x7f0000000080)=@hci, 0x80, &(0x7f0000002700)=[{&(0x7f0000000100)=""/225, 0xe1}, {&(0x7f0000000280)=""/198, 0xc6}, {&(0x7f0000000380)=""/142, 0x8e}, {&(0x7f0000000440)=""/125, 0x7d}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/66, 0x42}, {&(0x7f0000001540)=""/61, 0x3d}, {&(0x7f0000001580)=""/185, 0xb9}, {&(0x7f0000001640)=""/164, 0xa4}, {&(0x7f0000001700)=""/4096, 0x1000}], 0xa, &(0x7f00000027c0)=""/250, 0xfa, 0x8000}, 0x1}, {{&(0x7f00000028c0)=@nl=@proc, 0x80, &(0x7f0000003c00)=[{&(0x7f0000002940)=""/149, 0x95}, {&(0x7f0000002a00)=""/53, 0x35}, {&(0x7f0000002a40)}, {&(0x7f0000002a80)=""/104, 0x68}, {&(0x7f0000002b00)=""/4096, 0x1000}, {&(0x7f0000003b00)=""/45, 0x2d}, {&(0x7f0000003b40)=""/177, 0xb1}], 0x7, &(0x7f0000003c80)=""/251, 0xfb, 0xffff}, 0x81}, {{&(0x7f0000003d80)=@pppol2tpin6={0x0, 0x0, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @remote}}}, 0x80, &(0x7f0000003fc0)=[{&(0x7f0000003e00)=""/210, 0xd2}, {&(0x7f0000003f00)=""/154, 0x9a}], 0x2, &(0x7f0000004000)=""/84, 0x54, 0x3ff}, 0x400}, {{&(0x7f0000004080)=@vsock={0x0, 0x0, 0x0, @reserved}, 0x80, &(0x7f0000005540)=[{&(0x7f0000004100)=""/10, 0xa}, {&(0x7f0000004140)=""/168, 0xa8}, {&(0x7f0000004200)=""/226, 0xe2}, {&(0x7f0000004300)=""/197, 0xc5}, {&(0x7f0000004400)=""/22, 0x16}, {&(0x7f0000004440)=""/174, 0xae}, {&(0x7f0000004500)=""/58, 0x3a}, {&(0x7f0000004540)=""/4096, 0x1000}], 0x8, &(0x7f00000055c0)=""/58, 0x3a, 0xffffffffffff0000}, 0xc840}, {{&(0x7f0000005600)=@in6={0x0, 0x0, 0x0, @local}, 0x80, &(0x7f00000056c0)=[{&(0x7f0000005680)=""/44, 0x2c}], 0x1, &(0x7f0000005700)=""/157, 0x9d, 0x8}, 0x2}, {{&(0x7f00000057c0)=@alg, 0x80, &(0x7f00000058c0)=[{&(0x7f0000005840)=""/89, 0x59}], 0x1, &(0x7f0000005900)=""/75, 0x4b, 0x27d}, 0x6}, {{&(0x7f0000005980)=@llc={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x80, &(0x7f0000005c00)=[{&(0x7f0000005a00)=""/41, 0x29}, {&(0x7f0000005a40)=""/132, 0x84}, {&(0x7f0000005b00)=""/228, 0xe4}], 0x3, &(0x7f0000005c40)=""/48, 0x30, 0x1000}, 0x7b}, {{0x0, 0x0, &(0x7f0000006f80)=[{&(0x7f0000005c80)=""/185, 0xb9}, {&(0x7f0000005d40)=""/1, 0x1}, {&(0x7f0000005d80)=""/160, 0xa0}, {&(0x7f0000005e40)=""/14, 0xe}, {&(0x7f0000005e80)=""/4096, 0x1000}, {&(0x7f0000006e80)=""/94, 0x5e}, {&(0x7f0000006f00)=""/115, 0x73}], 0x7, 0x0, 0x0, 0x3}, 0x8001}, {{&(0x7f0000007000)=@nfc, 0x80, &(0x7f0000008200)=[{&(0x7f0000007080)=""/214, 0xd6}, {&(0x7f0000007180)=""/4096, 0x1000}, {&(0x7f0000008180)=""/114, 0x72}], 0x3, &(0x7f0000008240)=""/132, 0x84, 0x400}, 0x3}], 0x9, 0x40, &(0x7f0000008540)={0x77359400})
ioctl$PPPIOCSMRU(r2, 0x40047452, &(0x7f0000008580)=0x5e1c)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'seqiv(rfc7539esp(chacha20-simd,md5-generic))\x00'}, 0x58)

2018/05/02 02:14:23 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000006a040000d0"], 0x1)

2018/05/02 02:14:23 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000001d040000d0"], 0x1)

2018/05/02 02:14:23 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c5040000d0"], 0x1)

[  572.866637]  unevictable:0 dirty:297 writeback:0 unstable:0
[  572.866637]  slab_reclaimable:10716 slab_unreclaimable:104891
[  572.866637]  mapped:73882 shmem:88 pagetables:1082 bounce:0
[  572.866637]  free:1324767 free_pcp:510 free_cma:0
[  572.900334] Node 0 active_anon:304276kB inactive_anon:324kB active_file:14964kB inactive_file:48704kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295528kB dirty:1188kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 141312kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:14:24 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000025040000d0"], 0x1)

[  572.928655] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  572.954953] lowmem_reserve[]: 0 2830 6335 6335
[  572.959626] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:92kB free_cma:0kB
[  572.987318] lowmem_reserve[]: 0 0 3505 3505
[  572.991722] Node 0 Normal free:2385004kB min:37300kB low:46624kB high:55948kB active_anon:302148kB inactive_anon:324kB active_file:14964kB inactive_file:48704kB unevictable:0kB writepending:1188kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5856kB pagetables:4328kB bounce:0kB free_pcp:1136kB local_pcp:604kB free_cma:0kB
[  573.021743] lowmem_reserve[]: 0 0 0 0
2018/05/02 02:14:24 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000cd040000d0"], 0x1)

[  573.025618] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  573.039333] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  573.055215] Node 0 Normal: 1825*4kB (UME) 3267*8kB (UME) 3097*16kB (UME) 3034*32kB (UME) 1479*64kB (UME) 311*128kB (UM) 195*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 49*2048kB (UM) 438*4096kB (UM) = 2383276kB
2018/05/02 02:14:24 executing program 5:
perf_event_open(&(0x7f000025c000)={0x4000000002, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-', 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r0, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0x4}, 0xffffffffffffff76)
listen(r0, 0x6a)
fcntl$getflags(r0, 0x40b)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffff9c, 0x84, 0x77, &(0x7f00000001c0)=ANY=[@ANYRES32=0x0], &(0x7f0000000180)=0x1)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000000c0)={0x0, 0x7, 0x1, 0x0, 0x0, 0x100000001}, 0x14)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000580)={<r3=>0x0, 0xea79, 0x30}, &(0x7f00000005c0)=0xc)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000740)={<r4=>r3, @in={{0x2, 0x4e24, @multicast1=0xe0000001}}}, &(0x7f0000000600)=0x84)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000840)={<r5=>0x0, 0xa}, &(0x7f0000000880)=0x8)
sendmsg$inet_sctp(r2, &(0x7f0000000940)={&(0x7f0000000380)=@in={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10, &(0x7f00000006c0)=[{&(0x7f00000003c0)="80544af5497e9a5377f49dde346d5801e38d72e58f0dc865e1279b2ee777654398a2e3441dc828d1572adb588708eee04d8df5f177f5f4e72a69ff798bfe16f94c1e2d1212c38149928c6096d69c1b449b6a6b293017889030327d18da0674165cfae4677f11aac071f606a1778de1003fb186916f154c0faa2e250a5fcab0480782bdd96cde629716ab3773748f417f5422c70000000000000000000000000000", 0xa1}], 0x1, &(0x7f00000008c0)=[@sndinfo={0x20, 0x84, 0x2, {0xbd6, 0x200, 0xfffffffffffffff7, 0x2, r5}}], 0x30, 0x20008000}, 0x20000000)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10)
socketpair(0x8, 0x1, 0x8, &(0x7f0000000980)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r7, 0x10e, 0x8, &(0x7f00000009c0)=0x5, 0x4)
mkdir(&(0x7f0000024ff6)='./control\x00', 0x0)
r8 = open(&(0x7f0000267ff6)='./control\x00', 0x0, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x0)
ioctl$LOOP_CHANGE_FD(r8, 0x40049409, r0)
fallocate(r8, 0x2, 0x8, 0x3)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080))
getsockopt$inet_sctp6_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000200)=@assoc_value={<r9=>0x0, 0x81}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f00000002c0)={r9, 0x9}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_RTOINFO(r8, 0x84, 0x0, &(0x7f0000000280)={r9, 0x9}, 0x10)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r8, 0x84, 0x5, &(0x7f0000000b00)={r4, @in6={{0xa, 0x4e21, 0xa1c5, @dev={0xfe, 0x80, [], 0x17}, 0x20}}}, 0x84)
ioctl$EVIOCGSND(r8, 0x8040451a, &(0x7f0000000340)=""/14)
accept4$nfc_llcp(r6, &(0x7f0000000a00), &(0x7f0000000140)=0xb, 0x80800)
rename(&(0x7f0000000040)='./control\x00', &(0x7f0000000ac0)='./control\x00')
tee(r0, r0, 0x9, 0x1)

2018/05/02 02:14:24 executing program 2:
r0 = socket$packet(0x11, 0x20000003, 0x300)
r1 = dup(r0)
shutdown(r0, 0x0)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00004da000), 0x4)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000001700)={'team0\x00', <r2=>0x0})
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000040)={0x0, 0x126d619b, 0x2, &(0x7f0000000000)=0x4})
bind$packet(r0, &(0x7f0000000140)={0x11, 0x2000000000, r2, 0x1, 0x5, 0x6}, 0x14)

[  573.074184] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  573.082804] 16004 total pagecache pages
[  573.086843] 0 pages in swap cache
[  573.090331] Swap cache stats: add 0, delete 0, find 0/0
[  573.095745] Free swap  = 0kB
[  573.098802] Total swap = 0kB
[  573.101867] 1965969 pages RAM
[  573.105005] 0 pages HighMem/MovableOnly
[  573.109040] 339347 pages reserved
[  573.152300] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  573.164115] syz-executor4 cpuset=syz4 mems_allowed=0
[  573.169309] CPU: 1 PID: 29602 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  573.176587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  573.185942] Call Trace:
[  573.188551]  dump_stack+0x1b9/0x294
[  573.192195]  ? dump_stack_print_info.cold.2+0x52/0x52
[  573.197402]  ? kasan_check_read+0x11/0x20
[  573.201564]  warn_alloc.cold.118+0xb2/0x1b8
[  573.205900]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  573.210758]  ? trace_hardirqs_on+0xd/0x10
[  573.214919]  ? _raw_spin_unlock_irq+0x27/0x70
[  573.219425]  ? finish_task_switch+0x1ca/0x810
[  573.223940]  ? lock_repin_lock+0x410/0x410
[  573.228196]  __vmalloc_node_range+0x45e/0x750
[  573.232690]  ? graph_lock+0x170/0x170
[  573.236481]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  573.241312]  __vmalloc_node_flags_caller+0x75/0x90
[  573.246226]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  573.251055]  kvmalloc_node+0xde/0x100
[  573.254841]  kvm_arch_create_memslot+0xa3/0x4e0
[  573.259589]  __kvm_set_memory_region+0x1d1b/0x2e50
[  573.264513]  ? kvm_vcpu_block+0x1050/0x1050
[  573.268820]  ? check_same_owner+0x320/0x320
[  573.273125]  ? do_raw_spin_unlock+0x9e/0x2e0
[  573.277519]  ? rcu_note_context_switch+0x710/0x710
[  573.282434]  ? lock_acquire+0x1dc/0x520
[  573.286395]  ? graph_lock+0x170/0x170
[  573.290194]  ? __might_sleep+0x95/0x190
[  573.294155]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  573.299679]  ? futex_wait_queue_me+0x550/0x820
[  573.304246]  ? refill_pi_state_cache.part.7+0x300/0x300
[  573.310205]  ? find_held_lock+0x36/0x1c0
[  573.314254]  ? lock_downgrade+0x8e0/0x8e0
[  573.318410]  kvm_set_memory_region+0x2e/0x50
[  573.322803]  kvm_vm_ioctl+0x668/0x1d90
[  573.326675]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  573.331769]  ? futex_wake+0x2f6/0x750
[  573.335562]  ? kvm_set_memory_region+0x50/0x50
[  573.340130]  ? get_futex_key+0x1e90/0x1e90
[  573.344358]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  573.349534]  ? do_futex+0x249/0x27d0
[  573.353229]  ? graph_lock+0x170/0x170
[  573.357028]  ? exit_robust_list+0x290/0x290
[  573.361340]  ? find_held_lock+0x36/0x1c0
[  573.367040]  ? lock_downgrade+0x8e0/0x8e0
[  573.371176]  ? kasan_check_read+0x11/0x20
[  573.375305]  ? rcu_is_watching+0x85/0x140
[  573.379437]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  573.384620]  ? __fget+0x40c/0x650
[  573.388149]  ? do_raw_spin_unlock+0x1/0x2e0
[  573.392455]  ? expand_files.part.8+0x9a0/0x9a0
[  573.397028]  ? kasan_check_write+0x14/0x20
[  573.401253]  ? do_raw_spin_lock+0xc1/0x200
[  573.405478]  ? _raw_spin_unlock+0x22/0x30
[  573.409617]  ? kvm_set_memory_region+0x50/0x50
[  573.414188]  do_vfs_ioctl+0x1cf/0x16a0
[  573.418063]  ? ioctl_preallocate+0x2e0/0x2e0
[  573.422456]  ? fget_raw+0x20/0x20
[  573.425903]  ? __x64_sys_futex+0x477/0x680
[  573.430123]  ? do_futex+0x27d0/0x27d0
[  573.433917]  ? security_file_ioctl+0x94/0xc0
[  573.438309]  ksys_ioctl+0xa9/0xd0
[  573.441747]  __x64_sys_ioctl+0x73/0xb0
[  573.445618]  do_syscall_64+0x1b1/0x800
[  573.449493]  ? syscall_return_slowpath+0x5c0/0x5c0
[  573.454409]  ? syscall_return_slowpath+0x30f/0x5c0
[  573.459324]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  573.464675]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  573.469507]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  573.474691] RIP: 0033:0x455979
[  573.477878] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  573.485571] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  573.492824] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  573.500077] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  573.507326] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  573.514583] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:24 executing program 7:
pselect6(0x34, &(0x7f0000b9e000), &(0x7f0000f58000), &(0x7f00000ddfc0)={0xffffffffffffffe2}, &(0x7f00008e5ff0)={0x0, 0x989680}, &(0x7f0000dd6ff0)={&(0x7f0000cc8ff8), 0x8})
r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x80000)
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000100)=ANY=[@ANYBLOB="060000000000000000000000000000000000000000000008009e6d816b6f45d5e5dab65e18000000b474ccbb969013f067f6364162a7edc6ec6607c694240e3978c6b25aba1d36c64cbb846cca6b7349a86a3546fadf00b36e42d07ef95d1da83c26f4d73a8ad2b2be9ea718203d94b4505f65a4cde84d07ceba9ba337"])
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)

2018/05/02 02:14:24 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000020000000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:24 executing program 1:
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x6)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'syzkaller1\x00', <r4=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="440000001200000728bd7000ffdbdf2500000000", @ANYRES32=r4, @ANYBLOB="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"], 0x3}, 0x1, 0x0, 0x0, 0x4000}, 0x802)
write$binfmt_elf64(r3, &(0x7f00000001c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x5, 0x101, 0x800, 0x240000, 0x3, 0x3f, 0x1, 0x131, 0x40, 0x2fe, 0xfff, 0x2, 0x38, 0x5, 0x7ff, 0x6}, [{0x7, 0x4, 0x1, 0x100000001, 0x7fff, 0x6, 0x70, 0xfff}, {0x1, 0xd2d, 0x5, 0x10001, 0x400, 0xb09, 0x2, 0x5}], "43733e0fbd4bd95b452746e138fc40e486b324163b6bfcfb033a592ef8e65a9254daf7c759f87a3eb6a63167674ac6e1183c8cfa98e31a11129294bd10feaed48e9baff5b1a71ad6201187d2b9219f099218e2d9da4ddf23eb7a2f4dde5ea86e3aced223a36048c68123f97676bbd717e17a63120b7c12e3c30aa99580c56eaf56c3995819575966e522a1a8e806a7a1da875b358812118d33938de302a48100aa4729c73d2682a492c15984b29f8f92df674dbeb6ea534f2d0b79918fd75ac4a3fbcd28a0dca699b40873acafbc5f422d2d4e822f731529f5bce08179611b"}, 0x18f)
r5 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r2, r1, 0x1, 0x0)
dup3(r3, r0, 0x80000)
dup2(r2, r5)

2018/05/02 02:14:24 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x412400, 0x0)
ppoll(&(0x7f0000000100)=[{r0, 0x40}, {r1, 0x8}, {r0, 0x80}, {r2, 0x9082}, {r0, 0x1000}], 0x5, &(0x7f0000000140)={0x77359400}, &(0x7f0000000180)={0x3ff}, 0x8)
dup3(r1, r0, 0x0)

2018/05/02 02:14:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x40000000, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:24 executing program 5:
socket$inet(0x2, 0x3, 0x19)
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000040))

2018/05/02 02:14:24 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c7040000d0"], 0x1)

2018/05/02 02:14:24 executing program 2:
r0 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x3, 0x2040)
r1 = perf_event_open$cgroup(&(0x7f0000000040)={0x3, 0x70, 0x785, 0x6, 0x8, 0x6, 0x0, 0x192, 0x1000, 0x1, 0x6, 0x1, 0x1, 0x100, 0xffff, 0xf792, 0x7e338a41, 0xfffffffffffffff9, 0x1000, 0xffffffffffffffc0, 0xd94d198, 0x0, 0xffff, 0x1f, 0x1, 0x5, 0x3, 0xbb86, 0xfff, 0x784a, 0x0, 0x10001, 0x7f, 0x7, 0x4, 0x4537, 0x5, 0x1f, 0x0, 0x4, 0x0, @perf_config_ext={0x675d, 0x1ff}, 0x401, 0x20, 0x4e, 0x1, 0x8, 0x1, 0x81}, 0xffffffffffffff9c, 0x4, 0xffffffffffffffff, 0x3)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f00000000c0)={0x80000003})
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000015c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$rdma_cm(r2, &(0x7f00000004c0)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000480)={<r3=>0xffffffff}, 0x13f}}, 0x20)
write$rdma_cm(r2, &(0x7f0000000500)=ANY=[@ANYBLOB="03000000400000fa02000000000000000000000000000000000000000000000100000000020000000dad0000fe8000000000000000000000000000aa00000000", @ANYRES32=r3, @ANYBLOB="00018000"], 0x48)

[  573.726393] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  573.738286] syz-executor4 cpuset=syz4 mems_allowed=0
[  573.743506] CPU: 1 PID: 29632 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  573.750784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  573.760135] Call Trace:
[  573.762743]  dump_stack+0x1b9/0x294
[  573.766391]  ? dump_stack_print_info.cold.2+0x52/0x52
[  573.771596]  ? graph_lock+0x170/0x170
2018/05/02 02:14:24 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000024040000d0"], 0x1)

[  573.775414]  warn_alloc.cold.118+0xb2/0x1b8
[  573.779750]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  573.784611]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  573.790692]  ? update_load_avg+0x2d9/0x2570
[  573.795024]  ? graph_lock+0x170/0x170
[  573.798860]  __vmalloc_node_range+0x45e/0x750
[  573.803380]  ? graph_lock+0x170/0x170
[  573.807189]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  573.812039]  __vmalloc_node_flags_caller+0x75/0x90
[  573.816978]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  573.821827]  kvmalloc_node+0xde/0x100
[  573.825618]  kvm_arch_create_memslot+0xa3/0x4e0
[  573.830299]  __kvm_set_memory_region+0x1d1b/0x2e50
[  573.835232]  ? kvm_vcpu_block+0x1050/0x1050
[  573.839542]  ? print_usage_bug+0xc0/0xc0
[  573.843592]  ? zap_class+0x720/0x720
[  573.847295]  ? lock_downgrade+0x8e0/0x8e0
[  573.851436]  ? graph_lock+0x170/0x170
[  573.855227]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  573.859802]  ? __lock_acquire+0x7f5/0x5140
[  573.864035]  ? trace_hardirqs_on+0xd/0x10
[  573.868176]  ? find_held_lock+0x36/0x1c0
[  573.872265]  ? lock_downgrade+0x8e0/0x8e0
[  573.877057]  kvm_set_memory_region+0x2e/0x50
[  573.881480]  kvm_vm_ioctl+0x668/0x1d90
[  573.885358]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  573.890885]  ? __perf_event_task_sched_in+0x247/0xb80
[  573.896064]  ? kvm_set_memory_region+0x50/0x50
[  573.900647]  ? find_held_lock+0x36/0x1c0
[  573.904696]  ? perf_trace_lock+0xd6/0x900
[  573.908836]  ? zap_class+0x720/0x720
[  573.912536]  ? finish_task_switch+0x182/0x810
[  573.917031]  ? kasan_check_read+0x11/0x20
[  573.921167]  ? graph_lock+0x170/0x170
[  573.924953]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  573.929526]  ? compat_start_thread+0x80/0x80
[  573.933926]  ? _raw_spin_unlock_irq+0x27/0x70
[  573.938412]  ? trace_hardirqs_on+0xd/0x10
[  573.942545]  ? _raw_spin_unlock_irq+0x27/0x70
[  573.947037]  ? find_held_lock+0x36/0x1c0
[  573.951094]  ? lock_downgrade+0x8e0/0x8e0
[  573.955232]  ? rcu_is_watching+0x85/0x140
[  573.959371]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  573.964562]  ? __fget+0x40c/0x650
[  573.968010]  ? expand_files.part.8+0x9a0/0x9a0
[  573.972582]  ? lock_downgrade+0x8e0/0x8e0
[  573.976726]  ? vma_set_page_prot+0x239/0x300
[  573.981127]  ? kvm_set_memory_region+0x50/0x50
[  573.985704]  do_vfs_ioctl+0x1cf/0x16a0
[  573.989594]  ? ioctl_preallocate+0x2e0/0x2e0
[  573.994000]  ? fget_raw+0x20/0x20
[  573.997459]  ? exit_to_usermode_loop+0x87/0x310
[  574.002123]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  574.007648]  ? security_file_ioctl+0x94/0xc0
[  574.012051]  ksys_ioctl+0xa9/0xd0
[  574.015501]  __x64_sys_ioctl+0x73/0xb0
[  574.019381]  do_syscall_64+0x1b1/0x800
[  574.023254]  ? finish_task_switch+0x1ca/0x810
[  574.027739]  ? syscall_return_slowpath+0x5c0/0x5c0
[  574.032655]  ? syscall_return_slowpath+0x30f/0x5c0
[  574.037582]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  574.042940]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  574.047775]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  574.052949] RIP: 0033:0x455979
[  574.056122] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  574.063820] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  574.071073] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  574.078326] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  574.085580] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  574.093267] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  574.100747] warn_alloc_show_mem: 1 callbacks suppressed
[  574.100750] Mem-Info:
[  574.108567] active_anon:79125 inactive_anon:80 isolated_anon:0
[  574.108567]  active_file:3741 inactive_file:12188 isolated_file:0
[  574.108567]  unevictable:0 dirty:309 writeback:0 unstable:0
2018/05/02 02:14:25 executing program 1:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$sndseq(r2, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80000)
setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000000)=0x3, 0x4)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
getsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000040)={<r4=>0x0, 0x4, 0x4, 0xdb}, &(0x7f00000000c0)=0x10)
setsockopt$inet_sctp_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f0000000100)={r4, 0x10000, 0x29, "693703f784fc3e3f02db4b185a317a3e17ccb4efacf6debc1c1b0656b981cc998644c2a8351944291b"}, 0x31)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r3, r0, 0x3, 0x0)
dup2(r1, r3)

[  574.108567]  slab_reclaimable:10707 slab_unreclaimable:104773
[  574.108567]  mapped:73879 shmem:88 pagetables:1134 bounce:0
[  574.108567]  free:1321986 free_pcp:387 free_cma:0
[  574.142236] Node 0 active_anon:316500kB inactive_anon:320kB active_file:14964kB inactive_file:48752kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295516kB dirty:1236kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 129024kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  574.170475] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  574.196668] lowmem_reserve[]: 0 2830 6335 6335
2018/05/02 02:14:25 executing program 2:
mkdir(&(0x7f00008c9ff6)='./control\x00', 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x200000, 0x0)
getsockopt$netrom_NETROM_IDLE(r0, 0x103, 0x7, &(0x7f0000000080)=0x80000001, &(0x7f0000000100)=0x4)
r1 = inotify_init()
inotify_add_watch(r1, &(0x7f00000000c0)='./control\x00', 0x1000000)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f0000fc7000)='./control\x00', 0x86000006)
inotify_add_watch(r1, &(0x7f0000000000)='./control\x00', 0xa0000000)

2018/05/02 02:14:25 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000074040000d0"], 0x1)

[  574.201310] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:92kB free_cma:0kB
[  574.228980] lowmem_reserve[]: 0 0 3505 3505
[  574.233380] Node 0 Normal free:2381172kB min:37300kB low:46624kB high:55948kB active_anon:306136kB inactive_anon:320kB active_file:14964kB inactive_file:48752kB unevictable:0kB writepending:1236kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5696kB pagetables:4388kB bounce:0kB free_pcp:984kB local_pcp:408kB free_cma:0kB
[  574.263322] lowmem_reserve[]: 0 0 0 0
2018/05/02 02:14:25 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000064040000d0"], 0x1)

[  574.267169] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  574.280890] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  574.296776] Node 0 Normal: 1887*4kB (UME) 3129*8kB (UME) 3185*16kB (UME) 3036*32kB (UME) 1479*64kB (UME) 311*128kB (UM) 195*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 48*2048kB (UM) 438*4096kB (UM) = 2381844kB
[  574.315718] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  574.324328] 16016 total pagecache pages
2018/05/02 02:14:25 executing program 5:
socketpair(0xa, 0x5, 0xff, &(0x7f00000012c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$LOOP_CLR_FD(r1, 0x4c01)
r2 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x100000000, 0x40402)
ioctl$DRM_IOCTL_GEM_OPEN(r1, 0xc010640b, &(0x7f00000013c0)={<r3=>0x0, 0x0, 0x7})
ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, &(0x7f0000001400)={0x0, <r4=>0x0, 0x8})
ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f00000011c0)={r4, <r5=>r3})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffff9c, 0xc00c642e, &(0x7f0000001200)={<r6=>0x0, 0x80000})
ioctl$DRM_IOCTL_GEM_OPEN(r2, 0xc010640b, &(0x7f0000001280)={r5, r6, 0xfffffffffffffffa})
pipe(&(0x7f0000001240)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r10 = userfaultfd(0x0)
ioctl$UFFDIO_API(r10, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
recvfrom$ipx(r1, &(0x7f0000001300)=""/103, 0x67, 0x12100, &(0x7f0000001380)={0x4, 0x80000000, 0xad2, "67f5ba25427b", 0x100000001}, 0x10)
ioctl$UFFDIO_REGISTER(r10, 0xc020aa00, &(0x7f0000001100)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x2})
write$sndseq(r9, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @quote={{}, 0x0, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, @time={0x0, 0x1c9c380}, {}, {}, @quote={{}, 0x0, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}}}}}], 0x30)
tee(r8, r7, 0x1, 0x0)
write$vnet(r9, &(0x7f0000001080)={0x1, {&(0x7f0000000040)=""/4096, 0x1000, &(0x7f0000001040)=""/45}}, 0x68)
dup2(r9, r10)

2018/05/02 02:14:25 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000040000000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  574.328372] 0 pages in swap cache
[  574.331853] Swap cache stats: add 0, delete 0, find 0/0
[  574.337258] Free swap  = 0kB
[  574.340299] Total swap = 0kB
[  574.343383] 1965969 pages RAM
[  574.346530] 0 pages HighMem/MovableOnly
[  574.350539] 339347 pages reserved
[  574.383894] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  574.395717] syz-executor4 cpuset=syz4 mems_allowed=0
[  574.400904] CPU: 1 PID: 29666 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  574.408189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  574.417544] Call Trace:
[  574.420143]  dump_stack+0x1b9/0x294
[  574.423785]  ? dump_stack_print_info.cold.2+0x52/0x52
[  574.428988]  warn_alloc.cold.118+0xb2/0x1b8
2018/05/02 02:14:25 executing program 2:
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00004e8000)=[{&(0x7f00005dff57)=';', 0x1}], 0x1, 0x9)
write(r1, &(0x7f0000335000), 0xfc94)
mmap(&(0x7f00001f2000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
io_setup(0x10000000a1b0, &(0x7f0000000000)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000200)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000040)='B', 0x1}])
mmap(&(0x7f0000000000/0x397000)=nil, 0x397000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f0000000140))
readv(r0, &(0x7f00003e2000)=[{&(0x7f00005dd000)=""/4096, 0x1000}], 0x1)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f00000000c0)=r0)
ppoll(&(0x7f0000000180)=[{r1, 0x2}, {r0}, {r1, 0xa0}, {r1, 0xc000}], 0x4, &(0x7f0000000240), &(0x7f0000000280)={0x7}, 0x8)
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000100))

[  574.433317]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  574.438192]  __vmalloc_node_range+0x45e/0x750
[  574.442696]  ? graph_lock+0x170/0x170
[  574.446506]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  574.451359]  __vmalloc_node_flags_caller+0x75/0x90
[  574.456296]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  574.461148]  kvmalloc_node+0xde/0x100
[  574.464959]  kvm_arch_create_memslot+0xa3/0x4e0
[  574.469645]  __kvm_set_memory_region+0x1d1b/0x2e50
[  574.474600]  ? kvm_vcpu_block+0x1050/0x1050
[  574.478943]  ? graph_lock+0x170/0x170
[  574.482765]  ? find_held_lock+0x36/0x1c0
[  574.486848]  ? lock_downgrade+0x8e0/0x8e0
[  574.491036]  kvm_set_memory_region+0x2e/0x50
[  574.495458]  kvm_vm_ioctl+0x668/0x1d90
[  574.499375]  ? __lock_acquire+0x7f5/0x5140
[  574.499403]  ? kvm_set_memory_region+0x50/0x50
[  574.508224]  ? debug_check_no_locks_freed+0x310/0x310
[  574.513440]  ? print_usage_bug+0xc0/0xc0
[  574.517514]  ? graph_lock+0x170/0x170
[  574.521337]  ? find_held_lock+0x36/0x1c0
[  574.525424]  ? lock_downgrade+0x8e0/0x8e0
[  574.529586]  ? kasan_check_read+0x11/0x20
[  574.533743]  ? rcu_is_watching+0x85/0x140
[  574.537909]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  574.537931]  ? __fget+0x40c/0x650
[  574.546561]  ? do_raw_spin_unlock+0x1/0x2e0
[  574.550892]  ? expand_files.part.8+0x9a0/0x9a0
[  574.555478]  ? kasan_check_write+0x14/0x20
[  574.559717]  ? do_raw_spin_lock+0xc1/0x200
[  574.563966]  ? _raw_spin_unlock+0x22/0x30
[  574.570982]  ? kvm_set_memory_region+0x50/0x50
[  574.575574]  do_vfs_ioctl+0x1cf/0x16a0
[  574.579474]  ? ioctl_preallocate+0x2e0/0x2e0
[  574.583880]  ? fget_raw+0x20/0x20
[  574.587340]  ? lock_downgrade+0x8e0/0x8e0
[  574.591490]  ? finish_task_switch+0x182/0x810
[  574.595998]  ? security_file_ioctl+0x94/0xc0
[  574.600408]  ksys_ioctl+0xa9/0xd0
[  574.603848]  __x64_sys_ioctl+0x73/0xb0
[  574.607729]  do_syscall_64+0x1b1/0x800
[  574.611609]  ? finish_task_switch+0x1ca/0x810
[  574.616093]  ? syscall_return_slowpath+0x5c0/0x5c0
[  574.621016]  ? syscall_return_slowpath+0x30f/0x5c0
[  574.625945]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  574.631318]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  574.636155]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  574.641328] RIP: 0033:0x455979
[  574.644506] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  574.652204] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  574.659461] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  574.666722] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  574.673974] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  574.681227] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:26 executing program 7:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x200010, 0x0, 0x6})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000300)="c16a00012e260f01ca0f300f350f20e06635000100000f22e066b8ef0000000f23c80f21f866350c00e0000f23f80f21976766c7442400a56c05676766c7442402af3f00006766c744240600000000670f011424b8f1008ee80faeaf0100", 0x5e}], 0x1, 0x0, &(0x7f0000000100), 0x0)
connect$ax25(0xffffffffffffffff, &(0x7f00000002c0)={0x3, {"99e76c91a53b41"}}, 0x10)
ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000000000000000000000000000000000000000000000000000000000000000000000241c259c7550b296f0df8c5a8483d8afaee4a0a5607f5c2af04fcf01732f560d6678dbc187b404f687e95e08c7c19d8b3f6b7d417"])
r2 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x2, 0x80100)
readlinkat(r2, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)=""/55, 0x37)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000400)="baf80c66b8f5e29b8266efbafc0cb04cee0f21a90f22570fe2a2880b230f0f009678002e0f01cbba4300ec0f01cf66b8c63554fa0f23c00f21f86635030006000f23f8", 0x43}], 0x1, 0x0, &(0x7f0000000480), 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000240)={0x2, [0x0, 0x0]})

2018/05/02 02:14:26 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000004003000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x4, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:26 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f00000000c0)=<r3=>0x0)
ptrace$peek(0x3, r3, &(0x7f0000000100))
dup3(r1, r1, 0x0)

2018/05/02 02:14:26 executing program 2:
ioctl$DRM_IOCTL_SET_SAREA_CTX(0xffffffffffffffff, 0x4010641c, &(0x7f0000000940)={0x0, &(0x7f0000000140)=""/76})
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x0, 0x6, 0xffffffff, 0x400}]}, 0x10)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c)
sendmmsg(r0, &(0x7f0000007e00)=[{{0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f00000003c0)}}, {{&(0x7f00000004c0)=@in6={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c, &(0x7f0000000680), 0x3ba, &(0x7f0000002000)=[{0x10}], 0x10}}], 0x2, 0x8000)

2018/05/02 02:14:26 executing program 1:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$sndseq(r2, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000000)="4d0c34362bff9a93c1db7707034205be", 0x10)
tee(r1, r0, 0x1, 0x0)
dup2(r1, r3)

2018/05/02 02:14:26 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000013040000d0"], 0x1)

2018/05/02 02:14:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
r3 = dup3(r2, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x3, 0x0, 0x1000})
r4 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r4, &(0x7f000000d000)={0xa, 0x4e20}, 0x1c)
connect$inet6(r4, &(0x7f000000cfe4)={0xa, 0x4e20}, 0x1c)
sendmsg(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000840)="6630d866ddc98cb94561535933495335feb1577dcc26ffae73e10904d567e7230c8f", 0x22}], 0x1, &(0x7f0000001080)}, 0xc100)
sendmsg(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001000)="8e86a4b9500a1139a0d93a78de7ed00ae239537b41a4eacfcfd438dfbe84ef20bd", 0x21}], 0x1, &(0x7f0000002000)}, 0x8000)
readv(r4, &(0x7f0000000280)=[{&(0x7f0000000140)=""/53, 0x35}, {&(0x7f0000000180)=""/4, 0x4}, {&(0x7f0000000300)=""/155, 0x9b}], 0x3)
sendmsg(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000002ff0)=[{&(0x7f0000000040)="bce5", 0x2}], 0x1, &(0x7f000000ae80)}, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001180)=[@text64={0x40, &(0x7f0000000040)="440f20c0350e000000440f22c0260f013ab805000000b9078000000f01d9b9321001c0b802000000ba000000000f30c744240000f0d9e8c744240204000000c7442406000000000f011424c4227d0ff70f353e660f38814d0ac4e27d8c07668ec5", 0x61}], 0x1, 0x0, &(0x7f00000011c0), 0x0)
connect$netrom(0xffffffffffffffff, &(0x7f0000000000)=@ax25={0x3, {"a8e947d4ca5043"}}, 0x10)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  575.425465] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  575.437277] syz-executor4 cpuset=syz4 mems_allowed=0
[  575.442468] CPU: 0 PID: 29692 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  575.449739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  575.459084] Call Trace:
[  575.461669]  dump_stack+0x1b9/0x294
[  575.465286]  ? dump_stack_print_info.cold.2+0x52/0x52
[  575.470464]  ? graph_lock+0x170/0x170
[  575.474257]  warn_alloc.cold.118+0xb2/0x1b8
[  575.478566]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  575.483399]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  575.489447]  ? update_load_avg+0x2d9/0x2570
[  575.493753]  ? graph_lock+0x170/0x170
[  575.497542]  __vmalloc_node_range+0x45e/0x750
[  575.502032]  ? graph_lock+0x170/0x170
[  575.505821]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  575.510647]  __vmalloc_node_flags_caller+0x75/0x90
[  575.515561]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  575.520389]  kvmalloc_node+0xde/0x100
[  575.524173]  kvm_arch_create_memslot+0xa3/0x4e0
[  575.528840]  __kvm_set_memory_region+0x1d1b/0x2e50
[  575.533764]  ? kvm_vcpu_block+0x1050/0x1050
[  575.538071]  ? print_usage_bug+0xc0/0xc0
[  575.542117]  ? lock_downgrade+0x8e0/0x8e0
[  575.546248]  ? lock_downgrade+0x8e0/0x8e0
[  575.550381]  ? graph_lock+0x170/0x170
[  575.554254]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  575.558827]  ? __lock_acquire+0x7f5/0x5140
[  575.563048]  ? trace_hardirqs_on+0xd/0x10
[  575.567179]  ? find_held_lock+0x36/0x1c0
[  575.571231]  ? lock_downgrade+0x8e0/0x8e0
[  575.575379]  kvm_set_memory_region+0x2e/0x50
[  575.579773]  kvm_vm_ioctl+0x668/0x1d90
[  575.583645]  ? pick_next_task_fair+0x973/0x1660
[  575.588303]  ? kvm_set_memory_region+0x50/0x50
[  575.592874]  ? find_held_lock+0x36/0x1c0
[  575.596926]  ? lock_downgrade+0x8e0/0x8e0
[  575.601063]  ? finish_task_switch+0x182/0x810
[  575.605544]  ? kasan_check_read+0x11/0x20
[  575.609677]  ? graph_lock+0x170/0x170
[  575.613462]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  575.618031]  ? compat_start_thread+0x80/0x80
[  575.622431]  ? _raw_spin_unlock_irq+0x27/0x70
[  575.626995]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  575.631999]  ? trace_hardirqs_on+0xd/0x10
[  575.636137]  ? _raw_spin_unlock_irq+0x27/0x70
[  575.640614]  ? find_held_lock+0x36/0x1c0
[  575.644674]  ? lock_downgrade+0x8e0/0x8e0
[  575.648810]  ? kasan_check_read+0x11/0x20
[  575.652943]  ? rcu_is_watching+0x85/0x140
[  575.657073]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  575.662260]  ? __fget+0x40c/0x650
[  575.665709]  ? expand_files.part.8+0x9a0/0x9a0
[  575.670274]  ? lock_downgrade+0x8e0/0x8e0
[  575.674408]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  575.679934]  ? vma_set_page_prot+0x239/0x300
[  575.684335]  ? kvm_set_memory_region+0x50/0x50
[  575.688901]  do_vfs_ioctl+0x1cf/0x16a0
[  575.692778]  ? ioctl_preallocate+0x2e0/0x2e0
[  575.697179]  ? fget_raw+0x20/0x20
[  575.700622]  ? exit_to_usermode_loop+0x87/0x310
[  575.705278]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  575.710805]  ? security_file_ioctl+0x94/0xc0
[  575.715198]  ksys_ioctl+0xa9/0xd0
[  575.718646]  __x64_sys_ioctl+0x73/0xb0
[  575.722520]  do_syscall_64+0x1b1/0x800
[  575.726392]  ? syscall_return_slowpath+0x5c0/0x5c0
[  575.731305]  ? syscall_return_slowpath+0x30f/0x5c0
[  575.736222]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  575.741573]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  575.746401]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  575.751571] RIP: 0033:0x455979
[  575.754743] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  575.762436] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  575.769686] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  575.776939] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  575.784188] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  575.791437] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  575.798890] warn_alloc_show_mem: 1 callbacks suppressed
[  575.798893] Mem-Info:
[  575.806756] active_anon:78147 inactive_anon:79 isolated_anon:0
[  575.806756]  active_file:3741 inactive_file:12222 isolated_file:0
[  575.806756]  unevictable:0 dirty:321 writeback:0 unstable:0
2018/05/02 02:14:26 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000007b040000d0"], 0x1)

2018/05/02 02:14:26 executing program 2:
capset(&(0x7f0000000100)={0x19980330}, &(0x7f0000cc7fe8))
r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0xffffffffffffff9c, 0x1, 0x1, 0x9, &(0x7f0000000000)=[0x0], 0x1}, 0x20)
ioctl$TIOCCONS(r1, 0x541d)
shmat(r0, &(0x7f0000ffc000/0x2000)=nil, 0x0)
shmat(r0, &(0x7f0000ffc000/0x1000)=nil, 0x3000)
ioctl$TIOCSSOFTCAR(r1, 0x541a, &(0x7f0000000200)=0x3)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f00000000c0)={<r2=>0x0, 0x4}, &(0x7f0000000140)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000180)={0x10001, 0x3, 0x1, 0x4, 0x1, 0x7, 0x2, 0x7, r2}, &(0x7f00000001c0)=0x20)
fcntl$getownex(r1, 0x10, &(0x7f0000000080)={0x0, <r3=>0x0})
ptrace$pokeuser(0x6, r3, 0x3, 0xffffffff)

[  575.806756]  slab_reclaimable:10709 slab_unreclaimable:105049
[  575.806756]  mapped:73897 shmem:88 pagetables:1136 bounce:0
[  575.806756]  free:1322033 free_pcp:416 free_cma:0
[  575.840449] Node 0 active_anon:310460kB inactive_anon:316kB active_file:14964kB inactive_file:48888kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295588kB dirty:1284kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 145408kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:14:26 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000ba040000d0"], 0x1)

2018/05/02 02:14:26 executing program 2:
r0 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x3, 0x400000)
getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000080), &(0x7f0000000100)=0xb)
r1 = syz_open_dev$sndctrl(&(0x7f000090cfed)='/dev/snd/controlC#\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f00000000c0)=0x1)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000040))

[  575.868699] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  575.895092] lowmem_reserve[]: 0 2830 6335 6335
[  575.899808] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:728kB local_pcp:640kB free_cma:0kB
2018/05/02 02:14:27 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000043040000d0"], 0x1)

[  575.927580] lowmem_reserve[]: 0 0 3505 3505
[  575.931964] Node 0 Normal free:2373568kB min:37300kB low:46624kB high:55948kB active_anon:310488kB inactive_anon:316kB active_file:14964kB inactive_file:48888kB unevictable:0kB writepending:1284kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5760kB pagetables:4544kB bounce:0kB free_pcp:1016kB local_pcp:312kB free_cma:0kB
[  575.962030] lowmem_reserve[]: 0 0 0 0
2018/05/02 02:14:27 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000bb040000d0"], 0x1)

[  575.965920] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  575.979639] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  575.995554] Node 0 Normal: 1802*4kB (UME) 2954*8kB (UME) 3192*16kB (UME) 3033*32kB (UME) 1479*64kB (UME) 310*128kB (UM) 195*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 41*2048kB (UM) 438*4096kB (UM) = 2365656kB
[  576.014479] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  576.023108] 16050 total pagecache pages
2018/05/02 02:14:27 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000ffffff800000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  576.027133] 0 pages in swap cache
[  576.030637] Swap cache stats: add 0, delete 0, find 0/0
[  576.036050] Free swap  = 0kB
[  576.039110] Total swap = 0kB
[  576.042336] 1965969 pages RAM
[  576.045500] 0 pages HighMem/MovableOnly
[  576.049509] 339347 pages reserved
[  576.079945] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  576.091908] syz-executor4 cpuset=syz4 mems_allowed=0
[  576.097106] CPU: 1 PID: 29722 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  576.104382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  576.113733] Call Trace:
[  576.116316]  dump_stack+0x1b9/0x294
[  576.119935]  ? dump_stack_print_info.cold.2+0x52/0x52
[  576.125116]  ? kasan_check_read+0x11/0x20
[  576.129251]  warn_alloc.cold.118+0xb2/0x1b8
[  576.133567]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  576.138397]  ? trace_hardirqs_on+0xd/0x10
[  576.142534]  ? _raw_spin_unlock_irq+0x27/0x70
[  576.147021]  ? finish_task_switch+0x1ca/0x810
[  576.151510]  ? lock_repin_lock+0x410/0x410
[  576.155765]  __vmalloc_node_range+0x45e/0x750
[  576.160249]  ? graph_lock+0x170/0x170
[  576.164040]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  576.168867]  __vmalloc_node_flags_caller+0x75/0x90
[  576.173779]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  576.178611]  kvmalloc_node+0xde/0x100
[  576.182397]  kvm_arch_create_memslot+0xa3/0x4e0
[  576.187059]  __kvm_set_memory_region+0x1d1b/0x2e50
[  576.191978]  ? kvm_vcpu_block+0x1050/0x1050
[  576.196284]  ? print_usage_bug+0xc0/0xc0
[  576.200333]  ? check_same_owner+0x320/0x320
[  576.204637]  ? do_raw_spin_unlock+0x9e/0x2e0
[  576.209038]  ? rcu_note_context_switch+0x710/0x710
[  576.213948]  ? lock_acquire+0x1dc/0x520
[  576.217909]  ? graph_lock+0x170/0x170
[  576.221695]  ? __might_sleep+0x95/0x190
[  576.225668]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  576.231191]  ? futex_wait_queue_me+0x550/0x820
[  576.235755]  ? __lock_acquire+0x7f5/0x5140
[  576.239985]  ? refill_pi_state_cache.part.7+0x300/0x300
[  576.245336]  ? find_held_lock+0x36/0x1c0
[  576.249390]  ? lock_downgrade+0x8e0/0x8e0
[  576.253541]  kvm_set_memory_region+0x2e/0x50
[  576.257935]  kvm_vm_ioctl+0x668/0x1d90
[  576.261807]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  576.267330]  ? __perf_event_task_sched_in+0x247/0xb80
[  576.272503]  ? kvm_set_memory_region+0x50/0x50
[  576.277073]  ? find_held_lock+0x36/0x1c0
[  576.281123]  ? lock_downgrade+0x8e0/0x8e0
[  576.285256]  ? finish_task_switch+0x182/0x810
[  576.289737]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  576.294912]  ? do_futex+0x249/0x27d0
[  576.298612]  ? kasan_check_read+0x11/0x20
[  576.302744]  ? graph_lock+0x170/0x170
[  576.306536]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  576.311103]  ? compat_start_thread+0x80/0x80
[  576.315501]  ? _raw_spin_unlock_irq+0x27/0x70
[  576.319981]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  576.324981]  ? exit_robust_list+0x290/0x290
[  576.329287]  ? find_held_lock+0x36/0x1c0
[  576.333337]  ? lock_downgrade+0x8e0/0x8e0
[  576.337474]  ? kasan_check_read+0x11/0x20
[  576.341609]  ? rcu_is_watching+0x85/0x140
[  576.345742]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  576.350924]  ? __fget+0x40c/0x650
[  576.354371]  ? do_raw_spin_unlock+0x1/0x2e0
[  576.358677]  ? expand_files.part.8+0x9a0/0x9a0
[  576.363330]  ? kasan_check_write+0x14/0x20
[  576.367549]  ? do_raw_spin_lock+0xc1/0x200
[  576.371774]  ? kvm_set_memory_region+0x50/0x50
[  576.376348]  do_vfs_ioctl+0x1cf/0x16a0
[  576.380223]  ? ioctl_preallocate+0x2e0/0x2e0
[  576.384618]  ? fget_raw+0x20/0x20
[  576.388061]  ? __x64_sys_futex+0x477/0x680
[  576.392281]  ? exit_to_usermode_loop+0x87/0x310
[  576.396936]  ? do_futex+0x27d0/0x27d0
[  576.400721]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  576.406249]  ? security_file_ioctl+0x94/0xc0
[  576.410642]  ksys_ioctl+0xa9/0xd0
[  576.414089]  __x64_sys_ioctl+0x73/0xb0
[  576.417962]  do_syscall_64+0x1b1/0x800
[  576.421830]  ? finish_task_switch+0x1ca/0x810
[  576.426311]  ? syscall_return_slowpath+0x5c0/0x5c0
[  576.431224]  ? syscall_return_slowpath+0x30f/0x5c0
[  576.436158]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  576.441507]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  576.446336]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  576.451507] RIP: 0033:0x455979
[  576.454677] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  576.462368] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  576.469619] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
2018/05/02 02:14:27 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prctl$setfpexc(0xc, 0x100003)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

[  576.476880] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  576.484132] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  576.491380] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:27 executing program 7:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$int_in(r0, 0xaf01, &(0x7f0000000280))
r1 = eventfd(0xfff)
write$eventfd(r1, &(0x7f0000000080)=0xffffffffffffff90, 0x8)
syz_extract_tcp_res(&(0x7f0000000100), 0x5, 0xe1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000857ff8)={0x0, r1})
read$eventfd(r1, &(0x7f00000000c0), 0x8)

2018/05/02 02:14:27 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000098040000d0"], 0x1)

2018/05/02 02:14:27 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000003f00000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:27 executing program 3:
r0 = syz_open_dev$midi(&(0x7f00000001c0)='/dev/midi#\x00', 0x2357, 0x400)
ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f0000000200)=""/63)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value={<r3=>0x0, 0xffffffffffffff00}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000140)=@assoc_id=r3, &(0x7f0000000180)=0x4)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r4 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r5 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0x40045402, &(0x7f0000013000))
readv(r5, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r4, r1, 0x0)

2018/05/02 02:14:27 executing program 1:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$sndseq(r2, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r1, r0, 0x1, 0x0)
r4 = shmget$private(0x0, 0x2000, 0x80, &(0x7f0000012000/0x2000)=nil)
shmctl$IPC_RMID(r4, 0x0)
dup2(r1, r3)

2018/05/02 02:14:27 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f00003b8ffc)=0x400051)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x0)
read(r0, &(0x7f0000000100)=""/217, 0x493)
r2 = socket$inet6_dccp(0xa, 0x6, 0x0)
recvmmsg(r2, &(0x7f0000003ec0)=[{{&(0x7f0000000000)=@nfc, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/13, 0xd}], 0x1, &(0x7f0000000200)=""/139, 0x8b, 0x1}, 0x9}, {{&(0x7f00000002c0)=@pppoe={0x0, 0x0, {0x0, @random}}, 0x80, &(0x7f0000001800)=[{&(0x7f0000000340)=""/189, 0xbd}, {&(0x7f0000000400)=""/104, 0x68}, {&(0x7f0000000480)=""/22, 0x16}, {&(0x7f00000004c0)=""/58, 0x3a}, {&(0x7f0000000500)=""/116, 0x74}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/158, 0x9e}, {&(0x7f0000001640)=""/131, 0x83}, {&(0x7f0000001700)=""/165, 0xa5}, {&(0x7f00000017c0)=""/52, 0x34}], 0xa}, 0x8}, {{0x0, 0x0, &(0x7f0000002a00)=[{&(0x7f00000018c0)=""/4096, 0x1000}, {&(0x7f00000028c0)=""/22, 0x16}, {&(0x7f0000002900)=""/243, 0xf3}], 0x3, &(0x7f0000002a40), 0x0, 0x1ff}, 0x3}, {{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000002a80)=""/102, 0x66}, {&(0x7f0000002b00)=""/124, 0x7c}, {&(0x7f0000002b80)=""/146, 0x92}, {&(0x7f0000002c40)=""/206, 0xce}, {&(0x7f0000002d40)=""/86, 0x56}, {&(0x7f0000002dc0)=""/4096, 0x1000}, {&(0x7f0000003dc0)=""/10, 0xa}], 0x7, &(0x7f0000003e80)=""/42, 0x2a, 0x4000000000000000}, 0x7}], 0x4, 0x0, 0x0)
ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0)
ioctl$TCXONC(r1, 0x540b, 0x1)

2018/05/02 02:14:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x400100000000, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:27 executing program 5:
r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'ifb0\x00', 0xe86824d2c1c833cb})
timer_create(0x0, &(0x7f0000000340)={0x0, 0x33, 0x4, @thr={&(0x7f00000003c0)="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", &(0x7f0000000240)="6a4aa248eb2019cba1eb7d7da287710c43d48c80b9dd48a0de249f5fc12933b25628f3807764eb7e76a47efea423e6990dcc918feb656b02a11f2eb9bccc00dbb58ac1e7297583a797340eb838a5451e1f17e448483e848da928c55942f75641eb1b0e406e9f732a31472ef17602603dee0cfd235947f8961fed5fb60b5c5923d4dee8e1c74282356abcb383d6ee1758cbf10556242d6ec6eee6d0b1d3918fe8d8707312828f152fca627599799d35167ae492f3866d929262a27d8746a469cba61b507fc930d080f77e2874f8c92d5e"}}, &(0x7f00000013c0)=<r1=>0x0)
timer_gettime(r1, &(0x7f0000001400))
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000180)={"6772e57461701c09e4253a181d242b00", 0x600})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = dup(r2)
ioctl$ASHMEM_SET_NAME(r3, 0x41007701, &(0x7f0000000380)='user(*\x00')
sendmsg$nl_route(r2, &(0x7f0000001cc0)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000001440)=ANY=[@ANYBLOB="3000000010000108000000000000000000000000", @ANYRES32=0x0, @ANYBLOB="8000000000000000ffffffff000008046dfe892ea9a47fe38e030a3df99f6c4b4973c8c35d"], 0x30}, 0x1}, 0x0)
r4 = socket(0x11, 0x100000802, 0x0)
write$cgroup_int(r4, &(0x7f00000000c0)={[0x3f, 0x37, 0x3f, 0x37, 0x30, 0x32, 0x3a, 0x39]}, 0x8)
r5 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x2, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000001c0)={r5, 0x2, 0x1, 0x7, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7}, 0x20)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000040)={'ifb0\x00', 0xa201})

[  576.733577] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  576.745427] syz-executor4 cpuset=syz4 mems_allowed=0
[  576.750629] CPU: 0 PID: 29755 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  576.757908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  576.767263] Call Trace:
[  576.769867]  dump_stack+0x1b9/0x294
[  576.771935] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'.
2018/05/02 02:14:27 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000003d040000d0"], 0x1)

2018/05/02 02:14:27 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000006e040000d0"], 0x1)

[  576.773509]  ? dump_stack_print_info.cold.2+0x52/0x52
[  576.773527]  ? graph_lock+0x170/0x170
[  576.773551]  warn_alloc.cold.118+0xb2/0x1b8
[  576.773570]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  576.800164]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  576.806249]  ? update_load_avg+0x2d9/0x2570
[  576.810580]  ? graph_lock+0x170/0x170
[  576.814400]  __vmalloc_node_range+0x45e/0x750
[  576.818905]  ? graph_lock+0x170/0x170
[  576.822722]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  576.827569]  __vmalloc_node_flags_caller+0x75/0x90
[  576.832505]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  576.837364]  kvmalloc_node+0xde/0x100
[  576.841175]  kvm_arch_create_memslot+0xa3/0x4e0
[  576.845867]  __kvm_set_memory_region+0x1d1b/0x2e50
[  576.850815]  ? kvm_vcpu_block+0x1050/0x1050
[  576.855149]  ? print_usage_bug+0xc0/0xc0
[  576.859220]  ? lock_downgrade+0x8e0/0x8e0
[  576.863372]  ? lock_downgrade+0x8e0/0x8e0
[  576.867532]  ? graph_lock+0x170/0x170
[  576.871338]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  576.875924]  ? __lock_acquire+0x7f5/0x5140
[  576.880170]  ? trace_hardirqs_on+0xd/0x10
2018/05/02 02:14:27 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000a0040000d0"], 0x1)

[  576.881314] netlink: 16 bytes leftover after parsing attributes in process `syz-executor5'.
[  576.884334]  ? find_held_lock+0x36/0x1c0
[  576.884359]  ? lock_downgrade+0x8e0/0x8e0
[  576.884401]  kvm_set_memory_region+0x2e/0x50
[  576.884418]  kvm_vm_ioctl+0x668/0x1d90
[  576.884436]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  576.884456]  ? __perf_event_task_sched_in+0x247/0xb80
[  576.920074]  ? kvm_set_memory_region+0x50/0x50
[  576.924668]  ? find_held_lock+0x36/0x1c0
[  576.928744]  ? lock_downgrade+0x8e0/0x8e0
2018/05/02 02:14:28 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000050040000d0"], 0x1)

2018/05/02 02:14:28 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000006d040000d0"], 0x1)

[  576.932893]  ? finish_task_switch+0x182/0x810
[  576.937396]  ? kasan_check_read+0x11/0x20
[  576.941547]  ? graph_lock+0x170/0x170
[  576.945352]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  576.949940]  ? compat_start_thread+0x80/0x80
[  576.954358]  ? _raw_spin_unlock_irq+0x27/0x70
[  576.958865]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  576.963890]  ? trace_hardirqs_on+0xd/0x10
[  576.968049]  ? _raw_spin_unlock_irq+0x27/0x70
[  576.972555]  ? find_held_lock+0x36/0x1c0
[  576.976630]  ? lock_downgrade+0x8e0/0x8e0
[  576.980786]  ? kasan_check_read+0x11/0x20
2018/05/02 02:14:28 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000086040000d0"], 0x1)

[  576.984964]  ? rcu_is_watching+0x85/0x140
[  576.989119]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  576.994325]  ? __fget+0x40c/0x650
[  576.997801]  ? expand_files.part.8+0x9a0/0x9a0
[  577.002395]  ? lock_downgrade+0x8e0/0x8e0
[  577.006564]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  577.012108]  ? vma_set_page_prot+0x239/0x300
[  577.016528]  ? kvm_set_memory_region+0x50/0x50
[  577.021118]  do_vfs_ioctl+0x1cf/0x16a0
[  577.025014]  ? ioctl_preallocate+0x2e0/0x2e0
[  577.029435]  ? fget_raw+0x20/0x20
[  577.032902]  ? exit_to_usermode_loop+0x87/0x310
[  577.037669]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  577.043216]  ? security_file_ioctl+0x94/0xc0
[  577.048303]  ksys_ioctl+0xa9/0xd0
[  577.051768]  __x64_sys_ioctl+0x73/0xb0
[  577.055659]  do_syscall_64+0x1b1/0x800
[  577.059535]  ? finish_task_switch+0x1ca/0x810
[  577.064029]  ? syscall_return_slowpath+0x5c0/0x5c0
[  577.068950]  ? syscall_return_slowpath+0x30f/0x5c0
[  577.073872]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  577.079224]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  577.084055]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  577.089229] RIP: 0033:0x455979
[  577.092401] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  577.100093] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  577.107345] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  577.114599] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  577.121851] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  577.129101] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  577.136538] warn_alloc_show_mem: 1 callbacks suppressed
[  577.136541] Mem-Info:
[  577.144388] active_anon:78660 inactive_anon:80 isolated_anon:0
[  577.144388]  active_file:3743 inactive_file:12212 isolated_file:0
[  577.144388]  unevictable:0 dirty:333 writeback:0 unstable:0
[  577.144388]  slab_reclaimable:10755 slab_unreclaimable:107330
[  577.144388]  mapped:73902 shmem:88 pagetables:1123 bounce:0
[  577.144388]  free:1319547 free_pcp:346 free_cma:0
2018/05/02 02:14:28 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c6040000d0"], 0x1)

[  577.178071] Node 0 active_anon:312456kB inactive_anon:320kB active_file:14972kB inactive_file:48848kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295608kB dirty:1332kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 139264kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  577.206334] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
2018/05/02 02:14:28 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000008d040000d0"], 0x1)

[  577.232772] lowmem_reserve[]: 0 2830 6335 6335
[  577.237428] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:648kB free_cma:0kB
[  577.265164] lowmem_reserve[]: 0 0 3505 3505
[  577.269564] Node 0 Normal free:2364292kB min:37300kB low:46624kB high:55948kB active_anon:312492kB inactive_anon:320kB active_file:14972kB inactive_file:48848kB unevictable:0kB writepending:1332kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5792kB pagetables:4492kB bounce:0kB free_pcp:1240kB local_pcp:620kB free_cma:0kB
[  577.299571] lowmem_reserve[]: 0 0 0 0
[  577.303460] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  577.317116] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  577.332939] Node 0 Normal: 1700*4kB (UME) 2940*8kB (UM) 3264*16kB (UME) 3036*32kB (UME) 1479*64kB (UME) 228*128kB (UM) 194*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 45*2048kB (UM) 438*4096kB (UM) = 2363824kB
[  577.351821] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  577.360434] 16042 total pagecache pages
[  577.364453] 0 pages in swap cache
[  577.367936] Swap cache stats: add 0, delete 0, find 0/0
[  577.373314] Free swap  = 0kB
[  577.376352] Total swap = 0kB
[  577.379384] 1965969 pages RAM
[  577.382508] 0 pages HighMem/MovableOnly
[  577.386509] 339347 pages reserved
[  577.403455] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  577.415315] syz-executor4 cpuset=syz4 mems_allowed=0
[  577.420599] CPU: 0 PID: 29786 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  577.427884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  577.437237] Call Trace:
[  577.439828]  dump_stack+0x1b9/0x294
[  577.443454]  ? dump_stack_print_info.cold.2+0x52/0x52
[  577.448635]  ? kasan_check_read+0x11/0x20
[  577.452786]  warn_alloc.cold.118+0xb2/0x1b8
[  577.457117]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  577.461962]  ? trace_hardirqs_on+0xd/0x10
[  577.466100]  ? _raw_spin_unlock_irq+0x27/0x70
[  577.470595]  ? finish_task_switch+0x1ca/0x810
[  577.475088]  ? lock_repin_lock+0x410/0x410
[  577.479319]  __vmalloc_node_range+0x45e/0x750
[  577.483803]  ? graph_lock+0x170/0x170
[  577.487592]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  577.492436]  __vmalloc_node_flags_caller+0x75/0x90
[  577.497373]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  577.502217]  kvmalloc_node+0xde/0x100
[  577.506012]  kvm_arch_create_memslot+0xa3/0x4e0
[  577.510689]  __kvm_set_memory_region+0x1d1b/0x2e50
[  577.515624]  ? kvm_vcpu_block+0x1050/0x1050
[  577.519956]  ? check_same_owner+0x320/0x320
[  577.524290]  ? do_raw_spin_unlock+0x9e/0x2e0
[  577.528703]  ? rcu_note_context_switch+0x710/0x710
[  577.533629]  ? lock_acquire+0x1dc/0x520
[  577.537604]  ? graph_lock+0x170/0x170
[  577.541403]  ? __might_sleep+0x95/0x190
[  577.545376]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  577.550901]  ? futex_wait_queue_me+0x550/0x820
[  577.555509]  ? refill_pi_state_cache.part.7+0x300/0x300
[  577.560883]  ? find_held_lock+0x36/0x1c0
[  577.564962]  ? lock_downgrade+0x8e0/0x8e0
[  577.569141]  kvm_set_memory_region+0x2e/0x50
[  577.573554]  kvm_vm_ioctl+0x668/0x1d90
[  577.577453]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  577.582563]  ? futex_wake+0x2f6/0x750
[  577.586369]  ? kvm_set_memory_region+0x50/0x50
[  577.590960]  ? get_futex_key+0x1e90/0x1e90
[  577.595218]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  577.600417]  ? do_futex+0x249/0x27d0
[  577.604136]  ? graph_lock+0x170/0x170
[  577.607950]  ? exit_robust_list+0x290/0x290
[  577.612276]  ? find_held_lock+0x36/0x1c0
[  577.616353]  ? lock_downgrade+0x8e0/0x8e0
[  577.620518]  ? kasan_check_read+0x11/0x20
[  577.624687]  ? rcu_is_watching+0x85/0x140
[  577.628839]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  577.634045]  ? __fget+0x40c/0x650
[  577.637509]  ? do_raw_spin_unlock+0x1/0x2e0
[  577.641842]  ? expand_files.part.8+0x9a0/0x9a0
[  577.646430]  ? kasan_check_write+0x14/0x20
[  577.650674]  ? do_raw_spin_lock+0xc1/0x200
[  577.654923]  ? _raw_spin_unlock+0x22/0x30
[  577.659081]  ? kvm_set_memory_region+0x50/0x50
[  577.663674]  do_vfs_ioctl+0x1cf/0x16a0
[  577.667559]  ? ioctl_preallocate+0x2e0/0x2e0
[  577.671969]  ? fget_raw+0x20/0x20
[  577.675429]  ? __x64_sys_futex+0x477/0x680
[  577.679739]  ? do_futex+0x27d0/0x27d0
[  577.683527]  ? security_file_ioctl+0x94/0xc0
[  577.687922]  ksys_ioctl+0xa9/0xd0
[  577.691373]  __x64_sys_ioctl+0x73/0xb0
[  577.695250]  do_syscall_64+0x1b1/0x800
[  577.699124]  ? finish_task_switch+0x1ca/0x810
[  577.703600]  ? syscall_return_slowpath+0x5c0/0x5c0
[  577.708511]  ? syscall_return_slowpath+0x30f/0x5c0
[  577.713436]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  577.718785]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  577.723610]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  577.728785] RIP: 0033:0x455979
[  577.731965] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  577.739666] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  577.746919] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  577.754172] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  577.761428] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  577.768693] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:28 executing program 7:
unshare(0x60000000)
syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x608000)
r0 = socket$inet6(0xa, 0x8080f, 0x7)
getpeername$inet6(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, @ipv4}, &(0x7f00000001c0)=0x9c)
r1 = socket$inet6(0x10, 0x3, 0x1)
sendmsg(r1, &(0x7f000000bfc8)={&(0x7f0000000000)=@nl=@proc={0x10}, 0x80, &(0x7f0000002000)=[{&(0x7f0000000080)="5500000018007fafb72d1cb2a4a280930206000000a84309c02623692500080021000a000000ca8a9848a3c728f1c46b7b31afdc1338d54400009b84136ef75afb83de448daa7227c43ab8220000bf0cec6bab91d4", 0x55}], 0x1, &(0x7f0000012000)}, 0x0)

2018/05/02 02:14:28 executing program 5:
r0 = syz_open_dev$midi(&(0x7f00000001c0)='/dev/midi#\x00', 0x2357, 0x400)
ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f0000000200)=""/63)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value={<r3=>0x0, 0xffffffffffffff00}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000140)=@assoc_id=r3, &(0x7f0000000180)=0x4)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r4 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r5 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0x40045402, &(0x7f0000013000))
readv(r5, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r4, r1, 0x0)

2018/05/02 02:14:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x2b490, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:28 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000006c040000d0"], 0x1)

2018/05/02 02:14:28 executing program 2:
r0 = socket$inet(0x15, 0x1000000000005, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x3ffffffc, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10)
sendto$inet(r0, &(0x7f0000000140), 0x0, 0x0, &(0x7f0000000080)={0x2, 0x0, @broadcast=0xffffffff}, 0x10)
setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000140)={0x2}, 0x10)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x200001, 0x0)

2018/05/02 02:14:28 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x800)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
memfd_create(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x3)
dup3(r1, r0, 0x0)

2018/05/02 02:14:28 executing program 1:
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$random(&(0x7f0000000280)='/dev/random\x00', 0x0, 0x8002)
pipe2(&(0x7f0000f61000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$sndseq(r4, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r4, 0x800448d2, &(0x7f0000000240)={0x2, &(0x7f0000000100)=[{}, {}]})
r5 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$BLKSECDISCARD(r5, 0x127d, &(0x7f0000000340)=0x7)
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
tee(r3, r1, 0x1, 0x0)
r6 = openat$cgroup(r1, &(0x7f0000000300)='syz0\x00', 0x200002, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f00000002c0)={0x0, 0x1, 0x20, &(0x7f0000000040)=0x4c})
setsockopt$inet6_group_source_req(r3, 0x29, 0x2f, &(0x7f0000000400)={0x2, {{0xa, 0x4e24, 0x8, @dev={0xfe, 0x80, [], 0x18}, 0x4}}, {{0xa, 0x4e23, 0xb18f, @loopback={0x0, 0x1}, 0x80000000}}}, 0x108)
dup2(r3, r5)
dup2(r6, r2)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000013000/0x1000)=nil, 0x1000}, 0x2})

2018/05/02 02:14:28 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000000000400000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  577.897744] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  577.909632] syz-executor4 cpuset=syz4 mems_allowed=0
[  577.914813] CPU: 0 PID: 29820 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  577.922090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  577.931442] Call Trace:
[  577.934044]  dump_stack+0x1b9/0x294
[  577.937683]  ? dump_stack_print_info.cold.2+0x52/0x52
[  577.942881]  ? graph_lock+0x170/0x170
2018/05/02 02:14:29 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x80040, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x1)
sendmsg$nl_generic(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)={0x1c, 0x10000000000027, 0x331, 0x0, 0x0, {0x16}, [@typed={0x6, 0x1, @uid}]}, 0x1c}, 0x1}, 0x0)

2018/05/02 02:14:29 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000b9040000d0"], 0x1)

[  577.946696]  warn_alloc.cold.118+0xb2/0x1b8
[  577.951032]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  577.955889]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  577.961966]  ? update_load_avg+0x2d9/0x2570
[  577.962648] IPVS: ftp: loaded support on port[0] = 21
[  577.966288]  ? graph_lock+0x170/0x170
[  577.966315]  __vmalloc_node_range+0x45e/0x750
[  577.966333]  ? graph_lock+0x170/0x170
[  577.966352]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  577.966368]  __vmalloc_node_flags_caller+0x75/0x90
[  577.966381]  ? kvm_arch_create_memslot+0xa3/0x4e0
2018/05/02 02:14:29 executing program 2:
r0 = perf_event_open(&(0x7f000025c000)={0x40000000002, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = semget$private(0x0, 0x7, 0x41)
semctl$GETZCNT(r1, 0x0, 0xf, &(0x7f0000000080)=""/219)
fcntl$setsig(r0, 0xa, 0xd)
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0)
write$fuse(r2, &(0x7f0000000040)={0x30, 0x5, 0x0, @fuse_notify_retrieve_out}, 0x30)

[  577.966398]  kvmalloc_node+0xde/0x100
[  577.966412]  kvm_arch_create_memslot+0xa3/0x4e0
[  577.966434]  __kvm_set_memory_region+0x1d1b/0x2e50
[  577.966457]  ? kvm_vcpu_block+0x1050/0x1050
[  578.015935]  ? print_usage_bug+0xc0/0xc0
[  578.020011]  ? lock_downgrade+0x8e0/0x8e0
[  578.024166]  ? lock_downgrade+0x8e0/0x8e0
[  578.028331]  ? graph_lock+0x170/0x170
[  578.032138]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  578.036726]  ? __lock_acquire+0x7f5/0x5140
[  578.040967]  ? trace_hardirqs_on+0xd/0x10
2018/05/02 02:14:29 executing program 1:
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r2, r1, 0x1, 0x0)
fcntl$getown(r0, 0x9)
dup2(r2, r4)

2018/05/02 02:14:29 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000003c040000d0"], 0x1)

[  578.045120]  ? find_held_lock+0x36/0x1c0
[  578.049193]  ? lock_downgrade+0x8e0/0x8e0
[  578.053374]  kvm_set_memory_region+0x2e/0x50
[  578.057793]  kvm_vm_ioctl+0x668/0x1d90
[  578.061688]  ? pick_next_task_fair+0x973/0x1660
[  578.066363]  ? kvm_set_memory_region+0x50/0x50
[  578.071045]  ? find_held_lock+0x36/0x1c0
[  578.075120]  ? lock_downgrade+0x8e0/0x8e0
[  578.079272]  ? finish_task_switch+0x182/0x810
[  578.083780]  ? kasan_check_read+0x11/0x20
[  578.087928]  ? graph_lock+0x170/0x170
[  578.091731]  ? do_raw_spin_trylock+0x1b0/0x1b0
2018/05/02 02:14:29 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c1040000d0"], 0x1)

[  578.096584]  ? compat_start_thread+0x80/0x80
[  578.101004]  ? _raw_spin_unlock_irq+0x27/0x70
[  578.105507]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  578.110536]  ? trace_hardirqs_on+0xd/0x10
[  578.114693]  ? _raw_spin_unlock_irq+0x27/0x70
[  578.119192]  ? find_held_lock+0x36/0x1c0
[  578.123264]  ? lock_downgrade+0x8e0/0x8e0
[  578.127421]  ? kasan_check_read+0x11/0x20
[  578.131572]  ? rcu_is_watching+0x85/0x140
[  578.135721]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  578.140925]  ? __fget+0x40c/0x650
[  578.144388]  ? expand_files.part.8+0x9a0/0x9a0
2018/05/02 02:14:29 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000005d040000d0"], 0x1)

2018/05/02 02:14:29 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000033040000d0"], 0x1)

[  578.148978]  ? lock_downgrade+0x8e0/0x8e0
[  578.153138]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  578.158684]  ? vma_set_page_prot+0x239/0x300
[  578.163097]  ? kvm_set_memory_region+0x50/0x50
[  578.167687]  do_vfs_ioctl+0x1cf/0x16a0
[  578.171585]  ? ioctl_preallocate+0x2e0/0x2e0
[  578.176013]  ? fget_raw+0x20/0x20
[  578.179480]  ? exit_to_usermode_loop+0x87/0x310
[  578.184162]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  578.189703]  ? security_file_ioctl+0x94/0xc0
[  578.194123]  ksys_ioctl+0xa9/0xd0
[  578.197590]  __x64_sys_ioctl+0x73/0xb0
[  578.201491]  do_syscall_64+0x1b1/0x800
[  578.205396]  ? finish_task_switch+0x1ca/0x810
[  578.209899]  ? syscall_return_slowpath+0x5c0/0x5c0
[  578.214835]  ? syscall_return_slowpath+0x30f/0x5c0
[  578.219774]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  578.225144]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  578.229985]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  578.235165] RIP: 0033:0x455979
[  578.238343] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  578.246046] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  578.253300] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  578.260561] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  578.267822] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  578.275077] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  578.282531] warn_alloc_show_mem: 1 callbacks suppressed
[  578.282535] Mem-Info:
[  578.290379] active_anon:78626 inactive_anon:80 isolated_anon:0
[  578.290379]  active_file:3743 inactive_file:12221 isolated_file:0
[  578.290379]  unevictable:0 dirty:342 writeback:0 unstable:0
[  578.290379]  slab_reclaimable:10751 slab_unreclaimable:106245
[  578.290379]  mapped:73891 shmem:88 pagetables:1145 bounce:0
[  578.290379]  free:1320823 free_pcp:421 free_cma:0
[  578.324072] Node 0 active_anon:314504kB inactive_anon:320kB active_file:14972kB inactive_file:48884kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295564kB dirty:1368kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 133120kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  578.352401] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  578.378613] lowmem_reserve[]: 0 2830 6335 6335
[  578.383254] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:648kB free_cma:0kB
[  578.411030] lowmem_reserve[]: 0 0 3505 3505
[  578.415422] Node 0 Normal free:2366732kB min:37300kB low:46624kB high:55948kB active_anon:314504kB inactive_anon:320kB active_file:14972kB inactive_file:48884kB unevictable:0kB writepending:1368kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5728kB pagetables:4432kB bounce:0kB free_pcp:708kB local_pcp:160kB free_cma:0kB
[  578.445348] lowmem_reserve[]: 0 0 0 0
[  578.449208] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  578.462940] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  578.478852] Node 0 Normal: 1791*4kB (UME) 3119*8kB (UME) 3426*16kB (UME) 3030*32kB (UME) 1476*64kB (UME) 231*128kB (UM) 194*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 44*2048kB (UM) 438*4096kB (UM) = 2366164kB
[  578.497865] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  578.506478] 16051 total pagecache pages
[  578.510499] 0 pages in swap cache
[  578.513985] Swap cache stats: add 0, delete 0, find 0/0
[  578.519378] Free swap  = 0kB
[  578.522418] Total swap = 0kB
[  578.525447] 1965969 pages RAM
[  578.528568] 0 pages HighMem/MovableOnly
[  578.532567] 339347 pages reserved
[  578.553807] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  578.565681] syz-executor4 cpuset=syz4 mems_allowed=0
[  578.570849] CPU: 1 PID: 29850 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  578.578125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  578.587472] Call Trace:
[  578.590057]  dump_stack+0x1b9/0x294
[  578.593682]  ? dump_stack_print_info.cold.2+0x52/0x52
[  578.598860]  ? kasan_check_read+0x11/0x20
[  578.602996]  warn_alloc.cold.118+0xb2/0x1b8
[  578.607312]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  578.612146]  ? trace_hardirqs_on+0xd/0x10
[  578.616295]  ? _raw_spin_unlock_irq+0x27/0x70
[  578.620797]  ? finish_task_switch+0x1ca/0x810
[  578.625298]  ? lock_repin_lock+0x410/0x410
[  578.629530]  __vmalloc_node_range+0x45e/0x750
[  578.634034]  ? graph_lock+0x170/0x170
[  578.637838]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  578.642679]  __vmalloc_node_flags_caller+0x75/0x90
[  578.647619]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  578.652470]  kvmalloc_node+0xde/0x100
[  578.656267]  kvm_arch_create_memslot+0xa3/0x4e0
[  578.660935]  __kvm_set_memory_region+0x1d1b/0x2e50
[  578.665857]  ? kvm_vcpu_block+0x1050/0x1050
[  578.670166]  ? print_usage_bug+0xc0/0xc0
[  578.674213]  ? zap_class+0x720/0x720
[  578.677922]  ? check_same_owner+0x320/0x320
[  578.682242]  ? rcu_note_context_switch+0x710/0x710
[  578.687170]  ? lock_acquire+0x1dc/0x520
[  578.691164]  ? graph_lock+0x170/0x170
[  578.694970]  ? __might_sleep+0x95/0x190
[  578.698958]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  578.704494]  ? futex_wait_queue_me+0x550/0x820
[  578.709084]  ? __lock_acquire+0x7f5/0x5140
[  578.713336]  ? refill_pi_state_cache.part.7+0x300/0x300
[  578.718715]  ? find_held_lock+0x36/0x1c0
[  578.722796]  ? lock_downgrade+0x8e0/0x8e0
[  578.726991]  kvm_set_memory_region+0x2e/0x50
[  578.731398]  kvm_vm_ioctl+0x668/0x1d90
[  578.735275]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  578.740797]  ? __perf_event_task_sched_in+0x247/0xb80
[  578.745982]  ? kvm_set_memory_region+0x50/0x50
[  578.750562]  ? find_held_lock+0x36/0x1c0
[  578.754613]  ? perf_trace_lock+0xd6/0x900
[  578.758754]  ? zap_class+0x720/0x720
[  578.762452]  ? finish_task_switch+0x182/0x810
[  578.766933]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  578.772109]  ? do_futex+0x249/0x27d0
[  578.775821]  ? kasan_check_read+0x11/0x20
[  578.779955]  ? graph_lock+0x170/0x170
[  578.783740]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  578.788305]  ? compat_start_thread+0x80/0x80
[  578.792699]  ? _raw_spin_unlock_irq+0x27/0x70
[  578.797184]  ? exit_robust_list+0x290/0x290
[  578.801501]  ? find_held_lock+0x36/0x1c0
[  578.805556]  ? lock_downgrade+0x8e0/0x8e0
[  578.809691]  ? rcu_is_watching+0x85/0x140
[  578.813822]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  578.819004]  ? __fget+0x40c/0x650
[  578.822465]  ? do_raw_spin_unlock+0x1/0x2e0
[  578.826788]  ? expand_files.part.8+0x9a0/0x9a0
[  578.831363]  ? kasan_check_write+0x14/0x20
[  578.835579]  ? do_raw_spin_lock+0xc1/0x200
[  578.839826]  ? kvm_set_memory_region+0x50/0x50
[  578.844403]  do_vfs_ioctl+0x1cf/0x16a0
[  578.848287]  ? ioctl_preallocate+0x2e0/0x2e0
[  578.852699]  ? fget_raw+0x20/0x20
[  578.856156]  ? __x64_sys_futex+0x477/0x680
[  578.860395]  ? exit_to_usermode_loop+0x87/0x310
[  578.865072]  ? do_futex+0x27d0/0x27d0
[  578.868868]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  578.874400]  ? security_file_ioctl+0x94/0xc0
[  578.878818]  ksys_ioctl+0xa9/0xd0
[  578.882281]  __x64_sys_ioctl+0x73/0xb0
[  578.886188]  do_syscall_64+0x1b1/0x800
[  578.890080]  ? finish_task_switch+0x1ca/0x810
[  578.894583]  ? syscall_return_slowpath+0x5c0/0x5c0
[  578.899519]  ? syscall_return_slowpath+0x30f/0x5c0
[  578.904458]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  578.909835]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  578.914684]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  578.919864] RIP: 0033:0x455979
[  578.923046] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  578.930742] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  578.937996] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  578.945254] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  578.952508] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  578.959768] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:30 executing program 7:

2018/05/02 02:14:30 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000007fffffff00000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:30 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa, 0x1000000})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, r0, 0x0)

2018/05/02 02:14:30 executing program 5:
r0 = syz_open_dev$midi(&(0x7f00000001c0)='/dev/midi#\x00', 0x2357, 0x400)
ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f0000000200)=""/63)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value={<r3=>0x0, 0xffffffffffffff00}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000140)=@assoc_id=r3, &(0x7f0000000180)=0x4)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r4 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r5 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0x40045402, &(0x7f0000013000))
readv(r5, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r4, r1, 0x0)

2018/05/02 02:14:30 executing program 2:

2018/05/02 02:14:30 executing program 1:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x111040, 0x0)
ioctl$sock_SIOCGSKNS(r0, 0x894c, &(0x7f0000000040)=0x6)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r2, r1, 0x1, 0x0)
dup2(r0, r4)

2018/05/02 02:14:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x300000000000000, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:30 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000004b040000d0"], 0x1)

2018/05/02 02:14:30 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000005c040000d0"], 0x1)

2018/05/02 02:14:30 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
readv(r1, &(0x7f0000002300)=[{&(0x7f00000000c0)=""/64, 0x40}, {&(0x7f0000000100)=""/114, 0x72}, {&(0x7f0000000180)=""/53, 0x35}, {&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f00000011c0)=""/109, 0x6d}, {&(0x7f0000001240)=""/4096, 0x1000}, {&(0x7f0000002240)=""/158, 0x9e}], 0x7)
dup3(r2, r0, 0x0)

[  579.078406] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  579.090267] syz-executor4 cpuset=syz4 mems_allowed=0
[  579.095468] CPU: 0 PID: 29874 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  579.102742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  579.112097] Call Trace:
[  579.114697]  dump_stack+0x1b9/0x294
[  579.118339]  ? dump_stack_print_info.cold.2+0x52/0x52
[  579.123544]  ? kasan_check_read+0x11/0x20
2018/05/02 02:14:30 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000a2040000d0"], 0x1)

2018/05/02 02:14:30 executing program 2:

[  579.127708]  warn_alloc.cold.118+0xb2/0x1b8
[  579.132042]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  579.136895]  ? trace_hardirqs_on+0xd/0x10
[  579.141056]  ? _raw_spin_unlock_irq+0x27/0x70
[  579.145573]  ? finish_task_switch+0x1ca/0x810
[  579.150083]  ? lock_repin_lock+0x410/0x410
[  579.154330]  __vmalloc_node_range+0x45e/0x750
[  579.158843]  ? graph_lock+0x170/0x170
[  579.162654]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  579.167511]  __vmalloc_node_flags_caller+0x75/0x90
[  579.172455]  ? kvm_arch_create_memslot+0xa3/0x4e0
2018/05/02 02:14:30 executing program 2:

[  579.177307]  kvmalloc_node+0xde/0x100
[  579.181121]  kvm_arch_create_memslot+0xa3/0x4e0
[  579.185813]  __kvm_set_memory_region+0x1d1b/0x2e50
[  579.190766]  ? kvm_vcpu_block+0x1050/0x1050
[  579.195191]  ? check_same_owner+0x320/0x320
[  579.199528]  ? do_raw_spin_unlock+0x9e/0x2e0
[  579.203945]  ? rcu_note_context_switch+0x710/0x710
[  579.208882]  ? lock_acquire+0x1dc/0x520
[  579.212863]  ? graph_lock+0x170/0x170
[  579.216680]  ? __might_sleep+0x95/0x190
[  579.220669]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
2018/05/02 02:14:30 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000005e040000d0"], 0x1)

[  579.226214]  ? futex_wait_queue_me+0x550/0x820
[  579.230809]  ? refill_pi_state_cache.part.7+0x300/0x300
[  579.236187]  ? find_held_lock+0x36/0x1c0
[  579.240265]  ? lock_downgrade+0x8e0/0x8e0
[  579.244449]  kvm_set_memory_region+0x2e/0x50
[  579.248869]  kvm_vm_ioctl+0x668/0x1d90
[  579.252767]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  579.257887]  ? futex_wake+0x2f6/0x750
[  579.261696]  ? kvm_set_memory_region+0x50/0x50
[  579.266285]  ? get_futex_key+0x1e90/0x1e90
[  579.270547]  ? kasan_check_write+0x14/0x20
2018/05/02 02:14:30 executing program 2:

[  579.274791]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  579.279985]  ? do_futex+0x249/0x27d0
[  579.283718]  ? kasan_check_write+0x14/0x20
[  579.287956]  ? graph_lock+0x170/0x170
[  579.291772]  ? exit_robust_list+0x290/0x290
[  579.296101]  ? find_held_lock+0x36/0x1c0
[  579.300175]  ? lock_downgrade+0x8e0/0x8e0
[  579.304333]  ? kasan_check_read+0x11/0x20
[  579.308484]  ? rcu_is_watching+0x85/0x140
[  579.312641]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  579.317845]  ? __fget+0x40c/0x650
[  579.321313]  ? expand_files.part.8+0x9a0/0x9a0
2018/05/02 02:14:30 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000060040000d0"], 0x1)

[  579.325902]  ? lock_downgrade+0x8e0/0x8e0
[  579.330233]  ? __split_vma+0x5ac/0x7f0
[  579.334131]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  579.339675]  ? vma_set_page_prot+0x239/0x300
[  579.344093]  ? kvm_set_memory_region+0x50/0x50
[  579.348683]  do_vfs_ioctl+0x1cf/0x16a0
[  579.352594]  ? ioctl_preallocate+0x2e0/0x2e0
[  579.357013]  ? fget_raw+0x20/0x20
[  579.360487]  ? __x64_sys_futex+0x477/0x680
[  579.364735]  ? do_futex+0x27d0/0x27d0
[  579.368630]  ? security_file_ioctl+0x94/0xc0
[  579.373041]  ksys_ioctl+0xa9/0xd0
[  579.376511]  __x64_sys_ioctl+0x73/0xb0
[  579.380406]  do_syscall_64+0x1b1/0x800
[  579.384298]  ? finish_task_switch+0x1ca/0x810
[  579.388800]  ? syscall_return_slowpath+0x5c0/0x5c0
[  579.393734]  ? syscall_return_slowpath+0x30f/0x5c0
[  579.398670]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  579.404042]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  579.408894]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  579.414087] RIP: 0033:0x455979
[  579.417279] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  579.424989] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  579.432256] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  579.439524] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  579.446791] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  579.454058] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  579.461423] warn_alloc_show_mem: 1 callbacks suppressed
[  579.461429] Mem-Info:
[  579.469270] active_anon:78109 inactive_anon:80 isolated_anon:0
[  579.469270]  active_file:3743 inactive_file:12233 isolated_file:0
[  579.469270]  unevictable:0 dirty:360 writeback:0 unstable:0
[  579.469270]  slab_reclaimable:10741 slab_unreclaimable:106453
[  579.469270]  mapped:73895 shmem:88 pagetables:1098 bounce:0
[  579.469270]  free:1321179 free_pcp:388 free_cma:0
[  579.502942] Node 0 active_anon:312436kB inactive_anon:320kB active_file:14972kB inactive_file:48932kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295580kB dirty:1440kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 135168kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  579.532668] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  579.558961] lowmem_reserve[]: 0 2830 6335 6335
[  579.563620] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:648kB free_cma:0kB
[  579.591389] lowmem_reserve[]: 0 0 3505 3505
[  579.595757] Node 0 Normal free:2368888kB min:37300kB low:46624kB high:55948kB active_anon:312436kB inactive_anon:320kB active_file:14972kB inactive_file:48932kB unevictable:0kB writepending:1440kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5696kB pagetables:4392kB bounce:0kB free_pcp:904kB local_pcp:240kB free_cma:0kB
[  579.625700] lowmem_reserve[]: 0 0 0 0
[  579.629556] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  579.643260] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  579.659305] Node 0 Normal: 1789*4kB (UME) 2980*8kB (UME) 3514*16kB (UME) 3031*32kB (UME) 1473*64kB (UME) 234*128kB (UM) 194*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 45*2048kB (UM) 438*4096kB (UM) = 2368724kB
[  579.678528] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  579.687166] 16066 total pagecache pages
[  579.691178] 0 pages in swap cache
[  579.694660] Swap cache stats: add 0, delete 0, find 0/0
[  579.700053] Free swap  = 0kB
[  579.703099] Total swap = 0kB
[  579.706151] 1965969 pages RAM
[  579.709272] 0 pages HighMem/MovableOnly
[  579.713273] 339347 pages reserved
[  579.738555] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  579.750435] syz-executor4 cpuset=syz4 mems_allowed=0
[  579.755646] CPU: 1 PID: 29899 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  579.763016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  579.772364] Call Trace:
[  579.774959]  dump_stack+0x1b9/0x294
[  579.778603]  ? dump_stack_print_info.cold.2+0x52/0x52
[  579.783802]  ? kasan_check_read+0x11/0x20
[  579.787953]  warn_alloc.cold.118+0xb2/0x1b8
[  579.792277]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  579.797120]  ? trace_hardirqs_on+0xd/0x10
[  579.801265]  ? _raw_spin_unlock_irq+0x27/0x70
[  579.805759]  ? finish_task_switch+0x1ca/0x810
[  579.810269]  ? lock_repin_lock+0x410/0x410
[  579.814509]  __vmalloc_node_range+0x45e/0x750
[  579.819003]  ? graph_lock+0x170/0x170
[  579.822802]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  579.827642]  __vmalloc_node_flags_caller+0x75/0x90
[  579.832569]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  579.837411]  kvmalloc_node+0xde/0x100
[  579.841219]  kvm_arch_create_memslot+0xa3/0x4e0
[  579.845896]  __kvm_set_memory_region+0x1d1b/0x2e50
[  579.850834]  ? kvm_vcpu_block+0x1050/0x1050
[  579.855158]  ? print_usage_bug+0xc0/0xc0
[  579.859223]  ? check_same_owner+0x320/0x320
[  579.863545]  ? do_raw_spin_unlock+0x9e/0x2e0
[  579.867952]  ? rcu_note_context_switch+0x710/0x710
[  579.872880]  ? lock_acquire+0x1dc/0x520
[  579.877394]  ? graph_lock+0x170/0x170
[  579.881195]  ? __might_sleep+0x95/0x190
[  579.885181]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  579.890732]  ? futex_wait_queue_me+0x550/0x820
[  579.895313]  ? __lock_acquire+0x7f5/0x5140
[  579.899550]  ? refill_pi_state_cache.part.7+0x300/0x300
[  579.904919]  ? find_held_lock+0x36/0x1c0
[  579.908991]  ? lock_downgrade+0x8e0/0x8e0
[  579.913166]  kvm_set_memory_region+0x2e/0x50
[  579.917576]  kvm_vm_ioctl+0x668/0x1d90
[  579.921465]  ? pick_next_task_fair+0x973/0x1660
[  579.926139]  ? kvm_set_memory_region+0x50/0x50
[  579.930722]  ? find_held_lock+0x36/0x1c0
[  579.934788]  ? lock_downgrade+0x8e0/0x8e0
[  579.938932]  ? finish_task_switch+0x182/0x810
[  579.943435]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  579.948623]  ? do_futex+0x249/0x27d0
[  579.952343]  ? kasan_check_read+0x11/0x20
[  579.956503]  ? graph_lock+0x170/0x170
[  579.960309]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  579.964900]  ? compat_start_thread+0x80/0x80
[  579.969317]  ? _raw_spin_unlock_irq+0x27/0x70
[  579.973823]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  579.978845]  ? exit_robust_list+0x290/0x290
[  579.983188]  ? find_held_lock+0x36/0x1c0
[  579.987270]  ? lock_downgrade+0x8e0/0x8e0
[  579.991426]  ? kasan_check_read+0x11/0x20
[  579.995574]  ? rcu_is_watching+0x85/0x140
[  579.999727]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  580.004927]  ? __fget+0x40c/0x650
[  580.008923]  ? do_raw_spin_unlock+0x1/0x2e0
[  580.013248]  ? expand_files.part.8+0x9a0/0x9a0
[  580.017830]  ? kasan_check_write+0x14/0x20
[  580.022061]  ? do_raw_spin_lock+0xc1/0x200
[  580.026301]  ? kvm_set_memory_region+0x50/0x50
[  580.030881]  do_vfs_ioctl+0x1cf/0x16a0
[  580.034774]  ? ioctl_preallocate+0x2e0/0x2e0
[  580.039180]  ? fget_raw+0x20/0x20
[  580.042639]  ? __x64_sys_futex+0x477/0x680
[  580.046873]  ? exit_to_usermode_loop+0x87/0x310
[  580.051544]  ? do_futex+0x27d0/0x27d0
[  580.055341]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  580.060879]  ? security_file_ioctl+0x94/0xc0
[  580.065289]  ksys_ioctl+0xa9/0xd0
[  580.068743]  __x64_sys_ioctl+0x73/0xb0
[  580.072628]  do_syscall_64+0x1b1/0x800
[  580.076514]  ? finish_task_switch+0x1ca/0x810
[  580.081008]  ? syscall_return_slowpath+0x5c0/0x5c0
[  580.085936]  ? syscall_return_slowpath+0x30f/0x5c0
[  580.090872]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  580.096241]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  580.101085]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  580.106352] RIP: 0033:0x455979
[  580.109534] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  580.117241] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  580.124504] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  580.131770] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  580.139033] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  580.146294] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:31 executing program 7:

2018/05/02 02:14:31 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f00000000c0)=0x5, &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, r0, 0x0)
socket$inet6(0xa, 0x1, 0x7ff)

2018/05/02 02:14:31 executing program 5:
r0 = syz_open_dev$midi(&(0x7f00000001c0)='/dev/midi#\x00', 0x2357, 0x400)
ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f0000000200)=""/63)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value={<r3=>0x0, 0xffffffffffffff00}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000140)=@assoc_id=r3, &(0x7f0000000180)=0x4)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r4 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r5 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0x40045402, &(0x7f0000013000))
readv(r5, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r4, r1, 0x0)

2018/05/02 02:14:31 executing program 1:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$sndseq(r2, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)={0x5868, 0x6, 0x5, 0x0, 0x60, 0x1ff, 0xfff, 0x7, 0x101, 0x2, 0x6, 0x7f, 0x0, 0x4, 0xffffffff, 0x4, 0x7ff, 0x8000000000000, 0xffffffff80000000})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f00000000c0)={0x4, &(0x7f0000000040)=[{0x401, 0x1, 0xffffffffffffffff, 0x3}, {0x101, 0x9790, 0x8, 0xd18}, {0x1, 0x100000001, 0x4, 0x7fff}, {0x6, 0x7, 0x9, 0x100}]}, 0x10)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0xab06, @time, {}, {0x0, 0x20000080000}, @time=@time={0x77359400}}], 0x30)
tee(r1, r0, 0x1, 0x0)
dup2(r1, r3)

2018/05/02 02:14:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x7400000000000000, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:31 executing program 2:

2018/05/02 02:14:31 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000062040000d0"], 0x1)

2018/05/02 02:14:31 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000010000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  580.277711] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  580.289566] syz-executor4 cpuset=syz4 mems_allowed=0
[  580.294756] CPU: 1 PID: 29920 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  580.302031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  580.311384] Call Trace:
[  580.313976]  dump_stack+0x1b9/0x294
[  580.317606]  ? dump_stack_print_info.cold.2+0x52/0x52
[  580.322795]  ? graph_lock+0x170/0x170
[  580.326603]  warn_alloc.cold.118+0xb2/0x1b8
[  580.330924]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  580.335960]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  580.342027]  ? update_load_avg+0x2d9/0x2570
[  580.346360]  ? graph_lock+0x170/0x170
[  580.350171]  __vmalloc_node_range+0x45e/0x750
[  580.354666]  ? graph_lock+0x170/0x170
[  580.358467]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  580.363312]  __vmalloc_node_flags_caller+0x75/0x90
[  580.368237]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  580.373104]  kvmalloc_node+0xde/0x100
[  580.376907]  kvm_arch_create_memslot+0xa3/0x4e0
[  580.381589]  __kvm_set_memory_region+0x1d1b/0x2e50
[  580.386528]  ? kvm_vcpu_block+0x1050/0x1050
[  580.390843]  ? print_usage_bug+0xc0/0xc0
[  580.394902]  ? lock_downgrade+0x8e0/0x8e0
[  580.399050]  ? lock_downgrade+0x8e0/0x8e0
[  580.403204]  ? graph_lock+0x170/0x170
[  580.407003]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  580.411589]  ? __lock_acquire+0x7f5/0x5140
[  580.415821]  ? trace_hardirqs_on+0xd/0x10
[  580.419971]  ? find_held_lock+0x36/0x1c0
[  580.424042]  ? lock_downgrade+0x8e0/0x8e0
[  580.428217]  kvm_set_memory_region+0x2e/0x50
[  580.432625]  kvm_vm_ioctl+0x668/0x1d90
[  580.436514]  ? pick_next_task_fair+0x973/0x1660
[  580.441183]  ? kvm_set_memory_region+0x50/0x50
[  580.445768]  ? find_held_lock+0x36/0x1c0
[  580.449835]  ? lock_downgrade+0x8e0/0x8e0
[  580.453980]  ? finish_task_switch+0x182/0x810
[  580.458478]  ? kasan_check_read+0x11/0x20
[  580.462622]  ? graph_lock+0x170/0x170
[  580.466419]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  580.471003]  ? compat_start_thread+0x80/0x80
[  580.475412]  ? _raw_spin_unlock_irq+0x27/0x70
[  580.479906]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  580.484928]  ? trace_hardirqs_on+0xd/0x10
[  580.489076]  ? _raw_spin_unlock_irq+0x27/0x70
[  580.493570]  ? find_held_lock+0x36/0x1c0
[  580.497637]  ? lock_downgrade+0x8e0/0x8e0
[  580.501791]  ? kasan_check_read+0x11/0x20
[  580.505940]  ? rcu_is_watching+0x85/0x140
[  580.510088]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  580.515285]  ? __fget+0x40c/0x650
[  580.518742]  ? expand_files.part.8+0x9a0/0x9a0
[  580.523323]  ? lock_downgrade+0x8e0/0x8e0
[  580.527477]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  580.533012]  ? vma_set_page_prot+0x239/0x300
[  580.537605]  ? kvm_set_memory_region+0x50/0x50
[  580.542185]  do_vfs_ioctl+0x1cf/0x16a0
[  580.546074]  ? ioctl_preallocate+0x2e0/0x2e0
[  580.550568]  ? fget_raw+0x20/0x20
[  580.554027]  ? exit_to_usermode_loop+0x87/0x310
[  580.558705]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  580.564239]  ? security_file_ioctl+0x94/0xc0
[  580.568647]  ksys_ioctl+0xa9/0xd0
[  580.572101]  __x64_sys_ioctl+0x73/0xb0
[  580.575988]  do_syscall_64+0x1b1/0x800
[  580.579875]  ? finish_task_switch+0x1ca/0x810
[  580.584373]  ? syscall_return_slowpath+0x5c0/0x5c0
[  580.589299]  ? syscall_return_slowpath+0x30f/0x5c0
[  580.594228]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  580.599595]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  580.604439]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  580.609627] RIP: 0033:0x455979
[  580.614289] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  580.621993] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  580.629256] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  580.636519] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  580.643786] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  580.651052] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  580.658555] warn_alloc_show_mem: 1 callbacks suppressed
[  580.658559] Mem-Info:
[  580.666427] active_anon:78633 inactive_anon:80 isolated_anon:0
[  580.666427]  active_file:3743 inactive_file:12233 isolated_file:0
2018/05/02 02:14:31 executing program 2:

2018/05/02 02:14:31 executing program 2:

2018/05/02 02:14:31 executing program 2:

[  580.666427]  unevictable:0 dirty:360 writeback:0 unstable:0
[  580.666427]  slab_reclaimable:10741 slab_unreclaimable:105828
[  580.666427]  mapped:73895 shmem:88 pagetables:1135 bounce:0
[  580.666427]  free:1321260 free_pcp:432 free_cma:0
[  580.700100] Node 0 active_anon:314532kB inactive_anon:320kB active_file:14972kB inactive_file:48932kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295580kB dirty:1440kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 135168kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:14:31 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000018040000d0"], 0x1)

[  580.728387] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  580.754953] lowmem_reserve[]: 0 2830 6335 6335
2018/05/02 02:14:31 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000034040000d0"], 0x1)

[  580.759633] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:84kB free_cma:0kB
[  580.787494] lowmem_reserve[]: 0 0 3505 3505
[  580.791919] Node 0 Normal free:2369476kB min:37300kB low:46624kB high:55948kB active_anon:312372kB inactive_anon:312kB active_file:14972kB inactive_file:48956kB unevictable:0kB writepending:1452kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5696kB pagetables:4540kB bounce:0kB free_pcp:1328kB local_pcp:636kB free_cma:0kB
[  580.821942] lowmem_reserve[]: 0 0 0 0
2018/05/02 02:14:31 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000096040000d0"], 0x1)

2018/05/02 02:14:31 executing program 2:

[  580.825840] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  580.839564] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  580.855485] Node 0 Normal: 1725*4kB (UME) 2990*8kB (UME) 3548*16kB (UME) 3032*32kB (UME) 1473*64kB (UME) 234*128kB (UM) 194*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 45*2048kB (UM) 438*4096kB (UM) = 2369124kB
2018/05/02 02:14:31 executing program 2:

[  580.874404] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  580.883066] 16069 total pagecache pages
[  580.887088] 0 pages in swap cache
[  580.890597] Swap cache stats: add 0, delete 0, find 0/0
[  580.896000] Free swap  = 0kB
[  580.899094] Total swap = 0kB
[  580.902159] 1965969 pages RAM
[  580.905295] 0 pages HighMem/MovableOnly
[  580.909312] 339347 pages reserved
[  580.961940] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  580.973751] syz-executor4 cpuset=syz4 mems_allowed=0
[  580.978949] CPU: 1 PID: 29941 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  580.986220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  580.995567] Call Trace:
[  580.998160]  dump_stack+0x1b9/0x294
[  581.001791]  ? dump_stack_print_info.cold.2+0x52/0x52
[  581.006988]  ? kasan_check_read+0x11/0x20
[  581.011143]  warn_alloc.cold.118+0xb2/0x1b8
[  581.015465]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  581.020308]  ? trace_hardirqs_on+0xd/0x10
[  581.024456]  ? _raw_spin_unlock_irq+0x27/0x70
[  581.028951]  ? finish_task_switch+0x1ca/0x810
[  581.033455]  ? lock_repin_lock+0x410/0x410
[  581.037701]  __vmalloc_node_range+0x45e/0x750
[  581.042200]  ? graph_lock+0x170/0x170
[  581.046008]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  581.050860]  __vmalloc_node_flags_caller+0x75/0x90
[  581.055795]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  581.060654]  kvmalloc_node+0xde/0x100
[  581.064471]  kvm_arch_create_memslot+0xa3/0x4e0
[  581.069164]  __kvm_set_memory_region+0x1d1b/0x2e50
[  581.074117]  ? kvm_vcpu_block+0x1050/0x1050
[  581.078447]  ? print_usage_bug+0xc0/0xc0
[  581.082513]  ? check_same_owner+0x320/0x320
[  581.086844]  ? do_raw_spin_unlock+0x9e/0x2e0
[  581.091268]  ? rcu_note_context_switch+0x710/0x710
[  581.096207]  ? lock_acquire+0x1dc/0x520
[  581.100191]  ? graph_lock+0x170/0x170
[  581.104000]  ? __might_sleep+0x95/0x190
[  581.107988]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  581.113530]  ? futex_wait_queue_me+0x550/0x820
[  581.118119]  ? __lock_acquire+0x7f5/0x5140
[  581.122369]  ? refill_pi_state_cache.part.7+0x300/0x300
[  581.127751]  ? find_held_lock+0x36/0x1c0
[  581.131834]  ? lock_downgrade+0x8e0/0x8e0
[  581.136022]  kvm_set_memory_region+0x2e/0x50
[  581.140433]  kvm_vm_ioctl+0x668/0x1d90
[  581.144319]  ? pick_next_task_fair+0x973/0x1660
[  581.148995]  ? kvm_set_memory_region+0x50/0x50
[  581.153586]  ? find_held_lock+0x36/0x1c0
[  581.157663]  ? lock_downgrade+0x8e0/0x8e0
[  581.161818]  ? finish_task_switch+0x182/0x810
[  581.166312]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  581.171487]  ? do_futex+0x249/0x27d0
[  581.175181]  ? kasan_check_read+0x11/0x20
[  581.179309]  ? graph_lock+0x170/0x170
[  581.183090]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  581.187655]  ? compat_start_thread+0x80/0x80
[  581.192064]  ? _raw_spin_unlock_irq+0x27/0x70
[  581.196556]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  581.201570]  ? exit_robust_list+0x290/0x290
[  581.205882]  ? find_held_lock+0x36/0x1c0
[  581.209931]  ? lock_downgrade+0x8e0/0x8e0
[  581.214067]  ? kasan_check_read+0x11/0x20
[  581.218201]  ? rcu_is_watching+0x85/0x140
[  581.222334]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  581.227510]  ? __fget+0x40c/0x650
[  581.230960]  ? do_raw_spin_unlock+0x1/0x2e0
[  581.235265]  ? expand_files.part.8+0x9a0/0x9a0
[  581.239838]  ? kasan_check_write+0x14/0x20
[  581.244085]  ? do_raw_spin_lock+0xc1/0x200
[  581.248332]  ? kvm_set_memory_region+0x50/0x50
[  581.252910]  do_vfs_ioctl+0x1cf/0x16a0
[  581.256784]  ? ioctl_preallocate+0x2e0/0x2e0
[  581.261176]  ? fget_raw+0x20/0x20
[  581.264615]  ? __x64_sys_futex+0x477/0x680
[  581.268831]  ? exit_to_usermode_loop+0x87/0x310
[  581.273486]  ? do_futex+0x27d0/0x27d0
[  581.277274]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  581.282795]  ? security_file_ioctl+0x94/0xc0
[  581.287189]  ksys_ioctl+0xa9/0xd0
[  581.290638]  __x64_sys_ioctl+0x73/0xb0
[  581.294528]  do_syscall_64+0x1b1/0x800
[  581.298416]  ? finish_task_switch+0x1ca/0x810
[  581.302913]  ? syscall_return_slowpath+0x5c0/0x5c0
[  581.307841]  ? syscall_return_slowpath+0x30f/0x5c0
[  581.312786]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  581.318162]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  581.323007]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  581.328186] RIP: 0033:0x455979
[  581.331358] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  581.339058] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  581.346315] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  581.353572] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
2018/05/02 02:14:32 executing program 7:

2018/05/02 02:14:32 executing program 2:

2018/05/02 02:14:32 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x2, 0x0)
connect$pppoe(r0, &(0x7f0000000100)={0x18, 0x0, {0x2, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, 'gretap0\x00'}}, 0x1e)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
clone(0x4000000, &(0x7f0000000140)="aa2baa172c38da07c764e42a091c4f1edaafc38f714ff4c70c134d4d3402786b15300af08d79f780a8b35a4579d5c07b3c842f4939f72a782069ea1f94dc065828761a81ebdf97cdfa14e4fd4942ca8356ab984a9ae02aefecc181cfe789cc72cab143fe82a765f3be", &(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000240)="cc30414a2cd7cb05d6b0787a5f66bb713c2be837743342e6602770e6a19ef89dd7c2a18cb74779a8189c3387206bbbee76a9939f489d35ecb723fccae2a23bd5b1d03375b70f4a1370e54ea871646da605bb74c8f1491c9bbef75af61440d7ad78312a92473092f0ee36d1b5903556a2658f590a4f1f810a1b444158226d3be0bcab4af94feec49fde54da9e56096be6d7bd8c83e99cf96f8da7a605fb545d37fb2c28631edaf22598db2cf62135a01905d331e865f942b00575b5d391e6f32cd5321dfe31842fdd22ddd2ec418817e75dad49b392f1eb298b750d8e258ebe65cfbe80a45cd4d7a23db4b830d21e8d6d802e8b")
dup3(r2, r1, 0x0)

2018/05/02 02:14:32 executing program 5:

2018/05/02 02:14:32 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x6000000000000000, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:32 executing program 1:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = memfd_create(&(0x7f0000000ffc)='$\x00', 0x0)
fallocate(r3, 0x0, 0x0, 0x10001)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000001040)={<r4=>0x0, 0x1000, "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"}, &(0x7f00000001c0)=0x1008)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000200)={r4, 0x3, 0x7a}, 0x8)
write(r3, &(0x7f0000001000)="15", 0x1)
sendfile(r3, r3, &(0x7f0000001000)=0x2, 0x40)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r3, 0x0)
sysfs$1(0x1, &(0x7f0000001000)='$\x00')
umount2(&(0x7f0000000040)='./file0\x00', 0x2)
write$sndseq(r2, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r5 = userfaultfd(0x800)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r1, r0, 0x8001, 0x1)
clock_getres(0x6, &(0x7f0000000000))
r6 = msgget$private(0x0, 0x200)
setsockopt$sock_timeval(r1, 0x1, 0x0, &(0x7f0000000180)={0x0, 0x2710}, 0x10)
msgctl$IPC_STAT(r6, 0x2, &(0x7f00000000c0)=""/138)
r7 = socket$can_raw(0x1d, 0x3, 0x1)
dup2(r1, r7)

2018/05/02 02:14:32 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000040000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:32 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000053040000d0"], 0x1)

[  581.360826] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  581.368079] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
[  581.464724] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  581.476569] syz-executor4 cpuset=syz4 mems_allowed=0
[  581.481791] CPU: 1 PID: 29963 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  581.489063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  581.498412] Call Trace:
[  581.501000]  dump_stack+0x1b9/0x294
[  581.504629]  ? dump_stack_print_info.cold.2+0x52/0x52
[  581.509819]  ? graph_lock+0x170/0x170
[  581.513629]  warn_alloc.cold.118+0xb2/0x1b8
[  581.517954]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  581.522801]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  581.528872]  ? update_load_avg+0x2d9/0x2570
[  581.533191]  ? graph_lock+0x170/0x170
[  581.537002]  __vmalloc_node_range+0x45e/0x750
[  581.541583]  ? graph_lock+0x170/0x170
[  581.545371]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  581.550198]  __vmalloc_node_flags_caller+0x75/0x90
[  581.555109]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  581.559937]  kvmalloc_node+0xde/0x100
[  581.563740]  kvm_arch_create_memslot+0xa3/0x4e0
[  581.568401]  __kvm_set_memory_region+0x1d1b/0x2e50
[  581.573321]  ? kvm_vcpu_block+0x1050/0x1050
[  581.577625]  ? print_usage_bug+0xc0/0xc0
[  581.581687]  ? lock_downgrade+0x8e0/0x8e0
[  581.585817]  ? lock_downgrade+0x8e0/0x8e0
[  581.589954]  ? graph_lock+0x170/0x170
[  581.593740]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  581.598307]  ? __lock_acquire+0x7f5/0x5140
[  581.602525]  ? trace_hardirqs_on+0xd/0x10
[  581.606658]  ? find_held_lock+0x36/0x1c0
[  581.610709]  ? lock_downgrade+0x8e0/0x8e0
[  581.614863]  kvm_set_memory_region+0x2e/0x50
[  581.619257]  kvm_vm_ioctl+0x668/0x1d90
[  581.623128]  ? pick_next_task_fair+0x973/0x1660
[  581.627788]  ? kvm_set_memory_region+0x50/0x50
[  581.632360]  ? find_held_lock+0x36/0x1c0
[  581.636410]  ? lock_downgrade+0x8e0/0x8e0
[  581.640542]  ? finish_task_switch+0x182/0x810
[  581.645029]  ? kasan_check_read+0x11/0x20
[  581.649162]  ? graph_lock+0x170/0x170
[  581.652949]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  581.657516]  ? compat_start_thread+0x80/0x80
[  581.661911]  ? _raw_spin_unlock_irq+0x27/0x70
[  581.666392]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  581.671391]  ? trace_hardirqs_on+0xd/0x10
[  581.675525]  ? _raw_spin_unlock_irq+0x27/0x70
[  581.680006]  ? find_held_lock+0x36/0x1c0
[  581.684061]  ? lock_downgrade+0x8e0/0x8e0
[  581.688197]  ? kasan_check_read+0x11/0x20
[  581.692330]  ? rcu_is_watching+0x85/0x140
[  581.696461]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  581.701640]  ? __fget+0x40c/0x650
[  581.705081]  ? expand_files.part.8+0x9a0/0x9a0
[  581.709647]  ? lock_downgrade+0x8e0/0x8e0
[  581.713783]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  581.719305]  ? vma_set_page_prot+0x239/0x300
[  581.723709]  ? kvm_set_memory_region+0x50/0x50
[  581.730015]  do_vfs_ioctl+0x1cf/0x16a0
[  581.733910]  ? ioctl_preallocate+0x2e0/0x2e0
[  581.738303]  ? fget_raw+0x20/0x20
[  581.741750]  ? exit_to_usermode_loop+0x87/0x310
[  581.746405]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  581.751928]  ? security_file_ioctl+0x94/0xc0
[  581.756321]  ksys_ioctl+0xa9/0xd0
[  581.759762]  __x64_sys_ioctl+0x73/0xb0
[  581.763633]  do_syscall_64+0x1b1/0x800
[  581.767502]  ? finish_task_switch+0x1ca/0x810
[  581.771981]  ? syscall_return_slowpath+0x5c0/0x5c0
[  581.776895]  ? syscall_return_slowpath+0x30f/0x5c0
[  581.781808]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  581.787160]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  581.791991]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  581.797166] RIP: 0033:0x455979
[  581.800340] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  581.808033] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  581.815290] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  581.822541] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  581.829791] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  581.837053] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  581.844503] warn_alloc_show_mem: 1 callbacks suppressed
[  581.844510] Mem-Info:
[  581.852391] active_anon:76533 inactive_anon:79 isolated_anon:0
[  581.852391]  active_file:3745 inactive_file:12266 isolated_file:0
[  581.852391]  unevictable:0 dirty:390 writeback:0 unstable:0
[  581.852391]  slab_reclaimable:10730 slab_unreclaimable:106040
[  581.852391]  mapped:73878 shmem:88 pagetables:1086 bounce:0
[  581.852391]  free:1323149 free_pcp:508 free_cma:0
[  581.886665] Node 0 active_anon:306232kB inactive_anon:316kB active_file:14980kB inactive_file:49064kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295512kB dirty:1560kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 129024kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  581.914911] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  581.941257] lowmem_reserve[]: 0 2830 6335 6335
[  581.945895] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:84kB free_cma:0kB
[  581.973548] lowmem_reserve[]: 0 0 3505 3505
[  581.977910] Node 0 Normal free:2375404kB min:37300kB low:46624kB high:55948kB active_anon:306132kB inactive_anon:316kB active_file:14980kB inactive_file:49064kB unevictable:0kB writepending:1560kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5536kB pagetables:4196kB bounce:0kB free_pcp:1268kB local_pcp:632kB free_cma:0kB
[  582.007911] lowmem_reserve[]: 0 0 0 0
[  582.011766] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  582.025473] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  582.041324] Node 0 Normal: 1847*4kB (UME) 2891*8kB (UME) 3554*16kB (UME) 3041*32kB (UME) 1473*64kB (UME) 234*128kB (UM) 194*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 48*2048kB (UM) 438*4096kB (UM) = 2375348kB
[  582.060205] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  582.068807] 16098 total pagecache pages
[  582.072818] 0 pages in swap cache
[  582.076287] Swap cache stats: add 0, delete 0, find 0/0
[  582.081670] Free swap  = 0kB
[  582.084706] Total swap = 0kB
[  582.087750] 1965969 pages RAM
[  582.090867] 0 pages HighMem/MovableOnly
[  582.094877] 339347 pages reserved
[  582.105227] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  582.117170] syz-executor4 cpuset=syz4 mems_allowed=0
[  582.122343] CPU: 0 PID: 29969 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  582.129616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  582.138950] Call Trace:
[  582.141536]  dump_stack+0x1b9/0x294
[  582.145160]  ? dump_stack_print_info.cold.2+0x52/0x52
[  582.150349]  ? kasan_check_read+0x11/0x20
[  582.154495]  warn_alloc.cold.118+0xb2/0x1b8
[  582.158816]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  582.163652]  ? trace_hardirqs_on+0xd/0x10
[  582.167802]  ? _raw_spin_unlock_irq+0x27/0x70
[  582.172279]  ? finish_task_switch+0x1ca/0x810
[  582.176781]  ? lock_repin_lock+0x410/0x410
[  582.181005]  __vmalloc_node_range+0x45e/0x750
[  582.185494]  ? graph_lock+0x170/0x170
[  582.189301]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  582.194145]  __vmalloc_node_flags_caller+0x75/0x90
[  582.199060]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  582.203888]  kvmalloc_node+0xde/0x100
[  582.207780]  kvm_arch_create_memslot+0xa3/0x4e0
[  582.212439]  __kvm_set_memory_region+0x1d1b/0x2e50
[  582.217360]  ? kvm_vcpu_block+0x1050/0x1050
[  582.221675]  ? print_usage_bug+0xc0/0xc0
[  582.225733]  ? check_same_owner+0x320/0x320
[  582.230058]  ? do_raw_spin_unlock+0x9e/0x2e0
[  582.234463]  ? rcu_note_context_switch+0x710/0x710
[  582.239382]  ? lock_acquire+0x1dc/0x520
[  582.243353]  ? graph_lock+0x170/0x170
[  582.247148]  ? __might_sleep+0x95/0x190
[  582.251115]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  582.256656]  ? futex_wait_queue_me+0x550/0x820
[  582.261229]  ? __lock_acquire+0x7f5/0x5140
[  582.265456]  ? refill_pi_state_cache.part.7+0x300/0x300
[  582.270827]  ? find_held_lock+0x36/0x1c0
[  582.274901]  ? lock_downgrade+0x8e0/0x8e0
[  582.279081]  kvm_set_memory_region+0x2e/0x50
[  582.283490]  kvm_vm_ioctl+0x668/0x1d90
[  582.287373]  ? pick_next_task_fair+0x973/0x1660
[  582.292041]  ? kvm_set_memory_region+0x50/0x50
[  582.296626]  ? find_held_lock+0x36/0x1c0
[  582.300704]  ? lock_downgrade+0x8e0/0x8e0
[  582.304857]  ? finish_task_switch+0x182/0x810
[  582.309358]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  582.314553]  ? do_futex+0x249/0x27d0
[  582.318281]  ? kasan_check_read+0x11/0x20
[  582.322437]  ? graph_lock+0x170/0x170
[  582.326245]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  582.330837]  ? compat_start_thread+0x80/0x80
[  582.335255]  ? _raw_spin_unlock_irq+0x27/0x70
[  582.339762]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  582.344789]  ? exit_robust_list+0x290/0x290
[  582.349096]  ? find_held_lock+0x36/0x1c0
[  582.353144]  ? lock_downgrade+0x8e0/0x8e0
[  582.357286]  ? kasan_check_read+0x11/0x20
[  582.361416]  ? rcu_is_watching+0x85/0x140
[  582.365560]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  582.370739]  ? __fget+0x40c/0x650
[  582.374176]  ? do_raw_spin_unlock+0x1/0x2e0
[  582.378483]  ? expand_files.part.8+0x9a0/0x9a0
[  582.383056]  ? kasan_check_write+0x14/0x20
[  582.387287]  ? do_raw_spin_lock+0xc1/0x200
[  582.391509]  ? kvm_set_memory_region+0x50/0x50
[  582.396076]  do_vfs_ioctl+0x1cf/0x16a0
[  582.399952]  ? ioctl_preallocate+0x2e0/0x2e0
[  582.404347]  ? fget_raw+0x20/0x20
[  582.407805]  ? __x64_sys_futex+0x477/0x680
[  582.412044]  ? exit_to_usermode_loop+0x87/0x310
[  582.416711]  ? do_futex+0x27d0/0x27d0
[  582.420509]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  582.426044]  ? security_file_ioctl+0x94/0xc0
[  582.430447]  ksys_ioctl+0xa9/0xd0
[  582.433899]  __x64_sys_ioctl+0x73/0xb0
[  582.437792]  do_syscall_64+0x1b1/0x800
[  582.441684]  ? finish_task_switch+0x1ca/0x810
[  582.446181]  ? syscall_return_slowpath+0x5c0/0x5c0
[  582.451116]  ? syscall_return_slowpath+0x30f/0x5c0
[  582.456055]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  582.461430]  ? trace_hardirqs_off_thunk+0x1a/0x1c
2018/05/02 02:14:33 executing program 7:

2018/05/02 02:14:33 executing program 5:

2018/05/02 02:14:33 executing program 2:

2018/05/02 02:14:33 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000008c040000d0"], 0x1)

2018/05/02 02:14:33 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f00000000c0)={<r4=>0x0})
ioctl$DRM_IOCTL_NEW_CTX(r1, 0x40086425, &(0x7f0000000100)={r4, 0x2})
dup3(r2, r0, 0x0)

2018/05/02 02:14:33 executing program 1:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$sndseq(r2, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r1, r0, 0x1, 0x0)
dup2(r1, r3)
syz_open_pts(r0, 0x10000)

[  582.466279]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  582.471449] RIP: 0033:0x455979
[  582.474618] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  582.482309] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  582.489558] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  582.496808] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  582.504056] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  582.511312] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x40000000000, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:33 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="0203000910000000003f0000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:33 executing program 2:

2018/05/02 02:14:33 executing program 5:

[  582.601994] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  582.613857] syz-executor4 cpuset=syz4 mems_allowed=0
[  582.619053] CPU: 1 PID: 29992 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  582.627803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  582.637155] Call Trace:
[  582.639840]  dump_stack+0x1b9/0x294
[  582.643481]  ? dump_stack_print_info.cold.2+0x52/0x52
[  582.648695]  ? graph_lock+0x170/0x170
[  582.652507]  warn_alloc.cold.118+0xb2/0x1b8
[  582.656839]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  582.661703]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  582.667784]  ? update_load_avg+0x2d9/0x2570
[  582.672114]  ? graph_lock+0x170/0x170
[  582.675930]  __vmalloc_node_range+0x45e/0x750
[  582.680432]  ? graph_lock+0x170/0x170
[  582.684244]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  582.690573]  __vmalloc_node_flags_caller+0x75/0x90
[  582.695509]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  582.700367]  kvmalloc_node+0xde/0x100
[  582.704180]  kvm_arch_create_memslot+0xa3/0x4e0
[  582.708874]  __kvm_set_memory_region+0x1d1b/0x2e50
[  582.713825]  ? kvm_vcpu_block+0x1050/0x1050
[  582.718153]  ? print_usage_bug+0xc0/0xc0
[  582.722223]  ? lock_downgrade+0x8e0/0x8e0
[  582.726385]  ? lock_downgrade+0x8e0/0x8e0
[  582.730545]  ? graph_lock+0x170/0x170
[  582.734357]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  582.738956]  ? __lock_acquire+0x7f5/0x5140
[  582.743335]  ? trace_hardirqs_on+0xd/0x10
[  582.747495]  ? find_held_lock+0x36/0x1c0
[  582.751576]  ? lock_downgrade+0x8e0/0x8e0
[  582.755780]  kvm_set_memory_region+0x2e/0x50
[  582.760201]  kvm_vm_ioctl+0x668/0x1d90
[  582.764093]  ? pick_next_task_fair+0x973/0x1660
[  582.768756]  ? kvm_set_memory_region+0x50/0x50
[  582.773328]  ? find_held_lock+0x36/0x1c0
[  582.777381]  ? lock_downgrade+0x8e0/0x8e0
[  582.781511]  ? finish_task_switch+0x182/0x810
[  582.786002]  ? kasan_check_read+0x11/0x20
[  582.790140]  ? graph_lock+0x170/0x170
[  582.793922]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  582.798486]  ? compat_start_thread+0x80/0x80
[  582.802887]  ? _raw_spin_unlock_irq+0x27/0x70
[  582.807365]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  582.812370]  ? trace_hardirqs_on+0xd/0x10
[  582.816512]  ? _raw_spin_unlock_irq+0x27/0x70
[  582.821000]  ? find_held_lock+0x36/0x1c0
[  582.825062]  ? lock_downgrade+0x8e0/0x8e0
[  582.829198]  ? kasan_check_read+0x11/0x20
[  582.833337]  ? rcu_is_watching+0x85/0x140
[  582.837467]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  582.842650]  ? __fget+0x40c/0x650
[  582.846111]  ? expand_files.part.8+0x9a0/0x9a0
[  582.850684]  ? lock_downgrade+0x8e0/0x8e0
[  582.854829]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  582.860360]  ? vma_set_page_prot+0x239/0x300
[  582.864873]  ? kvm_set_memory_region+0x50/0x50
[  582.869446]  do_vfs_ioctl+0x1cf/0x16a0
[  582.873317]  ? ioctl_preallocate+0x2e0/0x2e0
[  582.877713]  ? fget_raw+0x20/0x20
[  582.881156]  ? exit_to_usermode_loop+0x87/0x310
[  582.885811]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  582.891346]  ? security_file_ioctl+0x94/0xc0
[  582.896013]  ksys_ioctl+0xa9/0xd0
[  582.899461]  __x64_sys_ioctl+0x73/0xb0
[  582.903332]  do_syscall_64+0x1b1/0x800
[  582.907201]  ? finish_task_switch+0x1ca/0x810
[  582.911680]  ? syscall_return_slowpath+0x5c0/0x5c0
[  582.916592]  ? syscall_return_slowpath+0x30f/0x5c0
[  582.921521]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  582.926879]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  582.931709]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  582.936885] RIP: 0033:0x455979
[  582.940064] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  582.947753] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  582.955218] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  582.962476] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  582.969742] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  582.976995] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  582.985072] warn_alloc_show_mem: 1 callbacks suppressed
[  582.985075] Mem-Info:
[  582.992901] active_anon:76536 inactive_anon:94 isolated_anon:0
[  582.992901]  active_file:3745 inactive_file:12274 isolated_file:0
[  582.992901]  unevictable:0 dirty:199 writeback:200 unstable:0
[  582.992901]  slab_reclaimable:10703 slab_unreclaimable:106108
[  582.992901]  mapped:73866 shmem:105 pagetables:1038 bounce:0
[  582.992901]  free:1323288 free_pcp:440 free_cma:0
[  583.026824] Node 0 active_anon:306144kB inactive_anon:376kB active_file:14980kB inactive_file:49096kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295464kB dirty:296kB writeback:500kB shmem:420kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 139264kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  583.055166] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  583.081356] lowmem_reserve[]: 0 2830 6335 6335
[  583.085998] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:84kB free_cma:0kB
[  583.113678] lowmem_reserve[]: 0 0 3505 3505
[  583.118044] Node 0 Normal free:2376500kB min:37300kB low:46624kB high:55948kB active_anon:306144kB inactive_anon:376kB active_file:14980kB inactive_file:49096kB unevictable:0kB writepending:116kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5536kB pagetables:4152kB bounce:0kB free_pcp:1028kB local_pcp:356kB free_cma:0kB
[  583.147935] lowmem_reserve[]: 0 0 0 0
[  583.151776] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  583.165442] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  583.181348] Node 0 Normal: 1909*4kB (UME) 2891*8kB (UME) 3601*16kB (UME) 3045*32kB (UME) 1473*64kB (UME) 234*128kB (UM) 194*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 48*2048kB (UM) 438*4096kB (UM) = 2376476kB
[  583.200338] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  583.208932] 16123 total pagecache pages
[  583.212930] 0 pages in swap cache
[  583.216404] Swap cache stats: add 0, delete 0, find 0/0
[  583.221788] Free swap  = 0kB
[  583.224825] Total swap = 0kB
[  583.227856] 1965969 pages RAM
[  583.231004] 0 pages HighMem/MovableOnly
[  583.235006] 339347 pages reserved
[  583.243786] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  583.255653] syz-executor4 cpuset=syz4 mems_allowed=0
[  583.260815] CPU: 0 PID: 30001 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  583.268093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  583.277426] Call Trace:
[  583.280003]  dump_stack+0x1b9/0x294
[  583.283622]  ? dump_stack_print_info.cold.2+0x52/0x52
[  583.288806]  ? kasan_check_read+0x11/0x20
[  583.292950]  warn_alloc.cold.118+0xb2/0x1b8
[  583.297253]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  583.302084]  ? trace_hardirqs_on+0xd/0x10
[  583.306220]  ? _raw_spin_unlock_irq+0x27/0x70
[  583.310707]  ? finish_task_switch+0x1ca/0x810
[  583.315219]  ? lock_repin_lock+0x410/0x410
[  583.319709]  __vmalloc_node_range+0x45e/0x750
[  583.324189]  ? graph_lock+0x170/0x170
[  583.328078]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  583.332908]  __vmalloc_node_flags_caller+0x75/0x90
[  583.337818]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  583.342656]  kvmalloc_node+0xde/0x100
[  583.346465]  kvm_arch_create_memslot+0xa3/0x4e0
[  583.351124]  __kvm_set_memory_region+0x1d1b/0x2e50
[  583.356046]  ? kvm_vcpu_block+0x1050/0x1050
[  583.360359]  ? print_usage_bug+0xc0/0xc0
[  583.364421]  ? check_same_owner+0x320/0x320
[  583.368730]  ? do_raw_spin_unlock+0x9e/0x2e0
[  583.373127]  ? rcu_note_context_switch+0x710/0x710
[  583.378045]  ? lock_acquire+0x1dc/0x520
[  583.382007]  ? graph_lock+0x170/0x170
[  583.385795]  ? __might_sleep+0x95/0x190
[  583.389754]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  583.395282]  ? futex_wait_queue_me+0x550/0x820
[  583.399865]  ? __lock_acquire+0x7f5/0x5140
[  583.404100]  ? refill_pi_state_cache.part.7+0x300/0x300
[  583.409451]  ? find_held_lock+0x36/0x1c0
[  583.413519]  ? lock_downgrade+0x8e0/0x8e0
[  583.417697]  kvm_set_memory_region+0x2e/0x50
[  583.422114]  kvm_vm_ioctl+0x668/0x1d90
[  583.425996]  ? pick_next_task_fair+0x973/0x1660
[  583.430667]  ? kvm_set_memory_region+0x50/0x50
[  583.435258]  ? find_held_lock+0x36/0x1c0
[  583.439333]  ? lock_downgrade+0x8e0/0x8e0
[  583.443483]  ? finish_task_switch+0x182/0x810
[  583.447983]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  583.453186]  ? do_futex+0x249/0x27d0
[  583.456904]  ? kasan_check_read+0x11/0x20
[  583.461056]  ? graph_lock+0x170/0x170
[  583.464950]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  583.469539]  ? compat_start_thread+0x80/0x80
[  583.473957]  ? _raw_spin_unlock_irq+0x27/0x70
[  583.478450]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  583.483458]  ? exit_robust_list+0x290/0x290
[  583.487766]  ? find_held_lock+0x36/0x1c0
[  583.491814]  ? lock_downgrade+0x8e0/0x8e0
[  583.495946]  ? kasan_check_read+0x11/0x20
[  583.500075]  ? rcu_is_watching+0x85/0x140
[  583.504205]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  583.509380]  ? __fget+0x40c/0x650
[  583.512817]  ? do_raw_spin_unlock+0x1/0x2e0
[  583.517123]  ? expand_files.part.8+0x9a0/0x9a0
[  583.521689]  ? kasan_check_write+0x14/0x20
[  583.525914]  ? do_raw_spin_lock+0xc1/0x200
[  583.530135]  ? kvm_set_memory_region+0x50/0x50
[  583.534704]  do_vfs_ioctl+0x1cf/0x16a0
[  583.538586]  ? ioctl_preallocate+0x2e0/0x2e0
[  583.542977]  ? fget_raw+0x20/0x20
[  583.546415]  ? __x64_sys_futex+0x477/0x680
[  583.550634]  ? exit_to_usermode_loop+0x87/0x310
[  583.555286]  ? do_futex+0x27d0/0x27d0
[  583.559075]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  583.564596]  ? security_file_ioctl+0x94/0xc0
[  583.568987]  ksys_ioctl+0xa9/0xd0
[  583.572426]  __x64_sys_ioctl+0x73/0xb0
[  583.576302]  do_syscall_64+0x1b1/0x800
[  583.580175]  ? finish_task_switch+0x1ca/0x810
[  583.584661]  ? syscall_return_slowpath+0x5c0/0x5c0
[  583.589590]  ? syscall_return_slowpath+0x30f/0x5c0
[  583.594501]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  583.599854]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  583.604680]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  583.609852] RIP: 0033:0x455979
[  583.613024] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  583.620726] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  583.627981] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  583.635238] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  583.642492] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
2018/05/02 02:14:34 executing program 2:

2018/05/02 02:14:34 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000003f040000d0"], 0x1)

2018/05/02 02:14:34 executing program 5:

2018/05/02 02:14:34 executing program 7:

2018/05/02 02:14:34 executing program 1:
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$sndseq(r3, &(0x7f0000000180)=[{0x1ff, 0x7ff, 0x7fff, 0x7, @tick=0x6, {0x1, 0x7}, {0x30, 0x5}, @quote={{0xde4c}, 0xffffffff, &(0x7f0000000000)={0xa8, 0x100000000, 0x7ff, 0x7b47, @tick=0x7fffffff, {0xfe6c, 0x1}, {0x8, 0x3a6}, @note={0x7d1c, 0xa14, 0x8001, 0xe7}}}}, {0x19b0000000, 0x1, 0x20, 0x6, @tick=0x4, {0x8, 0x7}, {0x4, 0x4}, @ext={0x0, &(0x7f0000000400)="438e20e606f39469bcc04ea9ba332b2682d9f615c9b7c8206070e95a370c5367287ce3a91970287e8c556b0afbb19353e9f3afbc08588ed60033e7529446a2f6beefe4bf8632d19bb4bf5d0f08a632b6369d89af4312447dcd00ffa60b44add5257811d2e4e8693e2d0cf4e6f51fada940072d530d03a0307efe2acd3a5b590154aa720b8e06f6f73888f8af45b3eed6d458c3d1a0e3f034ff5b381411816431840072c351c9eaffafbc2c0a345b80373c270d4fd58399dcb9b49cfb719261159e78abec089f15a75ea015e4f7387fcf2a930a89d50a5934b431eff97b83619aea68b0d90dfcb29f277e113554223fc3331f749f8b6791861890c9f24b5d8f030473f63a6522515b72a78346497b2c21746f4683b1dccf631eaf4eaa17bead41a0ac0d86b8c5b10f9c78990dc98e3bdc01b6d2f2f902fe654e572623ef6595ff81584390f5784f82b8e45aaca1c910f1fd1550d3bae7959733c2d01455e6cb0f27823a18390c62840ea80f7fc877b0179e9fee7478b279260857ca7bc9f8ea437ecffb5918657d08cfa9c2c830056201d4c252e8f1012fe9410697cd5b4a0bcb4f5169ce3d265ca4b44bb7843cfceb5ceccae23561305ee3a9a9579ca41886b09e924af8c98d51746b1c0f3f43c53dba7d1deee3b415ef043b6f11db2dca1581ef93e66e8d1ea1dd59c715643e6d3daa7d96ec5f4917a2a734bd484807ff7745a5d23493241b10cd41f6bf68f1738517de4d50a655bd2b7c4a992c58d7a34fcb581caaef3c9a5d53ff19f295f6fbfaffeac5d76ef595fff62cedf64fb6a58e344b4b1802ded8013dabb9126b9e322b09e66fae4f84bae30711cb951f6eeec754801dfc57c74f505258826c8b48810d4de81d9703cf012cc2f5f702478c1cdfd893814808e4a131067c7361c62c5d4bd4372d8c04b2a63b7e3cb7fc560ed2fc21f1b881d81bc39ce3a89e169f738e004169d801ace081a42aa4b4f2c2c8e9d110d4fe9cc71dca6f8bf09d904dbc52c2c7b7cce657fc69becf7395ea499b9dc69264f0287ceaab0d278c341f578e1ca1ead9b36487517e52a03991db27e5a29ec2abf05a3d283416516460c87da38736b36cb2210917bef7c981def230fa5389238f893a59456a648a1c607e249156737a5e63a580fa96cf1284ee136e195896e5689b9fe56ba83427753e224b72f569c253bfeba469705f19cd75ac5ec92e352f7cddaa1472d51656ae9512de9a9a103cc3c6a0ae3497b26e01a72c834af5c2aef9f6a350c88111c93b8f04cbd5c7f9e18e6674410ae2067f5ea396502bc15ccc2c7abe827c0229f36296639d1f1fc4f937428c3cbfb15bd0a679b36b863f9d27c3a3f13bb84305b3d2b433bb3a79016fafc272157997f177e2bb185945a6964096b325febc7a728d78355d1a4ffe9f9b54b7d9197e19954e2e24017ba19ae7f03c4381a1adad2207ecf0161723d0fe8b8c8e25bb6d8717c0fbbbfd6c962a38d546b6abeb97683363e6901e36f6380d07407e6dee6e356ea0fa2e3babeea7d8630d45d1329e9b7428d99a5251db5602147b54fbe9fc0d4f69e4be86294ae93b0e9488530fc0793da1108cdd9ed24e45137dcd83ffd19d5161f0dbeee981ea6568586eb6dc4891eab188f43c237e45f5ad73d16499e5c7773db632debb7164fc442ca768531a0c20b139700f348257cb433cdbca423d60093abef7b6d18ce7734417339a548b1004b4531205fbed938c86455ba7c13ce505fbabd4fbbfd7195195f1f8cb56b6aa9d6eea448145b6907acd6e23b7d8a5f7f8af45758c6ced4b1f9154d690f4dd1bfd3dec44c3750aa2dc51c93def622352d7c7bbdfb3df01f5e1d38a29554385dc12075d8b08babe58f1f0a12d0ea8555537a6f8d0dab9d4bdca72f769fb589a7b5cfbd41986c9c79091b11671cc22b0f13cadbab4c137f47a18ae04d692231d135eb4c9ad3c29b1819ca7c0b6916aceb743be7f03bdd7f15b72d59cb726c96936286ec16eff7f40f564c3cbfeeeb07217a36f9f9b63557b152a5d4912b6d0411aeeed7bd97d50b1da264f04184bd1c37926ee26e5cfd862b7864821e6ef3c1854b7b8cfd0d5516b9c24370bb7e2ceeb3d7f065b809550f1b041857ce9ac6f424dae418ab0a0d187d0fae0fb653ad639bc2afb118094ad07135da7472ca634daceea5b45a812ac8cb14557d3e01250a538eca4b79fb04ab4a7caa0f4ba78a8a52806aa7cef9aed5802649196fd3ecedb7654f5c276e44d61559888a3c72bca23c8e3b0dc56eb29b773581e29d18379722fc98a1fd5952864af81cef498137ad0d3f8299ed0cbe508f305a53c2a9100aa34d3596fc71ad254ea56e35d6ca229d3011b2a4f9d39b310ff62b3530aa695fed8d6229dfc1aee27185872089c308c4ce7407d09f2ec3eab7d2aa6b244fbb2dd9183d3ab0203c73aece8bbd858280b4b011b377b0383a127a8cb0415a4e6c1d96ab5a794bdba573bd1057ca6c2942a5fd6ef07fa97a31495e65eb556e1829137ba8b6573686b12358315278763b854e2596e636c20b51704d2579a83116fe395e308a952fb7a9e9300f65c8b6d349e60aaec40b6bc9b9dde402e0ffb9b7bb58eab24b27f77af7107a99755896153f57979e53e3943bc9bdedc2206ab5ba0d0c21b77292568c3d875d704acf5bac560946f6db6cee34a9fca40004a0ce4fb36cca89bb40851b0cddae9c690cf926e16ddbd3c30e47881d92a45daf8106c14f77f0ba714fb2a570d71da725a1c4e6241105bd3aa3c23c6e27eb9ca6fe4d4bfe17d8994fb31cb2ae0b8c42c2e7c446818c53c454d81e72cb548d793a97269c2f6c38fc09a3b38db74fd997e67bb3c6e4ff702d87716933dfb4ca094d07a9472074203458fa25dec1f2abf43a7c70cb1c3ac26a7073ff1b91ded5cd31a3fd3357cce094795483cf918ce8b1b7881724d87374c9cd77a274ce63bb73702146d3b20dcdfb047c04c0d8c4d20c6aaf9a70bbe033dedae6220483642018992bbc3378db2a375f6bfcef0c3af3c846933518f7a9ead76bdd138144f89ba2fd88c080a6b98811324567e2dff4794e0f505848da05fd35217a3a33f08cf3f7a5c8d0d61498d31b3fea6c9c6e22ec3ce7dc03c3638bf63bc846be6530f81c9f99c2b9fc8d470dae5f280d24b2b91ff87bf07f74e8fb576b233ccfdb032d3be6a68590d45124d9896b5149bb9809f9fbaf116149296f7deb90f3874ecec745f4cd27262d16d27ce24767330826414a5139c6dab21bfee83804f818f9c989c5466f5ebc2bf8f552ffa520942b9f409d618ab7267de817de941c399cbdd20c19a8f301d673327f1edf43095357f88b74034ddc4a9989bf7cbe6abdf6461a272abd51d8b7b3942788ea26117ce327eb9582911f674181ae72006e11774e5f59607d6077ba335245ea756c9b84cd7a8508017ba45c1a66a1585c1cae1f21c0c3f75a4dc90803a1b4c8385d18e521446b1669504bee103dac2726fed426265a4be50ca79d9600df953378ce1ec2ebec9e68675ef56f1ff5d44de90b4d6cb71166b924993a4022e1b37512abb857cca8b1c9a4e39fac72423d089c87b2d9674e4c67998ca5d2b0b12a19ff3b4398f825dc7e6ba6920d4a3e2c8fb7960993a13001ddf14f7712d8d9f48837eb11aab70545dc983e23a53db84cb9a7c7b3a36f701cb9d7f8a14355ea2103d847cfb7540dab93f024b6d8cb72b29ca640ac3d231cb294b11af7237b0da9e3c5b8909cc838c62b6539c2a3d3fe5691f96e152d1ec1fda8c7269e42cf0e7232fb64f1d108db480b17f5779c82a6d71fa7ed1f00532126087822b2881e2834ac6cd8117ee7e6a2c05209d849b3e3d583a32e8f1d78857483bf950c8f56eb57e37692fbb332615e142bafdcb68dbaca6caf45d1a017e4883165e02f7605d98de5803e73304cab9ab4b874f1831a38eee8a68ce5ec48499ca97f6dc475c11b15483886f45f479a2a794f758079463cb755d235e9b8d9e0427c182e608e9a914bcaeeef933e565a400a59e1cefc0bd4315fbb64bafcbde4413c732dcef8066281c62509116f4b696a1858e969fa7cb5681ca4dbcf1e861b43a061174ad3ff9def94e40d73b463645713ce87f5b93f69f5e1f8cdc19a56520e0c8ab3e5fe9cc941563729f240bc5f5f5f337e5d1c3ad6ed064f24f1afb304e4e0fe29dbfadf01c5a652a14076f8ee953956546d4c01dd94e3171ace67891f1150123ac19bddeb7ccfb9b49b7245541af714cf0c5e10f55d5851980a3a128bd1cb74a35a0018d3953fd94acaaf1aacec89bd1a4c49dca731d9f22e4d94f10092f4f2718cf524df012745bf720730b36005f9bb4bd4a36d424c470cad2ab9938f3710ed0b8148db702013f108d5956858a9cb0d8d70846edf24d63c4c5a4fbd1374a38431e1edbf59440b63cc77a56fade62012ca414a337b1e5dd7e288bd87c103950ecc1abb96df5747f864b7346289af56f32495121c1d973afda124e46542485345aace8333f23dcd1a68889fac2e964aae5923a6d982f91deadd51b0d9092757e4c1a2f66beab54e0edc45bd6ea8e505b502976d81ae6be70eee6383bb8356544d87d859bbb16aaba7a786904f3a7689e4de958a347d762dded1aa34330ce22da311cb6c833858cd437913156a96f9c0fc3fdcb6eff33d2cf85b2dc040b564ac6f926a6201439ea203ad358b93d0f4fedabb40e90a62a445d4dcfa9ca5371fab063aa2cffb50c8ef32cfef8c07a7bad6fd93993c03382f65f59120ba1da9be89fa73834a02445f53596c98f5ea61cbe995074c2acca7ffc0e15004c132191d43e4888b5c5f8ba3a552272a22d7f110791578024762eca19d21a14e9786de91cdb771bf266de70c76de2c078f346f9c3a1231a692c483ada27807266cd0d8a1b409a65f9628afa7f23f5a18cb2ae16210b1df4e585e789f810d1d6250f11f09fc5098f2255d2682796ab341d7dacf51ee59f6b7425f9daa287d31fdd8ae5bb52a7fd36b5edb8ab490201f9e09939230507acf4ca24989777dbef33c27fa5b95239cf71eee7c8645ee6d6f540c658a0bc919bb943806f45aa9707b36449cf3e32fb066992c65ca1c58e147124eb7ac5beea7544b982d53a250f97ce27b6dc31c5e210dbc7cd133116a3094bbcda6a756c8d644503a7bec368da0ee6d9998df644d669a3c2b2be3edbf42f880c8214812c89fc92bf8aeabc2b0427cd0bdb21f01fd74a6c0edb79300a2a5f746a6e020a99f4b28062df592cd38c3287bb492a903106c041f65fc089f016effac861ab6f8b48e5ae0930146fd8fd4b807909c2e8660eccc8ae537b5b087f5c451c4eaa065fd20e5ab1e42f461702a8fa7b71a232297892889eb348d6ac480f5d19a0734966383a37a34e1c4a8af6d81d06702baea25121db5a89d0ed78659f4a09ac0ef614a262454908ce86d44ccc0e30f8fbbee4940e2155fe961a00240f71b858f038dc7fe55f0dda9dbf7fb3a8b8b455b99da0ef072b0cec07610f5da0c825d025794189e0db49c600e5009b56e54fc731b43c66b30a6617e1a9e4a2ae669f16a8dde4f08a773468dd039c28c3d8535ff40e3190332891749678b05803208e8556ce5ff911de2c425d708f643c6b15450aeba9412de72186254f616955c1e56265e829827b83eec0debd9706173b0eeaf280aed3d19b7401eb4ec5fb70eeaef81ac97abe8ef13fdd1e942e239445bd8938c6e1d7ee00c19055f7b3fac220edc16a66d44d93fcb5e7ed23fd2cba762a272b8f8a019e339a2e489c6e809864cfb5864dbabf46"}}, {0x12, 0x2, 0x80000001, 0x80, @tick=0xffffffffffff178c, {0x4, 0x3f}, {0xf000000000000000, 0x7ff}, @queue={0x4, {0x4, 0x20}}}, {0x3, 0x1ff, 0xec7, 0x3, @tick=0x2, {0xb1, 0x4}, {0x4, 0x6}, @raw8={"99e8c3cd24b3f9a7d5edab67"}}, {0x7, 0xa3db, 0x7fff, 0x2, @tick=0x8, {0x10001, 0x8}, {0x85c, 0xf888}, @ext={0x0, &(0x7f00000000c0)="226b1f0aab6691255ebe1753ecc97bc9cfe939a1c52a9dccb90d28bf8e97ffb4c093d2bb945750e01abc2883e5817e6a18529c6d958f895b7571de39ed2783d7d696b7d86fb0a764ae9e219aba01116d919eed5b8788f45adc9e1a485a8f57140421fc80c977e46aca6288f8c57afc5b2e101793360d9f3690248581b0315d8e6fe77a7c1a115ae96a1010dd9a9eb3f97d9c1b10c6273f5b2093fde4dc499a0e56c09d1a155644d79198ffab98e4c08fa8654c8254f975f521f05db0505c"}}, {0x6, 0x3c, 0x101, 0x8001, @time={0x77359400}, {0x80, 0x7ff}, {0x8000, 0x6}, @time=@time}, {0x1, 0x32, 0x8000, 0x7, @tick=0x100000000, {0x8, 0x81}, {0x3, 0x9}, @addr={0x4, 0x3}}], 0xfffffffffffffd95)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r2, r1, 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000300)={<r5=>0x0, @in6={{0xa, 0x4e23, 0x7, @loopback={0x0, 0x1}, 0x40000000}}, 0x7, 0xffffffff00000001, 0x2, 0x40, 0x60}, &(0x7f00000003c0)=0x98)
setsockopt$inet_sctp6_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000001400)={r5, 0x6}, 0x8)
dup2(r2, r4)
setsockopt$inet6_tcp_TLS_RX(r2, 0x6, 0x2, &(0x7f0000000040)={0x303, 0x33}, 0x4)

2018/05/02 02:14:34 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x48, 0x0, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:34 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f00000000c0)={0x7, 0xff, 0x7, 0x1, 0x1ff, 0x4380000000000000})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$GIO_FONT(r1, 0x4b60, &(0x7f0000000100)=""/94)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r2, r0, 0x0)

2018/05/02 02:14:34 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000340000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  583.649738] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:34 executing program 2:

[  583.736705] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  583.748545] syz-executor4 cpuset=syz4 mems_allowed=0
[  583.753725] CPU: 1 PID: 30022 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  583.760999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  583.770355] Call Trace:
[  583.772954]  dump_stack+0x1b9/0x294
[  583.776598]  ? dump_stack_print_info.cold.2+0x52/0x52
[  583.781795]  ? graph_lock+0x170/0x170
2018/05/02 02:14:34 executing program 2:
r0 = getpgrp(0xffffffffffffffff)
prctl$setptracer(0x59616d61, r0)
prctl$setptracer(0x59616d61, r0)

2018/05/02 02:14:34 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000076040000d0"], 0x1)

2018/05/02 02:14:34 executing program 5:
r0 = syz_open_dev$sndtimer(&(0x7f0000000180)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0xc0145401, &(0x7f0000000040)={{0xffffffffffffffff}})
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000080)={0xa, [0xfffffffffffffada, 0x80000000, 0x1ff, 0x3, 0x1, 0x8001, 0x4, 0x367, 0x5, 0x1ff]}, 0x18)
setsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f00000000c0)={0x6, 0x80000001, 0x8e, 0x1f}, 0x8)

[  583.785620]  warn_alloc.cold.118+0xb2/0x1b8
[  583.789960]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  583.794818]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  583.800897]  ? update_load_avg+0x2d9/0x2570
[  583.805226]  ? graph_lock+0x170/0x170
[  583.809042]  __vmalloc_node_range+0x45e/0x750
[  583.813544]  ? graph_lock+0x170/0x170
[  583.817368]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  583.822220]  __vmalloc_node_flags_caller+0x75/0x90
[  583.827158]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  583.832011]  kvmalloc_node+0xde/0x100
2018/05/02 02:14:34 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000007a040000d0"], 0x1)

[  583.835824]  kvm_arch_create_memslot+0xa3/0x4e0
[  583.840512]  __kvm_set_memory_region+0x1d1b/0x2e50
[  583.845460]  ? kvm_vcpu_block+0x1050/0x1050
[  583.849788]  ? print_usage_bug+0xc0/0xc0
[  583.853856]  ? lock_downgrade+0x8e0/0x8e0
[  583.858009]  ? lock_downgrade+0x8e0/0x8e0
[  583.862174]  ? graph_lock+0x170/0x170
[  583.865982]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  583.870579]  ? __lock_acquire+0x7f5/0x5140
[  583.874825]  ? trace_hardirqs_on+0xd/0x10
[  583.879579]  ? find_held_lock+0x36/0x1c0
2018/05/02 02:14:34 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x100001, 0x4)
setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000000040)=0xffffffff, 0x4)
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='vcan0\x00', 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0x0, 0x20020003, &(0x7f0000000180)={0x2, 0x0, @loopback=0x7f000001}, 0x10)
sendmmsg(r0, &(0x7f0000006b80)=[{{&(0x7f0000002f80)=@vsock={0x28, 0x0, 0x0, @my}, 0x10, &(0x7f0000003180), 0x0, &(0x7f00000031c0)}}, {{&(0x7f0000003480)=@vsock={0x28, 0x0, 0x0, @any=0xffffffff}, 0x10, &(0x7f0000005780), 0x8d, &(0x7f0000005800)=[{0x10, 0x18d}], 0x10}}], 0x2, 0x0)

2018/05/02 02:14:34 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000000d040000d0"], 0x1)

[  583.883664]  ? lock_downgrade+0x8e0/0x8e0
[  583.887847]  kvm_set_memory_region+0x2e/0x50
[  583.892268]  kvm_vm_ioctl+0x668/0x1d90
[  583.896171]  ? pick_next_task_fair+0x973/0x1660
[  583.900854]  ? kvm_set_memory_region+0x50/0x50
[  583.905447]  ? find_held_lock+0x36/0x1c0
[  583.909524]  ? lock_downgrade+0x8e0/0x8e0
[  583.913682]  ? finish_task_switch+0x182/0x810
[  583.918193]  ? kasan_check_read+0x11/0x20
[  583.922362]  ? graph_lock+0x170/0x170
[  583.926179]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  583.930772]  ? compat_start_thread+0x80/0x80
[  583.935188]  ? _raw_spin_unlock_irq+0x27/0x70
[  583.939785]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  583.944814]  ? trace_hardirqs_on+0xd/0x10
[  583.948969]  ? _raw_spin_unlock_irq+0x27/0x70
[  583.953470]  ? find_held_lock+0x36/0x1c0
[  583.957545]  ? lock_downgrade+0x8e0/0x8e0
[  583.961705]  ? kasan_check_read+0x11/0x20
[  583.965884]  ? rcu_is_watching+0x85/0x140
[  583.970037]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  583.975246]  ? __fget+0x40c/0x650
[  583.978712]  ? expand_files.part.8+0x9a0/0x9a0
[  583.983297]  ? lock_downgrade+0x8e0/0x8e0
[  583.987459]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  583.993005]  ? vma_set_page_prot+0x239/0x300
[  583.997427]  ? kvm_set_memory_region+0x50/0x50
[  584.002015]  do_vfs_ioctl+0x1cf/0x16a0
[  584.005912]  ? ioctl_preallocate+0x2e0/0x2e0
[  584.010326]  ? fget_raw+0x20/0x20
[  584.013794]  ? exit_to_usermode_loop+0x87/0x310
[  584.018473]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  584.024018]  ? security_file_ioctl+0x94/0xc0
[  584.028440]  ksys_ioctl+0xa9/0xd0
[  584.031893]  __x64_sys_ioctl+0x73/0xb0
[  584.035769]  do_syscall_64+0x1b1/0x800
[  584.039651]  ? syscall_return_slowpath+0x5c0/0x5c0
[  584.044576]  ? syscall_return_slowpath+0x30f/0x5c0
[  584.049515]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  584.054880]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  584.059735]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  584.064920] RIP: 0033:0x455979
[  584.068106] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  584.075818] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  584.083081] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  584.090344] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  584.097621] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  584.104889] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  584.112375] warn_alloc_show_mem: 1 callbacks suppressed
[  584.112382] Mem-Info:
[  584.120207] active_anon:77562 inactive_anon:80 isolated_anon:0
[  584.120207]  active_file:3745 inactive_file:12292 isolated_file:0
[  584.120207]  unevictable:0 dirty:48 writeback:0 unstable:0
[  584.120207]  slab_reclaimable:10702 slab_unreclaimable:106357
[  584.120207]  mapped:73882 shmem:88 pagetables:1068 bounce:0
[  584.120207]  free:1321942 free_pcp:437 free_cma:0
[  584.153759] Node 0 active_anon:310248kB inactive_anon:320kB active_file:14980kB inactive_file:49168kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295528kB dirty:192kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 141312kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  584.181911] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  584.208592] lowmem_reserve[]: 0 2830 6335 6335
[  584.213223] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:84kB free_cma:0kB
[  584.240844] lowmem_reserve[]: 0 0 3505 3505
[  584.245208] Node 0 Normal free:2371444kB min:37300kB low:46624kB high:55948kB active_anon:310248kB inactive_anon:320kB active_file:14980kB inactive_file:49168kB unevictable:0kB writepending:192kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5600kB pagetables:4272kB bounce:0kB free_pcp:1004kB local_pcp:248kB free_cma:0kB
[  584.275090] lowmem_reserve[]: 0 0 0 0
[  584.278928] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  584.292606] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  584.308438] Node 0 Normal: 1847*4kB (UME) 2912*8kB (UME) 3526*16kB (UME) 3052*32kB (UME) 1473*64kB (UME) 235*128kB (UM) 194*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 46*2048kB (UM) 438*4096kB (UM) = 2371452kB
[  584.327439] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  584.336047] 16124 total pagecache pages
[  584.340055] 0 pages in swap cache
[  584.343530] Swap cache stats: add 0, delete 0, find 0/0
[  584.348923] Free swap  = 0kB
[  584.351960] Total swap = 0kB
[  584.355034] 1965969 pages RAM
[  584.358172] 0 pages HighMem/MovableOnly
[  584.362156] 339347 pages reserved
[  584.373427] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  584.385401] syz-executor4 cpuset=syz4 mems_allowed=0
[  584.390569] CPU: 0 PID: 30046 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  584.397847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  584.407189] Call Trace:
[  584.409772]  dump_stack+0x1b9/0x294
[  584.413396]  ? dump_stack_print_info.cold.2+0x52/0x52
[  584.418573]  ? kasan_check_read+0x11/0x20
[  584.422709]  warn_alloc.cold.118+0xb2/0x1b8
[  584.427023]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  584.431853]  ? trace_hardirqs_on+0xd/0x10
[  584.435993]  ? _raw_spin_unlock_irq+0x27/0x70
[  584.440476]  ? finish_task_switch+0x1ca/0x810
[  584.444963]  ? lock_repin_lock+0x410/0x410
[  584.449201]  __vmalloc_node_range+0x45e/0x750
[  584.453685]  ? graph_lock+0x170/0x170
[  584.457479]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  584.462308]  __vmalloc_node_flags_caller+0x75/0x90
[  584.467236]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  584.472069]  kvmalloc_node+0xde/0x100
[  584.475856]  kvm_arch_create_memslot+0xa3/0x4e0
[  584.480518]  __kvm_set_memory_region+0x1d1b/0x2e50
[  584.485438]  ? kvm_vcpu_block+0x1050/0x1050
[  584.489745]  ? check_same_owner+0x320/0x320
[  584.494071]  ? do_raw_spin_unlock+0x9e/0x2e0
[  584.498492]  ? rcu_note_context_switch+0x710/0x710
[  584.503412]  ? lock_acquire+0x1dc/0x520
[  584.507376]  ? graph_lock+0x170/0x170
[  584.511173]  ? __might_sleep+0x95/0x190
[  584.515140]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  584.520661]  ? futex_wait_queue_me+0x550/0x820
[  584.525247]  ? refill_pi_state_cache.part.7+0x300/0x300
[  584.530620]  ? find_held_lock+0x36/0x1c0
[  584.534691]  ? lock_downgrade+0x8e0/0x8e0
[  584.538868]  kvm_set_memory_region+0x2e/0x50
[  584.543278]  kvm_vm_ioctl+0x668/0x1d90
[  584.547160]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  584.552260]  ? futex_wake+0x2f6/0x750
[  584.556073]  ? kvm_set_memory_region+0x50/0x50
[  584.560666]  ? get_futex_key+0x1e90/0x1e90
[  584.564922]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  584.570135]  ? do_futex+0x249/0x27d0
[  584.573842]  ? graph_lock+0x170/0x170
[  584.577634]  ? exit_robust_list+0x290/0x290
[  584.581938]  ? find_held_lock+0x36/0x1c0
[  584.586004]  ? lock_downgrade+0x8e0/0x8e0
[  584.590146]  ? kasan_check_read+0x11/0x20
[  584.594276]  ? rcu_is_watching+0x85/0x140
[  584.598405]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  584.603596]  ? __fget+0x40c/0x650
[  584.607047]  ? do_raw_spin_unlock+0x1/0x2e0
[  584.611377]  ? expand_files.part.8+0x9a0/0x9a0
[  584.615961]  ? kasan_check_write+0x14/0x20
[  584.620202]  ? do_raw_spin_lock+0xc1/0x200
[  584.624439]  ? _raw_spin_unlock+0x22/0x30
[  584.628591]  ? kvm_set_memory_region+0x50/0x50
[  584.633180]  do_vfs_ioctl+0x1cf/0x16a0
[  584.637078]  ? ioctl_preallocate+0x2e0/0x2e0
[  584.641496]  ? fget_raw+0x20/0x20
[  584.644965]  ? __x64_sys_futex+0x477/0x680
[  584.649207]  ? do_futex+0x27d0/0x27d0
[  584.652993]  ? security_file_ioctl+0x94/0xc0
[  584.657391]  ksys_ioctl+0xa9/0xd0
[  584.660831]  __x64_sys_ioctl+0x73/0xb0
[  584.664702]  do_syscall_64+0x1b1/0x800
[  584.668571]  ? syscall_return_slowpath+0x5c0/0x5c0
[  584.673480]  ? syscall_return_slowpath+0x30f/0x5c0
[  584.678392]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  584.683750]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  584.688578]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  584.693748] RIP: 0033:0x455979
[  584.696917] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  584.704604] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  584.711859] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  584.719116] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  584.726374] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  584.733711] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:35 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000091040000d0"], 0x1)

2018/05/02 02:14:35 executing program 7:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$rdma_cm(r0, &(0x7f0000000600)=@create_id={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000005c0)={<r1=>0xffffffff}, 0x106}}, 0x20)
write$rdma_cm(r0, &(0x7f0000000640)=@query={0x13, 0x10, 0x7, {&(0x7f0000000380), r1}}, 0x18)
r2 = socket(0x9, 0xe, 0x6)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000000)={<r3=>0x0, 0x91, "989a3920c33c86d0caa0b42e42905d6d54b67966c8bc6aadf324b39cea3a23d879e7badbd8c386a3629e4021bcf35bff60c8461ef7c5d9cad71054904b4bb7726626489c4944e0c9237b40930702067ca178e9dd73335c53266ca8291ca3eac9c7da5906b81628551e7e3a8065df119454d5fd30fc68e56bc64e7a68499f91dd5228ae2530e3943cbb2781f6d082d2d573"}, &(0x7f00000000c0)=0x99)
getsockopt$inet_sctp_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000000100)={r3, 0x7f}, &(0x7f0000000140)=0x8)

2018/05/02 02:14:35 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
socketpair(0xa, 0x1, 0xf, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$TUNGETFEATURES(r1, 0x800454cf, &(0x7f0000000040))
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000010ffc)=0x5, 0x4)
sendto$inet6(r0, &(0x7f0000003fd9), 0x0, 0x0, &(0x7f0000008000)={0xa, 0x0, 0xf}, 0x1c)

2018/05/02 02:14:35 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f00000000c0)={{{@in, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@remote}, 0x0, @in6=@ipv4={[], [], @broadcast}}}, &(0x7f00000001c0)=0xe8)
setfsuid(r1)
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r3 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0x40045402, &(0x7f0000013000))
readv(r4, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r2, 0xc1205531, &(0x7f0000000200)={0x80, 0x2, 0x5, 0x3, [], [], [], 0x5, 0x2, 0x1f, 0x5, "948b11c33e116c302aa13ade3a15b2c2"})
mkdirat$cgroup(r2, &(0x7f0000000340)='syz0\x00', 0x1ff)
dup3(r3, r0, 0x0)

2018/05/02 02:14:35 executing program 1:
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000f61000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$sndseq(r3, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @raw32}], 0x30)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0)
r4 = syz_genetlink_get_family_id$team(&(0x7f0000000480)='team\x00')
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000100)={{{@in6=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@ipv4={[], [], @multicast1}}, 0x0, @in6=@remote}}, &(0x7f0000000200)=0xe8)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in6=@loopback, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6}, 0x0, @in6=@loopback}}, &(0x7f0000000340)=0xe8)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000380)={'team0\x00', <r7=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f00000015c0)={'team0\x00', <r8=>0x0})
ioctl$sock_bt(r1, 0x541b, &(0x7f00000000c0)="3ea3067d5925b8b7d8f9a24ab81dbe9670e4c2f79c8e681ef930989bebc2acac8a65320dd0202cbd49cf78ed5a6e3895e4c0b18f")
getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000001600)={{{@in=@local, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6}, 0x0, @in6=@remote}}, &(0x7f0000001700)=0xe8)
accept(r0, &(0x7f0000001740)=@hci={0x0, <r10=>0x0}, &(0x7f00000017c0)=0x80)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000001900)={'team0\x00', <r11=>0x0})
getpeername$packet(r1, &(0x7f00000019c0)={0x0, 0x0, <r12=>0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000001a00)=0x14)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001c40)={{{@in=@loopback, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0}}, {{@in6=@mcast2}, 0x0, @in6=@mcast1}}, &(0x7f0000001d40)=0xe8)
recvmsg$kcm(r0, &(0x7f0000002540)={&(0x7f0000001e40)=@hci={0x0, <r14=>0x0}, 0x80, &(0x7f0000002380)=[{&(0x7f0000001ec0)=""/34, 0x22}, {&(0x7f0000001f00)=""/41, 0x29}, {&(0x7f0000001f40)=""/32, 0x20}, {&(0x7f0000001f80)=""/57, 0x39}, {&(0x7f0000001fc0)=""/180, 0xb4}, {&(0x7f0000002080)=""/8, 0x8}, {&(0x7f00000020c0)=""/162, 0xa2}, {&(0x7f0000002180)}, {&(0x7f00000021c0)=""/212, 0xd4}, {&(0x7f00000022c0)=""/162, 0xa2}], 0xa, &(0x7f0000002440)=""/226, 0xe2, 0x7f}, 0x40010100)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000002980)={{{@in=@multicast1, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r15=>0x0}}, {{@in=@rand_addr}, 0x0, @in=@broadcast}}, &(0x7f0000002a80)=0xe8)
getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000002e00)={{{@in=@rand_addr, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r16=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@loopback}}, &(0x7f0000002f00)=0xe8)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000002f40)={'team0\x00', <r17=>0x0})
getsockopt$inet6_mreq(r2, 0x29, 0x1f, &(0x7f0000003040)={@local, <r18=>0x0}, &(0x7f0000003080)=0x14)
getpeername$packet(r1, &(0x7f00000030c0)={0x0, 0x0, <r19=>0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000003100)=0x14)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000003140)={'team0\x00', <r20=>0x0})
ioctl$EVIOCGPHYS(r1, 0x80404507, &(0x7f0000000400)=""/124)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000003840)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000003800)={&(0x7f0000003180)={0x678, r4, 0x200, 0x70bd2b, 0x25dfdbfb, {0x1}, [{{0x8, 0x1, r5}, {0x210, 0x2, [{0x64, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x34, 0x4, [{0x7fff, 0x8, 0x15db, 0x7}, {0x4, 0x5, 0x9, 0x9}, {0xff, 0x8, 0xffffffffffff413d, 0x3}, {0x9, 0x4b8, 0x100000001}, {0x0, 0xffff, 0x4, 0x8000}, {0x1000, 0x5ccf, 0x5}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x4}}, {0x8, 0x7}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xc000000000000000}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x4}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x4}}, {0x8, 0x7}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r6}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r7}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0xc, 0x4, 'hash\x00'}}}]}}, {{0x8, 0x1, r8}, {0x8c, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r9}}}, {0x4c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x1c, 0x4, [{0x4, 0x6, 0x6, 0x71c6}, {0x80000001, 0x4, 0x6, 0x7fffffff}, {0xfffffffffffffffd, 0xffffffff, 0x0, 0x6}]}}}]}}, {{0x8, 0x1, r10}, {0x1a0, 0x2, [{0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xfffffffffffffff8}}, {0x8, 0x6, r11}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0xc, 0x4, 'hash\x00'}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xe61c}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x3}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r12}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x9}}}]}}, {{0x8, 0x1, r13}, {0x7c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r14}}, {0x8, 0x7}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xcb37}}}]}}, {{0x8, 0x1, r15}, {0x40, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r16}}}]}}, {{0x8, 0x1, r17}, {0x3c, 0x2, [{0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r18}}}]}}, {{0x8, 0x1, r19}, {0xf8, 0x2, [{0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0xc, 0x4, 'hash\x00'}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x1}}}, {0x44, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0x14, 0x4, 'activebackup\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r20}}}]}}]}, 0x678}, 0x1, 0x0, 0x0, 0x801}, 0x4880)
r21 = userfaultfd(0x800)
ioctl$UFFDIO_API(r21, 0xc018aa3f, &(0x7f0000bc8000)={0xaa})
ioctl$UFFDIO_REGISTER(r21, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
write$sndseq(r3, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x1c)
tee(r2, r1, 0x1, 0x0)
dup2(r2, r21)

2018/05/02 02:14:35 executing program 2:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000384ff7)='/dev/ppp\x00', 0x101005, 0x0)
ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000100)=""/246)
pwritev(r0, &(0x7f0000000000), 0x0, 0x0)

2018/05/02 02:14:35 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100080ffffff0000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:35 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x4000, 0x1000, &(0x7f0000009000/0x1000)=nil})

[  584.963966] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  584.975879] syz-executor4 cpuset=syz4 mems_allowed=0
[  584.981071] CPU: 1 PID: 30070 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  584.988348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  584.997703] Call Trace:
[  585.000307]  dump_stack+0x1b9/0x294
[  585.003951]  ? dump_stack_print_info.cold.2+0x52/0x52
[  585.009153]  ? graph_lock+0x170/0x170
2018/05/02 02:14:36 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000046040000d0"], 0x1)

[  585.012970]  warn_alloc.cold.118+0xb2/0x1b8
[  585.017304]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  585.022168]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  585.028248]  ? update_load_avg+0x2d9/0x2570
[  585.032597]  ? graph_lock+0x170/0x170
[  585.036413]  __vmalloc_node_range+0x45e/0x750
[  585.040922]  ? graph_lock+0x170/0x170
[  585.044733]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  585.049592]  __vmalloc_node_flags_caller+0x75/0x90
[  585.054530]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  585.059385]  kvmalloc_node+0xde/0x100
2018/05/02 02:14:36 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000003a040000d0"], 0x1)

2018/05/02 02:14:36 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000009040000d0"], 0x1)

[  585.063192]  kvm_arch_create_memslot+0xa3/0x4e0
[  585.067884]  __kvm_set_memory_region+0x1d1b/0x2e50
[  585.072840]  ? kvm_vcpu_block+0x1050/0x1050
[  585.077167]  ? print_usage_bug+0xc0/0xc0
[  585.081240]  ? lock_downgrade+0x8e0/0x8e0
[  585.085389]  ? lock_downgrade+0x8e0/0x8e0
[  585.089544]  ? graph_lock+0x170/0x170
[  585.093354]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  585.097951]  ? __lock_acquire+0x7f5/0x5140
[  585.102193]  ? trace_hardirqs_on+0xd/0x10
[  585.106352]  ? find_held_lock+0x36/0x1c0
[  585.110429]  ? lock_downgrade+0x8e0/0x8e0
2018/05/02 02:14:36 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000077040000d0"], 0x1)

2018/05/02 02:14:36 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000078040000d0"], 0x1)

[  585.114610]  kvm_set_memory_region+0x2e/0x50
[  585.119026]  kvm_vm_ioctl+0x668/0x1d90
[  585.122927]  ? pick_next_task_fair+0x973/0x1660
[  585.127610]  ? kvm_set_memory_region+0x50/0x50
[  585.132209]  ? find_held_lock+0x36/0x1c0
[  585.136292]  ? lock_downgrade+0x8e0/0x8e0
[  585.140446]  ? finish_task_switch+0x182/0x810
[  585.144950]  ? kasan_check_read+0x11/0x20
[  585.149101]  ? graph_lock+0x170/0x170
[  585.152910]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  585.157498]  ? compat_start_thread+0x80/0x80
2018/05/02 02:14:36 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000000c040000d0"], 0x1)

2018/05/02 02:14:36 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000001f040000d0"], 0x1)

[  585.161916]  ? _raw_spin_unlock_irq+0x27/0x70
[  585.166418]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  585.171439]  ? trace_hardirqs_on+0xd/0x10
[  585.175593]  ? _raw_spin_unlock_irq+0x27/0x70
[  585.180094]  ? find_held_lock+0x36/0x1c0
[  585.184172]  ? lock_downgrade+0x8e0/0x8e0
[  585.188333]  ? kasan_check_read+0x11/0x20
[  585.192486]  ? rcu_is_watching+0x85/0x140
[  585.196645]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  585.201847]  ? __fget+0x40c/0x650
[  585.205307]  ? expand_files.part.8+0x9a0/0x9a0
[  585.209891]  ? lock_downgrade+0x8e0/0x8e0
2018/05/02 02:14:36 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000048040000d0"], 0x1)

[  585.214052]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  585.219596]  ? vma_set_page_prot+0x239/0x300
[  585.224023]  ? kvm_set_memory_region+0x50/0x50
[  585.228611]  do_vfs_ioctl+0x1cf/0x16a0
[  585.232508]  ? ioctl_preallocate+0x2e0/0x2e0
[  585.236926]  ? fget_raw+0x20/0x20
[  585.240397]  ? exit_to_usermode_loop+0x87/0x310
[  585.245076]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  585.250623]  ? security_file_ioctl+0x94/0xc0
[  585.255043]  ksys_ioctl+0xa9/0xd0
[  585.258505]  __x64_sys_ioctl+0x73/0xb0
[  585.262403]  do_syscall_64+0x1b1/0x800
[  585.266295]  ? finish_task_switch+0x1ca/0x810
[  585.270794]  ? syscall_return_slowpath+0x5c0/0x5c0
[  585.275727]  ? syscall_return_slowpath+0x30f/0x5c0
[  585.280664]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  585.286051]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  585.290910]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  585.296101] RIP: 0033:0x455979
[  585.299292] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  585.307006] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  585.314280] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  585.321553] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  585.328828] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  585.336100] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  585.343604] warn_alloc_show_mem: 1 callbacks suppressed
[  585.343611] Mem-Info:
[  585.351503] active_anon:76533 inactive_anon:80 isolated_anon:0
[  585.351503]  active_file:3745 inactive_file:12305 isolated_file:0
[  585.351503]  unevictable:0 dirty:62 writeback:0 unstable:0
[  585.351503]  slab_reclaimable:10703 slab_unreclaimable:106647
[  585.351503]  mapped:73887 shmem:88 pagetables:1046 bounce:0
[  585.351503]  free:1322737 free_pcp:358 free_cma:0
[  585.385100] Node 0 active_anon:306132kB inactive_anon:320kB active_file:14980kB inactive_file:49220kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295448kB dirty:248kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 133120kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  585.413266] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  585.439429] lowmem_reserve[]: 0 2830 6335 6335
[  585.444083] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:84kB free_cma:0kB
[  585.471737] lowmem_reserve[]: 0 0 3505 3505
[  585.476110] Node 0 Normal free:2374372kB min:37300kB low:46624kB high:55948kB active_anon:306132kB inactive_anon:320kB active_file:14980kB inactive_file:49220kB unevictable:0kB writepending:248kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5600kB pagetables:4184kB bounce:0kB free_pcp:924kB local_pcp:184kB free_cma:0kB
[  585.505913] lowmem_reserve[]: 0 0 0 0
[  585.509778] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  585.523453] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  585.539322] Node 0 Normal: 1909*4kB (UME) 2891*8kB (UME) 3445*16kB (UME) 3053*32kB (UME) 1473*64kB (UME) 235*128kB (UM) 194*256kB (UM) 103*512kB (UME) 70*1024kB (UME) 48*2048kB (UM) 438*4096kB (UM) = 2374364kB
[  585.558236] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  585.566829] 16137 total pagecache pages
[  585.570844] 0 pages in swap cache
[  585.574312] Swap cache stats: add 0, delete 0, find 0/0
[  585.579689] Free swap  = 0kB
[  585.582717] Total swap = 0kB
[  585.585759] 1965969 pages RAM
[  585.588884] 0 pages HighMem/MovableOnly
[  585.592883] 339347 pages reserved
[  585.621612] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  585.633472] syz-executor4 cpuset=syz4 mems_allowed=0
[  585.638682] CPU: 1 PID: 30070 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  585.645951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  585.655292] Call Trace:
[  585.657892]  dump_stack+0x1b9/0x294
[  585.661521]  ? dump_stack_print_info.cold.2+0x52/0x52
[  585.666701]  ? kasan_check_read+0x11/0x20
[  585.670838]  warn_alloc.cold.118+0xb2/0x1b8
[  585.675143]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  585.679966]  ? trace_hardirqs_on+0xd/0x10
[  585.684117]  ? _raw_spin_unlock_irq+0x27/0x70
[  585.688617]  ? finish_task_switch+0x1ca/0x810
[  585.693105]  ? lock_repin_lock+0x410/0x410
[  585.697338]  __vmalloc_node_range+0x45e/0x750
[  585.701837]  ? graph_lock+0x170/0x170
[  585.705626]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  585.710453]  __vmalloc_node_flags_caller+0x75/0x90
[  585.715368]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  585.720197]  kvmalloc_node+0xde/0x100
[  585.723981]  kvm_arch_create_memslot+0xa3/0x4e0
[  585.728653]  __kvm_set_memory_region+0x1d1b/0x2e50
[  585.733573]  ? kvm_vcpu_block+0x1050/0x1050
[  585.737876]  ? print_usage_bug+0xc0/0xc0
[  585.741918]  ? check_same_owner+0x320/0x320
[  585.746229]  ? do_raw_spin_unlock+0x9e/0x2e0
[  585.750636]  ? rcu_note_context_switch+0x710/0x710
[  585.755548]  ? lock_acquire+0x1dc/0x520
[  585.759512]  ? graph_lock+0x170/0x170
[  585.763295]  ? __might_sleep+0x95/0x190
[  585.767266]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  585.772804]  ? futex_wait_queue_me+0x550/0x820
[  585.777403]  ? __lock_acquire+0x7f5/0x5140
[  585.781636]  ? refill_pi_state_cache.part.7+0x300/0x300
[  585.786994]  ? find_held_lock+0x36/0x1c0
[  585.791064]  ? lock_downgrade+0x8e0/0x8e0
[  585.795211]  kvm_set_memory_region+0x2e/0x50
[  585.799617]  kvm_vm_ioctl+0x668/0x1d90
[  585.803506]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  585.808598]  ? futex_wake+0x2f6/0x750
[  585.812397]  ? pick_next_task_fair+0x973/0x1660
[  585.817050]  ? kvm_set_memory_region+0x50/0x50
[  585.821643]  ? kfree+0x111/0x260
[  585.825011]  ? get_futex_key+0x1e90/0x1e90
[  585.829246]  ? __lock_acquire+0x7f5/0x5140
[  585.833474]  ? find_held_lock+0x36/0x1c0
[  585.837552]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  585.842743]  ? do_futex+0x249/0x27d0
[  585.846467]  ? kasan_check_read+0x11/0x20
[  585.850622]  ? graph_lock+0x170/0x170
[  585.854424]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  585.859013]  ? compat_start_thread+0x80/0x80
[  585.863431]  ? _raw_spin_unlock_irq+0x27/0x70
[  585.867947]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  585.872962]  ? exit_robust_list+0x290/0x290
[  585.877273]  ? find_held_lock+0x36/0x1c0
[  585.881339]  ? lock_downgrade+0x8e0/0x8e0
[  585.885502]  ? kasan_check_read+0x11/0x20
[  585.889648]  ? rcu_is_watching+0x85/0x140
[  585.893796]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  585.898997]  ? __fget+0x40c/0x650
[  585.902463]  ? expand_files.part.8+0x9a0/0x9a0
[  585.907052]  ? lock_downgrade+0x8e0/0x8e0
[  585.911209]  ? lock_release+0xa10/0xa10
[  585.915181]  ? check_same_owner+0x320/0x320
[  585.919493]  ? kvm_set_memory_region+0x50/0x50
[  585.924058]  do_vfs_ioctl+0x1cf/0x16a0
[  585.927937]  ? ioctl_preallocate+0x2e0/0x2e0
[  585.932324]  ? fget_raw+0x20/0x20
[  585.935759]  ? security_file_mprotect+0x94/0xc0
[  585.940416]  ? __x64_sys_futex+0x477/0x680
[  585.944631]  ? do_futex+0x27d0/0x27d0
[  585.948413]  ? security_file_ioctl+0x94/0xc0
[  585.952803]  ksys_ioctl+0xa9/0xd0
[  585.956237]  __x64_sys_ioctl+0x73/0xb0
[  585.960106]  do_syscall_64+0x1b1/0x800
[  585.963974]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  585.968795]  ? syscall_return_slowpath+0x5c0/0x5c0
[  585.973704]  ? syscall_return_slowpath+0x30f/0x5c0
[  585.978615]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  585.983976]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  585.988802]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  585.993972] RIP: 0033:0x455979
[  585.997139] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  586.004828] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  586.012081] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
2018/05/02 02:14:37 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000082040000d0"], 0x1)

2018/05/02 02:14:37 executing program 7:
io_setup(0x80, &(0x7f0000000000)=<r0=>0x0)
r1 = accept4$netrom(0xffffffffffffff9c, &(0x7f0000000140)=@full, &(0x7f00000001c0)=0x48, 0x80800)
getresuid(&(0x7f0000001840), &(0x7f0000001880), &(0x7f00000018c0)=<r2=>0x0)
fstat(r1, &(0x7f0000001900)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
syz_fuseblk_mount(&(0x7f0000000380)='./file0\x00', &(0x7f0000001800)='./file0\x00', 0xe000, r2, r3, 0x1ff, 0xc000000000000, 0x1000000)
fadvise64(r1, 0x0, 0x1f, 0x7)
r4 = memfd_create(&(0x7f00000000c0)="769cfb85ba903a48d4161b3000", 0x0)
mmap(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x3, 0x2012, r4, 0x0)
fallocate(r4, 0x0, 0x0, 0x87dc)
prctl$setname(0xf, &(0x7f0000001fff)='\x00')
clone(0x0, &(0x7f0000000100), &(0x7f0000000080), &(0x7f0000000200), &(0x7f0000000240))
r5 = syz_fuseblk_mount(&(0x7f0000631000)='./file0\x00', &(0x7f0000947ff8)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$inet_icmp(0x2, 0x2, 0x1, &(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
setsockopt$IP_VS_SO_SET_TIMEOUT(r7, 0x0, 0x48a, &(0x7f0000000080)={0x1, 0x7ff, 0x3}, 0xc)
fstatfs(r7, &(0x7f0000000800)=""/4096)
r8 = syz_open_dev$sndpcmp(&(0x7f0000000400)='/dev/snd/pcmC#D#p\x00', 0x5, 0x400000)
io_submit(r0, 0x4, &(0x7f00000007c0)=[&(0x7f0000000440)={0x0, 0x0, 0x0, 0x7, 0x5, r5, &(0x7f00000003c0)="2bb76d7121dd3a1af5f60f0f7d45cf1cf2", 0x11, 0x5, 0x0, 0x0, r8}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x3, 0x7fffffff, r5, &(0x7f0000000480)="3989076918b0f22b35ba115d7f2cc7126e760a746c82827dd4d60cce0a2f2f94746049a273150732f610381fdb8eafb97fe68cd1bf45f9083870542ec3c8615cf6f25cb4950b60fd51f953701fb15da1df9030cfdf675d45b35d0f3c793b3a68acd5becb8dc106f330ee9ef1c2df305e25fe46", 0x73, 0x5, 0x0, 0x1, r8}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0xe, 0x4, r6, &(0x7f0000000540)="1916861886608f3739a3df487716bc84ff543bf33ab265c3477e75bbfd9268b8510d32ec5b622231839f58e0ca36645a0eaef23a40965ef86e6ef3327218329df340b38fd6ef30ab4ec42ffcfad3d2c885fc5a083a3d9fdab0652b424e6259498e0fa0c44dae0ef547a292cb03e1cb739e2870b276fd5732e427b83b175a31547eaa605ade58318b17ee2498edc09f89d4521d26d03b3a7b10c2b4dc9f98b89fbdde5acdf0a03c3ac57078e3b7fecd3b25e4dd4d5928bbc1575c5c04900547583d9c", 0xc2, 0x9, 0x0, 0x1, r8}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0xf, 0x8000, r8, &(0x7f0000000680)="c1db2de4aea1562cadef64da8b100ecad87dd6f3843b4a6200cf7b20d69f6ec2c306771cb172322875dd1dc69fccf0763c8042b4a5428cd2f74733925ae3a7ce7b7aaf1955a335fa151deb6909ec56257a969a88e8fc384f2ae246d61f0be821b657df826b567792072e70cd27667d9cc11bbbdec24bca12265b41d1ffd01d31f221c40b2b133d563b2e9727009f5fdf94d554ce12a6a8431494177d84cadfde2497da924dda1dc74a949f017070f147645746089c04b415dda886ba49010028fc370a070713ace6b5f5eec56e9182846473f8ad3a6c73bd985391027bed0ac70b27462e", 0xe4, 0x0, 0x0, 0x0, r8}])
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r8, 0x84, 0x6, &(0x7f0000000200)={<r9=>0x0, @in={{0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}}}, &(0x7f0000000040)=0x84)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r8, 0x84, 0x6, &(0x7f00000002c0)={r9, @in={{0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}}}, &(0x7f0000000100)=0x84)

2018/05/02 02:14:37 executing program 5:
r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x1, 0x0)
ioctl$int_in(r0, 0x80000000005008, &(0x7f0000003ff8))
ioctl$sock_ifreq(r0, 0x8916, &(0x7f0000000040)={'tunl0\x00', @ifru_flags=0x2000})

2018/05/02 02:14:37 executing program 2:
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @empty, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x6c, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}, @dev={0xac, 0x14, 0x14}}, @icmp=@parameter_prob={0x5, 0x4, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local={0xac, 0x14, 0x14, 0xaa}, @dev={0xac, 0x14, 0x14}}}}}}}, &(0x7f0000000200)={0x0, 0x0, [0x0, 0x3]})

2018/05/02 02:14:37 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000000000100000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:37 executing program 3:
socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r1 = accept4$netrom(0xffffffffffffff9c, &(0x7f0000000200)=@full, &(0x7f0000000180)=0x48, 0x80800)
setsockopt$netrom_NETROM_N2(r1, 0x103, 0x3, &(0x7f0000000280)=0x10000, 0x4)
r2 = memfd_create(&(0x7f0000000100)='/dev/snd/timer\x00', 0x1)
ioctl$KVM_S390_VCPU_FAULT(r2, 0x4008ae52, &(0x7f0000000140)=0x2)
r3 = userfaultfd(0x0)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x4000)=nil, 0x4000}, 0x2})
r5 = syz_open_dev$sndtimer(&(0x7f00000001c0)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0x40045402, &(0x7f0000013000))
readv(r5, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r4, r0, 0xfffffbfffffffffa)

2018/05/02 02:14:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x2, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:37 executing program 1:
r0 = inotify_init1(0x0)
r1 = dup3(r0, r0, 0x80000)
ioctl$TCGETA(r1, 0x5405, &(0x7f0000000000))
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f000045fff8)={0x0, <r2=>0x0})
setpgid(r2, 0x0)
ioprio_set$pid(0x2, r2, 0xcc)

[  586.019332] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  586.026587] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  586.033837] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
2018/05/02 02:14:37 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000028040000d0"], 0x1)

[  586.103602] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  586.115456] syz-executor4 cpuset=syz4 mems_allowed=0
[  586.120652] CPU: 1 PID: 30125 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  586.127926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  586.137281] Call Trace:
[  586.139883]  dump_stack+0x1b9/0x294
[  586.143527]  ? dump_stack_print_info.cold.2+0x52/0x52
[  586.148727]  ? graph_lock+0x170/0x170
2018/05/02 02:14:37 executing program 5:
r0 = syz_open_dev$evdev(&(0x7f0000237fee)='/dev/input/event#\x00', 0x2, 0x28001)
clock_gettime(0x0, &(0x7f0000000000))
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/qat_adf_ctl\x00', 0x620101, 0x0)
setsockopt$netrom_NETROM_IDLE(r1, 0x103, 0x7, &(0x7f00000002c0)=0x427b, 0x4)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x0, 0x0)
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000000180)={[{0x10001, 0x46, 0x7, 0x38c4, 0x5754, 0x7, 0x6, 0x40, 0xe265, 0x4, 0x3, 0x9, 0x6}, {0x0, 0x3eb, 0x6, 0xfaf8, 0x3f, 0x3, 0x1f, 0x8, 0x0, 0x996, 0xffffffffffffffcc, 0x9, 0x3}, {0x9, 0x79, 0xc6, 0x6, 0x8, 0xdc1, 0xfffffffffffffc3b, 0x897, 0x1, 0x4, 0xb5e, 0x40, 0x4}], 0x80000000})
ioctl$PPPIOCGMRU(r2, 0x80047453, &(0x7f0000000200))
clock_gettime(0x0, &(0x7f0000000040)={<r3=>0x0, <r4=>0x0})
clock_gettime(0x1, &(0x7f0000000080))
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000240)='/dev/rfkill\x00', 0x20500, 0x0)
pselect6(0x40, &(0x7f0000000300)={0xfffffffffffff800, 0x1, 0x100000001, 0xff, 0x974, 0xe1, 0x0, 0x5}, &(0x7f0000000340)={0x0, 0x7fff, 0x0, 0x80000000, 0x100000001, 0x3, 0x8, 0x3}, &(0x7f0000000380)={0x1, 0x2, 0xcac, 0xbcc3, 0xc168, 0x7, 0x100000001, 0x3538}, &(0x7f00000003c0), &(0x7f0000000440)={&(0x7f0000000400)={0x3}, 0x8})
write$evdev(r0, &(0x7f00000000c0)=[{{r3, r4/1000+10000}, 0x3, 0x1}, {{0x77359400}, 0x10001, 0x40, 0x20000000005}, {}], 0xff19)

[  586.152546]  warn_alloc.cold.118+0xb2/0x1b8
[  586.156881]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  586.161740]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  586.167810]  ? update_load_avg+0x2d9/0x2570
[  586.172142]  ? graph_lock+0x170/0x170
[  586.175959]  __vmalloc_node_range+0x45e/0x750
[  586.180465]  ? graph_lock+0x170/0x170
[  586.184271]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  586.189124]  __vmalloc_node_flags_caller+0x75/0x90
[  586.194063]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  586.198924]  kvmalloc_node+0xde/0x100
2018/05/02 02:14:37 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000071040000d0"], 0x1)

2018/05/02 02:14:37 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000b2040000d0"], 0x1)

[  586.198943]  kvm_arch_create_memslot+0xa3/0x4e0
[  586.198971]  __kvm_set_memory_region+0x1d1b/0x2e50
[  586.198997]  ? kvm_vcpu_block+0x1050/0x1050
[  586.199011]  ? print_usage_bug+0xc0/0xc0
[  586.199029]  ? lock_downgrade+0x8e0/0x8e0
[  586.199042]  ? lock_downgrade+0x8e0/0x8e0
[  586.199062]  ? graph_lock+0x170/0x170
[  586.199074]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  586.199091]  ? __lock_acquire+0x7f5/0x5140
[  586.241652]  ? trace_hardirqs_on+0xd/0x10
[  586.245804]  ? find_held_lock+0x36/0x1c0
[  586.249880]  ? lock_downgrade+0x8e0/0x8e0
2018/05/02 02:14:37 executing program 2:
poll(&(0x7f00000000c0)=[{}], 0x22c5, 0x0)
socket$key(0xf, 0x3, 0x2)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
ptrace$setregset(0x4205, 0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)="e0148c799d", 0x5})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000de9000)=[@textreal={0x8, &(0x7f0000000200)="0f189e640066b9800000c00f326635000400000f3066b9050a000066b80b00000066ba000000000f30670fc76ca4f866b9c002000066b8ba90000066ba000000000f303e0f0f422f8a660fd3d5360f306566660f2f58080f20d86635080000000f22d8", 0x63}], 0x1, 0x0, &(0x7f0000000140), 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0)
ioctl$KVM_GET_XCRS(r4, 0x8188aea6, &(0x7f0000000100)={0x2, 0x8, [{0x0, 0x0, 0x4}, {0x100, 0x0, 0x5}]})
syz_open_dev$mouse(&(0x7f0000000440)='/dev/input/mouse#\x00', 0x4, 0xfffe)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r3, 0x54a3)
ioctl$ASHMEM_PURGE_ALL_CACHES(r5, 0x770a, 0x0)
r6 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/net/pfkey\x00', 0x4b8200, 0x0)
getsockopt$inet_sctp_SCTP_RTOINFO(r6, 0x84, 0x0, &(0x7f0000000280)={<r7=>0x0, 0x0, 0x0, 0xfffffffffffffffe}, &(0x7f0000000300)=0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000340)={0x8000, 0x8, 0x0, 0x100000000000, 0x6, 0x1b02, 0x7, 0xffffffff, r7}, 0x20)
ioctl$SG_GET_SCSI_ID(r2, 0x2276, &(0x7f00000001c0))

2018/05/02 02:14:37 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000000000fffffffb00000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:37 executing program 5:
r0 = socket$inet6(0xa, 0x3, 0x10000000033)
r1 = socket$inet(0x2, 0x0, 0x886)
getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000000240)=""/103, &(0x7f0000000200)=0xfd0cd22b19f82754)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x200000000000002, &(0x7f0000000100)=0x79, 0x4)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$inet(0x2, 0x802, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000580)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000040], 0x0, &(0x7f0000000280), &(0x7f0000000040)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x11, 0x0, 0x0, 'dummy0\x00', 'vlan0\x00', 'ip6gre0\x00', 'vcan0\x00', @empty, [], @empty, [0xfffffffffffffffd, 0xff, 0x0, 0x0, 0x0, 0x10], 0x70, 0xa0, 0xe8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x9}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}, {{{0x1d, 0x0, 0xfffffffffffffffc, 'teql0\x00', 'vcan0\x00', 'vlan0\x00', 'ifb0\x00', @random="56190635f233", [0x0, 0x0, 0x0, 0x1], @random="d238742a69de", [], 0x70, 0x70, 0xb8}}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x3}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}]}, 0x2a8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000002c0)={<r3=>0x0, @in={{0x2, 0x0, @multicast1=0xe0000001}}, [0x9, 0x8001, 0x0, 0x5, 0x2, 0x1f, 0x3, 0x0, 0x3, 0x800, 0x5, 0x6, 0x0, 0x886, 0x1]}, &(0x7f0000000000)=0x100)
r4 = socket(0x2, 0x805, 0x0)
bind$inet(r4, &(0x7f0000ce6ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
sendto$inet(r4, &(0x7f0000218000)="fd", 0x1, 0x0, &(0x7f0000af3ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f00000003c0)={r3, 0x5}, &(0x7f0000000400)=0x8)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000880)=@broute={'broute\x00', 0x20, 0x1, 0x150, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000700], 0x0, &(0x7f00000006c0), &(0x7f0000001ac0)=ANY=[@ANYBLOB="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"]}, 0x200)
socket$pppoe(0x18, 0x1, 0x0)
readv(r4, &(0x7f0000000e00)=[{&(0x7f00000004c0)=""/121, 0x79}, {&(0x7f0000000540)=""/62, 0x3e}, {&(0x7f0000000900)=""/193, 0xc1}, {&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000a00)=""/133, 0x85}, {&(0x7f0000000ac0)=""/152, 0x98}, {&(0x7f0000000b80)=""/108, 0x6c}, {&(0x7f0000000c00)=""/105, 0x69}, {&(0x7f0000000c80)=""/205, 0xcd}, {&(0x7f0000000d80)=""/79, 0x4f}], 0xa)
setsockopt$RDS_CANCEL_SENT_TO(r4, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x41, &(0x7f0000000f00)={'raw\x00', 0x2, [{}, {}]}, 0x48)
write$binfmt_elf32(r1, &(0x7f0000000f80)={{0x7f, 0x45, 0x4c, 0x46, 0xd4, 0x4, 0xfff, 0xf096, 0x10000, 0x3, 0x3e, 0x10001, 0x158, 0x38, 0x135, 0xffffffffffffe641, 0x7f, 0x20, 0x2, 0x6, 0x3ff, 0x4}, [{0x6474e557, 0x1, 0x9, 0xdb1a, 0x7, 0x5, 0xa673, 0x1ea}], "e018fe5546fbed5ab09b83323472a368458ec6699e5262b8576b5819c055a502", [[], [], [], [], [], []]}, 0x678)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000440)={{0x62, @rand_addr=0x6, 0x4e20, 0x2, 'lc\x00', 0x20, 0x8, 0x2b}, {@empty, 0x4e21, 0x0, 0x9af9, 0xf29, 0x1}}, 0x44)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000080)='vegas\x00', 0xffffff82)
sendto$inet(r1, &(0x7f0000f53fff), 0xfffffffffffffc64, 0x20000802, &(0x7f000006d000)={0x2, 0x4e23}, 0x10)
shutdown(r1, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(0xffffffffffffffff, 0x119, 0x1, &(0x7f0000004040), 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001880)={<r5=>r1})
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r5, 0x84, 0x1a, &(0x7f00000018c0)=ANY=[@ANYRES32=<r6=>0x0, @ANYBLOB="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"], &(0x7f00000000c0)=0x2)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000300), &(0x7f0000000340)=0x4)
socket$vsock_dgram(0x28, 0x2, 0x0)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f00000002c0)={r6, 0x40}, 0x8)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x9}, 0x1c)
syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x1, 0x0)

[  586.254057]  kvm_set_memory_region+0x2e/0x50
[  586.258479]  kvm_vm_ioctl+0x668/0x1d90
[  586.262374]  ? pick_next_task_fair+0x973/0x1660
[  586.267051]  ? kvm_set_memory_region+0x50/0x50
[  586.271638]  ? find_held_lock+0x36/0x1c0
[  586.275727]  ? lock_downgrade+0x8e0/0x8e0
2018/05/02 02:14:37 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000059040000d0"], 0x1)

2018/05/02 02:14:37 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000d2d000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-des3_ede-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00005ebfe0)="0a0775b0d5e383e5b3b60ced5c54dbb7295df0df8217ad40", 0x18)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000f74fc8)={0x0, 0x0, &(0x7f0000f74000), 0x0, &(0x7f0000f78000)}, 0x0)
recvmsg(r1, &(0x7f0000b2dfc8)={&(0x7f00007ebffa)=@hci, 0x6, &(0x7f0000f75000)=[{&(0x7f0000f11000)=""/4096, 0x1000}], 0x1, &(0x7f0000ec7000)=""/107, 0x6b}, 0x0)

[  586.275743]  ? finish_task_switch+0x182/0x810
[  586.275762]  ? kasan_check_read+0x11/0x20
[  586.275776]  ? graph_lock+0x170/0x170
[  586.275791]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  586.275808]  ? compat_start_thread+0x80/0x80
[  586.275825]  ? _raw_spin_unlock_irq+0x27/0x70
[  586.275840]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  586.275854]  ? trace_hardirqs_on+0xd/0x10
[  586.275869]  ? _raw_spin_unlock_irq+0x27/0x70
[  586.275883]  ? find_held_lock+0x36/0x1c0
[  586.275906]  ? lock_downgrade+0x8e0/0x8e0
[  586.275922]  ? kasan_check_read+0x11/0x20
[  586.275937]  ? rcu_is_watching+0x85/0x140
[  586.275953]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  586.275975]  ? __fget+0x40c/0x650
[  586.275994]  ? expand_files.part.8+0x9a0/0x9a0
[  586.276004]  ? lock_downgrade+0x8e0/0x8e0
[  586.276026]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  586.276041]  ? vma_set_page_prot+0x239/0x300
[  586.276054]  ? kvm_set_memory_region+0x50/0x50
[  586.276069]  do_vfs_ioctl+0x1cf/0x16a0
[  586.276088]  ? ioctl_preallocate+0x2e0/0x2e0
[  586.276103]  ? fget_raw+0x20/0x20
[  586.276126]  ? exit_to_usermode_loop+0x87/0x310
[  586.276145]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  586.276159]  ? security_file_ioctl+0x94/0xc0
[  586.276175]  ksys_ioctl+0xa9/0xd0
[  586.276191]  __x64_sys_ioctl+0x73/0xb0
[  586.276207]  do_syscall_64+0x1b1/0x800
[  586.276221]  ? finish_task_switch+0x1ca/0x810
[  586.276236]  ? syscall_return_slowpath+0x5c0/0x5c0
[  586.276252]  ? syscall_return_slowpath+0x30f/0x5c0
[  586.276267]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  586.276283]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  586.276300]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  586.276312] RIP: 0033:0x455979
[  586.276323] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  586.276342] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  586.276353] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  586.276364] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  586.276374] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  586.276385] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  586.318631] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  586.318641] syz-executor4 cpuset=syz4 mems_allowed=0
[  586.318675] CPU: 0 PID: 30149 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  586.318683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  586.318688] Call Trace:
[  586.318709]  dump_stack+0x1b9/0x294
[  586.318730]  ? dump_stack_print_info.cold.2+0x52/0x52
[  586.318755]  warn_alloc.cold.118+0xb2/0x1b8
[  586.318773]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  586.318814]  __vmalloc_node_range+0x45e/0x750
[  586.318835]  ? graph_lock+0x170/0x170
[  586.318853]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  586.318868]  __vmalloc_node_flags_caller+0x75/0x90
[  586.318882]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  586.318902]  kvmalloc_node+0xde/0x100
[  586.318918]  kvm_arch_create_memslot+0xa3/0x4e0
[  586.318944]  __kvm_set_memory_region+0x1d1b/0x2e50
[  586.318979]  ? kvm_vcpu_block+0x1050/0x1050
[  586.319010]  ? graph_lock+0x170/0x170
[  586.319037]  ? find_held_lock+0x36/0x1c0
[  586.319060]  ? lock_downgrade+0x8e0/0x8e0
[  586.319099]  kvm_set_memory_region+0x2e/0x50
[  586.319115]  kvm_vm_ioctl+0x668/0x1d90
[  586.319129]  ? __lock_acquire+0x7f5/0x5140
[  586.319149]  ? kvm_set_memory_region+0x50/0x50
[  586.319171]  ? debug_check_no_locks_freed+0x310/0x310
[  586.319196]  ? print_usage_bug+0xc0/0xc0
[  586.319213]  ? graph_lock+0x170/0x170
[  586.319240]  ? find_held_lock+0x36/0x1c0
[  586.319264]  ? lock_downgrade+0x8e0/0x8e0
[  586.319284]  ? kasan_check_read+0x11/0x20
[  586.319297]  ? rcu_is_watching+0x85/0x140
[  586.319313]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  586.319335]  ? __fget+0x40c/0x650
[  586.319352]  ? do_raw_spin_unlock+0x1/0x2e0
[  586.319367]  ? expand_files.part.8+0x9a0/0x9a0
[  586.319382]  ? kasan_check_write+0x14/0x20
[  586.319395]  ? do_raw_spin_lock+0xc1/0x200
[  586.319412]  ? _raw_spin_unlock+0x22/0x30
[  586.319429]  ? kvm_set_memory_region+0x50/0x50
[  586.319443]  do_vfs_ioctl+0x1cf/0x16a0
[  586.319463]  ? ioctl_preallocate+0x2e0/0x2e0
[  586.319479]  ? fget_raw+0x20/0x20
[  586.319499]  ? lock_downgrade+0x8e0/0x8e0
[  586.319513]  ? finish_task_switch+0x182/0x810
[  586.319534]  ? security_file_ioctl+0x94/0xc0
[  586.319553]  ksys_ioctl+0xa9/0xd0
[  586.319570]  __x64_sys_ioctl+0x73/0xb0
[  586.319588]  do_syscall_64+0x1b1/0x800
[  586.319601]  ? finish_task_switch+0x1ca/0x810
[  586.319618]  ? syscall_return_slowpath+0x5c0/0x5c0
[  586.319634]  ? syscall_return_slowpath+0x30f/0x5c0
[  586.319652]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  586.319672]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  586.319691]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  586.319702] RIP: 0033:0x455979
[  586.319710] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  586.319725] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  586.319734] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  586.319742] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  586.319751] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  586.319759] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
[  586.392934] kernel msg: ebtables bug: please report to author: Wrong len argument
[  586.899523] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
[  586.927554] kernel msg: ebtables bug: please report to author: Wrong len argument
2018/05/02 02:14:38 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000002f040000d0"], 0x1)

[  586.940475] IPVS: set_ctl: invalid protocol: 98 0.0.0.6:20000 lc
2018/05/02 02:14:38 executing program 2:
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f00008d8000)=ANY=[@ANYBLOB="687696efec548430e198770b091d00000000000000000a004e2000000000ffe9cbca4cf842105a000000000000010000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000900000000c6e88ed6000000000000000000000000000000010000000a"], 0x1)
r0 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x4, 0x0)
ioctl$PIO_FONT(r0, 0x4b61, &(0x7f0000000040)="6437bb776f657b318029686e19f5b2180d19151ee8d14cc46051b28f16dfcaad8bd0db85ad9d2f797147eee42afabcecda19e83914fe042f2bf00b73c9825543ba3cb5e30fe5e6e17d054bcad15465e458b69eaed1bbe59b536b769cdb025fcc8e8448cbbc676108230131ed0f6ccbfa82ae966249709cd79734ef20ca9137ceeaaa99189c7772aabef3bc362239327ee39d4998da20ee336d86c20a699d73ea3f394e47e92b4f1e167a1aa372af5dec")
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00003cf000)={&(0x7f0000f4dff4)={0x10}, 0x37b, &(0x7f00005ad000)={&(0x7f00008d8000)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}, @in6=@dev={0xfe, 0x80}}}, [@migrate={0x10c, 0x11}]}, 0x15c}, 0x1}, 0x0)

2018/05/02 02:14:38 executing program 1:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x28, 0x2, &(0x7f0000002f18)={{{@in=@rand_addr, @in6=@mcast2}}, {{}, 0x0, @in=@rand_addr}}, &(0x7f0000000000)=0x2)
socketpair(0x2, 0x2, 0x61a, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$EVIOCGMASK(r1, 0x80104592, &(0x7f00000000c0)={0x17, 0x0, &(0x7f0000000080)})

2018/05/02 02:14:38 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000020000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:38 executing program 7:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x18, 0x400400)
ioctl(r0, 0xc1004110, &(0x7f0000000180)="ff3e02bd3fb5353d28d878a659")

2018/05/02 02:14:38 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$sock_int(r0, 0x1, 0x9, &(0x7f0000000140), &(0x7f0000693ffc)=0x294)
r1 = msgget$private(0x0, 0x2)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000180)={{{@in6=@ipv4={[], [], @multicast2}, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@multicast1}, 0x0, @in6=@ipv4={[], [], @loopback}}}, &(0x7f0000000100)=0xe8)
getresuid(&(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000300)=<r3=>0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in6, @in=@remote={0xac, 0x14, 0x14, 0xbb}, 0x4e24, 0x2, 0x4e21, 0x66d1, 0x2, 0x20, 0xa0, 0x0, r2, r3}, {0x4, 0x7, 0x80000001, 0x8, 0x80000001, 0x7ec, 0x7, 0x400}, {0x2, 0x40, 0x200, 0x7ff}, 0x8000, 0x6e6bbe, 0x0, 0x1, 0x1}, {{@in=@remote={0xac, 0x14, 0x14, 0xbb}, 0x4d2, 0x33}, 0x0, @in=@rand_addr=0x6, 0x34ff, 0x3, 0x2, 0x5, 0x1, 0xa7, 0x6}}, 0xe8)
msgctl$MSG_STAT(r1, 0xb, &(0x7f0000000000)=""/223)
flock(r0, 0x2)
setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f0000000440), 0x10)

2018/05/02 02:14:38 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
r3 = dup3(r1, r0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r3, 0xc04c5349, &(0x7f00000000c0)={0xf5, 0x4, 0x3})

2018/05/02 02:14:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0xcb40200, 0x1000, &(0x7f0000009000/0x1000)=nil})

[  587.018457] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  587.030270] syz-executor4 cpuset=syz4 mems_allowed=0
[  587.035462] CPU: 1 PID: 30183 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  587.042741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  587.052098] Call Trace:
[  587.054697]  dump_stack+0x1b9/0x294
[  587.058340]  ? dump_stack_print_info.cold.2+0x52/0x52
[  587.063546]  ? graph_lock+0x170/0x170
[  587.067365]  warn_alloc.cold.118+0xb2/0x1b8
[  587.071705]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  587.076566]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  587.082645]  ? update_load_avg+0x2d9/0x2570
[  587.086983]  ? graph_lock+0x170/0x170
[  587.090800]  __vmalloc_node_range+0x45e/0x750
[  587.095317]  ? graph_lock+0x170/0x170
[  587.099134]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  587.103986]  __vmalloc_node_flags_caller+0x75/0x90
[  587.108919]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  587.113773]  kvmalloc_node+0xde/0x100
[  587.117588]  kvm_arch_create_memslot+0xa3/0x4e0
[  587.122281]  __kvm_set_memory_region+0x1d1b/0x2e50
[  587.127236]  ? kvm_vcpu_block+0x1050/0x1050
[  587.131564]  ? print_usage_bug+0xc0/0xc0
[  587.135639]  ? lock_downgrade+0x8e0/0x8e0
[  587.139791]  ? lock_downgrade+0x8e0/0x8e0
[  587.143948]  ? graph_lock+0x170/0x170
[  587.147743]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  587.152323]  ? __lock_acquire+0x7f5/0x5140
[  587.156551]  ? trace_hardirqs_on+0xd/0x10
[  587.160691]  ? find_held_lock+0x36/0x1c0
[  587.164748]  ? lock_downgrade+0x8e0/0x8e0
[  587.168913]  kvm_set_memory_region+0x2e/0x50
[  587.173322]  kvm_vm_ioctl+0x668/0x1d90
[  587.177197]  ? pick_next_task_fair+0x973/0x1660
[  587.181856]  ? kvm_set_memory_region+0x50/0x50
[  587.186432]  ? find_held_lock+0x36/0x1c0
[  587.190488]  ? lock_downgrade+0x8e0/0x8e0
[  587.194622]  ? finish_task_switch+0x182/0x810
[  587.199110]  ? kasan_check_read+0x11/0x20
[  587.203244]  ? graph_lock+0x170/0x170
[  587.207037]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  587.211606]  ? compat_start_thread+0x80/0x80
[  587.216003]  ? _raw_spin_unlock_irq+0x27/0x70
[  587.220493]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  587.225494]  ? trace_hardirqs_on+0xd/0x10
[  587.229627]  ? _raw_spin_unlock_irq+0x27/0x70
[  587.234120]  ? find_held_lock+0x36/0x1c0
[  587.238175]  ? lock_downgrade+0x8e0/0x8e0
[  587.242314]  ? kasan_check_read+0x11/0x20
[  587.246454]  ? rcu_is_watching+0x85/0x140
[  587.250596]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  587.255783]  ? __fget+0x40c/0x650
[  587.259254]  ? expand_files.part.8+0x9a0/0x9a0
[  587.263820]  ? lock_downgrade+0x8e0/0x8e0
[  587.267962]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  587.273490]  ? vma_set_page_prot+0x239/0x300
[  587.277889]  ? kvm_set_memory_region+0x50/0x50
[  587.282465]  do_vfs_ioctl+0x1cf/0x16a0
[  587.286348]  ? ioctl_preallocate+0x2e0/0x2e0
[  587.290744]  ? fget_raw+0x20/0x20
[  587.294201]  ? exit_to_usermode_loop+0x87/0x310
[  587.298869]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  587.307780]  ? security_file_ioctl+0x94/0xc0
[  587.312198]  ksys_ioctl+0xa9/0xd0
[  587.315644]  __x64_sys_ioctl+0x73/0xb0
[  587.319531]  do_syscall_64+0x1b1/0x800
[  587.323412]  ? syscall_return_slowpath+0x5c0/0x5c0
[  587.328329]  ? syscall_return_slowpath+0x30f/0x5c0
[  587.333276]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  587.338642]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  587.343528]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  587.348706] RIP: 0033:0x455979
[  587.351885] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  587.359583] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
2018/05/02 02:14:38 executing program 5:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x800000000010)
r2 = getpgrp(0xffffffffffffffff)
ioctl$TIOCSPGRP(r0, 0x5410, &(0x7f0000000080)=r2)
ioctl$sock_inet_SIOCGIFADDR(r1, 0x8915, &(0x7f0000000040)={'teql0\x00', {0x2, 0x4e23, @loopback=0x7f000001}})
sendmsg$nl_generic(r1, &(0x7f0000005000)={&(0x7f0000004ff4)={0x10}, 0xc, &(0x7f0000e38ff0)={&(0x7f0000000000)={0x14, 0x22, 0x1000709, 0x0, 0x0, {0x3}}, 0x14}, 0x1}, 0x0)
fchdir(r1)

2018/05/02 02:14:38 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sysfs$2(0x2, 0x9, &(0x7f0000000000)=""/215)
sendmsg$nl_generic(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)={0x1c, 0x10000000000027, 0x331, 0x0, 0x0, {0x7}, [@typed={0x6, 0x1, @uid}]}, 0x1c}, 0x1}, 0x0)

2018/05/02 02:14:38 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_int(r0, 0x0, 0x15, &(0x7f00006adffc), 0x0)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x400080, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8924, &(0x7f0000000040)={'syz_tun\x00'})

2018/05/02 02:14:38 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000002a040000d0"], 0x1)

[  587.366842] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  587.374100] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  587.381357] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  587.389048] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  587.396491] warn_alloc_show_mem: 3 callbacks suppressed
[  587.396495] Mem-Info:
[  587.404371] active_anon:75505 inactive_anon:94 isolated_anon:0
[  587.404371]  active_file:3747 inactive_file:12329 isolated_file:0
[  587.404371]  unevictable:0 dirty:108 writeback:0 unstable:0
[  587.404371]  slab_reclaimable:10683 slab_unreclaimable:106633
[  587.404371]  mapped:73880 shmem:106 pagetables:1019 bounce:0
[  587.404371]  free:1323803 free_pcp:416 free_cma:0
[  587.438168] Node 0 active_anon:304232kB inactive_anon:376kB active_file:14988kB inactive_file:49316kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295520kB dirty:432kB writeback:0kB shmem:424kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 124928kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  587.466335] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  587.492542] lowmem_reserve[]: 0 2830 6335 6335
2018/05/02 02:14:38 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000022040000d0"], 0x1)

[  587.497192] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:84kB free_cma:0kB
[  587.524863] lowmem_reserve[]: 0 0 3505 3505
[  587.529272] Node 0 Normal free:2370576kB min:37300kB low:46624kB high:55948kB active_anon:306372kB inactive_anon:376kB active_file:14988kB inactive_file:49316kB unevictable:0kB writepending:432kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5792kB pagetables:4372kB bounce:0kB free_pcp:588kB local_pcp:364kB free_cma:0kB
[  587.559126] lowmem_reserve[]: 0 0 0 0
2018/05/02 02:14:38 executing program 2:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000480)='/dev/uinput\x00', 0x840, 0x0)
setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f0000000040)=0x7f, 0x4)
r1 = socket(0x40000000015, 0x5, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000300)={<r2=>0x0, @in={{0x2, 0x4e24, @local={0xac, 0x14, 0x14, 0xaa}}}, [0x9, 0x3, 0x4, 0x800000000000, 0x9, 0x2, 0x1000, 0x7fffffff, 0x0, 0x4, 0x7, 0x8, 0x20755ea6, 0x3]}, &(0x7f0000000400)=0x100)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000440)={r2, 0x2}, 0x8)
setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f0000000000)=0x1, 0x4)
ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, &(0x7f0000000180), 0x8)
clock_gettime(0x0, &(0x7f0000000200)={<r3=>0x0, <r4=>0x0})
pselect6(0x40, &(0x7f0000000080)={0x7, 0x1ff, 0x1, 0x3, 0x100000001, 0x6, 0x6a5, 0x10001}, &(0x7f00000000c0)={0x5, 0x2, 0x374, 0x6, 0x7, 0x20, 0x6, 0x278}, &(0x7f00000001c0)={0x3, 0x5, 0x4, 0x4, 0x8000, 0x7ff, 0x4dd}, &(0x7f0000000240)={r3, r4+10000000}, &(0x7f00000002c0)={&(0x7f0000000280)={0xfff}, 0x8})

[  587.563008] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  587.576771] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  587.592684] Node 0 Normal: 1773*4kB (UME) 3315*8kB (UME) 3526*16kB (UME) 3043*32kB (UME) 1469*64kB (UME) 203*128kB (UM) 193*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 48*2048kB (UM) 438*4096kB (UM) = 2374092kB
[  587.611652] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
2018/05/02 02:14:38 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000005f040000d0"], 0x1)

2018/05/02 02:14:38 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000003400000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:38 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000020000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  587.620292] 16178 total pagecache pages
[  587.624329] 0 pages in swap cache
[  587.627833] Swap cache stats: add 0, delete 0, find 0/0
[  587.633227] Free swap  = 0kB
[  587.636300] Total swap = 0kB
[  587.639359] 1965969 pages RAM
[  587.642496] 0 pages HighMem/MovableOnly
[  587.646522] 339347 pages reserved
[  587.698964] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  587.710810] syz-executor4 cpuset=syz4 mems_allowed=0
[  587.716014] CPU: 0 PID: 30222 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  587.723297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  587.732654] Call Trace:
[  587.735256]  dump_stack+0x1b9/0x294
[  587.738906]  ? dump_stack_print_info.cold.2+0x52/0x52
[  587.744116]  ? kasan_check_read+0x11/0x20
2018/05/02 02:14:38 executing program 2:
r0 = syz_open_dev$sndpcmc(&(0x7f0000004fee)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
ioctl(r0, 0x80044100, &(0x7f000000cff3))
ioctl$KVM_S390_VCPU_FAULT(r0, 0x4008ae52, &(0x7f0000000000)=0x80000001)

[  587.748293]  warn_alloc.cold.118+0xb2/0x1b8
[  587.752628]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  587.757493]  ? trace_hardirqs_on+0xd/0x10
[  587.761666]  ? _raw_spin_unlock_irq+0x27/0x70
[  587.766173]  ? finish_task_switch+0x1ca/0x810
[  587.770687]  ? lock_repin_lock+0x410/0x410
[  587.774941]  __vmalloc_node_range+0x45e/0x750
[  587.779446]  ? graph_lock+0x170/0x170
[  587.783265]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  587.788130]  __vmalloc_node_flags_caller+0x75/0x90
[  587.793071]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  587.797928]  kvmalloc_node+0xde/0x100
[  587.801741]  kvm_arch_create_memslot+0xa3/0x4e0
[  587.806431]  __kvm_set_memory_region+0x1d1b/0x2e50
[  587.811385]  ? kvm_vcpu_block+0x1050/0x1050
[  587.816413]  ? print_usage_bug+0xc0/0xc0
[  587.822041]  ? zap_class+0x720/0x720
[  587.825743]  ? check_same_owner+0x320/0x320
[  587.830058]  ? rcu_note_context_switch+0x710/0x710
[  587.834974]  ? lock_acquire+0x1dc/0x520
[  587.838934]  ? graph_lock+0x170/0x170
[  587.842719]  ? __might_sleep+0x95/0x190
[  587.846683]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  587.852204]  ? futex_wait_queue_me+0x550/0x820
[  587.856773]  ? __lock_acquire+0x7f5/0x5140
[  587.861007]  ? refill_pi_state_cache.part.7+0x300/0x300
[  587.866368]  ? find_held_lock+0x36/0x1c0
[  587.870424]  ? lock_downgrade+0x8e0/0x8e0
[  587.874592]  kvm_set_memory_region+0x2e/0x50
[  587.879009]  kvm_vm_ioctl+0x668/0x1d90
[  587.882892]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  587.888416]  ? __perf_event_task_sched_in+0x247/0xb80
[  587.893602]  ? kvm_set_memory_region+0x50/0x50
[  587.898176]  ? find_held_lock+0x36/0x1c0
[  587.902227]  ? perf_trace_lock+0xd6/0x900
[  587.906364]  ? zap_class+0x720/0x720
[  587.910151]  ? finish_task_switch+0x182/0x810
[  587.914634]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  587.919822]  ? do_futex+0x249/0x27d0
[  587.923530]  ? kasan_check_read+0x11/0x20
[  587.927664]  ? graph_lock+0x170/0x170
[  587.931462]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  587.936036]  ? compat_start_thread+0x80/0x80
[  587.940431]  ? _raw_spin_unlock_irq+0x27/0x70
[  587.944918]  ? exit_robust_list+0x290/0x290
[  587.949236]  ? find_held_lock+0x36/0x1c0
[  587.953292]  ? lock_downgrade+0x8e0/0x8e0
[  587.957430]  ? rcu_is_watching+0x85/0x140
[  587.961562]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  587.966746]  ? __fget+0x40c/0x650
[  587.970200]  ? do_raw_spin_unlock+0x1/0x2e0
[  587.974510]  ? expand_files.part.8+0x9a0/0x9a0
[  587.979089]  ? kasan_check_write+0x14/0x20
[  587.983311]  ? do_raw_spin_lock+0xc1/0x200
[  587.987541]  ? kvm_set_memory_region+0x50/0x50
[  587.992123]  do_vfs_ioctl+0x1cf/0x16a0
[  587.996002]  ? ioctl_preallocate+0x2e0/0x2e0
[  588.000405]  ? fget_raw+0x20/0x20
[  588.003852]  ? __x64_sys_futex+0x477/0x680
[  588.008074]  ? exit_to_usermode_loop+0x87/0x310
[  588.012736]  ? do_futex+0x27d0/0x27d0
[  588.016525]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  588.022049]  ? security_file_ioctl+0x94/0xc0
[  588.026446]  ksys_ioctl+0xa9/0xd0
[  588.029892]  __x64_sys_ioctl+0x73/0xb0
[  588.033766]  do_syscall_64+0x1b1/0x800
[  588.037648]  ? finish_task_switch+0x1ca/0x810
[  588.042129]  ? syscall_return_slowpath+0x5c0/0x5c0
[  588.047049]  ? syscall_return_slowpath+0x30f/0x5c0
[  588.051971]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  588.057326]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  588.062158]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  588.067333] RIP: 0033:0x455979
[  588.070505] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  588.078199] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  588.085454] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  588.092707] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  588.099970] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  588.107223] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:39 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000094040000d0"], 0x1)

2018/05/02 02:14:39 executing program 1:
r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x2, 0x2000000028801)
write$evdev(r0, &(0x7f0000000000)=[{{0x77359400}, 0x1, 0x63, 0x2}, {{0x77359400}}], 0x1cc)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000100)={0x4, 0x4b, &(0x7f0000000080)="173c682a8a26992cfeb9d75d69d7cdf7f017537de30eb0b5c3308621d5b0c481fe176a551e8de48d85a806f018030bd0ea62d9659fd28f477bebc709bca2b705c57f4e1f17af643e04206c"})
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140)='/dev/snapshot\x00', 0x400100, 0x0)
getsockname$inet6(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, @ipv4={[], [], @remote}}, &(0x7f00000001c0)=0x1c)

2018/05/02 02:14:39 executing program 2:
perf_event_open(&(0x7f0000b5a000)={0x4000000002, 0x70, 0x1e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000ca9ff5)='/dev/loop#\x00', 0x0, 0x82)
r1 = memfd_create(&(0x7f00000000c0)="74086e750000000000000000008c00", 0x0)
timer_create(0x1, &(0x7f0000000280)={0x0, 0x2d, 0x2, @thr={&(0x7f0000000100)="8a6d9deac92712957a678c53a970d78e022430ba93f1ba7106b3f9c6cafc34fc8cb6f36bbd65feaa290a66da7d4fe4ac7b8a424c462e881d2055c79aa9cdde21cee197e0b1e675031f4d7baf3ee9030aa52e7232ee9f6b58a07812bf2ee0106368d85d68590b27e2", &(0x7f0000000200)="80684852d34acebfc24ca4911421ef6ddc32"}}, &(0x7f00000002c0)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000300)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, &(0x7f0000000340))
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
pwritev(r1, &(0x7f0000f50f90)=[{&(0x7f0000000040)="aa", 0x1}], 0x1, 0x81006)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f00000004c0)={0x2, &(0x7f0000000380)=[{}, {}]})
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180)={<r3=>0x0}, &(0x7f00000001c0)=0x18)
ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000240)='/dev/loop-control\x00', 0x2, 0x0)
setsockopt$inet6_icmp_ICMP_FILTER(r1, 0x1, 0x1, &(0x7f0000000000)={0xb2}, 0x4)
ioctl$sock_bt_cmtp_CMTPCONNADD(r1, 0x400443c8, &(0x7f0000000540)={r1, 0x8})
sendfile(r0, r0, &(0x7f0000000080), 0x102000004)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000500)={r3, 0x2, 0x4, 0xffffffff, 0x0, 0x8}, 0x14)

2018/05/02 02:14:39 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f0000000100)=[{&(0x7f00000000c0)=""/7, 0x87}], 0x1)
dup3(r1, r0, 0x0)

2018/05/02 02:14:39 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmmsg$inet_sctp(r0, &(0x7f000093eee8)=[{&(0x7f00001f6000)=@in={0xa, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10, &(0x7f0000562000), 0x0, &(0x7f00000c3000)=[@sndinfo={0x20, 0x84, 0x2, {0x0, 0x203}}], 0x30}, {&(0x7f0000957ff0)=@in={0x2, 0x0, @multicast2=0xe0000002}, 0x10, &(0x7f000093e000), 0x0, &(0x7f000093ef10)=[@sndinfo={0x20, 0x84, 0x2}], 0x30}], 0x2, 0x0)

2018/05/02 02:14:39 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000000000ffffff8000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:39 executing program 7:
r0 = syz_open_dev$sndmidi(&(0x7f0000000040)='/dev/snd/midiC#D#\x00', 0x4, 0x80080)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@empty, 0xffffffff, 0x2, 0x1000ff, 0x4, 0x0, 0xfffffffffffffffc, 0x3}, &(0x7f00000000c0)=0x20)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20010000003}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = msgget$private(0x0, 0x0)
msgrcv(r1, &(0x7f0000000100)={0x0, ""/168}, 0xb0, 0x3, 0x1000)

2018/05/02 02:14:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x500, 0x1000, &(0x7f0000009000/0x1000)=nil})

[  588.267353] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  588.279152] syz-executor4 cpuset=syz4 mems_allowed=0
[  588.284333] CPU: 0 PID: 30252 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  588.291609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  588.300963] Call Trace:
[  588.303544]  dump_stack+0x1b9/0x294
[  588.307168]  ? dump_stack_print_info.cold.2+0x52/0x52
[  588.312350]  ? perf_trace_lock_acquire+0xe3/0x980
[  588.317186]  warn_alloc.cold.118+0xb2/0x1b8
[  588.321495]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  588.326331]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  588.332387]  ? __update_load_avg_se.isra.34+0x61e/0x980
[  588.337746]  __vmalloc_node_range+0x45e/0x750
[  588.342234]  ? graph_lock+0x170/0x170
[  588.346037]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  588.350879]  __vmalloc_node_flags_caller+0x75/0x90
[  588.355805]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  588.360638]  kvmalloc_node+0xde/0x100
[  588.364427]  kvm_arch_create_memslot+0xa3/0x4e0
[  588.369094]  __kvm_set_memory_region+0x1d1b/0x2e50
[  588.374031]  ? kvm_vcpu_block+0x1050/0x1050
[  588.378342]  ? print_usage_bug+0xc0/0xc0
[  588.382396]  ? perf_trace_lock+0x900/0x900
[  588.386622]  ? graph_lock+0x170/0x170
[  588.390411]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  588.394986]  ? __lock_acquire+0x7f5/0x5140
[  588.399213]  ? trace_hardirqs_on+0xd/0x10
[  588.403354]  ? find_held_lock+0x36/0x1c0
[  588.407411]  ? lock_downgrade+0x8e0/0x8e0
[  588.411587]  kvm_set_memory_region+0x2e/0x50
[  588.415985]  kvm_vm_ioctl+0x668/0x1d90
[  588.419866]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  588.425395]  ? __perf_event_task_sched_in+0x247/0xb80
[  588.430577]  ? kvm_set_memory_region+0x50/0x50
[  588.435151]  ? find_held_lock+0x36/0x1c0
[  588.439215]  ? perf_trace_lock_acquire+0xe3/0x980
[  588.444055]  ? perf_trace_lock+0x900/0x900
[  588.448279]  ? kasan_check_read+0x11/0x20
[  588.452414]  ? graph_lock+0x170/0x170
[  588.456201]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  588.460788]  ? compat_start_thread+0x80/0x80
[  588.465184]  ? _raw_spin_unlock_irq+0x27/0x70
[  588.469668]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  588.474673]  ? trace_hardirqs_on+0xd/0x10
[  588.478808]  ? _raw_spin_unlock_irq+0x27/0x70
[  588.483293]  ? find_held_lock+0x36/0x1c0
[  588.487348]  ? lock_downgrade+0x8e0/0x8e0
[  588.491488]  ? kasan_check_read+0x11/0x20
[  588.495622]  ? rcu_is_watching+0x85/0x140
[  588.499757]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  588.504945]  ? __fget+0x40c/0x650
[  588.508394]  ? expand_files.part.8+0x9a0/0x9a0
[  588.512964]  ? lock_downgrade+0x8e0/0x8e0
[  588.517105]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  588.522628]  ? vma_set_page_prot+0x239/0x300
[  588.527044]  ? kvm_set_memory_region+0x50/0x50
[  588.531616]  do_vfs_ioctl+0x1cf/0x16a0
[  588.535501]  ? ioctl_preallocate+0x2e0/0x2e0
[  588.539900]  ? fget_raw+0x20/0x20
[  588.543354]  ? exit_to_usermode_loop+0x87/0x310
[  588.548023]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  588.553552]  ? security_file_ioctl+0x94/0xc0
[  588.557952]  ksys_ioctl+0xa9/0xd0
[  588.561397]  __x64_sys_ioctl+0x73/0xb0
[  588.565274]  do_syscall_64+0x1b1/0x800
[  588.569150]  ? finish_task_switch+0x1ca/0x810
[  588.573637]  ? syscall_return_slowpath+0x5c0/0x5c0
[  588.578554]  ? syscall_return_slowpath+0x30f/0x5c0
[  588.583474]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  588.588829]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  588.593663]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  588.598839] RIP: 0033:0x455979
[  588.602016] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  588.609720] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  588.616984] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  588.624252] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  588.631515] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  588.638773] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  588.646204] warn_alloc_show_mem: 1 callbacks suppressed
[  588.646207] Mem-Info:
[  588.654079] active_anon:77611 inactive_anon:77 isolated_anon:0
[  588.654079]  active_file:3747 inactive_file:12335 isolated_file:0
[  588.654079]  unevictable:0 dirty:121 writeback:0 unstable:0
[  588.654079]  slab_reclaimable:10674 slab_unreclaimable:106478
[  588.654079]  mapped:73902 shmem:88 pagetables:1070 bounce:0
[  588.654079]  free:1321516 free_pcp:353 free_cma:0
[  588.687924] Node 0 active_anon:304116kB inactive_anon:308kB active_file:14988kB inactive_file:49340kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295508kB dirty:484kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 143360kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:14:39 executing program 5:
r0 = timerfd_create(0x0, 0x0)
r1 = dup(r0)
read(r1, &(0x7f0000000040)=""/172, 0xac)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0x40085400, &(0x7f0000000000)={0x0, 0x4007fffffff})
syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x40000, 0x2000)

2018/05/02 02:14:39 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000099040000d0"], 0x1)

[  588.716084] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  588.742271] lowmem_reserve[]: 0 2830 6335 6335
2018/05/02 02:14:39 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000088040000d0"], 0x1)

[  588.746942] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:648kB free_cma:0kB
[  588.774737] lowmem_reserve[]: 0 0 3505 3505
[  588.779152] Node 0 Normal free:2370260kB min:37300kB low:46624kB high:55948kB active_anon:310472kB inactive_anon:300kB active_file:14988kB inactive_file:49340kB unevictable:0kB writepending:468kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5760kB pagetables:4316kB bounce:0kB free_pcp:384kB local_pcp:120kB free_cma:0kB
[  588.808979] lowmem_reserve[]: 0 0 0 0
2018/05/02 02:14:39 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000b8040000d0"], 0x1)

[  588.812887] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  588.826620] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  588.842588] Node 0 Normal: 1835*4kB (UME) 2940*8kB (UME) 3652*16kB (UME) 3045*32kB (UME) 1468*64kB (UME) 206*128kB (UM) 193*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 47*2048kB (UM) 438*4096kB (UM) = 2371692kB
[  588.861540] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
2018/05/02 02:14:39 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000061040000d0"], 0x1)

2018/05/02 02:14:39 executing program 2:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0)
readv(r0, &(0x7f00000004c0)=[{&(0x7f00000003c0)=""/221, 0x3e80000000}], 0x1)
r1 = dup3(r0, r0, 0x80000)
listen$netrom(r1, 0x5)
inotify_init1(0x80800)
getegid()
accept4$inet(r1, 0x0, &(0x7f0000000040)=0xfffffffffffffffc, 0x80800)

2018/05/02 02:14:39 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x4)
write(r0, &(0x7f0000fa8000)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27)
r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x80, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f00000000c0)={0xf8a, 0x9})
getpeername$netlink(r0, &(0x7f0000000000), &(0x7f0000000040)=0xc)

[  588.870186] 16169 total pagecache pages
[  588.874198] 0 pages in swap cache
[  588.877696] Swap cache stats: add 0, delete 0, find 0/0
[  588.883083] Free swap  = 0kB
[  588.886132] Total swap = 0kB
[  588.889172] 1965969 pages RAM
[  588.892303] 0 pages HighMem/MovableOnly
[  588.896301] 339347 pages reserved
[  588.947887] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  588.959775] syz-executor4 cpuset=syz4 mems_allowed=0
[  588.965162] CPU: 1 PID: 30277 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  588.972444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  588.981805] Call Trace:
[  588.984416]  dump_stack+0x1b9/0x294
[  588.988083]  ? dump_stack_print_info.cold.2+0x52/0x52
[  588.993291]  ? perf_trace_lock_acquire+0xe3/0x980
[  588.998159]  warn_alloc.cold.118+0xb2/0x1b8
[  589.002504]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  589.007389]  __vmalloc_node_range+0x45e/0x750
[  589.011899]  ? graph_lock+0x170/0x170
[  589.015717]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  589.020578]  __vmalloc_node_flags_caller+0x75/0x90
[  589.025528]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  589.030388]  kvmalloc_node+0xde/0x100
[  589.034204]  kvm_arch_create_memslot+0xa3/0x4e0
[  589.038906]  __kvm_set_memory_region+0x1d1b/0x2e50
[  589.043863]  ? kvm_vcpu_block+0x1050/0x1050
[  589.048205]  ? perf_trace_lock+0x900/0x900
[  589.052458]  ? graph_lock+0x170/0x170
[  589.056290]  ? find_held_lock+0x36/0x1c0
[  589.060375]  ? lock_downgrade+0x8e0/0x8e0
[  589.064568]  kvm_set_memory_region+0x2e/0x50
[  589.068995]  kvm_vm_ioctl+0x668/0x1d90
[  589.072889]  ? __lock_acquire+0x7f5/0x5140
[  589.077145]  ? kvm_set_memory_region+0x50/0x50
[  589.081750]  ? debug_check_no_locks_freed+0x310/0x310
[  589.086954]  ? perf_trace_lock_acquire+0xe3/0x980
[  589.091817]  ? perf_trace_lock+0x900/0x900
[  589.096064]  ? graph_lock+0x170/0x170
[  589.099875]  ? perf_trace_lock_acquire+0xe3/0x980
[  589.104758]  ? find_held_lock+0x36/0x1c0
[  589.108855]  ? lock_downgrade+0x8e0/0x8e0
[  589.113025]  ? kasan_check_read+0x11/0x20
[  589.117182]  ? rcu_is_watching+0x85/0x140
[  589.121344]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  589.126561]  ? __fget+0x40c/0x650
[  589.130027]  ? do_raw_spin_unlock+0x1/0x2e0
[  589.134353]  ? expand_files.part.8+0x9a0/0x9a0
[  589.138943]  ? kasan_check_write+0x14/0x20
[  589.143166]  ? do_raw_spin_lock+0xc1/0x200
[  589.147391]  ? _raw_spin_unlock+0x22/0x30
[  589.151527]  ? kvm_set_memory_region+0x50/0x50
[  589.156097]  do_vfs_ioctl+0x1cf/0x16a0
[  589.159978]  ? ioctl_preallocate+0x2e0/0x2e0
[  589.164373]  ? fget_raw+0x20/0x20
[  589.167817]  ? lock_downgrade+0x8e0/0x8e0
[  589.171950]  ? finish_task_switch+0x182/0x810
[  589.176437]  ? security_file_ioctl+0x94/0xc0
[  589.180846]  ksys_ioctl+0xa9/0xd0
[  589.184288]  __x64_sys_ioctl+0x73/0xb0
[  589.188696]  do_syscall_64+0x1b1/0x800
[  589.192569]  ? finish_task_switch+0x1ca/0x810
[  589.197051]  ? syscall_return_slowpath+0x5c0/0x5c0
[  589.201969]  ? syscall_return_slowpath+0x30f/0x5c0
[  589.206885]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  589.212243]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  589.217077]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  589.222251] RIP: 0033:0x455979
[  589.225424] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  589.233117] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  589.240369] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  589.247622] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  589.254874] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  589.262137] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:40 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000a9040000d0"], 0x1)

2018/05/02 02:14:40 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000000000200000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:40 executing program 2:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x200000, 0x0)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000040)={0x6})
r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/ashmem\x00', 0x0, 0x0)
ioctl$ASHMEM_GET_PIN_STATUS(r1, 0x40087708, 0x930000)

2018/05/02 02:14:40 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r2 = epoll_create1(0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20, 0x4c, @remote={0xfe, 0x80, [], 0xbb}, 0x81}, 0x1c)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r2, r0, 0x0)

2018/05/02 02:14:40 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x1, 0x0)
ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000080))

2018/05/02 02:14:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x8000000000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:40 executing program 7:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='vcan0\x00', 0x10)
sendto$inet(r0, &(0x7f000026cfff)="c6", 0x1, 0x0, &(0x7f0000033ff0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10)
lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
getgroups(0x1, &(0x7f0000000180)=[<r2=>0x0])
syz_fuseblk_mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x1000, r1, r2, 0x5, 0x6, 0x814)
shutdown(r0, 0x1)
sendto$inet(r0, &(0x7f00000001c0)="11ac9ceda284eceac8ea656c86dfb405a512866f0b06f9e12af8a4828f56d425bb843e05f7370e748b895d763a24cd093fd294713bafbf9be558d30defd48b590751dc3fefd4a6b9b154c0500e311398ba775405fba078d314bd514b59f9bfbfc1e3f274c5df97df280a2a8170dcd5", 0x6f, 0x20048000, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000004c0)={0x0, @in={{0x2}}, 0x0, 0x0, 0xffffffffc5baa236, 0x0, 0x34}, 0x98)

2018/05/02 02:14:40 executing program 5:
syz_open_dev$loop(&(0x7f0000000140)='/dev/loop#\x00', 0x0, 0x0)
socket$bt_bnep(0x1f, 0x3, 0x4)
r0 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x0, 0x18f000)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000)='/dev/ptmx\x00', 0x1000002, 0x0)
ioctl$TCXONC(r1, 0x540a, 0x0)
write(r1, &(0x7f0000caf000)="9c", 0x1)
ioctl$TCXONC(r1, 0x540a, 0x0)
ioctl$TCXONC(r1, 0x540a, 0x2)
syz_open_dev$urandom(&(0x7f0000000180)='/dev/urandom\x00', 0x0, 0x101000)
ioctl$TCXONC(r1, 0x540a, 0x1)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x800, 0x0)
getsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000000), &(0x7f0000000080)=0x6)

[  589.742689] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  589.755496] syz-executor4 cpuset=syz4 mems_allowed=0
[  589.760686] CPU: 1 PID: 30311 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  589.767963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  589.777322] Call Trace:
[  589.779919]  dump_stack+0x1b9/0x294
[  589.783540]  ? dump_stack_print_info.cold.2+0x52/0x52
[  589.788725]  ? perf_trace_lock_acquire+0xe3/0x980
[  589.793565]  warn_alloc.cold.118+0xb2/0x1b8
[  589.797887]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  589.802737]  ? __schedule+0x809/0x1e30
[  589.806619]  ? __sched_text_start+0x8/0x8
[  589.810762]  __vmalloc_node_range+0x45e/0x750
[  589.815269]  ? graph_lock+0x170/0x170
[  589.819060]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  589.823890]  __vmalloc_node_flags_caller+0x75/0x90
[  589.828808]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  589.833644]  kvmalloc_node+0xde/0x100
[  589.837446]  kvm_arch_create_memslot+0xa3/0x4e0
[  589.842113]  __kvm_set_memory_region+0x1d1b/0x2e50
[  589.847046]  ? kvm_vcpu_block+0x1050/0x1050
[  589.851355]  ? print_usage_bug+0xc0/0xc0
[  589.855409]  ? perf_trace_lock+0x900/0x900
[  589.859635]  ? graph_lock+0x170/0x170
[  589.863425]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  589.868000]  ? __lock_acquire+0x7f5/0x5140
[  589.872231]  ? trace_hardirqs_on+0xd/0x10
[  589.876925]  ? find_held_lock+0x36/0x1c0
[  589.880996]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  589.885765]  kvm_set_memory_region+0x2e/0x50
[  589.890773]  kvm_vm_ioctl+0x668/0x1d90
[  589.894657]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  589.900208]  ? __perf_event_task_sched_in+0x247/0xb80
[  589.905388]  ? kvm_set_memory_region+0x50/0x50
[  589.909964]  ? find_held_lock+0x36/0x1c0
[  589.914023]  ? perf_trace_lock_acquire+0xe3/0x980
[  589.918865]  ? perf_trace_lock+0x900/0x900
[  589.923100]  ? kasan_check_read+0x11/0x20
[  589.927237]  ? graph_lock+0x170/0x170
[  589.931031]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  589.935602]  ? compat_start_thread+0x80/0x80
[  589.940003]  ? _raw_spin_unlock_irq+0x27/0x70
[  589.944492]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  589.949497]  ? trace_hardirqs_on+0xd/0x10
[  589.953637]  ? _raw_spin_unlock_irq+0x27/0x70
[  589.958133]  ? find_held_lock+0x36/0x1c0
[  589.962193]  ? lock_downgrade+0x8e0/0x8e0
[  589.966336]  ? kasan_check_read+0x11/0x20
[  589.970470]  ? rcu_is_watching+0x85/0x140
[  589.974605]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  589.979794]  ? __fget+0x40c/0x650
[  589.983241]  ? expand_files.part.8+0x9a0/0x9a0
[  589.987809]  ? lock_downgrade+0x8e0/0x8e0
[  589.991950]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  589.997474]  ? vma_set_page_prot+0x239/0x300
[  590.001873]  ? kvm_set_memory_region+0x50/0x50
[  590.006443]  do_vfs_ioctl+0x1cf/0x16a0
[  590.010328]  ? ioctl_preallocate+0x2e0/0x2e0
[  590.014729]  ? fget_raw+0x20/0x20
[  590.018182]  ? exit_to_usermode_loop+0x87/0x310
[  590.022844]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  590.028381]  ? security_file_ioctl+0x94/0xc0
[  590.032782]  ksys_ioctl+0xa9/0xd0
[  590.036228]  __x64_sys_ioctl+0x73/0xb0
[  590.040105]  do_syscall_64+0x1b1/0x800
[  590.043987]  ? finish_task_switch+0x1ca/0x810
[  590.048475]  ? syscall_return_slowpath+0x5c0/0x5c0
[  590.053393]  ? syscall_return_slowpath+0x30f/0x5c0
[  590.058313]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  590.063668]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  590.068503]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  590.073677] RIP: 0033:0x455979
[  590.076853] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  590.084552] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  590.091812] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  590.099067] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  590.106320] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  590.113575] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  590.120997] warn_alloc_show_mem: 1 callbacks suppressed
[  590.120999] Mem-Info:
[  590.128898] active_anon:75518 inactive_anon:80 isolated_anon:0
[  590.128898]  active_file:3747 inactive_file:12353 isolated_file:0
2018/05/02 02:14:41 executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x1, 0x8000000000005, 0x9}, 0x2c)
r1 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x3, 0x10200)
ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000000080)={0x80000, 0x0, [0x7fffffff, 0xa, 0x5, 0x7ff, 0x8, 0x3ff, 0x3, 0x8]})
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x1f, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00004f9fe4)={0xd, 0xc, 0x4, 0x100000001, 0x0, r0}, 0x1c)
dup3(r0, r2, 0x80000)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00005f1000)={r2, &(0x7f0000eed000), &(0x7f0000b88000)="13"}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r2, &(0x7f0000777000), &(0x7f0000ef0f88)=""/120}, 0x18)

2018/05/02 02:14:41 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000097040000d0"], 0x1)

[  590.128898]  unevictable:0 dirty:128 writeback:0 unstable:0
[  590.128898]  slab_reclaimable:10684 slab_unreclaimable:106813
[  590.128898]  mapped:73888 shmem:88 pagetables:1040 bounce:0
[  590.128898]  free:1323598 free_pcp:381 free_cma:0
[  590.162598] Node 0 active_anon:302072kB inactive_anon:320kB active_file:14988kB inactive_file:49412kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295552kB dirty:512kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 141312kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:14:41 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000ab040000d0"], 0x1)

[  590.190878] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  590.217119] lowmem_reserve[]: 0 2830 6335 6335
2018/05/02 02:14:41 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000a6040000d0"], 0x1)

[  590.221785] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:84kB free_cma:0kB
[  590.249475] lowmem_reserve[]: 0 0 3505 3505
[  590.253876] Node 0 Normal free:2366612kB min:37300kB low:46624kB high:55948kB active_anon:312444kB inactive_anon:320kB active_file:14988kB inactive_file:49412kB unevictable:0kB writepending:512kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5760kB pagetables:4456kB bounce:0kB free_pcp:616kB local_pcp:148kB free_cma:0kB
[  590.283737] lowmem_reserve[]: 0 0 0 0
2018/05/02 02:14:41 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000ae040000d0"], 0x1)

[  590.287602] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  590.301316] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  590.317186] Node 0 Normal: 1771*4kB (UME) 2951*8kB (UME) 3596*16kB (UME) 3044*32kB (UME) 1466*64kB (UME) 208*128kB (UM) 193*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 45*2048kB (UM) 438*4096kB (UM) = 2366628kB
[  590.336236] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
2018/05/02 02:14:41 executing program 1:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, r0, 0x0)
r2 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, r0, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0xfffffffffffeffff)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x2400, 0x1ff)

2018/05/02 02:14:41 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000fffffffb0000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  590.344866] 16187 total pagecache pages
[  590.348903] 0 pages in swap cache
[  590.352395] Swap cache stats: add 0, delete 0, find 0/0
[  590.357807] Free swap  = 0kB
[  590.360865] Total swap = 0kB
[  590.363932] 1965969 pages RAM
[  590.367073] 0 pages HighMem/MovableOnly
[  590.371091] 339347 pages reserved
2018/05/02 02:14:41 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c3040000d0"], 0x1)

[  590.405885] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  590.419642] syz-executor4 cpuset=syz4 mems_allowed=0
[  590.424848] CPU: 1 PID: 30336 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  590.432134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  590.441496] Call Trace:
[  590.444109]  dump_stack+0x1b9/0x294
[  590.447757]  ? dump_stack_print_info.cold.2+0x52/0x52
[  590.452960]  ? perf_trace_lock_acquire+0xe3/0x980
[  590.457822]  warn_alloc.cold.118+0xb2/0x1b8
[  590.462149]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  590.466980]  ? trace_hardirqs_on+0xd/0x10
[  590.471118]  ? _raw_spin_unlock_irq+0x27/0x70
[  590.475609]  ? finish_task_switch+0x1ca/0x810
[  590.480106]  __vmalloc_node_range+0x45e/0x750
[  590.484599]  ? graph_lock+0x170/0x170
[  590.488388]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  590.493221]  __vmalloc_node_flags_caller+0x75/0x90
[  590.498138]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  590.502981]  kvmalloc_node+0xde/0x100
[  590.506775]  kvm_arch_create_memslot+0xa3/0x4e0
[  590.511438]  __kvm_set_memory_region+0x1d1b/0x2e50
[  590.516362]  ? kvm_vcpu_block+0x1050/0x1050
[  590.520675]  ? perf_trace_lock+0x900/0x900
[  590.524897]  ? lock_acquire+0x1dc/0x520
[  590.528860]  ? graph_lock+0x170/0x170
[  590.532648]  ? __might_sleep+0x95/0x190
[  590.536613]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  590.542140]  ? futex_wait_queue_me+0x550/0x820
[  590.546727]  ? refill_pi_state_cache.part.7+0x300/0x300
[  590.552084]  ? find_held_lock+0x36/0x1c0
[  590.556148]  ? lock_downgrade+0x8e0/0x8e0
[  590.560305]  kvm_set_memory_region+0x2e/0x50
[  590.564704]  kvm_vm_ioctl+0x668/0x1d90
[  590.568577]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  590.573668]  ? futex_wake+0x2f6/0x750
[  590.577458]  ? kvm_set_memory_region+0x50/0x50
[  590.582040]  ? get_futex_key+0x1e90/0x1e90
[  590.586268]  ? perf_trace_lock_acquire+0xe3/0x980
[  590.591102]  ? perf_trace_lock+0x900/0x900
[  590.595328]  ? do_futex+0x249/0x27d0
[  590.599036]  ? graph_lock+0x170/0x170
[  590.602823]  ? perf_trace_lock_acquire+0xe3/0x980
[  590.607656]  ? exit_robust_list+0x290/0x290
[  590.611964]  ? find_held_lock+0x36/0x1c0
[  590.616024]  ? lock_downgrade+0x8e0/0x8e0
[  590.620162]  ? kasan_check_read+0x11/0x20
[  590.624295]  ? rcu_is_watching+0x85/0x140
[  590.628430]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  590.633614]  ? __fget+0x40c/0x650
[  590.637068]  ? do_raw_spin_unlock+0x1/0x2e0
[  590.641386]  ? expand_files.part.8+0x9a0/0x9a0
[  590.645959]  ? kasan_check_write+0x14/0x20
[  590.650179]  ? do_raw_spin_lock+0xc1/0x200
[  590.654404]  ? _raw_spin_unlock+0x22/0x30
[  590.658541]  ? kvm_set_memory_region+0x50/0x50
[  590.663114]  do_vfs_ioctl+0x1cf/0x16a0
[  590.666991]  ? ioctl_preallocate+0x2e0/0x2e0
[  590.671391]  ? fget_raw+0x20/0x20
[  590.674839]  ? __x64_sys_futex+0x477/0x680
[  590.679062]  ? do_futex+0x27d0/0x27d0
[  590.682849]  ? security_file_ioctl+0x94/0xc0
[  590.687249]  ksys_ioctl+0xa9/0xd0
[  590.690692]  __x64_sys_ioctl+0x73/0xb0
[  590.694567]  do_syscall_64+0x1b1/0x800
[  590.698441]  ? finish_task_switch+0x1ca/0x810
[  590.702924]  ? syscall_return_slowpath+0x5c0/0x5c0
[  590.707839]  ? syscall_return_slowpath+0x30f/0x5c0
[  590.712757]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  590.718135]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  590.722967]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  590.728143] RIP: 0033:0x455979
[  590.731319] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  590.739030] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  590.746286] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  590.753540] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  590.760794] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  590.768049] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:41 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0x40045402, &(0x7f0000013000)={0x3, 0x4})
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, r0, 0x0)

2018/05/02 02:14:41 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000003e040000d0"], 0x1)

2018/05/02 02:14:41 executing program 5:
r0 = syz_open_dev$tun(&(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={"d202b999cf85000000000088f301e710", 0x102})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'sit0\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00', 0x402})
r1 = syz_open_dev$tun(&(0x7f0000000240)='/dev/net/tun\x00', 0x0, 0x2000000)
r2 = msgget(0x2, 0x101)
msgsnd(r2, &(0x7f0000000100)={0x3, "d0dd34ddfb390f6f50abaa812f31f4a015b52f7bc0b1db841451c671258958332ba02fc0f678702d4cb3927c0d912392831fdbbba200b596de910094dcf882d24922a3958162d0b1df2732663e9bb07027"}, 0x59, 0x800)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000180)={0x1, &(0x7f0000000300)=[{0xffffffffffffffff, 0x8, 0x2, 0x80}]})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={"d202b999cf85000000000088f301e710", 0x102})
r3 = open(&(0x7f0000000080)='./file0\x00', 0x28802, 0x2)
r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x0, 0x0)
eventfd(0xdf8)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f0000000280)={<r5=>0x0, 0x5d6, 0x5, [0x100000001, 0x7, 0x54dc, 0xcd, 0xffff]}, &(0x7f00000002c0)=0x12)
setsockopt$inet_sctp_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000340)={r5, 0x5, 0xfffffffffffffff8, 0x2}, 0x10)
ioctl$sock_bt_cmtp_CMTPCONNADD(r3, 0x400443c8, &(0x7f0000000200)={r4, 0xbe2d})
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r3, 0x84, 0x5, &(0x7f0000000380)={r5, @in={{0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}}}, 0x84)

2018/05/02 02:14:42 executing program 1:
r0 = creat(&(0x7f0000000100)='./file0\x00', 0x100)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000080)={0x4, 0x70, 0x7, 0x223, 0x4, 0xe1, 0x0, 0x0, 0x4, 0x8, 0x9, 0xfffffffffffffff9, 0x7fff, 0x80, 0x2, 0x56, 0x1, 0x4, 0xfffffffffffff801, 0x2, 0x101, 0x2, 0xfffffffffffffe01, 0x7, 0x7fff, 0x3, 0x1, 0x3, 0x7, 0x1, 0x0, 0x9d0b, 0x7, 0x2, 0x8, 0x0, 0x7, 0xccf7, 0x0, 0x10000, 0x0, @perf_bp={&(0x7f0000000040)}, 0x0, 0xffffffffffff0000, 0x8, 0x3, 0x0, 0x1, 0x80})
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
perf_event_open(&(0x7f0000001f88)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000000efff)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000300)='/dev/snd/pcmC#D#c\x00', 0xfffffffffffffe03, 0x0)
fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000180)=0x3)
socket$can_bcm(0x1d, 0x2, 0x2)
ioctl(r1, 0xc100410f, &(0x7f0000000140)="967d34f201000005100000009c")

2018/05/02 02:14:42 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x240a, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:42 executing program 2:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000015c0)='/dev/sequencer2\x00', 0x10000, 0x0)
r1 = syz_open_dev$adsp(&(0x7f0000001600)='/dev/adsp#\x00', 0x40, 0x80000)
ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f0000001640)={r1, 0x34f, 0x40, "0644348afa5e176ab90195136e60b51211daeb77e605ed21de2f988c4a39cd5b427ebe128a2595bde1cd50eed512270470f139f3577f58345b10726140fabcd24a76db819cc8d650b1b8940317c02ac0f79569899720f40911b9789c0a07fb6ccdc8f2f30399f19a6b9d296403f00a64a9cc75603f411215457ec8f6985766e8715b05b76e69e60be01873a137ebbe6ff78eb35761383fbfb41225429c0ea6225825"})
ioctl$sock_netrom_SIOCGSTAMP(r0, 0x8906, &(0x7f0000000000))
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r2, &(0x7f0000000400)={&(0x7f0000000140)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14}}, 0x10, &(0x7f0000001480), 0x0, &(0x7f0000000180)=[@sndrcv={0x30, 0x84, 0x2}], 0x30}, 0x0)

2018/05/02 02:14:42 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000400000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:42 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
shutdown(r1, 0x0)
dup3(r2, r0, 0x0)

2018/05/02 02:14:42 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000039040000d0"], 0x1)

2018/05/02 02:14:42 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000fad000)='/dev/snd/controlC#\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000001000)={0x0, 0xfffffffffffffc5c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8ce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfc6, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000005000), 0x2}, 0xc, 0xfff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000080)=0x1ff)
read(r0, &(0x7f00000002c0)=""/77, 0x4d)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f000000d000), &(0x7f0000001000)=0xfea6)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x40)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000340)=@security={'security\x00', 0xe, 0x4, 0x420, 0xffffffff, 0x150, 0x150, 0x0, 0xffffffff, 0xffffffff, 0x388, 0x388, 0x388, 0xffffffff, 0x4, &(0x7f00000000c0), {[{{@ip={@remote={0xac, 0x14, 0x14, 0xbb}, @multicast2=0xe0000002, 0xffffff00, 0xff, 'bpq0\x00', 'veth0_to_team\x00', {0xff}, {}, 0x0, 0x2, 0x37}, 0x0, 0x118, 0x150, 0x0, {}, [@common=@addrtype={0x30, 'addrtype\x00', 0x0, {0x4a, 0x200, 0x1, 0x1}}, @common=@osf={0x50, 'osf\x00', 0x0, {'syz0\x00', 0x4, 0xf, 0x2, 0x2}}]}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0xf0, 0x1, 0xffffffffffffffbf}, {0x7fffffff, 0x9, 0x6}, {0x69bca788, 0x7ff, 0x7fffffff}, 0x5, 0x100000001}}}, {{@ip={@rand_addr=0x101, @multicast1=0xe0000001, 0xff, 0x0, 'bond0\x00', 'syzkaller1\x00', {0xff}, {0x33ec39553c7940e6}, 0x1, 0x2, 0x52}, 0x0, 0xc8, 0x110, 0x0, {}, [@common=@ah={0x30, 'ah\x00', 0x0, {0x0, 0x6, 0x1}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00', 0x1, 0x4, 0x9}}}, {{@ip={@rand_addr=0x2, @remote={0xac, 0x14, 0x14, 0xbb}, 0xffffffff, 0x0, 'dummy0\x00', 'ip6gre0\x00', {0xff}, {0xff}, 0x0, 0x1, 0x20}, 0x0, 0xc8, 0x128, 0x0, {}, [@common=@addrtype={0x30, 'addrtype\x00', 0x0, {0x0, 0x1, 0x1}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xf}, 0x6852, 0x0, [0x9, 0x16, 0x29, 0x2, 0xa, 0x0, 0x35, 0x27, 0x0, 0x2e, 0x12, 0x3f, 0x26, 0x5, 0x1b, 0x1c], 0x0, 0x73050565, 0xa449}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x480)
ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000001000)=""/250)

2018/05/02 02:14:42 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000bbfff6)='/dev/ptmx\x00', 0x0, 0x0)
readv(r0, &(0x7f00000b7fe0)=[{&(0x7f00005d0f11)=""/239, 0xef}], 0x1)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040))
r1 = syz_open_pts(r0, 0x801)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000089000))
r3 = dup3(r0, r2, 0x80000)
ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, &(0x7f0000000080)={0xa, 0x0, [{0x40000000, 0x5e53, 0x7, 0x4000000000000000, 0x1}, {0x80000001, 0xffffffffffff0001, 0x2, 0x5e, 0x8}, {0xc000001f, 0xecc1, 0xfffffffffffffb93, 0x9, 0x5}, {0x8000000d, 0xffffffffffffffff, 0x100, 0x80000000, 0x4}, {0xb, 0xfe5, 0x80000001, 0x7, 0x9}, {0x0, 0x3, 0x4, 0x6, 0x4}, {0x8000000b, 0x881, 0x4, 0x6, 0x7}, {0x80000008, 0x4, 0x4, 0x7f, 0x4}, {0x80000019, 0x71, 0x16a55ec, 0x250, 0x5}, {0x40000000, 0xf7, 0x6, 0x7fff, 0x7}]})
r4 = dup3(r1, r0, 0x0)
ioctl$KDDISABIO(0xffffffffffffffff, 0x4b37)
writev(r4, &(0x7f00008ba000)=[{&(0x7f0000cdff22)='I', 0x1}], 0x1)

[  591.195714] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  591.207594] syz-executor4 cpuset=syz4 mems_allowed=0
[  591.212825] CPU: 0 PID: 30372 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  591.220106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  591.229462] Call Trace:
[  591.232172]  dump_stack+0x1b9/0x294
[  591.235842]  ? dump_stack_print_info.cold.2+0x52/0x52
[  591.241035]  ? kasan_check_read+0x11/0x20
[  591.245180]  warn_alloc.cold.118+0xb2/0x1b8
[  591.249494]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  591.254326]  ? trace_hardirqs_on+0xd/0x10
[  591.258466]  ? _raw_spin_unlock_irq+0x27/0x70
[  591.262960]  ? finish_task_switch+0x1ca/0x810
[  591.267453]  ? lock_repin_lock+0x410/0x410
[  591.271684]  __vmalloc_node_range+0x45e/0x750
[  591.276172]  ? graph_lock+0x170/0x170
[  591.279965]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  591.284796]  __vmalloc_node_flags_caller+0x75/0x90
[  591.289713]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  591.294551]  kvmalloc_node+0xde/0x100
[  591.298343]  kvm_arch_create_memslot+0xa3/0x4e0
[  591.303029]  __kvm_set_memory_region+0x1d1b/0x2e50
[  591.307962]  ? kvm_vcpu_block+0x1050/0x1050
[  591.312280]  ? check_same_owner+0x320/0x320
[  591.316609]  ? do_raw_spin_unlock+0x9e/0x2e0
[  591.321028]  ? rcu_note_context_switch+0x710/0x710
[  591.325947]  ? lock_acquire+0x1dc/0x520
[  591.329911]  ? graph_lock+0x170/0x170
[  591.333709]  ? __might_sleep+0x95/0x190
[  591.337684]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  591.343209]  ? futex_wait_queue_me+0x550/0x820
[  591.347781]  ? refill_pi_state_cache.part.7+0x300/0x300
[  591.353136]  ? find_held_lock+0x36/0x1c0
[  591.357205]  ? lock_downgrade+0x8e0/0x8e0
[  591.361370]  kvm_set_memory_region+0x2e/0x50
[  591.365769]  kvm_vm_ioctl+0x668/0x1d90
[  591.369654]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  591.374747]  ? futex_wake+0x2f6/0x750
[  591.378542]  ? kvm_set_memory_region+0x50/0x50
[  591.383120]  ? get_futex_key+0x1e90/0x1e90
[  591.387370]  ? kasan_check_write+0x14/0x20
[  591.391597]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  591.396788]  ? do_futex+0x249/0x27d0
[  591.400490]  ? kasan_check_write+0x14/0x20
[  591.404712]  ? graph_lock+0x170/0x170
[  591.410082]  ? exit_robust_list+0x290/0x290
[  591.414390]  ? find_held_lock+0x36/0x1c0
[  591.418449]  ? lock_downgrade+0x8e0/0x8e0
[  591.422592]  ? kasan_check_read+0x11/0x20
[  591.426730]  ? rcu_is_watching+0x85/0x140
[  591.430880]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  591.436083]  ? __fget+0x40c/0x650
[  591.439531]  ? expand_files.part.8+0x9a0/0x9a0
[  591.444104]  ? lock_downgrade+0x8e0/0x8e0
[  591.448243]  ? __split_vma+0x5ac/0x7f0
[  591.452208]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  591.457730]  ? vma_set_page_prot+0x239/0x300
[  591.462129]  ? kvm_set_memory_region+0x50/0x50
[  591.466701]  do_vfs_ioctl+0x1cf/0x16a0
[  591.470583]  ? ioctl_preallocate+0x2e0/0x2e0
[  591.474983]  ? fget_raw+0x20/0x20
[  591.478432]  ? __x64_sys_futex+0x477/0x680
[  591.482662]  ? do_futex+0x27d0/0x27d0
[  591.486454]  ? security_file_ioctl+0x94/0xc0
[  591.490864]  ksys_ioctl+0xa9/0xd0
[  591.494312]  __x64_sys_ioctl+0x73/0xb0
[  591.498189]  do_syscall_64+0x1b1/0x800
[  591.502069]  ? finish_task_switch+0x1ca/0x810
[  591.506560]  ? syscall_return_slowpath+0x5c0/0x5c0
[  591.511586]  ? syscall_return_slowpath+0x30f/0x5c0
[  591.516510]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  591.521865]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  591.526709]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  591.531884] RIP: 0033:0x455979
[  591.535062] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  591.542772] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  591.550030] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  591.557288] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  591.564549] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  591.571805] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  591.579224] warn_alloc_show_mem: 1 callbacks suppressed
[  591.579227] Mem-Info:
[  591.587110] active_anon:76563 inactive_anon:80 isolated_anon:0
[  591.587110]  active_file:3747 inactive_file:12365 isolated_file:0
[  591.587110]  unevictable:0 dirty:140 writeback:0 unstable:0
[  591.587110]  slab_reclaimable:10654 slab_unreclaimable:106992
[  591.587110]  mapped:73882 shmem:88 pagetables:1121 bounce:0
[  591.587110]  free:1322193 free_pcp:388 free_cma:0
[  591.620848] Node 0 active_anon:306352kB inactive_anon:320kB active_file:14988kB inactive_file:49460kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295528kB dirty:560kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 135168kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  591.649104] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  591.676193] lowmem_reserve[]: 0 2830 6335 6335
2018/05/02 02:14:42 executing program 1:
socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff})
getsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f00000001c0), &(0x7f0000000200)=0x4)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x90, 0x0, 0x0, 0x0, 0x0, 0x20000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x34b8de66cc2ddbdb, &(0x7f0000000280), &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0))
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x141000, 0x0)
getsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f0000000100), &(0x7f0000000140)=0x4)

2018/05/02 02:14:42 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000002c040000d0"], 0x1)

2018/05/02 02:14:42 executing program 1:
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = dup3(r0, r0, 0x80000)
getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffff9c, 0x84, 0xe, &(0x7f0000000000)={0x0, 0x8000, 0x2, 0x6, 0x95c, 0x5, 0x9, 0x6, {<r2=>0x0, @in6={{0xa, 0x4e22, 0x1000, @mcast1={0xff, 0x1, [], 0x1}, 0x80000001}}, 0x64e9e444, 0x7f, 0xce, 0x3, 0x3f}}, &(0x7f00000000c0)=0xb0)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000100)={r2, 0x5}, &(0x7f0000000140)=0x8)
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
bind(r0, &(0x7f0000557130)=@generic={0x0, "0103000000000000000000000000000009a979f321b30c7bc8790405c7bad62e0a53a632ed4938d36d73fb8f8401a3ff59829a2b0afe7ce43a4b2470a0c5216669ca021f6f65dcf160e7e58f358c0002f0000158d19bcb3151314a8ef1f1622ca5bdb9c8ead2000077aeb81c90001d6d7c980ee590c8b9f70dc136cb184a"}, 0x80)
mremap(&(0x7f00003fb000/0x400000)=nil, 0x400000, 0x800000, 0x3, &(0x7f00007fb000/0x800000)=nil)
ioctl$BLKRRPART(r1, 0x125f, 0x0)

2018/05/02 02:14:42 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000a7040000d0"], 0x1)

[  591.680866] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:648kB free_cma:0kB
[  591.713611] lowmem_reserve[]: 0 0 3505 3505
[  591.718080] Node 0 Normal free:2371808kB min:37300kB low:46624kB high:55948kB active_anon:306432kB inactive_anon:312kB active_file:14988kB inactive_file:49484kB unevictable:0kB writepending:584kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5792kB pagetables:4648kB bounce:0kB free_pcp:1208kB local_pcp:668kB free_cma:0kB
2018/05/02 02:14:42 executing program 2:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x4800, 0x0)
bind$bt_rfcomm(r0, &(0x7f0000000040)={0x1f, {0x4, 0x8, 0x5, 0x1200000, 0x3, 0x9}, 0xfffffffffffffff9}, 0xa)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f000079e000)=[{&(0x7f0000085000)="2900000020001980013d7524000a002102000016000000800000000009000600000011e010315aec20", 0x29}], 0x1)
ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f0000000080)=0x7f)

[  591.748101] lowmem_reserve[]: 0 0 0 0
[  591.751985] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  591.765748] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  591.781665] Node 0 Normal: 2035*4kB (UME) 3017*8kB (UME) 3477*16kB (UME) 3048*32kB (UME) 1466*64kB (UME) 208*128kB (UM) 192*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 49*2048kB (UM) 438*4096kB (UM) = 2374372kB
[  591.800644] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  591.809288] 16205 total pagecache pages
[  591.813317] 0 pages in swap cache
[  591.816856] Swap cache stats: add 0, delete 0, find 0/0
[  591.822261] Free swap  = 0kB
[  591.825334] Total swap = 0kB
[  591.828395] 1965969 pages RAM
[  591.831558] 0 pages HighMem/MovableOnly
[  591.835580] 339347 pages reserved
[  591.848959] netlink: 'syz-executor2': attribute type 6 has an invalid length.
[  591.856395] netlink: 1 bytes leftover after parsing attributes in process `syz-executor2'.
[  591.876415] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  591.888335] syz-executor4 cpuset=syz4 mems_allowed=0
[  591.893542] CPU: 0 PID: 30405 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  591.898507] netlink: 'syz-executor2': attribute type 6 has an invalid length.
[  591.900814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  591.900821] Call Trace:
[  591.900845]  dump_stack+0x1b9/0x294
[  591.900868]  ? dump_stack_print_info.cold.2+0x52/0x52
[  591.900891]  ? kasan_check_read+0x11/0x20
[  591.900916]  warn_alloc.cold.118+0xb2/0x1b8
[  591.908198] netlink: 1 bytes leftover after parsing attributes in process `syz-executor2'.
[  591.917538]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  591.917556]  ? trace_hardirqs_on+0xd/0x10
[  591.917580]  ? _raw_spin_unlock_irq+0x27/0x70
[  591.959224]  ? finish_task_switch+0x1ca/0x810
[  591.963743]  ? lock_repin_lock+0x410/0x410
[  591.967996]  __vmalloc_node_range+0x45e/0x750
[  591.972507]  ? graph_lock+0x170/0x170
[  591.976303]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  591.981141]  __vmalloc_node_flags_caller+0x75/0x90
[  591.986077]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  591.990924]  kvmalloc_node+0xde/0x100
[  591.994725]  kvm_arch_create_memslot+0xa3/0x4e0
[  591.999402]  __kvm_set_memory_region+0x1d1b/0x2e50
[  592.004332]  ? kvm_vcpu_block+0x1050/0x1050
[  592.008643]  ? zap_class+0x720/0x720
[  592.012351]  ? check_same_owner+0x320/0x320
[  592.016681]  ? rcu_note_context_switch+0x710/0x710
[  592.021608]  ? lock_acquire+0x1dc/0x520
[  592.025571]  ? graph_lock+0x170/0x170
[  592.029363]  ? __might_sleep+0x95/0x190
[  592.033343]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  592.038974]  ? futex_wait_queue_me+0x550/0x820
[  592.043564]  ? refill_pi_state_cache.part.7+0x300/0x300
[  592.048938]  ? find_held_lock+0x36/0x1c0
[  592.053015]  ? lock_downgrade+0x8e0/0x8e0
[  592.057199]  kvm_set_memory_region+0x2e/0x50
[  592.061624]  kvm_vm_ioctl+0x668/0x1d90
[  592.065538]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  592.070640]  ? futex_wake+0x2f6/0x750
[  592.074426]  ? kvm_set_memory_region+0x50/0x50
[  592.078997]  ? get_futex_key+0x1e90/0x1e90
[  592.083226]  ? perf_trace_lock+0xd6/0x900
[  592.087362]  ? zap_class+0x720/0x720
[  592.091062]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  592.096249]  ? do_futex+0x249/0x27d0
[  592.099946]  ? graph_lock+0x170/0x170
[  592.103738]  ? exit_robust_list+0x290/0x290
[  592.108064]  ? find_held_lock+0x36/0x1c0
[  592.112134]  ? lock_downgrade+0x8e0/0x8e0
[  592.116283]  ? rcu_is_watching+0x85/0x140
[  592.120418]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  592.125613]  ? __fget+0x40c/0x650
[  592.129078]  ? do_raw_spin_unlock+0x1/0x2e0
[  592.133398]  ? expand_files.part.8+0x9a0/0x9a0
[  592.137970]  ? kasan_check_write+0x14/0x20
[  592.142398]  ? do_raw_spin_lock+0xc1/0x200
[  592.146635]  ? _raw_spin_unlock+0x22/0x30
[  592.150771]  ? kvm_set_memory_region+0x50/0x50
[  592.155338]  do_vfs_ioctl+0x1cf/0x16a0
[  592.159229]  ? ioctl_preallocate+0x2e0/0x2e0
[  592.163630]  ? fget_raw+0x20/0x20
[  592.167073]  ? __x64_sys_futex+0x477/0x680
[  592.171307]  ? do_futex+0x27d0/0x27d0
[  592.175118]  ? security_file_ioctl+0x94/0xc0
[  592.179538]  ksys_ioctl+0xa9/0xd0
[  592.183003]  __x64_sys_ioctl+0x73/0xb0
[  592.186901]  do_syscall_64+0x1b1/0x800
[  592.190802]  ? finish_task_switch+0x1ca/0x810
[  592.195309]  ? syscall_return_slowpath+0x5c0/0x5c0
[  592.200250]  ? syscall_return_slowpath+0x30f/0x5c0
[  592.205182]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  592.210552]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  592.215491]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  592.220669] RIP: 0033:0x455979
[  592.223838] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  592.231531] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  592.238782] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  592.246041] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  592.253301] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  592.260551] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:43 executing program 1:
prctl$seccomp(0x2f, 0x4, &(0x7f00005d295e)={0x0, &(0x7f0000ab9000)})
modify_ldt$write(0x1, &(0x7f0000000000)={0x4, 0x20000000, 0x2000, 0xad13, 0x3, 0x1f, 0x0, 0xfffffffffffffffc, 0x8, 0xffff}, 0x10)

2018/05/02 02:14:43 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000009d040000d0"], 0x1)

2018/05/02 02:14:43 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = accept$alg(r0, 0x0, 0x0)
timer_create(0x5, &(0x7f0000000140)={0x0, 0x2, 0x0, @thr={&(0x7f0000000080)="a9312ae81075e0d59d9589bfcc5d6789626522ef164e520ed77a14a046b33bcb557e195d9dec5f6ad04c1fb26351774c6feeb50602d0f6e10e7a492968", &(0x7f00000000c0)="6d5d5d475cc7d97d383a4631f50e4002204f2773dc91e47747cf6ef2eb0bc5815661ebd551c3e04e67233697a10e02c59485828f082079e86bbd3ffe08c3c2e6a2132d3dc70e92e4a9af76bef9ce1b654dbcc6dadff7db5451f4f761750b13eca811968b209df29e4df9d9303ff0b791a302f788c017d7b3adfcb33b0385080b"}}, &(0x7f0000000180)=<r2=>0x0)
timer_getoverrun(r2)
r3 = open(&(0x7f00000001c0)='./file0\x00', 0x8480, 0x1)
getsockopt$bt_l2cap_L2CAP_CONNINFO(r3, 0x6, 0x2, &(0x7f0000000200), &(0x7f0000000240)=0x6)
r4 = open(&(0x7f00004b8ff8)='./file0\x00', 0x28042, 0x0)
ioctl$ASHMEM_SET_SIZE(r4, 0x40087703, 0x0)
fallocate(r4, 0x0, 0x4, 0x4)
sendfile(r1, r4, &(0x7f0000e64ff8), 0x8)
ioctl$KVM_GET_DEBUGREGS(r4, 0x8080aea1, &(0x7f0000000000))
ioctl$TIOCCONS(r4, 0x541d)

2018/05/02 02:14:43 executing program 5:
keyctl$search(0xa, 0x0, &(0x7f0000000140)="6c7802556a52afd7fe4144896fe4d77e73f47fad5b1352c7962566a7d85572c95fe357be279da60ffcad3f7551849150a0daf2863bf677b5c56e8e9edac8180823ee2dabe0d99d612ac831f7a5b1743327959b1c5a2c343f1081d30ab96273b98ab6cd76bf29e82324cbe82e0ff062f99447751414cda2388a862aa432677fc4f623971ead66dbf402825ae4338abf22822d89af56c425dd931496921c7f5a4bf90cc3710a056518514ecfdec30bd4e04fca5ed4f8bfcee35636b0447ac75ad5b8d8b2a619f20a407ac12e73a26def09f3216511", &(0x7f00000000c0)={0x73, 0x79, 0x7a}, 0x0)
ioctl$EVIOCGPROP(0xffffffffffffffff, 0xc004743e, &(0x7f0000000180)=""/246)

2018/05/02 02:14:43 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x2080)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000100)={<r2=>0x0, 0x3, 0x2, [0x8, 0x100000001]}, &(0x7f0000000140)=0xc)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000180)={r2, 0x4}, &(0x7f00000001c0)=0x8)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r4 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r5 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0x40045402, &(0x7f0000013000))
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000200)={0xaa, 0x2})
readv(r5, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r4, r0, 0x0)

2018/05/02 02:14:43 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000003400000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:43 executing program 7:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect(r0, &(0x7f0000002000)=@ethernet, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000002fd8)={'vcan0\x00', <r1=>0x0})
r2 = open(&(0x7f0000000100)='./file0\x00', 0x10d000, 0x4)
ioctl$ASHMEM_SET_NAME(r2, 0x41007701, &(0x7f0000000140)='vcan0\x00')
sendmsg$can_bcm(r0, &(0x7f0000000000)={&(0x7f0000004000)={0x1d, r1}, 0x10, &(0x7f0000002ff0)={&(0x7f0000000040)=ANY=[@ANYBLOB="bc2600092e392d1d3440c7115465bae9e88f689b", @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="00000000001300000000000000000000790eaada477f17eb046695eea58af88d0ba3b8f5ca34f33a9a82d81e455bc6ca3479893215467e3bb85ea1247aafde2b17277187bd8fc023bb972d19343108b0"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:43 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x40000000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

[  592.395261] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  592.407172] syz-executor4 cpuset=syz4 mems_allowed=0
[  592.412376] CPU: 1 PID: 30429 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  592.419655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  592.429015] Call Trace:
[  592.431620]  dump_stack+0x1b9/0x294
[  592.435269]  ? dump_stack_print_info.cold.2+0x52/0x52
[  592.440478]  ? kasan_check_read+0x11/0x20
[  592.444645]  warn_alloc.cold.118+0xb2/0x1b8
[  592.448987]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  592.453851]  ? trace_hardirqs_on+0xd/0x10
[  592.458013]  ? _raw_spin_unlock_irq+0x27/0x70
[  592.462523]  ? finish_task_switch+0x1ca/0x810
[  592.467038]  ? lock_repin_lock+0x410/0x410
[  592.471299]  __vmalloc_node_range+0x45e/0x750
[  592.475813]  ? graph_lock+0x170/0x170
[  592.479627]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  592.484472]  __vmalloc_node_flags_caller+0x75/0x90
[  592.490793]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  592.495670]  kvmalloc_node+0xde/0x100
[  592.499465]  kvm_arch_create_memslot+0xa3/0x4e0
[  592.505265]  __kvm_set_memory_region+0x1d1b/0x2e50
[  592.510194]  ? kvm_vcpu_block+0x1050/0x1050
[  592.514507]  ? check_same_owner+0x320/0x320
[  592.518816]  ? do_raw_spin_unlock+0x9e/0x2e0
[  592.523216]  ? rcu_note_context_switch+0x710/0x710
[  592.528132]  ? lock_acquire+0x1dc/0x520
[  592.532098]  ? graph_lock+0x170/0x170
[  592.535889]  ? __might_sleep+0x95/0x190
[  592.539868]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  592.545394]  ? futex_wait_queue_me+0x550/0x820
[  592.549972]  ? refill_pi_state_cache.part.7+0x300/0x300
[  592.555328]  ? find_held_lock+0x36/0x1c0
[  592.559387]  ? lock_downgrade+0x8e0/0x8e0
[  592.563555]  kvm_set_memory_region+0x2e/0x50
[  592.567963]  kvm_vm_ioctl+0x668/0x1d90
[  592.571839]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  592.576930]  ? futex_wake+0x2f6/0x750
[  592.580725]  ? kvm_set_memory_region+0x50/0x50
[  592.585308]  ? get_futex_key+0x1e90/0x1e90
[  592.589548]  ? kasan_check_write+0x14/0x20
[  592.593770]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  592.598965]  ? do_futex+0x249/0x27d0
[  592.602669]  ? kasan_check_write+0x14/0x20
[  592.606895]  ? graph_lock+0x170/0x170
[  592.612081]  ? exit_robust_list+0x290/0x290
[  592.616393]  ? find_held_lock+0x36/0x1c0
[  592.620452]  ? lock_downgrade+0x8e0/0x8e0
[  592.624603]  ? kasan_check_read+0x11/0x20
[  592.628740]  ? rcu_is_watching+0x85/0x140
[  592.632880]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  592.638069]  ? __fget+0x40c/0x650
[  592.641517]  ? expand_files.part.8+0x9a0/0x9a0
[  592.646087]  ? lock_downgrade+0x8e0/0x8e0
[  592.650227]  ? __split_vma+0x5ac/0x7f0
[  592.654106]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  592.659633]  ? vma_set_page_prot+0x239/0x300
[  592.664038]  ? kvm_set_memory_region+0x50/0x50
[  592.668621]  do_vfs_ioctl+0x1cf/0x16a0
[  592.672502]  ? ioctl_preallocate+0x2e0/0x2e0
[  592.676901]  ? fget_raw+0x20/0x20
[  592.680350]  ? __x64_sys_futex+0x477/0x680
[  592.684587]  ? do_futex+0x27d0/0x27d0
[  592.688377]  ? security_file_ioctl+0x94/0xc0
[  592.692779]  ksys_ioctl+0xa9/0xd0
[  592.696226]  __x64_sys_ioctl+0x73/0xb0
[  592.700107]  do_syscall_64+0x1b1/0x800
[  592.703983]  ? finish_task_switch+0x1ca/0x810
[  592.708469]  ? syscall_return_slowpath+0x5c0/0x5c0
[  592.713387]  ? syscall_return_slowpath+0x30f/0x5c0
[  592.718312]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  592.723667]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  592.728504]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  592.733695] RIP: 0033:0x455979
[  592.736869] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/05/02 02:14:43 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000f00000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000f8f000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
eventfd2(0x7ff, 0x1)
sendmsg$alg(r1, &(0x7f0000f77fc8)={0x0, 0x0, &(0x7f00006ec000), 0x0, &(0x7f00005c8fd0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
recvmmsg(r1, &(0x7f0000001480)=[{{&(0x7f0000000040)=@generic, 0x80, &(0x7f0000001300)=[{&(0x7f00000011c0)=""/178, 0xb2}], 0x1, &(0x7f00000014c0)=""/206, 0xce}}], 0x1, 0x0, &(0x7f00002d9000))

2018/05/02 02:14:43 executing program 5:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = accept$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, @loopback}, &(0x7f00000000c0)=0x10)
getsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f0000000100)=""/103, &(0x7f0000000180)=0x67)
mount(&(0x7f00007a3ff8)='./file0\x00', &(0x7f00004f5ff8)='./file0\x00', &(0x7f00000e1000)='ramfs\x00', 0x0, &(0x7f0000c81ffe))
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
rmdir(&(0x7f0000000040)='./file0\x00')
lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
getresgid(&(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0)=<r3=>0x0)
setresgid(r1, r2, r3)

2018/05/02 02:14:43 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000081040000d0"], 0x1)

[  592.744571] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  592.751825] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  592.759081] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  592.766336] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  592.773678] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  592.781190] warn_alloc_show_mem: 1 callbacks suppressed
[  592.781194] Mem-Info:
[  592.789076] active_anon:78107 inactive_anon:79 isolated_anon:0
2018/05/02 02:14:43 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f00000002c0)={'broute\x00', 0x0, 0x4, 0xeb, [], 0x7, &(0x7f0000000100)=[{}, {}, {}, {}, {}, {}, {}], &(0x7f00000001c0)=""/235}, &(0x7f0000000340)=0x78)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, &(0x7f0000000080)={0x0, 'lo\x00'}, 0x18)
nanosleep(&(0x7f0000000040)={0x0, 0x989680}, &(0x7f0000000180))

2018/05/02 02:14:43 executing program 2:
r0 = open(&(0x7f0000011000)='./bus\x00', 0x8000000141042, 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f000000d000/0x1000)=nil, 0x1000}})
truncate(&(0x7f0000011000)='./bus\x00', 0xfffc)
mmap(&(0x7f0000000000/0x11000)=nil, 0x11000, 0x3, 0x11, r0, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e53fe8)={0xaa})
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f00000000c0)=[@in={0x2, 0x4e24, @broadcast=0xffffffff}, @in={0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}, @in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, @in6={0xa, 0x4e24, 0x3ff, @remote={0xfe, 0x80, [], 0xbb}, 0x9f08}, @in={0x2, 0x4e24, @multicast2=0xe0000002}, @in6={0xa, 0x4e20, 0x72, @local={0xfe, 0x80, [], 0xaa}, 0xf49c}], 0x84)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000007fe0)={{&(0x7f0000000000/0x4000)=nil, 0x4000}, 0x1})
ioctl$UFFDIO_UNREGISTER(r1, 0xc020aa04, &(0x7f0000007ffc)={&(0x7f0000000000/0x2000)=nil, 0x2000})
getsockopt$inet_dccp_int(r0, 0x21, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0x4)

[  592.789076]  active_file:3749 inactive_file:12377 isolated_file:0
[  592.789076]  unevictable:0 dirty:157 writeback:0 unstable:0
[  592.789076]  slab_reclaimable:10656 slab_unreclaimable:106984
[  592.789076]  mapped:73916 shmem:89 pagetables:1087 bounce:0
[  592.789076]  free:1320668 free_pcp:475 free_cma:0
[  592.822756] Node 0 active_anon:306208kB inactive_anon:316kB active_file:14996kB inactive_file:49508kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295664kB dirty:628kB writeback:0kB shmem:356kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 157696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  592.850943] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  592.877142] lowmem_reserve[]: 0 2830 6335 6335
2018/05/02 02:14:43 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c8040000d0"], 0x1)

[  592.881838] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:84kB free_cma:0kB
[  592.910755] lowmem_reserve[]: 0 0 3505 3505
[  592.915183] Node 0 Normal free:2367732kB min:37300kB low:46624kB high:55948kB active_anon:310424kB inactive_anon:316kB active_file:14996kB inactive_file:49508kB unevictable:0kB writepending:628kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5760kB pagetables:4496kB bounce:0kB free_pcp:1364kB local_pcp:624kB free_cma:0kB
[  592.945117] lowmem_reserve[]: 0 0 0 0
[  592.949042] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  592.962756] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  592.978721] Node 0 Normal: 2060*4kB (UME) 3040*8kB (UME) 3458*16kB (UME) 3049*32kB (UME) 1466*64kB (UME) 208*128kB (UM) 192*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 47*2048kB (UM) 438*4096kB (UM) = 2370288kB
2018/05/02 02:14:43 executing program 1:
r0 = socket$key(0xf, 0x3, 0x2)
r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x2, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000003c0)=<r2=>0x0)
lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
fstat(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000540)=<r5=>0x0)
lstat(&(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000640)={0x0, 0x0, <r7=>0x0}, &(0x7f0000000680)=0xc)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000006c0)=<r8=>0x0)
lstat(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
getresgid(&(0x7f00000007c0), &(0x7f0000000800), &(0x7f0000000840)=<r10=>0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000880)={0x0, <r11=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000008c0)={0x0, <r12=>0x0}, &(0x7f0000000900)=0xc)
getgroups(0x3, &(0x7f0000000940)=[0x0, <r13=>0xffffffffffffffff, 0x0])
socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000980)={0xffffffffffffffff, <r14=>0xffffffffffffffff})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000002240)={<r15=>0x0}, &(0x7f0000002280)=0xc)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000022c0)={0x0, <r16=>0x0}, &(0x7f0000002300)=0xc)
getresgid(&(0x7f0000002340)=<r17=>0x0, &(0x7f0000002380), &(0x7f00000023c0))
r18 = getpid()
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000002a40)={{{@in=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r19=>0x0}}, {{@in=@loopback}, 0x0, @in6=@ipv4={[], [], @multicast1}}}, &(0x7f0000002b40)=0xe8)
r20 = getgid()
r21 = getpgrp(0xffffffffffffffff)
fstat(r0, &(0x7f0000002b80)={0x0, 0x0, 0x0, 0x0, <r22=>0x0})
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000002cc0)=<r23=>0x0)
fstat(r0, &(0x7f0000002d00)={0x0, 0x0, 0x0, 0x0, <r24=>0x0})
fstat(r0, &(0x7f0000002d80)={0x0, 0x0, 0x0, 0x0, 0x0, <r25=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000004280)={<r26=>0x0}, &(0x7f00000042c0)=0xc)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000004300)={{{@in, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r27=>0x0}}, {{@in6=@mcast2}, 0x0, @in6=@dev}}, &(0x7f0000004400)=0xe8)
getgroups(0x4, &(0x7f0000004440)=[<r28=>0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0])
sendmmsg$unix(r1, &(0x7f00000044c0)=[{&(0x7f0000000040)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000340)=[{&(0x7f00000000c0)="ce9ae5dbccf3ff7727a526e1734ff0874575f250412dd26c567986095201a12d20d1373c763958afea4ce3d89cf39a3565e126fb5d69f1bca1fffb8bde92b54e3b4436429e4a8f018c942507db21897d1020ea4e89a72e645293119687d5a2eaaf0201aea67faa62a6a4f8cda8", 0x6d}, {&(0x7f0000000140)="e2e5c726f8f90185e46df6eb6e657d0a106fa39c06b981a471e02bc1b7a28078c88351af9e0f", 0x26}, {&(0x7f0000000180)="98387db21921e3f1d820dade9b178f4e8181e1a6f6f5bf5ab38c1d1d53e24d9049977a4242b6c764fb952a346bcb79341e158da73fcd3032082e81f23ea26b06b12148d6", 0x44}, {&(0x7f0000000200)="3fabb825e910cedd1dc01675d28d19ebefaf22d6914823f7e081964a118fd913891e7460ed173a389e6ee1773968ce9579ea27130d522d4bfe90f5a0400715ea80f263a17f117b075e6a58c3fdee8ad763f5557201d3723ee7eba6cda6e863ad66042de06a8a34eefe68e1d6d60dac7d7344bc4cdea9c13e7f567ef18a2e95b3", 0x80}, {&(0x7f0000000280)="89cf930999f9af9e044f1816c079f27aec473aec3cbafbaf1b2c6991e7431f3d3e5548f4888a8022e5831206ab7321bbd763324a328fd54b744bdb9970185b08d555552bffdc268cecdb45052f8aec6f3429e7c65ad3694b63f4b0dfe5f57b95735a0041b43c589b9748b1e8037d8adfb620a0ac79c50c65e1486e816f456bbb0e07600ade55e45f05a36d5533d486e6b9333813220c0bdd", 0x98}], 0x5, &(0x7f00000009c0)=[@rights={0x10, 0x1, 0x1}, @cred={0x20, 0x1, 0x2, r2, r3, r4}, @rights={0x18, 0x1, 0x1, [r0]}, @cred={0x20, 0x1, 0x2, r5, r6, r7}, @rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0]}, @rights={0x20, 0x1, 0x1, [r0, r0, r0]}, @cred={0x20, 0x1, 0x2, r8, r9, r10}, @rights={0x20, 0x1, 0x1, [r0, r0, r0]}, @cred={0x20, 0x1, 0x2, r11, r12, r13}, @rights={0x28, 0x1, 0x1, [r14, r0, r0, r0, r0, r0]}], 0x140, 0x400f7d439d8b708a}, {&(0x7f0000000b00)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000002180)=[{&(0x7f0000000b80)="7592a1d919f63fa4b4a60b8bde80ecdb8d052dd71e362b956cda7eccf108ed7d88a81b5e7b3a80f93bb5c13d088e33204d81889b4f59bda665fb697e450d092523f0be333e5fb7fe1af69a7d988356867617c55e069312d32ab15a8d5f22d86b66861b5a9dafd7c4151f46b59970c474d7941ff435ff6865f64aa2da046202d709c509326e00d8051fadf5a3fdce93869f0be3d7fae957fc2bbe84c1fe862b6ecc632447775e088ed688783e0e1e69f39d624eafe6918119559102d15b26d78fa77f3a0bf520a95f0574463397bd2b2c5722d607de5d113deaa93124dff16c5ff9ccb8", 0xe3}, {&(0x7f0000000c80)="9c90f1b54b60ba77415074ef93e00b350dabb13250595d1399f12b1c5882e5bcd5c55cb368d29cc9623706962b2a2ba8acffd99d63440fdaf796ac557f7f191e59236750688999f95b99d4c1a7e65ab3c32f0883bcd8a6c01b95df936e3c5ffe81a3ef353b46dec921a67a3e7ff99389948ab6db40828758dd8986116287f988ee5a6da794fcbe810f01bd61e21c8eb49ef0", 0x92}, {&(0x7f0000000d40)}, {&(0x7f0000000d80)="defe4b58c8f16273d515d5abe22b03af842273e4721d7481173ace0ab65b040cfb466a24c65a25f29d0b33fc7909379bc4f373f7f32f7374b500e891da45438a6ec1403f36ae960223e2e1bc52871081d72cf3616c67d1bfb8f1bd9dea4ef750ccf0bdddf86575f8d64f0cabb1019532e5c335d3e0d41d6d8431fe7b38e85d0f6e9591cb29a42919847514299f45213447cbd5abf87b013a953cee903b11f15f50c1e0cedaea3a68082b6a8f4ba06980398daf19006f709f1ad6", 0xba}, {&(0x7f0000000e40)="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", 0x1000}, {&(0x7f0000001e40)="357955887da3a3baa9c745408bc207c1cb157c14418e38917a6c669f43a87d0a4c54036210144a016b80fa72744ed8461e78da42b2fcad21941be0f559b8587a4daa5524488863fbf3e29ccb2bd6317aec199a51b0713a289cda9271d0e6170244f288214541f53486df874605eb8de67b9e3f775d9932e316602325189bb21241782ff2a759bb720fc8", 0x8a}, {&(0x7f0000001f00)="df344262c90d0f9d512fc180e3794284bfb6047e40dec5453494e8a52b8be2897490be5f69bf692d344f0d0fe4e4bc7310f5e0365693345b235a213a3efa135a38770950e5db9a11a3354b22b1b84560c97d", 0x52}, {&(0x7f0000001f80)="12ad64379516d0357fb738a51bd6a8bef68717591b4e97ccd0818444c00c18d65929aea8b4fb62abb1b0ed9e228409b7ef288db1918ca4ad7160f46fd70a1969429ae08958157f0a63efe0f06b80b0d2629aff7381fb1aef246ef0986134856a819e6a89b3d83679b1654c3f5f7094aad9deaed523e0b50dbccb7eda0bcd49b3a932c08ef05a9369d397d21286f9206bddd40e5842a790298cd86d2ed12dcaf6e4e8f063e0c109c529986017a2702bfe53b3090ad80c2968feab8f4dc96522b0b47f2f920a8d78025bea6855daeebac801d16a86fd2bd736a52512c22a", 0xdd}, {&(0x7f0000002080)="3fee2f16acac58a8e3ba97b93a94375a7970e9eb75759278a893576eed5d84fdb49453a6ce02726bbf0625894d4c693316a2f3e45dd19147da86f376a51b2d8a433d512c293de72cf2742c387f200d96f655819cd4743480122cf177ed88bc09cf11791756ec509ddaa5060799a1e23adc601f5d2f18530fdce90806687195f8a793d363bdf9cea685f43bdea67a60dc5cbff1c842e2c90f1c8130b5488b81fac9232f662c79c79b5fd4020c099d128f15c82647021d29eb0dd53a3615ba03036dbfe0371f6c8ca8fca9874be17caa74e96ebe2aa35f8de39ee1098eb9cffaea78a9a9d852933b07", 0xe8}], 0x9, &(0x7f0000002400)=[@rights={0x28, 0x1, 0x1, [r0, r0, r0, r0, r0, r0]}, @rights={0x18, 0x1, 0x1, [r0, r0]}, @cred={0x20, 0x1, 0x2, r15, r16, r17}, @rights={0x38, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0, r0, r0]}], 0x98, 0x4000}, {&(0x7f00000024c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002980)=[{&(0x7f0000002540)="50e874f4", 0x4}, {&(0x7f0000002580)="19f1ba377266687ceb35da8df303a67f60784af610d6319f48750044ed8989ddc02f966ebe0d3f4bb065920deeaaab8abb8c38734f92ea66d0", 0x39}, {&(0x7f00000025c0)="bf4c8ac557f246e9898e9322ad223f1a53ef2fab2d7e0c919a7706787f9fb2933635856d997d3d4475c0cd6fced7cc9439e9f2b1e1f8b81d740cbfc972e313b77cd2b0a9b09f179c334ffcb62aa1966bd66608be54b81b877ccd6a9a1fad160214f688d948de7b960794032d49ed2a63a5c457577ffb324849", 0x79}, {&(0x7f0000002640)="c97582886dad8a418bdec23a97ad89abaf00e2325c5cced3c9e13556581dec37835b3d4579ae984cce9187354fa36557a3f55f4202459d4efbaab39ff8990234000f73b344509b46f135fb8575c64e39a09e8436be19e9465eee3745c9f1dd98792ba7b81e197b231a532bb8202db0a88f6c3380cf7ab4d675ff5252a73f01157b2ca8356346a142507a8c2df7f779741b38b33a4a9062406f2228848ec40f810ac7c950c95d91405bd46a6538830fa33ff89fac49898bb721420eb1be57a2b2455d5794d5634a620908cd4956f71a12c66213c54d93dcf20dd9c8f326781d57031e9c378f136a39", 0xe8}, {&(0x7f0000002740)="4e87c10c700848409a0df25ed3e7511b2ba88ab389c4b875d56f242dc8f3be83f8c3cea81ec5f4d31295188376b0888dfbeb26a483c3e2c5bbe635c91cae0be84ec2ff54c7738364d8e7ba631d567771f11418ee856fe65dc45a2c7bee47274d3defa715e59dabbb336e93521aeb18d1393f3b8aa33c95d9da7527bd", 0x7c}, {&(0x7f00000027c0)="390db62ba528060b0391da606c82f7a9ca8e9909f4df718e65614379ca6a6c54b209ce835630afc2c0c94e471c2a094533487850204630c21f633c0322bf84ca7a8914e3bb002b78fdf5fda3ddbd6138c0bc4db45c495a4043876ea0f037131495e171a41f7c65e2fdf5c2e9a2c30ef6edc4", 0x72}, {&(0x7f0000002840)}, {&(0x7f0000002880)="8a047997798d859a1ea1490020b27cb40c3f05265db68a7e421567ea88df223913e987e7f32d4328e34180ce596f1e4b80f893904269a80e1f7ad4b63c1637da67e738d8e6c912eb33206028a5981f75a139ee845b26bc9bd2da03c303d53eccbe6193307bdbfbb0ebf79f56ec881badf2b2b9d38728fff1d245c7228086396bfdaf122e44a11c1d93a6cada0cd0edc536533d780b36d2f5919e546e640e48925f896740d6", 0xa5}, {&(0x7f0000002940)="05cfc63b51c3e9ad5a371483c4a345", 0xf}], 0x9, &(0x7f0000002e00)=[@cred={0x20, 0x1, 0x2, r18, r19, r20}, @cred={0x20, 0x1, 0x2, r21, r22}, @rights={0x18, 0x1, 0x1, [r0]}, @cred={0x20, 0x1, 0x2, r23, r24, r25}], 0x78, 0x20000000}, {&(0x7f0000002e80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000004200)=[{&(0x7f0000002f00)="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", 0x1000}, {&(0x7f0000003f00)="26a773ba74f0892492bb992cfa98683d70a9f9d87fb0de6a243803aaceadc6c041564662e42edbe36d3b6781844a36d45658cc72aa9b829c7bd6760dc92e88eb7a53dc7788dd0e1757999a2f044768e1809832d1c18658b37d729687372ec5760d9226f1eca705f3752c02ef0a2bbd690870db83f81aab3e2e53d5180f2c009828a4d875866df6a330ef3c2f3656bb572629e5d6df614124e1ba557874c873cd203ce013d46f726371082f1266dfc271e3058b6d5e93d19b8112591051d61444c1a707450b30450ebcca56788696df851b8a1e5a068ba90cc058c7d41dd1af", 0xdf}, {&(0x7f0000004000)="056a08d650f1ec7362560c3c0ad9f0c5c038e82c80a07e8118648a69afc0d06494", 0x21}, {&(0x7f0000004040)="e0ebbe15bdb6b05d070c33d4ecf7ea0c887cfd8c2415240b2660782cc37f638e9459f9e4eaabb71479a8a4dbfcc6d27e83544be397f02896e6ff2794ced0b39be8a5f4678d67379a087c704ff375c0bf855cd4f9934688b27a97e590ffe1bd8dfa6d1e1858710585c0d0816b9a35c166440459f7a432f1287fe5b35e502bdc66f7b60cfc25bc09ed5fbe3947d41c1eac03227eb592004fdda5a7bde3a2056d1c9df3ef850b4ff9e5ca26d565", 0xac}, {&(0x7f0000004100)="4950ac00de88321567eceedcfc85f05592eb1bb70b52ac8a90351f64ca9424c9f76b06f1fcf3635d26d244e27dc4c810803155973213da871ad7bf4459222baa20cd6f8c254cc624d9b7d1ea1732c7432fefaee244b7a7e76fec9e30e52b93799e963fe4846ebc4e37336600a70e8ae1e84db1d262cadcf743bbc883831fd8593888c1aa39396d77406b5e58c055edb771aa11210dbcd4a025c588029941a84edffe7b4be710e4a493e47c1c5c96f7662f34af0f8166b52d73824be3d5563af9ba3c3dd8d742515c1bd332", 0xcb}], 0x5, &(0x7f0000004480)=[@cred={0x20, 0x1, 0x2, r26, r27, r28}, @rights={0x20, 0x1, 0x1, [r0, r0, r0, r0]}], 0x40, 0x8081}], 0x4, 0x0)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000f86000)={0x2, 0x2004, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, [@sadb_sa={0x2, 0x1}]}, 0x20}, 0x1}, 0x0)

2018/05/02 02:14:44 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb)
setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000788ffc)=0x100000001, 0xfdf6)
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000580)='/dev/mixer\x00', 0x1118c0, 0x0)
clock_gettime(0x0, &(0x7f00000005c0)={<r2=>0x0, <r3=>0x0})
timerfd_settime(r1, 0x0, &(0x7f0000000600)={{0x77359400}, {r2, r3+10000000}}, &(0x7f0000000640))
bind$inet(r0, &(0x7f0000738ff0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10)
sendto$inet(r0, &(0x7f0000000b40)="ac", 0x1, 0x20020003, &(0x7f0000000b00)={0x2, 0x4e21, @loopback=0x7f000001}, 0x10)
r4 = syz_open_dev$sndpcmp(&(0x7f0000000500)='/dev/snd/pcmC#D#p\x00', 0xfffffffffffffff9, 0x4000)
mkdirat$cgroup(r4, &(0x7f0000000540)='syz1\x00', 0x1ff)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000280)='/dev/audio\x00', 0x10000, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffff9c, 0xc0086420, &(0x7f00000002c0)={<r6=>0x0})
ioctl$DRM_IOCTL_DMA(r5, 0xc0406429, &(0x7f0000000400)={r6, 0x2, &(0x7f0000000300)=[0xfffffffffffffffe, 0x9], &(0x7f0000000340)=[0x7], 0x30, 0x2, 0x28, &(0x7f0000000380)=[0x3, 0x2], &(0x7f00000003c0)=[0x1, 0x80000000, 0x3ea, 0xfffffffffffffc06, 0x24d, 0x9]})
setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000f43ffc)=0xfffffffffffffffc, 0x4)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.net/syz1\x00', 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000240)={r7, 0x3, 0x0, 0x641, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6}, 0x20)
sendto$inet(r0, &(0x7f0000000200)="9a", 0x1, 0x91, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080)={0x0, 0x7fff, 0x80000001}, 0x14)
ioctl$sock_inet_tcp_SIOCATMARK(r0, 0x8905, &(0x7f00000004c0))
init_module(&(0x7f0000000440)='./cgroup.net/syz1\x00', 0x12, &(0x7f0000000480)='tls\x00')
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10)
sendto$inet(r0, &(0x7f00000000c0)="92", 0x1, 0x40447fd, &(0x7f0000000040)={0x2, 0x4e24, @dev={0xac, 0x14}}, 0x10)
setsockopt$inet_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000140)='tls\x00', 0x4)

[  592.997670] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  593.006322] 16214 total pagecache pages
[  593.010348] 0 pages in swap cache
[  593.013861] Swap cache stats: add 0, delete 0, find 0/0
[  593.019271] Free swap  = 0kB
[  593.022346] Total swap = 0kB
[  593.025408] 1965969 pages RAM
[  593.028567] 0 pages HighMem/MovableOnly
[  593.032588] 339347 pages reserved
[  593.084311] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  593.096136] syz-executor4 cpuset=syz4 mems_allowed=0
[  593.101390] CPU: 1 PID: 30464 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  593.108678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  593.118038] Call Trace:
[  593.120643]  dump_stack+0x1b9/0x294
[  593.124288]  ? dump_stack_print_info.cold.2+0x52/0x52
[  593.129499]  warn_alloc.cold.118+0xb2/0x1b8
[  593.133814]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  593.138677]  __vmalloc_node_range+0x45e/0x750
[  593.143167]  ? graph_lock+0x170/0x170
[  593.146961]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  593.151793]  __vmalloc_node_flags_caller+0x75/0x90
[  593.156734]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  593.161571]  kvmalloc_node+0xde/0x100
[  593.165364]  kvm_arch_create_memslot+0xa3/0x4e0
[  593.170048]  __kvm_set_memory_region+0x1d1b/0x2e50
[  593.174983]  ? kvm_vcpu_block+0x1050/0x1050
[  593.179299]  ? zap_class+0x720/0x720
[  593.183028]  ? graph_lock+0x170/0x170
[  593.186838]  ? find_held_lock+0x36/0x1c0
[  593.190899]  ? lock_downgrade+0x8e0/0x8e0
[  593.195084]  kvm_set_memory_region+0x2e/0x50
[  593.199486]  kvm_vm_ioctl+0x668/0x1d90
[  593.203361]  ? __lock_acquire+0x7f5/0x5140
[  593.207591]  ? kvm_set_memory_region+0x50/0x50
[  593.212174]  ? debug_check_no_locks_freed+0x310/0x310
[  593.217353]  ? perf_trace_lock+0xd6/0x900
[  593.221497]  ? zap_class+0x720/0x720
[  593.225202]  ? print_usage_bug+0xc0/0xc0
[  593.229257]  ? graph_lock+0x170/0x170
[  593.233065]  ? find_held_lock+0x36/0x1c0
[  593.237125]  ? lock_downgrade+0x8e0/0x8e0
[  593.241268]  ? rcu_is_watching+0x85/0x140
[  593.245410]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  593.250605]  ? __fget+0x40c/0x650
[  593.254055]  ? do_raw_spin_unlock+0x1/0x2e0
[  593.258369]  ? expand_files.part.8+0x9a0/0x9a0
[  593.262944]  ? kasan_check_write+0x14/0x20
[  593.267167]  ? do_raw_spin_lock+0xc1/0x200
[  593.271407]  ? _raw_spin_unlock+0x22/0x30
[  593.275548]  ? kvm_set_memory_region+0x50/0x50
[  593.280124]  do_vfs_ioctl+0x1cf/0x16a0
[  593.284007]  ? ioctl_preallocate+0x2e0/0x2e0
[  593.288415]  ? fget_raw+0x20/0x20
[  593.291868]  ? lock_downgrade+0x8e0/0x8e0
[  593.296006]  ? finish_task_switch+0x182/0x810
[  593.300503]  ? security_file_ioctl+0x94/0xc0
[  593.304907]  ksys_ioctl+0xa9/0xd0
[  593.308352]  __x64_sys_ioctl+0x73/0xb0
[  593.312244]  do_syscall_64+0x1b1/0x800
[  593.316128]  ? finish_task_switch+0x1ca/0x810
[  593.320614]  ? syscall_return_slowpath+0x5c0/0x5c0
[  593.325545]  ? syscall_return_slowpath+0x30f/0x5c0
[  593.330468]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  593.335826]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  593.340672]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  593.345850] RIP: 0033:0x455979
[  593.349029] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  593.356739] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  593.363998] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  593.371259] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  593.378516] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  593.385771] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:44 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000000a040000d0"], 0x1)

2018/05/02 02:14:44 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000200000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:44 executing program 7:
r0 = socket(0x2, 0x40000000000007fe, 0x7fffffff)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000000)=0x1, 0x4)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/anycast6\x00')
preadv(r1, &(0x7f000055ff80)=[{&(0x7f00002f0f89)=""/204, 0xcc}], 0x1, 0xcc000000)
ioctl$SG_GET_LOW_DMA(r1, 0x227a, &(0x7f0000000040))

2018/05/02 02:14:44 executing program 2:
perf_event_open(&(0x7f0000b5a000)={0x4000000002, 0x78, 0x1e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setrlimit(0xc, &(0x7f00000000c0)={0xcd98, 0x1})
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000106}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0xb8, r1, 0x308, 0x70bd2b, 0x25dfdbfb, {0xb}, [@IPVS_CMD_ATTR_SERVICE={0x14, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_DAEMON={0x58, 0x3, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x8b3}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote={0xfe, 0x80, [], 0xbb}}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback=0x7f000001}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x73}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7ff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7fffffff}]}, 0xb8}, 0x1, 0x0, 0x0, 0x1}, 0x40)
sendmsg$nl_generic(r0, &(0x7f0000000180)={&(0x7f0000001580)={0x10}, 0xc, &(0x7f00000015c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1400e9ff21000501000000000000000001000000520670f5a204f72e06708e21700e0d961ce3749e7a10f4c95e3b17900cd2f62a90530f431b8d10487246975359b2d30e990000000000"], 0x14}, 0x1}, 0x0)
close(r0)

2018/05/02 02:14:44 executing program 1:
r0 = syz_open_dev$sg(&(0x7f0000000180)='/dev/sg#\x00', 0x0, 0x0)
ioctl(r0, 0x1275, &(0x7f0000fe7000))
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000000)=0x5)

2018/05/02 02:14:44 executing program 5:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x100, 0x0)
accept4$llc(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000140)=0x10, 0x800)
r2 = openat$cgroup_int(r0, &(0x7f0000000080)='cpuset.cpus\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000040)={[0x2d]}, 0x1)

2018/05/02 02:14:44 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x2b51c, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:44 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x200000000})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f00000000c0)={r1})
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r2, r0, 0x0)

[  593.526727] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  593.538687] syz-executor4 cpuset=syz4 mems_allowed=0
[  593.543888] CPU: 1 PID: 30490 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  593.551167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  593.560525] Call Trace:
[  593.563127]  dump_stack+0x1b9/0x294
[  593.566775]  ? dump_stack_print_info.cold.2+0x52/0x52
[  593.571982]  ? kasan_check_read+0x11/0x20
[  593.576162]  warn_alloc.cold.118+0xb2/0x1b8
[  593.580497]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  593.585352]  ? trace_hardirqs_on+0xd/0x10
[  593.589512]  ? _raw_spin_unlock_irq+0x27/0x70
[  593.594018]  ? finish_task_switch+0x1ca/0x810
[  593.598535]  ? lock_repin_lock+0x410/0x410
[  593.602793]  __vmalloc_node_range+0x45e/0x750
[  593.607299]  ? graph_lock+0x170/0x170
[  593.611109]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  593.615961]  __vmalloc_node_flags_caller+0x75/0x90
[  593.620902]  ? kvm_arch_create_memslot+0xa3/0x4e0
2018/05/02 02:14:44 executing program 5:
r0 = socket$packet(0x11, 0x6, 0x300)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0xa000, 0x0)
connect$nfc_llcp(r1, &(0x7f0000000080)={0x27, 0x0, 0x2, 0x0, 0x100000001, 0x2, "cb0dd9879546e791d0a5b5fcae7941839430435056d164d156b05b8d2e78bf14047883245b504abaac1108639e6c6aedfbee8a36c6c4914336cdba290d0595", 0x28}, 0x60)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00004acffc), 0x4)
close(r0)

2018/05/02 02:14:44 executing program 1:
r0 = request_key(&(0x7f0000000500)='id_legacy\x00', &(0x7f0000000540)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000580)='user\x00', 0xfffffffffffffffb)
r1 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a}, 0x0, 0x0, r0)
r2 = syz_open_dev$adsp(&(0x7f0000000400)='/dev/adsp#\x00', 0x3, 0x20000)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={r2, 0x3, 0x1, 0xbcd0, &(0x7f0000000440)=[0x0], 0x1}, 0x20)
msgget$private(0x0, 0x204)
r4 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000000)={0x73, 0x79, 0x7a}, 0x0, 0x0, r1)
r5 = add_key$user(&(0x7f00003bd000)='user\x00', &(0x7f00000003c0)={0x73, 0x79, 0x7a}, &(0x7f0000facfff)="01", 0x1, r4)
pivot_root(&(0x7f0000000780)='./file0\x00', &(0x7f00000007c0)='./file0\x00')
r6 = syz_open_dev$dspn(&(0x7f0000000900)='/dev/dsp#\x00', 0x7, 0x2200)
ioctl$BLKTRACETEARDOWN(r6, 0x1276, 0x0)
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000800)={0x6cb, 0x100000000})
r7 = add_key$user(&(0x7f0000fc0ffb)='user\x00', &(0x7f0000752ffb)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000300)="b3", 0xffffffffffffff23, r4)
openat$dir(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x400000, 0x2)
keyctl$update(0x2, r7, &(0x7f0000000240)="df02754613da494137e175e9f2780ac5e2a09f43a1fcebf272a5a135c092bf4a9033933824f6e6aa023895113293535d1c0066d20e0f275188b4b4c187e18774fc2227cbb60fc6697f5337724364c8fbe1181e6d50986cd98a5c44ac0ec375deb27eafcf7d06438f252510d87bd91d03e7dc2faed85adcd88ca30e75b1e143a72d94defa187e48b89efbbbcc9b9a9a307353df7a21affce4e9149eb122cbc356cb681365afd979e97b57b596e901864a68679f00000000000000000000000000", 0xc0)
clock_gettime(0x0, &(0x7f0000000140)={<r8=>0x0, <r9=>0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r2, 0xc4c85512, &(0x7f0000000940)={{0x3, 0x5, 0x7, 0x5b, "0383a2ff3254da2d03535e86a2418d255eb17f8b6e7bfcee136939f729595359902c02de551ce96f1f57b12e", 0x9}, 0x5, [0x2, 0x80000001, 0x7, 0xdbb, 0x6, 0x5, 0xb3, 0x10000, 0xae0b, 0x9, 0x8, 0x101, 0x3, 0x8, 0x6, 0x7ff, 0x0, 0xfffffffffffffffb, 0x9, 0x6, 0x0, 0x80000001, 0x117a, 0x100000000, 0x20, 0x48f, 0x14a, 0x800, 0xffffffff, 0xfffffffffffff6ef, 0x5, 0x7ff, 0x800, 0x4000000, 0xfffffffffffffff8, 0x10001, 0x1ff, 0x6, 0x5f1, 0x800, 0x7, 0x0, 0x6, 0xa76, 0x0, 0x3f, 0x647, 0x0, 0x6d, 0x100, 0x8, 0x3, 0x5, 0x4, 0xfff, 0x8000, 0x5, 0x5, 0x3b, 0xff, 0x6f, 0x20, 0x3, 0x6, 0x4f27, 0x80000001, 0x5, 0x4, 0x1000, 0x2, 0xfffffffffffffffd, 0x497, 0x0, 0xbf23, 0x0, 0x81, 0x0, 0x7, 0x4cf, 0xd9c6, 0x8000, 0x4, 0xa6c4, 0xfffffffffffffffd, 0x3f, 0x100, 0x100000001, 0x5, 0x5, 0x80, 0x1, 0x1f, 0x100000001, 0x9, 0x6, 0x80000000, 0x7, 0x7fffffff, 0x3, 0x81, 0x6, 0x2, 0x400, 0x6, 0x8129, 0xffffffffffff8552, 0x0, 0x1, 0x1, 0xfff, 0x5, 0x5b4e, 0xff, 0x1000, 0x90, 0x5, 0x2, 0xfffffffffffffff8, 0x2, 0x200, 0x3ff, 0x0, 0x1000, 0x4, 0x7, 0x8001, 0x1f, 0x8], {r8, r9+10000000}})
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$EVIOCGABS0(r6, 0x80184540, &(0x7f0000000600)=""/222)
linkat(r6, &(0x7f0000000340)='./file0\x00', r3, &(0x7f00000005c0)='./file0\x00', 0x1000)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r5, r0, r5}, &(0x7f0000000200)=""/5, 0x5, &(0x7f00000001c0)={&(0x7f0000000180)={'wp384-generic\x00'}})
ioctl$DRM_IOCTL_MODE_SETCRTC(r6, 0xc06864a2, &(0x7f0000000700)={&(0x7f0000000380)=[0x0, 0x20], 0x2, 0x100000001, 0x26, 0xa9f4, 0xffffffff, 0x3, {0x5, 0x9ad, 0x1, 0x0, 0x5, 0x10000, 0xffff, 0x1, 0xff, 0x6, 0x81, 0x37e, 0x9, 0xfc29, "8d6910c845154e7f6f6946764525c9bf5b74657774883ba46ea81df3fec9699b"}})

2018/05/02 02:14:44 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000007040000d0"], 0x1)

[  593.625757]  kvmalloc_node+0xde/0x100
[  593.629569]  kvm_arch_create_memslot+0xa3/0x4e0
[  593.634260]  __kvm_set_memory_region+0x1d1b/0x2e50
[  593.639303]  ? kvm_vcpu_block+0x1050/0x1050
[  593.643643]  ? check_same_owner+0x320/0x320
[  593.647979]  ? do_raw_spin_unlock+0x9e/0x2e0
[  593.652404]  ? rcu_note_context_switch+0x710/0x710
[  593.657340]  ? lock_acquire+0x1dc/0x520
[  593.661325]  ? graph_lock+0x170/0x170
[  593.665135]  ? __might_sleep+0x95/0x190
[  593.669131]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  593.674676]  ? futex_wait_queue_me+0x550/0x820
[  593.679271]  ? refill_pi_state_cache.part.7+0x300/0x300
[  593.684645]  ? find_held_lock+0x36/0x1c0
[  593.688710]  ? lock_downgrade+0x8e0/0x8e0
[  593.692899]  kvm_set_memory_region+0x2e/0x50
[  593.697306]  kvm_vm_ioctl+0x668/0x1d90
[  593.701190]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  593.706285]  ? futex_wake+0x2f6/0x750
[  593.710079]  ? kvm_set_memory_region+0x50/0x50
[  593.714656]  ? get_futex_key+0x1e90/0x1e90
[  593.718900]  ? kasan_check_write+0x14/0x20
[  593.723125]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  593.728304]  ? do_futex+0x249/0x27d0
[  593.732006]  ? kasan_check_write+0x14/0x20
[  593.736234]  ? graph_lock+0x170/0x170
[  593.740040]  ? exit_robust_list+0x290/0x290
[  593.744361]  ? find_held_lock+0x36/0x1c0
[  593.748429]  ? lock_downgrade+0x8e0/0x8e0
[  593.752572]  ? kasan_check_read+0x11/0x20
[  593.756706]  ? rcu_is_watching+0x85/0x140
[  593.760843]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  593.766040]  ? __fget+0x40c/0x650
[  593.769488]  ? expand_files.part.8+0x9a0/0x9a0
[  593.774058]  ? lock_downgrade+0x8e0/0x8e0
[  593.778194]  ? __split_vma+0x5ac/0x7f0
[  593.782076]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  593.787602]  ? vma_set_page_prot+0x239/0x300
[  593.792001]  ? kvm_set_memory_region+0x50/0x50
[  593.796581]  do_vfs_ioctl+0x1cf/0x16a0
[  593.800462]  ? ioctl_preallocate+0x2e0/0x2e0
[  593.804863]  ? fget_raw+0x20/0x20
[  593.808317]  ? __x64_sys_futex+0x477/0x680
[  593.812542]  ? do_futex+0x27d0/0x27d0
[  593.816330]  ? security_file_ioctl+0x94/0xc0
[  593.820731]  ksys_ioctl+0xa9/0xd0
[  593.824179]  __x64_sys_ioctl+0x73/0xb0
[  593.828057]  do_syscall_64+0x1b1/0x800
[  593.831932]  ? finish_task_switch+0x1ca/0x810
[  593.836428]  ? syscall_return_slowpath+0x5c0/0x5c0
[  593.841349]  ? syscall_return_slowpath+0x30f/0x5c0
[  593.846272]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  593.851638]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  593.856474]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  593.861650] RIP: 0033:0x455979
[  593.864824] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  593.872525] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  593.880339] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  593.887596] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  593.894876] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  593.902131] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  593.909748] warn_alloc_show_mem: 1 callbacks suppressed
[  593.909755] Mem-Info:
[  593.917632] active_anon:73972 inactive_anon:75 isolated_anon:0
2018/05/02 02:14:45 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$TCXONC(r1, 0x540a, 0x4)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
read(r2, &(0x7f0000000100)=""/5, 0x5)
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
r4 = dup3(r2, r0, 0x0)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f00000000c0)={0xe21}, 0x4)

[  593.917632]  active_file:3749 inactive_file:12389 isolated_file:0
[  593.917632]  unevictable:0 dirty:171 writeback:0 unstable:0
[  593.917632]  slab_reclaimable:10661 slab_unreclaimable:107000
[  593.917632]  mapped:73880 shmem:88 pagetables:1098 bounce:0
[  593.917632]  free:1324807 free_pcp:400 free_cma:0
2018/05/02 02:14:45 executing program 7:
r0 = gettid()
r1 = syz_open_procfs(r0, &(0x7f00000000c0)='clear_refs\x00')
ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f0000000000)={<r2=>0x0})
ioctl$DRM_IOCTL_NEW_CTX(r1, 0x40086425, &(0x7f0000000080)={r2, 0x2})
exit(0xfffffffffffffffe)
writev(r1, &(0x7f0000000040)=[{&(0x7f0000962000)='5', 0xfffffffffffffe70}], 0xe3)
accept4$netrom(r1, &(0x7f0000000100), &(0x7f0000000140)=0x10, 0x80800)

[  593.951332] Node 0 active_anon:295888kB inactive_anon:300kB active_file:14996kB inactive_file:49556kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295520kB dirty:684kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 137216kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  593.979501] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  594.008144] lowmem_reserve[]: 0 2830 6335 6335
[  594.012806] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:84kB free_cma:0kB
[  594.040509] lowmem_reserve[]: 0 0 3505 3505
[  594.044909] Node 0 Normal free:2372108kB min:37300kB low:46624kB high:55948kB active_anon:306260kB inactive_anon:300kB active_file:14996kB inactive_file:49556kB unevictable:0kB writepending:684kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5696kB pagetables:4392kB bounce:0kB free_pcp:1008kB local_pcp:620kB free_cma:0kB
[  594.074949] lowmem_reserve[]: 0 0 0 0
[  594.078830] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  594.092579] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  594.108526] Node 0 Normal: 2058*4kB (UME) 2898*8kB (UME) 3429*16kB (UME) 3054*32kB (UME) 1466*64kB (UME) 211*128kB (UM) 192*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 44*2048kB (UM) 438*4096kB (UM) = 2363080kB
2018/05/02 02:14:45 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000009f040000d0"], 0x1)

[  594.127513] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  594.136137] 16225 total pagecache pages
[  594.140185] 0 pages in swap cache
[  594.143680] Swap cache stats: add 0, delete 0, find 0/0
[  594.149094] Free swap  = 0kB
[  594.152136] Total swap = 0kB
[  594.155188] 1965969 pages RAM
[  594.158314] 0 pages HighMem/MovableOnly
[  594.162315] 339347 pages reserved
[  594.182830] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  594.194818] syz-executor4 cpuset=syz4 mems_allowed=0
[  594.200068] CPU: 1 PID: 30520 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  594.207379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  594.216743] Call Trace:
[  594.219353]  dump_stack+0x1b9/0x294
[  594.223000]  ? dump_stack_print_info.cold.2+0x52/0x52
[  594.228206]  ? perf_trace_lock_acquire+0xe3/0x980
[  594.233072]  warn_alloc.cold.118+0xb2/0x1b8
[  594.237410]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  594.242256]  ? trace_hardirqs_on+0xd/0x10
[  594.246397]  ? _raw_spin_unlock_irq+0x27/0x70
[  594.250883]  ? finish_task_switch+0x1ca/0x810
[  594.255390]  __vmalloc_node_range+0x45e/0x750
[  594.259881]  ? graph_lock+0x170/0x170
[  594.263674]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  594.268507]  __vmalloc_node_flags_caller+0x75/0x90
[  594.273431]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  594.278269]  kvmalloc_node+0xde/0x100
[  594.282064]  kvm_arch_create_memslot+0xa3/0x4e0
[  594.286737]  __kvm_set_memory_region+0x1d1b/0x2e50
[  594.291671]  ? kvm_vcpu_block+0x1050/0x1050
[  594.295988]  ? zap_class+0x720/0x720
[  594.299698]  ? perf_trace_lock+0x900/0x900
[  594.303924]  ? lock_acquire+0x1dc/0x520
[  594.307892]  ? graph_lock+0x170/0x170
[  594.311684]  ? __might_sleep+0x95/0x190
[  594.315653]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  594.321183]  ? futex_wait_queue_me+0x550/0x820
[  594.325760]  ? refill_pi_state_cache.part.7+0x300/0x300
[  594.331207]  ? find_held_lock+0x36/0x1c0
[  594.335270]  ? lock_downgrade+0x8e0/0x8e0
[  594.339439]  kvm_set_memory_region+0x2e/0x50
[  594.343842]  kvm_vm_ioctl+0x668/0x1d90
[  594.347718]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  594.352829]  ? futex_wake+0x2f6/0x750
[  594.356624]  ? kvm_set_memory_region+0x50/0x50
[  594.361198]  ? get_futex_key+0x1e90/0x1e90
[  594.365430]  ? perf_trace_lock+0xd6/0x900
[  594.369568]  ? perf_trace_lock_acquire+0xe3/0x980
[  594.374403]  ? zap_class+0x720/0x720
[  594.378110]  ? perf_trace_lock+0x900/0x900
[  594.382335]  ? do_futex+0x249/0x27d0
[  594.386044]  ? graph_lock+0x170/0x170
[  594.389846]  ? exit_robust_list+0x290/0x290
[  594.394162]  ? find_held_lock+0x36/0x1c0
[  594.398224]  ? lock_downgrade+0x8e0/0x8e0
[  594.402371]  ? rcu_is_watching+0x85/0x140
[  594.406510]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  594.411709]  ? __fget+0x40c/0x650
[  594.415157]  ? do_raw_spin_unlock+0x1/0x2e0
[  594.419469]  ? expand_files.part.8+0x9a0/0x9a0
[  594.424047]  ? kasan_check_write+0x14/0x20
[  594.428281]  ? do_raw_spin_lock+0xc1/0x200
[  594.432512]  ? _raw_spin_unlock+0x22/0x30
[  594.436650]  ? kvm_set_memory_region+0x50/0x50
[  594.441222]  do_vfs_ioctl+0x1cf/0x16a0
[  594.445104]  ? ioctl_preallocate+0x2e0/0x2e0
[  594.449506]  ? fget_raw+0x20/0x20
[  594.452959]  ? __x64_sys_futex+0x477/0x680
[  594.457186]  ? do_futex+0x27d0/0x27d0
[  594.460985]  ? security_file_ioctl+0x94/0xc0
[  594.465390]  ksys_ioctl+0xa9/0xd0
[  594.468841]  __x64_sys_ioctl+0x73/0xb0
[  594.472721]  do_syscall_64+0x1b1/0x800
[  594.476603]  ? syscall_return_slowpath+0x5c0/0x5c0
[  594.481531]  ? syscall_return_slowpath+0x30f/0x5c0
[  594.486454]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  594.491906]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  594.496742]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  594.501919] RIP: 0033:0x455979
[  594.505103] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  594.512805] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  594.520061] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  594.527319] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  594.534580] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  594.541848] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:46 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000a8040000d0"], 0x1)

2018/05/02 02:14:46 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00')
pread64(r0, &(0x7f00000000c0)=""/8, 0x8, 0x40000000)
fcntl$getflags(r0, 0xb)

2018/05/02 02:14:46 executing program 1:
r0 = syz_open_dev$sndseq(&(0x7f0000dcc000)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000fb6000)=""/28, 0x1c)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "0a4ceaa05d9a00000000000000039b3fd4cec307e8ef3d13eb790ec9c65abaf90d229db692542e5b78f8b29e0a27800f0000000000000009fb42f376589701a4", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x40a85321, &(0x7f0000000080)={0x80})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000100))
mkdirat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x155)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer2\x00', 0x0, 0x0)

2018/05/02 02:14:46 executing program 2:
r0 = dup3(0xffffffffffffffff, 0xffffffffffffff9c, 0x80000)
openat(r0, &(0x7f0000000480)='./file0\x00', 0x410080, 0x0)
ioprio_set$pid(0x0, 0x0, 0x58f9)
ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f00000004c0)=""/224)
r1 = getpgrp(0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x800, 0x8)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f0000000100)={{0x5f6f257, 0x0, 0x10001, 0x10000, "df800aebae324b0142e0e392fb5767a9105ee05b9fb85e7adc0e93a3180cc397d6bebe44a6cf4debb3247ee8", 0x63501bf}, 0x0, 0x0, 0x3, r1, 0x8, 0x2, "d8cfe1c718534875da8c45030b10118f873ba5e7085152741fed51efc04776c2cbf705d530a74e837f1963cce82ea0c75d350dffbf8a3e55999a63ff947d16c0", &(0x7f00000000c0)='gretap0\x00', 0x8, [], [0x3d, 0xffffffffffffffae, 0x3, 0x7]})
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f00000002c0)={<r3=>0x0, @in={{0x2, 0x4e20, @local={0xac, 0x14, 0x14, 0xaa}}}, 0x5, 0x7, 0x22, 0xfffffffffffffffa}, &(0x7f0000000380)=0x98)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f00000003c0)={r3, @in={{0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x7ff, 0x40}, 0x90)
truncate(&(0x7f0000000240)='./file0\x00', 0x4)
r4 = socket$vsock_dgram(0x28, 0x2, 0x0)
r5 = open(&(0x7f0000000280)='./file0\x00', 0x100, 0xa)
ioctl$sock_inet_SIOCSIFNETMASK(r4, 0x891c, &(0x7f0000000080)={'gretap0\x00', {0x2, 0x4e23, @broadcast=0xffffffff}})
sysfs$1(0x1, &(0x7f0000000040)='\x00')
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x1000000000001, 0xb, 0x8400000000003, 0xffffbfdf00000005}, 0x2c)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r6, &(0x7f0000000040), &(0x7f0000000100)}, 0x20)
inotify_init()
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000100)={r6, &(0x7f0000000040), &(0x7f0000000280)=""/231}, 0x18)
ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r2, 0xc1105511, &(0x7f00000006c0)={{0x4, 0x4, 0xff, 0x1, "f378c11dc6f1a8531e68d8a9a131aea9663c4a3d82d6ebe533ca1624a2dbc77dea69cf49d6a0da88c643ca56", 0x8}, 0x0, 0x0, 0x5, r1, 0x5, 0x80000000, "16bfce594b03f272e28557f24ffb4d9b507254a40fd56b392150a1f11d5f405c768db96aabd4c968b8c914f99c5e1cc29177bbd4c65af4817da84e9bb63566b7", &(0x7f0000000680)='gretap0\x00', 0x8, [], [0x0, 0x5, 0x8, 0xffff]})
openat$pfkey(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/self/net/pfkey\x00', 0x400080, 0x0)
prctl$setptracer(0x59616d61, r1)
getsockopt$ax25_int(r0, 0x101, 0xf, &(0x7f00000008c0), &(0x7f0000000800)=0x4)
tkill(r1, 0xf)
ioctl$sock_inet_SIOCSIFNETMASK(r5, 0x891c, &(0x7f0000000040)={'ifb0\x00', {0x2, 0x4e22, @multicast2=0xe0000002}})

2018/05/02 02:14:46 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x1903000000000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:46 executing program 5:
mmap(&(0x7f0000000000/0xeef000)=nil, 0xeef000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f00000001c0)=ANY=[@ANYRES32=<r0=>0x0, @ANYBLOB="0000030007000300ffff78f82d52e0626e6d240806503b51f617b30495e7c203f24a1ac835f1d4c71894dce26172070c3952d44499115a895f4d15b7e86c91d45c864d4aaa24eb6f6abbaa20e0bf5ed3a3643e54f84347cc3eaa3e9a7204ce2db4e1a8ab24ca4a63a6bd34a8ae9baf041a980b768668258f31faeb89d7bd9390fde45a11d6a21d5a74e4bd8d5a3892103846a8a885816a4d"], &(0x7f0000000040)=0xe)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000080)={r0}, &(0x7f0000000180)=0xc)
r1 = syz_open_dev$vcsn(&(0x7f0000000140)='/dev/vcs#\x00', 0x7, 0x400000)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000100)=0x17, 0x4)

2018/05/02 02:14:46 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = gettid()
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000100)={{0x8, 0x4, 0x5, 0x2, "ff599db920e4b659375c53e2420bfec5e5a9b6abb2aa0ca84009b7d68bb7c4af60a4f2243916c8eb26e9fd3e", 0x9}, 0x0, 0x0, 0xfff, r3, 0xfff, 0x7, "8467ebf663d26e2bc732faf5ca164b61258812fd6a754bb159d2e5866052a94112344734ea633cd0528c2f3829fed8503ef1d4b88c41e4ea980d5c0fc664dbfc", &(0x7f00000000c0)='/dev/snd/timer\x00', 0xf, [], [0x3, 0x2, 0xbc9, 0x400]})
r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0x40045402, &(0x7f0000013000))
readv(r4, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
dup3(r2, r0, 0x0)

2018/05/02 02:14:46 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000000000007fffffff000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:46 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000cb040000d0"], 0x1)

[  595.117153] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  595.128954] syz-executor4 cpuset=syz4 mems_allowed=0
[  595.134147] CPU: 1 PID: 30536 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  595.141425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  595.150787] Call Trace:
[  595.153386]  dump_stack+0x1b9/0x294
[  595.157034]  ? dump_stack_print_info.cold.2+0x52/0x52
[  595.162240]  ? graph_lock+0x170/0x170
2018/05/02 02:14:46 executing program 2:
r0 = socket$l2tp(0x18, 0x1, 0x1)
r1 = socket$l2tp(0x18, 0x1, 0x1)
r2 = accept(r0, &(0x7f0000000700), &(0x7f0000000780)=0x80)
setsockopt$inet_MCAST_MSFILTER(r2, 0x0, 0x30, &(0x7f00000007c0)={0x3fe0000000000000, {{0x2, 0x4e21, @rand_addr=0x1f}}, 0x0, 0x2, [{{0x2, 0x4e20, @local={0xac, 0x14, 0x14, 0xaa}}}, {{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x19}}}]}, 0x190)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x8000, 0x0)
ioctl(r0, 0x3, &(0x7f0000000100)="7949a087516952c84e3e619b68040b16cda8277f1a826848485915f8be6047c6fe9e7ddeff85720073e9fbd8a700b20de4c16a5171356a2afbef5f5d53f312085956e1dd182dd16823590a086b71bf1b8541beeb30756fde576ae04a5520a718ce138e15220ad9d837fae2a178a5341fe264fe37e8ed442c27505a8f4d694ef988baf01afbca20547ccec5eb0b8a1dad0fc0c0801e4b503898aa")
socket$bt_cmtp(0x1f, 0x3, 0x5)
ioctl$sock_bt_bnep_BNEPCONNADD(r3, 0x400442c8, &(0x7f0000000040)={r1, 0x9, 0x3, "5fc6a4ba209a69fd6b8ebc45a5331d438ec0204adbd4d8b9300385d5b6d0955eb4fe072ae0e937e1ca624f7597482424cfa93ee0f6d84d8a2dceeedf0cd44105a64b16e8b3d863b403cdb0fdd0ac8fd84725ba6e0591c960840449aabe10899483b7859571dfa1be4989c53b382a01e9fc3618b47a5fd27a287a613ad1b993524b450ecd"})
recvmsg(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000240)=""/198, 0xc6}, {&(0x7f0000000340)=""/121, 0x79}, {&(0x7f00000003c0)=""/1, 0x1}, {&(0x7f0000000400)=""/206, 0xce}, {&(0x7f0000000500)=""/1, 0x1}, {&(0x7f0000000540)=""/217, 0xd9}], 0x6, 0x0, 0x0, 0x8}, 0x40000000)
connect$l2tp(r1, &(0x7f00005fafd2)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e20, @multicast2=0xe0000002}, 0x4}}, 0x2e)
ioctl$DRM_IOCTL_AGP_ALLOC(r3, 0xc0206434, &(0x7f00000001c0)={0x2a2a00000000000, <r4=>0x0, 0x10001, 0x80000000})
ioctl$DRM_IOCTL_SG_ALLOC(r3, 0xc0106438, &(0x7f0000000200)={0x0, r4})
mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x800, 0x4031, 0xffffffffffffffff, 0x0)
ioctl$PPPIOCGL2TPSTATS(r3, 0x80487436, &(0x7f0000000240))
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r3, 0x84, 0x70, &(0x7f0000000980)={<r5=>0x0, @in6={{0xa, 0x4e20, 0x5, @remote={0xfe, 0x80, [], 0xbb}, 0x9}}, [0x7, 0x9, 0x2333, 0x8001, 0x7ff, 0x7ff, 0x8001, 0x9, 0xffffffff, 0x100000000, 0x20, 0x39e, 0x1, 0x1f, 0x40000000]}, &(0x7f0000000a80)=0x100)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f0000000ac0)={r5}, 0x8)

[  595.166057]  warn_alloc.cold.118+0xb2/0x1b8
[  595.170393]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  595.175256]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  595.181336]  ? update_load_avg+0x2d9/0x2570
[  595.185681]  ? kasan_check_write+0x14/0x20
[  595.189934]  __vmalloc_node_range+0x45e/0x750
[  595.194614]  ? graph_lock+0x170/0x170
[  595.198425]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  595.203277]  __vmalloc_node_flags_caller+0x75/0x90
[  595.208215]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  595.213068]  kvmalloc_node+0xde/0x100
2018/05/02 02:14:46 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000056040000d0"], 0x1)

[  595.216889]  kvm_arch_create_memslot+0xa3/0x4e0
[  595.221590]  __kvm_set_memory_region+0x1d1b/0x2e50
[  595.226544]  ? kvm_vcpu_block+0x1050/0x1050
[  595.230871]  ? print_usage_bug+0xc0/0xc0
[  595.234944]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  595.239720]  ? graph_lock+0x170/0x170
[  595.243541]  ? __lock_acquire+0x7f5/0x5140
[  595.247783]  ? _raw_spin_unlock_irqrestore+0xa1/0xc0
[  595.252897]  ? find_held_lock+0x36/0x1c0
[  595.256979]  ? lock_downgrade+0x8e0/0x8e0
[  595.261168]  kvm_set_memory_region+0x2e/0x50
2018/05/02 02:14:46 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000090040000d0"], 0x1)

2018/05/02 02:14:46 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000095040000d0"], 0x1)

[  595.265589]  kvm_vm_ioctl+0x668/0x1d90
[  595.269489]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  595.275037]  ? __perf_event_task_sched_in+0x247/0xb80
[  595.280241]  ? kvm_set_memory_region+0x50/0x50
[  595.284841]  ? find_held_lock+0x36/0x1c0
[  595.288919]  ? lock_downgrade+0x8e0/0x8e0
[  595.293076]  ? finish_task_switch+0x182/0x810
[  595.297584]  ? kasan_check_read+0x11/0x20
[  595.301739]  ? graph_lock+0x170/0x170
[  595.305545]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  595.310134]  ? compat_start_thread+0x80/0x80
2018/05/02 02:14:46 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000000e040000d0"], 0x1)

[  595.314552]  ? _raw_spin_unlock_irq+0x27/0x70
[  595.319056]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  595.324082]  ? trace_hardirqs_on+0xd/0x10
[  595.328237]  ? _raw_spin_unlock_irq+0x27/0x70
[  595.332754]  ? find_held_lock+0x36/0x1c0
[  595.336826]  ? lock_downgrade+0x8e0/0x8e0
[  595.340986]  ? kasan_check_read+0x11/0x20
[  595.345140]  ? rcu_is_watching+0x85/0x140
[  595.349294]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  595.354495]  ? __fget+0x40c/0x650
[  595.357962]  ? expand_files.part.8+0x9a0/0x9a0
[  595.362549]  ? lock_downgrade+0x8e0/0x8e0
2018/05/02 02:14:46 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000b0040000d0"], 0x1)

2018/05/02 02:14:46 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000001b040000d0"], 0x1)

[  595.366711]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  595.372261]  ? vma_set_page_prot+0x239/0x300
[  595.376684]  ? kvm_set_memory_region+0x50/0x50
[  595.381273]  do_vfs_ioctl+0x1cf/0x16a0
[  595.385178]  ? ioctl_preallocate+0x2e0/0x2e0
[  595.389597]  ? fget_raw+0x20/0x20
[  595.393065]  ? exit_to_usermode_loop+0x87/0x310
[  595.397751]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  595.403294]  ? security_file_ioctl+0x94/0xc0
[  595.407718]  ksys_ioctl+0xa9/0xd0
[  595.411186]  __x64_sys_ioctl+0x73/0xb0
[  595.415079]  do_syscall_64+0x1b1/0x800
[  595.418973]  ? finish_task_switch+0x1ca/0x810
[  595.423477]  ? syscall_return_slowpath+0x5c0/0x5c0
[  595.428415]  ? syscall_return_slowpath+0x30f/0x5c0
[  595.433357]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  595.438739]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  595.443591]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  595.448791] RIP: 0033:0x455979
[  595.451979] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  595.459693] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  595.466979] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  595.474249] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  595.481523] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  595.488796] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  595.496825] warn_alloc_show_mem: 1 callbacks suppressed
[  595.496829] Mem-Info:
[  595.504695] active_anon:74997 inactive_anon:80 isolated_anon:0
[  595.504695]  active_file:3749 inactive_file:12401 isolated_file:0
[  595.504695]  unevictable:0 dirty:183 writeback:0 unstable:0
[  595.504695]  slab_reclaimable:10656 slab_unreclaimable:106467
[  595.504695]  mapped:73890 shmem:88 pagetables:998 bounce:0
[  595.504695]  free:1324410 free_pcp:432 free_cma:0
[  595.538294] Node 0 active_anon:299988kB inactive_anon:320kB active_file:14996kB inactive_file:49604kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295560kB dirty:732kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 135168kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  595.566524] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  595.592733] lowmem_reserve[]: 0 2830 6335 6335
[  595.597380] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:84kB free_cma:0kB
[  595.625046] lowmem_reserve[]: 0 0 3505 3505
[  595.629427] Node 0 Normal free:2381004kB min:37300kB low:46624kB high:55948kB active_anon:299988kB inactive_anon:320kB active_file:14996kB inactive_file:49604kB unevictable:0kB writepending:732kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5568kB pagetables:3992kB bounce:0kB free_pcp:988kB local_pcp:344kB free_cma:0kB
[  595.659227] lowmem_reserve[]: 0 0 0 0
[  595.663083] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  595.676776] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  595.692726] Node 0 Normal: 2275*4kB (UME) 2980*8kB (UME) 3106*16kB (UME) 3058*32kB (UME) 1466*64kB (UME) 261*128kB (UM) 194*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 51*2048kB (UM) 438*4096kB (UM) = 2380812kB
[  595.711611] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  595.720206] 16237 total pagecache pages
[  595.724196] 0 pages in swap cache
[  595.727675] Swap cache stats: add 0, delete 0, find 0/0
[  595.733056] Free swap  = 0kB
[  595.736090] Total swap = 0kB
[  595.739122] 1965969 pages RAM
[  595.742244] 0 pages HighMem/MovableOnly
[  595.746249] 339347 pages reserved
[  595.762007] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  595.773855] syz-executor4 cpuset=syz4 mems_allowed=0
[  595.779055] CPU: 1 PID: 30578 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  595.786332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  595.795681] Call Trace:
[  595.798272]  dump_stack+0x1b9/0x294
[  595.801895]  ? dump_stack_print_info.cold.2+0x52/0x52
[  595.807083]  ? kasan_check_read+0x11/0x20
[  595.811231]  warn_alloc.cold.118+0xb2/0x1b8
[  595.815540]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  595.820382]  ? trace_hardirqs_on+0xd/0x10
[  595.824529]  ? _raw_spin_unlock_irq+0x27/0x70
[  595.829016]  ? finish_task_switch+0x1ca/0x810
[  595.833524]  ? lock_repin_lock+0x410/0x410
[  595.837760]  __vmalloc_node_range+0x45e/0x750
[  595.842254]  ? graph_lock+0x170/0x170
[  595.846062]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  595.854571]  __vmalloc_node_flags_caller+0x75/0x90
[  595.859493]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  595.864330]  kvmalloc_node+0xde/0x100
[  595.868116]  kvm_arch_create_memslot+0xa3/0x4e0
[  595.872791]  __kvm_set_memory_region+0x1d1b/0x2e50
[  595.878106]  ? kvm_vcpu_block+0x1050/0x1050
[  595.882412]  ? print_usage_bug+0xc0/0xc0
[  595.886471]  ? check_same_owner+0x320/0x320
[  595.890790]  ? do_raw_spin_unlock+0x9e/0x2e0
[  595.895188]  ? rcu_note_context_switch+0x710/0x710
[  595.900106]  ? lock_acquire+0x1dc/0x520
[  595.904076]  ? graph_lock+0x170/0x170
[  595.907872]  ? __might_sleep+0x95/0x190
[  595.911848]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  595.917386]  ? futex_wait_queue_me+0x550/0x820
[  595.921959]  ? __lock_acquire+0x7f5/0x5140
[  595.926198]  ? refill_pi_state_cache.part.7+0x300/0x300
[  595.931570]  ? find_held_lock+0x36/0x1c0
[  595.935621]  ? lock_downgrade+0x8e0/0x8e0
[  595.939764]  kvm_set_memory_region+0x2e/0x50
[  595.944156]  kvm_vm_ioctl+0x668/0x1d90
[  595.948037]  ? pick_next_task_fair+0x973/0x1660
[  595.952704]  ? kvm_set_memory_region+0x50/0x50
[  595.957269]  ? find_held_lock+0x36/0x1c0
[  595.961333]  ? lock_downgrade+0x8e0/0x8e0
[  595.965467]  ? finish_task_switch+0x182/0x810
[  595.969968]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  595.975159]  ? do_futex+0x249/0x27d0
[  595.978865]  ? kasan_check_read+0x11/0x20
[  595.982998]  ? graph_lock+0x170/0x170
[  595.986788]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  595.991367]  ? compat_start_thread+0x80/0x80
[  595.995761]  ? _raw_spin_unlock_irq+0x27/0x70
[  596.000242]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  596.005251]  ? exit_robust_list+0x290/0x290
[  596.009647]  ? find_held_lock+0x36/0x1c0
[  596.013712]  ? lock_downgrade+0x8e0/0x8e0
[  596.017871]  ? kasan_check_read+0x11/0x20
[  596.022024]  ? rcu_is_watching+0x85/0x140
[  596.026181]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  596.031390]  ? __fget+0x40c/0x650
[  596.034863]  ? do_raw_spin_unlock+0x1/0x2e0
[  596.039199]  ? expand_files.part.8+0x9a0/0x9a0
[  596.043793]  ? kasan_check_write+0x14/0x20
[  596.048033]  ? do_raw_spin_lock+0xc1/0x200
[  596.052277]  ? kvm_set_memory_region+0x50/0x50
[  596.056862]  do_vfs_ioctl+0x1cf/0x16a0
[  596.060760]  ? ioctl_preallocate+0x2e0/0x2e0
[  596.065177]  ? fget_raw+0x20/0x20
[  596.068644]  ? __x64_sys_futex+0x477/0x680
[  596.072901]  ? exit_to_usermode_loop+0x87/0x310
[  596.077578]  ? do_futex+0x27d0/0x27d0
[  596.081385]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  596.086920]  ? security_file_ioctl+0x94/0xc0
[  596.091312]  ksys_ioctl+0xa9/0xd0
[  596.094752]  __x64_sys_ioctl+0x73/0xb0
[  596.098624]  do_syscall_64+0x1b1/0x800
[  596.102495]  ? syscall_return_slowpath+0x5c0/0x5c0
[  596.107405]  ? syscall_return_slowpath+0x30f/0x5c0
[  596.112318]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  596.117679]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  596.122506]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  596.127684] RIP: 0033:0x455979
[  596.130858] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  596.138549] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  596.145798] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  596.153053] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  596.160305] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
2018/05/02 02:14:47 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000084040000d0"], 0x1)

2018/05/02 02:14:47 executing program 7:
r0 = socket(0x400000000000b, 0xfffffffffffffffe, 0x4000000000000008)
r1 = accept(r0, &(0x7f0000000000)=@ax25, &(0x7f0000000080)=0x80)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f00000000c0)={<r2=>0x0, 0x10000}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r1, 0x84, 0x1b, &(0x7f0000000140)={r2, 0x86, "962cf9fd2df6e8a67264f128b9e7ce48e3b4e9e1c00ca869714bdc1322a861cbd72f1601cccd4af24e590831905c80d7879cc7b7c3d0abcefa45c6a0591fb6a8545545be1db0d9935e9881f39aca18a89fc1db917735c44c854f2df8b2d77230445369dfec5e8d1547adbb60cffa5ba1d41e66bbef5f759caa4530e473d592c406a6ad8c532b"}, &(0x7f0000000200)=0x8e)
socket$inet6(0xa, 0x4, 0x9)

2018/05/02 02:14:47 executing program 5:
r0 = memfd_create(&(0x7f0000000080)='eth1(%#\x00', 0x2)
r1 = syz_open_dev$sndseq(&(0x7f0000f36000)='/dev/snd/seq\x00', 0x0, 0x8000000000102)
r2 = dup2(r1, r0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f000030c000)={0x0, 0x0, 0x0, "98de7a8c5ae95ec8792c92150fc33a664f13eeab65c0322901ca6bd31bde2c51f06c5f0b014f9f91eeb7647c7240f476c8d75dd000aa8faf8fb5740200a6dc4d", 0x4})
write$sndseq(r0, &(0x7f0000e6ffd0)=[{0x1e}], 0x30)
r3 = memfd_create(&(0x7f0000000000)='eth1(%#\x00', 0x0)
r4 = syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x80000000400ff)
dup2(r4, r3)
write$sndseq(r3, &(0x7f0000000100)=[{0x1e, 0x0, 0x2476ce73, 0x3fd, @tick, {0x0, 0x1}}], 0x30)

2018/05/02 02:14:47 executing program 2:
r0 = shmget(0x0, 0x1000, 0x78001102, &(0x7f0000ffd000/0x1000)=nil)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000000c0)={{{@in6=@ipv4={[], [], @loopback}, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@multicast1}}, &(0x7f0000000040)=0xe8)
stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
stat(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
r4 = getgid()
ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000340)=<r5=>0x0)
r6 = getpid()
shmctl$IPC_SET(r0, 0x1, &(0x7f0000000380)={{0x8, r1, r2, r3, r4, 0x2, 0x5}, 0x0, 0x7, 0x8001, 0x100000001, r5, r6, 0x26a})
perf_event_open(&(0x7f000000a000)={0x3, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
mount(&(0x7f00008deff8)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f00007fc000)='nfs\x00', 0x0, &(0x7f000000a000))

2018/05/02 02:14:47 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000400000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:47 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
pipe2(&(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80800)
getsockname$packet(r1, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000200)=0x14)
r3 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x6, 0x0)
ioctl$VHOST_SET_OWNER(r2, 0xaf01, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r4 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r5 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f0000000140)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r4, r0, 0x0)
clock_getres(0x6, &(0x7f0000000100))

2018/05/02 02:14:47 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x7400000000000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:47 executing program 1:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x40000, 0x0)
ioctl$BLKTRACESTART(r0, 0x1274, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
fcntl$dupfd(r0, 0x0, r1)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000040)="390000001300090468fe000081000000e8ffff3f03000000450001070000001419001a0004000200070002000200000800005d14a4e91ee400", 0x39}], 0x1)

[  596.167553] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
[  596.229384] netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'.
[  596.237935] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  596.237943] netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'.
[  596.249785] syz-executor4 cpuset=syz4 mems_allowed=0
[  596.263366] CPU: 1 PID: 30603 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  596.270643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  596.280006] Call Trace:
[  596.282603]  dump_stack+0x1b9/0x294
[  596.286244]  ? dump_stack_print_info.cold.2+0x52/0x52
[  596.291446]  ? graph_lock+0x170/0x170
[  596.295260]  warn_alloc.cold.118+0xb2/0x1b8
[  596.299590]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  596.304449]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  596.310524]  ? update_load_avg+0x2d9/0x2570
[  596.314851]  ? graph_lock+0x170/0x170
[  596.318461] netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'.
2018/05/02 02:14:47 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000bc040000d0"], 0x1)

[  596.318668]  __vmalloc_node_range+0x45e/0x750
[  596.318686]  ? graph_lock+0x170/0x170
[  596.327222] netlink: 3 bytes leftover after parsing attributes in process `syz-executor1'.
[  596.331558]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  596.331575]  __vmalloc_node_flags_caller+0x75/0x90
[  596.331590]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  596.331609]  kvmalloc_node+0xde/0x100
[  596.331625]  kvm_arch_create_memslot+0xa3/0x4e0
[  596.331659]  __kvm_set_memory_region+0x1d1b/0x2e50
[  596.371787]  ? kvm_vcpu_block+0x1050/0x1050
[  596.376116]  ? print_usage_bug+0xc0/0xc0
[  596.380184]  ? lock_downgrade+0x8e0/0x8e0
[  596.384335]  ? lock_downgrade+0x8e0/0x8e0
[  596.388503]  ? graph_lock+0x170/0x170
[  596.392322]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  596.396910]  ? __lock_acquire+0x7f5/0x5140
[  596.401154]  ? trace_hardirqs_on+0xd/0x10
[  596.405313]  ? find_held_lock+0x36/0x1c0
[  596.409384]  ? lock_downgrade+0x8e0/0x8e0
[  596.413557]  kvm_set_memory_region+0x2e/0x50
[  596.417974]  kvm_vm_ioctl+0x668/0x1d90
[  596.421869]  ? pick_next_task_fair+0x973/0x1660
2018/05/02 02:14:47 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000005b040000d0"], 0x1)

[  596.426544]  ? kvm_set_memory_region+0x50/0x50
[  596.431135]  ? find_held_lock+0x36/0x1c0
[  596.435211]  ? lock_downgrade+0x8e0/0x8e0
[  596.439391]  ? finish_task_switch+0x182/0x810
[  596.443900]  ? kasan_check_read+0x11/0x20
[  596.448053]  ? graph_lock+0x170/0x170
[  596.451854]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  596.456444]  ? compat_start_thread+0x80/0x80
[  596.460857]  ? _raw_spin_unlock_irq+0x27/0x70
[  596.465359]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  596.470391]  ? trace_hardirqs_on+0xd/0x10
[  596.474548]  ? _raw_spin_unlock_irq+0x27/0x70
[  596.479052]  ? find_held_lock+0x36/0x1c0
[  596.483123]  ? lock_downgrade+0x8e0/0x8e0
[  596.487287]  ? kasan_check_read+0x11/0x20
[  596.491459]  ? rcu_is_watching+0x85/0x140
[  596.495614]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  596.500824]  ? __fget+0x40c/0x650
[  596.504296]  ? expand_files.part.8+0x9a0/0x9a0
[  596.508880]  ? lock_downgrade+0x8e0/0x8e0
[  596.513039]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  596.518581]  ? vma_set_page_prot+0x239/0x300
[  596.522994]  ? kvm_set_memory_region+0x50/0x50
2018/05/02 02:14:47 executing program 2:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x200, 0x0)
ioctl$GIO_FONTX(r1, 0x4b6b, &(0x7f00000000c0)=""/159)
clock_nanosleep(0x2, 0x0, &(0x7f0000b85000)={0x0, 0x1c9c380}, &(0x7f0000443000))
r2 = gettid()
r3 = dup2(r0, r0)
ioctl$KDGKBSENT(r3, 0x4b48, &(0x7f0000000040)={0x80000000, 0x2, 0xffff})
timer_create(0x0, &(0x7f0000000200)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000))
prctl$setptracer(0x59616d61, r2)
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
tkill(r2, 0x1000000000016)

2018/05/02 02:14:47 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f00000001c0)=0x80000000, 0x4)
setsockopt$inet6_tcp_int(r0, 0x6, 0x3000000000000022, &(0x7f0000356000)=0x1, 0x4)
sendto$inet6(r0, &(0x7f00000000c0)="eb", 0x1, 0x200418cc, &(0x7f00000002c0)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x3}, 0x1c)
mmap(&(0x7f0000048000/0x1000)=nil, 0x1000, 0x7, 0x31, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400, 0x4}, &(0x7f0000048000), 0x0)
mmap(&(0x7f000001d000/0x2000)=nil, 0x2000, 0x3, 0x31, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400, 0x1}, &(0x7f000001d000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f000000d000), &(0x7f0000048000), 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000040)={0x1, {0x2, 0x4e21}, {0x2, 0x0, @broadcast=0xffffffff}, {0x2, 0x4e22}, 0x1b1, 0x5, 0x1, 0x6, 0x5739318e, &(0x7f0000000000)='ip6tnl0\x00', 0x90000000000, 0x1, 0x7fffffff})
pread64(r1, &(0x7f0000000140)=""/114, 0x72, 0x0)

2018/05/02 02:14:47 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000070040000d0"], 0x1)

[  596.527583]  do_vfs_ioctl+0x1cf/0x16a0
[  596.531487]  ? ioctl_preallocate+0x2e0/0x2e0
[  596.535904]  ? fget_raw+0x20/0x20
[  596.539373]  ? exit_to_usermode_loop+0x87/0x310
[  596.544057]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  596.549608]  ? security_file_ioctl+0x94/0xc0
[  596.554036]  ksys_ioctl+0xa9/0xd0
[  596.557503]  __x64_sys_ioctl+0x73/0xb0
[  596.561401]  do_syscall_64+0x1b1/0x800
[  596.565296]  ? finish_task_switch+0x1ca/0x810
[  596.569800]  ? syscall_return_slowpath+0x5c0/0x5c0
[  596.574737]  ? syscall_return_slowpath+0x30f/0x5c0
[  596.579689]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  596.585063]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  596.589929]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  596.595120] RIP: 0033:0x455979
[  596.598303] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  596.606017] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  596.613292] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  596.620566] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  596.627841] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  596.635116] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  596.642535] warn_alloc_show_mem: 1 callbacks suppressed
[  596.642542] Mem-Info:
[  596.650387] active_anon:76048 inactive_anon:80 isolated_anon:0
[  596.650387]  active_file:3749 inactive_file:12407 isolated_file:0
[  596.650387]  unevictable:0 dirty:195 writeback:0 unstable:0
[  596.650387]  slab_reclaimable:10634 slab_unreclaimable:106468
[  596.650387]  mapped:73903 shmem:88 pagetables:1134 bounce:0
2018/05/02 02:14:47 executing program 5:

[  596.650387]  free:1323178 free_pcp:502 free_cma:0
[  596.684069] Node 0 active_anon:297992kB inactive_anon:320kB active_file:14996kB inactive_file:49628kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295612kB dirty:780kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 135168kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  596.712259] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  596.738459] lowmem_reserve[]: 0 2830 6335 6335
[  596.743105] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:84kB free_cma:0kB
[  596.770777] lowmem_reserve[]: 0 0 3505 3505
2018/05/02 02:14:47 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000007d040000d0"], 0x1)

2018/05/02 02:14:47 executing program 5:
r0 = syz_open_dev$tun(&(0x7f0000000280)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={"d202b999cf85000000000088f301e710", 0x102})
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/mixer\x00', 0x4000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r1, 0xc058534b, &(0x7f0000000200)={0x3eb, 0x100000000, 0x3, 0xffff, 0x8001, 0x8})
r2 = syz_open_dev$tun(&(0x7f0000000280)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={"d202b999cf85000000000088f301e710", 0x1102})
ioctl$TUNSETSNDBUF(r2, 0x400454d4, &(0x7f0000000340)=0x9)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x400002, 0x0)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r3, 0x84, 0x79, &(0x7f0000000100)=0x1, 0x4)
r4 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x401, 0x101)
ioctl$PERF_EVENT_IOC_DISABLE(r3, 0x2401, 0x55)
ioctl$KVM_GET_DEVICE_ATTR(r3, 0x4018aee2, &(0x7f0000000180)={0x0, 0x0, 0x0, &(0x7f0000000140)=0x1})
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r4, 0xc0305302, &(0x7f0000000040)={0x7, 0xe6f, 0x10000, 0x1, 0x6, 0x17})

[  596.775164] Node 0 Normal free:2383092kB min:37300kB low:46624kB high:55948kB active_anon:298068kB inactive_anon:308kB active_file:15000kB inactive_file:49688kB unevictable:0kB writepending:832kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5728kB pagetables:4536kB bounce:0kB free_pcp:1112kB local_pcp:596kB free_cma:0kB
[  596.805098] lowmem_reserve[]: 0 0 0 0
[  596.808963] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  596.828495] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  596.844374] Node 0 Normal: 2182*4kB (UME) 2974*8kB (UME) 3119*16kB (UME) 3056*32kB (UME) 1466*64kB (UME) 261*128kB (UM) 194*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 52*2048kB (UM) 438*4096kB (UM) = 2382584kB
[  596.863291] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  596.871899] 16259 total pagecache pages
[  596.875907] 0 pages in swap cache
2018/05/02 02:14:47 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="0203000910000080ffffff00000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  596.879392] Swap cache stats: add 0, delete 0, find 0/0
[  596.884774] Free swap  = 0kB
[  596.887812] Total swap = 0kB
[  596.890850] 1965969 pages RAM
[  596.893969] 0 pages HighMem/MovableOnly
[  596.897960] 339347 pages reserved
[  596.931129] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  596.942950] syz-executor4 cpuset=syz4 mems_allowed=0
[  596.948149] CPU: 1 PID: 30633 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  596.955422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  596.964778] Call Trace:
[  596.967371]  dump_stack+0x1b9/0x294
[  596.971011]  ? dump_stack_print_info.cold.2+0x52/0x52
[  596.976224]  warn_alloc.cold.118+0xb2/0x1b8
[  596.980561]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  596.985437]  __vmalloc_node_range+0x45e/0x750
[  596.989942]  ? graph_lock+0x170/0x170
[  596.993754]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  596.998610]  __vmalloc_node_flags_caller+0x75/0x90
[  597.003550]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  597.008403]  kvmalloc_node+0xde/0x100
[  597.012214]  kvm_arch_create_memslot+0xa3/0x4e0
[  597.016902]  __kvm_set_memory_region+0x1d1b/0x2e50
[  597.021857]  ? kvm_vcpu_block+0x1050/0x1050
[  597.026193]  ? zap_class+0x720/0x720
[  597.029925]  ? graph_lock+0x170/0x170
[  597.033746]  ? find_held_lock+0x36/0x1c0
[  597.037821]  ? lock_downgrade+0x8e0/0x8e0
[  597.042014]  kvm_set_memory_region+0x2e/0x50
[  597.046437]  kvm_vm_ioctl+0x668/0x1d90
[  597.050335]  ? __lock_acquire+0x7f5/0x5140
[  597.054581]  ? kvm_set_memory_region+0x50/0x50
[  597.059188]  ? debug_check_no_locks_freed+0x310/0x310
[  597.064384]  ? perf_trace_lock+0xd6/0x900
[  597.068545]  ? zap_class+0x720/0x720
[  597.072270]  ? print_usage_bug+0xc0/0xc0
[  597.076354]  ? graph_lock+0x170/0x170
[  597.080185]  ? find_held_lock+0x36/0x1c0
[  597.084267]  ? lock_downgrade+0x8e0/0x8e0
[  597.088434]  ? rcu_is_watching+0x85/0x140
[  597.092606]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  597.097818]  ? __fget+0x40c/0x650
[  597.101287]  ? do_raw_spin_unlock+0x1/0x2e0
[  597.105628]  ? expand_files.part.8+0x9a0/0x9a0
[  597.110218]  ? kasan_check_write+0x14/0x20
[  597.114458]  ? do_raw_spin_lock+0xc1/0x200
[  597.118704]  ? _raw_spin_unlock+0x22/0x30
[  597.122864]  ? kvm_set_memory_region+0x50/0x50
[  597.127456]  do_vfs_ioctl+0x1cf/0x16a0
2018/05/02 02:14:48 executing program 7:
r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x7, 0x20400)
ioctl$PPPIOCGFLAGS(r0, 0x8004745a, &(0x7f0000000140))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000fb4000)={0x1, 0x0, [{0x20000000006e0}]})

2018/05/02 02:14:48 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000af040000d0"], 0x1)

2018/05/02 02:14:48 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
ioctl$KDGKBENT(r0, 0x4b46, &(0x7f00000000c0)={0x59ff, 0x3ff, 0x343b038c})
r1 = userfaultfd(0xfffffffffffffffc)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000100)={{&(0x7f0000011000/0x2000)=nil, 0x2000}, 0x1})
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000)={0x0, 0x3})
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r2, r1, 0x0)

[  597.131358]  ? ioctl_preallocate+0x2e0/0x2e0
[  597.135776]  ? fget_raw+0x20/0x20
[  597.139246]  ? lock_downgrade+0x8e0/0x8e0
[  597.143402]  ? finish_task_switch+0x182/0x810
[  597.147912]  ? security_file_ioctl+0x94/0xc0
[  597.152335]  ksys_ioctl+0xa9/0xd0
[  597.155804]  __x64_sys_ioctl+0x73/0xb0
[  597.159706]  do_syscall_64+0x1b1/0x800
[  597.163603]  ? finish_task_switch+0x1ca/0x810
[  597.168103]  ? syscall_return_slowpath+0x5c0/0x5c0
[  597.173038]  ? syscall_return_slowpath+0x30f/0x5c0
2018/05/02 02:14:48 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000b4040000d0"], 0x1)

[  597.177973]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  597.183352]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  597.188211]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  597.193403] RIP: 0033:0x455979
[  597.196594] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  597.204312] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  597.211592] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  597.218867] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
2018/05/02 02:14:48 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000040030000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  597.226142] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  597.233416] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:48 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000fcbff7)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000180))
getpgrp(0xffffffffffffffff)
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000240)=<r3=>0x0)
r4 = syz_open_procfs(r3, &(0x7f0000000200)='mountstats\x00')
syz_kvm_setup_cpu$x86(r4, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000000)="66baf80cb850c47f80ef66bafc0cb80000c0feefc4a19f51f2440f019fc62c248566f247ac4ede5600c4e3791d7ee004c40151e299992c0000b805000000b9336600000f01c1420f5bddb99f0a0000b88eabb2c9ba000000000f30", 0x5b}], 0xaaaadca, 0x0, &(0x7f00000000c0), 0x0)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000100), &(0x7f0000000140)=0x4)

2018/05/02 02:14:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x40004001, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:48 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000a3040000d0"], 0x1)

2018/05/02 02:14:48 executing program 3:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x800, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1000002, 0x32, r0, 0x0)
r1 = userfaultfd(0x80000)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r2, r1, 0x0)

2018/05/02 02:14:48 executing program 7:
r0 = socket$inet(0x2, 0x80006, 0x0)
sendmsg$nfc_llcp(r0, &(0x7f0000000500)={&(0x7f00000000c0)={0x27, 0x0, 0x2, 0x6, 0x7f, 0xff, "1a4cc62e4ffb0bd6567ca9eb5723dd6bc622cb2686b9cccc4095f11a773ac115a6f38489d4c3ef2640d85a06548d3b0beeba95419b3793a6ea18a9d5afe4a0", 0x10}, 0x60, &(0x7f0000000480)=[{&(0x7f0000000140)="f40e800337d143e04856d57d6238f79a91a4d21c77c29c6ad9e241215ee29c9b0b3364eda24abd6e8934cd30e1d7f0a91bfe", 0x32}, {&(0x7f0000000180)="00a16ae54b1b967620651161e38753bebe289ea2af8666ee67bfc34f10b77eb22dbbe8fbbeff7e5dc467d83d11cb5e53b200766fe2c7caaff7c56c6333ad0f996d15a20d771c08fc562cbda8632c2fddc81896e438d5fb67e6514374ce057f54febd01692df7e224473b4c73c67d245cdbdf444ba30aa95949d5f5046f9d", 0x7e}, {&(0x7f0000000200)="3313f520fa8a11de0041a6ca597a13e746eeb0dee663886246c785d2fcf77a36448937987c060ce55efc50f5adcfa8ea3ecc6694f10852cbbfcaa17e09be91d598f9630367f6e9a7da9b3307e9a7226281f48ea51d09cd19fc66c9327aeecfef136b7882798940e0a4142d7e31bd9ecf4a6dab42dd3ed36adb45b1e57ebf1d45adaef227dfd510e1528939bb804a142f4bceeb5c34a523c8067de6e8e97f4f0a828fd36d9df54d064887766ca366fc3ccfde957b5a568171f88e8080ddd3a7f0cbe8c4c2f532f4c261cf379ca78617ef85cba2b85424d869cc50885e7c8293ebcc278e328f7e06df", 0xe8}, {&(0x7f0000000300)="e4087a75b30ca82986106bf60f970fd39de60e055e0b902ffdbe68f7e22fc3e59427fab12ca6744a1a89cb551a2af5ecb48b4423e219470207e769905447307b6cc4b7784dad6defeeb4bc817225a31921218a747529008326a6d93c700c221b9c396c21015fe23c35aa4d18b373c9ebd8304f9f4f2a0f9c4154d36c05d9ef52e2731ed211ad5bd98e44a900430cace4aa1e98a9f85fe5f0612fcbb201c3911b1d0bebd34c58509c6987687b0da4883ca1e391302fb51b8bcc584e", 0xbb}, {&(0x7f00000003c0)="d0fbe3afda", 0x5}, {&(0x7f0000000400)="8387dcc56f1cc37372af3f40210711768274ff6b496f5e9c78df5494298bb441c0493a88564ef7c262d69a5278539ad5051891efb1eed3eb9af8cfdeb26be5d04052136bca3db9f56d6d9f9f0bf4bff827e1c790254410e954d3ffe710afb26d59110c079fe08532a7", 0x69}], 0x6, 0x0, 0x0, 0x40000}, 0x4000800)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@broute={"62726f7574650500", 0x20, 0x3, 0x398, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000bc0], 0x0, &(0x7f0000000000), &(0x7f0000000bc0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x15, 0x0, 0x0, 'nr0\x00', 'gre0\x00', "62fc2ff77400", 'ip6gre0\x00', @empty, [], @link_local={0x1, 0x80, 0xc2}, [], 0x130, 0xf0, 0x138, [@pkttype={'pkttype\x00', 0x8}]}, [@common=@LED={'LED\x00', 0x28, {{'syz0\x00'}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x1, 0x0, 0x1, [{{{0x19, 0x0, 0x0, 'ip6gretap0\x00', 'ip_vti0\x00', 'eql\x00', 'bcsh0\x00', @link_local={0x1, 0x80, 0xc2}, [], @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, [], 0x70, 0xe8, 0x130}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz1\x00'}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00'}}}}]}, {0x0, '\x00', 0x2, 0x0, 0x1, [{{{0x3, 0x0, 0x0, 'irlan0\x00', 'bcsh0\x00', 'ip6_vti0\x00', 'irlan0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @empty, [], 0x70, 0x70, 0xa0}}, @common=@redirect={'redirect\x00', 0x8}}]}]}, 0x410)

2018/05/02 02:14:48 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000006c89626c17000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:48 executing program 1:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$rdma_cm(r0, &(0x7f0000000380)=@get_event={0xc, 0x8, 0xfa00, {&(0x7f00000001c0)}}, 0x46)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$rdma_cm(r0, &(0x7f00000003c0)=@set_option={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000140)=0x1, 0xffffffff, 0x0, 0x1, 0x4}}, 0x20)
write$rdma_cm(r0, &(0x7f0000000000)=@listen={0x7, 0x8, 0xfa00}, 0x10)
r1 = syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x101, 0x80040)
setsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000180)={0x8, 0xff, 0x9, 0x3}, 0x8)

2018/05/02 02:14:48 executing program 2:
setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0x10)
r0 = socket(0x11, 0x4000000000080003, 0x0)
setsockopt(r0, 0x107, 0x2, &(0x7f0000001000), 0x0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000100)={<r1=>0x0, @in6={{0xa, 0x4e22, 0x3f000, @mcast2={0xff, 0x2, [], 0x1}, 0x2d3a}}, 0x80000001, 0x4, 0x2, 0xd409, 0x4}, &(0x7f00000001c0)=0x98)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000200)={r1, 0xd130}, 0x8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)=ANY=[@ANYBLOB='\a\x00\x00\x00', @ANYRES32=<r2=>0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000000040)=0x18)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000240)={r1, 0x5}, 0x8)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000080)={r2, 0x15b}, &(0x7f00000000c0)=0x8)
setsockopt$packet_int(r0, 0x107, 0xe, &(0x7f0000a22000), 0x4)

2018/05/02 02:14:48 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000008a040000d0"], 0x1)

[  597.682243] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  597.694066] syz-executor4 cpuset=syz4 mems_allowed=0
[  597.699258] CPU: 1 PID: 30685 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  597.706532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  597.715891] Call Trace:
[  597.718491]  dump_stack+0x1b9/0x294
[  597.722139]  ? dump_stack_print_info.cold.2+0x52/0x52
[  597.727343]  ? kasan_check_read+0x11/0x20
2018/05/02 02:14:48 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000016040000d0"], 0x1)

[  597.731507]  warn_alloc.cold.118+0xb2/0x1b8
[  597.735840]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  597.740689]  ? trace_hardirqs_on+0xd/0x10
[  597.744845]  ? _raw_spin_unlock_irq+0x27/0x70
[  597.749355]  ? finish_task_switch+0x1ca/0x810
[  597.753867]  ? lock_repin_lock+0x410/0x410
[  597.758123]  __vmalloc_node_range+0x45e/0x750
[  597.762628]  ? graph_lock+0x170/0x170
[  597.766434]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  597.771287]  __vmalloc_node_flags_caller+0x75/0x90
[  597.776225]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  597.777673] kernel msg: ebtables bug: please report to author: entry offsets not in right order
[  597.781077]  kvmalloc_node+0xde/0x100
[  597.781096]  kvm_arch_create_memslot+0xa3/0x4e0
[  597.781125]  __kvm_set_memory_region+0x1d1b/0x2e50
[  597.781147]  ? kvm_vcpu_block+0x1050/0x1050
[  597.792104] kernel msg: ebtables bug: please report to author: entry offsets not in right order
[  597.793770]  ? check_same_owner+0x320/0x320
[  597.793786]  ? do_raw_spin_unlock+0x9e/0x2e0
[  597.793805]  ? rcu_note_context_switch+0x710/0x710
[  597.793818]  ? lock_acquire+0x1dc/0x520
[  597.793834]  ? graph_lock+0x170/0x170
[  597.837796]  ? __might_sleep+0x95/0x190
[  597.841759]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  597.847279]  ? futex_wait_queue_me+0x550/0x820
[  597.851846]  ? refill_pi_state_cache.part.7+0x300/0x300
[  597.857196]  ? find_held_lock+0x36/0x1c0
[  597.861245]  ? lock_downgrade+0x8e0/0x8e0
[  597.865393]  kvm_set_memory_region+0x2e/0x50
[  597.869787]  kvm_vm_ioctl+0x668/0x1d90
[  597.873656]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  597.879429]  ? futex_wake+0x2f6/0x750
[  597.883218]  ? kvm_set_memory_region+0x50/0x50
[  597.887784]  ? get_futex_key+0x1e90/0x1e90
[  597.892014]  ? kasan_check_write+0x14/0x20
[  597.896240]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  597.901422]  ? do_futex+0x249/0x27d0
[  597.905121]  ? kasan_check_write+0x14/0x20
[  597.909341]  ? graph_lock+0x170/0x170
[  597.913133]  ? exit_robust_list+0x290/0x290
[  597.917439]  ? find_held_lock+0x36/0x1c0
[  597.921490]  ? lock_downgrade+0x8e0/0x8e0
[  597.925624]  ? kasan_check_read+0x11/0x20
[  597.930452]  ? rcu_is_watching+0x85/0x140
[  597.934584]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  597.939764]  ? __fget+0x40c/0x650
[  597.943205]  ? expand_files.part.8+0x9a0/0x9a0
[  597.947767]  ? lock_downgrade+0x8e0/0x8e0
[  597.951899]  ? __split_vma+0x5ac/0x7f0
[  597.955780]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  597.961299]  ? vma_set_page_prot+0x239/0x300
[  597.965695]  ? kvm_set_memory_region+0x50/0x50
[  597.970261]  do_vfs_ioctl+0x1cf/0x16a0
[  597.974135]  ? ioctl_preallocate+0x2e0/0x2e0
[  597.978530]  ? fget_raw+0x20/0x20
[  597.981972]  ? __x64_sys_futex+0x477/0x680
[  597.986191]  ? do_futex+0x27d0/0x27d0
[  597.989979]  ? security_file_ioctl+0x94/0xc0
[  597.994373]  ksys_ioctl+0xa9/0xd0
[  597.997811]  __x64_sys_ioctl+0x73/0xb0
[  598.001682]  do_syscall_64+0x1b1/0x800
[  598.005556]  ? finish_task_switch+0x1ca/0x810
[  598.010037]  ? syscall_return_slowpath+0x5c0/0x5c0
[  598.014959]  ? syscall_return_slowpath+0x30f/0x5c0
[  598.019878]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  598.025226]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  598.030061]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  598.035231] RIP: 0033:0x455979
[  598.038401] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  598.046094] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  598.053343] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  598.060594] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  598.067844] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  598.075096] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  598.082715] warn_alloc_show_mem: 1 callbacks suppressed
[  598.082722] Mem-Info:
[  598.090612] active_anon:76565 inactive_anon:81 isolated_anon:0
[  598.090612]  active_file:3751 inactive_file:12428 isolated_file:0
[  598.090612]  unevictable:0 dirty:221 writeback:0 unstable:0
[  598.090612]  slab_reclaimable:10630 slab_unreclaimable:106309
[  598.090612]  mapped:73875 shmem:88 pagetables:1064 bounce:0
[  598.090612]  free:1322902 free_pcp:415 free_cma:0
[  598.124297] Node 0 active_anon:306176kB inactive_anon:324kB active_file:15004kB inactive_file:49712kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295500kB dirty:884kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 131072kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  598.152446] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  598.178634] lowmem_reserve[]: 0 2830 6335 6335
[  598.183287] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:76kB free_cma:0kB
[  598.210953] lowmem_reserve[]: 0 0 3505 3505
[  598.215346] Node 0 Normal free:2379204kB min:37300kB low:46624kB high:55948kB active_anon:302012kB inactive_anon:324kB active_file:15004kB inactive_file:49712kB unevictable:0kB writepending:884kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5664kB pagetables:4108kB bounce:0kB free_pcp:980kB local_pcp:320kB free_cma:0kB
[  598.246126] lowmem_reserve[]: 0 0 0 0
[  598.249986] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  598.263705] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  598.279587] Node 0 Normal: 2251*4kB (UME) 3029*8kB (UME) 3123*16kB (UME) 3054*32kB (UME) 1466*64kB (UME) 263*128kB (UM) 193*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 50*2048kB (UM) 438*4096kB (UM) = 2379204kB
[  598.298524] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  598.307146] 16272 total pagecache pages
[  598.311169] 0 pages in swap cache
[  598.314647] Swap cache stats: add 0, delete 0, find 0/0
[  598.320051] Free swap  = 0kB
[  598.323102] Total swap = 0kB
[  598.326173] 1965969 pages RAM
[  598.329296] 0 pages HighMem/MovableOnly
[  598.333306] 339347 pages reserved
[  598.383821] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  598.395630] syz-executor4 cpuset=syz4 mems_allowed=0
[  598.400945] CPU: 1 PID: 30704 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  598.408215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  598.417552] Call Trace:
[  598.420140]  dump_stack+0x1b9/0x294
[  598.423764]  ? dump_stack_print_info.cold.2+0x52/0x52
[  598.428944]  warn_alloc.cold.118+0xb2/0x1b8
[  598.433253]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  598.438180]  __vmalloc_node_range+0x45e/0x750
[  598.442660]  ? graph_lock+0x170/0x170
[  598.446449]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  598.451276]  __vmalloc_node_flags_caller+0x75/0x90
[  598.456211]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  598.461069]  kvmalloc_node+0xde/0x100
[  598.464867]  kvm_arch_create_memslot+0xa3/0x4e0
[  598.469544]  __kvm_set_memory_region+0x1d1b/0x2e50
[  598.474499]  ? kvm_vcpu_block+0x1050/0x1050
[  598.478826]  ? graph_lock+0x170/0x170
[  598.482722]  ? find_held_lock+0x36/0x1c0
[  598.486781]  ? lock_downgrade+0x8e0/0x8e0
[  598.490946]  kvm_set_memory_region+0x2e/0x50
[  598.495343]  kvm_vm_ioctl+0x668/0x1d90
[  598.499217]  ? __lock_acquire+0x7f5/0x5140
[  598.503454]  ? kvm_set_memory_region+0x50/0x50
[  598.508041]  ? debug_check_no_locks_freed+0x310/0x310
[  598.513227]  ? print_usage_bug+0xc0/0xc0
[  598.517279]  ? graph_lock+0x170/0x170
[  598.521081]  ? find_held_lock+0x36/0x1c0
[  598.525148]  ? lock_downgrade+0x8e0/0x8e0
[  598.529287]  ? kasan_check_read+0x11/0x20
[  598.533424]  ? rcu_is_watching+0x85/0x140
[  598.537563]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  598.542750]  ? __fget+0x40c/0x650
[  598.546197]  ? do_raw_spin_unlock+0x1/0x2e0
[  598.550510]  ? expand_files.part.8+0x9a0/0x9a0
[  598.555098]  ? kasan_check_write+0x14/0x20
[  598.559319]  ? do_raw_spin_lock+0xc1/0x200
[  598.563560]  ? _raw_spin_unlock+0x22/0x30
[  598.567701]  ? kvm_set_memory_region+0x50/0x50
[  598.572269]  do_vfs_ioctl+0x1cf/0x16a0
[  598.576150]  ? ioctl_preallocate+0x2e0/0x2e0
[  598.580545]  ? fget_raw+0x20/0x20
[  598.583993]  ? lock_downgrade+0x8e0/0x8e0
[  598.588129]  ? finish_task_switch+0x182/0x810
[  598.592622]  ? security_file_ioctl+0x94/0xc0
[  598.597028]  ksys_ioctl+0xa9/0xd0
[  598.600480]  __x64_sys_ioctl+0x73/0xb0
[  598.604355]  do_syscall_64+0x1b1/0x800
[  598.608230]  ? finish_task_switch+0x1ca/0x810
[  598.612712]  ? syscall_return_slowpath+0x5c0/0x5c0
[  598.617634]  ? syscall_return_slowpath+0x30f/0x5c0
[  598.622561]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  598.627916]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  598.632752]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  598.637925] RIP: 0033:0x455979
[  598.641097] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  598.648792] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  598.656048] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  598.663308] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  598.670564] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  598.677817] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:49 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000001e040000d0"], 0x1)

2018/05/02 02:14:49 executing program 7:
r0 = memfd_create(&(0x7f0000041000)="6500000005", 0x0)
r1 = syz_open_dev$sndseq(&(0x7f0000041ff3)='/dev/snd/seq\x00', 0x0, 0x20002)
r2 = dup2(r1, r0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000041f74)={0x8, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000e50)=[{0x0, 0x100000001, 0x0, 0x0, @tick=0x5da36b38, {}, {}, @result}], 0x30)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f00000000c0)={0x32})

2018/05/02 02:14:49 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000000000002000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:49 executing program 2:
r0 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000eed000)={0x2, 0x4e21}, 0x10)
socket$rds(0x15, 0x5, 0x0)
r1 = dup(r0)
ioctl$sock_netrom_SIOCGSTAMPNS(r1, 0x8907, &(0x7f0000000100))
recvmsg$kcm(r1, &(0x7f0000001500)={&(0x7f0000000140)=@hci={0x0, <r2=>0x0}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000200)=""/146, 0x92}, {&(0x7f00000002c0)=""/159, 0x9f}, {&(0x7f0000000380)=""/4096, 0x1000}, {&(0x7f0000001380)=""/233, 0xe9}], 0x4, &(0x7f00000014c0)=""/5, 0x5, 0x7}, 0x40002100)
sendto$packet(r1, &(0x7f0000000000)="663cb46734b8e8eb690abd5b2a18a0166a2a56c01cce6c094a52f9edfa7719ad141d9e9deb5f451e142a13075f1c46d43d9b36be64252bab862cfdd8250baf72f837d01cf2c4c374aa73e1d86510c489df92b1cd2d2736d41eccc1d538b59a2897eda5ed7560d4a11bce6290dc2f75db0b925333ff53c809f3e808a3535f25adc101adc92e20a21ae7c615be3f6e2b1c4ac95bbb84ea9c1a7138bdce34b7f0aa5dfc3ab43e5554bfc528c22163c7d1faebd8eac27d662dff80a509d5b528e688ed3d806e17afe04f49d9f0", 0xcb, 0x8000, &(0x7f0000001540)={0x11, 0xf7, r2, 0x1, 0x10001, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x14)
syz_emit_ethernet(0xfed1, &(0x7f000000a000)={@broadcast=[0xff, 0xe0, 0xff, 0xff, 0xff, 0xff], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}, @multicast1=0xe0000001}, @udp={0x0, 0x4e21, 0x8}}}}}, 0x0)
recvmsg(r0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[], 0x0, &(0x7f0000000180)}, 0x0)

2018/05/02 02:14:49 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x9, 0x0, 0x0, 0xde, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x6}, 0x0, 0x4, 0xffffffffffffffff, 0x2)
r0 = socket(0xc, 0x4, 0x8000)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x4e22, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10)
recvmmsg(r0, &(0x7f0000003d80)=[{{&(0x7f0000000040)=@pppoe={0x0, 0x0, {0x0, @remote}}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)=""/92, 0x5c}, {&(0x7f00000001c0)=""/154, 0x9a}], 0x2, &(0x7f0000000280)=""/161, 0xa1, 0xbc}, 0x9}, {{&(0x7f0000000340)=@pptp, 0x80, &(0x7f0000001a40)=[{&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/210, 0xd2}, {&(0x7f00000014c0)=""/175, 0xaf}, {&(0x7f0000001580)=""/95, 0x5f}, {&(0x7f0000001600)=""/247, 0xf7}, {&(0x7f0000001700)=""/93, 0x5d}, {&(0x7f0000001780)=""/253, 0xfd}, {&(0x7f0000001880)=""/112, 0x70}, {&(0x7f0000001900)=""/230, 0xe6}, {&(0x7f0000001a00)}], 0xa, 0x0, 0x0, 0x22}, 0xe728}, {{0x0, 0x0, &(0x7f0000001c00)=[{&(0x7f0000001b00)=""/52, 0xffffffffffffffb7}, {&(0x7f0000001b40)=""/129, 0x81}], 0x2, &(0x7f0000001c40)=""/106, 0x6a, 0x1}, 0x6a3}, {{&(0x7f0000001cc0)=@nfc, 0x80, &(0x7f0000001e80)=[{&(0x7f0000001d40)=""/149, 0x95}, {&(0x7f0000001e00)=""/71, 0x47}], 0x2, 0x0, 0x0, 0xa4f}, 0x440}, {{&(0x7f0000001ec0)=@in={0x0, 0x0, @multicast2}, 0x80, &(0x7f0000001fc0)=[{&(0x7f0000001f40)=""/127, 0x7f}], 0x1, &(0x7f0000002000)=""/142, 0x8e, 0xef}, 0x240}, {{&(0x7f00000020c0)=@generic, 0x80, &(0x7f0000003500)=[{&(0x7f0000002140)=""/104, 0x68}, {&(0x7f00000021c0)=""/77, 0x4d}, {&(0x7f0000002240)=""/71, 0x47}, {&(0x7f00000022c0)=""/4096, 0x1000}, {&(0x7f00000032c0)=""/26, 0x1a}, {&(0x7f0000003300)=""/163, 0xa3}, {&(0x7f00000033c0)=""/231, 0xe7}, {&(0x7f00000034c0)=""/63, 0x3f}], 0x8, &(0x7f0000003580)=""/34, 0x22, 0x80010000}, 0x8bb7}, {{&(0x7f00000035c0)=@pppol2tpv3={0x0, 0x0, {0x0, <r1=>0xffffffffffffffff, {0x0, 0x0, @local}}}, 0x80, &(0x7f0000003a80)=[{&(0x7f0000003640)=""/142, 0x8e}, {&(0x7f0000003700)=""/239, 0xef}, {&(0x7f0000003800)=""/127, 0x7f}, {&(0x7f0000003880)=""/222, 0xde}, {&(0x7f0000003980)=""/255, 0xff}], 0x5, &(0x7f0000003b00)=""/182, 0xb6, 0x8}, 0x81}, {{&(0x7f0000003bc0)=@llc={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000003cc0)=[{&(0x7f0000003c40)=""/78, 0x4e}], 0x1, &(0x7f0000003d00)=""/101, 0x65, 0xa4b}, 0x10001}], 0x8, 0x40012100, 0x0)
r2 = fcntl$dupfd(r0, 0x408, r1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000003f80)={'vcan0\x00', <r3=>0x0})
sendmsg$can_raw(r0, &(0x7f00000040c0)={&(0x7f0000003fc0)={0x1d, r3}, 0x10, &(0x7f0000004080)={&(0x7f0000004000)=@canfd={{0x3, 0x6, 0x80}, 0x11, 0x2, 0x0, 0x0, "bead365b696d491fa378e0a8423cd479ad96d6692085d5ecf49ceb79cf15f4aebdb9a7d4a5c4b57e962f3d8501f43b646d010b280fc71a5359305586f123c891"}, 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$EVIOCSKEYCODE(r2, 0x40084504, &(0x7f0000001a00)=[0x0, 0x100000000])

2018/05/02 02:14:49 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'syz_tun\x00', <r1=>0x0})
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(0xffffffffffffffff, 0x84, 0x65, &(0x7f0000000180), 0x0)
ioctl$BLKRRPART(r0, 0x125f, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vga_arbiter\x00', 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={&(0x7f0000000100)={0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)=@ipv6_newaddr={0x34, 0x14, 0x3, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r1}, [@IFA_ADDRESS={0x14, 0x1, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}}, @IFA_FLAGS={0x8, 0x8, 0x402}]}, 0x34}, 0x1}, 0x0)

2018/05/02 02:14:49 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x200000800)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, r0, 0x0)

2018/05/02 02:14:49 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x4c, 0x1000, &(0x7f0000009000/0x1000)=nil})

[  598.778684] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  598.790486] syz-executor4 cpuset=syz4 mems_allowed=0
[  598.795681] CPU: 0 PID: 30715 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  598.802985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  598.812691] Call Trace:
[  598.815309]  dump_stack+0x1b9/0x294
[  598.818960]  ? dump_stack_print_info.cold.2+0x52/0x52
[  598.824165]  ? graph_lock+0x170/0x170
[  598.827986]  warn_alloc.cold.118+0xb2/0x1b8
[  598.832321]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  598.837185]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  598.843272]  ? update_load_avg+0x2d9/0x2570
[  598.847602]  ? graph_lock+0x170/0x170
[  598.851425]  __vmalloc_node_range+0x45e/0x750
[  598.855937]  ? graph_lock+0x170/0x170
[  598.859769]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  598.864622]  __vmalloc_node_flags_caller+0x75/0x90
[  598.869556]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  598.874415]  kvmalloc_node+0xde/0x100
[  598.878235]  kvm_arch_create_memslot+0xa3/0x4e0
[  598.882925]  __kvm_set_memory_region+0x1d1b/0x2e50
[  598.887886]  ? kvm_vcpu_block+0x1050/0x1050
[  598.892220]  ? print_usage_bug+0xc0/0xc0
[  598.896295]  ? lock_downgrade+0x8e0/0x8e0
[  598.900450]  ? lock_downgrade+0x8e0/0x8e0
[  598.904616]  ? graph_lock+0x170/0x170
[  598.908437]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  598.913031]  ? __lock_acquire+0x7f5/0x5140
[  598.917277]  ? trace_hardirqs_on+0xd/0x10
[  598.921436]  ? find_held_lock+0x36/0x1c0
[  598.925510]  ? lock_downgrade+0x8e0/0x8e0
[  598.929695]  kvm_set_memory_region+0x2e/0x50
[  598.935419]  kvm_vm_ioctl+0x668/0x1d90
[  598.939323]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  598.944870]  ? __perf_event_task_sched_in+0x247/0xb80
[  598.950071]  ? kvm_set_memory_region+0x50/0x50
[  598.954668]  ? find_held_lock+0x36/0x1c0
[  598.958746]  ? lock_downgrade+0x8e0/0x8e0
[  598.962904]  ? finish_task_switch+0x182/0x810
[  598.967412]  ? kasan_check_read+0x11/0x20
[  598.971567]  ? graph_lock+0x170/0x170
[  598.975376]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  598.979979]  ? compat_start_thread+0x80/0x80
[  598.984400]  ? _raw_spin_unlock_irq+0x27/0x70
[  598.988905]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  598.993947]  ? trace_hardirqs_on+0xd/0x10
[  598.998105]  ? _raw_spin_unlock_irq+0x27/0x70
[  599.002603]  ? find_held_lock+0x36/0x1c0
[  599.006674]  ? lock_downgrade+0x8e0/0x8e0
[  599.010837]  ? kasan_check_read+0x11/0x20
[  599.014994]  ? rcu_is_watching+0x85/0x140
[  599.019148]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  599.024364]  ? __fget+0x40c/0x650
[  599.027832]  ? expand_files.part.8+0x9a0/0x9a0
[  599.032424]  ? lock_downgrade+0x8e0/0x8e0
[  599.036586]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  599.042638]  ? vma_set_page_prot+0x239/0x300
[  599.047061]  ? kvm_set_memory_region+0x50/0x50
[  599.051654]  do_vfs_ioctl+0x1cf/0x16a0
[  599.055566]  ? ioctl_preallocate+0x2e0/0x2e0
[  599.059993]  ? fget_raw+0x20/0x20
[  599.063459]  ? exit_to_usermode_loop+0x87/0x310
[  599.068141]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  599.073690]  ? security_file_ioctl+0x94/0xc0
[  599.078110]  ksys_ioctl+0xa9/0xd0
[  599.081573]  __x64_sys_ioctl+0x73/0xb0
[  599.085470]  do_syscall_64+0x1b1/0x800
[  599.089363]  ? syscall_return_slowpath+0x5c0/0x5c0
[  599.094300]  ? syscall_return_slowpath+0x30f/0x5c0
[  599.099238]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  599.104612]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  599.109463]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  599.114650] RIP: 0033:0x455979
[  599.117839] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
2018/05/02 02:14:49 executing program 1:
r0 = socket$inet6(0xa, 0x802, 0x88)
setsockopt$inet6_udp_int(r0, 0x11, 0x100000000a, &(0x7f0000c29ffc)=0x3, 0x4)
sendmsg$inet_sctp(r0, &(0x7f0000557fc8)={&(0x7f0000e3aff0)=@in={0x2, 0x4e23}, 0x10, &(0x7f0000b03000), 0x1}, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x200000, 0x0)
ioctl$PPPIOCGMRU(r1, 0x80047453, &(0x7f00000000c0))
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f0000000280)={0x309, 0x2, 0x3})
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000001c0)=<r2=>0x0)
getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f0000000200), &(0x7f0000000240)=0x4)
perf_event_open(&(0x7f0000000140)={0x7, 0x70, 0x3, 0x8000, 0x100000000, 0x31ac, 0x0, 0x2, 0x32000, 0x9, 0x6, 0x9, 0x7, 0x3, 0x80, 0x5, 0x8, 0x7, 0x68, 0x7d49, 0x8, 0xfffffffffffffffa, 0x3f, 0xffffffffffffc544, 0x2, 0x5, 0x3ff, 0x400, 0x6, 0x7fffffff, 0x56aa9f23, 0x3, 0x10001, 0x7, 0x6, 0x6, 0x7ff, 0x10001, 0x0, 0xfd25, 0x5, @perf_bp={&(0x7f0000000100), 0x1}, 0xc000, 0xffffffffffffffff, 0x9, 0x2, 0x3556faf6, 0x5, 0x6}, r2, 0x10, r1, 0x1)
getsockopt$IP_VS_SO_GET_SERVICE(r1, 0x0, 0x483, &(0x7f0000000300), &(0x7f0000000380)=0x68)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r3=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000040)={@remote={0xfe, 0x80, [], 0xbb}, 0x1b, r3})

2018/05/02 02:14:49 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000004e040000d0"], 0x1)

2018/05/02 02:14:49 executing program 1:
mremap(&(0x7f0000a94000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000a94000/0x4000)=nil)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, &(0x7f0000000040), &(0x7f0000000080)=0x40)
r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x800c0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f00000001c0)={0x0, 0x2, 0x2, 0x3f, 0x2}, 0x14)
recvfrom$inet(r1, &(0x7f0000000100)=""/112, 0x70, 0x40, &(0x7f0000000180)={0x2, 0x4e21, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10)

2018/05/02 02:14:50 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000038040000d0"], 0x1)

2018/05/02 02:14:50 executing program 2:
r0 = socket(0x7, 0x7, 0x403e)
write(r0, &(0x7f0000000040)="2400000058001f00ff01f4f9002301000008000380cdb75dad5ac6ba05a2d2d38a663e59", 0x24)

2018/05/02 02:14:50 executing program 1:
mkdir(&(0x7f00005b2000)='./file0\x00', 0x0)
mount(&(0x7f0000212ff8)='./file0\x00', &(0x7f000078eff8)='./file0\x00', &(0x7f0000982ff9)='mqueue\x00', 0x0, &(0x7f0000653fff))
r0 = creat(&(0x7f0000015ff4)='./file0/bus\x00', 0x0)
mq_notify(r0, &(0x7f0000012000)={0x0, 0x0, 0x0, @thr={&(0x7f0000d05000), &(0x7f00005a6f90)}})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000340)={<r1=>0x0}, &(0x7f0000000380)=0xc)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000003c0)={{{@in6=@loopback, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6}, 0x0, @in=@dev}}, &(0x7f00000004c0)=0xe8)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000500)={0x0, 0x0, <r3=>0x0}, &(0x7f0000000540)=0xc)
fcntl$getownex(r0, 0x10, &(0x7f0000000580)={0x0, <r4=>0x0})
stat(&(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000680)={0x0, 0x0, <r6=>0x0}, &(0x7f00000006c0)=0xc)
sendmsg$unix(r0, &(0x7f0000000800)={&(0x7f0000000000)=@file={0x0, './file0/bus\x00'}, 0x6e, &(0x7f0000000300)=[{&(0x7f0000000080)="49ca7605ea2c00962067d6c51ab4e0d52b0359338d8dd53afb8bfbb2b31faaa2af426a505a43c3082ca4d71600752e06c62cc232f97990efd9d9f7d22451e124aefd2120f363891edb66c18dcb669836b9f3689b5f7c630996dc8a6e5071e908fd89b547228212bd339ce0dfac29ffc6e413fccfbd16b71bf00f964505dd426743fc", 0x82}, {&(0x7f0000000140)="e028dc75434e616c8d5c030458861f8540ae1a98f325f0402ce37ea8597cf2f709cf373a669f61582d5bdc4dc09847bc7009bc89bf970e42e3ad7ebf32d19da57b58cd1d613710ff98b9fb0057b7fc397588d73459e0e4c2aad9544194d498fc8c09f04f8e3a8eeadb1ab9c02294966dbcb7fbea5c8b2ca58a67918576f4ce13a11121a531982a0794adbc08b40ca12c792b3edc88255836305f571d0509786d6bf72f8493b1a05d9a15bb33ba47d86245b1f18dfaae773b6ec885b490ff4a7f0432780ce20c389c6c5373536d9b78a123276806f4523796ddc725971cfb8cc429d45f02", 0xe4}, {&(0x7f0000000240)="1e089c682818f791dff4112842c9b848f7e9605d14a400538d1001c8722b095cf01f7cc189b39479cd8912cf5d979f41c02e36bf59cca8ff0c67e353c9f8cf2547b77aeff3947f583e2f84a660c0d528144a31cfe7168678976b1780c3a663aa37b3cf1ae4781dd4a9027046873dc9dbcf762c399bfc11bcf7bc79942fb2b24e658aa8054acf47f5883bce8693dab2155e4406ef45", 0x95}], 0x3, &(0x7f0000000700)=[@cred={0x20, 0x1, 0x2, r1, r2, r3}, @rights={0x18, 0x1, 0x1, [r0]}, @rights={0x28, 0x1, 0x1, [r0, r0, r0, r0, r0, r0]}, @rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0, r0]}, @rights={0x18, 0x1, 0x1, [r0]}, @cred={0x20, 0x1, 0x2, r4, r5, r6}], 0xc8, 0x800}, 0x4000844)
mq_notify(r0, &(0x7f0000477fa0)={0x0, 0x0, 0x0, @thr={&(0x7f0000bc8000), &(0x7f0000cf3000)}})

2018/05/02 02:14:50 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000026040000d0"], 0x1)

2018/05/02 02:14:50 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000023040000d0"], 0x1)

2018/05/02 02:14:50 executing program 1:
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
r1 = dup(r0)
getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f0000000000), &(0x7f0000000040)=0x40)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000080)={<r2=>0x0, @in6={{0xa, 0x4e23, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x101}}, 0x7f, 0x100000000}, &(0x7f0000000140)=0x90)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000180)={r2, 0x20}, 0x8)

[  599.125552] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  599.132822] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  599.140097] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  599.151968] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  599.159239] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  599.167058] warn_alloc_show_mem: 1 callbacks suppressed
[  599.167062] Mem-Info:
[  599.174933] active_anon:75552 inactive_anon:80 isolated_anon:0
[  599.174933]  active_file:3751 inactive_file:12440 isolated_file:0
[  599.174933]  unevictable:0 dirty:227 writeback:0 unstable:0
[  599.174933]  slab_reclaimable:10630 slab_unreclaimable:106651
[  599.174933]  mapped:73931 shmem:88 pagetables:1057 bounce:0
[  599.174933]  free:1322982 free_pcp:481 free_cma:0
[  599.208612] Node 0 active_anon:302108kB inactive_anon:320kB active_file:15004kB inactive_file:49760kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295524kB dirty:908kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 129024kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  599.236761] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  599.263489] lowmem_reserve[]: 0 2830 6335 6335
[  599.268137] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:656kB free_cma:0kB
[  599.295906] lowmem_reserve[]: 0 0 3505 3505
[  599.300311] Node 0 Normal free:2375656kB min:37300kB low:46624kB high:55948kB active_anon:302108kB inactive_anon:320kB active_file:15004kB inactive_file:49760kB unevictable:0kB writepending:908kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5504kB pagetables:4080kB bounce:0kB free_pcp:1192kB local_pcp:572kB free_cma:0kB
[  599.330257] lowmem_reserve[]: 0 0 0 0
[  599.334120] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  599.347788] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  599.363654] Node 0 Normal: 2214*4kB (UME) 2944*8kB (UME) 3086*16kB (UME) 3058*32kB (UME) 1466*64kB (UME) 265*128kB (UM) 191*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 49*2048kB (UM) 438*4096kB (UM) = 2375608kB
[  599.382563] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  599.391163] 16278 total pagecache pages
[  599.395159] 0 pages in swap cache
[  599.398632] Swap cache stats: add 0, delete 0, find 0/0
[  599.404027] Free swap  = 0kB
[  599.407067] Total swap = 0kB
[  599.410113] 1965969 pages RAM
[  599.413233] 0 pages HighMem/MovableOnly
[  599.417225] 339347 pages reserved
[  599.453493] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  599.465341] syz-executor4 cpuset=syz4 mems_allowed=0
[  599.470536] CPU: 0 PID: 30769 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  599.477813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  599.487167] Call Trace:
[  599.489758]  dump_stack+0x1b9/0x294
[  599.493379]  ? dump_stack_print_info.cold.2+0x52/0x52
[  599.498560]  ? perf_trace_lock_acquire+0xe3/0x980
[  599.503394]  warn_alloc.cold.118+0xb2/0x1b8
[  599.507708]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  599.512541]  ? trace_hardirqs_on+0xd/0x10
[  599.516676]  ? _raw_spin_unlock_irq+0x27/0x70
[  599.523957]  ? finish_task_switch+0x1ca/0x810
[  599.528458]  __vmalloc_node_range+0x45e/0x750
[  599.532946]  ? graph_lock+0x170/0x170
[  599.536736]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  599.541565]  __vmalloc_node_flags_caller+0x75/0x90
[  599.546480]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  599.551310]  kvmalloc_node+0xde/0x100
[  599.555098]  kvm_arch_create_memslot+0xa3/0x4e0
[  599.559771]  __kvm_set_memory_region+0x1d1b/0x2e50
[  599.564701]  ? kvm_vcpu_block+0x1050/0x1050
[  599.569015]  ? print_usage_bug+0xc0/0xc0
[  599.573071]  ? perf_trace_lock+0x900/0x900
[  599.577295]  ? lock_acquire+0x1dc/0x520
[  599.581256]  ? graph_lock+0x170/0x170
[  599.585045]  ? __might_sleep+0x95/0x190
[  599.589012]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  599.594539]  ? futex_wait_queue_me+0x550/0x820
[  599.599105]  ? __lock_acquire+0x7f5/0x5140
[  599.603331]  ? refill_pi_state_cache.part.7+0x300/0x300
[  599.608682]  ? find_held_lock+0x36/0x1c0
[  599.612746]  ? lock_downgrade+0x8e0/0x8e0
[  599.616912]  kvm_set_memory_region+0x2e/0x50
[  599.621309]  kvm_vm_ioctl+0x668/0x1d90
[  599.625185]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  599.630708]  ? __perf_event_task_sched_in+0x247/0xb80
[  599.635897]  ? kvm_set_memory_region+0x50/0x50
[  599.640472]  ? find_held_lock+0x36/0x1c0
[  599.644522]  ? perf_trace_lock_acquire+0xe3/0x980
[  599.649358]  ? perf_trace_lock+0x900/0x900
[  599.653579]  ? do_futex+0x249/0x27d0
[  599.657281]  ? kasan_check_read+0x11/0x20
[  599.661416]  ? graph_lock+0x170/0x170
[  599.665201]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  599.669768]  ? compat_start_thread+0x80/0x80
[  599.674168]  ? _raw_spin_unlock_irq+0x27/0x70
[  599.678649]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  599.683659]  ? exit_robust_list+0x290/0x290
[  599.687969]  ? find_held_lock+0x36/0x1c0
[  599.692031]  ? lock_downgrade+0x8e0/0x8e0
[  599.696176]  ? kasan_check_read+0x11/0x20
[  599.700310]  ? rcu_is_watching+0x85/0x140
[  599.704447]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  599.709632]  ? __fget+0x40c/0x650
[  599.713074]  ? do_raw_spin_unlock+0x1/0x2e0
[  599.717383]  ? expand_files.part.8+0x9a0/0x9a0
[  599.721953]  ? kasan_check_write+0x14/0x20
[  599.726174]  ? do_raw_spin_lock+0xc1/0x200
[  599.730403]  ? kvm_set_memory_region+0x50/0x50
[  599.734974]  do_vfs_ioctl+0x1cf/0x16a0
[  599.738855]  ? ioctl_preallocate+0x2e0/0x2e0
[  599.743257]  ? fget_raw+0x20/0x20
[  599.746703]  ? __x64_sys_futex+0x477/0x680
[  599.750922]  ? exit_to_usermode_loop+0x87/0x310
[  599.755597]  ? do_futex+0x27d0/0x27d0
[  599.759401]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  599.764927]  ? security_file_ioctl+0x94/0xc0
[  599.769325]  ksys_ioctl+0xa9/0xd0
[  599.772768]  __x64_sys_ioctl+0x73/0xb0
[  599.776646]  do_syscall_64+0x1b1/0x800
[  599.780519]  ? finish_task_switch+0x1ca/0x810
[  599.785003]  ? syscall_return_slowpath+0x5c0/0x5c0
[  599.789928]  ? syscall_return_slowpath+0x30f/0x5c0
[  599.794847]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  599.800201]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  599.805038]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  599.810213] RIP: 0033:0x455979
[  599.813388] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  599.821084] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  599.828339] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  599.835592] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  599.842845] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
2018/05/02 02:14:50 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000058040000d0"], 0x1)

[  599.850097] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:50 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000007fffffff00000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:50 executing program 5:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x5, 0x20000000000000e, 0x4000000000080, 0x2}, 0x2c)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000140)={r0, &(0x7f00000005c0)='\x00\x00\x00\x00\x00\x00\x00\x00'}, 0x4b)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000000240)={0x7, <r1=>r0})
personality(0x4400005)
mknodat(r1, &(0x7f0000000080)='./file0\x00', 0x2, 0x100)
execve(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000380)=[&(0x7f0000000280)='/dev/vsock\x00', &(0x7f00000002c0)='/dev/vsock\x00', &(0x7f0000000300)='/dev/vsock\x00', &(0x7f0000000340)='\x00'], &(0x7f0000000580)=[&(0x7f00000003c0)='/dev/vsock\x00', &(0x7f0000000640)='cgroupcpusetbdev{\x00', &(0x7f0000000440)='\x00', &(0x7f0000000480)='/dev/vsock\x00', &(0x7f00000004c0)='\x00', &(0x7f0000000500)='/dev/vsock\x00', &(0x7f0000000680)='$%eth1\'wlan1\'wlan1,\x00'])
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000600)='/dev/vsock\x00', 0x2000, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r2, 0x40045542, &(0x7f0000000200)=0x6)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000180)={r0, &(0x7f00000000c0)="fc0205d6040f292e5ecb6036db842400a47ce45ab24d207fcb6195b6084fec06a6a82d9e2ae5552e82e4dec19687cdb31de9f63d677ead842f927ded3c8d14979a532ccb6d81ef43f62d6b77e74a42cbf30a9a8f858992fa2b562b08408f868100459a87af5e"}, 0x10)

2018/05/02 02:14:50 executing program 7:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000840)={<r0=>0xffffffffffffffff})
r1 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x80000)
sendmsg(r0, &(0x7f0000000780)={&(0x7f0000000140)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x0, 0x2, 0x2, 0x1, {0xa, 0x4e23, 0x2, @mcast2={0xff, 0x2, [], 0x1}, 0x1}}}, 0x80, &(0x7f00000006c0)=[{&(0x7f00000001c0)="4b7b97dcd4e820d72ed624d949bdc47b4c03676d210a093be4bc240ce22afb7a5a34742b0dd4c2ac8f1d77a5e4744d25a87cfa400bb1b38706", 0x39}, {&(0x7f00000002c0)="2f263723be7d7aafb54a4c9d3cafba29383abcdc73e19ad6ea94da2cb55a9c4b30e66a53a24d4298c07707b3e7c3d3b1781083a6a17923b0ed336a041480b349492a50880bf2ddd074a781fe763e142e0ff453138404241451396230cbdb04114fca46910c32e5030f7fba723853720ddcf1c94dcba1bdd4991afde938ce3afc351965e197e12dfdd982ede4952f969df658e3f3897f8517b8c804d575b9f011cfe91c59b442b676fecbc5", 0xab}, {&(0x7f0000003440)="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", 0x1000}, {&(0x7f0000000380)="f9ad91d0454d827d166788af3b4446ddd8e3ac981d8fd8da870a9aa7ac74135017d724e056d10b8c93ef7100e4c2b8fe8ad2c2aecb37c90699d387d20cf40b9f258cb40bb07cddfb9431e8f50a4577aba00c6208777a9e60021b16dbbe2e9ef711560448a244a8d991bfa1e867edcc80e03adb2c348d5722c6942d25f9cef6b4a9f73dae9a76eabee5df1a20789636c227bdff556c268e30c4a5ed18c4b73dea3eada5a75c9ef7c2a9c73a7a80eb97b5930864a3441682b84fa7ff772ab7b124c1c0b41eb5355123b17661cfe83d9d5b22972e9949995bbe44ce50cf71ea544dbd79ee1131f55a861f5613", 0xeb}, {&(0x7f0000000480)="6b3bad572a3ce482f1187e63251fcfca8579028fb6ec33a1653c2e07ea87c9559cd96bae7b5fd4b5492db1d9d081ad3e390abaf4508d21792a18c2ef0d784bca95b47d13", 0x44}, {&(0x7f0000000500)="d36aa962928ab95e045a22bb37e89695cc3bc1cd2486392f864c362af4a1f4eeb4130430f8e4de04b9f2985ebdb02884429900475d0e5f88057cd22c108ac4b73b2a818dc2d284dc8bc57093f462ee97bcd0a746f02ed006ae4e6745e0059c7903b52d23f1a5572b6784240e0a6f50875512841845b655c9c093376a4678752f6ef0712b69c965a3c0f4a5bd2aad179cd44ae88abb7d5f7179d8668914fbe7232f86a8e8657b3ac052ba44ea93d912", 0xaf}, {&(0x7f00000005c0)="7262c8f317f9c8f46c770aa81ec38f5fe53b73561200eb33717ce2a80ce512e5697df2223ac987986f36bd3795bcbdfddec7962db44419001cd0b0905f9830fe2fde8b542711a0f42086de84f155a0b1492da0784f50533a7646dc92804397683a38988fd9701fe1a6b5e8eb61bfc3ff11b97c16882324d62dcc2124a132c53401968146606c8e40fd397536a05cc0a1d171dbcf68a8073579902243e7aea50e0c360d20b24385c14e7e6f1dc6249c63f49aaee0c4b5a313a35a066a6db9a72a809229b8228e4d36adfccfae17d158fed0b0e41b61cd3087", 0xd8}], 0x7, &(0x7f0000000740)=[{0x38, 0x29, 0x20, "6a4e0aaec1269d658844d062a10b5150ab856b47cf1a330b3996bda57167ce45965a39e8f0071150"}], 0x38, 0x8000}, 0x40)
r2 = socket$inet6(0x10, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000200)={&(0x7f0000000240)=@sco={0x1f, {0xa3, 0x8, 0x4, 0x7ff, 0x3f, 0x3}}, 0x80, &(0x7f0000000040)=[{&(0x7f00000000c0)="5500000018007f04002d1cb2a4a280930a0600007da843cf27d0f869390009402f0021000400000019000500fcfc1700000000dc1338d54400009b84136ef75afb83de448daa7227c43ab8220000060cec4fab91d4", 0x55}], 0x1, &(0x7f0000000940)=[{0x90, 0x117, 0x0, "f509aa2cccf04fecf9d1655ecfacb67e3d1ec1de10119a4c5fcdd2c11177bec344d4f67d7c69b07d437575f17fc411bb36b58dfed59aedfdba617f060237c194b35a9f763e19bd03a47f7e8d6128854f89eb9f69fbfb548c7ccf9820a8e4b90ba3ffc60d3adb57b846764525472e8cbcdb89ba2a1f64cb626a93"}, {0xf0, 0x0, 0x6, "2a6d0648cbdc8b21885eede930c5ebd318eb942adadea24decfd045667f4cb53183934fcdb75b4708098f1e9e91100fb6e8b57fcbc0e2bbd43db79d9aff6996e4211657b972ad70a62b317b131ac2cf101b79f29cd651fdcb2d49aa798c7af842590be056ebbb78851039ddaa6b73bf6161c1c25dd31356208cc6b1c1371b0e08c0a1c2e43a397ad5020c1577551905b227f67c654048ac1174ca39751770cfc7449f6e1db9e72399cffca6d2b31e37302713c62d75f0a069b3690ae658e359d9ead8808470ec6691fe7886a696fa78ae83e1323089d6097d61f08fc"}, {0xc0, 0x10e, 0x100000000, "ad80616549b1473c73b64804122504b1e49f40f2cd31763c784712be129cb373d8881ca4e226630cb8fb36440553ff4f637db8924cdfe47a5b8a4996f7b270f762c814b56025b2954178f8a4cd0531ac47e28be2a7cf8b1afed6c6789890f33a7742961398587084cc0969dbe2247c7c8baa33316ad319ece7368c4152bc7f0fc90d9c36b6839afd749a4f59865e05ae0bd03aaaa12ebd7ba8b469e1cc6baa12e0102f7a9e236796b65a3555eeb5b1"}, {0xc0, 0x10b, 0x7, "64691c1d16caa5eb070dfcdf9a4bf2edc2c30f342bbc9d8059120432d269e125f97eb1ccf897ce1e68121ad1220ab1f1b5058b30e1656c089833b3f903607219d456d98d001dda03be6782d6863af582bfae451d00ce220970bef720298d853dbaef1ff982559a7aa2636452ae03e7033b4ee100bccdfe337adbc0de3995800283f715f348a9d37eddc4a63ee1d6cb84e457859e23738109170aaccdc1032579a27b53505c137b77d28f10179f835846"}, {0xb8, 0x112, 0x3ff, "26bdc2f94cae390fb2a7bfaf9d04e9971d612fbfec04d3cab71c305ecdfcc712f29eab4eee16aece4c35fb13752fa4c12493b22fb9ea330c669edb966856bb8a092a94bcd6d8c7c0b1ed188cbcfe7774377576271cb11b0846eb7bea829ddca8a47862fa7713528215a3e77325d15dafdfd889a5d73c169bd6a929cd3027357e37e593ba927ec021ba7485fc1958b8f50a6f54f0cd3c53bd9fe204a79b1a0b0a1a"}, {0x1010, 0x118, 0xf6, "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"}, {0x1010, 0xff, 0x7, "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"}, {0x88, 0xff, 0x200, "e85a9698acf34f3177a7b1b216294de716e78dc09a0f6d514a537e4a363f710b25bdc712ca1ed7a45c23139f0c712f0d08894b02a75be37793ad38c5570c7100dd7960a043fd681973ce3ffb8a1d3f0017425ae5d8aac4dfc30b075909da35d577d57811571d900ea3d8e36b085356db8a25"}, {0x100, 0x1ff, 0x3, "b53b194977b7f543cbc83ac42d1127bb45bbaa0028550a5996cbe6e5a2ffd1dfc88bcbdf85ee16df4922a19112b02743b2a909a4923befc813df5b70d249d47765d8780b89a0540bd454042d58b1624136adae64be28c0287da538de42e912ed7c48ba63252685ba17733abd3467ec7abc33dd3b2fa8d560a6f44b928be3ea03e1c10434265b3efacadab5c839595b58a73bd2f75ae5006963e18c75d137b8dbcaae0cce34aabc0461e3af56ce5de8510d435e66c69605737f32b91412755c7bc411b2a79ddc065e3ae97485f9d72d112a07e856f53a4682aa4afe1894a3a9ee9218738ec5877f18e9"}, {0xc8, 0x1, 0x0, "6ac0363120922be868c5a39e9ca4c68a9acdbe980594d45d239d5b66bd5b20b36e20663fe5e78fd0143c3746f050976f18a9b444c20b7b92c97f97d1cc41e0e01f353d89a0b43f6c12473c3d8dae73cefa7f166c8542887eb7228afe4a3c8a23fadb34b00ac401273cebbb164f402cffdc31137b5f758b615ca894c155cb3ef71f802a345e4f1b56c51264acaf285349128e98f5ff75b3ea337b6eb9e966ff33d331d8bc5239b1d46597788fb4aeeec1c2ad"}], 0x2628, 0x20000000}, 0x20000000)
r3 = socket$inet(0x2, 0x6, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f00000008c0)=@broute={'broute\x00', 0x20, 0x2, 0x398, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000240), &(0x7f0000002f80)=ANY=[@ANYBLOB="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"]}, 0x502)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, &(0x7f0000000040)=0x1d, 0x4)

2018/05/02 02:14:50 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x1000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:50 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r2 = getpgrp(0x0)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f00000000c0)=<r3=>0x0)
kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r1, &(0x7f0000000100)={r1, r0, 0x38})
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r4 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r5 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$sock_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000140))
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r5, 0x40045402, &(0x7f0000013000))
keyctl$session_to_parent(0x12)
readv(r5, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r4, r0, 0x0)

2018/05/02 02:14:50 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x5)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000540)=<r1=>0x0)
syz_open_procfs(r1, &(0x7f0000000580)='gid_map\x00')
openat$ion(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ion\x00', 0x201, 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x7c7, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r2, 0xc1105511, &(0x7f0000000400)={{0x2, 0x0, 0x0, 0x0, "386aea20273dc03c3d18dd0dbd4a0ca15f9f580393cc4ec3b8ee256b9aa630224ba64c6ff43ee01d2996c914"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2b, "eda422cd37591b3a5a7a683380f7e0b9e790c6b72cd0a4f3342f7431c1699a305ca3091bb2320e8df4e298a2cca26637866a68c1426ffbd8a6c7da1d8ea77d9d", &(0x7f00000000c0)='/dev/snd/controlC#\x00', 0x13})
setns(r2, 0x4000000)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/pfkey\x00', 0x14000, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
setsockopt$inet_int(r3, 0x0, 0x16, &(0x7f0000000240)=0x2, 0x4)
fcntl$setpipe(r3, 0x407, 0x2000000000000000)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000003c0)={0x7000, 0x1000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f0000000000)={0x0, 0x5000})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x40, 0x0)
connect$vsock_stream(r7, &(0x7f0000000080)={0x28, 0x0, 0xffffffff, @my}, 0x10)
setsockopt$kcm_KCM_RECV_DISABLE(r3, 0x119, 0x1, &(0x7f0000000280)=0x20, 0x4)
dup2(r4, r6)
dup3(r4, r5, 0x0)
getsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, &(0x7f0000000140), &(0x7f0000000180)=0xfffffffffffffec6)
set_robust_list(&(0x7f0000000700)={&(0x7f0000000640)={&(0x7f0000000600)}, 0x3f, &(0x7f00000006c0)={&(0x7f0000000680)}}, 0x18)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000005c0), 0x80)
ioctl$sock_inet_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000100))
writev(r0, &(0x7f0000fb5ff0)=[{&(0x7f0000000040)}], 0x1)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000080)="1f0000000203193b000007000000068100023b050900020000000000feff58", 0x1f}], 0x1)
flistxattr(r0, &(0x7f00000002c0)=""/209, 0xd1)

2018/05/02 02:14:50 executing program 2:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fcntl$setsig(r0, 0xa, 0xe)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0)
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x8000, 0x0)
setsockopt$ax25_buf(r2, 0x101, 0x19, &(0x7f00000000c0)="ae4e098ab0a11ae910316801839dc8a48f3746b480d46c9024f35523c4f0fb4cdc7ba9bda651374f8a5932109de2fd6895db4b9f74d7c7efa58fcd10dc4f7afc1f5a6bec651837fd2f521639f40e58ab5aab272aa82847b3e7c0a0e8e7cc2acbfb298e78e0f9700c", 0x68)
ioctl$TIOCSCTTY(r1, 0x540e, 0x0)

[  599.922421] Unknown ioctl 1074025794
[  599.963745] Unknown ioctl 1074025794
[  599.971305] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  599.983097] syz-executor4 cpuset=syz4 mems_allowed=0
[  599.988865] CPU: 1 PID: 30787 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  599.996160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  600.005519] Call Trace:
[  600.008114]  dump_stack+0x1b9/0x294
2018/05/02 02:14:51 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000007e040000d0"], 0x1)

2018/05/02 02:14:51 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000200000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  600.011759]  ? dump_stack_print_info.cold.2+0x52/0x52
[  600.016962]  ? graph_lock+0x170/0x170
[  600.020777]  warn_alloc.cold.118+0xb2/0x1b8
[  600.025115]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  600.029982]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  600.036064]  ? update_load_avg+0x2d9/0x2570
[  600.040401]  ? graph_lock+0x170/0x170
[  600.044226]  __vmalloc_node_range+0x45e/0x750
[  600.048731]  ? graph_lock+0x170/0x170
[  600.052542]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  600.057397]  __vmalloc_node_flags_caller+0x75/0x90
[  600.062331]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  600.067173]  kvmalloc_node+0xde/0x100
[  600.070967]  kvm_arch_create_memslot+0xa3/0x4e0
[  600.075633]  __kvm_set_memory_region+0x1d1b/0x2e50
[  600.080558]  ? kvm_vcpu_block+0x1050/0x1050
[  600.084866]  ? print_usage_bug+0xc0/0xc0
[  600.088912]  ? zap_class+0x720/0x720
[  600.092608]  ? lock_downgrade+0x8e0/0x8e0
[  600.096743]  ? graph_lock+0x170/0x170
[  600.100528]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  600.105096]  ? __lock_acquire+0x7f5/0x5140
[  600.109319]  ? trace_hardirqs_on+0xd/0x10
[  600.113452]  ? find_held_lock+0x36/0x1c0
[  600.117503]  ? lock_downgrade+0x8e0/0x8e0
[  600.123130]  kvm_set_memory_region+0x2e/0x50
[  600.127525]  kvm_vm_ioctl+0x668/0x1d90
[  600.131404]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  600.136928]  ? __perf_event_task_sched_in+0x247/0xb80
[  600.142104]  ? kvm_set_memory_region+0x50/0x50
[  600.146672]  ? find_held_lock+0x36/0x1c0
[  600.150717]  ? perf_trace_lock+0xd6/0x900
[  600.154859]  ? zap_class+0x720/0x720
[  600.158555]  ? finish_task_switch+0x182/0x810
[  600.163043]  ? kasan_check_read+0x11/0x20
[  600.167175]  ? graph_lock+0x170/0x170
[  600.170960]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  600.175534]  ? compat_start_thread+0x80/0x80
[  600.179927]  ? _raw_spin_unlock_irq+0x27/0x70
[  600.184406]  ? trace_hardirqs_on+0xd/0x10
[  600.188536]  ? _raw_spin_unlock_irq+0x27/0x70
[  600.193023]  ? find_held_lock+0x36/0x1c0
[  600.197082]  ? lock_downgrade+0x8e0/0x8e0
[  600.201217]  ? rcu_is_watching+0x85/0x140
[  600.205353]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  600.210532]  ? __fget+0x40c/0x650
[  600.213973]  ? expand_files.part.8+0x9a0/0x9a0
[  600.218539]  ? lock_downgrade+0x8e0/0x8e0
[  600.222674]  ? vma_set_page_prot+0x239/0x300
[  600.227139]  ? kvm_set_memory_region+0x50/0x50
[  600.231705]  do_vfs_ioctl+0x1cf/0x16a0
[  600.235581]  ? ioctl_preallocate+0x2e0/0x2e0
[  600.239973]  ? fget_raw+0x20/0x20
[  600.243415]  ? exit_to_usermode_loop+0x87/0x310
[  600.248070]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  600.253601]  ? security_file_ioctl+0x94/0xc0
[  600.257997]  ksys_ioctl+0xa9/0xd0
[  600.261439]  __x64_sys_ioctl+0x73/0xb0
[  600.265311]  do_syscall_64+0x1b1/0x800
[  600.269183]  ? finish_task_switch+0x1ca/0x810
[  600.273662]  ? syscall_return_slowpath+0x5c0/0x5c0
[  600.278575]  ? syscall_return_slowpath+0x30f/0x5c0
[  600.283510]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  600.288947]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  600.293776]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  600.298947] RIP: 0033:0x455979
[  600.302120] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  600.309814] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  600.317077] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  600.324330] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  600.331586] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  600.338836] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  600.346319] warn_alloc_show_mem: 1 callbacks suppressed
[  600.346322] Mem-Info:
[  600.354161] active_anon:75523 inactive_anon:80 isolated_anon:0
[  600.354161]  active_file:3751 inactive_file:12446 isolated_file:0
[  600.354161]  unevictable:0 dirty:233 writeback:0 unstable:0
[  600.354161]  slab_reclaimable:10634 slab_unreclaimable:106616
[  600.354161]  mapped:73898 shmem:88 pagetables:1110 bounce:0
[  600.354161]  free:1323536 free_pcp:392 free_cma:0
[  600.387809] Node 0 active_anon:302092kB inactive_anon:320kB active_file:15004kB inactive_file:49784kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295592kB dirty:932kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 135168kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  600.415947] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  600.442124] lowmem_reserve[]: 0 2830 6335 6335
2018/05/02 02:14:51 executing program 5:
r0 = accept$ax25(0xffffffffffffffff, &(0x7f0000000540), &(0x7f0000000580)=0x10)
r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/ashmem\x00', 0xc0000, 0x0)
tee(r0, r1, 0x0, 0x4)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000280)={<r2=>0x0}, &(0x7f00000002c0)=0x8)
ioctl$KVM_SET_TSC_KHZ(0xffffffffffffffff, 0xaea2, 0x9800000000000000)
r3 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r3, 0x1, 0x4000000000000002, &(0x7f0000fee000)=0x3fa, 0x4)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000004c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)=@setlink={0x28, 0x13, 0x5, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0xe}]}, 0x28}, 0x1}, 0x4040)
bind$inet6(r3, &(0x7f0000d1a000)={0xa, 0x4e20, 0x0, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x1c)
r5 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r5, 0x1, 0x4000000000000002, &(0x7f0000d11000), 0x4)
bind$inet6(r5, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x1c)
getsockopt$IP_VS_SO_GET_SERVICE(r3, 0x0, 0x483, &(0x7f0000000180), &(0x7f0000000040)=0x68)
listen(0xffffffffffffffff, 0x404)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000eccfa8)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_sha512\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000080)="ac", 0x1)
mmap(&(0x7f0000000000/0x8b000)=nil, 0x8b000, 0x0, 0x10000032, 0xffffffffffffffff, 0x0)
r7 = accept$alg(r6, 0x0, 0x0)
io_setup(0x1, &(0x7f0000e4b000)=<r8=>0x0)
io_submit(r8, 0x1, &(0x7f0000bd9fe0)=[&(0x7f0000617fc0)={0x0, 0x0, 0x0, 0x0, 0x0, r7, &(0x7f000007d000)="b3", 0x1}])
listen(r3, 0x3)
close(r3)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000600)=ANY=[@ANYRES32=r2, @ANYBLOB="d20000000250422efb07533655ffa6f5637d2a6ea5bc8ce0707bbae2b884ad2ad294a90416a620656bc9b4cda758c306f3f11a557c6769acd874fa25b0abd27a990e120049ddfe8a4d38149a617fe64a28897b1d549d91a9e81baedb8336e45123ca143a3700ff31cbf1a939bc063e6b0945ad5d32d561088586c72f02e6eba63fac0f13e9ba7ed1b6207ab07462cfeddbd46ce9b01f1d02e486c6ee4456e4df"], &(0x7f00000003c0)=0x2)
clone(0x200, &(0x7f0000b6b000), &(0x7f0000000340), &(0x7f0000000380), &(0x7f0000dacfc9))
mknod(&(0x7f0000f80000)='./file0\x00', 0x1040, 0x0)
setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000400)=0x8, 0x4)
r9 = syz_open_procfs(0x0, &(0x7f0000000100)='cmdline\x00')
pread64(r9, &(0x7f00009f3000), 0x352, 0x0)

[  600.446775] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:728kB local_pcp:76kB free_cma:0kB
[  600.474450] lowmem_reserve[]: 0 0 3505 3505
[  600.478837] Node 0 Normal free:2377820kB min:37300kB low:46624kB high:55948kB active_anon:302092kB inactive_anon:320kB active_file:15004kB inactive_file:49784kB unevictable:0kB writepending:932kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5728kB pagetables:4292kB bounce:0kB free_pcp:940kB local_pcp:432kB free_cma:0kB
[  600.508666] lowmem_reserve[]: 0 0 0 0
[  600.512521] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  600.526215] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  600.542072] Node 0 Normal: 2121*4kB (UME) 3027*8kB (UME) 3163*16kB (UME) 3048*32kB (UME) 1466*64kB (UME) 259*128kB (UM) 191*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 48*2048kB (UM) 438*4096kB (UM) = 2373996kB
2018/05/02 02:14:51 executing program 2:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x134, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$DRM_IOCTL_AGP_FREE(0xffffffffffffffff, 0x40206435, &(0x7f0000002000)={0x0, 0x0, 0x0, 0x141371})
getsockopt$ARPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x63, &(0x7f0000000200)={'icmp6\x00'}, &(0x7f0000000240)=0x1e)
ioctl$int_out(r0, 0x5462, &(0x7f0000000080))
getpeername$packet(0xffffffffffffff9c, &(0x7f00000000c0)={0x0, 0x0, <r1=>0x0}, &(0x7f00000001c0)=0x14)
setsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000280)={r1, @multicast2=0xe0000002, @loopback=0x7f000001}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x5, &(0x7f0000002000)=ANY=[@ANYBLOB="1800000000c5000000050000020000000000000000950000000000000000"], &(0x7f00009b4000)='syzkaller\x00', 0x800000ea4c, 0x310, &(0x7f000000a000)=""/195}, 0x48)
perf_event_open(&(0x7f0000000140)={0x0, 0x70, 0x9b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x7, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x322, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

2018/05/02 02:14:51 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000176c62896c000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  600.561041] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  600.569649] 16284 total pagecache pages
[  600.573677] 0 pages in swap cache
[  600.577160] Swap cache stats: add 0, delete 0, find 0/0
[  600.582558] Free swap  = 0kB
[  600.585602] Total swap = 0kB
[  600.588656] 1965969 pages RAM
[  600.591780] 0 pages HighMem/MovableOnly
[  600.595778] 339347 pages reserved
2018/05/02 02:14:51 executing program 1:
r0 = socket(0x10, 0x802, 0x0)
sendmsg$nl_route(r0, &(0x7f0000932fc8)={&(0x7f0000927ff4)={0x10}, 0xc, &(0x7f000095e000)={&(0x7f0000000000)=ANY=[@ANYBLOB="4000000016000100ffffffffffffffff0a000000", @ANYRES32=0x0, @ANYBLOB="140001000000000000000000000000000000008a2a4c00020000000800000000000000000000000000000000"], 0x40}, 0x1}, 0x0)

[  600.682560] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  600.694353] syz-executor4 cpuset=syz4 mems_allowed=0
[  600.699555] CPU: 1 PID: 30817 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  600.706829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  600.716185] Call Trace:
[  600.718791]  dump_stack+0x1b9/0x294
[  600.722434]  ? dump_stack_print_info.cold.2+0x52/0x52
[  600.727639]  warn_alloc.cold.118+0xb2/0x1b8
[  600.731970]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  600.736846]  __vmalloc_node_range+0x45e/0x750
[  600.741360]  ? graph_lock+0x170/0x170
[  600.745168]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  600.750014]  __vmalloc_node_flags_caller+0x75/0x90
[  600.754942]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  600.759779]  kvmalloc_node+0xde/0x100
[  600.763577]  kvm_arch_create_memslot+0xa3/0x4e0
[  600.768244]  __kvm_set_memory_region+0x1d1b/0x2e50
[  600.773180]  ? kvm_vcpu_block+0x1050/0x1050
[  600.777505]  ? graph_lock+0x170/0x170
[  600.781312]  ? find_held_lock+0x36/0x1c0
[  600.785371]  ? lock_downgrade+0x8e0/0x8e0
[  600.789531]  kvm_set_memory_region+0x2e/0x50
[  600.793931]  kvm_vm_ioctl+0x668/0x1d90
[  600.797809]  ? __lock_acquire+0x7f5/0x5140
[  600.802042]  ? kvm_set_memory_region+0x50/0x50
[  600.806619]  ? debug_check_no_locks_freed+0x310/0x310
[  600.811810]  ? print_usage_bug+0xc0/0xc0
[  600.815863]  ? graph_lock+0x170/0x170
[  600.819673]  ? find_held_lock+0x36/0x1c0
[  600.823735]  ? lock_downgrade+0x8e0/0x8e0
[  600.827880]  ? kasan_check_read+0x11/0x20
[  600.832028]  ? rcu_is_watching+0x85/0x140
[  600.836169]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  600.841366]  ? __fget+0x40c/0x650
[  600.844815]  ? do_raw_spin_unlock+0x1/0x2e0
[  600.849127]  ? expand_files.part.8+0x9a0/0x9a0
[  600.853700]  ? kasan_check_write+0x14/0x20
[  600.857921]  ? do_raw_spin_lock+0xc1/0x200
[  600.862148]  ? _raw_spin_unlock+0x22/0x30
[  600.866303]  ? kvm_set_memory_region+0x50/0x50
[  600.870882]  do_vfs_ioctl+0x1cf/0x16a0
[  600.874764]  ? ioctl_preallocate+0x2e0/0x2e0
[  600.879162]  ? fget_raw+0x20/0x20
[  600.882610]  ? lock_downgrade+0x8e0/0x8e0
[  600.886756]  ? finish_task_switch+0x182/0x810
[  600.891256]  ? security_file_ioctl+0x94/0xc0
[  600.895663]  ksys_ioctl+0xa9/0xd0
[  600.899106]  __x64_sys_ioctl+0x73/0xb0
[  600.902984]  do_syscall_64+0x1b1/0x800
[  600.906859]  ? finish_task_switch+0x1ca/0x810
[  600.911343]  ? syscall_return_slowpath+0x5c0/0x5c0
[  600.916259]  ? syscall_return_slowpath+0x30f/0x5c0
[  600.921188]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  600.926557]  ? trace_hardirqs_off_thunk+0x1a/0x1c
2018/05/02 02:14:52 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000000000004000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:52 executing program 2:
r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0xd1, 0x1)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={r0, 0x3, 0x1, 0x5, &(0x7f0000000080)=[0x0], 0x1}, 0x20)
ioctl$int_in(r0, 0x80000080045010, &(0x7f0000000000))

2018/05/02 02:14:52 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000057040000d0"], 0x1)

[  600.931391]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  600.936574] RIP: 0033:0x455979
[  600.939748] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  600.947446] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  600.954699] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  600.961956] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  600.969209] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  600.976465] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:52 executing program 5:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x4080, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f00000000c0)={'team_slave_1\x00', @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xe}})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'erspan0\x00', <r2=>0x0})
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000040)={@dev={0xfe, 0x80}, r2}, 0x14)
setsockopt$inet6_mreq(r1, 0x29, 0x1c, &(0x7f0000000240)={@loopback={0x0, 0x1}, r2}, 0x14)

2018/05/02 02:14:52 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
dup3(r0, r1, 0x80000)
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, r0, 0x0)

[  601.025568] netlink: 20 bytes leftover after parsing attributes in process `syz-executor1'.
[  601.158665] kernel msg: ebtables bug: please report to author: Wrong len argument
[  601.187351] kernel msg: ebtables bug: please report to author: Wrong len argument
2018/05/02 02:14:53 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="0203000910000000000000ffffff80000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:53 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000013000/0x2000)=nil, 0x2000}, 0x1})
fsetxattr(r0, &(0x7f0000000100)=@random={'system.', '[\x00'}, &(0x7f0000000140)='\\%/\x00', 0x4, 0x3)
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, r0, 0x0)

2018/05/02 02:14:53 executing program 7:
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x20080, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(rmd320-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000380)="000000000004000000200017d4edb818d1326c3b457d1ce89bd368aa68e80db8ed46c3e0104cab924318c1c340f91508830f3396d8036461083a1a9093a1e167b3", 0x41)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x20000, 0x0)
ioctl$EVIOCGUNIQ(r1, 0x80404508, &(0x7f0000000180)=""/235)

2018/05/02 02:14:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x6800000000000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:53 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f0000000000)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f00004ca000)={&(0x7f0000690000)={0x1c, 0x0, 0x207, 0x1, 0x0, 0x0, {}, [@nested={0x8, 0x1, [@generic="06"]}]}, 0x1c}, 0x1}, 0x0)
r1 = dup(r0)
setsockopt$inet_int(r1, 0x0, 0x23, &(0x7f00000000c0)=0x9, 0x4)
ioctl$SIOCSIFMTU(r1, 0x8922, &(0x7f0000000140)={'veth0_to_bridge\x00', 0x3})
flock(r0, 0x400d)
sendmsg$nl_netfilter(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000001740)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000002830000000012000000000000882001400600000000000000"], 0x1c}, 0x1}, 0x0)
r2 = getpid()
fcntl$setown(r1, 0x8, r2)

2018/05/02 02:14:53 executing program 2:
getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000000)={<r0=>0x0}, &(0x7f0000000040)=0xc)
r1 = syz_open_procfs(r0, &(0x7f0000000080)='ns/cgroup\x00')
ioctl$VT_RELDISP(r1, 0xb704)
openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x0, 0x0)

2018/05/02 02:14:53 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000037040000d0"], 0x1)

2018/05/02 02:14:53 executing program 5:
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cuse\x00', 0x0, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000040)=0xfffffffffffffffe, 0x2)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000600)=r0)
ioctl$VHOST_SET_LOG_BASE(r0, 0x4008af04, &(0x7f0000000180)=&(0x7f0000000140))
getsockopt$sock_int(r0, 0x1, 0x9, &(0x7f0000000080), &(0x7f00000000c0)=0x4)

[  602.110648] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  602.117693] veth0_to_bridge: Invalid MTU 3 requested, hw min 68
[  602.122447] syz-executor4 cpuset=syz4 mems_allowed=0
[  602.122483] CPU: 0 PID: 30856 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  602.122493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  602.122498] Call Trace:
[  602.122520]  dump_stack+0x1b9/0x294
[  602.122542]  ? dump_stack_print_info.cold.2+0x52/0x52
[  602.161675]  ? graph_lock+0x170/0x170
[  602.165499]  warn_alloc.cold.118+0xb2/0x1b8
[  602.167346] veth0_to_bridge: Invalid MTU 3 requested, hw min 68
[  602.169829]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  602.169855]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  602.169883]  ? update_load_avg+0x2d9/0x2570
[  602.169901]  ? __update_load_avg_se.isra.34+0x61e/0x980
[  602.169921]  __vmalloc_node_range+0x45e/0x750
[  602.169938]  ? graph_lock+0x170/0x170
[  602.204737]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  602.209569]  __vmalloc_node_flags_caller+0x75/0x90
[  602.214482]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  602.219309]  kvmalloc_node+0xde/0x100
[  602.223109]  kvm_arch_create_memslot+0xa3/0x4e0
[  602.227771]  __kvm_set_memory_region+0x1d1b/0x2e50
[  602.232695]  ? kvm_vcpu_block+0x1050/0x1050
[  602.237008]  ? print_usage_bug+0xc0/0xc0
[  602.241080]  ? lock_downgrade+0x8e0/0x8e0
[  602.245210]  ? lock_downgrade+0x8e0/0x8e0
[  602.249347]  ? graph_lock+0x170/0x170
[  602.253131]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  602.257698]  ? __lock_acquire+0x7f5/0x5140
[  602.261915]  ? trace_hardirqs_on+0xd/0x10
[  602.266049]  ? find_held_lock+0x36/0x1c0
[  602.270101]  ? lock_downgrade+0x8e0/0x8e0
[  602.274247]  kvm_set_memory_region+0x2e/0x50
[  602.278646]  kvm_vm_ioctl+0x668/0x1d90
[  602.282519]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  602.288042]  ? __perf_event_task_sched_in+0x247/0xb80
[  602.293216]  ? kvm_set_memory_region+0x50/0x50
[  602.297793]  ? find_held_lock+0x36/0x1c0
[  602.301842]  ? lock_downgrade+0x8e0/0x8e0
[  602.305971]  ? finish_task_switch+0x182/0x810
[  602.310452]  ? kasan_check_read+0x11/0x20
[  602.314589]  ? graph_lock+0x170/0x170
[  602.318371]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  602.322939]  ? compat_start_thread+0x80/0x80
[  602.327333]  ? _raw_spin_unlock_irq+0x27/0x70
[  602.331822]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  602.336825]  ? trace_hardirqs_on+0xd/0x10
[  602.340964]  ? _raw_spin_unlock_irq+0x27/0x70
[  602.345442]  ? find_held_lock+0x36/0x1c0
[  602.349492]  ? lock_downgrade+0x8e0/0x8e0
[  602.353629]  ? kasan_check_read+0x11/0x20
[  602.357758]  ? rcu_is_watching+0x85/0x140
[  602.361891]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  602.367086]  ? __fget+0x40c/0x650
[  602.370526]  ? expand_files.part.8+0x9a0/0x9a0
[  602.375092]  ? lock_downgrade+0x8e0/0x8e0
[  602.379226]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  602.384746]  ? vma_set_page_prot+0x239/0x300
[  602.389229]  ? kvm_set_memory_region+0x50/0x50
[  602.393795]  do_vfs_ioctl+0x1cf/0x16a0
[  602.397756]  ? ioctl_preallocate+0x2e0/0x2e0
[  602.402148]  ? fget_raw+0x20/0x20
[  602.405595]  ? exit_to_usermode_loop+0x87/0x310
[  602.410250]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  602.415773]  ? security_file_ioctl+0x94/0xc0
[  602.420179]  ksys_ioctl+0xa9/0xd0
[  602.423617]  __x64_sys_ioctl+0x73/0xb0
[  602.427491]  do_syscall_64+0x1b1/0x800
[  602.431361]  ? finish_task_switch+0x1ca/0x810
[  602.435841]  ? syscall_return_slowpath+0x5c0/0x5c0
[  602.440757]  ? syscall_return_slowpath+0x30f/0x5c0
[  602.445675]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  602.451034]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  602.455866]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  602.461040] RIP: 0033:0x455979
[  602.464211] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  602.471901] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  602.479151] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  602.486402] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  602.493654] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  602.500911] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
2018/05/02 02:14:53 executing program 5:
perf_event_open(&(0x7f0000d2af88)={0x2, 0x78, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x5, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0)
ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [{0x8e8, 0x0, 0xf17}, {0x19c, 0x0, 0x5}, {0x39a, 0x0, 0x2}]})
syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x1, 0x0)

2018/05/02 02:14:53 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
close(r0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = getpid()
prctl$setmm(0x23, 0x3, &(0x7f0000ffb000/0x2000)=nil)
ptrace$peekuser(0x3, r2, 0x3)
bind$alg(r1, &(0x7f0000289fa8)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000001f3a)="ad56b6c5820faeb995298992ea54c7beef9f5d56534c90c2", 0x18)
r3 = accept$alg(r0, 0x0, 0x0)
io_setup(0x1, &(0x7f0000e4b000)=<r4=>0x0)
sendmsg$alg(r3, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000001300)=[{&(0x7f0000000000)="f9e3a127be1d0953084fab7d2701417e", 0x10}], 0x1, &(0x7f0000001380)}, 0x0)
io_submit(r4, 0x1, &(0x7f0000bd9fe0)=[&(0x7f0000617fc0)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f000007d000)="b3", 0x1}])

[  602.508354] warn_alloc_show_mem: 1 callbacks suppressed
[  602.508358] Mem-Info:
[  602.516219] active_anon:77598 inactive_anon:80 isolated_anon:0
[  602.516219]  active_file:3753 inactive_file:12464 isolated_file:0
[  602.516219]  unevictable:0 dirty:254 writeback:0 unstable:0
[  602.516219]  slab_reclaimable:10633 slab_unreclaimable:106589
[  602.516219]  mapped:73889 shmem:88 pagetables:1121 bounce:0
[  602.516219]  free:1320514 free_pcp:307 free_cma:0
2018/05/02 02:14:53 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000083040000d0"], 0x1)

[  602.549874] Node 0 active_anon:310348kB inactive_anon:320kB active_file:15012kB inactive_file:49856kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295556kB dirty:1016kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 133120kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  602.578237] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  602.604414] lowmem_reserve[]: 0 2830 6335 6335
[  602.609076] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:656kB free_cma:0kB
[  602.636824] lowmem_reserve[]: 0 0 3505 3505
2018/05/02 02:14:53 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000006f040000d0"], 0x1)

2018/05/02 02:14:53 executing program 1:
r0 = request_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000080)='[\x00', 0xfffffffffffffff9)
request_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000140)='\x00', 0xfffffffffffffffd)
request_key(&(0x7f0000000180)='.dead\x00', &(0x7f00000001c0)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000200)='$GPLem0+systemusermd5sumvboxnet0vboxnet0eth0&/\x00', 0x0)
r1 = add_key$keyring(&(0x7f0000000240)='keyring\x00', &(0x7f0000000280)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xfffffffffffffff8)
keyctl$unlink(0x9, r0, r1)

[  602.641222] Node 0 Normal free:2359008kB min:37300kB low:46624kB high:55948kB active_anon:318624kB inactive_anon:320kB active_file:15012kB inactive_file:49856kB unevictable:0kB writepending:1016kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5792kB pagetables:4632kB bounce:0kB free_pcp:792kB local_pcp:132kB free_cma:0kB
[  602.671223] lowmem_reserve[]: 0 0 0 0
[  602.675101] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  602.688801] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
2018/05/02 02:14:53 executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x6, 0x4, 0x9, 0x400000000000062}, 0x2c)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000fbb000)={r0, &(0x7f0000811000), &(0x7f0000fbbf1a)=""/230}, 0x18)
socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f00000000c0)={0x1f, 0x36c0f9be, 0x4405, 0x4, 0x3a}, 0x14)

2018/05/02 02:14:53 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000, 0x0, &(0x7f0000ffd000/0x1000)=nil)
mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0)
bind$alg(r0, &(0x7f0000c22fa8)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000), 0x0)

[  602.704698] Node 0 Normal: 2183*4kB (UME) 2980*8kB (UME) 3192*16kB (UME) 3055*32kB (UME) 1466*64kB (UME) 252*128kB (UM) 191*256kB (UM) 104*512kB (UME) 70*1024kB (UME) 44*2048kB (UM) 438*4096kB (UM) = 2365468kB
[  602.723701] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  602.732333] 16314 total pagecache pages
[  602.736350] 0 pages in swap cache
[  602.739861] Swap cache stats: add 0, delete 0, find 0/0
[  602.745254] Free swap  = 0kB
[  602.748310] Total swap = 0kB
[  602.751351] 1965969 pages RAM
[  602.754483] 0 pages HighMem/MovableOnly
[  602.758478] 339347 pages reserved
[  602.833574] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  602.845423] syz-executor4 cpuset=syz4 mems_allowed=0
[  602.850653] CPU: 1 PID: 30899 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  602.857931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  602.867285] Call Trace:
[  602.869887]  dump_stack+0x1b9/0x294
[  602.873969]  ? dump_stack_print_info.cold.2+0x52/0x52
[  602.879188]  warn_alloc.cold.118+0xb2/0x1b8
[  602.883523]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  602.888412]  __vmalloc_node_range+0x45e/0x750
[  602.892926]  ? graph_lock+0x170/0x170
[  602.896742]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  602.903384]  __vmalloc_node_flags_caller+0x75/0x90
[  602.909813]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  602.914670]  kvmalloc_node+0xde/0x100
[  602.918479]  kvm_arch_create_memslot+0xa3/0x4e0
[  602.923153]  __kvm_set_memory_region+0x1d1b/0x2e50
[  602.928082]  ? kvm_vcpu_block+0x1050/0x1050
[  602.932400]  ? zap_class+0x720/0x720
[  602.936111]  ? graph_lock+0x170/0x170
[  602.939914]  ? find_held_lock+0x36/0x1c0
[  602.943973]  ? lock_downgrade+0x8e0/0x8e0
[  602.948154]  kvm_set_memory_region+0x2e/0x50
[  602.952555]  kvm_vm_ioctl+0x668/0x1d90
[  602.956431]  ? __lock_acquire+0x7f5/0x5140
[  602.960663]  ? kvm_set_memory_region+0x50/0x50
[  602.965244]  ? debug_check_no_locks_freed+0x310/0x310
[  602.970424]  ? perf_trace_lock+0xd6/0x900
[  602.974563]  ? zap_class+0x720/0x720
[  602.978266]  ? print_usage_bug+0xc0/0xc0
[  602.982320]  ? graph_lock+0x170/0x170
[  602.986124]  ? find_held_lock+0x36/0x1c0
[  602.990184]  ? lock_downgrade+0x8e0/0x8e0
[  602.994330]  ? rcu_is_watching+0x85/0x140
[  602.998466]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  603.003656]  ? __fget+0x40c/0x650
[  603.007103]  ? do_raw_spin_unlock+0x1/0x2e0
[  603.011418]  ? expand_files.part.8+0x9a0/0x9a0
[  603.016102]  ? kasan_check_write+0x14/0x20
[  603.020329]  ? do_raw_spin_lock+0xc1/0x200
[  603.024563]  ? _raw_spin_unlock+0x22/0x30
[  603.028700]  ? kvm_set_memory_region+0x50/0x50
[  603.033270]  do_vfs_ioctl+0x1cf/0x16a0
[  603.037154]  ? ioctl_preallocate+0x2e0/0x2e0
[  603.041553]  ? fget_raw+0x20/0x20
[  603.045015]  ? lock_downgrade+0x8e0/0x8e0
[  603.049156]  ? finish_task_switch+0x182/0x810
[  603.053650]  ? security_file_ioctl+0x94/0xc0
[  603.058055]  ksys_ioctl+0xa9/0xd0
[  603.061500]  __x64_sys_ioctl+0x73/0xb0
[  603.065379]  do_syscall_64+0x1b1/0x800
[  603.069251]  ? finish_task_switch+0x1ca/0x810
[  603.073732]  ? syscall_return_slowpath+0x5c0/0x5c0
[  603.078652]  ? syscall_return_slowpath+0x30f/0x5c0
[  603.083571]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  603.088924]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  603.093757]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  603.098929] RIP: 0033:0x455979
[  603.102103] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  603.109801] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  603.117054] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  603.124309] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  603.131564] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  603.138816] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:54 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c2040000d0"], 0x1)

2018/05/02 02:14:54 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000000034000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:54 executing program 2:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc0\x00', 0x80000, 0x0)
ioctl$IOC_PR_REGISTER(r0, 0x401870c8, &(0x7f0000000140)={0x7fffffff, 0xfffffffffffffff8, 0x1})
futex(&(0x7f000000cffc)=0x4, 0x800000000008, 0x0, &(0x7f0000000080), &(0x7f0000048000), 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0x9db, 0x80)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000000, 0x1010, r1, 0x0)
rt_sigsuspend(&(0x7f0000000000)={0x470000000}, 0x8)
rt_sigsuspend(&(0x7f0000000040)={0x10001}, 0x8)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vsock\x00', 0x200081, 0x0)

2018/05/02 02:14:54 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cfb(twofish-asm)\x00'}, 0x58)
rt_sigprocmask(0x0, &(0x7f00000000c0)={0x5}, &(0x7f0000000200), 0x8)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000240)="0a0775b009f183e5c7c444567c20bdfad1c882136bb666024f43d53ef450dafcde55662f0ced1c54db8a04", 0x2b)
r1 = accept$alg(r0, 0x0, 0x0)
sendto(r1, &(0x7f0000000100)="224b49fd1e310f215feac34bbc176bfc0006f72f9a0f4a6f3f21009562f8c0e3e8f2000000c896d61f3f2d0b9d7bcffc88dbe6b7acdc870f6aee9cc9c4d0021036486bc45228c0dd1e38e4ce49ba4d1ec4373d242e635bdbc45641adf232f7a6f3da8285001a2e70b58306e1793f7abe92", 0x71, 0x0, &(0x7f0000001280)=ANY=[], 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x400000, 0x0)
ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f0000000040)={{0x2, 0x4e22, @broadcast=0xffffffff}, {0x306, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, 0x40, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x17}}, 'erspan0\x00'})
recvmsg(r1, &(0x7f0000d43000)={&(0x7f000076c000)=@hci, 0x3, &(0x7f0000ae0fc0)=[{&(0x7f0000b9ff8b)=""/117, 0xa5}], 0x1, &(0x7f0000837f57)=""/169, 0xa9}, 0x0)

2018/05/02 02:14:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000180)='/dev/full\x00', 0x0, 0x0)
ioctl$KDSKBMETA(r3, 0x4b63, &(0x7f00000001c0)=0x8f)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f00000000c0)={<r4=>0xffffffffffffffff})
getpeername$inet6(r4, &(0x7f0000000100)={0x0, 0x0, 0x0, @loopback}, &(0x7f0000000140)=0x1c)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000000)="0f2211660faeb6006066b8010000000f01d90fd2b4559c0f20d86635200000000f22d80fc7fa0f01df0f20e06635020000000f22e064f08315000f01700a", 0x3e}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2018/05/02 02:14:54 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x6000000000000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:54 executing program 7:
r0 = socket(0x1e, 0x805, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0xfeda)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000, 0x0, 0x3, 0x3ff}, 0x94)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e22, @rand_addr=0x7}, 0x10)

2018/05/02 02:14:54 executing program 3:
r0 = syz_open_dev$dmmidi(&(0x7f0000000540)='/dev/dmmidi#\x00', 0x7, 0x0)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x20004, 0x32, r0, 0x0)
r1 = userfaultfd(0x0)
getresuid(&(0x7f0000000580), &(0x7f00000005c0), &(0x7f0000000600))
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
r4 = dup3(r2, r1, 0x0)
r5 = getpgrp(0x0)
r6 = geteuid()
sendmsg$nl_generic(r4, &(0x7f0000000500)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f00000004c0)={&(0x7f0000000100)={0x39c, 0x1e, 0x320, 0x70bd29, 0x25dfdbff, {0x1e}, [@generic="e0a086a8936e345c8c34d04c28377654be93d12a405afda5a257f0180b74886dbbdcff1a268822d7560c788c79906e084c13b4960d5ae1485e0379535a83364bf470ac2e915dd9dc49adade568f6c2a9dfc20e5868ace019266a0e11ab291f3a55309165e632602b24b884b1ee038208ac22cda9326c5abe55c8723edcba425753cce540f81f", @generic="5ddfda390746e99e58ecdc601e11bc17fc97112781cef0088843219b3c6785b9aef146f1f82bd573a2079531f172fb63fe4dcf9cc687d6cff00e16571368b6116e645421057e05bf54dc2b8413f0c5054d56dbb807c6b1e280f1412a2a1a80b464724508bff54555335fcd34b164c30de43f40668c0ec707c569b3e468ec4e09ff9a0cbc779f730924294ccbd0e63a26308eff339d52bcf0fd557d39a7a779a7ae616747546c9155bc36f3d6f09c153d0f6b72f1b96dfc141a7a1193827258527eaf83ef1b3697ce9eab6adf86fd1649c268b9948aba60b0f3b70630853c3b9fc92ad140450074d91cadd875894139b84df644cd69215e924458d74d89", @generic="683e0bdc1a51a33d1e8247554c564444ea11cde239b834bf0b4de14aad551eb27b782ebeba8b54d921bf2ceae64eac45bad2cd86c016a54200608dad5174ee650f123b3e2761b1a10cd8811abe04adff25dbdc1d3bbb9478b1ed8dd260f6306b52c99b28f1e1f36d8229b1e9e51be1fe068ad8e85b25d0024d45675bf4c32f0aa3d5e860641015086288d73164d6ca34b9b7aab3965e303342c2e96e42efa04cee9aced9d2bd20ac9ae458", @typed={0x8, 0x54, @pid=r5}, @typed={0x8, 0x33, @str='\x00'}, @nested={0x88, 0x53, [@typed={0x8, 0x33, @uid=r6}, @generic="f4811ef8612d2adf938fe23645c8b2bc51d836d4609861974630da70d53b716d7246da66322ed255aa24bb998e12664614e94c13a42e289ff2f1d07ac4a5e298f7cd63b68e2bc67c88c08d2357def4e0856a86a65e4a117264ca6cc0d008c8c2c810aa92f90810c9b6d84deff6817fb57e874cd0a191c1020a"]}, @generic="e3632559ed658e4eabe31d0e2c0363f01df7e1e97c", @typed={0x14, 0x43, @str='/dev/snd/timer\x00'}, @generic="7209e37759cdf0262d587372aee83be0061679e0ea9a1be738990ed8b0319c1d840f6e46fc5f07f5eea3c952d5a0839fa09edb0f824d8198e31fb4728c79ae16d210d2dd693554041978d6b7670dfff48e6e597eecbde817dc7c1dba7053faab3c61a2120ec04e09bad919422e43c7cf764afe579f08a6d28df5f72a8ab25a087888cc0dc4fdae9ea7b1a3cc2a42388588ec586ee8a58625"]}, 0x39c}, 0x1}, 0x884)

[  603.259450] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  603.271334] syz-executor4 cpuset=syz4 mems_allowed=0
[  603.276544] CPU: 1 PID: 30925 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  603.283823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  603.293176] Call Trace:
[  603.295779]  dump_stack+0x1b9/0x294
[  603.299422]  ? dump_stack_print_info.cold.2+0x52/0x52
[  603.304622]  ? graph_lock+0x170/0x170
[  603.308442]  warn_alloc.cold.118+0xb2/0x1b8
[  603.312774]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  603.317636]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  603.323712]  ? update_load_avg+0x2d9/0x2570
[  603.328042]  ? graph_lock+0x170/0x170
[  603.331862]  __vmalloc_node_range+0x45e/0x750
[  603.336363]  ? graph_lock+0x170/0x170
[  603.340175]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  603.345026]  __vmalloc_node_flags_caller+0x75/0x90
[  603.349970]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  603.354824]  kvmalloc_node+0xde/0x100
[  603.358634]  kvm_arch_create_memslot+0xa3/0x4e0
[  603.363325]  __kvm_set_memory_region+0x1d1b/0x2e50
[  603.368274]  ? kvm_vcpu_block+0x1050/0x1050
[  603.372598]  ? print_usage_bug+0xc0/0xc0
[  603.376679]  ? graph_lock+0x170/0x170
[  603.380490]  ? __lock_acquire+0x7f5/0x5140
[  603.384734]  ? lock_downgrade+0x8e0/0x8e0
[  603.388894]  ? find_held_lock+0x36/0x1c0
[  603.392971]  ? lock_downgrade+0x8e0/0x8e0
[  603.397157]  kvm_set_memory_region+0x2e/0x50
[  603.401580]  kvm_vm_ioctl+0x668/0x1d90
[  603.405480]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  603.411029]  ? __perf_event_task_sched_in+0x247/0xb80
[  603.416234]  ? kvm_set_memory_region+0x50/0x50
[  603.420840]  ? find_held_lock+0x36/0x1c0
[  603.424923]  ? lock_downgrade+0x8e0/0x8e0
[  603.429082]  ? finish_task_switch+0x182/0x810
[  603.433594]  ? kasan_check_read+0x11/0x20
[  603.437748]  ? graph_lock+0x170/0x170
[  603.441552]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  603.446138]  ? compat_start_thread+0x80/0x80
[  603.450555]  ? _raw_spin_unlock_irq+0x27/0x70
[  603.455057]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  603.460081]  ? trace_hardirqs_on+0xd/0x10
[  603.464242]  ? _raw_spin_unlock_irq+0x27/0x70
[  603.468744]  ? find_held_lock+0x36/0x1c0
[  603.472816]  ? lock_downgrade+0x8e0/0x8e0
[  603.476978]  ? kasan_check_read+0x11/0x20
[  603.481132]  ? rcu_is_watching+0x85/0x140
[  603.485285]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  603.490487]  ? __fget+0x40c/0x650
[  603.493956]  ? expand_files.part.8+0x9a0/0x9a0
[  603.498543]  ? lock_downgrade+0x8e0/0x8e0
[  603.502703]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  603.508244]  ? vma_set_page_prot+0x239/0x300
[  603.512658]  ? kvm_set_memory_region+0x50/0x50
[  603.517238]  do_vfs_ioctl+0x1cf/0x16a0
[  603.521118]  ? ioctl_preallocate+0x2e0/0x2e0
[  603.525513]  ? fget_raw+0x20/0x20
[  603.528952]  ? retint_kernel+0x10/0x10
[  603.532829]  ? exit_to_usermode_loop+0xb0/0x310
[  603.537488]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  603.543011]  ? security_file_ioctl+0x94/0xc0
[  603.547411]  ksys_ioctl+0xa9/0xd0
[  603.550851]  __x64_sys_ioctl+0x73/0xb0
[  603.554722]  do_syscall_64+0x1b1/0x800
[  603.558594]  ? finish_task_switch+0x1ca/0x810
[  603.563078]  ? syscall_return_slowpath+0x5c0/0x5c0
[  603.567990]  ? syscall_return_slowpath+0x30f/0x5c0
[  603.572909]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  603.578257]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  603.583089]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  603.588266] RIP: 0033:0x455979
[  603.591435] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  603.599128] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
2018/05/02 02:14:54 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000021040000d0"], 0x1)

2018/05/02 02:14:54 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000042040000d0"], 0x1)

2018/05/02 02:14:54 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000aa040000d0"], 0x1)

2018/05/02 02:14:54 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000ad040000d0"], 0x1)

2018/05/02 02:14:54 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000068040000d0"], 0x1)

[  603.606379] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  603.613632] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  603.620881] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  603.628131] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  603.635540] warn_alloc_show_mem: 1 callbacks suppressed
[  603.635543] Mem-Info:
[  603.643427] active_anon:77131 inactive_anon:76 isolated_anon:0
[  603.643427]  active_file:3753 inactive_file:12474 isolated_file:0
[  603.643427]  unevictable:0 dirty:263 writeback:0 unstable:0
[  603.643427]  slab_reclaimable:10635 slab_unreclaimable:105941
[  603.643427]  mapped:73911 shmem:88 pagetables:1073 bounce:0
[  603.643427]  free:1322555 free_pcp:454 free_cma:0
[  603.677459] Node 0 active_anon:306304kB inactive_anon:304kB active_file:15012kB inactive_file:49896kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295644kB dirty:1052kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 147456kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  603.705695] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  603.731869] lowmem_reserve[]: 0 2830 6335 6335
[  603.736510] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:728kB local_pcp:72kB free_cma:0kB
[  603.764283] lowmem_reserve[]: 0 0 3505 3505
[  603.768666] Node 0 Normal free:2373672kB min:37300kB low:46624kB high:55948kB active_anon:308364kB inactive_anon:308kB active_file:15012kB inactive_file:49920kB unevictable:0kB writepending:1076kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5728kB pagetables:4352kB bounce:0kB free_pcp:1048kB local_pcp:632kB free_cma:0kB
[  603.798696] lowmem_reserve[]: 0 0 0 0
[  603.802550] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  603.816196] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  603.832110] Node 0 Normal: 2047*4kB (UME) 3389*8kB (UME) 2753*16kB (UME) 3055*32kB (UME) 1466*64kB (UME) 293*128kB (UM) 192*256kB (UM) 106*512kB (UME) 70*1024kB (UME) 48*2048kB (UM) 438*4096kB (UM) = 2375892kB
[  603.851136] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  603.859756] 16320 total pagecache pages
[  603.863781] 0 pages in swap cache
[  603.867255] Swap cache stats: add 0, delete 0, find 0/0
[  603.872636] Free swap  = 0kB
[  603.876328] Total swap = 0kB
[  603.879386] 1965969 pages RAM
[  603.882503] 0 pages HighMem/MovableOnly
[  603.886494] 339347 pages reserved
[  603.918848] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  603.930729] syz-executor4 cpuset=syz4 mems_allowed=0
[  603.935921] CPU: 0 PID: 30955 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  603.943198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  603.952551] Call Trace:
[  603.955134]  dump_stack+0x1b9/0x294
[  603.958751]  ? dump_stack_print_info.cold.2+0x52/0x52
[  603.963943]  ? kasan_check_read+0x11/0x20
[  603.968087]  warn_alloc.cold.118+0xb2/0x1b8
[  603.972405]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  603.977240]  ? trace_hardirqs_on+0xd/0x10
[  603.981373]  ? _raw_spin_unlock_irq+0x27/0x70
[  603.985854]  ? finish_task_switch+0x1ca/0x810
[  603.990354]  ? lock_repin_lock+0x410/0x410
[  603.994581]  __vmalloc_node_range+0x45e/0x750
[  603.999059]  ? graph_lock+0x170/0x170
[  604.002847]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  604.007673]  __vmalloc_node_flags_caller+0x75/0x90
[  604.012585]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  604.017417]  kvmalloc_node+0xde/0x100
[  604.021205]  kvm_arch_create_memslot+0xa3/0x4e0
[  604.025860]  __kvm_set_memory_region+0x1d1b/0x2e50
[  604.030786]  ? kvm_vcpu_block+0x1050/0x1050
[  604.035089]  ? print_usage_bug+0xc0/0xc0
[  604.039144]  ? check_same_owner+0x320/0x320
[  604.043453]  ? do_raw_spin_unlock+0x9e/0x2e0
[  604.047849]  ? rcu_note_context_switch+0x710/0x710
[  604.052775]  ? lock_acquire+0x1dc/0x520
[  604.056734]  ? graph_lock+0x170/0x170
[  604.060526]  ? __might_sleep+0x95/0x190
[  604.064492]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  604.070026]  ? futex_wait_queue_me+0x550/0x820
[  604.074605]  ? __lock_acquire+0x7f5/0x5140
[  604.078825]  ? refill_pi_state_cache.part.7+0x300/0x300
[  604.084174]  ? find_held_lock+0x36/0x1c0
[  604.088237]  ? lock_downgrade+0x8e0/0x8e0
[  604.092382]  kvm_set_memory_region+0x2e/0x50
[  604.096770]  kvm_vm_ioctl+0x668/0x1d90
[  604.100640]  ? pick_next_task_fair+0x973/0x1660
[  604.105305]  ? kvm_set_memory_region+0x50/0x50
[  604.109901]  ? find_held_lock+0x36/0x1c0
[  604.113975]  ? lock_downgrade+0x8e0/0x8e0
[  604.118122]  ? finish_task_switch+0x182/0x810
[  604.122626]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  604.127825]  ? do_futex+0x249/0x27d0
[  604.131550]  ? kasan_check_read+0x11/0x20
[  604.135705]  ? graph_lock+0x170/0x170
[  604.139499]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  604.144068]  ? compat_start_thread+0x80/0x80
[  604.148459]  ? _raw_spin_unlock_irq+0x27/0x70
[  604.152937]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  604.157939]  ? exit_robust_list+0x290/0x290
[  604.162252]  ? find_held_lock+0x36/0x1c0
[  604.166307]  ? lock_downgrade+0x8e0/0x8e0
[  604.170441]  ? kasan_check_read+0x11/0x20
[  604.174570]  ? rcu_is_watching+0x85/0x140
[  604.178699]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  604.183878]  ? __fget+0x40c/0x650
[  604.187325]  ? do_raw_spin_unlock+0x1/0x2e0
[  604.191632]  ? expand_files.part.8+0x9a0/0x9a0
[  604.196200]  ? kasan_check_write+0x14/0x20
[  604.200416]  ? do_raw_spin_lock+0xc1/0x200
[  604.204638]  ? kvm_set_memory_region+0x50/0x50
[  604.209206]  do_vfs_ioctl+0x1cf/0x16a0
[  604.213083]  ? ioctl_preallocate+0x2e0/0x2e0
[  604.217473]  ? fget_raw+0x20/0x20
[  604.220911]  ? __x64_sys_futex+0x477/0x680
[  604.225140]  ? exit_to_usermode_loop+0x87/0x310
[  604.229818]  ? do_futex+0x27d0/0x27d0
[  604.233626]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  604.239171]  ? security_file_ioctl+0x94/0xc0
[  604.243585]  ksys_ioctl+0xa9/0xd0
[  604.247042]  __x64_sys_ioctl+0x73/0xb0
[  604.250916]  do_syscall_64+0x1b1/0x800
[  604.254783]  ? finish_task_switch+0x1ca/0x810
[  604.259260]  ? syscall_return_slowpath+0x5c0/0x5c0
[  604.264171]  ? syscall_return_slowpath+0x30f/0x5c0
[  604.269081]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  604.274603]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  604.279431]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  604.284610] RIP: 0033:0x455979
[  604.287778] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  604.295466] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  604.302714] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  604.309968] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
2018/05/02 02:14:55 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000030040000d0"], 0x1)

2018/05/02 02:14:55 executing program 7:
r0 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x1)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x0, 0x0)
getpid()
getsockopt$inet_mreqn(r1, 0x0, 0x0, &(0x7f0000000040)={@multicast1, @empty, <r2=>0x0}, &(0x7f0000000080)=0xc)
bind$can_raw(r1, &(0x7f0000000100)={0x1d, r2}, 0x10)
ioctl$LOOP_SET_STATUS(r0, 0x1276, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "3900ea631d00000000020000010000009f00000023f7b7d65f90b0e6330ee739b319d8f6aa6bd58d1443474482e85040fb4947ebb55bd19f335b5bffff0001f3", "cfa430745a540dc1c149b7b81579f6a41c51f7d51933223e82ab867dac761faf"})

2018/05/02 02:14:55 executing program 5:
socketpair$inet(0x1e, 0x4, 0x3c7, &(0x7f00000001c0)={<r0=>0x0})
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='maps\x00')
r2 = openat$cgroup_ro(r1, &(0x7f0000000080)='rdma.current\x00', 0x0, 0x0)
sendmsg$key(r0, &(0x7f0000f22000)={0x0, 0x0, &(0x7f0000f22000)={&(0x7f0000000540)=ANY=[@ANYBLOB="1e0001010400000010000000fddbdf257e5a3556879c89d59671ade46dc2df61d2881eae9585955dc0b1f6e7f11386299e31676b2ab8fdc79fa4e45cb59cdf05274e89507c0e09c008b257efccc09e3ddbe55c8e9835751ab1f571cee9ea80a30a25f076130a0aad8ce66f738e021390dd340988263feb19a9a0e7c2131f5f4a1b0434cea1d99d682fcb8d52e2fe35d580305a11453d33ddd6fdbaa053fe5c843036c245ad57bdc892602530b7d8b8e18df8f3d386ede426f455e658ade27a5649b89f778997cf7059e4ea8020000000000000"], 0xb1a2}, 0x1}, 0x0)
r3 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0x1000000, 0x80)
ioctl$DRM_IOCTL_MODESET_CTL(r3, 0x40086408, &(0x7f00000000c0)={0x0, 0x2})
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000200)='/dev/mixer\x00', 0x40001, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r2, 0xc008640a, &(0x7f0000000180)={<r5=>0x0})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r3, 0xc00c642d, &(0x7f0000000440)={r5, 0x80000, r4})
bind$bt_rfcomm(r3, &(0x7f0000000140)={0x1f, {0xeb3a, 0x4, 0xfffffffffffffff8, 0x401, 0xff, 0x4}, 0x9}, 0xa)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r4, 0x800448d2, &(0x7f0000000400)={0x2, &(0x7f00000002c0)=[{}, {}]})
fcntl$getown(r0, 0x9)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r4, 0x6, 0x1d, &(0x7f0000000240), &(0x7f0000000280)=0x14)
r6 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0)
accept4$unix(r6, &(0x7f0000000480), &(0x7f0000000500)=0x1f9, 0x800)

2018/05/02 02:14:55 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000000000001000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:55 executing program 1:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000003fe8)={0xaa})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000011000/0x3000)=nil, 0x3000}})
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000013e95), 0x4)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000180), &(0x7f00000001c0)=0x20)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
close(0xffffffffffffffff)
poll(&(0x7f0000000080)=[{r0, 0x8}, {r0, 0x1}, {r0, 0x620}, {r0, 0x4}, {r0, 0x468}, {r0, 0x20}, {r0, 0x1100}, {r0, 0x90}, {r0, 0x8}, {r0, 0x200}], 0xa, 0x5)

2018/05/02 02:14:55 executing program 2:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket(0x2, 0x3, 0x40000000000000ff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='lo\x00', 0x10)
setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f00000002c0)={@multicast1=0xe0000001, @remote={0xac, 0x14, 0x14, 0xbb}}, 0xc)
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000040)=<r1=>0x0)
ptrace$setopts(0x4206, r1, 0x3, 0x0)

2018/05/02 02:14:55 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x10000084)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f00000000c0), &(0x7f0000000100)=0x14)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00')
sendmsg$IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x44, r4, 0x604, 0x70bd2d, 0x25dfdbfe, {0xc}, [@IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x7}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x7}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0xf}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x8010)
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
ioctl$IOC_PR_PREEMPT(r1, 0x401870cb, &(0x7f00000002c0)={0x3, 0x8, 0x0, 0x2})
getsockopt$IPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x43, &(0x7f0000000300)={'ipvs\x00'}, &(0x7f0000000340)=0x1e)
dup3(r2, r0, 0x0)

2018/05/02 02:14:55 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x2000000000000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

[  604.317218] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  604.324469] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:55 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000004f040000d0"], 0x1)

2018/05/02 02:14:55 executing program 5:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pread64(r0, &(0x7f0000000040)=""/88, 0x58, 0x0)
r1 = socket(0x40000000015, 0x5, 0x0)
setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f0000000000)=0x1, 0x4)
ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, &(0x7f0000000180), 0x8)

[  604.417213] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  604.429097] syz-executor4 cpuset=syz4 mems_allowed=0
[  604.434284] CPU: 1 PID: 30980 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  604.441563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  604.450925] Call Trace:
[  604.453528]  dump_stack+0x1b9/0x294
[  604.457177]  ? dump_stack_print_info.cold.2+0x52/0x52
[  604.462380]  ? graph_lock+0x170/0x170
2018/05/02 02:14:55 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000093040000d0"], 0x1)

[  604.466198]  warn_alloc.cold.118+0xb2/0x1b8
[  604.470531]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  604.475391]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  604.481474]  ? update_load_avg+0x2d9/0x2570
[  604.485804]  ? graph_lock+0x170/0x170
[  604.489627]  __vmalloc_node_range+0x45e/0x750
[  604.494136]  ? graph_lock+0x170/0x170
[  604.497947]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  604.502798]  __vmalloc_node_flags_caller+0x75/0x90
[  604.507736]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  604.512597]  kvmalloc_node+0xde/0x100
[  604.516409]  kvm_arch_create_memslot+0xa3/0x4e0
[  604.521188]  __kvm_set_memory_region+0x1d1b/0x2e50
[  604.526143]  ? kvm_vcpu_block+0x1050/0x1050
[  604.530471]  ? print_usage_bug+0xc0/0xc0
[  604.535065]  ? zap_class+0x720/0x720
[  604.538784]  ? lock_downgrade+0x8e0/0x8e0
[  604.542946]  ? graph_lock+0x170/0x170
[  604.546757]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  604.551352]  ? __lock_acquire+0x7f5/0x5140
[  604.555596]  ? trace_hardirqs_on+0xd/0x10
[  604.559758]  ? find_held_lock+0x36/0x1c0
[  604.563840]  ? lock_downgrade+0x8e0/0x8e0
2018/05/02 02:14:55 executing program 5:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0)
ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f00000003c0)={0x2, 0x0, [{}, {}]})
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f00000000c0)={0x0, <r1=>0x0, 0x10000})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000240)={r1, 0x80000, <r2=>r0})
open(&(0x7f0000000040)='./file0\x00', 0x3ff, 0x0)
semget$private(0x0, 0x2, 0x226)
semctl$SETVAL(0x0, 0x2, 0x10, &(0x7f0000000080))
ioctl$DRM_IOCTL_ADD_MAP(r2, 0xc0286415, &(0x7f0000000280)={&(0x7f0000ffe000/0x1000)=nil, 0x189, 0x0, 0x8, &(0x7f0000ffe000/0x1000)=nil})
syz_mount_image$vfat(&(0x7f0000000600)='vfat\x00', &(0x7f0000000740)='./file0\x00', 0x0, 0x0, &(0x7f0000000640), 0x1800, &(0x7f00000001c0)=ANY=[])
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f00006f4000)={0x0, 0x0, 0x0, <r3=>0x0})
ioctl$DRM_IOCTL_AGP_RELEASE(0xffffffffffffffff, 0x6431)
dup3(0xffffffffffffffff, r3, 0x0)
r4 = open$dir(&(0x7f0000000200)='./file0\x00', 0x2, 0x0)
syz_mount_image$hfs(&(0x7f0000000140)='hfs\x00', &(0x7f0000000100)='./file0\x00', 0x9, 0xaaaaaaaaaaaad2a, &(0x7f0000000580)=[{&(0x7f0000000540), 0x0, 0x540a}], 0x0, &(0x7f00000001c0)=ANY=[@ANYPTR64=&(0x7f00000017c0)=ANY=[@ANYRES16=r3, @ANYBLOB="064b900856ce10e2131adaad699514ca80e169c90daa4a0da070153442d862952460234192748b867fa97989c19294d20948d241f7af8db0267578dd279c1de768262fa4e68d1da5aa530003a83de46b85ebc6891e51e4f7192a98be5876ec48f4aac81287f8f34ed09423b9a9557dc6dbb6f353a7cdb65441a9509be3f29b86450ea3f4d8f9d00f87dacc130319e2f75eaa06b6ede343218bada31b154e9e7eaa0225ab743202cda37b0b4ba8e70815ae93", @ANYPTR, @ANYBLOB="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", @ANYBLOB="079327fd5b54c42c36e0fce935801aba9414e16e6e82ecfb4f30b536213431fda39b0aff51982797a685ce6072751ee211fad8a9efdb8f39d7058a118074269baf3d59fc6fe70aa6748de17e7ab56fc0884cda280e28f828ca08cf22cd07c046b470fb08ac9598fbe0d0d9ec02795556ac42e278", @ANYPTR64=&(0x7f0000000780)=ANY=[@ANYRES32=r0, @ANYBLOB="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", @ANYRES16=r4, @ANYPTR64]]])
sendfile(r4, r4, &(0x7f0000000000), 0x40000000000004)
fallocate(r4, 0x11, 0x0, 0x100000001)

[  604.568036]  kvm_set_memory_region+0x2e/0x50
[  604.572468]  kvm_vm_ioctl+0x668/0x1d90
[  604.576373]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  604.581923]  ? __perf_event_task_sched_in+0x247/0xb80
[  604.587130]  ? kvm_set_memory_region+0x50/0x50
[  604.591728]  ? find_held_lock+0x36/0x1c0
[  604.595798]  ? perf_trace_lock+0xd6/0x900
[  604.599956]  ? zap_class+0x720/0x720
[  604.603676]  ? finish_task_switch+0x182/0x810
[  604.608185]  ? kasan_check_read+0x11/0x20
[  604.612338]  ? graph_lock+0x170/0x170
[  604.616147]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  604.620746]  ? compat_start_thread+0x80/0x80
[  604.625167]  ? _raw_spin_unlock_irq+0x27/0x70
[  604.629665]  ? trace_hardirqs_on+0xd/0x10
[  604.633805]  ? _raw_spin_unlock_irq+0x27/0x70
[  604.638292]  ? find_held_lock+0x36/0x1c0
[  604.642361]  ? lock_downgrade+0x8e0/0x8e0
[  604.646508]  ? rcu_is_watching+0x85/0x140
[  604.650642]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  604.655830]  ? __fget+0x40c/0x650
[  604.659280]  ? expand_files.part.8+0x9a0/0x9a0
[  604.663847]  ? lock_downgrade+0x8e0/0x8e0
[  604.668007]  ? vma_set_page_prot+0x239/0x300
[  604.672413]  ? kvm_set_memory_region+0x50/0x50
[  604.676984]  do_vfs_ioctl+0x1cf/0x16a0
[  604.680886]  ? ioctl_preallocate+0x2e0/0x2e0
[  604.685283]  ? fget_raw+0x20/0x20
[  604.688820]  ? exit_to_usermode_loop+0x87/0x310
[  604.693483]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  604.699019]  ? security_file_ioctl+0x94/0xc0
[  604.703423]  ksys_ioctl+0xa9/0xd0
[  604.706867]  __x64_sys_ioctl+0x73/0xb0
[  604.710744]  do_syscall_64+0x1b1/0x800
[  604.714616]  ? finish_task_switch+0x1ca/0x810
[  604.719097]  ? syscall_return_slowpath+0x5c0/0x5c0
[  604.724025]  ? syscall_return_slowpath+0x30f/0x5c0
[  604.728952]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  604.734313]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  604.739146]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  604.744326] RIP: 0033:0x455979
[  604.747500] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  604.755195] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  604.762447] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  604.769703] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  604.776957] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  604.784217] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  604.791766] warn_alloc_show_mem: 1 callbacks suppressed
[  604.791769] Mem-Info:
[  604.799609] active_anon:76560 inactive_anon:78 isolated_anon:0
[  604.799609]  active_file:3753 inactive_file:12485 isolated_file:0
[  604.799609]  unevictable:0 dirty:275 writeback:0 unstable:0
[  604.799609]  slab_reclaimable:10644 slab_unreclaimable:106027
[  604.799609]  mapped:73868 shmem:88 pagetables:1084 bounce:0
[  604.799609]  free:1323055 free_pcp:476 free_cma:0
[  604.833284] Node 0 active_anon:308512kB inactive_anon:312kB active_file:15012kB inactive_file:49940kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295572kB dirty:1100kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 149504kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  604.861517] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  604.887712] lowmem_reserve[]: 0 2830 6335 6335
[  604.892371] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:76kB free_cma:0kB
[  604.920056] lowmem_reserve[]: 0 0 3505 3505
[  604.924438] Node 0 Normal free:2371496kB min:37300kB low:46624kB high:55948kB active_anon:310512kB inactive_anon:312kB active_file:15012kB inactive_file:49940kB unevictable:0kB writepending:1100kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5792kB pagetables:4336kB bounce:0kB free_pcp:1176kB local_pcp:532kB free_cma:0kB
[  604.954460] lowmem_reserve[]: 0 0 0 0
[  604.958313] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  604.972109] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  604.987978] Node 0 Normal: 2041*4kB (UME) 3165*8kB (UME) 2834*16kB (UME) 3053*32kB (UME) 1467*64kB (UME) 289*128kB (UM) 192*256kB (UM) 106*512kB (UME) 70*1024kB (UME) 46*2048kB (UM) 438*4096kB (UM) = 2370764kB
[  605.006939] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  605.015571] 16325 total pagecache pages
2018/05/02 02:14:55 executing program 1:
r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000140)=0x1)
futex(&(0x7f000000cffc), 0x0, 0x0, &(0x7f00006f7000)={0x77359400}, &(0x7f0000877000), 0x0)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$inet_dccp_int(r1, 0x21, 0xe, &(0x7f00000000c0)=0xfffffffffffffffa, 0x4)
futex(&(0x7f000000cffc), 0x5, 0x0, &(0x7f00000017c0), &(0x7f0000000080), 0x0)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000180)={0x3})
r2 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x101, 0x2)
ioctl$KDGKBMODE(r2, 0x4b44, &(0x7f0000000040))

2018/05/02 02:14:55 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000051040000d0"], 0x1)

2018/05/02 02:14:55 executing program 7:
r0 = syz_open_dev$adsp(&(0x7f0000000180)='/dev/adsp#\x00', 0x2, 0x800)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f00000001c0)={{0x6, 0x3f}, 0x1, 0x5, 0x1, {0xfffffffffffffe01, 0x3}, 0x6, 0x67})
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x40000, 0x0)
faccessat(r1, &(0x7f0000000140)='./file0\x00', 0x1, 0xc00)
r2 = socket(0x10, 0x802, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r2, &(0x7f0000001680)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000001640)={&(0x7f00000003c0)=@setlink={0x48, 0x13, 0x50b, 0x0, 0x0, {}, [@IFLA_IFALIAS={0x14, 0x14, 'erspan0\x00'}, @IFLA_IFNAME={0x14, 0x3, 'erspan0\x00'}]}, 0x48}, 0x1}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r1, 0xc0bc5310, &(0x7f0000000240))
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f00000000c0), &(0x7f0000000040)=0x8)

2018/05/02 02:14:55 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000041040000d0"], 0x1)

[  605.019588] 0 pages in swap cache
[  605.023077] Swap cache stats: add 0, delete 0, find 0/0
[  605.028466] Free swap  = 0kB
[  605.031503] Total swap = 0kB
[  605.034554] 1965969 pages RAM
[  605.037683] 0 pages HighMem/MovableOnly
[  605.042369] 339347 pages reserved
[  605.064468] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  605.076258] syz-executor4 cpuset=syz4 mems_allowed=0
[  605.081473] CPU: 0 PID: 31017 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  605.088755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  605.098114] Call Trace:
[  605.100721]  dump_stack+0x1b9/0x294
[  605.104368]  ? dump_stack_print_info.cold.2+0x52/0x52
[  605.109587]  warn_alloc.cold.118+0xb2/0x1b8
[  605.113924]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  605.119942]  __vmalloc_node_range+0x45e/0x750
[  605.124456]  ? graph_lock+0x170/0x170
[  605.128274]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  605.133133]  __vmalloc_node_flags_caller+0x75/0x90
[  605.138102]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  605.142961]  kvmalloc_node+0xde/0x100
[  605.146774]  kvm_arch_create_memslot+0xa3/0x4e0
[  605.151476]  __kvm_set_memory_region+0x1d1b/0x2e50
[  605.156438]  ? kvm_vcpu_block+0x1050/0x1050
[  605.160797]  ? graph_lock+0x170/0x170
[  605.164628]  ? find_held_lock+0x36/0x1c0
[  605.168716]  ? lock_downgrade+0x8e0/0x8e0
[  605.172910]  kvm_set_memory_region+0x2e/0x50
[  605.177337]  kvm_vm_ioctl+0x668/0x1d90
[  605.181241]  ? __lock_acquire+0x7f5/0x5140
[  605.185502]  ? kvm_set_memory_region+0x50/0x50
[  605.190106]  ? debug_check_no_locks_freed+0x310/0x310
[  605.195318]  ? print_usage_bug+0xc0/0xc0
[  605.199397]  ? graph_lock+0x170/0x170
[  605.203228]  ? find_held_lock+0x36/0x1c0
[  605.207310]  ? lock_downgrade+0x8e0/0x8e0
[  605.211481]  ? kasan_check_read+0x11/0x20
[  605.215643]  ? rcu_is_watching+0x85/0x140
[  605.219802]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  605.225017]  ? __fget+0x40c/0x650
[  605.228504]  ? do_raw_spin_unlock+0x1/0x2e0
[  605.232838]  ? expand_files.part.8+0x9a0/0x9a0
[  605.237433]  ? kasan_check_write+0x14/0x20
[  605.241684]  ? do_raw_spin_lock+0xc1/0x200
[  605.245938]  ? _raw_spin_unlock+0x22/0x30
[  605.250100]  ? kvm_set_memory_region+0x50/0x50
[  605.254694]  do_vfs_ioctl+0x1cf/0x16a0
[  605.258598]  ? ioctl_preallocate+0x2e0/0x2e0
[  605.263628]  ? fget_raw+0x20/0x20
[  605.267101]  ? lock_downgrade+0x8e0/0x8e0
[  605.271262]  ? finish_task_switch+0x182/0x810
[  605.275781]  ? security_file_ioctl+0x94/0xc0
[  605.280203]  ksys_ioctl+0xa9/0xd0
[  605.283668]  __x64_sys_ioctl+0x73/0xb0
[  605.287568]  do_syscall_64+0x1b1/0x800
[  605.291485]  ? syscall_return_slowpath+0x5c0/0x5c0
[  605.296427]  ? syscall_return_slowpath+0x30f/0x5c0
[  605.301376]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  605.306752]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  605.311609]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  605.316799] RIP: 0033:0x455979
[  605.319986] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  605.327703] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  605.334979] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  605.342262] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  605.349539] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  605.356813] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:57 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c9040000d0"], 0x1)

2018/05/02 02:14:57 executing program 2:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000600)='/dev/snd/controlC#\x00', 0x2, 0x0)
r1 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x126)
getsockopt$ax25_int(r1, 0x101, 0x7, &(0x7f00000001c0), &(0x7f0000000280)=0xffffffffffffffba)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0xc10c5541, &(0x7f0000000040))
syz_open_dev$sndctrl(&(0x7f0000000240)='/dev/snd/controlC#\x00', 0x2, 0x100)

2018/05/02 02:14:57 executing program 5:
clone(0x0, &(0x7f00000000c0), &(0x7f0000000200), &(0x7f0000000140), &(0x7f0000000040)="828c05e6ae86dfe5f0e975b1cf7b98df2a1065e399fbf40f1407ec91715505559ed1bd828275f1e4ed43bbc54143e80073a7")
waitid(0x0, 0x0, &(0x7f00000002c0), 0xe0000008, &(0x7f00000005c0))

2018/05/02 02:14:57 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="0203000910000000000000fffffffb000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:57 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x52})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
getsockopt$inet6_mreq(r1, 0x29, 0x1f, &(0x7f00000001c0)={@mcast1, <r2=>0x0}, &(0x7f0000000200)=0x14)
ioctl$sock_ifreq(r1, 0x89a2, &(0x7f0000000240)={'team0\x00', @ifru_addrs=@can={0x1d, r2}})
r3 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r4 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0x40045402, &(0x7f0000013000))
readv(r4, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r3, r0, 0x0)

2018/05/02 02:14:57 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f000059aff4)='/dev/ashmem\x00', 0x0, 0x0)
read(r0, &(0x7f0000000040)=""/193, 0xc1)
socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffff9c, 0xc00c642e, &(0x7f00000001c0)={0x0, 0x80000, 0xffffffffffffff9c})

2018/05/02 02:14:57 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x2000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:57 executing program 7:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = dup2(r0, r0)
accept4$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x2710, @reserved=0x1}, 0x10, 0x800)
bind(r0, &(0x7f0000000080)=@nl=@unspec, 0x80)

[  606.185080] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  606.196889] syz-executor4 cpuset=syz4 mems_allowed=0
[  606.202088] CPU: 0 PID: 31046 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  606.209373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  606.218734] Call Trace:
[  606.221332]  dump_stack+0x1b9/0x294
[  606.224979]  ? dump_stack_print_info.cold.2+0x52/0x52
[  606.230182]  ? graph_lock+0x170/0x170
[  606.233998]  warn_alloc.cold.118+0xb2/0x1b8
[  606.238334]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  606.243202]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  606.249284]  ? update_load_avg+0x2d9/0x2570
[  606.253620]  ? graph_lock+0x170/0x170
[  606.257440]  __vmalloc_node_range+0x45e/0x750
[  606.261952]  ? graph_lock+0x170/0x170
[  606.265794]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  606.270648]  __vmalloc_node_flags_caller+0x75/0x90
[  606.275594]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  606.280451]  kvmalloc_node+0xde/0x100
2018/05/02 02:14:57 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000b3040000d0"], 0x1)

2018/05/02 02:14:57 executing program 1:
timer_create(0x0, &(0x7f0000cd0000)={0x0, 0x12}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f00004b1fe0)={{0x0, 0x1c9c380}, {0x0, 0x9}}, &(0x7f0000040000))
r0 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0)
ftruncate(r0, 0x7fff)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000f40000)='/dev/ptmx\x00', 0x200000000101002, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendfile(r1, r0, &(0x7f0000b4bff8), 0x100000002)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000200)={r0})
write$rdma_cm(r0, &(0x7f0000001840)=@create_id={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000001800)={<r2=>0xffffffff}, 0x2, 0xa}}, 0x20)
write$rdma_cm(r0, &(0x7f0000001880)=@listen={0x7, 0x8, 0xfa00, {r2, 0x81}}, 0x10)
syncfs(r0)
ioctl$PIO_UNISCRNMAP(r1, 0x4b6a, &(0x7f0000000100)="634c2943f6c6f96bdca8885ce67cb92f221bea3a36c9697bb4952dddb39e8c5a551d340407cb37020ed4b28a23816cf5681ccd688187d784fcca6a8f478d1c32e1ec8dd7")
getsockname$netrom(r0, &(0x7f0000000040)=@full, &(0x7f00000000c0)=0x48)
r3 = getpgid(0x0)
getpeername$unix(r0, &(0x7f0000000240)=@abs, &(0x7f00000002c0)=0x6e)
tkill(r3, 0x1000000000016)

[  606.284267]  kvm_arch_create_memslot+0xa3/0x4e0
[  606.288954]  __kvm_set_memory_region+0x1d1b/0x2e50
[  606.293910]  ? kvm_vcpu_block+0x1050/0x1050
[  606.298242]  ? print_usage_bug+0xc0/0xc0
[  606.302317]  ? zap_class+0x720/0x720
[  606.306037]  ? lock_downgrade+0x8e0/0x8e0
[  606.310207]  ? graph_lock+0x170/0x170
[  606.314022]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  606.318608]  ? __lock_acquire+0x7f5/0x5140
[  606.324316]  ? trace_hardirqs_on+0xd/0x10
[  606.328554]  ? find_held_lock+0x36/0x1c0
[  606.332611]  ? lock_downgrade+0x8e0/0x8e0
[  606.336793]  kvm_set_memory_region+0x2e/0x50
[  606.341200]  kvm_vm_ioctl+0x668/0x1d90
[  606.345096]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  606.350643]  ? __perf_event_task_sched_in+0x247/0xb80
[  606.355846]  ? kvm_set_memory_region+0x50/0x50
[  606.360479]  ? find_held_lock+0x36/0x1c0
[  606.364530]  ? perf_trace_lock+0xd6/0x900
[  606.368677]  ? retint_kernel+0x10/0x10
[  606.372562]  ? zap_class+0x720/0x720
[  606.376277]  ? retint_kernel+0x10/0x10
[  606.380163]  ? graph_lock+0x170/0x170
[  606.383962]  ? _raw_spin_unlock_irq+0x56/0x70
[  606.388446]  ? find_held_lock+0x36/0x1c0
[  606.392523]  ? lock_downgrade+0x8e0/0x8e0
[  606.396673]  ? rcu_is_watching+0x85/0x140
[  606.400812]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  606.406174]  ? __fget+0x40c/0x650
[  606.409631]  ? expand_files.part.8+0x9a0/0x9a0
[  606.414209]  ? lock_downgrade+0x8e0/0x8e0
[  606.418367]  ? vma_set_page_prot+0x239/0x300
[  606.422793]  ? kvm_set_memory_region+0x50/0x50
[  606.427386]  do_vfs_ioctl+0x1cf/0x16a0
[  606.431274]  ? ioctl_preallocate+0x2e0/0x2e0
[  606.435676]  ? fget_raw+0x20/0x20
[  606.439121]  ? exit_to_usermode_loop+0x87/0x310
[  606.443791]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  606.449333]  ? security_file_ioctl+0x94/0xc0
[  606.453751]  ksys_ioctl+0xa9/0xd0
[  606.457219]  __x64_sys_ioctl+0x73/0xb0
[  606.461107]  do_syscall_64+0x1b1/0x800
[  606.464989]  ? finish_task_switch+0x1ca/0x810
[  606.469488]  ? syscall_return_slowpath+0x5c0/0x5c0
[  606.474415]  ? syscall_return_slowpath+0x30f/0x5c0
[  606.479364]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  606.484726]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  606.489568]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  606.494746] RIP: 0033:0x455979
[  606.497934] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  606.505642] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  606.512897] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  606.520159] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  606.527428] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  606.534686] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  606.542335] warn_alloc_show_mem: 1 callbacks suppressed
[  606.542356] Mem-Info:
[  606.550300] active_anon:78151 inactive_anon:77 isolated_anon:0
[  606.550300]  active_file:3753 inactive_file:12500 isolated_file:0
[  606.550300]  unevictable:0 dirty:291 writeback:0 unstable:0
[  606.550300]  slab_reclaimable:11020 slab_unreclaimable:105660
[  606.550300]  mapped:73906 shmem:91 pagetables:1120 bounce:0
[  606.550300]  free:1321315 free_pcp:417 free_cma:0
2018/05/02 02:14:57 executing program 2:
r0 = socket$inet6(0xa, 0x80000, 0x4)
connect$inet6(r0, &(0x7f0000000000)={0xa}, 0x1c)
sendmmsg(r0, &(0x7f0000007e00)=[{{0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f00000003c0)}}, {{&(0x7f00000004c0)=@in6={0xa, 0x4e22, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x80, &(0x7f0000000680), 0x0, &(0x7f0000000040)}}], 0x2, 0x0)

[  606.583995] Node 0 active_anon:314564kB inactive_anon:308kB active_file:15012kB inactive_file:50000kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295624kB dirty:1164kB writeback:0kB shmem:364kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 133120kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:14:57 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000003040000d0"], 0x1)

[  606.612236] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  606.638463] lowmem_reserve[]: 0 2830 6335 6335
[  606.643107] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:656kB free_cma:0kB
[  606.670898] lowmem_reserve[]: 0 0 3505 3505
[  606.675297] Node 0 Normal free:2367084kB min:37300kB low:46624kB high:55948kB active_anon:314564kB inactive_anon:308kB active_file:15012kB inactive_file:50000kB unevictable:0kB writepending:1164kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5824kB pagetables:4480kB bounce:0kB free_pcp:1132kB local_pcp:708kB free_cma:0kB
[  606.705337] lowmem_reserve[]: 0 0 0 0
[  606.709202] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
2018/05/02 02:14:57 executing program 5:
r0 = socket(0x1e, 0x1, 0x0)
listen(r0, 0xffffffff)
getsockopt$llc_int(r0, 0x10c, 0x0, &(0x7f0000000000), &(0x7f0000000040)=0x4)
setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000454ff0)={0x0, 0x2710}, 0x10)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0x7, 0xffffffff, 0x8, 0x1, 0x10000, 0x8, 0x4, 0x5, <r1=>0x0}, &(0x7f00000000c0)=0x20)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000140)={r1, 0xac2c}, &(0x7f0000000180)=0x8)
write$binfmt_misc(r0, &(0x7f0000000240)={'syz0', "64558f56b7674fa258635e25c4c51fef34101429c3a89c346a91980f52acd6eb488ae29c82d6bb164515a95fad0a987411229c4b5a60ba4fbca0991593b5cf2c44d8d9cf973a6a1bb7fa52079a2cce3e941616879330016196f0262ad08700dc51f70f2a75f4fcaedfcd8f2083edb2f9390840b08424cdde15ef0c148d3b9839b8d8355903"}, 0x89)
accept(r0, &(0x7f00000001c0)=@un=@abs, &(0x7f0000000100)=0x80)
recvmmsg(r0, &(0x7f0000008240)=[{{&(0x7f0000006880)=@generic, 0x80, &(0x7f0000006ac0)=[{&(0x7f0000006a80)=""/8, 0x8}], 0x1, &(0x7f0000006b40)=""/240, 0xf0}}], 0x1, 0x0, &(0x7f00000084c0)={0x77359400})

[  606.722947] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  606.738898] Node 0 Normal: 1845*4kB (UME) 3544*8kB (UME) 2730*16kB (UME) 3026*32kB (UME) 1459*64kB (UM) 292*128kB (UM) 192*256kB (UME) 105*512kB (UME) 68*1024kB (UM) 44*2048kB (UM) 438*4096kB (UM) = 2363700kB
[  606.757878] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  606.766518] 16362 total pagecache pages
[  606.770632] 0 pages in swap cache
[  606.774139] Swap cache stats: add 0, delete 0, find 0/0
[  606.779555] Free swap  = 0kB
[  606.782622] Total swap = 0kB
[  606.785674] 1965969 pages RAM
[  606.788832] 0 pages HighMem/MovableOnly
[  606.792835] 339347 pages reserved
2018/05/02 02:14:57 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000004a040000d0"], 0x1)

[  606.832652] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  606.844488] syz-executor4 cpuset=syz4 mems_allowed=0
[  606.849752] CPU: 0 PID: 31078 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  606.857028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  606.866389] Call Trace:
[  606.868995]  dump_stack+0x1b9/0x294
[  606.872647]  ? dump_stack_print_info.cold.2+0x52/0x52
[  606.877864]  warn_alloc.cold.118+0xb2/0x1b8
[  606.882205]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  606.887093]  __vmalloc_node_range+0x45e/0x750
[  606.891611]  ? graph_lock+0x170/0x170
[  606.895427]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  606.900283]  __vmalloc_node_flags_caller+0x75/0x90
[  606.905227]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  606.910083]  kvmalloc_node+0xde/0x100
[  606.913894]  kvm_arch_create_memslot+0xa3/0x4e0
[  606.918575]  __kvm_set_memory_region+0x1d1b/0x2e50
[  606.923506]  ? kvm_vcpu_block+0x1050/0x1050
[  606.927825]  ? zap_class+0x720/0x720
[  606.931537]  ? graph_lock+0x170/0x170
[  606.935340]  ? find_held_lock+0x36/0x1c0
[  606.939396]  ? lock_downgrade+0x8e0/0x8e0
[  606.943552]  kvm_set_memory_region+0x2e/0x50
[  606.947951]  kvm_vm_ioctl+0x668/0x1d90
[  606.951824]  ? __lock_acquire+0x7f5/0x5140
[  606.956049]  ? kvm_set_memory_region+0x50/0x50
[  606.960631]  ? debug_check_no_locks_freed+0x310/0x310
[  606.965808]  ? perf_trace_lock+0xd6/0x900
[  606.969952]  ? zap_class+0x720/0x720
[  606.973651]  ? print_usage_bug+0xc0/0xc0
[  606.977703]  ? graph_lock+0x170/0x170
[  606.981505]  ? find_held_lock+0x36/0x1c0
[  606.985557]  ? lock_downgrade+0x8e0/0x8e0
[  606.989695]  ? rcu_is_watching+0x85/0x140
[  606.993832]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  606.999019]  ? __fget+0x40c/0x650
[  607.002465]  ? do_raw_spin_unlock+0x1/0x2e0
[  607.006775]  ? expand_files.part.8+0x9a0/0x9a0
[  607.011345]  ? kasan_check_write+0x14/0x20
[  607.015564]  ? do_raw_spin_lock+0xc1/0x200
[  607.019787]  ? _raw_spin_unlock+0x22/0x30
[  607.023925]  ? kvm_set_memory_region+0x50/0x50
[  607.028492]  do_vfs_ioctl+0x1cf/0x16a0
[  607.032370]  ? ioctl_preallocate+0x2e0/0x2e0
[  607.036763]  ? fget_raw+0x20/0x20
[  607.040207]  ? lock_downgrade+0x8e0/0x8e0
[  607.045036]  ? finish_task_switch+0x182/0x810
[  607.049526]  ? security_file_ioctl+0x94/0xc0
[  607.053926]  ksys_ioctl+0xa9/0xd0
[  607.057725]  __x64_sys_ioctl+0x73/0xb0
[  607.061601]  do_syscall_64+0x1b1/0x800
[  607.065481]  ? syscall_return_slowpath+0x5c0/0x5c0
[  607.070397]  ? syscall_return_slowpath+0x30f/0x5c0
[  607.075318]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  607.080677]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  607.085510]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  607.090684] RIP: 0033:0x455979
[  607.093855] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  607.101550] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  607.110277] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  607.117531] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  607.124783] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
2018/05/02 02:14:58 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000000000000000003f000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

[  607.132036] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:14:58 executing program 2:
r0 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x1, 0x0)
ioctl$int_in(r1, 0x800000c004500a, &(0x7f0000006000))
r2 = fcntl$getown(r0, 0x9)
syz_open_procfs(r2, &(0x7f00000000c0)='net/ip6_flowlabel\x00')
read(r1, &(0x7f0000000200)=""/90, 0xfffffd63)
ppoll(&(0x7f0000053ff8), 0x0, &(0x7f0000048000)={0x77359400}, &(0x7f0000052000), 0x8)
r3 = memfd_create(&(0x7f0000f9dffe)="c403", 0x0)
mmap(&(0x7f0000000000/0xaa7000)=nil, 0xaa7000, 0x0, 0x12, r3, 0x0)
read$eventfd(r1, &(0x7f0000000080), 0x8)

2018/05/02 02:14:58 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x80000)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, r0, 0x0)

2018/05/02 02:14:58 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000fbffffff00000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:58 executing program 5:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x2, 0x0)
fstat(0xffffffffffffff9c, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
r2 = getegid()
fchownat(r0, &(0x7f00000000c0)='./file0\x00', r1, r2, 0x500)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$tun(&(0x7f00000004c0)='/dev/net/tun\x00', 0x0, 0x0)
close(r3)

2018/05/02 02:14:58 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000000b040000d0"], 0x1)

2018/05/02 02:14:58 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000ffffff8000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:58 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
creat(&(0x7f000002bff8)='./file0\x00', 0x0)
r0 = inotify_init1(0x0)
fcntl$setstatus(r0, 0x4, 0x72109c5fef5d34d3)
r1 = gettid()
rt_sigprocmask(0x0, &(0x7f000003b000)={0xfffffffffffffffe}, 0x0, 0x8)
fcntl$setownex(r0, 0xf, &(0x7f0000fa4000)={0x0, r1})
prlimit64(0x0, 0xb, &(0x7f000002fff0), 0x0)
inotify_add_watch(r0, &(0x7f0000ac5000)='./file0\x00', 0xa400295c)
fcntl$notify(r0, 0xa, 0x34)
r2 = open(&(0x7f0000fa3000)='./file0\x00', 0x0, 0x0)
dup2(r0, r2)
ioctl$PIO_FONT(r2, 0x4b61, &(0x7f0000000100)="ee3c1315016df830b1a469b0a5f6778d3dd93a3e19c0f6cf8aab10e2877e3db3805f47e65937cf067365a603a2fa6d680d798798b65fa3f1c4dbb5ddfbbff4442b1399ab")
clock_gettime(0x2, &(0x7f0000000080))
clock_gettime(0x0, &(0x7f00000000c0))

2018/05/02 02:14:58 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x5, 0x1000, &(0x7f0000009000/0x1000)=nil})

[  607.455605] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  607.467511] syz-executor4 cpuset=syz4 mems_allowed=0
[  607.472732] CPU: 1 PID: 31115 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  607.480018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  607.489398] Call Trace:
[  607.492000]  dump_stack+0x1b9/0x294
[  607.495651]  ? dump_stack_print_info.cold.2+0x52/0x52
[  607.500860]  ? kasan_check_read+0x11/0x20
[  607.505028]  warn_alloc.cold.118+0xb2/0x1b8
[  607.509364]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  607.514303]  ? trace_hardirqs_on+0xd/0x10
[  607.518460]  ? _raw_spin_unlock_irq+0x27/0x70
[  607.522968]  ? finish_task_switch+0x1ca/0x810
[  607.527486]  ? lock_repin_lock+0x410/0x410
[  607.531748]  __vmalloc_node_range+0x45e/0x750
[  607.536267]  ? graph_lock+0x170/0x170
[  607.540085]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  607.544941]  __vmalloc_node_flags_caller+0x75/0x90
[  607.549883]  ? kvm_arch_create_memslot+0xa3/0x4e0
2018/05/02 02:14:58 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)="2f657865000000000000656ae1e80d903e0d717ac1889a45e581c9e14a5c8f95f5b9968ae8c767e9d18fd69a")
bind$nfc_llcp(r0, &(0x7f0000000000)={0x27, 0x0, 0x1, 0x4, 0x141bc383, 0x7, "f2608d3f4c0d19f9c6c0ba965b14885a0019d0a290974c75f0c63d91af2024574e34604bd22cfb7a9cc81a10084a24979669d0ff355909846f6cb7d53b5357", 0x12}, 0x60)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x800000000004, 0x20011, r0, 0x0)
ioctl$fiemap(r0, 0x40086602, &(0x7f0000000400)=ANY=[])

2018/05/02 02:14:58 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000047040000d0"], 0x1)

2018/05/02 02:14:58 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000fffffffb00000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:58 executing program 5:
r0 = socket(0x10, 0x802, 0x0)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x1)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000300)={{0x100000001, 0xfffffffffffffff8}, 'port0\x00', 0x2, 0x1000, 0xa4, 0x6, 0x5, 0x3, 0x5, 0x0, 0x2, 0x3})
write(r0, &(0x7f0000000000)="24000000210025553e1c0165fffffc0e020000170000000182a9000c0800160002000000", 0x24)
setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000280)={0x303, 0x33}, 0xfffffffffffffefc)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0xffffffffffffff9c, 0x6, 0x1, 0x4, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5}, 0x20)
r3 = gettid()
r4 = syz_open_procfs(r3, &(0x7f00000000c0)='fdinfo\x00')
fchdir(r4)
exit(0x0)
syz_fuseblk_mount(&(0x7f0000976000)='./file0\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f00000003c0)='/dev/usbmon#\x00', 0x800, 0x0)
ioctl$KDGKBMETA(r2, 0x4b62, &(0x7f00000000c0))
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000240)={r2, &(0x7f0000000100)="5eb435016bcf2fda3f77b1a2f5b68ca6b34e50a342155c735bcf6a0c0dd146f21100c8b56e772809a9df12c552de12878076f734950307a04d9855b83770c9cb3a0b97e87f04c3fcfd51148fab37a1f0bf46473ecddb1dff5120ef7b0f0f22668826942ba1f061f747564187d9a610fefd33782bda77ab0df0c094eccafc343ff9ef2a900a7825bb59d8679fb85e5a218de2841f0028c818dccd3b959d716ec8bfc88e3e07ff5d3fffefe794ce1e", &(0x7f00000001c0)="5eeb7ec6693a8b434cacabfd97df5669cc22e9e9b75e1ccd76962536864c3a08682920d97d08051a4200a19d8b2bb6ec92064855949210377ec206622ca2b101508e9c2f6af8d9a17eb79d9c0851fbe7d6c8467f2d6b", 0x3}, 0x20)

2018/05/02 02:14:58 executing program 1:
socket$alg(0x26, 0x5, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)="2f65786500000000000035abe1e80d903e0d717ac1889a45e581c9e14a5c8f95f5d2968ae8c767e9d18fd69a")
fcntl$setlease(r0, 0x400, 0x2)

[  607.554745]  kvmalloc_node+0xde/0x100
[  607.558567]  kvm_arch_create_memslot+0xa3/0x4e0
[  607.563262]  __kvm_set_memory_region+0x1d1b/0x2e50
[  607.568219]  ? kvm_vcpu_block+0x1050/0x1050
[  607.572651]  ? zap_class+0x720/0x720
[  607.576380]  ? check_same_owner+0x320/0x320
[  607.580713]  ? rcu_note_context_switch+0x710/0x710
[  607.585664]  ? lock_acquire+0x1dc/0x520
[  607.589659]  ? graph_lock+0x170/0x170
[  607.593470]  ? __might_sleep+0x95/0x190
[  607.597468]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
2018/05/02 02:14:58 executing program 7:
r0 = socket(0x10, 0x802, 0x0)
write(r0, &(0x7f0000000000)="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", 0x208)

[  607.597982] netlink: 'syz-executor5': attribute type 22 has an invalid length.
[  607.603021]  ? futex_wait_queue_me+0x550/0x820
[  607.603042]  ? refill_pi_state_cache.part.7+0x300/0x300
[  607.603064]  ? find_held_lock+0x36/0x1c0
[  607.603091]  ? lock_downgrade+0x8e0/0x8e0
[  607.603134]  kvm_set_memory_region+0x2e/0x50
[  607.603152]  kvm_vm_ioctl+0x668/0x1d90
[  607.636882]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  607.641999]  ? futex_wake+0x2f6/0x750
[  607.645818]  ? kvm_set_memory_region+0x50/0x50
[  607.650418]  ? get_futex_key+0x1e90/0x1e90
2018/05/02 02:14:58 executing program 7:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00001dcf48)=ANY=[@ANYBLOB="02030000160000000000000000000000040003000000000000000000000000000000000000000000000000000000000005000600000000000a0000000000000000000000000000000000000000000000030000000000000004000400007a00000000000000000000000000000000000000000000000000000200010000000000000000000000000005000500000000000a00000000000000fe800000000000000000"], 0xb0}, 0x1}, 0x0)

[  607.654664]  ? perf_trace_lock+0xd6/0x900
[  607.658830]  ? zap_class+0x720/0x720
[  607.662555]  ? kasan_check_write+0x14/0x20
[  607.666803]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  607.672007]  ? do_futex+0x249/0x27d0
[  607.675730]  ? kasan_check_write+0x14/0x20
[  607.679975]  ? graph_lock+0x170/0x170
[  607.683797]  ? exit_robust_list+0x290/0x290
[  607.688130]  ? find_held_lock+0x36/0x1c0
[  607.692211]  ? lock_downgrade+0x8e0/0x8e0
[  607.696372]  ? rcu_is_watching+0x85/0x140
[  607.700530]  ? rcu_bh_force_quiescent_state+0x20/0x20
2018/05/02 02:14:58 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000009c040000d0"], 0x1)

[  607.705740]  ? __fget+0x40c/0x650
[  607.709205]  ? expand_files.part.8+0x9a0/0x9a0
[  607.713788]  ? lock_downgrade+0x8e0/0x8e0
[  607.717947]  ? __split_vma+0x5ac/0x7f0
[  607.721847]  ? vma_set_page_prot+0x239/0x300
[  607.726276]  ? kvm_set_memory_region+0x50/0x50
[  607.730870]  do_vfs_ioctl+0x1cf/0x16a0
[  607.734781]  ? ioctl_preallocate+0x2e0/0x2e0
[  607.739203]  ? fget_raw+0x20/0x20
[  607.742681]  ? __x64_sys_futex+0x477/0x680
[  607.746932]  ? do_futex+0x27d0/0x27d0
[  607.750754]  ? security_file_ioctl+0x94/0xc0
[  607.755183]  ksys_ioctl+0xa9/0xd0
[  607.758660]  __x64_sys_ioctl+0x73/0xb0
[  607.762557]  do_syscall_64+0x1b1/0x800
[  607.766454]  ? finish_task_switch+0x1ca/0x810
[  607.770957]  ? syscall_return_slowpath+0x5c0/0x5c0
[  607.775895]  ? syscall_return_slowpath+0x30f/0x5c0
[  607.780832]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  607.786208]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  607.791061]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  607.796254] RIP: 0033:0x455979
[  607.799444] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  607.807160] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  607.814433] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  607.821791] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  607.829065] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  607.836342] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  607.843884] warn_alloc_show_mem: 1 callbacks suppressed
[  607.843887] Mem-Info:
[  607.851777] active_anon:76045 inactive_anon:89 isolated_anon:0
[  607.851777]  active_file:3755 inactive_file:12512 isolated_file:0
[  607.851777]  unevictable:0 dirty:303 writeback:0 unstable:0
[  607.851777]  slab_reclaimable:11034 slab_unreclaimable:105820
[  607.851777]  mapped:73865 shmem:96 pagetables:1068 bounce:0
[  607.851777]  free:1323424 free_pcp:419 free_cma:0
[  607.886068] Node 0 active_anon:304180kB inactive_anon:356kB active_file:15020kB inactive_file:50048kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295460kB dirty:1212kB writeback:0kB shmem:384kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 145408kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  607.914307] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  607.940505] lowmem_reserve[]: 0 2830 6335 6335
[  607.945151] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:76kB free_cma:0kB
[  607.972792] lowmem_reserve[]: 0 0 3505 3505
[  607.977171] Node 0 Normal free:2377628kB min:37300kB low:46624kB high:55948kB active_anon:304180kB inactive_anon:356kB active_file:15020kB inactive_file:50048kB unevictable:0kB writepending:1212kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5600kB pagetables:4124kB bounce:0kB free_pcp:1016kB local_pcp:380kB free_cma:0kB
[  608.007154] lowmem_reserve[]: 0 0 0 0
[  608.011041] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  608.024752] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  608.040645] Node 0 Normal: 2197*4kB (UME) 3231*8kB (UM) 2825*16kB (UME) 3033*32kB (UME) 1465*64kB (UM) 296*128kB (UM) 192*256kB (UME) 105*512kB (UME) 68*1024kB (UM) 50*2048kB (UM) 438*4096kB (UM) = 2377532kB
[  608.059365] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  608.067996] 16362 total pagecache pages
[  608.072042] 0 pages in swap cache
[  608.075519] Swap cache stats: add 0, delete 0, find 0/0
[  608.080923] Free swap  = 0kB
[  608.083967] Total swap = 0kB
[  608.087048] 1965969 pages RAM
[  608.090188] 0 pages HighMem/MovableOnly
[  608.094204] 339347 pages reserved
[  608.121657] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  608.133530] syz-executor4 cpuset=syz4 mems_allowed=0
[  608.138763] CPU: 1 PID: 31150 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  608.146041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  608.155397] Call Trace:
[  608.157982]  dump_stack+0x1b9/0x294
[  608.161599]  ? dump_stack_print_info.cold.2+0x52/0x52
[  608.166782]  ? kasan_check_read+0x11/0x20
[  608.170922]  warn_alloc.cold.118+0xb2/0x1b8
[  608.175232]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  608.180162]  ? trace_hardirqs_on+0xd/0x10
[  608.184322]  ? _raw_spin_unlock_irq+0x27/0x70
[  608.188820]  ? finish_task_switch+0x1ca/0x810
[  608.193329]  ? lock_repin_lock+0x410/0x410
[  608.197573]  __vmalloc_node_range+0x45e/0x750
[  608.202070]  ? graph_lock+0x170/0x170
[  608.205876]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  608.210733]  __vmalloc_node_flags_caller+0x75/0x90
[  608.215673]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  608.220528]  kvmalloc_node+0xde/0x100
[  608.224324]  kvm_arch_create_memslot+0xa3/0x4e0
[  608.228993]  __kvm_set_memory_region+0x1d1b/0x2e50
[  608.233927]  ? kvm_vcpu_block+0x1050/0x1050
[  608.238234]  ? print_usage_bug+0xc0/0xc0
[  608.242284]  ? zap_class+0x720/0x720
[  608.245984]  ? check_same_owner+0x320/0x320
[  608.250297]  ? rcu_note_context_switch+0x710/0x710
[  608.255211]  ? lock_acquire+0x1dc/0x520
[  608.259176]  ? graph_lock+0x170/0x170
[  608.262972]  ? __might_sleep+0x95/0x190
[  608.266940]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  608.272463]  ? futex_wait_queue_me+0x550/0x820
[  608.277034]  ? __lock_acquire+0x7f5/0x5140
[  608.281260]  ? refill_pi_state_cache.part.7+0x300/0x300
[  608.286617]  ? find_held_lock+0x36/0x1c0
[  608.290675]  ? lock_downgrade+0x8e0/0x8e0
[  608.294845]  kvm_set_memory_region+0x2e/0x50
[  608.299252]  kvm_vm_ioctl+0x668/0x1d90
[  608.303217]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  608.308743]  ? __perf_event_task_sched_in+0x247/0xb80
[  608.313922]  ? kvm_set_memory_region+0x50/0x50
[  608.318495]  ? find_held_lock+0x36/0x1c0
[  608.322543]  ? perf_trace_lock+0xd6/0x900
[  608.326684]  ? zap_class+0x720/0x720
[  608.330388]  ? finish_task_switch+0x182/0x810
[  608.334870]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  608.340049]  ? do_futex+0x249/0x27d0
[  608.343750]  ? kasan_check_read+0x11/0x20
[  608.347883]  ? graph_lock+0x170/0x170
[  608.351670]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  608.356253]  ? compat_start_thread+0x80/0x80
[  608.360659]  ? _raw_spin_unlock_irq+0x27/0x70
[  608.365146]  ? exit_robust_list+0x290/0x290
[  608.369455]  ? find_held_lock+0x36/0x1c0
[  608.373510]  ? lock_downgrade+0x8e0/0x8e0
[  608.377651]  ? rcu_is_watching+0x85/0x140
[  608.381789]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  608.386980]  ? __fget+0x40c/0x650
[  608.390425]  ? do_raw_spin_unlock+0x1/0x2e0
[  608.394734]  ? expand_files.part.8+0x9a0/0x9a0
[  608.399302]  ? kasan_check_write+0x14/0x20
[  608.403521]  ? do_raw_spin_lock+0xc1/0x200
[  608.407749]  ? kvm_set_memory_region+0x50/0x50
[  608.412318]  do_vfs_ioctl+0x1cf/0x16a0
[  608.416200]  ? ioctl_preallocate+0x2e0/0x2e0
[  608.420601]  ? fget_raw+0x20/0x20
[  608.424050]  ? __x64_sys_futex+0x477/0x680
[  608.428277]  ? exit_to_usermode_loop+0x87/0x310
[  608.432933]  ? do_futex+0x27d0/0x27d0
[  608.436724]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  608.442247]  ? security_file_ioctl+0x94/0xc0
[  608.446652]  ksys_ioctl+0xa9/0xd0
[  608.450096]  __x64_sys_ioctl+0x73/0xb0
[  608.453972]  do_syscall_64+0x1b1/0x800
[  608.457847]  ? finish_task_switch+0x1ca/0x810
[  608.462337]  ? syscall_return_slowpath+0x5c0/0x5c0
[  608.467257]  ? syscall_return_slowpath+0x30f/0x5c0
[  608.472178]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  608.477530]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  608.482363]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  608.487537] RIP: 0033:0x455979
[  608.490711] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  608.498405] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  608.505663] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  608.513097] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  608.520350] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  608.527603] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:14:59 executing program 2:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x212200, 0x0)
getsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f00000001c0)={@local, @multicast2, <r2=>0x0}, &(0x7f0000000200)=0xc)
setsockopt$inet_mreqn(r1, 0x0, 0x0, &(0x7f0000000240)={@remote={0xac, 0x14, 0x14, 0xbb}, @dev={0xac, 0x14, 0x14, 0xb}, r2}, 0xc)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x3, 0xc000)
ioctl$KDGKBSENT(r3, 0x4b48, &(0x7f00000000c0)={0x7, 0xcc7d, 0x2})
ioctl$KDGKBENT(r3, 0x4b46, &(0x7f0000000140)={0x7, 0x2, 0x29a7})
ioctl$sock_ifreq(r0, 0x8931, &(0x7f0000000100)={"73697430000000003f6a3ea4d7e0879c", @ifru_data=&(0x7f0000000000)="505658a13034d1030287bc441e234492376682cc9ae43a4657c007f1b27538ad"})
nanosleep(&(0x7f0000000040), 0x0)

2018/05/02 02:14:59 executing program 5:
fsetxattr(0xffffffffffffffff, &(0x7f0000000740)=@known='trusted.syz\x00', &(0x7f0000000780)='\x00', 0x1, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000000c0)='/dev/snd/midiC#D#\x00', 0xa36c6df, 0x0)
setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000040)=0x3ff, 0x4)
move_pages(0x0, 0x395, &(0x7f0000000080), 0x0, &(0x7f0000000080), 0x0)

2018/05/02 02:14:59 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0xffffff7f00000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:14:59 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x2, 0x20001)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_SERVICE(r0, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x78, r1, 0x0, 0x70bd2a, 0x25dfdbff, {0x3}, [@IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}]}, @IPVS_CMD_ATTR_SERVICE={0x28, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x7c}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'fo\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}]}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'ovf\x00'}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x40091}, 0x4050)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0x14, 0x3, 0x6, 0x203, 0x0, 0x0, {0x0, 0x0, 0x8000000}}, 0x14}, 0x1}, 0x0)

2018/05/02 02:14:59 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000069040000d0"], 0x1)

2018/05/02 02:14:59 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa, 0x21})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$TIOCGSID(r1, 0x5429, &(0x7f0000000100)=<r4=>0x0)
syz_open_dev$binder(&(0x7f0000000300)='/dev/binder#\x00', 0x0, 0x800)
ptrace$poke(0x4, r4, &(0x7f0000000140), 0xffffffffffff0000)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
stat(&(0x7f0000000540)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setregid(r5, r6)
ioctl$TUNGETSNDBUF(r1, 0x800454d3, &(0x7f0000000500))
readv(r3, &(0x7f00005f7000)=[{&(0x7f00000000c0)=""/7, 0x7}], 0x1)
r7 = add_key(&(0x7f0000000400)='.request_key_auth\x00', &(0x7f0000000440)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000480)="ebeac8b1ff4abbba478fd0fbc15492b71b610f1e5759291fd0f83025fdaac0b6df6dd702ecec073d5c4548705bf3503ec1a77d93988c0413456b247eda1d6b73f46a4df34162231adffeaad3f1c04b5f0aaff4ae050c9aad85a05ce6f00f5fe5548dc3af2d0218442d3e0def8f85e5", 0x6f, 0xfffffffffffffffd)
request_key(&(0x7f0000000340)='pkcs7_test\x00', &(0x7f0000000380)={0x73, 0x79, 0x7a, 0x0}, &(0x7f00000003c0)='cgroup\x00', r7)
dup3(r2, r0, 0x0)

2018/05/02 02:14:59 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000003f00000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:14:59 executing program 7:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = getpgrp(0x0)
waitid(0x2, r0, 0x0, 0x20000004, &(0x7f0000000080))

[  608.655491] netlink: 'syz-executor5': attribute type 22 has an invalid length.
[  608.751228] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  608.763071] syz-executor4 cpuset=syz4 mems_allowed=0
[  608.768266] CPU: 1 PID: 31175 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  608.775546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  608.784900] Call Trace:
[  608.787502]  dump_stack+0x1b9/0x294
[  608.791149]  ? dump_stack_print_info.cold.2+0x52/0x52
[  608.796358]  ? perf_trace_lock_acquire+0xe3/0x980
[  608.801221]  warn_alloc.cold.118+0xb2/0x1b8
[  608.805567]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  608.810409]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  608.816466]  ? __update_load_avg_se.isra.34+0x61e/0x980
[  608.821827]  __vmalloc_node_range+0x45e/0x750
[  608.826312]  ? graph_lock+0x170/0x170
[  608.830104]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  608.834937]  __vmalloc_node_flags_caller+0x75/0x90
[  608.839851]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  608.844689]  kvmalloc_node+0xde/0x100
[  608.848496]  kvm_arch_create_memslot+0xa3/0x4e0
[  608.853166]  __kvm_set_memory_region+0x1d1b/0x2e50
[  608.858101]  ? kvm_vcpu_block+0x1050/0x1050
[  608.862410]  ? print_usage_bug+0xc0/0xc0
[  608.866553]  ? perf_trace_lock+0x900/0x900
[  608.870778]  ? graph_lock+0x170/0x170
[  608.874566]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  608.879141]  ? __lock_acquire+0x7f5/0x5140
[  608.883362]  ? trace_hardirqs_on+0xd/0x10
[  608.887500]  ? find_held_lock+0x36/0x1c0
[  608.891560]  ? lock_downgrade+0x8e0/0x8e0
[  608.895723]  kvm_set_memory_region+0x2e/0x50
[  608.900119]  kvm_vm_ioctl+0x668/0x1d90
[  608.903996]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  608.909525]  ? __perf_event_task_sched_in+0x247/0xb80
[  608.914705]  ? kvm_set_memory_region+0x50/0x50
[  608.919282]  ? find_held_lock+0x36/0x1c0
[  608.923334]  ? perf_trace_lock_acquire+0xe3/0x980
[  608.928169]  ? perf_trace_lock+0x900/0x900
[  608.932393]  ? kasan_check_read+0x11/0x20
[  608.936527]  ? graph_lock+0x170/0x170
[  608.940313]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  608.944883]  ? compat_start_thread+0x80/0x80
[  608.949286]  ? _raw_spin_unlock_irq+0x27/0x70
[  608.953771]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  608.958776]  ? trace_hardirqs_on+0xd/0x10
[  608.962910]  ? _raw_spin_unlock_irq+0x27/0x70
[  608.967392]  ? find_held_lock+0x36/0x1c0
[  608.971451]  ? lock_downgrade+0x8e0/0x8e0
[  608.975590]  ? kasan_check_read+0x11/0x20
[  608.979723]  ? rcu_is_watching+0x85/0x140
[  608.983858]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  608.989050]  ? __fget+0x40c/0x650
[  608.992501]  ? expand_files.part.8+0x9a0/0x9a0
[  608.997067]  ? lock_downgrade+0x8e0/0x8e0
[  609.001207]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  609.006738]  ? vma_set_page_prot+0x239/0x300
[  609.011136]  ? kvm_set_memory_region+0x50/0x50
[  609.015708]  do_vfs_ioctl+0x1cf/0x16a0
[  609.019597]  ? ioctl_preallocate+0x2e0/0x2e0
[  609.023993]  ? fget_raw+0x20/0x20
[  609.027446]  ? exit_to_usermode_loop+0x87/0x310
[  609.032105]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  609.037630]  ? security_file_ioctl+0x94/0xc0
[  609.042046]  ksys_ioctl+0xa9/0xd0
[  609.045496]  __x64_sys_ioctl+0x73/0xb0
[  609.049374]  do_syscall_64+0x1b1/0x800
[  609.053248]  ? finish_task_switch+0x1ca/0x810
[  609.057730]  ? syscall_return_slowpath+0x5c0/0x5c0
[  609.062663]  ? syscall_return_slowpath+0x30f/0x5c0
[  609.067585]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  609.072941]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  609.077777]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  609.082951] RIP: 0033:0x455979
[  609.086129] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  609.093826] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  609.101083] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  609.108353] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  609.115608] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  609.122872] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  609.130414] warn_alloc_show_mem: 1 callbacks suppressed
[  609.130417] Mem-Info:
[  609.138281] active_anon:73436 inactive_anon:80 isolated_anon:0
[  609.138281]  active_file:3755 inactive_file:12527 isolated_file:0
2018/05/02 02:15:00 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000c4040000d0"], 0x1)

[  609.138281]  unevictable:0 dirty:320 writeback:0 unstable:0
[  609.138281]  slab_reclaimable:11036 slab_unreclaimable:105441
[  609.138281]  mapped:73868 shmem:88 pagetables:1061 bounce:0
[  609.138281]  free:1326439 free_pcp:483 free_cma:0
[  609.171964] Node 0 active_anon:293744kB inactive_anon:320kB active_file:15020kB inactive_file:50108kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295472kB dirty:1280kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 141312kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  609.200208] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  609.226377] lowmem_reserve[]: 0 2830 6335 6335
[  609.231035] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:76kB free_cma:0kB
[  609.258775] lowmem_reserve[]: 0 0 3505 3505
[  609.263170] Node 0 Normal free:2387240kB min:37300kB low:46624kB high:55948kB active_anon:295808kB inactive_anon:320kB active_file:15020kB inactive_file:50108kB unevictable:0kB writepending:1280kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5536kB pagetables:4096kB bounce:0kB free_pcp:1224kB local_pcp:680kB free_cma:0kB
[  609.293152] lowmem_reserve[]: 0 0 0 0
[  609.296998] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  609.310676] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  609.326490] Node 0 Normal: 2192*4kB (UME) 3197*8kB (UM) 2894*16kB (UME) 3038*32kB (UME) 1466*64kB (UM) 297*128kB (UM) 192*256kB (UME) 105*512kB (UME) 68*1024kB (UM) 54*2048kB (UM) 438*4096kB (UM) = 2386888kB
[  609.345216] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  609.353822] 16369 total pagecache pages
[  609.357811] 0 pages in swap cache
[  609.361286] Swap cache stats: add 0, delete 0, find 0/0
[  609.366663] Free swap  = 0kB
[  609.369698] Total swap = 0kB
[  609.372722] 1965969 pages RAM
[  609.375834] 0 pages HighMem/MovableOnly
[  609.379814] 339347 pages reserved
[  609.399570] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  609.411478] syz-executor4 cpuset=syz4 mems_allowed=0
[  609.416719] CPU: 1 PID: 31190 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  609.424007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  609.433365] Call Trace:
[  609.435963]  dump_stack+0x1b9/0x294
[  609.439599]  ? dump_stack_print_info.cold.2+0x52/0x52
[  609.444792]  warn_alloc.cold.118+0xb2/0x1b8
[  609.449106]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  609.453964]  __vmalloc_node_range+0x45e/0x750
[  609.458448]  ? graph_lock+0x170/0x170
[  609.462238]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  609.467068]  __vmalloc_node_flags_caller+0x75/0x90
[  609.471992]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  609.476830]  kvmalloc_node+0xde/0x100
[  609.480628]  kvm_arch_create_memslot+0xa3/0x4e0
[  609.485295]  __kvm_set_memory_region+0x1d1b/0x2e50
[  609.490225]  ? kvm_vcpu_block+0x1050/0x1050
[  609.494539]  ? zap_class+0x720/0x720
[  609.498253]  ? graph_lock+0x170/0x170
[  609.502056]  ? find_held_lock+0x36/0x1c0
[  609.506114]  ? lock_downgrade+0x8e0/0x8e0
[  609.510281]  kvm_set_memory_region+0x2e/0x50
[  609.514687]  kvm_vm_ioctl+0x668/0x1d90
[  609.518562]  ? __lock_acquire+0x7f5/0x5140
[  609.522790]  ? kvm_set_memory_region+0x50/0x50
[  609.527367]  ? debug_check_no_locks_freed+0x310/0x310
[  609.532543]  ? perf_trace_lock+0xd6/0x900
[  609.536681]  ? zap_class+0x720/0x720
[  609.540382]  ? print_usage_bug+0xc0/0xc0
[  609.544434]  ? graph_lock+0x170/0x170
[  609.548322]  ? find_held_lock+0x36/0x1c0
[  609.552379]  ? lock_downgrade+0x8e0/0x8e0
[  609.556522]  ? rcu_is_watching+0x85/0x140
[  609.560659]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  609.565848]  ? __fget+0x40c/0x650
[  609.569293]  ? do_raw_spin_unlock+0x1/0x2e0
[  609.573617]  ? expand_files.part.8+0x9a0/0x9a0
[  609.578195]  ? kasan_check_write+0x14/0x20
[  609.582415]  ? do_raw_spin_lock+0xc1/0x200
[  609.586643]  ? _raw_spin_unlock+0x22/0x30
[  609.590787]  ? kvm_set_memory_region+0x50/0x50
[  609.595445]  do_vfs_ioctl+0x1cf/0x16a0
[  609.599332]  ? ioctl_preallocate+0x2e0/0x2e0
[  609.603729]  ? fget_raw+0x20/0x20
[  609.607175]  ? lock_downgrade+0x8e0/0x8e0
[  609.611316]  ? finish_task_switch+0x182/0x810
[  609.615807]  ? security_file_ioctl+0x94/0xc0
[  609.620207]  ksys_ioctl+0xa9/0xd0
[  609.623655]  __x64_sys_ioctl+0x73/0xb0
[  609.627531]  do_syscall_64+0x1b1/0x800
[  609.631403]  ? finish_task_switch+0x1ca/0x810
[  609.635886]  ? syscall_return_slowpath+0x5c0/0x5c0
[  609.640804]  ? syscall_return_slowpath+0x30f/0x5c0
[  609.645724]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  609.651078]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  609.655911]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  609.661092] RIP: 0033:0x455979
[  609.664265] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  609.671960] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  609.679213] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  609.686470] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  609.693724] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
2018/05/02 02:15:00 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000008f040000d0"], 0x1)

2018/05/02 02:15:00 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f00000000c0))
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000180)={0x0, 0x1, 0x9, 0x8000, 0x3, 0x99e6, 0x1, 0x9, {<r4=>0x0, @in6={{0xa, 0x4e21, 0x0, @remote={0xfe, 0x80, [], 0xbb}, 0x1000}}, 0x3, 0x5, 0xfffffffffffff7f3, 0x6, 0x5}}, &(0x7f0000000240)=0xb0)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000280)={r4, 0x65f}, &(0x7f00000002c0)=0x8)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
getsockopt$inet_dccp_int(r1, 0x21, 0x15, &(0x7f0000000100), &(0x7f0000000140)=0x4)
dup3(r2, r0, 0x0)

2018/05/02 02:15:00 executing program 2:
r0 = dup(0xffffffffffffff9c)
ioctl$KVM_SET_FPU(r0, 0x41a0ae8d, &(0x7f0000000000)={[], 0x81, 0x20, 0x7, 0x0, 0xc7b, 0x10000, 0x1, [], 0x100000000})
r1 = fcntl$getown(r0, 0x9)
ptrace$setregset(0x4205, r1, 0x203, &(0x7f0000000200)={&(0x7f00000001c0)="51e08c39b6cb781c97bfbdc8b307e8d0f07702dcee7692a633c1f83a1ffc170c20ba94d59f653d419c741e9615e2709b", 0x30})
ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f0000000240)=""/220)
ptrace$setregset(0x4205, r1, 0x203, &(0x7f0000000400)={&(0x7f0000000340)="566ec0eab687935804ef8d159d39bc6a4e7af88bcdbab03e4ed1cc5bf9c2ca6a484bd1c577cb21e1b44dc53c66d28160af3dd6f5d08a5d50679a18dd0f2fa341a3a547b519d4f1dac469955af6f5f0c3cf6a72718c334ebdb518a03a711fb1d17d4964a1624121319ebf416d32fdcbae2b7ab18a921b788a793b426cd775cfaa4311efcd1f0c9a9096ab6ff312c1a322bccd385bf4f46c987ca19d63db16835b1c74399df4efc02344", 0xa9})
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440)='/dev/snapshot\x00', 0x4000, 0x0)
epoll_wait(r2, &(0x7f0000000480)=[{}, {}, {}, {}, {}, {}], 0x6, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000500))
ioctl$KVM_SET_TSC_KHZ(r0, 0xaea2, 0x9)
setsockopt$inet_tcp_buf(r0, 0x6, 0x1a, &(0x7f0000000540)="d5b0dea1678fa882ffa8be946eeb4c58be06799e000dbf507650f51ad8af6097fec6370f7575de6ba702461fd26906f3dd5ee62f8a2d63dd054e78c39a493bcb04032876f77eef4e6535cb90e472da1bf0267a4f048fb15b3fa1c4", 0x5b)
ioctl$KVM_SET_XCRS(r0, 0x4188aea7, &(0x7f00000005c0)={0x6, 0x80, [{0x6}, {0x80000001, 0x0, 0x2}, {0x3}, {0x80000000, 0x0, 0x80000000}, {0x44800000000, 0x0, 0xa5}, {0x2000000000000, 0x0, 0x4}]})
fstat(r0, &(0x7f0000000640))
fchdir(r0)
ioctl$BLKDISCARD(r0, 0x1277, &(0x7f00000006c0)=0x6)
setsockopt$netrom_NETROM_IDLE(r2, 0x103, 0x7, &(0x7f0000000700)=0x2, 0x4)
ioctl$SG_GET_REQUEST_TABLE(r2, 0x2286, &(0x7f0000000740))
setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f00000008c0)=0x9, 0x4)
setsockopt$inet_sctp_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f0000000900)=0x5, 0x4)
ioprio_set$pid(0x3, r1, 0x4)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000940)='/dev/vcs\x00', 0x2, 0x0)
ioctl$KVM_SET_MP_STATE(r0, 0x4004ae99, &(0x7f0000000980)=0x3)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/zero\x00', 0x8000, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000a00)={'bcsh0\x00', {0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}})
ptrace(0x4218, r1)
r5 = syz_open_dev$dspn(&(0x7f0000000a40)='/dev/dsp#\x00', 0x1, 0x0)
ioctl$KVM_SET_PIT2(r4, 0x4070aea0, &(0x7f0000000a80)={[{0x4, 0x1f, 0x8, 0x1, 0x7, 0x7f, 0x81, 0x7a, 0x80000000, 0x4, 0x7, 0x6, 0x4}, {0x7, 0x80, 0x1fd62dc7, 0x200, 0x5, 0x3, 0x5, 0x4, 0x8a, 0x9, 0xfffffffffffff001, 0x1a0e, 0x1}, {0x5, 0x2, 0x7, 0x80000000, 0x101, 0x9, 0x200, 0x4, 0x8, 0x9, 0x1c, 0xf7e, 0x5}], 0x2})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000b00)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
gettid()
setsockopt$inet6_tcp_int(r5, 0x6, 0x0, &(0x7f0000000b40)=0x1, 0x4)

2018/05/02 02:15:00 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10)
shutdown(r0, 0x40000000000003)

2018/05/02 02:15:00 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000003f000000000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:15:00 executing program 5:
socket(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/mcfilter6\x00')
readv(r0, &(0x7f0000000540)=[{&(0x7f0000000480)=""/140, 0x8c}], 0x1)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000000)={0x0, 0x1}, 0xc)
setsockopt$inet6_int(r1, 0x29, 0xcb, &(0x7f0000000080), 0x4)

2018/05/02 02:15:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x6c00000000000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:15:00 executing program 7:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00006a4ff7)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe2(&(0x7f0000e3eff8)={0x0, <r2=>0x0}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
getsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x8)
r4 = dup3(r3, r2, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000080)={0x1, 0x0, [{0x20000000140, 0x0, 0x1}]})

[  609.700981] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:15:00 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000052040000d0"], 0x1)

[  609.747876] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  609.759732] syz-executor4 cpuset=syz4 mems_allowed=0
[  609.764912] CPU: 1 PID: 31197 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  609.772198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
2018/05/02 02:15:00 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000100000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:15:00 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000001a040000d0"], 0x1)

[  609.772205] Call Trace:
[  609.772228]  dump_stack+0x1b9/0x294
[  609.772249]  ? dump_stack_print_info.cold.2+0x52/0x52
[  609.772268]  ? graph_lock+0x170/0x170
2018/05/02 02:15:00 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000be040000d0"], 0x1)

[  609.772289]  warn_alloc.cold.118+0xb2/0x1b8
[  609.772306]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  609.772327]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  609.772352]  ? update_load_avg+0x2d9/0x2570
[  609.772365]  ? graph_lock+0x170/0x170
[  609.772386]  __vmalloc_node_range+0x45e/0x750
[  609.772403]  ? graph_lock+0x170/0x170
[  609.772421]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  609.772438]  __vmalloc_node_flags_caller+0x75/0x90
[  609.772452]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  609.772469]  kvmalloc_node+0xde/0x100
[  609.772485]  kvm_arch_create_memslot+0xa3/0x4e0
[  609.772510]  __kvm_set_memory_region+0x1d1b/0x2e50
[  609.772538]  ? kvm_vcpu_block+0x1050/0x1050
[  609.772551]  ? print_usage_bug+0xc0/0xc0
[  609.772569]  ? lock_downgrade+0x8e0/0x8e0
[  609.772586]  ? lock_downgrade+0x8e0/0x8e0
[  609.772607]  ? graph_lock+0x170/0x170
[  609.772622]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  609.772640]  ? __lock_acquire+0x7f5/0x5140
[  609.772656]  ? trace_hardirqs_on+0xd/0x10
[  609.772674]  ? find_held_lock+0x36/0x1c0
[  609.772699]  ? lock_downgrade+0x8e0/0x8e0
[  609.772740]  kvm_set_memory_region+0x2e/0x50
[  609.772758]  kvm_vm_ioctl+0x668/0x1d90
[  609.772778]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  609.772793]  ? __perf_event_task_sched_in+0x247/0xb80
[  609.772810]  ? kvm_set_memory_region+0x50/0x50
[  609.772830]  ? find_held_lock+0x36/0x1c0
[  609.772853]  ? lock_downgrade+0x8e0/0x8e0
[  609.772867]  ? finish_task_switch+0x182/0x810
[  609.772888]  ? kasan_check_read+0x11/0x20
[  609.772902]  ? graph_lock+0x170/0x170
[  609.772917]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  609.772934]  ? compat_start_thread+0x80/0x80
[  609.772950]  ? _raw_spin_unlock_irq+0x27/0x70
[  609.772967]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  609.772981]  ? trace_hardirqs_on+0xd/0x10
[  609.772997]  ? _raw_spin_unlock_irq+0x27/0x70
[  609.773013]  ? find_held_lock+0x36/0x1c0
[  609.773035]  ? lock_downgrade+0x8e0/0x8e0
[  609.773051]  ? kasan_check_read+0x11/0x20
[  609.773063]  ? rcu_is_watching+0x85/0x140
[  609.773077]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  609.773100]  ? __fget+0x40c/0x650
[  609.773123]  ? expand_files.part.8+0x9a0/0x9a0
[  609.773136]  ? lock_downgrade+0x8e0/0x8e0
[  609.773156]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  609.773169]  ? vma_set_page_prot+0x239/0x300
[  609.773186]  ? kvm_set_memory_region+0x50/0x50
[  609.773203]  do_vfs_ioctl+0x1cf/0x16a0
[  609.773222]  ? ioctl_preallocate+0x2e0/0x2e0
[  609.773237]  ? fget_raw+0x20/0x20
[  609.773261]  ? exit_to_usermode_loop+0x87/0x310
[  609.773281]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  609.773296]  ? security_file_ioctl+0x94/0xc0
[  609.773314]  ksys_ioctl+0xa9/0xd0
[  609.773333]  __x64_sys_ioctl+0x73/0xb0
[  609.773350]  do_syscall_64+0x1b1/0x800
[  609.773364]  ? finish_task_switch+0x1ca/0x810
[  609.773381]  ? syscall_return_slowpath+0x5c0/0x5c0
[  609.773397]  ? syscall_return_slowpath+0x30f/0x5c0
[  609.773415]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  609.773434]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  609.773454]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  609.773465] RIP: 0033:0x455979
[  609.773473] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  609.773487] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  609.773497] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  609.773505] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  609.773514] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  609.773523] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  609.834505] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  609.834514] syz-executor4 cpuset=syz4 mems_allowed=0
[  609.834547] CPU: 0 PID: 31214 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  609.834556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  609.834561] Call Trace:
[  609.834583]  dump_stack+0x1b9/0x294
[  609.834605]  ? dump_stack_print_info.cold.2+0x52/0x52
[  609.834630]  warn_alloc.cold.118+0xb2/0x1b8
[  609.834649]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  609.834693]  __vmalloc_node_range+0x45e/0x750
[  609.834711]  ? graph_lock+0x170/0x170
[  609.834730]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  609.834745]  __vmalloc_node_flags_caller+0x75/0x90
[  609.834758]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  609.834775]  kvmalloc_node+0xde/0x100
[  609.834790]  kvm_arch_create_memslot+0xa3/0x4e0
[  609.834816]  __kvm_set_memory_region+0x1d1b/0x2e50
[  609.834844]  ? kvm_vcpu_block+0x1050/0x1050
[  609.834860]  ? zap_class+0x720/0x720
[  609.834881]  ? graph_lock+0x170/0x170
[  609.834908]  ? find_held_lock+0x36/0x1c0
[  609.834929]  ? lock_downgrade+0x8e0/0x8e0
[  609.834969]  kvm_set_memory_region+0x2e/0x50
[  609.834985]  kvm_vm_ioctl+0x668/0x1d90
[  609.834999]  ? __lock_acquire+0x7f5/0x5140
[  609.835028]  ? kvm_set_memory_region+0x50/0x50
[  609.835050]  ? debug_check_no_locks_freed+0x310/0x310
[  609.835063]  ? perf_trace_lock+0xd6/0x900
[  609.835089]  ? zap_class+0x720/0x720
[  609.835105]  ? print_usage_bug+0xc0/0xc0
[  609.835125]  ? graph_lock+0x170/0x170
[  609.835154]  ? find_held_lock+0x36/0x1c0
[  609.835180]  ? lock_downgrade+0x8e0/0x8e0
[  609.835200]  ? rcu_is_watching+0x85/0x140
[  609.835217]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  609.835242]  ? __fget+0x40c/0x650
[  609.835261]  ? do_raw_spin_unlock+0x1/0x2e0
[  609.835280]  ? expand_files.part.8+0x9a0/0x9a0
[  609.835298]  ? kasan_check_write+0x14/0x20
[  609.835313]  ? do_raw_spin_lock+0xc1/0x200
[  609.835334]  ? _raw_spin_unlock+0x22/0x30
[  609.835354]  ? kvm_set_memory_region+0x50/0x50
[  609.835371]  do_vfs_ioctl+0x1cf/0x16a0
[  609.835394]  ? ioctl_preallocate+0x2e0/0x2e0
[  609.835412]  ? fget_raw+0x20/0x20
[  609.835435]  ? lock_downgrade+0x8e0/0x8e0
[  609.835449]  ? finish_task_switch+0x182/0x810
[  609.835473]  ? security_file_ioctl+0x94/0xc0
[  609.835492]  ksys_ioctl+0xa9/0xd0
[  609.835513]  __x64_sys_ioctl+0x73/0xb0
[  609.835530]  do_syscall_64+0x1b1/0x800
[  609.835545]  ? finish_task_switch+0x1ca/0x810
[  609.835562]  ? syscall_return_slowpath+0x5c0/0x5c0
[  609.835579]  ? syscall_return_slowpath+0x30f/0x5c0
[  609.835598]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  609.835619]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  609.835641]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  609.835652] RIP: 0033:0x455979
[  609.835660] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  609.835676] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  609.835686] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  609.835695] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  609.835704] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  609.835713] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:15:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x400100000000, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:15:01 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="0203000910000000176c62896c0000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:15:01 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000008e040000d0"], 0x1)

2018/05/02 02:15:01 executing program 5:
r0 = syz_open_dev$sndctrl(&(0x7f0000007fed)='/dev/snd/controlC#\x00', 0x2, 0x100)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0)
ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000080))
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0x40045542, &(0x7f00009d3ef4)={0x4})
syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x10004, 0x40800)

2018/05/02 02:15:01 executing program 7:
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f0000000080)={@broadcast, @multicast2}, &(0x7f00000000c0)=0x8)
r1 = socket(0x11, 0x4000000000080003, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$packet_int(r1, 0x107, 0x12, &(0x7f0000000000), 0x4)

2018/05/02 02:15:01 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000ffd000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x6})
readv(r1, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r2, r0, 0x0)

2018/05/02 02:15:01 executing program 1:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001200)='./cgroup\x00', 0x200002, 0x0)
openat$cgroup_ro(r0, &(0x7f0000000080)='cgroup.stat\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='cgroup.stat\x00', 0x2761, 0x0)
setsockopt$inet6_MRT6_ADD_MFC(r1, 0x29, 0xcc, &(0x7f0000000500)={{0xa, 0x4e21, 0x9e, @mcast1={0xff, 0x1, [], 0x1}, 0x93df}, {0xa, 0x4e22, 0x972, @loopback={0x0, 0x1}, 0x2}, 0x3, [0x8, 0x5, 0x5, 0x4, 0x1, 0xfffffffffffffffc, 0x3, 0x5]}, 0x5c)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000000240)=[&(0x7f0000000040)='\x00', &(0x7f0000000100)='nodevbdev\x00', &(0x7f0000000140)='cgroup.stat\x00', &(0x7f0000000180)="bc2d776c616e31626465762a63707573657400", &(0x7f00000001c0)='+$securityppp0#))\x00', &(0x7f0000000200)='wlan0mime_type-s+ppp0em1\x00'], &(0x7f0000000400)=[&(0x7f0000000280)='cgroup.stat\x00', &(0x7f00000002c0)="256d643573756d6367726f75709f5b6d696d655f747970655b6c6f7472757374656440736563757269747947504ce000", &(0x7f0000000300)='proc\x00', &(0x7f0000000340)='./cgroup\x00', &(0x7f0000000380)="f400", &(0x7f00000003c0)='cgroup.stat\x00'])
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000480)='/dev/vga_arbiter\x00', 0x400000, 0x0)
open(&(0x7f0000000440)='./file0\x00', 0x0, 0x83)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f00000004c0))

2018/05/02 02:15:01 executing program 2:
r0 = dup(0xffffffffffffff9c)
ioctl$KVM_SET_FPU(r0, 0x41a0ae8d, &(0x7f0000000000)={[], 0x81, 0x20, 0x7, 0x0, 0xc7b, 0x10000, 0x1, [], 0x100000000})
r1 = fcntl$getown(r0, 0x9)
ptrace$setregset(0x4205, r1, 0x203, &(0x7f0000000200)={&(0x7f00000001c0)="51e08c39b6cb781c97bfbdc8b307e8d0f07702dcee7692a633c1f83a1ffc170c20ba94d59f653d419c741e9615e2709b", 0x30})
ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f0000000240)=""/220)
ptrace$setregset(0x4205, r1, 0x203, &(0x7f0000000400)={&(0x7f0000000340)="566ec0eab687935804ef8d159d39bc6a4e7af88bcdbab03e4ed1cc5bf9c2ca6a484bd1c577cb21e1b44dc53c66d28160af3dd6f5d08a5d50679a18dd0f2fa341a3a547b519d4f1dac469955af6f5f0c3cf6a72718c334ebdb518a03a711fb1d17d4964a1624121319ebf416d32fdcbae2b7ab18a921b788a793b426cd775cfaa4311efcd1f0c9a9096ab6ff312c1a322bccd385bf4f46c987ca19d63db16835b1c74399df4efc02344", 0xa9})
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440)='/dev/snapshot\x00', 0x4000, 0x0)
epoll_wait(r2, &(0x7f0000000480)=[{}, {}, {}, {}, {}, {}], 0x6, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000500))
ioctl$KVM_SET_TSC_KHZ(r0, 0xaea2, 0x9)
setsockopt$inet_tcp_buf(r0, 0x6, 0x1a, &(0x7f0000000540)="d5b0dea1678fa882ffa8be946eeb4c58be06799e000dbf507650f51ad8af6097fec6370f7575de6ba702461fd26906f3dd5ee62f8a2d63dd054e78c39a493bcb04032876f77eef4e6535cb90e472da1bf0267a4f048fb15b3fa1c4", 0x5b)
ioctl$KVM_SET_XCRS(r0, 0x4188aea7, &(0x7f00000005c0)={0x6, 0x80, [{0x6}, {0x80000001, 0x0, 0x2}, {0x3}, {0x80000000, 0x0, 0x80000000}, {0x44800000000, 0x0, 0xa5}, {0x2000000000000, 0x0, 0x4}]})
fstat(r0, &(0x7f0000000640))
fchdir(r0)
ioctl$BLKDISCARD(r0, 0x1277, &(0x7f00000006c0)=0x6)
setsockopt$netrom_NETROM_IDLE(r2, 0x103, 0x7, &(0x7f0000000700)=0x2, 0x4)
ioctl$SG_GET_REQUEST_TABLE(r2, 0x2286, &(0x7f0000000740))
setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f00000008c0)=0x9, 0x4)
setsockopt$inet_sctp_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f0000000900)=0x5, 0x4)
ioprio_set$pid(0x3, r1, 0x4)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000940)='/dev/vcs\x00', 0x2, 0x0)
ioctl$KVM_SET_MP_STATE(r0, 0x4004ae99, &(0x7f0000000980)=0x3)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/zero\x00', 0x8000, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000a00)={'bcsh0\x00', {0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}})
ptrace(0x4218, r1)
r5 = syz_open_dev$dspn(&(0x7f0000000a40)='/dev/dsp#\x00', 0x1, 0x0)
ioctl$KVM_SET_PIT2(r4, 0x4070aea0, &(0x7f0000000a80)={[{0x4, 0x1f, 0x8, 0x1, 0x7, 0x7f, 0x81, 0x7a, 0x80000000, 0x4, 0x7, 0x6, 0x4}, {0x7, 0x80, 0x1fd62dc7, 0x200, 0x5, 0x3, 0x5, 0x4, 0x8a, 0x9, 0xfffffffffffff001, 0x1a0e, 0x1}, {0x5, 0x2, 0x7, 0x80000000, 0x101, 0x9, 0x200, 0x4, 0x8, 0x9, 0x1c, 0xf7e, 0x5}], 0x2})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000b00)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
gettid()
setsockopt$inet6_tcp_int(r5, 0x6, 0x0, &(0x7f0000000b40)=0x1, 0x4)

2018/05/02 02:15:01 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000012040000d0"], 0x1)

[  610.794129] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  610.806100] syz-executor4 cpuset=syz4 mems_allowed=0
[  610.811289] CPU: 1 PID: 31255 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  610.818566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  610.827922] Call Trace:
[  610.830526]  dump_stack+0x1b9/0x294
[  610.834170]  ? dump_stack_print_info.cold.2+0x52/0x52
[  610.839381]  ? kasan_check_read+0x11/0x20
2018/05/02 02:15:01 executing program 2:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000e2aff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
flock(r1, 0x2)
flock(r0, 0x2)
r2 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000011c0)={{{@in=@multicast1=0xe0000001, @in=@dev={0xac, 0x14, 0x14}, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in=@multicast2=0xe0000002, 0x0, 0xff}, 0x0, @in6=@mcast1={0xff, 0x1, [], 0x1}, 0x0, 0x0, 0x0, 0x4}}, 0xe8)
syz_emit_ethernet(0x4a, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x3c, 0x0, @local={0xfe, 0x80, [], 0xaa}, @local={0xfe, 0x80, [], 0xaa}, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, &(0x7f00000002c0))
r3 = gettid()
readv(r0, &(0x7f0000616fa0)=[{&(0x7f0000e4bfb4)=""/57, 0x39}], 0x1)
ioctl$VT_WAITACTIVE(r0, 0x5607)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000a44000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$int_in(r4, 0x5452, &(0x7f0000008ff8)=0x7)
fcntl$setsig(r4, 0xa, 0x12)
fcntl$setownex(r4, 0xf, &(0x7f00002cb000)={0x0, r3})
recvmsg(r5, &(0x7f000070bfc8)={&(0x7f00001d6ff8)=@sco, 0x5, &(0x7f0000000040), 0xc4, &(0x7f0000b30000), 0x137}, 0x0)
dup2(r0, r5)
tkill(r3, 0x16)

[  610.843544]  warn_alloc.cold.118+0xb2/0x1b8
[  610.847880]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  610.852743]  ? kasan_check_write+0x14/0x20
[  610.857002]  ? lock_repin_lock+0x410/0x410
[  610.862056]  __vmalloc_node_range+0x45e/0x750
[  610.866569]  ? graph_lock+0x170/0x170
[  610.870395]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  610.875249]  __vmalloc_node_flags_caller+0x75/0x90
[  610.880182]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  610.885032]  kvmalloc_node+0xde/0x100
[  610.888830]  kvm_arch_create_memslot+0xa3/0x4e0
[  610.893524]  __kvm_set_memory_region+0x1d1b/0x2e50
[  610.898464]  ? kvm_vcpu_block+0x1050/0x1050
[  610.902799]  ? check_same_owner+0x320/0x320
[  610.907111]  ? do_raw_spin_unlock+0x9e/0x2e0
[  610.911514]  ? rcu_note_context_switch+0x710/0x710
[  610.916430]  ? lock_acquire+0x1dc/0x520
[  610.920392]  ? graph_lock+0x170/0x170
[  610.924177]  ? __might_sleep+0x95/0x190
[  610.928147]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  610.933680]  ? futex_wait_queue_me+0x550/0x820
[  610.938255]  ? refill_pi_state_cache.part.7+0x300/0x300
[  610.943612]  ? find_held_lock+0x36/0x1c0
[  610.947672]  ? lock_downgrade+0x8e0/0x8e0
[  610.951834]  kvm_set_memory_region+0x2e/0x50
[  610.956241]  kvm_vm_ioctl+0x668/0x1d90
[  610.960119]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  610.965297]  ? futex_wake+0x2f6/0x750
[  610.969090]  ? kvm_set_memory_region+0x50/0x50
[  610.973665]  ? get_futex_key+0x1e90/0x1e90
[  610.977902]  ? kasan_check_write+0x14/0x20
[  610.982124]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  610.993727]  ? do_futex+0x249/0x27d0
[  610.997427]  ? kasan_check_write+0x14/0x20
[  611.001654]  ? graph_lock+0x170/0x170
[  611.005451]  ? exit_robust_list+0x290/0x290
[  611.009763]  ? find_held_lock+0x36/0x1c0
[  611.013820]  ? lock_downgrade+0x8e0/0x8e0
[  611.017959]  ? kasan_check_read+0x11/0x20
[  611.022093]  ? rcu_is_watching+0x85/0x140
[  611.026229]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  611.031421]  ? __fget+0x40c/0x650
[  611.034871]  ? expand_files.part.8+0x9a0/0x9a0
[  611.039438]  ? lock_downgrade+0x8e0/0x8e0
[  611.043585]  ? __split_vma+0x5ac/0x7f0
[  611.047467]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  611.052993]  ? vma_set_page_prot+0x239/0x300
[  611.057397]  ? kvm_set_memory_region+0x50/0x50
[  611.061969]  do_vfs_ioctl+0x1cf/0x16a0
[  611.065852]  ? ioctl_preallocate+0x2e0/0x2e0
[  611.070248]  ? fget_raw+0x20/0x20
[  611.073697]  ? __x64_sys_futex+0x477/0x680
[  611.077925]  ? do_futex+0x27d0/0x27d0
[  611.081719]  ? security_file_ioctl+0x94/0xc0
[  611.086117]  ksys_ioctl+0xa9/0xd0
[  611.089564]  __x64_sys_ioctl+0x73/0xb0
[  611.093441]  do_syscall_64+0x1b1/0x800
[  611.097324]  ? syscall_return_slowpath+0x5c0/0x5c0
[  611.102243]  ? syscall_return_slowpath+0x30f/0x5c0
[  611.107165]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  611.112521]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  611.117369]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  611.122542] RIP: 0033:0x455979
[  611.125715] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  611.133414] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  611.140683] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  611.147934] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  611.155191] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  611.162445] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  611.169805] warn_alloc_show_mem: 3 callbacks suppressed
[  611.169808] Mem-Info:
[  611.177682] active_anon:76040 inactive_anon:80 isolated_anon:0
[  611.177682]  active_file:3755 inactive_file:12548 isolated_file:0
[  611.177682]  unevictable:0 dirty:342 writeback:0 unstable:0
2018/05/02 02:15:02 executing program 5:
r0 = memfd_create(&(0x7f0000000000)="17", 0x0)
write$binfmt_elf32(r0, &(0x7f00000016c0)=ANY=[], 0xfffffffffffffeff)
epoll_create1(0x80000)
execveat(r0, &(0x7f0000ff7000)='./file0\x00', &(0x7f0000000580), &(0x7f000034bff8)=[&(0x7f0000ff7000)="00000000000000060804002000fffc0c6565643b799365005f1b76"], 0x1000)

2018/05/02 02:15:02 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000049040000d0"], 0x1)

[  611.177682]  slab_reclaimable:11038 slab_unreclaimable:105525
[  611.177682]  mapped:73886 shmem:88 pagetables:1120 bounce:0
[  611.177682]  free:1323642 free_pcp:412 free_cma:0
[  611.211777] Node 0 active_anon:304260kB inactive_anon:320kB active_file:15020kB inactive_file:50192kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295544kB dirty:1368kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 133120kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:15:02 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f00000000c0)={0x20000, 0x0, [0xfffffffffffffffb, 0x40000000000000, 0xb6c1, 0x8, 0x4, 0x2, 0x5, 0x7]})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r2, r0, 0x0)

[  611.240051] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  611.266261] lowmem_reserve[]: 0 2830 6335 6335
[  611.270925] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:76kB free_cma:0kB
[  611.298613] lowmem_reserve[]: 0 0 3505 3505
[  611.303041] Node 0 Normal free:2377928kB min:37300kB low:46624kB high:55948kB active_anon:304296kB inactive_anon:320kB active_file:15020kB inactive_file:50192kB unevictable:0kB writepending:1368kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5792kB pagetables:4480kB bounce:0kB free_pcp:676kB local_pcp:272kB free_cma:0kB
[  611.333010] lowmem_reserve[]: 0 0 0 0
2018/05/02 02:15:02 executing program 5:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000005ff7)='/dev/ion\x00', 0x0, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f0000000200)='/dev/vcs#\x00', 0x92e, 0x410000)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000009fe8)={0xfffb, 0x9, 0x0, <r2=>0xffffffffffffffff})
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000040)={0x1, 0x28, &(0x7f0000000000)={0x0, <r3=>0x0}}, 0x10)
r4 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r3, 0x85, 0x8}, 0xc)
mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x6012, r2, 0x0)
r5 = dup3(r0, r4, 0x80000)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r5, 0x4058534c, &(0x7f00000000c0)={0x6, 0x200, 0x5, 0x5, 0x3ff, 0x3})
clone(0x0, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180), &(0x7f0000001740))
tee(r1, r5, 0x5, 0x9)
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f00000001c0)={'veth1_to_bond\x00', 0x1d00})

[  611.336909] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  611.350679] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  611.366779] Node 0 Normal: 2033*4kB (UM) 2884*8kB (M) 2974*16kB (UM) 3035*32kB (UME) 1468*64kB (UM) 297*128kB (UM) 193*256kB (UME) 105*512kB (UME) 68*1024kB (UM) 51*2048kB (UM) 438*4096kB (UM) = 2379172kB
[  611.385287] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  611.393958] 16390 total pagecache pages
[  611.398006] 0 pages in swap cache
[  611.401540] Swap cache stats: add 0, delete 0, find 0/0
[  611.406954] Free swap  = 0kB
[  611.410038] Total swap = 0kB
[  611.413107] 1965969 pages RAM
[  611.416237] 0 pages HighMem/MovableOnly
[  611.420253] 339347 pages reserved
[  611.447484] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  611.459375] syz-executor4 cpuset=syz4 mems_allowed=0
[  611.464591] CPU: 0 PID: 31287 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  611.471870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  611.481228] Call Trace:
[  611.483829]  dump_stack+0x1b9/0x294
[  611.487471]  ? dump_stack_print_info.cold.2+0x52/0x52
[  611.492675]  ? perf_trace_lock_acquire+0xe3/0x980
[  611.497537]  warn_alloc.cold.118+0xb2/0x1b8
[  611.501873]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  611.503667] x86/PAT: syz-executor5:31292 map pfn RAM range req write-combining for [mem 0x1af2b0000-0x1af2b3fff], got write-back
[  611.506768]  __vmalloc_node_range+0x45e/0x750
[  611.506788]  ? graph_lock+0x170/0x170
[  611.506808]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  611.506826]  __vmalloc_node_flags_caller+0x75/0x90
[  611.506845]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  611.506863]  kvmalloc_node+0xde/0x100
[  611.506878]  kvm_arch_create_memslot+0xa3/0x4e0
[  611.550149]  __kvm_set_memory_region+0x1d1b/0x2e50
[  611.555099]  ? kvm_vcpu_block+0x1050/0x1050
[  611.559435]  ? perf_trace_lock+0x900/0x900
[  611.562850] x86/PAT: syz-executor5:31292 map pfn RAM range req write-combining for [mem 0x165b00000-0x165b03fff], got write-back
[  611.563674]  ? graph_lock+0x170/0x170
[  611.563706]  ? find_held_lock+0x36/0x1c0
[  611.563732]  ? lock_downgrade+0x8e0/0x8e0
[  611.563776]  kvm_set_memory_region+0x2e/0x50
[  611.591838]  kvm_vm_ioctl+0x668/0x1d90
[  611.595733]  ? __lock_acquire+0x7f5/0x5140
[  611.599982]  ? kvm_set_memory_region+0x50/0x50
[  611.604577]  ? debug_check_no_locks_freed+0x310/0x310
[  611.609784]  ? perf_trace_lock_acquire+0xe3/0x980
[  611.614636]  ? perf_trace_lock+0x900/0x900
[  611.618878]  ? graph_lock+0x170/0x170
[  611.622683]  ? perf_trace_lock_acquire+0xe3/0x980
[  611.627547]  ? find_held_lock+0x36/0x1c0
[  611.631625]  ? lock_downgrade+0x8e0/0x8e0
[  611.635784]  ? kasan_check_read+0x11/0x20
[  611.639946]  ? rcu_is_watching+0x85/0x140
[  611.644105]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  611.649299]  ? __fget+0x40c/0x650
[  611.652745]  ? do_raw_spin_unlock+0x1/0x2e0
[  611.657063]  ? expand_files.part.8+0x9a0/0x9a0
[  611.661635]  ? kasan_check_write+0x14/0x20
[  611.665862]  ? do_raw_spin_lock+0xc1/0x200
[  611.670090]  ? _raw_spin_unlock+0x22/0x30
[  611.674238]  ? kvm_set_memory_region+0x50/0x50
[  611.678832]  do_vfs_ioctl+0x1cf/0x16a0
[  611.682734]  ? ioctl_preallocate+0x2e0/0x2e0
[  611.687160]  ? fget_raw+0x20/0x20
[  611.690624]  ? lock_downgrade+0x8e0/0x8e0
[  611.694771]  ? finish_task_switch+0x182/0x810
[  611.699262]  ? security_file_ioctl+0x94/0xc0
[  611.703674]  ksys_ioctl+0xa9/0xd0
[  611.707126]  __x64_sys_ioctl+0x73/0xb0
[  611.711015]  do_syscall_64+0x1b1/0x800
[  611.714907]  ? finish_task_switch+0x1ca/0x810
[  611.719405]  ? syscall_return_slowpath+0x5c0/0x5c0
[  611.724325]  ? syscall_return_slowpath+0x30f/0x5c0
[  611.729244]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  611.734599]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  611.739461]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  611.744638] RIP: 0033:0x455979
[  611.747813] RSP: 002b:00007ffb43cedc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  611.755510] RAX: ffffffffffffffda RBX: 00007ffb43cee6d4 RCX: 0000000000455979
[  611.762776] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  611.770044] RBP: 000000000072c000 R08: 0000000000000000 R09: 0000000000000000
[  611.777298] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  611.784551] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000002
2018/05/02 02:15:03 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000008b040000d0"], 0x1)

2018/05/02 02:15:03 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000400300000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:15:03 executing program 1:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001200)='./cgroup\x00', 0x200002, 0x0)
openat$cgroup_ro(r0, &(0x7f0000000080)='cgroup.stat\x00', 0x0, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='cgroup.stat\x00', 0x2761, 0x0)
setsockopt$inet6_MRT6_ADD_MFC(r1, 0x29, 0xcc, &(0x7f0000000500)={{0xa, 0x4e21, 0x9e, @mcast1={0xff, 0x1, [], 0x1}, 0x93df}, {0xa, 0x4e22, 0x972, @loopback={0x0, 0x1}, 0x2}, 0x3, [0x8, 0x5, 0x5, 0x4, 0x1, 0xfffffffffffffffc, 0x3, 0x5]}, 0x5c)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000000240)=[&(0x7f0000000040)='\x00', &(0x7f0000000100)='nodevbdev\x00', &(0x7f0000000140)='cgroup.stat\x00', &(0x7f0000000180)="bc2d776c616e31626465762a63707573657400", &(0x7f00000001c0)='+$securityppp0#))\x00', &(0x7f0000000200)='wlan0mime_type-s+ppp0em1\x00'], &(0x7f0000000400)=[&(0x7f0000000280)='cgroup.stat\x00', &(0x7f00000002c0)="256d643573756d6367726f75709f5b6d696d655f747970655b6c6f7472757374656440736563757269747947504ce000", &(0x7f0000000300)='proc\x00', &(0x7f0000000340)='./cgroup\x00', &(0x7f0000000380)="f400", &(0x7f00000003c0)='cgroup.stat\x00'])
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000480)='/dev/vga_arbiter\x00', 0x400000, 0x0)
open(&(0x7f0000000440)='./file0\x00', 0x0, 0x83)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f00000004c0))

2018/05/02 02:15:03 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede-generic)\x00'}, 0x58)
r1 = accept$alg(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="d3ff03a0e0ffffffffb1602dff05000bfef9ffd2a4b2007992b955b7477e5e0bd8ae29950798013f46019d58f1216af98367964e0c94b6acf44b60448d2fbdf5d1b3a1b4866ac39c16bdc297d3475dcf06c949cc5f6183306113cd597ac62f0602e16b8c17", 0xfffffffffffffee8)
sendmmsg$alg(r1, &(0x7f0000002c80)=[{0x0, 0x0, &(0x7f00000024c0), 0x0, &(0x7f0000000200)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)
sendmmsg$unix(r1, &(0x7f0000000600)=[{&(0x7f0000000040)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000140)=[{&(0x7f0000000240)="52b7539a7572cde7694fb9d8e6ab4ad6136d7eae88902c42991f984ecf4fa2ebaf28059f08080cc3", 0x28}], 0x1}], 0x1, 0x0)
recvmsg(r1, &(0x7f0000000d40)={&(0x7f0000000a40)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @local}}}, 0x80, &(0x7f0000000c40)=[{&(0x7f0000000000)=""/23, 0x17}, {&(0x7f00000009c0)=""/18, 0x12}], 0x2, &(0x7f0000000cc0)=""/97, 0x61}, 0x0)

2018/05/02 02:15:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x1cb50200, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:15:03 executing program 7:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000080)="f2ab260f21b90f221666b8002000000f23d00f21f86635200000070f23f8ae65dd92c5000f01c8bad10466b88d00000066eff364f266670f01bc36000000002e673e670f32", 0x45}], 0x1, 0x4a, &(0x7f00000000c0), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000000000)={0xfffffffffffffe01, 0x800})

2018/05/02 02:15:03 executing program 2:
r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0)
read(r0, &(0x7f0000fb6000)=""/28, 0x1c)
arch_prctl(0x1004, &(0x7f0000000200)="624d8985fb80a653cfd715568761a60a6c13230cee5013208ed3403b7ad70113586c4279071677615531b5856368227c36067b038759a350b85b192d8c0f9157e582aa6bd16d0e8c616ed88d6a43ad869cfa6e0faa97bc0a8fdbede8f06415482b3164aba45985e426c66fd1be524b1c3228d20e6b7729c3d91cafed236b457716cc734fb16783a7b420b74b963d136d6fcda5e4d3adeb223007fdb8e6a3a4ed1d672300105d07ba39d5b9ece82ffc6e73f60bda5c438a5c201b61dd6eda8c4a65ee23ae61d22566b38e9dec7b2b956af731f40407571cad9835ae7a1869cc652e27295328c35baf8e9b13adbba3a0445bd13e47afb24504ec6f23d4c5c1948df6a754b46682e9d4376b3efebfe4b317066b09dd6b04409ec714ca8e05836fb5a02eb865a99f5072e578a592818ca95fbae7dbf6e809d289d8d5d4ff5f823e8131f3980332166c0923421de5090aefe037abeabc26d8e3269a3e573927b65f4a58b2cee6746a8e928493464f742550da885f1aa8b8ffbbda3ac4fa4dc6d7ab4c49bced9268806480d8de32c7018b0262ebb50dfceb63ad0159c83bf56a6b7dce3aba1c840e01ac7a45a2a5e5a5f385eed14d08f88260cfcdf285980e5779c1674dc8543f0278d97baa826b8f0961df2dd253abaf02d26bb5ac9bffd993ed1c6f2b75a20da952e84c3a302f51886f1dce1a7f697443e88764e3985002a8e4da162b3db52d8363b8c75171ddd284f1d0201a47875118f1c178c3b0c4356f82fdae6485d7a148d5691d0b75f7b3f675a1c1c5006267e49fd4c129b3849b371a4902863ab231feb161a11d0909189d0b98f9eb4373fe1be60ddb44a6ac811a7430512ec130e63ccc2cb2fdaf95df9acec1cb5d7bbebd36878a1c66c4cfc1277538a947cad821bf2f60100cf0495eb6e854e253c4c074eb0cd11cdcf10bbed793e3e7e49520df6afaf00f6f3156a63918f11ac9a9cac71bcb0c3c56338a9549bb3bb02035f8ad520744f59461565661a396f39020d7bfb62c3bb2975a6f8ffb4fd9f6f945a25d17857a1fd563e69516a75a8c3dd15976bb9575195337e916f52c5c3a353d807ad14aa3c03a9c843832a5524e0c371711700dc0d9e3b24e4cac103c350e3df5e8233d577406619c3f6104edf4e05889dff865830152b9ef101dc3dad0e8ee548a2a404e625d3c61403ed85fa5d3c58161e444b54d1141deceda31988ea03ff7da8004bb444783a56b65cd8b37bc389e9cea7c6bf3c7c83e9a63098462fa16e1685c87fa70950b57504dd0d5f39123c0c12b92b938e5e0efa8e0f46986d5ecc8f38a5815f45ffad714c9c6731b92cf5146b74d208a4ec76a7d5d98624acc978f3e31aa5d90cf9d83ffba9a96c3103adeb1ac0de17fba8fae1c2e0defe0b07db23f401aac1391c922701bfdb1c4ac07428ec1c586d3e71059510194769446595567776810babcf81d8e097a1b2e873e3502daa0189545d3aadcb2f30ca01661761a8a49886a5b4f4157ad8c3d0e89baedf8bb8ef2030f063a2f2c7d73196982663331e1b1bd31820b787f3a91f45052639772b1a431fbad3e092419ee8ae289f304c49d0c07beef1462c0aa52b3d6279010cb427d7ff50bb815ee637befbc94d9e771539a7769bf7c351004cb4a635d7dc507314923241aa78e6b96d35c2e4355bf728c33d742eff98cb479ed55c949eae3d998345a9b0b7bf189f917a1dcc3b58e13e3001e3ae3a7054c1e64bfc68b54c5c6bcc7c3559e5eaa74f344de8ee95c9ee00d1ded6f04ed640583ef43a570f29e4c113689059d87f904fee4965acde6ac88b1d4f6053db79269f2ae3f3d1121713283a467ee468d664a452b3c6480eb870a1e96acf69c2a0c8048e69cc0ed202d46c5fc1fc5cade3ca7868237542c17057d35aec766f69c51d78609b0ebc3f821c9a7fa04f51a9801a4dc75c732d0cc35e11572dfcd80e570ae7667fbc2fa9b63118576f0b90d3bc073fde061f1cb10b44e23b684e0914b1919db585c484673d14cf555ec3159cf99f8ead5b339b7e7a8055594a65f865ae566ca3ca621b0a4390428da451821bdd4be4c088e95c1246be895dc7bdd4177e0be1431d4d97a60a00b7fd7c7e7797e0a0fd0815fd6a8f3b14cc02d5dceacefab7b49e7d5014faa87309a4603ce5eadce596f09c52f6d637cf661069683ddb250c077197765ac149efaa93c22bd70bb142bcb3d7bd7cc4f521c9014730471464801e0093b7742319895eb9e513ba5b9581970289619732d6147f3d98ee9e73bf939584b2e3f96bad8ca040995d8bf479de54d1b500a412b7089d961b6fd12a9a27bc00afd0567d3a6d5f9aab7b2785d9763ba177d5c381425ad9af0d13ffa65e94cb10b6a1bdfc3cb424126c68a1bc178978df5c2deae7aa5b2fdb3866f3dd14ed38ade25059c4e5a5aaa878f539e8f7eff55551f3015b569d6102f99342c837e7f1000deb625d2efad6514d287955765443a04ee68b261d2f4a5f7418663ae8e0fda1ae4bc536dfae295e45277753b5a424ea61618560e1d14647189f2c8eb614747c4d30e1a513d152bbba2a1fece3b4ad819f53b1b3b2882fac8770665750833908b04062b92150fe3536911621cba3c45be9724d3e012a5b2d90d55280abedc09b3cd060c1179737e7cdf2b70e13ff81eefa6fb264243899ffa0ed39052b190948c58612bb25ef42d404ffd8b79f3e7a7fc6e7df0efddc56ca6a153dc84dde04957d86b7d655bebaab9b59c1e370c70cfe85f9632e44101f0098dbd276c98fea13ee085d7cf434cad02a8a1083e762b495110f6d1d1306fcc8a5410390e3ef566501719cb79c7ee4d00e8a66fedf77b6072f1a9c6da201264e9f463d2af70419c964c35db84aec74992289a56fca778e48d549ca4fb7350763c43d8d15ba1247ef5c8c6bc901246eea98aaab09daaad4fd55995328639d2f2a698e419df8d507cacf2709bbb46a759c2aff0846f85d8b4f062acf9dddfd63c412215010e9704241ac0e6cf5b11acecb6a86c03f7642ee6cee33b6a8908db7914ffbcdec1a1b71195545310c43cedc5c1b87e8fa47e7dce0f6325b17ecfee08a045c143d47ad4f1e374b1af8885c963bee2470c359e4d09e0714b98dead4ec538a29cd8177064bcfd28f6510aae450a86e14c05c452e51af14921b148591dad64ffbb4aabba3635465778c978a72a1a833dcd6ed172f90ce3ad4f2ef02661de1e40e30b593aa887ca8dd06d921d61392b7410244a47fe375f75fbaf8137ab7acf01666ba5d031570a93f0ebfe551ed70690e268505af77a9e25dd7b2666237587deb62e2f1cbbae2d8b7f6822349fe6c42d2e3b7f23c8556a14a5d26dafeb9f9a49139f127f5ff399adb51af4bf75ba8eb898515b50e6aa3a3217f5ec6f751d75a97058643eabf2baddfe8ca89e33961cb6fe8b1a0c79d007d0708f384637b53cc81df497d80f09d2168fb8c68db34271b2a7ddfe10c09289084792c22e37a371140b51cb12a801d6e77d5c12512ccaa464137e18108e5362f94e3894944d401959729fb654e672735374d4103c865efd618a343e936133a4c44768a73d14d1bcd71a514cb1bc51e44f2bb589dcd01b93bb5e1a17c90990e660c0b5af930d6ac6e99b7dbd49e83c17e44dcaf3cde5ad23710aa4e2d01983670065c21c6d21a82b17c9f1a645c14891b8f1564314b4245e2e4da425aa7d2da0d7525988359888db2700deacc0c05fa29ff02a8034f97dc8359f10468b63ed473651b18e4436b1fe668af3f380cfdc7201efa708325e1ea71f590e02128e814c501084c67b90d92f00d0dd196a8925c3786c2bd5dfa0fa652d4c8d79708dff6b7f0f6c979dcaf46587b3b6750335da536fd7a3a36e1aee4bdd1702b6faf876e412520664edcb41ca6142d51fd02124a8b6091275825a0ff998e9161e3323f6d69804f3a3fe4527a3bfa55eaf128444a75673d0ed71a1d2b303e450f09aba9cc230e70a63d7a109be3094768b7c8506b9ddb1cb63f49e944c13ee5fcfa363da8538969524117b49acdebcb55e180560dbe0c9de6a4788a5e6f8859a63a052a5f5e1e6e17ca4f3d364423aa6decd3148ba7045e476ea6ec4fceb4c4a26aaf71fd49d4f71612bafc97f2ea144e078e26d8138214f07ac1b3c41e0cfda4eeafa6d02507d150e2ca8e5fc5e4d892bbdc0bb0dccb833b8656254075e3c4f01e1bff33a684ad9dbc17f3b4379cc5f0cd96427ac2099042c0d5758acfdd80f065cae6f0d6a65c312198c8f97bc357b4062ecb354e29efaa49784e8f8c8ed5ce298a029f518454159ad3897d7168c80ef2d3df50c6551cb815641b7d94b9ca36f6fa50d4defe936fe251512e6be55b062989b91843f8cf95c8fa1466dd2aeac861ad0e8000715465fb135b7eebeb2a5b4b615d62dfa0da6d2aa6f78ab3713fa48c04caa242248711c7e18457d004ad24c20f137f420966fbd4dc0878ec25c5170e75e18a97a25f478845535ad986909930ee60f042268423f47d9d23a8ad28315fafc4a6ee6fb3ebd295547540bd175200f328b25f3a6c02ac25007144a027333a8eb60935f26406851ee3d7b073ce80fc14061932b92ca0ed53f4770e38913ea70c6ac5dfdd1274862be55bf37f1cb8fd5392170fd116ef6703734aff1cb388ecfe33903646765753471b4e8c8a506c76bbe63a161441b21f9a79ec424a406f07c2ca8741cd2e9684b4ba73e8d0112a7a44af87d24928ca4191361f0fec00baa5b0f80a3d645f0e727d16ca7b0a8ce7ca73e799e0a198bc9bac02e4fd7d5d1d8d7adec6f32edb0a518d113385096c20dcd05f30198f336e3bd51cb4961503b6c07bdb467db2bfa475f577fb82238e7cef5ee17f55b4589e91719a1489bf838adf7e96b489ab88c53ba9086b0f640319c1b5bd72a38c4658546ce3b40d9a6351673b4286c0cd523651d95b4494ef1e14065f0a5d1d8449c2bd716eb29c851629307e115ffe29df4f6bd9ebe7512286a8bcdde47e47f4dd9d3649f00368e1140b689433c71ed13209a9e563492fd7af6f64e8bf005bb9820cad78878122517a6e8875ff9cceb3b20dca035ea179183b0df54a3d9c80e20fef6c0a4f8a5179c086e55135763e3e8a4a631a9ab1d2579016d970e636342d0ea886b0fc934950c8a661dd03391e44b733801519845dc57c4fe15cdb951c0fd6e07e7cfab5fd4f40531b3da52e2eacef25bf8d038899e11b2d4079841f3f4d5878ae8a5c45166cfbe019fddee1e0ba1a53a1ece0760fb40acefc3cd176555418b36c3333bbec3f188f1e8c580fa73a9e0e39d8b4b3b8bacf35608aba949037b937125a42476a5a061c89e7e9920f7cdbc21800cc38392d1e5717917e5386725dc3bd08fd84947953d6588174c2edfbd0a0228abf30c08043250e815692f17ad3de2eaa56a7f9570ae9ee1af1e4f2bfc0172b815047f4f0e276828e9f3245eb649f51be7a6cea0a46e21a60000d79a366960b515632f97e32cdea77684547451de15dd65589ce95e07d051d011c8caa7461ef91ff891d99bd3f625817195d6ff6d6ddf9f16bce9e348412abe42d523a966b9528e0e3961e69baa7cab58767477730b6f59c0364aaabc0ee3883b1739e4bcae5b544d74f9354c6640187cf838966b5ffb4d1ede35cc19849caf3d495306e6a308d76b8c5486ff55f6dcc618eda98c9e3469d4ad8bc618fa13bc128474fdc2f2c8a45c47ae8d6e57b6b674f56681b6d33b22545f7bcb7fdc5ae55f80f0f37996cb5640cf89783158c05f4184f2444251d064ebcdb33d1ba50511827605")
r1 = getpid()
sched_setaffinity(r1, 0x8, &(0x7f0000d4b000)=0x2)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "0a4ceaa05d9a00000000000000039b3fd4cec307e8ef3d13eb790ec9c65abaf90d229db692542e5b78f8b29e0a27800f0000000000000009fb42f376589701a4", 0xa9824f69d1376637, 0x10800a})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0xc08c5332, &(0x7f0000000180)={0x0, 0x0, 0x0, {}, 0x2})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000000)={0x800})
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x0, 0x0)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, &(0x7f0000000080), &(0x7f0000000100)=0xc)

2018/05/02 02:15:03 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r1 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x100000000000012c)
dup3(r1, r0, 0x0)

[  612.299469] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  612.311292] syz-executor4 cpuset=syz4 mems_allowed=0
[  612.316492] CPU: 0 PID: 31308 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  612.323768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  612.333125] Call Trace:
[  612.335731]  dump_stack+0x1b9/0x294
[  612.339391]  ? dump_stack_print_info.cold.2+0x52/0x52
[  612.344600]  ? kasan_check_read+0x11/0x20
[  612.348766]  warn_alloc.cold.118+0xb2/0x1b8
[  612.353119]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  612.357980]  ? trace_hardirqs_on+0xd/0x10
[  612.362141]  ? _raw_spin_unlock_irq+0x27/0x70
[  612.366649]  ? finish_task_switch+0x1ca/0x810
[  612.371162]  ? lock_repin_lock+0x410/0x410
[  612.375413]  __vmalloc_node_range+0x45e/0x750
[  612.379925]  ? graph_lock+0x170/0x170
[  612.383739]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  612.388596]  __vmalloc_node_flags_caller+0x75/0x90
[  612.393713]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  612.398568]  kvmalloc_node+0xde/0x100
[  612.402380]  kvm_arch_create_memslot+0xa3/0x4e0
[  612.407074]  __kvm_set_memory_region+0x1d1b/0x2e50
[  612.412032]  ? kvm_vcpu_block+0x1050/0x1050
[  612.416401]  ? check_same_owner+0x320/0x320
[  612.420734]  ? do_raw_spin_unlock+0x9e/0x2e0
[  612.425171]  ? rcu_note_context_switch+0x710/0x710
[  612.430122]  ? lock_acquire+0x1dc/0x520
[  612.434101]  ? graph_lock+0x170/0x170
[  612.437900]  ? __might_sleep+0x95/0x190
[  612.441903]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  612.447431]  ? futex_wait_queue_me+0x550/0x820
[  612.452021]  ? refill_pi_state_cache.part.7+0x300/0x300
[  612.457378]  ? find_held_lock+0x36/0x1c0
[  612.461429]  ? lock_downgrade+0x8e0/0x8e0
[  612.465581]  kvm_set_memory_region+0x2e/0x50
[  612.469979]  kvm_vm_ioctl+0x668/0x1d90
[  612.473856]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  612.478948]  ? futex_wake+0x2f6/0x750
[  612.482733]  ? kvm_set_memory_region+0x50/0x50
[  612.487298]  ? get_futex_key+0x1e90/0x1e90
[  612.491534]  ? kasan_check_write+0x14/0x20
[  612.495755]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  612.501020]  ? do_futex+0x249/0x27d0
[  612.504723]  ? kasan_check_write+0x14/0x20
[  612.508943]  ? graph_lock+0x170/0x170
[  612.512740]  ? exit_robust_list+0x290/0x290
[  612.517046]  ? find_held_lock+0x36/0x1c0
[  612.521095]  ? lock_downgrade+0x8e0/0x8e0
[  612.525235]  ? kasan_check_read+0x11/0x20
[  612.529366]  ? rcu_is_watching+0x85/0x140
[  612.533501]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  612.538679]  ? __fget+0x40c/0x650
[  612.542121]  ? expand_files.part.8+0x9a0/0x9a0
[  612.546686]  ? lock_downgrade+0x8e0/0x8e0
[  612.550817]  ? __split_vma+0x5ac/0x7f0
[  612.554689]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  612.560209]  ? vma_set_page_prot+0x239/0x300
[  612.564604]  ? kvm_set_memory_region+0x50/0x50
[  612.569172]  do_vfs_ioctl+0x1cf/0x16a0
[  612.573048]  ? ioctl_preallocate+0x2e0/0x2e0
[  612.577439]  ? fget_raw+0x20/0x20
[  612.580884]  ? __x64_sys_futex+0x477/0x680
[  612.585105]  ? do_futex+0x27d0/0x27d0
[  612.588892]  ? security_file_ioctl+0x94/0xc0
[  612.593288]  ksys_ioctl+0xa9/0xd0
[  612.596727]  __x64_sys_ioctl+0x73/0xb0
[  612.600601]  do_syscall_64+0x1b1/0x800
[  612.604470]  ? finish_task_switch+0x1ca/0x810
[  612.608950]  ? syscall_return_slowpath+0x5c0/0x5c0
[  612.613868]  ? syscall_return_slowpath+0x30f/0x5c0
[  612.618789]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  612.624140]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  612.628970]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  612.634141] RIP: 0033:0x455979
[  612.637832] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  612.645536] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  612.652786] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  612.660041] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  612.667295] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  612.674543] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  612.681975] warn_alloc_show_mem: 1 callbacks suppressed
[  612.681978] Mem-Info:
[  612.689822] active_anon:75516 inactive_anon:80 isolated_anon:0
[  612.689822]  active_file:3757 inactive_file:12560 isolated_file:0
[  612.689822]  unevictable:0 dirty:354 writeback:0 unstable:0
[  612.689822]  slab_reclaimable:11014 slab_unreclaimable:105668
[  612.689822]  mapped:73887 shmem:88 pagetables:1086 bounce:0
[  612.689822]  free:1324182 free_pcp:319 free_cma:0
[  612.723525] Node 0 active_anon:304276kB inactive_anon:324kB active_file:15028kB inactive_file:50252kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295624kB dirty:1428kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 133120kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
2018/05/02 02:15:03 executing program 5:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x100000141842, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='\x00', 0x4000, 0x110)
fallocate(r0, 0x1, 0x0, 0x4)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x400, 0x101)
creat(&(0x7f0000000280)='./bus\x00', 0x0)

2018/05/02 02:15:03 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-fixed-time)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00001ec000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000240)="db63fb00dd9cad6068f820d5a1bfc36271551a22849d9ab1b25cd4ff2936058d8c67d682041141017b18762214bdf90f5fed0166eab29e0000000000000000e332f05bcfd563bc015de12e7e18d18ab642efe6e70632affcaed0e6c7406a92783766e5691f882d0d795a4b6f7cab6c19", 0x70}], 0x1, &(0x7f0000000300)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
recvmsg(r1, &(0x7f0000b2dfc8)={&(0x7f00007ebffa)=@hci, 0x80, &(0x7f0000f75000)=[{&(0x7f0000000040)=""/175, 0xaf}], 0x1, &(0x7f0000ec7000)}, 0x0)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x2000, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r2, 0x84, 0x6b, &(0x7f00000003c0)=[@in={0x2, 0x4e24, @multicast1=0xe0000001}, @in6={0xa, 0x4e23, 0x6, @mcast2={0xff, 0x2, [], 0x1}, 0x100000000}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x12}}, @in6={0xa, 0x4e20, 0x1, @mcast2={0xff, 0x2, [], 0x1}}, @in6={0xa, 0x4e20, 0x8, @empty, 0x1}, @in6={0xa, 0x4e23, 0x5, @empty, 0x3}, @in6={0xa, 0x4e22, 0x7, @dev={0xfe, 0x80, [], 0xf}, 0x10001}], 0xac)

2018/05/02 02:15:03 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000029040000d0"], 0x1)

2018/05/02 02:15:03 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000009b040000d0"], 0x1)

2018/05/02 02:15:03 executing program 5:
r0 = syz_open_dev$tun(&(0x7f0000000400)='/dev/net/tun\x00', 0x0, 0xffffc00000000003)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={"d202b999cf85000000000088f301e710", 0x102})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'sit0\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00', 0x402})
r1 = syz_open_dev$tun(&(0x7f0000000280)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x64}]})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={"d202b999cf85000000000088f301e710", 0x102})

[  612.751779] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  612.778151] lowmem_reserve[]: 0 2830 6335 6335
2018/05/02 02:15:03 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000b9bff0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10)
sendto$inet(r0, &(0x7f0000000080), 0xfffffffffffffd90, 0x20020003, &(0x7f0000385ff0)={0x2, 0x20000000004e21, @loopback=0x7f000001}, 0x10)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x80, 0x0)
setsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f00000000c0)={0x101, 0x1, 0x3, 0x8}, 0x8)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x400100, 0x0)
ioctl$ASHMEM_SET_PROT_MASK(r2, 0x40087705, &(0x7f0000000040)={0x20, 0x3})
ioctl$EVIOCGLED(r2, 0x80404519, &(0x7f00000001c0)=""/4096)
recvfrom$inet(r0, &(0x7f0000000100)=""/149, 0xfde9, 0x0, 0x0, 0x2675)

[  612.782800] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:728kB local_pcp:656kB free_cma:0kB
[  612.810599] lowmem_reserve[]: 0 0 3505 3505
[  612.814976] Node 0 Normal free:2377208kB min:37300kB low:46624kB high:55948kB active_anon:304348kB inactive_anon:324kB active_file:15028kB inactive_file:50252kB unevictable:0kB writepending:1428kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5728kB pagetables:4572kB bounce:0kB free_pcp:760kB local_pcp:124kB free_cma:0kB
[  612.844936] lowmem_reserve[]: 0 0 0 0
[  612.848827] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  612.862530] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  612.878432] Node 0 Normal: 2052*4kB (UME) 2887*8kB (UME) 2849*16kB (UME) 2888*32kB (UME) 1466*64kB (UM) 306*128kB (UM) 194*256kB (UME) 105*512kB (UME) 68*1024kB (UM) 48*2048kB (UM) 438*4096kB (UM) = 2367704kB
[  612.897288] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  612.905886] 16407 total pagecache pages
[  612.909887] 0 pages in swap cache
[  612.913373] Swap cache stats: add 0, delete 0, find 0/0
[  612.918748] Free swap  = 0kB
[  612.921783] Total swap = 0kB
[  612.924820] 1965969 pages RAM
[  612.927944] 0 pages HighMem/MovableOnly
[  612.931935] 339347 pages reserved
2018/05/02 02:15:04 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000006b040000d0"], 0x1)

[  612.956907] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  612.968729] syz-executor4 cpuset=syz4 mems_allowed=0
[  612.973908] CPU: 0 PID: 31353 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  612.981353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  612.990708] Call Trace:
[  612.993306]  dump_stack+0x1b9/0x294
[  612.996946]  ? dump_stack_print_info.cold.2+0x52/0x52
[  613.002151]  ? kasan_check_read+0x11/0x20
2018/05/02 02:15:04 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000066040000d0"], 0x1)

[  613.006314]  warn_alloc.cold.118+0xb2/0x1b8
[  613.010643]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  613.015492]  ? trace_hardirqs_on+0xd/0x10
[  613.019646]  ? _raw_spin_unlock_irq+0x27/0x70
[  613.024151]  ? finish_task_switch+0x1ca/0x810
[  613.028661]  ? lock_repin_lock+0x410/0x410
[  613.032912]  __vmalloc_node_range+0x45e/0x750
[  613.037415]  ? graph_lock+0x170/0x170
[  613.041903]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  613.046753]  __vmalloc_node_flags_caller+0x75/0x90
[  613.051688]  ? kvm_arch_create_memslot+0xa3/0x4e0
2018/05/02 02:15:04 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000005040000d0"], 0x1)

[  613.056546]  kvmalloc_node+0xde/0x100
[  613.060353]  kvm_arch_create_memslot+0xa3/0x4e0
[  613.065041]  __kvm_set_memory_region+0x1d1b/0x2e50
[  613.069992]  ? kvm_vcpu_block+0x1050/0x1050
[  613.074319]  ? print_usage_bug+0xc0/0xc0
[  613.078397]  ? check_same_owner+0x320/0x320
[  613.082725]  ? do_raw_spin_unlock+0x9e/0x2e0
[  613.087147]  ? rcu_note_context_switch+0x710/0x710
[  613.092086]  ? lock_acquire+0x1dc/0x520
[  613.096072]  ? graph_lock+0x170/0x170
[  613.099885]  ? __might_sleep+0x95/0x190
[  613.103880]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  613.109438]  ? futex_wait_queue_me+0x550/0x820
[  613.114027]  ? __lock_acquire+0x7f5/0x5140
[  613.118271]  ? refill_pi_state_cache.part.7+0x300/0x300
[  613.123649]  ? find_held_lock+0x36/0x1c0
[  613.127730]  ? lock_downgrade+0x8e0/0x8e0
[  613.131914]  kvm_set_memory_region+0x2e/0x50
[  613.136333]  kvm_vm_ioctl+0x668/0x1d90
[  613.140229]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  613.145772]  ? __perf_event_task_sched_in+0x247/0xb80
[  613.150969]  ? kvm_set_memory_region+0x50/0x50
[  613.155563]  ? find_held_lock+0x36/0x1c0
[  613.159638]  ? lock_downgrade+0x8e0/0x8e0
[  613.163788]  ? finish_task_switch+0x182/0x810
[  613.168286]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  613.173473]  ? do_futex+0x249/0x27d0
[  613.177174]  ? kasan_check_read+0x11/0x20
[  613.181306]  ? graph_lock+0x170/0x170
[  613.185096]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  613.189665]  ? compat_start_thread+0x80/0x80
[  613.194062]  ? _raw_spin_unlock_irq+0x27/0x70
[  613.198541]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  613.203542]  ? exit_robust_list+0x290/0x290
[  613.207849]  ? find_held_lock+0x36/0x1c0
[  613.211901]  ? lock_downgrade+0x8e0/0x8e0
[  613.216038]  ? kasan_check_read+0x11/0x20
[  613.220176]  ? rcu_is_watching+0x85/0x140
[  613.224574]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  613.229753]  ? __fget+0x40c/0x650
[  613.233192]  ? do_raw_spin_unlock+0x1/0x2e0
[  613.237504]  ? expand_files.part.8+0x9a0/0x9a0
[  613.242069]  ? kasan_check_write+0x14/0x20
[  613.246286]  ? do_raw_spin_lock+0xc1/0x200
[  613.250510]  ? kvm_set_memory_region+0x50/0x50
[  613.255079]  do_vfs_ioctl+0x1cf/0x16a0
[  613.258953]  ? ioctl_preallocate+0x2e0/0x2e0
[  613.263343]  ? fget_raw+0x20/0x20
[  613.266788]  ? __x64_sys_futex+0x477/0x680
[  613.271010]  ? exit_to_usermode_loop+0x87/0x310
[  613.275668]  ? do_futex+0x27d0/0x27d0
[  613.279456]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  613.284980]  ? security_file_ioctl+0x94/0xc0
[  613.289375]  ksys_ioctl+0xa9/0xd0
[  613.292818]  __x64_sys_ioctl+0x73/0xb0
[  613.296690]  do_syscall_64+0x1b1/0x800
[  613.300568]  ? finish_task_switch+0x1ca/0x810
[  613.305051]  ? syscall_return_slowpath+0x5c0/0x5c0
[  613.309966]  ? syscall_return_slowpath+0x30f/0x5c0
[  613.314886]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  613.320235]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  613.325063]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  613.330235] RIP: 0033:0x455979
[  613.333408] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  613.341102] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  613.348353] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
2018/05/02 02:15:04 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="0203000910000000000000000000003f0200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:15:04 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000005a040000d0"], 0x1)

2018/05/02 02:15:04 executing program 3:
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
recvfrom$llc(r1, &(0x7f0000000100)=""/164, 0xa4, 0x102, &(0x7f00000001c0)={0x1a, 0x30c, 0x12, 0x5, 0x1, 0x7}, 0x10)
bind$llc(r1, &(0x7f0000000200)={0x1a, 0x32f, 0x6, 0x3ff, 0x1, 0x180000, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x10)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
setsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f00000000c0)=@int=0x1000, 0x4)
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r2, r0, 0x0)

[  613.355602] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  613.362854] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  613.370108] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
2018/05/02 02:15:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x7a, 0x1000, &(0x7f0000009000/0x1000)=nil})

[  613.497533] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  613.509633] syz-executor4 cpuset=syz4 mems_allowed=0
[  613.514896] CPU: 0 PID: 31387 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  613.522175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  613.531535] Call Trace:
[  613.534137]  dump_stack+0x1b9/0x294
[  613.537762]  ? dump_stack_print_info.cold.2+0x52/0x52
[  613.542946]  ? kasan_check_read+0x11/0x20
[  613.547083]  warn_alloc.cold.118+0xb2/0x1b8
[  613.551388]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  613.556219]  ? kasan_check_write+0x14/0x20
[  613.560443]  ? lock_repin_lock+0x410/0x410
[  613.564669]  __vmalloc_node_range+0x45e/0x750
[  613.569150]  ? graph_lock+0x170/0x170
[  613.572936]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  613.577773]  __vmalloc_node_flags_caller+0x75/0x90
[  613.582698]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  613.588416]  kvmalloc_node+0xde/0x100
[  613.592204]  kvm_arch_create_memslot+0xa3/0x4e0
[  613.596863]  __kvm_set_memory_region+0x1d1b/0x2e50
[  613.601806]  ? kvm_vcpu_block+0x1050/0x1050
[  613.606118]  ? check_same_owner+0x320/0x320
[  613.610421]  ? do_raw_spin_unlock+0x9e/0x2e0
[  613.614816]  ? rcu_note_context_switch+0x710/0x710
[  613.619734]  ? lock_acquire+0x1dc/0x520
[  613.623698]  ? graph_lock+0x170/0x170
[  613.627483]  ? __might_sleep+0x95/0x190
[  613.631446]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  613.636973]  ? futex_wait_queue_me+0x550/0x820
[  613.641546]  ? refill_pi_state_cache.part.7+0x300/0x300
[  613.646894]  ? find_held_lock+0x36/0x1c0
[  613.650944]  ? lock_downgrade+0x8e0/0x8e0
[  613.655093]  kvm_set_memory_region+0x2e/0x50
[  613.659500]  kvm_vm_ioctl+0x668/0x1d90
[  613.663376]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  613.668461]  ? futex_wake+0x2f6/0x750
[  613.672254]  ? kvm_set_memory_region+0x50/0x50
[  613.676821]  ? get_futex_key+0x1e90/0x1e90
[  613.681053]  ? kasan_check_write+0x14/0x20
[  613.685272]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  613.690447]  ? do_futex+0x249/0x27d0
[  613.694144]  ? kasan_check_write+0x14/0x20
[  613.698369]  ? graph_lock+0x170/0x170
[  613.702157]  ? exit_robust_list+0x290/0x290
[  613.706467]  ? find_held_lock+0x36/0x1c0
[  613.710516]  ? lock_downgrade+0x8e0/0x8e0
[  613.714650]  ? kasan_check_read+0x11/0x20
[  613.718783]  ? rcu_is_watching+0x85/0x140
[  613.722918]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  613.728095]  ? __fget+0x40c/0x650
[  613.731537]  ? expand_files.part.8+0x9a0/0x9a0
[  613.736104]  ? lock_downgrade+0x8e0/0x8e0
[  613.740239]  ? __split_vma+0x5ac/0x7f0
[  613.744116]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  613.749646]  ? vma_set_page_prot+0x239/0x300
[  613.754042]  ? kvm_set_memory_region+0x50/0x50
[  613.758617]  do_vfs_ioctl+0x1cf/0x16a0
[  613.762496]  ? ioctl_preallocate+0x2e0/0x2e0
[  613.766887]  ? fget_raw+0x20/0x20
[  613.770330]  ? __x64_sys_futex+0x477/0x680
[  613.774552]  ? do_futex+0x27d0/0x27d0
[  613.779215]  ? security_file_ioctl+0x94/0xc0
[  613.783613]  ksys_ioctl+0xa9/0xd0
[  613.787055]  __x64_sys_ioctl+0x73/0xb0
[  613.790928]  do_syscall_64+0x1b1/0x800
[  613.794802]  ? finish_task_switch+0x1ca/0x810
[  613.799284]  ? syscall_return_slowpath+0x5c0/0x5c0
[  613.804200]  ? syscall_return_slowpath+0x30f/0x5c0
[  613.809116]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  613.814466]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  613.819296]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  613.824468] RIP: 0033:0x455979
[  613.827637] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  613.835328] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  613.842667] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  613.849919] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  613.857172] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  613.864426] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  613.871923] warn_alloc_show_mem: 1 callbacks suppressed
[  613.871926] Mem-Info:
[  613.879784] active_anon:75999 inactive_anon:81 isolated_anon:0
[  613.879784]  active_file:3757 inactive_file:12572 isolated_file:0
[  613.879784]  unevictable:0 dirty:366 writeback:0 unstable:0
[  613.879784]  slab_reclaimable:11041 slab_unreclaimable:105346
[  613.879784]  mapped:73880 shmem:88 pagetables:1042 bounce:0
[  613.879784]  free:1322227 free_pcp:428 free_cma:0
[  613.913457] Node 0 active_anon:301948kB inactive_anon:324kB active_file:15028kB inactive_file:50288kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295520kB dirty:1464kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 143360kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  613.941741] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  613.969678] lowmem_reserve[]: 0 2830 6335 6335
[  613.974341] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:656kB free_cma:0kB
[  614.002091] lowmem_reserve[]: 0 0 3505 3505
[  614.006497] Node 0 Normal free:2390856kB min:37300kB low:46624kB high:55948kB active_anon:293600kB inactive_anon:324kB active_file:15028kB inactive_file:50288kB unevictable:0kB writepending:1464kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5408kB pagetables:4020kB bounce:0kB free_pcp:1016kB local_pcp:348kB free_cma:0kB
[  614.036578] lowmem_reserve[]: 0 0 0 0
[  614.040423] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  614.054125] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  614.070007] Node 0 Normal: 2286*4kB (UME) 3187*8kB (UME) 2807*16kB (UME) 3044*32kB (UME) 1466*64kB (UM) 311*128kB (UM) 196*256kB (UME) 105*512kB (UME) 68*1024kB (UM) 55*2048kB (UM) 438*4096kB (UM) = 2390848kB
[  614.088906] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  614.097505] 16416 total pagecache pages
[  614.101513] 0 pages in swap cache
[  614.108209] Swap cache stats: add 0, delete 0, find 0/0
[  614.113600] Free swap  = 0kB
[  614.116650] Total swap = 0kB
[  614.119685] 1965969 pages RAM
[  614.122813] 0 pages HighMem/MovableOnly
[  614.126805] 339347 pages reserved
[  614.139664] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  614.151462] syz-executor4 cpuset=syz4 mems_allowed=0
[  614.156667] CPU: 1 PID: 31392 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  614.163932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  614.173267] Call Trace:
[  614.175848]  dump_stack+0x1b9/0x294
[  614.179472]  ? dump_stack_print_info.cold.2+0x52/0x52
[  614.184647]  ? kasan_check_read+0x11/0x20
[  614.188785]  warn_alloc.cold.118+0xb2/0x1b8
[  614.193106]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  614.197938]  ? kasan_check_write+0x14/0x20
[  614.202160]  ? lock_repin_lock+0x410/0x410
[  614.206379]  __vmalloc_node_range+0x45e/0x750
[  614.210865]  ? graph_lock+0x170/0x170
[  614.214658]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  614.219492]  __vmalloc_node_flags_caller+0x75/0x90
[  614.224404]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  614.229240]  kvmalloc_node+0xde/0x100
[  614.233041]  kvm_arch_create_memslot+0xa3/0x4e0
[  614.237705]  __kvm_set_memory_region+0x1d1b/0x2e50
[  614.242622]  ? kvm_vcpu_block+0x1050/0x1050
[  614.246926]  ? check_same_owner+0x320/0x320
[  614.251231]  ? do_raw_spin_unlock+0x9e/0x2e0
[  614.255633]  ? rcu_note_context_switch+0x710/0x710
[  614.260544]  ? lock_acquire+0x1dc/0x520
[  614.264501]  ? graph_lock+0x170/0x170
[  614.268287]  ? __might_sleep+0x95/0x190
[  614.272247]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  614.277767]  ? futex_wait_queue_me+0x550/0x820
[  614.282334]  ? refill_pi_state_cache.part.7+0x300/0x300
[  614.287687]  ? find_held_lock+0x36/0x1c0
[  614.291737]  ? lock_downgrade+0x8e0/0x8e0
[  614.295904]  kvm_set_memory_region+0x2e/0x50
[  614.300296]  kvm_vm_ioctl+0x668/0x1d90
[  614.304164]  ? drop_futex_key_refs.isra.13+0x6d/0xe0
[  614.309247]  ? futex_wake+0x2f6/0x750
[  614.313035]  ? kvm_set_memory_region+0x50/0x50
[  614.317601]  ? get_futex_key+0x1e90/0x1e90
[  614.321826]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  614.326998]  ? do_futex+0x249/0x27d0
[  614.330717]  ? graph_lock+0x170/0x170
[  614.334502]  ? exit_robust_list+0x290/0x290
[  614.338807]  ? find_held_lock+0x36/0x1c0
[  614.342854]  ? lock_downgrade+0x8e0/0x8e0
[  614.346986]  ? kasan_check_read+0x11/0x20
[  614.351118]  ? rcu_is_watching+0x85/0x140
[  614.355250]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  614.360429]  ? __fget+0x40c/0x650
[  614.363872]  ? do_raw_spin_unlock+0x1/0x2e0
[  614.368193]  ? expand_files.part.8+0x9a0/0x9a0
[  614.372770]  ? kasan_check_write+0x14/0x20
[  614.376986]  ? do_raw_spin_lock+0xc1/0x200
[  614.381210]  ? _raw_spin_unlock+0x22/0x30
[  614.385353]  ? kvm_set_memory_region+0x50/0x50
[  614.389924]  do_vfs_ioctl+0x1cf/0x16a0
[  614.393794]  ? ioctl_preallocate+0x2e0/0x2e0
[  614.398194]  ? fget_raw+0x20/0x20
[  614.401641]  ? __x64_sys_futex+0x477/0x680
[  614.405855]  ? do_futex+0x27d0/0x27d0
[  614.409641]  ? security_file_ioctl+0x94/0xc0
[  614.414040]  ksys_ioctl+0xa9/0xd0
[  614.417477]  __x64_sys_ioctl+0x73/0xb0
[  614.421349]  do_syscall_64+0x1b1/0x800
[  614.425220]  ? finish_task_switch+0x1ca/0x810
[  614.429704]  ? syscall_return_slowpath+0x5c0/0x5c0
[  614.434615]  ? syscall_return_slowpath+0x30f/0x5c0
[  614.439548]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  614.444894]  ? trace_hardirqs_off_thunk+0x1a/0x1c
2018/05/02 02:15:05 executing program 1:
r0 = memfd_create(&(0x7f0000002000)="2f7b06003170707031253a656d30f9", 0x0)
write$evdev(r0, &(0x7f0000000100)=[{{}, 0x0, 0x0, 0xffffffff}], 0x18)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000001000), &(0x7f0000005000))
setsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000000)=0x5, 0x2)

2018/05/02 02:15:05 executing program 2:
r0 = socket(0x10, 0x2, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
getpeername$llc(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000140)=0x10)
sendmsg$nl_netfilter(r1, &(0x7f0000dddfc8)={&(0x7f0000f8d000)={0x10}, 0xc, &(0x7f00008a7000)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c000000010401012a2be351ff33ee00000400000c00000000000002fff1d5c253ad0793da5db8f60b303bffee0200000000000000000000000000"], 0x2c}, 0x1}, 0x0)
r2 = socket(0x10, 0xa, 0xc)
close(r0)
write(r2, &(0x7f0000a6b000)="1f0000000104ff00fd4354c007110000f305010008000100010423dcffdf00", 0x1f)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000080)={0x9, [0x6, 0x0, 0x401, 0x4b, 0x7, 0x7ff, 0xfff, 0x0, 0x870]}, &(0x7f00000000c0)=0x16)
write(r0, &(0x7f0000000000)="1f0000000104ffd008000180010002dcefc500000000000000000000eb7550", 0x1f)

2018/05/02 02:15:05 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x1fc, 0x1000, &(0x7f0000009000/0x1000)=nil})

2018/05/02 02:15:05 executing program 7:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(ecb-twofish-3way)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7295df0df8217ad4000000000000000e6", 0x20)
r1 = accept$alg(r0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000003600)=[{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000480)="1b", 0x1}], 0x1, &(0x7f0000000680)=[@assoc={0x18, 0x117, 0x4, 0x10001}, @assoc={0x18, 0x117, 0x4, 0x8}, @assoc={0x18, 0x117, 0x4, 0x5}, @op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3}, @op={0x18, 0x117, 0x3, 0x1}], 0x90, 0x80}, {0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000740)="6b96c4e52799b81bf4e4bc2b1848ac27ac01fe0106876ec3535fd0104a533ebf3c0f4bf50be120df39513007945012d3427d5a6c35caf78ba930beb8ae5119c2533daa34f647bce77f39d7d7063f4fbfa9bc", 0x52}], 0x1, 0x0, 0x0, 0x4000}, {0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000e40)='<hW', 0x3}], 0x1, &(0x7f0000000ec0), 0x0, 0x4000000}, {0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000001180)="43783682d64775968b98eb8049dff997dbd567e8aa39facfefc6449aede78eef387676b7eaf9173aea791d368e8823ebaebf844ee572cf7bfee899ae8ef087256dc25ad2618618b3bfa802a95a96f510b47911912aef651a249d0b7aa410e5da6429c21ee1fac2df23f16a7602119f158aeae7cbed872371209836c9fbe521bf05d51062fb1966bb14a856f9f5c049bc59139ded1866f37acb507a2ee7fd33b8a8be389dfa549f6030779befb26453635b600da8a80a4bea33ac4c", 0xbb}, {&(0x7f0000001340)="4272f7ef85d8b439245b9d0f3a515dac0e63c6b7c9767dfe03ca8dcbc791d020497816e1cd8342d01af57eeb6c344841e5ab5130e0f6fa84c81b7d3543228969558bb5251526c88656cb99a18f6708f7ace25b8e4245feda3853b8963473abb8639fd566413a4004c7a6eaa44231220af6b1a60fde2089e5bd0cee713864e617eb04", 0x82}], 0x2, &(0x7f0000003480)=ANY=[@ANYBLOB="180000008c00000017010000040000000300000000000000180000000040000017010000040000003559567900000000180000000000000017010000030000000000000000000000180000000000000017010000040000000000000000000000600000000000000017010000020000004b000000425083e006acfa959791ab9117a4f805e559e9e72e22c71e86e2be14fcd618197b8945cb938aa998c7e5275358d254ae9ad31b1e1d7d332cbbd4af2002db41b35e49ec8aeeffec60c7991b00"], 0xc0, 0x1}], 0x4, 0x4040000)
recvmsg(r1, &(0x7f0000000140)={&(0x7f0000000280)=@sco, 0x80, &(0x7f0000000000)=[{&(0x7f00000003c0)=""/171, 0xab}, {&(0x7f0000001480)=""/4096, 0x1000}], 0x2, &(0x7f0000000200)=""/6, 0x6}, 0x0)

2018/05/02 02:15:05 executing program 5:
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000300)={@ipv4={[], [0xff, 0xff], @rand_addr}, 0x0, 0x1}, 0x20)
r1 = socket(0x40000000015, 0x5, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r1, &(0x7f00008a5ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
ioctl$int_in(r1, 0x5421, &(0x7f0000000900)=0x6)
sendto$inet(r1, &(0x7f0000000000)="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", 0x481, 0x0, &(0x7f000069affb)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f00000004c0)=0x1, 0x4)
sendto$inet(r1, &(0x7f00004b3fff), 0x0, 0x0, &(0x7f00002b4000)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000540)='IPVS\x00')
sendmsg$IPVS_CMD_ZERO(r1, &(0x7f0000000940)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x290040}, 0xc, &(0x7f0000000680)={&(0x7f0000000580)={0xe0, r2, 0x810, 0x70bd28, 0x25dfdbfe, {0x10}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local={0xac, 0x14, 0x14, 0xaa}}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x100000001}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3af}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x17, 0x1}}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e23}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x33, 0x14}}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3e}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7fff}, @IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x5}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x6}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback=0x7f000001}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x4040044}, 0x4000004)
recvfrom$unix(r1, &(0x7f00000006c0)=""/242, 0xf2, 0x0, &(0x7f00000007c0)=@file={0x0, './file0\x00'}, 0x6e)
recvfrom$unix(r1, &(0x7f0000000840)=""/184, 0xb8, 0x0, 0x0, 0x0)

2018/05/02 02:15:05 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="020300091000000000000000000000040200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:15:05 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e800000000000000a4040000d0"], 0x1)

2018/05/02 02:15:05 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
setsockopt$inet_mreqsrc(r1, 0x0, 0x25, &(0x7f00000000c0)={@rand_addr=0x8, @dev={0xac, 0x14, 0x14, 0x17}, @broadcast=0xffffffff}, 0xc)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r2 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r2, 0x40045402, &(0x7f0000013000))
readv(r2, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r1, r1, 0x80000)

[  614.449720]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  614.454886] RIP: 0033:0x455979
[  614.458056] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  614.465746] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  614.472995] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  614.480249] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  614.487499] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  614.494747] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
[  614.561527] netlink: 12 bytes leftover after parsing attributes in process `syz-executor2'.
[  614.591923] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  614.603801] syz-executor4 cpuset=syz4 mems_allowed=0
2018/05/02 02:15:05 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e8000000000000009e040000d0"], 0x1)

2018/05/02 02:15:05 executing program 1:
mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='exofs\x00', 0x0, 0x0)
truncate(&(0x7f0000000100)='./file0\x00', 0x8000)
truncate(&(0x7f0000000000)='./file0\x00', 0xffffffffffff7811)

[  614.609000] CPU: 0 PID: 31410 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  614.616279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  614.625629] Call Trace:
[  614.628232]  dump_stack+0x1b9/0x294
[  614.631874]  ? dump_stack_print_info.cold.2+0x52/0x52
[  614.637077]  ? graph_lock+0x170/0x170
[  614.640890]  warn_alloc.cold.118+0xb2/0x1b8
[  614.645223]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  614.650088]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  614.656174]  ? update_load_avg+0x2d9/0x2570
[  614.660504]  ? graph_lock+0x170/0x170
[  614.664314]  __vmalloc_node_range+0x45e/0x750
[  614.666318] netlink: 12 bytes leftover after parsing attributes in process `syz-executor2'.
[  614.668816]  ? graph_lock+0x170/0x170
[  614.668837]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  614.668860]  __vmalloc_node_flags_caller+0x75/0x90
[  614.690875]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  614.695741]  kvmalloc_node+0xde/0x100
[  614.699553]  kvm_arch_create_memslot+0xa3/0x4e0
[  614.704235]  __kvm_set_memory_region+0x1d1b/0x2e50
[  614.709184]  ? kvm_vcpu_block+0x1050/0x1050
[  614.713509]  ? print_usage_bug+0xc0/0xc0
[  614.717578]  ? zap_class+0x720/0x720
[  614.721293]  ? lock_downgrade+0x8e0/0x8e0
[  614.725450]  ? graph_lock+0x170/0x170
[  614.729255]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  614.733846]  ? __lock_acquire+0x7f5/0x5140
[  614.738090]  ? trace_hardirqs_on+0xd/0x10
[  614.742244]  ? find_held_lock+0x36/0x1c0
[  614.746319]  ? lock_downgrade+0x8e0/0x8e0
[  614.750525]  kvm_set_memory_region+0x2e/0x50
[  614.754944]  kvm_vm_ioctl+0x668/0x1d90
[  614.758841]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  614.764385]  ? __perf_event_task_sched_in+0x247/0xb80
[  614.769588]  ? kvm_set_memory_region+0x50/0x50
[  614.774181]  ? find_held_lock+0x36/0x1c0
[  614.778248]  ? perf_trace_lock+0xd6/0x900
[  614.782413]  ? zap_class+0x720/0x720
[  614.786128]  ? finish_task_switch+0x182/0x810
[  614.790634]  ? kasan_check_read+0x11/0x20
[  614.794791]  ? graph_lock+0x170/0x170
[  614.798600]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  614.803187]  ? compat_start_thread+0x80/0x80
[  614.807606]  ? _raw_spin_unlock_irq+0x27/0x70
[  614.812103]  ? trace_hardirqs_on+0xd/0x10
[  614.816239]  ? _raw_spin_unlock_irq+0x27/0x70
[  614.820728]  ? find_held_lock+0x36/0x1c0
[  614.824796]  ? lock_downgrade+0x8e0/0x8e0
[  614.828930]  ? rcu_is_watching+0x85/0x140
[  614.833070]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  614.838263]  ? __fget+0x40c/0x650
[  614.841709]  ? expand_files.part.8+0x9a0/0x9a0
[  614.846274]  ? lock_downgrade+0x8e0/0x8e0
[  614.850413]  ? vma_set_page_prot+0x239/0x300
[  614.854808]  ? kvm_set_memory_region+0x50/0x50
[  614.859375]  do_vfs_ioctl+0x1cf/0x16a0
[  614.863251]  ? ioctl_preallocate+0x2e0/0x2e0
[  614.867645]  ? fget_raw+0x20/0x20
[  614.871091]  ? exit_to_usermode_loop+0x87/0x310
[  614.875749]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  614.881282]  ? security_file_ioctl+0x94/0xc0
[  614.885684]  ksys_ioctl+0xa9/0xd0
[  614.889138]  __x64_sys_ioctl+0x73/0xb0
[  614.893038]  do_syscall_64+0x1b1/0x800
[  614.896919]  ? finish_task_switch+0x1ca/0x810
[  614.901398]  ? syscall_return_slowpath+0x5c0/0x5c0
[  614.906319]  ? syscall_return_slowpath+0x30f/0x5c0
[  614.911258]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  614.916606]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  614.921439]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  614.926607] RIP: 0033:0x455979
[  614.929779] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  614.937468] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  614.944730] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  614.951985] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  614.959247] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  614.966499] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  614.973936] warn_alloc_show_mem: 1 callbacks suppressed
[  614.973943] Mem-Info:
[  614.981822] active_anon:74452 inactive_anon:81 isolated_anon:0
[  614.981822]  active_file:3757 inactive_file:12584 isolated_file:0
[  614.981822]  unevictable:0 dirty:178 writeback:200 unstable:0
[  614.981822]  slab_reclaimable:11039 slab_unreclaimable:105343
[  614.981822]  mapped:73860 shmem:88 pagetables:1016 bounce:0
[  614.981822]  free:1325540 free_pcp:435 free_cma:0
[  615.016280] Node 0 active_anon:297808kB inactive_anon:324kB active_file:15028kB inactive_file:50336kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295440kB dirty:712kB writeback:400kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 122880kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  615.045798] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  615.071989] lowmem_reserve[]: 0 2830 6335 6335
[  615.076653] Node 0 DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:656kB free_cma:0kB
[  615.107146] lowmem_reserve[]: 0 0 3505 3505
[  615.111645] Node 0 Normal free:2385424kB min:37300kB low:46624kB high:55948kB active_anon:297808kB inactive_anon:324kB active_file:15028kB inactive_file:50336kB unevictable:0kB writepending:32kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5504kB pagetables:4064kB bounce:0kB free_pcp:1128kB local_pcp:312kB free_cma:0kB
[  615.141474] lowmem_reserve[]: 0 0 0 0
[  615.145323] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
[  615.158939] Node 0 DMA32: 6*4kB (UM) 5*8kB (M) 2*16kB (M) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 5*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 705*4096kB (M) = 2900416kB
[  615.174802] Node 0 Normal: 2176*4kB (UM) 3117*8kB (UM) 2820*16kB (UME) 3040*32kB (UME) 1467*64kB (UM) 307*128kB (UM) 196*256kB (UME) 105*512kB (UME) 68*1024kB (UM) 53*2048kB (UM) 438*4096kB (UM) = 2385384kB
[  615.193463] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  615.202066] 16428 total pagecache pages
[  615.206082] 0 pages in swap cache
[  615.209548] Swap cache stats: add 0, delete 0, find 0/0
[  615.214925] Free swap  = 0kB
[  615.217962] Total swap = 0kB
[  615.221008] 1965969 pages RAM
[  615.224141] 0 pages HighMem/MovableOnly
[  615.228120] 339347 pages reserved
[  615.244976] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  615.256805] syz-executor4 cpuset=syz4 mems_allowed=0
[  615.262111] CPU: 0 PID: 31429 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  615.269380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  615.278720] Call Trace:
[  615.281301]  dump_stack+0x1b9/0x294
[  615.284919]  ? dump_stack_print_info.cold.2+0x52/0x52
[  615.290101]  ? kasan_check_read+0x11/0x20
[  615.294237]  warn_alloc.cold.118+0xb2/0x1b8
[  615.298545]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  615.303375]  ? trace_hardirqs_on+0xd/0x10
[  615.307510]  ? _raw_spin_unlock_irq+0x27/0x70
[  615.311992]  ? finish_task_switch+0x1ca/0x810
[  615.316479]  ? lock_repin_lock+0x410/0x410
[  615.320708]  __vmalloc_node_range+0x45e/0x750
[  615.325190]  ? graph_lock+0x170/0x170
[  615.328987]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  615.333829]  __vmalloc_node_flags_caller+0x75/0x90
[  615.338744]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  615.343582]  kvmalloc_node+0xde/0x100
[  615.347391]  kvm_arch_create_memslot+0xa3/0x4e0
[  615.352079]  __kvm_set_memory_region+0x1d1b/0x2e50
[  615.357010]  ? kvm_vcpu_block+0x1050/0x1050
[  615.361328]  ? print_usage_bug+0xc0/0xc0
[  615.365387]  ? check_same_owner+0x320/0x320
[  615.369697]  ? do_raw_spin_unlock+0x9e/0x2e0
[  615.374109]  ? rcu_note_context_switch+0x710/0x710
[  615.379049]  ? lock_acquire+0x1dc/0x520
[  615.383015]  ? graph_lock+0x170/0x170
[  615.386809]  ? __might_sleep+0x95/0x190
[  615.390771]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  615.391100] INFO: task kworker/0:1:24 blocked for more than 120 seconds.
[  615.396293]  ? futex_wait_queue_me+0x550/0x820
[  615.396313]  ? refill_pi_state_cache.part.7+0x300/0x300
[  615.396331]  ? find_held_lock+0x36/0x1c0
[  615.396355]  ? lock_downgrade+0x8e0/0x8e0
[  615.396391]  kvm_set_memory_region+0x2e/0x50
[  615.403241]       Not tainted 4.17.0-rc3+ #28
[  615.407774]  kvm_vm_ioctl+0x668/0x1d90
[  615.407797]  ? kvm_set_memory_region+0x50/0x50
[  615.407818]  ? perf_event_update_userpage+0xd10/0xd10
[  615.413173] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  615.417200]  ? graph_lock+0x170/0x170
[  615.417219]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  615.417241]  ? find_held_lock+0x36/0x1c0
[  615.421378] kworker/0:1     D
[  615.425751]  ? __sanitizer_cov_trace_switch+0x53/0x90
[  615.425766]  ? do_futex+0x249/0x27d0
[  615.425781]  ? graph_lock+0x170/0x170
[  615.430278] 19800    24      2 0x80000000
[  615.434118]  ? lock_downgrade+0x8e0/0x8e0
[  615.434134]  ? finish_task_switch+0x182/0x810
[  615.434155]  ? exit_robust_list+0x290/0x290
[  615.438734] Workqueue: events cgwb_release_workfn
[  615.444838]  ? find_held_lock+0x36/0x1c0
[  615.444865]  ? lock_downgrade+0x8e0/0x8e0
[  615.456597]  ? kasan_check_read+0x11/0x20
[  615.456610]  ? rcu_is_watching+0x85/0x140
[  615.456623]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  615.456650]  ? __fget+0x40c/0x650
[  615.462170] Call Trace:
[  615.466201]  ? expand_files.part.8+0x9a0/0x9a0
[  615.466222]  ? kasan_check_write+0x14/0x20
[  615.469329]  __schedule+0x801/0x1e30
[  615.474470]  ? do_raw_spin_lock+0xc1/0x200
[  615.474491]  ? kvm_set_memory_region+0x50/0x50
[  615.474509]  do_vfs_ioctl+0x1cf/0x16a0
[  615.478224]  ? __sched_text_start+0x8/0x8
[  615.481980]  ? ioctl_preallocate+0x2e0/0x2e0
[  615.481994]  ? fget_raw+0x20/0x20
[  615.482010]  ? schedule+0xef/0x430
[  615.486171]  ? lock_downgrade+0x8e0/0x8e0
[  615.490264]  ? __x64_sys_futex+0x477/0x680
[  615.490277]  ? exit_to_usermode_loop+0x87/0x310
[  615.490294]  ? do_futex+0x27d0/0x27d0
[  615.494792]  ? mark_held_locks+0xc9/0x160
[  615.499064]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  615.499079]  ? security_file_ioctl+0x94/0xc0
[  615.499094]  ksys_ioctl+0xa9/0xd0
[  615.499113]  __x64_sys_ioctl+0x73/0xb0
[  615.503955]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  615.507974]  do_syscall_64+0x1b1/0x800
[  615.507988]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  615.508006]  ? syscall_return_slowpath+0x5c0/0x5c0
[  615.512158]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[  615.516260]  ? syscall_return_slowpath+0x30f/0x5c0
[  615.516276]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  615.516294]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  615.520488]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  615.525587]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  615.525598] RIP: 0033:0x455979
[  615.525608] RSP: 002b:00007ffb43d0ec68 EFLAGS: 00000246
[  615.529067]  schedule+0xef/0x430
[  615.531598]  ORIG_RAX: 0000000000000010
[  615.531608] RAX: ffffffffffffffda RBX: 00007ffb43d0f6d4 RCX: 0000000000455979
[  615.531617] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000016
[  615.531628] RBP: 000000000072bf50 R08: 0000000000000000 R09: 0000000000000000
[  615.531639] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  615.536227]  ? prepare_to_wait+0x194/0x4d0
2018/05/02 02:15:06 executing program 0:
r0 = socket$inet(0x2, 0x8000000000003, 0x32)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000200)=ANY=[@ANYBLOB="6d616e676c650000000000003d22bb000000e2ccf405bd9e5d690de64c09196200001900000000000000000000000000001f0000000600000068050000f8010000e8000000f8010000e80000000000000031040000d0"], 0x1)

2018/05/02 02:15:06 executing program 1:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0)
fgetxattr(r0, &(0x7f0000000080)=@random={'trusted.', '\'-vmnet0O\x00'}, &(0x7f00000000c0)=""/174, 0xae)
ioctl$LOOP_CTL_REMOVE(r0, 0x4004556b, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x12000, 0x0)

2018/05/02 02:15:06 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/hwrng\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x15555555555555fb, 0x0, &(0x7f0000000100), 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_DEBUGREGS(0xffffffffffffffff, 0x4080aea2, &(0x7f0000000140)={[0x1, 0x0, 0x2000], 0x5922, 0x1, 0x9})
ioctl$KVM_SET_DEBUGREGS(0xffffffffffffffff, 0x4080aea2, &(0x7f0000000240)={[0x10000, 0x112000, 0x2000, 0x5004], 0x4, 0x62})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
openat$cgroup_procs(r2, &(0x7f0000000380)='cgroup.procs\x00', 0x2, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000011000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000400)="66b8f3008ee82e660f78c7006c66ba2100ec66baf80cb820142b8eef66bafc0c66b8010066ef48b800000000008000000f23c00f21f835010003000f23f80f01c8c7442400b974a89ec744240242658a0cc7442406000000000f011c240f20c035000000800f22c0e1eb0f07", 0x6c}], 0x74, 0x0, &(0x7f0000000340), 0x0)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000340)={0x5, 0x7fffffff}, 0x14)
getsockname$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, @multicast1}, &(0x7f0000000100)=0x10)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000200), &(0x7f00000002c0)=0xe, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2018/05/02 02:15:06 executing program 7:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0xe000, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000140)=ANY=[@ANYRES32=<r1=>0x0, @ANYBLOB="001000000ff043ae95d1e364355730c3721e6a53cc1c804ddd028aa5dbdb71092e8f5d7561e9b3fa1ae15723d90a3ac6425f0842304471827379a2206f68aeb1ae5c2829eee595e65766800b6c933fd042cf2092429d10d77df4271231c52249837f98768caeae33c41a1ae00dc87e21b53388cd2ee02000e9cacb0fb60f7859c7b040ab86d7f0f3ccefc58f57806e2c641894e8ef8f52a36403c5ba341a776fbb24ce6d18b63cb6e5254d1a68a688badec56567f4f10d4dad0cf6985408665b4e5c3e1a19581d9771223231f4739b67c178e4e3f610a855c30631829db24874230100ae5c096907c17bd195e2bdbf746f3a0e317ae403177da9a3736a81a6d8d330748550f590fb83690d38685c2bd66a7a6602232829475b28bba3a8046fdd96532ecdfff16d4776502b6fedd8c2330fc23e440bb3f039f3689b539e60a48ca2072b5006197b0192bf725e1cb821724d246cef5d6ad24eb6d1e601489c7905c03db7476aa90de1905614d14bc25b49d5db380dddafd230633ff83ce7c7cb4f2b1f45f9bcc7799dc66ce775712e1ff435e83a80d27f179b985f4361e3f64f88817d1d08ee8ff53390508126957e9283650a13004dbd3b2bc8d651461ee50d2432d8754370b1bb233ca0744399b711f200b14b5513327d260e37c502782d4deed5b0e1081b6d42c516b6792eee2fee21a148c1a8ecc63bf30bf68b69d0590220cef96dafc4a1b9b8c95ebf3ae5893e12354e3a2c09dc59e598c27e346622541a607d67a812d328d7e78adaf2a06832b0f34f96044f0d76ca6f658998e61f3425a23fb726dac78f4eafb220517cf4df5ab8f47ab377de83382d16b218f446a6ed7da4727ce0a019682099361c58795fec232a908364ebf7ebe41bfcefadbccc8ad933519af790aaed11bb63d147228d0eaf3361763e2e49ec16688d56dd1fe0ce515d12296667656e01196ab0f422c69158a11060a5fe667327b762b3ebb8c71503fe809faffbf00046e3b65e0e9d06c358bba5a32391b1a4ed07b02a531210d8a2405dd12d03254916d3c71d83e75ab1066998d1986e11a7c9db70ad49659ea9466fb5d95f297c21185811f3105913e1e5346162a1d1ef66c5c0f714434ce48d6e736854852673cb07cbf372a7028a169245605db8bb29ebde190d77a4e9dd55b1f4fef30eb815374641fa6c56a693a360b170310bdede0df853258bd323ccb38b2d7acaa907da06a13a4e1b741f1d1168e4a695a409e87490db3cde20c756f64052f89074d1336d3b0f8ae9c770efdb4d17775c4ee7ca9e55ad0e0132ebae2f15da846790b930dbac89c6aa0eff912ef3be4d6f9438b61b40e81ab34d6e2786cf10e97a0ab3e0f7ca3b89ad7547019df13b0b5d4e812c54403e1f9e25d9ec32e29eb4616b9c2e7710d57d2159730745c1dcc12f51449fbea85935aa13d270db2e247186608da2a1f74a02062cdbe904b3597003969b5445f86a9f2fd91d7e46b95b77d2135cf52c07390491cc543ee53eb9c97b86024c8203cccd6ca0f5f05fc6734d7ccbfb803fa15748fca7930b7e9e729cebba4aab202ed1aacbc558c6619dce6134d3c496a86bb88e0b1511350101c65983a702ed72c81f6eb53ec9397d8ecf8cb869cce1cfff6acedd4753774a46d757489deb9ca3d3c5a87108fc95921a053e5124dd367a5076fe8bf511466724908efc4613f15df25fa1bbf0b5ec0ed2653a2d10ada0d6b57605732cad5a4bb160944d66019ec413c62b366a41d1dbd042d503eef96e3d0fa30f67c0b3e89c664414f390b48944e09e2b5a40394258a3d4052796b6b3a1d7130a29ccd964c97c3f841785c701ca5859fdeebef4f1ec0233f91fff879b9b28afc8adcddfe1d6015ffe9b63c401e333b76458a3dc2de0259b8bf77fac4b6255cae95153faa6f6c95f44e5eadc964a1b12059162463c51ed544cfc14376bc4793fc5ba25d93aac96fe300206c22b5b6963ccd158f99fa375691adeaa1bcef43ebc9216b7c9dfccc2ee2d447492b8bfe90de272c624a9293f45ca6500b223e2e4ce31fe189ba0f5438b374a3002ea2fcd7601d2aec1c4d1959f5a3704201a9397407b15db0dc655f378fbdf36f82131b2f155253a83a39b9eaaf0091e996fd9d49eb0f3a7591d1ff3479f23eab997c4eb1ea442526fe3fe76ebaca5adc09036cda6483959d2673516f04499604dd2f38af2c65797f36034d966b98fcb65bfcb06e2077235c091e3280e9148a12bdcdcd9484eee87ba12c474b6c16938913c12b8b1d8bdccaa22eebce7cadc3b1f6af4bc8a75fc24c4d5d51b3be6a5738d7d99941e19326d4b4aefab5d57e397697c642e186f9ed8a320f3070dd1435ffcef32956ef4982596dfde5d3ee5a0e0f79dd1c00b29330ba728a640106bf840f5d25a1631098a06d1a2479cdc4585afacd352b38f99f757dffd3dc3a5bf0a0ec7ab55e75b8216e3e4c3c597ee22023af193e3b306f6bade158a54247f3164ac17c8219c80cf9d79b2cdea72f5f28ef5bb3c429f7d0fb9ef3ceb38243199c3002133e83ae9aa9a5399d7088e04e7f2b89f1d82956e6238ef46e1399b511e5447012387698f65f204f23f11946eb32090692ad292311971b4079b6226fe1180410f69eb7fe9b00ea26f56780889a9511ec1d51cb0e30b19f60e03c6c2c20e6192eec04207c6b441d6888d5214a0536b6d7457d6f3920cd8265f384c23a47c576a3304a513f7c63c7eba7a225306a9340861df22e9f9c697755277047ae835644d2c5af39caa5d7d2db29ef20585f656d5e33fee6c1bc36bd04223909be8d844bc1b704d91784abfd1918b933cf4a7c6cd392315b9b42dda108388382fb2cdcd1d08e5d1a0461dad83bee14d4351c4a5f764d7b12e7ef396c122dc0c303d5af341189d2110d17c28558f322fc35b7bcac6ea50015e3bbb595c176a6ca7e93ceb13d332b4c311833e45b59bd4b19631554d6832d579bfb5a076a88dddbb8577d2b90043ff704224c0cbd1268faac521fc39d9d3540a242b037e866dcc64b52e5611aff7a2c3f81d65eb5d4419b7065c6eae65e24a34ce1e4c3536bd67b8ce2f1ed12c405db8fb054298b842615ab4ec1e83460fddee61e64df7907eefd81470e1c6447498d4c2b69342984134eb44c57183b821177e11a681410388b92deb2a6ae3537dd30c854d30b71b32ceedf3cb6fae387f9f6501172362f18593a10d3707c3bc6cb883ad4c5270ef61e5771453aec4bbdaa6ddc9792955ac64215dae4a059acabeede33809f968646978e860c20aa0146a51b0aac9d30752cdf6d583658a917140375ce1519f3d1fdd025bcaeb76dda7b7e6bbb9cb6253d009c054e3fbdd6d168ace56485c2e53439200d2ae136c8df642e27c80fb14fdb6094bc04489221d6cc10e3eb4bf7e9c568efbd14ba8e7f52e318d1125310cabcd96df6bd55ba36fd2ec4cda9ac1223f744751d56ceebf87fcffd28fd16db949341b695f6b352e2ded328fc79e7088bd4d09877982668ea29b60247cdfdbaca2455e04f6faa6586044fa29de32537d0ace569c59805798de3a297166185d748ff06755736a4a36a2b2de93962c3e95dddd13d8994a424068a3df55b14a44c2a5e8f3dbcead79a0db1eae77503b47a6dbf39e69a7540520e8d9b82b09a6a3da3b8bf40460c0a57e251161fccafb699a6493e609ea7d4933c4b486f9eb89bb6123c5580cb42897097fc379572cd8674e20351e4d121888f34244c8b94d49de1e502f50c33d2da154852b1853b3f8a950a42fe6cda63c0e4f0d6e6d2049fa0e1b9607c236e40e37bcbb28e3f59e956377c147a248769c2ba90ca2a8650b8f3b37cacd5203d64d3fa8bfcafb7015b492388b70c3c52f81686e0701413db3f2a1ef0e2a1a6d3ca8d8773d9a3e231d9945c70ae65f160b536955bd428f2ff7fc7f88b3c7350f6b889e28c51f98e26c6b5bf62dd251c20a5f88ce7cb290cdf57c7935255bcceced092b0884dc3bb31768dd865ae71cdf20931efd58fc362c88f7bc88aa64adcc55d1bee87365adc5b157d65bf56e5ae2f82b3053b7a5b0c7fee11ecc8bea26881722840df0306c0aa738dc2c5084abcf2007d75bc45a695721a601bcfa85577cfc5c1d23bd0032abf156434683baa73824ff374169f07cc8fd7cccb1a37126bb500cc79fc14ea6ca029b9a4b3a74091e00d0841463720f9eaf6af7b747cb07f62b727a98bf9770feae67be8e7b5dcd24b1eab9cc9e02ac78f110c88fef95bb8409b8a385dbc90f80f273713e459d26ecb9e48fcea66f284f494fa6f194a0c6caec67f7d827aa8e69cab91ebefdfa190b7b59482525c4f127b4da24a42b483cb02e3f8db6bbaf41576b660536832fe3456e5398cea4e401b793f3147fccb9eb12dac6ec7f415325145fdb74c7570000074cac6a9d239dd713de0fcc664b5cc3ce4d4261d306953947f33c76fba99fc2bfd35a62edb0cf861e54ecfb82144460797c9aa8b27a73d1ba92684dddb099effed0017d05fd762c3b5195307fd278bf07f9ca7d5d52cbec46c3671731448a7b1139993f8b5348479254bdfdbd119380be4797d904d7ddca3c7716b818ec6619190eb365bcdc8850bd488d860fbdcb200a52523f3ff8b65560719a616dbfd66261c01708b0f449ea597a008e074508d30bfaf0a14bf78a64c7e4acc6683836e83d671710047bcf109af905f1e98b4ffef058ba0108f0213506db4612b015ef0e6b3196ae95b8fcecf5490d5514619d9d1fed46cbd569e3081f51d8ba1f662bcff766431ca9c2d0831d10df64278e8d0f6b90ebd52fbcbc7f447e3905fa399d1fce2dd610de8596632fc36d729c57758bb0c9ff63e7caeb839e86317355693024800d9b9701aeb0a05ab14ff0f7415e6544d08eeaf06baa3cdd9328f025ed2d5ab7332a1e35020392eb28e134a21b6b129333bda630bbc052efca31ea4e42bd62a1c61ef39e5f4134ebe279d3b39d43e215762cd723bd0e3341148bd409c9650445098994a82f747f53dd3e4b04dee592b26e87b7caff9a13ecf5154cc97c4f26d4db7f0404bd06291431dc630e33402c14afe1afd09bebcebe02b7936c475874afda1287a00a9d992617a4d60245d1731824d51c895ec77ddf68ba4b9bb1878956047d1572459132516ef7c94ebf2df5bb5e5d1c4354513a4dd62f9d6122a7988ac5d911faf4ade3341ea3de3143754e4d0ebb8ccb8ec7edce95c9a4f5cc3abbf90461cd07cbcba316919bb13f0f5543fe47f91ad954d4c40035261648f74266b1f13a2b0e8e42be1aec5f8e3c82b1fba8fa95fd24cb3b4a86279eddde42de2be6ed96ab57ff42dea6dbc5b3fe92a237de3c6fd16e1231fbc7542f57834c8d41b217f331d499e94a84d7440ba681886cfe0f87e6e7731cbb43bbf46f908f5af6cb4cae130a12472c68a9f2d25d5cfd0e6d6bb483dce28743a02ae9f550744d593bc7149e8c58eba9174b88c651386763c6021a517f5660fd0bc1781195d8a733342f2c8610d24921f8dff7c291a385938346a6c80dfcaa5817fd34600285a86a5dd36f61971364eb3452c81829b02098f045c7e1011b29b4bf7b3054f32051e080e3bc5144c87bbc37dcebdd0592695aa840cf3736ead4eaf4ef4bba186ade4ca94263a3dca9d7f1d5df9a4ea4d506aef69dc669e7ca0e863d53f259c7daa17f297e0b7483ba2e6a0ef39a3b3454ce8ef4e5507d754283e064d84e1b1c2fb7234479d370801fb28bad16452799e2b2d1114001e49d7fd5c7ddadc86af8d3dc3fa0282dbce9ea0607e325ef978afca2ed2a88f3decf"], &(0x7f0000001180)=0x1008)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000001300)={0x5, &(0x7f00000012c0)=[{0x7, 0x81, 0x2, 0x1ff}, {0x7, 0xd3, 0x3, 0xd7de}, {0x2, 0xd611, 0x9, 0xfff}, {0x0, 0x3ff, 0x6, 0x9}, {0x5, 0x7, 0x6, 0x5}]}, 0x10)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000001240)={r1, 0x74, &(0x7f0000001340)=[@in={0x2, 0x4e20}, @in6={0xa, 0x4e21, 0x7, @empty, 0xff000000000000}, @in6={0xa, 0x4e23, 0xfffffffffffffff9, @remote={0xfe, 0x80, [], 0xbb}, 0x7fffffff}, @in={0x2, 0x4e24, @rand_addr=0x90}, @in6={0xa, 0x4e21, 0x1, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}, 0x4}]}, &(0x7f0000001280)=0x10)
r2 = socket(0xa, 0x5, 0x0)
getsockopt$sock_buf(r2, 0x1, 0x37, &(0x7f0000000000)=""/47, &(0x7f0000000040)=0xfffffe91)
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000fedf98)={&(0x7f000000d000)=[0x8, 0x6], 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "8cfbc89fefc282b0e9b6d1b29d5500b5ff74b06ccbd9dee8c886586975b5446e"}})
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f00000011c0)={0x1, 0x4}, 0x8)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r2, 0x84, 0x1c, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
getsockopt(r2, 0x0, 0x53, &(0x7f000000d000)=""/8, &(0x7f0000fe3000)=0x2c)

2018/05/02 02:15:06 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c)
listen(r1, 0x100000001)
sendto$inet6(r0, &(0x7f0000f6f000), 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x4e22}, 0x1c)
r2 = socket$inet(0x10, 0x3, 0x4)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
getsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000100), &(0x7f0000000140)=0x4)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r3, 0x402c5342, &(0x7f0000000080)={0x6, 0x1ff, 0x5, {0x77359400}, 0xfd3, 0x1})
sendmsg(r2, &(0x7f0000014000)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa2830007a6000000000900000000683540150024001d0004c41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d4c1cbc882b079881", 0x4c}], 0x1}, 0x0)

2018/05/02 02:15:06 executing program 3:
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00002c5fe8)={0xaa})
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
getsockopt$netrom_NETROM_N2(0xffffffffffffffff, 0x103, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r1, 0x54a3)
r2 = epoll_create1(0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000e4cfe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1})
r3 = syz_open_dev$sndtimer(&(0x7f0000f85ff1)='/dev/snd/timer\x00', 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r3, 0x40045402, &(0x7f0000013000))
readv(r3, &(0x7f00005f7000)=[{&(0x7f0000ba8ff9)=""/7, 0x7}], 0x1)
dup3(r2, r0, 0x0)

2018/05/02 02:15:06 executing program 6:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)=ANY=[@ANYBLOB="02030009100000007fffffff000000000200130002000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000000020000000005000500000000000a00000000000000ff0100000000000000000000000000000000000006000000"], 0x80}, 0x1}, 0x0)

2018/05/02 02:15:06 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000005fec)={0x0, 0x0, 0x400})
pkey_mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000005fe0)={0x0, 0x0, 0x3, 0x1000, &(0x7f0000009000/0x1000)=nil})

[  615.540406] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000001
[  615.712461] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  615.717055]  ? __schedule+0x1e30/0x1e30
[  615.717072]  ? finish_wait+0x420/0x420
[  615.717089]  ? graph_lock+0x170/0x170
[  615.739173]  ? flush_rcu_work+0x90/0x90
[  615.743194]  ? print_usage_bug+0xc0/0xc0
[  615.747306]  ? find_held_lock+0x36/0x1c0
[  615.751408]  bit_wait+0x18/0x90
[  615.754727]  __wait_on_bit+0xb3/0x130
[  615.758569]  ? bit_wait_io+0x90/0x90
[  615.762325]  out_of_line_wait_on_bit+0x204/0x3a0
[  615.767118]  ? check_same_owner+0x320/0x320
[  615.771488]  ? __wait_on_bit+0x130/0x130
[  615.775586]  ? init_wait_var_entry+0x1a0/0x1a0
[  615.780217]  ? __might_sleep+0x95/0x190
[  615.784235]  wb_shutdown+0x370/0x470
[  615.787287] syz-executor4: vmalloc: allocation failure: 8589934592 bytes, mode:0x14080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  615.787989]  ? set_wb_congested+0x70/0x70
[  615.788008]  ? find_held_lock+0x36/0x1c0
[  615.788045]  ? graph_lock+0x170/0x170
[  615.788061]  ? lock_acquire+0x1dc/0x520
[  615.788078]  cgwb_release_workfn+0x87/0x750
[  615.799809] syz-executor4 cpuset=
[  615.803958]  ? wb_get_create+0x1dd0/0x1dd0
[  615.803971]  ? __lock_is_held+0xb5/0x140
[  615.803993]  process_one_work+0xc1e/0x1b50
[  615.808050] syz4
[  615.811854]  ? finish_task_switch+0x28b/0x810
[  615.815824]  mems_allowed=0
[  615.820141]  ? pwq_dec_nr_in_flight+0x490/0x490
[  615.823592] CPU: 0 PID: 31441 Comm: syz-executor4 Not tainted 4.17.0-rc3+ #28
[  615.827827]  ? __schedule+0x809/0x1e30
[  615.831830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  615.831835] Call Trace:
[  615.831851]  dump_stack+0x1b9/0x294
[  615.831870]  ? dump_stack_print_info.cold.2+0x52/0x52
[  615.836109]  ? retint_kernel+0x10/0x10
[  615.838052]  ? graph_lock+0x170/0x170
[  615.838076]  warn_alloc.cold.118+0xb2/0x1b8
[  615.842562]  ? graph_lock+0x170/0x170
[  615.845457]  ? zone_watermark_ok_safe+0x3b0/0x3b0
[  615.845481]  ? __update_load_avg_blocked_se.isra.33+0x460/0x460
[  615.850142]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  615.857387]  ? update_load_avg+0x2d9/0x2570
[  615.857402]  ? graph_lock+0x170/0x170
[  615.861289]  ? retint_kernel+0x10/0x10
[  615.870608]  __vmalloc_node_range+0x45e/0x750
[  615.870624]  ? graph_lock+0x170/0x170
[  615.873767]  ? find_held_lock+0x36/0x1c0
[  615.877350]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  615.877366]  __vmalloc_node_flags_caller+0x75/0x90
[  615.877381]  ? kvm_arch_create_memslot+0xa3/0x4e0
[  615.882572]  ? lock_acquire+0x1dc/0x520
[  615.886416]  kvmalloc_node+0xde/0x100
[  615.886434]  kvm_arch_create_memslot+0xa3/0x4e0
[  615.890233]  ? lock_downgrade+0x8e0/0x8e0
[  615.894520]  __kvm_set_memory_region+0x1d1b/0x2e50
[  615.894546]  ? kvm_vcpu_block+0x1050/0x1050
[  615.898335]  ? lock_release+0xa10/0xa10
[  615.903132]  ? print_usage_bug+0xc0/0xc0
[  615.903148]  ? lock_downgrade+0x8e0/0x8e0
[  615.903163]  ? lock_downgrade+0x8e0/0x8e0
[  615.909217]  ? kasan_check_read+0x11/0x20
[  615.914191]  ? graph_lock+0x170/0x170
[  615.914203]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  615.914220]  ? __lock_acquire+0x7f5/0x5140
[  615.918534]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  615.922293]  ? trace_hardirqs_on+0xd/0x10
[  615.922314]  ? find_held_lock+0x36/0x1c0
[  615.926204]  worker_thread+0x1cc/0x1440
[  615.930667]  ? lock_downgrade+0x8e0/0x8e0
[  615.930705]  kvm_set_memory_region+0x2e/0x50
[  615.934488]  ? process_one_work+0x1b50/0x1b50
[  615.938501]  kvm_vm_ioctl+0x668/0x1d90
[  615.938516]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  615.938534]  ? __perf_event_task_sched_in+0x247/0xb80
[  615.943376]  ? graph_lock+0x170/0x170
[  615.948263]  ? kvm_set_memory_region+0x50/0x50
[  615.948284]  ? find_held_lock+0x36/0x1c0
[  615.953124]  ? find_held_lock+0x36/0x1c0
[  615.957065]  ? lock_downgrade+0x8e0/0x8e0
[  615.957082]  ? finish_task_switch+0x182/0x810
[  615.960883]  ? find_held_lock+0x36/0x1c0
[  615.965506]  ? kasan_check_read+0x11/0x20
[  615.965523]  ? graph_lock+0x170/0x170
[  615.969676]  ? __schedule+0x1e30/0x1e30
[  615.974549]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  615.974564]  ? compat_start_thread+0x80/0x80
[  615.974582]  ? _raw_spin_unlock_irq+0x27/0x70
[  615.978897]  ? do_raw_spin_unlock+0x9e/0x2e0
[  615.982832]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  615.982845]  ? trace_hardirqs_on+0xd/0x10
[  615.982862]  ? _raw_spin_unlock_irq+0x27/0x70
[  615.986917]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  615.991027]  ? find_held_lock+0x36/0x1c0
[  615.991050]  ? lock_downgrade+0x8e0/0x8e0
[  615.995191]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[  615.999302]  ? kasan_check_read+0x11/0x20
[  615.999321]  ? rcu_is_watching+0x85/0x140
[  616.003117]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  616.007653]  ? rcu_bh_force_quiescent_state+0x20/0x20
[  616.007679]  ? __fget+0x40c/0x650
[  616.011909]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  616.016452]  ? expand_files.part.8+0x9a0/0x9a0
[  616.016469]  ? lock_downgrade+0x8e0/0x8e0
[  616.020611]  ? __kthread_parkme+0x1b7/0x280
[  616.024638]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  616.024658]  ? vma_set_page_prot+0x239/0x300
[  616.028626]  kthread+0x345/0x410
[  616.032736]  ? kvm_set_memory_region+0x50/0x50
[  616.032749]  do_vfs_ioctl+0x1cf/0x16a0
[  616.032769]  ? ioctl_preallocate+0x2e0/0x2e0
[  616.037168]  ? process_one_work+0x1b50/0x1b50
[  616.041623]  ? fget_raw+0x20/0x20
[  616.041651]  ? exit_to_usermode_loop+0x87/0x310
[  616.045537]  ? kthread_bind+0x40/0x40
[  616.051042]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  616.051060]  ? security_file_ioctl+0x94/0xc0
[  616.056245]  ret_from_fork+0x3a/0x50
[  616.060007]  ksys_ioctl+0xa9/0xd0
[  616.060028]  __x64_sys_ioctl+0x73/0xb0
[  616.060045]  do_syscall_64+0x1b1/0x800
[  616.064625] 
[  616.064625] Showing all locks held in the system:
[  616.068644]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  616.068658]  ? syscall_return_slowpath+0x5c0/0x5c0
[  616.068676]  ? syscall_return_slowpath+0x30f/0x5c0
[  616.072734] 2 locks held by kworker/0:1/24:
[  616.076836]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  616.076852]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  616.076868]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  616.076881] RIP: 0033:0x455979
[  616.081572]  #0: 
[  616.085596] RSP: 002b:00007ffb43d2fc68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  616.085612] RAX: ffffffffffffffda RBX: 00007ffb43d306d4 RCX: 0000000000455979
[  616.085623] RDX: 0000000020005fe0 RSI: 000000004020ae46 RDI: 0000000000000014
[  616.089764] 000000003ddecc4b
[  616.093526] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000
[  616.093535] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  616.093544] R13: 000000000000029a R14: 00000000006f7f10 R15: 0000000000000000
[  616.094008] warn_alloc_show_mem: 1 callbacks suppressed
[  616.094036] Mem-Info:
[  616.097534]  (
[  616.102137] active_anon:76059 inactive_anon:76 isolated_anon:0
[  616.102137]  active_file:3757 inactive_file:12593 isolated_file:0
[  616.102137]  unevictable:0 dirty:60 writeback:0 unstable:0
[  616.102137]  slab_reclaimable:11038 slab_unreclaimable:105168
[  616.102137]  mapped:73874 shmem:88 pagetables:1089 bounce:0
[  616.102137]  free:1323938 free_pcp:464 free_cma:0
[  616.106521] (wq_completion)"events"
[  616.111053] Node 0 active_anon:304236kB inactive_anon:304kB active_file:15028kB inactive_file:50372kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:295496kB dirty:240kB writeback:0kB shmem:352kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 135168kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  616.115435] ){+.+.}
[  616.120440] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  616.124612] , at: process_one_work+0xaef/0x1b50
[  616.129083] lowmem_reserve[]: 0 2830
[  616.133677]  #1: 
[  616.137726]  6335 6335
[  616.141878] 000000009912bf79
[  616.146987] Node 0 
[  616.151130]  (
[  616.155289] DMA32 free:2900416kB min:30116kB low:37644kB high:45172kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2901148kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:732kB local_pcp:656kB free_cma:0kB
[  616.155295] lowmem_reserve[]:
[  616.160310] (work_completion)(&wb->release_work)
[  616.165487]  0 0
[  616.168944] ){+.+.}
[  616.174470]  3505 3505
[  616.179086] , at: process_one_work+0xb46/0x1b50
[  616.183215] Node 0 
[  616.187534] 2 locks held by khungtaskd/891:
[  616.193082] Normal free:2379428kB min:37300kB low:46624kB high:55948kB active_anon:304236kB inactive_anon:304kB active_file:15028kB inactive_file:50372kB unevictable:0kB writepending:124kB present:4718592kB managed:3589432kB mlocked:0kB kernel_stack:5792kB pagetables:4356kB bounce:0kB free_pcp:1124kB local_pcp:464kB free_cma:0kB
[  616.193088] lowmem_reserve[]:
[  616.197579]  #0: 00000000c509000b
[  616.200946]  0 0
[  616.205531]  (
[  616.209409]  0 0
[  616.213821] rcu_read_lock
[  616.218314] Node 0 
[  616.221762] ){....}
[  616.226419] DMA: 1*4kB 
[  616.230238] , at: watchdog+0x1ff/0xf60
[  616.235758] (U) 0*8kB 
[  616.240173]  #1: 
[  616.243878] 0*16kB 1*32kB 
[  616.247335] 00000000011ef05f
[  616.251212] (U) 2*64kB 
[  616.255110]  (
[  616.261417] (U) 1*128kB 
[  616.266264] tasklist_lock
[  616.271183] (U) 1*256kB 
[  616.276113] ){.+.+}
[  616.280424] (U) 0*512kB 
[  616.285801] , at: debug_show_all_locks+0xde/0x34a
[  616.290623] 1*1024kB (U) 
[  616.295842] 2 locks held by getty/4466:
[  616.298995] 1*2048kB (M) 
[  616.301087]  #0: 
[  616.308779] 3*4096kB (M) 
[  616.316062] 000000000bb09ac6
[  616.323320] = 15908kB
[  616.323328] Node 0 
[  616.326342]  (
[  616.333613] DMA32: 6*4kB 
[  616.341008] &tty->ldisc_sem
[  616.348276] (UM) 5*8kB 
[  616.353664] ){++++}
[  616.356065] (M) 2*16kB 
[  616.357910] , at: ldsem_down_read+0x37/0x40
[  616.391468] (M) 5*32kB 
[  616.395102]  #1: 000000009b271e39
[  616.423220] (UM) 
[  616.425455]  (
[  616.451566] 3*64kB 
[  616.456231] &ldata->atomic_read_lock
[  616.459934] (UM) 2*128kB 
[  616.462007] ){+.+.}
[  616.464505] (M) 5*256kB 
[  616.467540] , at: n_tty_read+0x321/0x1cc0
[  616.469756] (UM) 3*512kB 
[  616.471570] 2 locks held by getty/4467:
[  616.498624] (UM) 3*1024kB 
[  616.501733]  #0: 
[  616.506477] (UM) 3*2048kB 
[  616.508459] 00000000fbcf53cc
[  616.510688] (UM) 705*4096kB 
[  616.513454]  (
[  616.518113] (M) = 2900416kB
[  616.520352] &tty->ldisc_sem
[  616.524664] Node 0 Normal: 
[  616.554077] ){++++}, at: ldsem_down_read+0x37/0x40
[  616.557194] 2011*4kB 
[  616.560643]  #1: 
[  616.562619] (UME) 3222*8kB 
[  616.564425] 0000000021941b4e
[  616.566393] (UME) 2853*16kB 
[  616.569154]  (
[  616.571386] (UME) 3033*32kB 
[  616.573629] &ldata->atomic_read_lock
[  616.576205] (UME) 1467*64kB 
[  616.580094] ){+.+.}
[  616.582581] (UM) 304*128kB 
[  616.584669] , at: n_tty_read+0x321/0x1cc0
[  616.587492] (UM) 196*256kB 
[  616.590518] 2 locks held by getty/4468:
[  616.593095] (UME) 105*512kB 
[  616.594900]  #0: 
[  616.597562] (UME) 68*1024kB 
[  616.600323] 00000000439c3448
[  616.602986] (UM) 50*2048kB 
[  616.605231]  (
[  616.607895] (UM) 438*4096kB 
[  616.612742] &tty->ldisc_sem
[  616.615490] (UM) = 2379340kB
[  616.619467] ){++++}
[  616.622229] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  616.624292] , at: ldsem_down_read+0x37/0x40
[  616.627031] 16437 total pagecache pages
[  616.627043] 0 pages in swap cache
[  616.630058]  #1: 
[  616.632460] Swap cache stats: add 0, delete 0, find 0/0
[  616.632467] Free swap  = 0kB
[  616.634698] 00000000657b0922
[  616.636489] Total swap = 0kB
[  616.636497] 1965969 pages RAM
[  616.639248]  (
[  616.642173] 0 pages HighMem/MovableOnly
[  616.642181] 339347 pages reserved
[  616.644760] &ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x321/0x1cc0
[  616.842764] 2 locks held by getty/4469:
[  616.846732]  #0: 000000007f26b411 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40
[  616.854984]  #1: 000000005de02711 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x321/0x1cc0
[  616.863862] 2 locks held by getty/4470:
[  616.867827]  #0: 000000004e64684f (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40
[  616.876075]  #1: 0000000011c820a4 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x321/0x1cc0
[  616.884934] 2 locks held by getty/4471:
[  616.888899]  #0: 000000005d2982a9 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40
[  616.897145]  #1: 000000007aa3a524 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x321/0x1cc0
[  616.906005] 2 locks held by getty/4472:
[  616.909987]  #0: 0000000024b8f1d5 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x37/0x40
[  616.918250]  #1: 000000002512cc4a (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x321/0x1cc0
[  616.927120] 2 locks held by kworker/0:3/4928:
[  616.931614]  #0: 000000003ddecc4b ((wq_completion)"events"){+.+.}, at: process_one_work+0xaef/0x1b50
[  616.940907]  #1: 00000000640473fb ((work_completion)(&wb->release_work)){+.+.}, at: process_one_work+0xb46/0x1b50
[  616.951330] 2 locks held by kworker/u4:5/8671:
[  616.955915]  #0: 00000000f9188dee ((wq_completion)"events_unbound"){+.+.}, at: process_one_work+0xaef/0x1b50
[  616.965894]  #1: 000000004bfccd35 ((reaper_work).work){+.+.}, at: process_one_work+0xb46/0x1b50
[  616.974758] 1 lock held by syz-executor3/31449:
[  616.979417]  #0: 00000000aff553de (&tu->ioctl_lock){+.+.}, at: snd_timer_user_ioctl+0x51/0x7d
[  616.988101] 
[  616.989721] =============================================
[  616.989721] 
[  616.996732] NMI backtrace for cpu 1
[  617.000395] CPU: 1 PID: 891 Comm: khungtaskd Not tainted 4.17.0-rc3+ #28
[  617.007228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  617.016932] Call Trace:
[  617.019532]  dump_stack+0x1b9/0x294
[  617.023166]  ? dump_stack_print_info.cold.2+0x52/0x52
[  617.028366]  nmi_cpu_backtrace.cold.4+0x19/0xce
[  617.033048]  ? lapic_can_unplug_cpu.cold.26+0x3f/0x3f
[  617.038252]  nmi_trigger_cpumask_backtrace+0x151/0x192
[  617.043537]  arch_trigger_cpumask_backtrace+0x14/0x20
[  617.048756]  watchdog+0xc10/0xf60
[  617.052221]  ? reset_hung_task_detector+0xb0/0xb0
[  617.057077]  ? __schedule+0x1e30/0x1e30
[  617.061052]  ? do_raw_spin_unlock+0x9e/0x2e0
[  617.065463]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  617.070050]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[  617.075159]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  617.080192]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  617.085738]  ? __kthread_parkme+0x1b7/0x280
[  617.090065]  kthread+0x345/0x410
[  617.093435]  ? reset_hung_task_detector+0xb0/0xb0
[  617.098282]  ? kthread_bind+0x40/0x40
[  617.102087]  ret_from_fork+0x3a/0x50
[  617.105861] Sending NMI from CPU 1 to CPUs 0:
[  617.110387] NMI backtrace for cpu 0
[  617.110397] CPU: 0 PID: 4544 Comm: syz-executor1 Not tainted 4.17.0-rc3+ #28
[  617.110402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  617.110415] RIP: 0010:trace_hardirqs_on_caller+0x6e/0x5c0
[  617.110420] RSP: 0018:ffff88019224f9e0 EFLAGS: 00000807
[  617.110428] RAX: dffffc0000000000 RBX: ffff880192242280 RCX: ffffffff815e189e
[  617.110433] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff880192242ab4
[  617.110438] RBP: ffff88019224f9f0 R08: fffffbfff150b4ee R09: fffffbfff150b4ed
[  617.110444] R10: fffffbfff150b4ed R11: ffffffff8a85a76b R12: ffffffff876ed634
[  617.110449] R13: 0000000000064f80 R14: ffffffff8a85a760 R15: ffff880174e90d58
[  617.110456] FS:  0000000000cee940(0000) GS:ffff8801dae00000(0000) knlGS:0000000000000000
[  617.110462] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  617.110467] CR2: 0000000020000100 CR3: 00000001920b2000 CR4: 00000000001426f0
[  617.110474] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  617.110479] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  617.110481] Call Trace:
[  617.110491]  trace_hardirqs_on+0xd/0x10
[  617.110504]  _raw_spin_unlock_irqrestore+0x74/0xc0
[  617.110515]  __debug_object_init+0x57f/0x12c0
[  617.110523]  ? graph_lock+0x170/0x170
[  617.110533]  ? debug_object_free+0x5f0/0x5f0
[  617.110542]  ? find_held_lock+0x36/0x1c0
[  617.110551]  ? lock_downgrade+0x8e0/0x8e0
[  617.110560]  ? lock_release+0xa10/0xa10
[  617.110570]  ? check_same_owner+0x320/0x320
[  617.110582]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  617.110592]  ? kernel_wait4+0x2d8/0x3d0
[  617.110602]  ? __might_sleep+0x95/0x190
[  617.110611]  debug_object_init_on_stack+0x19/0x20
[  617.110622]  hrtimer_nanosleep+0x163/0x610
[  617.110632]  ? nanosleep_copyout+0x130/0x130
[  617.110641]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  617.110649]  ? get_timespec64+0x11b/0x180
[  617.110656]  ? timespec_trunc+0x170/0x170
[  617.110667]  __x64_sys_nanosleep+0x1df/0x270
[  617.110676]  ? hrtimer_nanosleep+0x610/0x610
[  617.110686]  ? do_syscall_64+0x92/0x800
[  617.110695]  do_syscall_64+0x1b1/0x800
[  617.110704]  ? syscall_slow_exit_work+0x4f0/0x4f0
[  617.110713]  ? syscall_return_slowpath+0x5c0/0x5c0
[  617.110722]  ? entry_SYSCALL_64_after_hwframe+0x59/0xbe
[  617.110732]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  617.110741]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  617.110747] RIP: 0033:0x481080
[  617.110751] RSP: 002b:0000000000a3ea98 EFLAGS: 00000246 ORIG_RAX: 0000000000000023
[  617.110759] RAX: ffffffffffffffda RBX: 00000000000002b8 RCX: 0000000000481080
[  617.110763] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000a3eaa0
[  617.110768] RBP: 0000000000096a87 R08: 0000000000000001 R09: 0000000000cee940
[  617.110773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  617.110778] R13: 0000000000000002 R14: 00000000000009ba R15: 0000000000096a81
[  617.110782] Code: 0f 84 68 02 00 00 65 48 8b 1c 25 c0 ed 01 00 48 8d bb 34 08 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 0f b6 14 02 <48> 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 2a 04 00 00 
[  617.111391] Kernel panic - not syncing: hung_task: blocked tasks
[  617.410772] CPU: 1 PID: 891 Comm: khungtaskd Not tainted 4.17.0-rc3+ #28
[  617.417591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  617.427444] Call Trace:
[  617.430023]  dump_stack+0x1b9/0x294
[  617.433638]  ? dump_stack_print_info.cold.2+0x52/0x52
[  617.438814]  ? printk_safe_log_store+0x260/0x260
[  617.443558]  panic+0x22f/0x4de
[  617.446742]  ? add_taint.cold.5+0x16/0x16
[  617.450874]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  617.456395]  ? nmi_trigger_cpumask_backtrace+0x13a/0x192
[  617.461828]  ? printk_safe_flush+0xd7/0x130
[  617.466136]  watchdog+0xc21/0xf60
[  617.469580]  ? reset_hung_task_detector+0xb0/0xb0
[  617.474411]  ? __schedule+0x1e30/0x1e30
[  617.478371]  ? do_raw_spin_unlock+0x9e/0x2e0
[  617.482762]  ? do_raw_spin_trylock+0x1b0/0x1b0
[  617.487327]  ? _raw_spin_unlock_irqrestore+0x74/0xc0
[  617.492413]  ? trace_hardirqs_on_caller+0x421/0x5c0
[  617.497413]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  617.502932]  ? __kthread_parkme+0x1b7/0x280
[  617.507236]  kthread+0x345/0x410
[  617.510588]  ? reset_hung_task_detector+0xb0/0xb0
[  617.515413]  ? kthread_bind+0x40/0x40
[  617.519196]  ret_from_fork+0x3a/0x50
[  617.523805] Dumping ftrace buffer:
[  617.527442]    (ftrace buffer empty)
[  617.531141] Kernel Offset: disabled
[  617.534760] Rebooting in 86400 seconds..