0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) dup3(0xffffffffffffffff, r0, 0x0) [ 1813.294430] syz-executor.0 cpuset=/ mems_allowed=0-1 [ 1813.303494] CPU: 0 PID: 22817 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1813.311395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1813.320748] Call Trace: [ 1813.323335] dump_stack+0x1b2/0x283 [ 1813.326968] warn_alloc.cold+0x96/0x1af [ 1813.330938] ? zone_watermark_ok_safe+0x250/0x250 [ 1813.335791] ? wait_for_completion_io+0x10/0x10 [ 1813.340471] __alloc_pages_nodemask+0x2129/0x2730 [ 1813.345333] ? retint_kernel+0x2d/0x2d [ 1813.349223] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1813.354067] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1813.359084] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1813.363924] ? retint_kernel+0x2d/0x2d [ 1813.367815] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1813.371511] syz-executor.4: [ 1813.372572] ? retint_kernel+0x2d/0x2d [ 1813.372589] alloc_pages_current+0xe7/0x1e0 [ 1813.375594] page allocation failure: order:0 [ 1813.379468] kvm_mmu_create+0xd1/0x1c0 [ 1813.379480] kvm_arch_vcpu_init+0x282/0x890 [ 1813.379488] ? alloc_pages_current+0xef/0x1e0 [ 1813.379500] kvm_vcpu_init+0x26d/0x360 [ 1813.379513] vmx_create_vcpu+0xf5/0x2950 [ 1813.379527] ? __mutex_unlock_slowpath+0x75/0x780 [ 1813.379539] ? alloc_loaded_vmcs+0x240/0x240 [ 1813.379556] kvm_vm_ioctl+0x4ae/0x1430 [ 1813.379569] ? __lock_acquire+0x655/0x42a0 [ 1813.379581] ? kvm_vcpu_release+0xa0/0xa0 [ 1813.379590] ? check_preemption_disabled+0x35/0x240 [ 1813.379603] ? perf_trace_lock+0x109/0x4b0 [ 1813.379615] ? check_preemption_disabled+0x35/0x240 [ 1813.379626] ? perf_trace_lock+0x109/0x4b0 [ 1813.379635] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1813.379648] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1813.379659] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1813.379672] ? kvm_vcpu_release+0xa0/0xa0 [ 1813.379682] do_vfs_ioctl+0x75a/0xfe0 [ 1813.379694] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1813.379705] ? ioctl_preallocate+0x1a0/0x1a0 [ 1813.379727] ? security_file_ioctl+0x76/0xb0 [ 1813.379737] ? security_file_ioctl+0x83/0xb0 [ 1813.379748] SyS_ioctl+0x7f/0xb0 [ 1813.379756] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1813.379768] do_syscall_64+0x1d5/0x640 [ 1813.379784] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1813.379793] RIP: 0033:0x45ca59 [ 1813.379798] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1813.379809] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1813.379814] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1813.379819] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 02:41:53 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) [ 1813.379825] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1813.379831] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1813.591512] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1813.598990] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1813.604280] CPU: 1 PID: 22840 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1813.612160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1813.621517] Call Trace: [ 1813.624381] dump_stack+0x1b2/0x283 [ 1813.628073] warn_alloc.cold+0x96/0x1af [ 1813.632065] ? zone_watermark_ok_safe+0x250/0x250 [ 1813.636927] ? wait_for_completion_io+0x10/0x10 [ 1813.641607] __alloc_pages_nodemask+0x2129/0x2730 [ 1813.646472] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1813.651314] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1813.656157] ? retint_kernel+0x2d/0x2d [ 1813.660046] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1813.665769] ? retint_kernel+0x2d/0x2d [ 1813.667829] syz-executor.3: [ 1813.669659] alloc_pages_current+0xe7/0x1e0 [ 1813.669678] kvm_mmu_create+0xd1/0x1c0 [ 1813.669694] kvm_arch_vcpu_init+0x282/0x890 [ 1813.673053] page allocation failure: order:0 02:41:53 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) set_robust_list(&(0x7f0000000140)={&(0x7f0000000040)={&(0x7f0000000000)}, 0x7, &(0x7f0000000100)={&(0x7f0000000080)}}, 0x18) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) socket$inet6_sctp(0xa, 0x1, 0x84) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x400300, 0x0) sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x20, 0x0, 0xe00, 0x70bd29, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000040}, 0x20000000) ioctl$PERF_EVENT_IOC_RESET(r7, 0x2403, 0xfffe) [ 1813.676997] ? alloc_pages_current+0xef/0x1e0 [ 1813.677012] kvm_vcpu_init+0x26d/0x360 [ 1813.677027] vmx_create_vcpu+0xf5/0x2950 [ 1813.677042] ? __mutex_unlock_slowpath+0x75/0x780 [ 1813.677053] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1813.677111] ? alloc_loaded_vmcs+0x240/0x240 [ 1813.677130] kvm_vm_ioctl+0x4ae/0x1430 [ 1813.686231] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1813.689693] ? __lock_acquire+0x655/0x42a0 [ 1813.689705] ? kvm_vcpu_release+0xa0/0xa0 [ 1813.689715] ? check_preemption_disabled+0x35/0x240 [ 1813.689729] ? retint_kernel+0x2d/0x2d [ 1813.689741] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1813.689753] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1813.689767] ? check_preemption_disabled+0x35/0x240 [ 1813.689777] ? retint_kernel+0x2d/0x2d [ 1813.689790] ? __fget+0x1ff/0x360 [ 1813.689805] ? kvm_vcpu_release+0xa0/0xa0 [ 1813.689819] do_vfs_ioctl+0x75a/0xfe0 [ 1813.696070] (null) [ 1813.698168] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1813.698180] ? ioctl_preallocate+0x1a0/0x1a0 [ 1813.698202] ? security_file_ioctl+0x76/0xb0 [ 1813.698212] ? security_file_ioctl+0x83/0xb0 [ 1813.698224] SyS_ioctl+0x7f/0xb0 [ 1813.698233] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1813.698247] do_syscall_64+0x1d5/0x640 [ 1813.698265] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1813.698277] RIP: 0033:0x45ca59 [ 1813.703734] syz-executor.3 cpuset= [ 1813.707233] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1813.707245] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1813.707251] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1813.707257] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1813.707263] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1813.707270] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1813.867830] warn_alloc_show_mem: 1 callbacks suppressed [ 1813.867847] Mem-Info: [ 1813.871794] / [ 1813.873394] active_anon:447111 inactive_anon:48677 isolated_anon:0 [ 1813.873394] active_file:8216 inactive_file:62046 isolated_file:0 [ 1813.873394] unevictable:2560 dirty:271 writeback:0 unstable:0 [ 1813.873394] slab_reclaimable:125524 slab_unreclaimable:329929 [ 1813.873394] mapped:64484 shmem:38045 pagetables:8715 bounce:0 [ 1813.873394] free:491545 free_pcp:348 free_cma:0 [ 1813.875817] mems_allowed=0-1 [ 1813.883131] syz-executor.2: [ 1813.914776] CPU: 0 PID: 22805 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1813.916239] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1813.918638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1813.918642] Call Trace: [ 1813.918660] dump_stack+0x1b2/0x283 [ 1813.918674] warn_alloc.cold+0x96/0x1af [ 1813.918685] ? zone_watermark_ok_safe+0x250/0x250 [ 1813.918705] ? wait_for_completion_io+0x10/0x10 [ 1813.918722] __alloc_pages_nodemask+0x2129/0x2730 02:41:53 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) r2 = gettid() tkill(r2, 0x3c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r2, 0x0, 0xffffffffffffffff, 0x1) symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000080)='./file0\x00') r3 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r3, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1813.918750] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1813.918761] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1813.918784] ? check_preemption_disabled+0x35/0x240 [ 1813.918801] alloc_pages_current+0xe7/0x1e0 [ 1813.918817] kvm_mmu_create+0xd1/0x1c0 [ 1813.918830] kvm_arch_vcpu_init+0x282/0x890 [ 1813.918840] ? alloc_pages_current+0xef/0x1e0 [ 1813.918853] kvm_vcpu_init+0x26d/0x360 [ 1813.918866] vmx_create_vcpu+0xf5/0x2950 [ 1813.918885] ? alloc_loaded_vmcs+0x240/0x240 [ 1813.918897] ? vmx_create_vcpu+0x2/0x2950 [ 1813.918910] kvm_vm_ioctl+0x4ae/0x1430 [ 1813.918922] ? __lock_acquire+0x655/0x42a0 [ 1813.918932] ? kvm_vcpu_release+0xa0/0xa0 [ 1813.918942] ? check_preemption_disabled+0x35/0x240 [ 1813.918953] ? retint_kernel+0x2d/0x2d [ 1813.918964] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1813.918975] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1813.918987] ? check_preemption_disabled+0x35/0x240 [ 1813.918996] ? retint_kernel+0x2d/0x2d [ 1813.919012] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1813.919023] ? kvm_vcpu_release+0xa0/0xa0 [ 1813.919033] do_vfs_ioctl+0x75a/0xfe0 [ 1813.919047] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1813.919058] ? ioctl_preallocate+0x1a0/0x1a0 [ 1813.919079] ? security_file_ioctl+0x76/0xb0 [ 1813.919090] ? security_file_ioctl+0x83/0xb0 [ 1813.919100] SyS_ioctl+0x7f/0xb0 [ 1813.919108] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1813.919120] do_syscall_64+0x1d5/0x640 [ 1813.919137] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1813.919151] RIP: 0033:0x45ca59 [ 1813.919156] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1813.919167] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1813.919173] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1813.919179] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1813.919184] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1813.919190] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1813.950063] page allocation failure: order:0 [ 1813.957617] Node 1 active_anon:432980kB inactive_anon:35476kB active_file:32844kB inactive_file:248212kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:33276kB dirty:1160kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1813.974961] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1813.975470] Node 0 [ 1813.983680] (null) 02:41:53 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0xe) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1813.988679] DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1813.991735] syz-executor.2 cpuset= [ 1813.997181] lowmem_reserve[]: [ 1814.002725] / [ 1814.013571] 0 [ 1814.022883] mems_allowed=0-1 [ 1814.032701] 2559 [ 1814.041373] CPU: 0 PID: 22855 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1814.056784] 2559 [ 1814.060570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1814.060574] Call Trace: [ 1814.060595] dump_stack+0x1b2/0x283 [ 1814.065601] 2559 [ 1814.070329] warn_alloc.cold+0x96/0x1af [ 1814.070339] ? zone_watermark_ok_safe+0x250/0x250 [ 1814.070357] ? wait_for_completion_io+0x10/0x10 [ 1814.070372] __alloc_pages_nodemask+0x2129/0x2730 [ 1814.070398] ? retint_kernel+0x2d/0x2d [ 1814.070408] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1814.070419] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1814.070429] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1814.070460] alloc_pages_current+0xe7/0x1e0 [ 1814.070476] kvm_mmu_create+0xd1/0x1c0 [ 1814.070489] kvm_arch_vcpu_init+0x282/0x890 [ 1814.070499] ? alloc_pages_current+0xef/0x1e0 02:41:53 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) [ 1814.070512] kvm_vcpu_init+0x26d/0x360 [ 1814.070526] vmx_create_vcpu+0xf5/0x2950 [ 1814.070540] ? __mutex_unlock_slowpath+0x75/0x780 [ 1814.070550] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1814.070562] ? alloc_loaded_vmcs+0x240/0x240 [ 1814.070579] kvm_vm_ioctl+0x4ae/0x1430 [ 1814.070590] ? __lock_acquire+0x655/0x42a0 [ 1814.070601] ? kvm_vcpu_release+0xa0/0xa0 [ 1814.070610] ? retint_kernel+0x2d/0x2d [ 1814.070623] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1814.070639] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1814.100265] 2559 [ 1814.101392] ? check_preemption_disabled+0x35/0x240 [ 1814.101403] ? retint_kernel+0x2d/0x2d [ 1814.101421] ? selinux_file_ioctl+0x83/0x560 [ 1814.110215] ? selinux_file_ioctl+0xb8/0x560 [ 1814.110225] ? kvm_vcpu_release+0xa0/0xa0 [ 1814.110236] do_vfs_ioctl+0x75a/0xfe0 [ 1814.110247] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1814.110257] ? ioctl_preallocate+0x1a0/0x1a0 [ 1814.110278] ? security_file_ioctl+0x76/0xb0 [ 1814.110286] ? security_file_ioctl+0x83/0xb0 [ 1814.110297] SyS_ioctl+0x7f/0xb0 [ 1814.110305] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1814.110318] do_syscall_64+0x1d5/0x640 [ 1814.110335] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1814.110343] RIP: 0033:0x45ca59 [ 1814.110348] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1814.110359] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1814.110365] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1814.110370] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1814.110376] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1814.110383] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1814.504970] Node 0 DMA32 free:35496kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:316kB local_pcp:176kB free_cma:0kB [ 1814.536373] lowmem_reserve[]: 0 0 0 0 0 [ 1814.540384] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1814.582193] lowmem_reserve[]: 0 0 0 0 0 [ 1814.586262] Node 1 Normal free:1917932kB min:53592kB low:66988kB high:80384kB active_anon:433080kB inactive_anon:35476kB active_file:32844kB inactive_file:248212kB unevictable:0kB writepending:1160kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3392kB pagetables:6756kB bounce:0kB free_pcp:1232kB local_pcp:508kB free_cma:0kB [ 1814.617234] lowmem_reserve[]: 0 0 0 0 0 [ 1814.621271] Node 0 DMA: 5*4kB (UM) 4*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB [ 1814.653129] Node 0 DMA32: 1166*4kB (UMEH) 648*8kB (UMEH) 115*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35496kB [ 1814.669722] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1814.681115] Node 1 Normal: 36*4kB (UME) 692*8kB (UME) 99*16kB (UME) 528*32kB (UME) 203*64kB (UME) 19*128kB (UME) 33*256kB (UM) 12*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1918880kB [ 1814.703366] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1814.717868] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1814.730132] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1814.736179] syz-executor.0: [ 1814.741240] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1814.757306] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1814.762842] 79044 total pagecache pages [ 1814.773235] 0 pages in swap cache [ 1814.773266] syz-executor.2 cpuset= [ 1814.779395] page allocation failure: order:0 [ 1814.782864] Swap cache stats: add 0, delete 0, find 0/0 [ 1814.784220] / [ 1814.789871] Free swap = 0kB [ 1814.796387] mems_allowed=0-1 [ 1814.801027] CPU: 0 PID: 22855 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1814.804502] Total swap = 0kB [ 1814.808899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1814.808903] Call Trace: [ 1814.808922] dump_stack+0x1b2/0x283 [ 1814.808938] warn_alloc.cold+0x96/0x1af [ 1814.808955] ? zone_watermark_ok_safe+0x250/0x250 [ 1814.808973] ? wait_for_completion_io+0x10/0x10 [ 1814.808989] __alloc_pages_nodemask+0x2129/0x2730 [ 1814.809014] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1814.809024] ? retint_kernel+0x2d/0x2d [ 1814.809056] alloc_pages_current+0xe7/0x1e0 [ 1814.823359] 1965979 pages RAM [ 1814.824074] kvm_mmu_create+0xd1/0x1c0 [ 1814.824090] kvm_arch_vcpu_init+0x282/0x890 [ 1814.824103] ? alloc_pages_current+0xef/0x1e0 [ 1814.824120] kvm_vcpu_init+0x26d/0x360 [ 1814.827947] 0 pages HighMem/MovableOnly [ 1814.831688] vmx_create_vcpu+0xf5/0x2950 [ 1814.831709] ? __mutex_unlock_slowpath+0x75/0x780 [ 1814.831720] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1814.831733] ? alloc_loaded_vmcs+0x240/0x240 [ 1814.831751] kvm_vm_ioctl+0x4ae/0x1430 [ 1814.848463] 338456 pages reserved [ 1814.850915] ? __lock_acquire+0x655/0x42a0 [ 1814.850929] ? kvm_vcpu_release+0xa0/0xa0 [ 1814.850940] ? check_preemption_disabled+0x35/0x240 [ 1814.850960] ? perf_trace_lock+0x109/0x4b0 [ 1814.854990] 0 pages cma reserved [ 1814.859316] ? check_preemption_disabled+0x35/0x240 [ 1814.859339] ? perf_trace_lock+0x109/0x4b0 [ 1814.859348] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1814.859358] ? futex_exit_release+0x60/0x60 [ 1814.859371] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1814.859383] ? retint_kernel+0x2d/0x2d 02:41:54 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) [ 1814.859395] ? kvm_vcpu_release+0xa0/0xa0 [ 1814.859405] do_vfs_ioctl+0x75a/0xfe0 [ 1814.859418] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1814.859429] ? ioctl_preallocate+0x1a0/0x1a0 [ 1814.859454] ? security_file_ioctl+0x76/0xb0 [ 1814.859462] ? security_file_ioctl+0x83/0xb0 [ 1814.859473] SyS_ioctl+0x7f/0xb0 [ 1814.859481] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1814.859493] do_syscall_64+0x1d5/0x640 [ 1814.859509] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1814.859518] RIP: 0033:0x45ca59 [ 1814.859523] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1814.859534] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1814.859538] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1814.859546] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1814.978872] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1814.979151] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1814.979157] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1815.015297] warn_alloc_show_mem: 2 callbacks suppressed [ 1815.015315] Mem-Info: [ 1815.062141] (null) [ 1815.063412] active_anon:447112 inactive_anon:48677 isolated_anon:0 [ 1815.063412] active_file:8215 inactive_file:62071 isolated_file:0 [ 1815.063412] unevictable:2560 dirty:311 writeback:0 unstable:0 [ 1815.063412] slab_reclaimable:125514 slab_unreclaimable:330043 [ 1815.063412] mapped:64500 shmem:38045 pagetables:8724 bounce:0 [ 1815.063412] free:491237 free_pcp:401 free_cma:0 [ 1815.105707] syz-executor.0 cpuset=/ mems_allowed=0-1 [ 1815.106581] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:16kB inactive_file:4kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1815.114803] CPU: 1 PID: 22877 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1815.139819] Node 1 active_anon:433056kB inactive_anon:35476kB active_file:32844kB inactive_file:248280kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:33388kB dirty:1244kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1815.147224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1815.147229] Call Trace: [ 1815.147247] dump_stack+0x1b2/0x283 [ 1815.147263] warn_alloc.cold+0x96/0x1af [ 1815.147273] ? zone_watermark_ok_safe+0x250/0x250 [ 1815.147292] ? wait_for_completion_io+0x10/0x10 [ 1815.147309] __alloc_pages_nodemask+0x2129/0x2730 [ 1815.147338] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1815.147348] ? mark_held_locks+0xa6/0xf0 [ 1815.147358] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1815.147369] ? retint_kernel+0x2d/0x2d [ 1815.147388] ? retint_kernel+0x2d/0x2d [ 1815.175630] Node 0 [ 1815.184817] alloc_pages_current+0xe7/0x1e0 [ 1815.184834] kvm_mmu_create+0xd1/0x1c0 [ 1815.184848] kvm_arch_vcpu_init+0x282/0x890 [ 1815.184858] ? alloc_pages_current+0xef/0x1e0 [ 1815.184871] kvm_vcpu_init+0x26d/0x360 [ 1815.187574] DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1815.191063] vmx_create_vcpu+0xf5/0x2950 [ 1815.191081] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1815.191092] ? alloc_loaded_vmcs+0x240/0x240 [ 1815.191109] kvm_vm_ioctl+0x4ae/0x1430 [ 1815.195154] lowmem_reserve[]: [ 1815.199885] ? __lock_acquire+0x655/0x42a0 02:41:54 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$GIO_FONT(r4, 0x4b60, &(0x7f0000000080)=""/142) socket$netlink(0x10, 0x3, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f0000000140)={0x4, 0x70, 0xf7, 0x2, 0x8, 0x80, 0x0, 0xffffffff, 0x8, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x4, 0x4, @perf_config_ext={0x6, 0x101}, 0x3408, 0x20, 0x4, 0x2, 0x9, 0x6, 0x100}) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1815.199897] ? kvm_vcpu_release+0xa0/0xa0 [ 1815.199911] ? check_preemption_disabled+0x35/0x240 [ 1815.199924] ? perf_trace_lock+0x109/0x4b0 [ 1815.199938] ? check_preemption_disabled+0x35/0x240 [ 1815.204668] 0 [ 1815.209409] ? perf_trace_lock+0x109/0x4b0 [ 1815.209418] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1815.209431] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1815.209443] ? retint_kernel+0x2d/0x2d [ 1815.209455] ? kvm_vcpu_release+0xa0/0xa0 [ 1815.209467] do_vfs_ioctl+0x75a/0xfe0 [ 1815.214376] 2559 [ 1815.218332] ? check_preemption_disabled+0x35/0x240 [ 1815.218342] ? ioctl_preallocate+0x1a0/0x1a0 [ 1815.218359] ? do_vfs_ioctl+0x1f/0xfe0 [ 1815.218374] SyS_ioctl+0x7f/0xb0 [ 1815.218380] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1815.218396] do_syscall_64+0x1d5/0x640 [ 1815.223322] 2559 [ 1815.227114] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1815.227123] RIP: 0033:0x45ca59 [ 1815.227128] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1815.227139] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1815.227145] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1815.227151] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1815.227157] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1815.227166] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1815.231111] 2559 2559 [ 1815.441646] Node 0 DMA32 free:35496kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:4kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:344kB local_pcp:140kB free_cma:0kB [ 1815.472098] lowmem_reserve[]: 0 0 0 0 0 [ 1815.476183] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1815.501968] lowmem_reserve[]: 0 0 0 0 0 [ 1815.506059] Node 1 Normal free:1919208kB min:53592kB low:66988kB high:80384kB active_anon:432856kB inactive_anon:35476kB active_file:32844kB inactive_file:248280kB unevictable:0kB writepending:1244kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3168kB pagetables:6540kB bounce:0kB free_pcp:1236kB local_pcp:732kB free_cma:0kB [ 1815.544025] lowmem_reserve[]: 0 0 0 0 0 02:41:55 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) dup(0xffffffffffffffff) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r1, r2, 0x80000) 02:41:55 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) [ 1815.558165] Node 0 DMA: 5*4kB (UM) 4*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB [ 1815.582911] Node 0 DMA32: 1166*4kB (UMEH) 651*8kB (UMEH) 115*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35520kB [ 1815.599459] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1815.621200] Node 1 Normal: 97*4kB (UME) 683*8kB (UME) 121*16kB (UME) 534*32kB (UME) 202*64kB (UME) 26*128kB (UME) 34*256kB (UM) 12*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1920684kB [ 1815.639682] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1815.649837] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1815.661619] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1815.672949] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1815.682361] 79056 total pagecache pages [ 1815.703909] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1815.709599] 0 pages in swap cache [ 1815.715560] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1815.735655] CPU: 1 PID: 22898 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1815.740758] Swap cache stats: add 0, delete 0, find 0/0 [ 1815.743528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1815.743533] Call Trace: [ 1815.743549] dump_stack+0x1b2/0x283 [ 1815.743564] warn_alloc.cold+0x96/0x1af [ 1815.762491] Free swap = 0kB [ 1815.764474] ? zone_watermark_ok_safe+0x250/0x250 [ 1815.764495] ? wait_for_completion_io+0x10/0x10 [ 1815.768526] Total swap = 0kB [ 1815.771450] __alloc_pages_nodemask+0x2129/0x2730 [ 1815.771478] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1815.782575] 1965979 pages RAM [ 1815.783943] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1815.783956] ? retint_kernel+0x2d/0x2d [ 1815.790214] 0 pages HighMem/MovableOnly [ 1815.793628] ? retint_kernel+0x2d/0x2d [ 1815.793647] alloc_pages_current+0xe7/0x1e0 [ 1815.798122] 338456 pages reserved [ 1815.801563] kvm_mmu_create+0xd1/0x1c0 [ 1815.801576] kvm_arch_vcpu_init+0x282/0x890 [ 1815.805466] 0 pages cma reserved [ 1815.809406] ? alloc_pages_current+0xef/0x1e0 [ 1815.809420] kvm_vcpu_init+0x26d/0x360 [ 1815.809434] vmx_create_vcpu+0xf5/0x2950 [ 1815.809452] ? alloc_loaded_vmcs+0x240/0x240 [ 1815.809463] ? vmx_create_vcpu+0x2/0x2950 [ 1815.809476] kvm_vm_ioctl+0x4ae/0x1430 [ 1815.857486] ? __lock_acquire+0x655/0x42a0 [ 1815.861734] ? kvm_vcpu_release+0xa0/0xa0 [ 1815.865884] ? retint_kernel+0x2d/0x2d [ 1815.869772] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1815.874790] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1815.879549] ? check_preemption_disabled+0x35/0x240 [ 1815.884563] ? retint_kernel+0x2d/0x2d [ 1815.888566] ? selinux_file_ioctl+0x19a/0x560 [ 1815.893155] ? selinux_file_ioctl+0x22c/0x560 [ 1815.897651] ? kvm_vcpu_release+0xa0/0xa0 [ 1815.901800] do_vfs_ioctl+0x75a/0xfe0 [ 1815.905601] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1815.911226] ? ioctl_preallocate+0x1a0/0x1a0 [ 1815.915645] ? security_file_ioctl+0x76/0xb0 [ 1815.920045] ? security_file_ioctl+0x83/0xb0 [ 1815.924455] SyS_ioctl+0x7f/0xb0 02:41:55 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 02:41:55 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1815.927818] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1815.931797] do_syscall_64+0x1d5/0x640 [ 1815.935685] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1815.940872] RIP: 0033:0x45ca59 [ 1815.944059] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1815.951770] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1815.959055] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1815.966322] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1815.973612] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1815.980884] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 02:41:55 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x0, 0x0, 0x38, 0x9, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x89f7, 0x0) r7 = socket$inet(0x2, 0x3, 0x2) getsockopt(r7, 0x0, 0xce, 0x0, &(0x7f0000000000)) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r7) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) r8 = socket$inet(0x2, 0x3, 0x2) getsockopt(r8, 0x0, 0xce, 0x0, &(0x7f0000000000)) dup3(r2, r8, 0x80000) dup2(r1, r4) [ 1816.137208] warn_alloc_show_mem: 1 callbacks suppressed [ 1816.137225] Mem-Info: [ 1816.145282] active_anon:447066 inactive_anon:48677 isolated_anon:0 [ 1816.145282] active_file:8216 inactive_file:62080 isolated_file:0 [ 1816.145282] unevictable:2560 dirty:321 writeback:0 unstable:0 [ 1816.145282] slab_reclaimable:125560 slab_unreclaimable:329912 [ 1816.145282] mapped:64517 shmem:38045 pagetables:8699 bounce:0 [ 1816.145282] free:491540 free_pcp:394 free_cma:0 [ 1816.150056] warn_alloc: 1 callbacks suppressed [ 1816.150087] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1816.190587] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1816.198628] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1816.198730] CPU: 0 PID: 22951 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1816.198737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1816.198741] Call Trace: [ 1816.198760] dump_stack+0x1b2/0x283 [ 1816.198776] warn_alloc.cold+0x96/0x1af [ 1816.198788] ? zone_watermark_ok_safe+0x250/0x250 [ 1816.198799] ? check_preemption_disabled+0x35/0x240 [ 1816.198810] ? retint_kernel+0x2d/0x2d [ 1816.198832] __alloc_pages_nodemask+0x2129/0x2730 02:41:55 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x80002, 0x0) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000140)={0xffffffffffffffff, &(0x7f0000000240)="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", &(0x7f0000001240)=""/116}, 0x20) sendto$inet6(r2, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) ioctl$KVM_X86_SETUP_MCE(r0, 0x4008ae9c, &(0x7f0000000080)={0x19, 0x3, 0x2}) sendmmsg$inet6(r2, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000000)=0x7, 0x4) r3 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r3, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r4 = socket$inet(0x2, 0x3, 0x2) getsockopt(r4, 0x0, 0xce, 0x0, &(0x7f0000000000)) tee(r4, r0, 0xabe4, 0x8) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1816.198860] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1816.198869] ? retint_kernel+0x2d/0x2d [ 1816.198880] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1816.198890] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1816.198920] alloc_pages_current+0xe7/0x1e0 [ 1816.198934] kvm_mmu_create+0xd1/0x1c0 [ 1816.198948] kvm_arch_vcpu_init+0x282/0x890 [ 1816.198958] ? alloc_pages_current+0xef/0x1e0 [ 1816.198970] kvm_vcpu_init+0x26d/0x360 [ 1816.198985] vmx_create_vcpu+0xf5/0x2950 [ 1816.198998] ? __mutex_unlock_slowpath+0x75/0x780 [ 1816.199008] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1816.199020] ? alloc_loaded_vmcs+0x240/0x240 [ 1816.199037] kvm_vm_ioctl+0x4ae/0x1430 [ 1816.199048] ? __lock_acquire+0x655/0x42a0 [ 1816.199058] ? kvm_vcpu_release+0xa0/0xa0 [ 1816.199068] ? check_preemption_disabled+0x35/0x240 [ 1816.199080] ? perf_trace_lock+0x109/0x4b0 [ 1816.199092] ? check_preemption_disabled+0x35/0x240 [ 1816.199103] ? perf_trace_lock+0x109/0x4b0 [ 1816.199111] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1816.199128] ? perf_trace_lock_acquire+0x4b0/0x4b0 02:41:55 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) [ 1816.243060] Node 1 active_anon:432772kB inactive_anon:35476kB active_file:32844kB inactive_file:248320kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:33456kB dirty:1284kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1816.249816] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1816.249829] ? retint_kernel+0x2d/0x2d [ 1816.249841] ? kvm_vcpu_release+0xa0/0xa0 [ 1816.249851] do_vfs_ioctl+0x75a/0xfe0 [ 1816.249864] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1816.249875] ? ioctl_preallocate+0x1a0/0x1a0 [ 1816.249884] ? retint_kernel+0x2d/0x2d [ 1816.249895] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1816.249912] ? security_file_ioctl+0x76/0xb0 [ 1816.249921] ? security_file_ioctl+0x83/0xb0 [ 1816.249931] SyS_ioctl+0x7f/0xb0 [ 1816.249938] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1816.249950] do_syscall_64+0x1d5/0x640 [ 1816.249966] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1816.249974] RIP: 0033:0x45ca59 [ 1816.249979] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1816.249990] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1816.249995] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1816.250001] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1816.250007] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1816.250013] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1816.521139] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1816.548198] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1816.553741] Node 0 DMA32 free:35520kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:344kB local_pcp:204kB free_cma:0kB [ 1816.596697] lowmem_reserve[]: 0 0 0 0 0 [ 1816.605126] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1816.642126] lowmem_reserve[]: 0 0 0 0 0 [ 1816.651674] Node 1 Normal free:1918004kB min:53592kB low:66988kB high:80384kB active_anon:433072kB inactive_anon:35476kB active_file:32844kB inactive_file:248320kB unevictable:0kB writepending:1284kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3424kB pagetables:6736kB bounce:0kB free_pcp:1064kB local_pcp:656kB free_cma:0kB [ 1816.684029] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1816.689612] lowmem_reserve[]: 0 0 0 0 0 02:41:56 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1816.705801] Node 0 DMA: 5*4kB [ 1816.710230] syz-executor.0 cpuset= [ 1816.712503] (UM) [ 1816.714228] / [ 1816.721488] 4*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB [ 1816.734781] mems_allowed=0-1 [ 1816.740894] Node 0 DMA32: 1166*4kB (UMEH) 654*8kB (UMEH) 115*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35544kB [ 1816.742030] CPU: 0 PID: 22962 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1816.760413] Node 0 [ 1816.765797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1816.765801] Call Trace: [ 1816.765820] dump_stack+0x1b2/0x283 [ 1816.765839] warn_alloc.cold+0x96/0x1af [ 1816.770757] Normal: [ 1816.777407] ? zone_watermark_ok_safe+0x250/0x250 [ 1816.777426] ? wait_for_completion_io+0x10/0x10 [ 1816.777441] __alloc_pages_nodemask+0x2129/0x2730 [ 1816.777470] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1816.777481] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1816.777512] alloc_pages_current+0xe7/0x1e0 [ 1816.777527] kvm_mmu_create+0xd1/0x1c0 [ 1816.777540] kvm_arch_vcpu_init+0x282/0x890 [ 1816.777550] ? alloc_pages_current+0xef/0x1e0 [ 1816.777563] kvm_vcpu_init+0x26d/0x360 [ 1816.777577] vmx_create_vcpu+0xf5/0x2950 [ 1816.777591] ? __mutex_unlock_slowpath+0x75/0x780 [ 1816.777600] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1816.777613] ? alloc_loaded_vmcs+0x240/0x240 [ 1816.777629] kvm_vm_ioctl+0x4ae/0x1430 [ 1816.777642] ? __lock_acquire+0x655/0x42a0 [ 1816.777652] ? kvm_vcpu_release+0xa0/0xa0 [ 1816.777663] ? check_preemption_disabled+0x35/0x240 [ 1816.777675] ? perf_trace_lock+0x109/0x4b0 [ 1816.777687] ? check_preemption_disabled+0x35/0x240 [ 1816.777699] ? perf_trace_lock+0x109/0x4b0 [ 1816.777707] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1816.777714] ? futex_exit_release+0x60/0x60 [ 1816.777725] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1816.777735] ? retint_kernel+0x2d/0x2d [ 1816.777747] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1816.777756] ? kvm_vcpu_release+0xa0/0xa0 [ 1816.777767] do_vfs_ioctl+0x75a/0xfe0 [ 1816.777780] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1816.777787] ? check_preemption_disabled+0x35/0x240 [ 1816.777798] ? ioctl_preallocate+0x1a0/0x1a0 [ 1816.777820] ? security_file_ioctl+0x76/0xb0 [ 1816.777835] ? security_file_ioctl+0x83/0xb0 [ 1816.777848] SyS_ioctl+0x7f/0xb0 [ 1816.788363] 0*4kB [ 1816.790313] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1816.790328] do_syscall_64+0x1d5/0x640 [ 1816.790347] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1816.790359] RIP: 0033:0x45ca59 [ 1816.806303] 0*8kB [ 1816.809529] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1816.809540] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1816.809545] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1816.809551] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1816.809557] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1816.809563] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1816.853162] syz-executor.3: [ 1816.861036] 0*16kB [ 1816.868816] page allocation failure: order:0 [ 1816.874033] 0*32kB [ 1816.883115] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1816.888751] 0*64kB [ 1816.897884] (null) [ 1816.897910] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1816.898040] CPU: 0 PID: 22923 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1816.898046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1816.898055] Call Trace: [ 1816.906417] 0*128kB [ 1816.906854] dump_stack+0x1b2/0x283 [ 1816.906869] warn_alloc.cold+0x96/0x1af [ 1816.911963] 0*256kB [ 1816.915993] ? zone_watermark_ok_safe+0x250/0x250 [ 1816.916014] ? wait_for_completion_io+0x10/0x10 [ 1816.916032] __alloc_pages_nodemask+0x2129/0x2730 [ 1816.923614] 0*512kB [ 1816.925436] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1816.925448] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1816.932053] 0*1024kB [ 1816.934856] alloc_pages_current+0xe7/0x1e0 [ 1816.934873] kvm_mmu_create+0xd1/0x1c0 [ 1816.940927] 0*2048kB [ 1816.943665] kvm_arch_vcpu_init+0x282/0x890 [ 1816.943678] ? alloc_pages_current+0xef/0x1e0 [ 1816.943693] kvm_vcpu_init+0x26d/0x360 [ 1816.949189] 0*4096kB [ 1816.949300] vmx_create_vcpu+0xf5/0x2950 [ 1816.949316] ? __mutex_unlock_slowpath+0x75/0x780 [ 1816.953350] = 0kB [ 1816.957153] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1816.957167] ? alloc_loaded_vmcs+0x240/0x240 [ 1816.957182] kvm_vm_ioctl+0x4ae/0x1430 [ 1816.957195] ? __lock_acquire+0x655/0x42a0 [ 1816.957206] ? kvm_vcpu_release+0xa0/0xa0 [ 1816.957217] ? check_preemption_disabled+0x35/0x240 [ 1816.957228] ? retint_kernel+0x2d/0x2d [ 1816.957239] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1816.957251] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1816.957263] ? check_preemption_disabled+0x35/0x240 [ 1816.957273] ? retint_kernel+0x2d/0x2d [ 1816.957291] ? do_vfs_ioctl+0x76/0xfe0 [ 1816.957301] ? kvm_vcpu_release+0xa0/0xa0 [ 1816.957311] do_vfs_ioctl+0x75a/0xfe0 [ 1816.957324] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 02:41:56 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x7, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89}}) ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000000)={[{0x97f6, 0xffff, 0x1, 0x80, 0x1, 0xc, 0x0, 0x2, 0x1, 0x76, 0x3, 0x9, 0x100000000}, {0x8, 0x9, 0x0, 0xa6, 0x48, 0x3, 0xf7, 0x8, 0xc0, 0x0, 0x3f, 0xfd, 0x7ff}, {0xae1, 0x2ff, 0x3f, 0x40, 0x4, 0x2f, 0x81, 0x81, 0x3, 0x3, 0x82, 0x1, 0x800}], 0x7ff}) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x8080, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000080)={0x2, r2, 0x1}) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r4, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r3, 0x0, r5, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1816.957336] ? ioctl_preallocate+0x1a0/0x1a0 [ 1816.972342] Node 1 [ 1816.975519] ? security_file_ioctl+0x76/0xb0 [ 1816.975529] ? security_file_ioctl+0x83/0xb0 [ 1816.975543] SyS_ioctl+0x7f/0xb0 [ 1816.982985] Normal: [ 1816.990044] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1816.990058] do_syscall_64+0x1d5/0x640 [ 1816.990076] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1816.990083] RIP: 0033:0x45ca59 [ 1816.990089] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1816.990100] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1816.990105] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1816.990111] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1816.990116] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1816.990122] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1817.166554] syz-executor.2: [ 1817.177767] 44*4kB [ 1817.192820] page allocation failure: order:0 [ 1817.193941] (UE) [ 1817.203947] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1817.210136] 484*8kB [ 1817.213378] (null) [ 1817.215609] (UE) [ 1817.256277] syz-executor.2 cpuset= [ 1817.265071] 320*16kB [ 1817.277411] / [ 1817.279224] (UME) [ 1817.285164] mems_allowed=0-1 [ 1817.296610] 528*32kB [ 1817.305352] CPU: 0 PID: 22951 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1817.311393] (UME) [ 1817.312689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1817.312694] Call Trace: [ 1817.312713] dump_stack+0x1b2/0x283 [ 1817.312729] warn_alloc.cold+0x96/0x1af [ 1817.314936] 201*64kB [ 1817.316902] ? zone_watermark_ok_safe+0x250/0x250 [ 1817.316921] ? wait_for_completion_io+0x10/0x10 [ 1817.316937] __alloc_pages_nodemask+0x2129/0x2730 [ 1817.316965] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1817.316975] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1817.317007] alloc_pages_current+0xe7/0x1e0 [ 1817.317022] kvm_mmu_create+0xd1/0x1c0 [ 1817.317036] kvm_arch_vcpu_init+0x282/0x890 [ 1817.317045] ? alloc_pages_current+0xef/0x1e0 [ 1817.317058] kvm_vcpu_init+0x26d/0x360 [ 1817.317073] vmx_create_vcpu+0xf5/0x2950 [ 1817.317086] ? __mutex_unlock_slowpath+0x75/0x780 [ 1817.317099] ? alloc_loaded_vmcs+0x240/0x240 [ 1817.317116] kvm_vm_ioctl+0x4ae/0x1430 [ 1817.317129] ? __lock_acquire+0x655/0x42a0 [ 1817.317140] ? kvm_vcpu_release+0xa0/0xa0 [ 1817.317151] ? check_preemption_disabled+0x35/0x240 [ 1817.317163] ? retint_kernel+0x2d/0x2d [ 1817.317175] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1817.317184] ? check_preemption_disabled+0x35/0x240 [ 1817.317196] ? perf_trace_lock+0x109/0x4b0 [ 1817.317204] ? check_preemption_disabled+0x35/0x240 [ 1817.317220] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1817.327337] (UME) [ 1817.330058] ? kvm_vcpu_release+0xa0/0xa0 [ 1817.330070] do_vfs_ioctl+0x75a/0xfe0 [ 1817.330088] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1817.340450] 7*128kB [ 1817.342479] ? ioctl_preallocate+0x1a0/0x1a0 [ 1817.342503] ? security_file_ioctl+0x76/0xb0 [ 1817.342514] ? security_file_ioctl+0x83/0xb0 [ 1817.352087] (UME) [ 1817.354422] SyS_ioctl+0x7f/0xb0 [ 1817.354432] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1817.354445] do_syscall_64+0x1d5/0x640 [ 1817.354463] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1817.363974] 25*256kB [ 1817.364410] RIP: 0033:0x45ca59 [ 1817.364418] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 [ 1817.370437] (UM) [ 1817.373885] ORIG_RAX: 0000000000000010 [ 1817.373892] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1817.373898] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1817.373903] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1817.373909] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1817.373915] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1817.390121] warn_alloc_show_mem: 3 callbacks suppressed [ 1817.390201] Mem-Info: [ 1817.398449] 13*512kB [ 1817.406904] active_anon:447094 inactive_anon:48677 isolated_anon:0 [ 1817.406904] active_file:8216 inactive_file:62086 isolated_file:0 [ 1817.406904] unevictable:2560 dirty:336 writeback:0 unstable:0 [ 1817.406904] slab_reclaimable:125532 slab_unreclaimable:330246 [ 1817.406904] mapped:64520 shmem:38045 pagetables:8704 bounce:0 [ 1817.406904] free:491118 free_pcp:404 free_cma:0 [ 1817.406968] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1817.412623] (UME) [ 1817.415116] Node 1 active_anon:432984kB inactive_anon:35476kB active_file:32844kB inactive_file:248344kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:33468kB dirty:1344kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1817.421040] 3*1024kB [ 1817.428722] Node 0 [ 1817.433757] (UM) [ 1817.438166] DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1817.450751] 1*2048kB [ 1817.452300] lowmem_reserve[]: [ 1817.459240] (U) [ 1817.463963] 0 [ 1817.468917] 454*4096kB [ 1817.474175] 2559 [ 1817.479665] (M) [ 1817.484560] 2559 [ 1817.493252] = 1917584kB [ 1817.495145] 2559 [ 1817.502407] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1817.508648] 2559 [ 1817.511159] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1817.521842] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1817.523481] Node 0 [ 1817.525873] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1817.530101] DMA32 free:35544kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:352kB local_pcp:140kB free_cma:0kB [ 1817.549683] 79077 total pagecache pages [ 1817.556473] lowmem_reserve[]: [ 1817.570959] 0 pages in swap cache [ 1817.581044] 0 [ 1817.589302] Swap cache stats: add 0, delete 0, find 0/0 [ 1817.634874] 0 [ 1817.674550] Free swap = 0kB [ 1817.699442] 0 [ 1817.763164] Total swap = 0kB [ 1817.771422] 0 [ 1817.784025] 1965979 pages RAM [ 1817.813786] 0 [ 1817.816544] 0 pages HighMem/MovableOnly [ 1817.820972] 338456 pages reserved [ 1817.822875] Node 0 [ 1817.838070] 0 pages cma reserved 02:41:57 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1817.839086] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1817.884763] lowmem_reserve[]: 0 0 0 0 0 [ 1817.889030] Node 1 Normal free:1918024kB min:53592kB low:66988kB high:80384kB active_anon:432984kB inactive_anon:35476kB active_file:32844kB inactive_file:248344kB unevictable:0kB writepending:1344kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3392kB pagetables:6756kB bounce:0kB free_pcp:780kB local_pcp:232kB free_cma:0kB [ 1817.923483] lowmem_reserve[]: 0 0 0 0 0 [ 1817.928081] Node 0 DMA: 5*4kB (UM) 4*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB [ 1817.960378] Node 0 DMA32: 1166*4kB (UMEH) 657*8kB (UMEH) 115*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35568kB [ 1817.989589] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1818.000790] Node 1 Normal: 95*4kB (UME) 504*8kB (UE) 337*16kB (UME) 535*32kB (UME) 201*64kB (UME) 19*128kB (UME) 26*256kB (UM) 13*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1920236kB [ 1818.033774] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1818.043132] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1818.057072] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 02:41:57 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) 02:41:57 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) [ 1818.067789] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1818.077592] 79088 total pagecache pages [ 1818.081711] 0 pages in swap cache [ 1818.085274] Swap cache stats: add 0, delete 0, find 0/0 [ 1818.093496] Free swap = 0kB [ 1818.098128] Total swap = 0kB [ 1818.101258] 1965979 pages RAM [ 1818.104445] 0 pages HighMem/MovableOnly [ 1818.110516] 338456 pages reserved [ 1818.128675] 0 pages cma reserved 02:41:57 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) dup(0xffffffffffffffff) ioctl$KVM_RUN(r4, 0xae80, 0x0) 02:41:57 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x6, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xb47cc05a70fef922, 0x2, 0x0, 0x0, 0x20000000, 0x0, 0x101}, 0x0, 0xa, 0xffffffffffffffff, 0x9) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000000040)=0x20) ioctl$KVM_RUN(r4, 0xae80, 0x0) r7 = dup3(r2, r3, 0x80000) setsockopt$inet_dccp_buf(r7, 0x21, 0x5, &(0x7f0000000100)="4eeff919046865e6dc1e8fb5309657eb47a0993e990ff33bff00e5b8bf21bab0f307861162e1e0f34cef10d4023a15e2efed7682a1274f6b4bbf9bf9e94e54ea1b76c2b3460d96d2468859229205975df796221575a2c664ec9de208136607e82eb28af2235f15e8c8ac89992fb9c0671114c1618caf3831db30673c9b60070bbdade83c", 0x84) dup2(r1, r4) 02:41:57 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r3) r4 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r5) setresuid(r3, r5, 0xffffffffffffffff) r6 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r6, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r6, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) r7 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x0, 0x0) getsockname$tipc(r7, &(0x7f0000000080)=@name, &(0x7f00000000c0)=0x10) [ 1818.329629] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1818.341075] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1818.365224] CPU: 0 PID: 23030 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 02:41:57 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1818.373134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1818.382493] Call Trace: [ 1818.385081] dump_stack+0x1b2/0x283 [ 1818.388723] warn_alloc.cold+0x96/0x1af [ 1818.392702] ? zone_watermark_ok_safe+0x250/0x250 [ 1818.397561] ? wait_for_completion_io+0x10/0x10 [ 1818.402238] __alloc_pages_nodemask+0x2129/0x2730 [ 1818.407102] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1818.411947] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1818.416809] ? do_raw_spin_unlock+0x164/0x250 [ 1818.421307] alloc_pages_current+0xe7/0x1e0 [ 1818.425639] kvm_mmu_create+0xd1/0x1c0 [ 1818.429528] kvm_arch_vcpu_init+0x282/0x890 [ 1818.433854] ? alloc_pages_current+0xef/0x1e0 [ 1818.438352] kvm_vcpu_init+0x26d/0x360 [ 1818.442240] vmx_create_vcpu+0xf5/0x2950 [ 1818.446303] ? __mutex_unlock_slowpath+0x75/0x780 [ 1818.451145] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1818.456168] ? alloc_loaded_vmcs+0x240/0x240 [ 1818.460577] kvm_vm_ioctl+0x4ae/0x1430 [ 1818.461497] syz-executor.0: [ 1818.464460] ? __lock_acquire+0x655/0x42a0 [ 1818.464472] ? kvm_vcpu_release+0xa0/0xa0 [ 1818.464483] ? check_preemption_disabled+0x35/0x240 [ 1818.464497] ? perf_trace_lock+0x109/0x4b0 [ 1818.467817] page allocation failure: order:0 [ 1818.471741] ? check_preemption_disabled+0x35/0x240 [ 1818.471755] ? perf_trace_lock+0x109/0x4b0 [ 1818.471764] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1818.471773] ? futex_exit_release+0x60/0x60 [ 1818.471785] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1818.512877] ? lock_acquire+0x170/0x3f0 [ 1818.516858] ? kvm_vcpu_release+0xa0/0xa0 [ 1818.521010] do_vfs_ioctl+0x75a/0xfe0 [ 1818.524812] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1818.527493] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1818.530532] ? ioctl_preallocate+0x1a0/0x1a0 [ 1818.530556] ? security_file_ioctl+0x76/0xb0 [ 1818.530564] ? security_file_ioctl+0x83/0xb0 [ 1818.530576] SyS_ioctl+0x7f/0xb0 [ 1818.542120] (null) [ 1818.545242] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1818.545257] do_syscall_64+0x1d5/0x640 [ 1818.545276] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1818.545289] RIP: 0033:0x45ca59 [ 1818.555721] syz-executor.0 cpuset= [ 1818.559115] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1818.559126] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1818.559131] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1818.559135] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1818.559141] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1818.559146] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1818.572390] Mem-Info: [ 1818.593154] / [ 1818.603296] active_anon:447194 inactive_anon:48677 isolated_anon:0 [ 1818.603296] active_file:8216 inactive_file:62102 isolated_file:0 [ 1818.603296] unevictable:2560 dirty:349 writeback:0 unstable:0 [ 1818.603296] slab_reclaimable:125566 slab_unreclaimable:330366 [ 1818.603296] mapped:64787 shmem:38045 pagetables:8723 bounce:0 [ 1818.603296] free:490982 free_pcp:244 free_cma:0 [ 1818.635438] mems_allowed=0-1 [ 1818.666524] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1818.704780] Node 1 active_anon:433484kB inactive_anon:35476kB active_file:32844kB inactive_file:248408kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34536kB dirty:1396kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1818.712754] CPU: 1 PID: 23016 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1818.737793] Node 0 [ 1818.740780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1818.740784] Call Trace: [ 1818.740803] dump_stack+0x1b2/0x283 [ 1818.740820] warn_alloc.cold+0x96/0x1af [ 1818.740835] ? zone_watermark_ok_safe+0x250/0x250 [ 1818.743192] DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1818.752485] ? wait_for_completion_io+0x10/0x10 [ 1818.752503] __alloc_pages_nodemask+0x2129/0x2730 [ 1818.752531] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1818.752541] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1818.752550] ? retint_kernel+0x2d/0x2d [ 1818.752565] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1818.755742] lowmem_reserve[]: [ 1818.758741] ? retint_kernel+0x2d/0x2d [ 1818.758758] alloc_pages_current+0xe7/0x1e0 [ 1818.758774] kvm_mmu_create+0xd1/0x1c0 [ 1818.758787] kvm_arch_vcpu_init+0x282/0x890 [ 1818.758797] ? alloc_pages_current+0xef/0x1e0 [ 1818.758810] kvm_vcpu_init+0x26d/0x360 [ 1818.762929] 0 [ 1818.767587] vmx_create_vcpu+0xf5/0x2950 [ 1818.767602] ? __mutex_unlock_slowpath+0x75/0x780 [ 1818.767613] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1818.767626] ? alloc_loaded_vmcs+0x240/0x240 [ 1818.767641] kvm_vm_ioctl+0x4ae/0x1430 [ 1818.767653] ? __lock_acquire+0x655/0x42a0 [ 1818.794151] 2559 [ 1818.798531] ? kvm_vcpu_release+0xa0/0xa0 [ 1818.798543] ? check_preemption_disabled+0x35/0x240 [ 1818.798557] ? perf_trace_lock+0x109/0x4b0 [ 1818.798569] ? check_preemption_disabled+0x35/0x240 [ 1818.798580] ? perf_trace_lock+0x109/0x4b0 [ 1818.798587] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1818.798596] ? futex_exit_release+0x60/0x60 [ 1818.798613] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1818.803668] 2559 [ 1818.808259] ? retint_kernel+0x2d/0x2d [ 1818.808272] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1818.808283] ? kvm_vcpu_release+0xa0/0xa0 [ 1818.808295] do_vfs_ioctl+0x75a/0xfe0 [ 1818.808309] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1818.808316] ? check_preemption_disabled+0x35/0x240 [ 1818.808330] ? ioctl_preallocate+0x1a0/0x1a0 [ 1818.813372] 2559 [ 1818.817037] ? do_vfs_ioctl+0xf2b/0xfe0 [ 1818.817057] ? security_file_ioctl+0x76/0xb0 [ 1818.817068] ? security_file_ioctl+0x83/0xb0 [ 1818.817080] SyS_ioctl+0x7f/0xb0 [ 1818.817089] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1818.817100] do_syscall_64+0x1d5/0x640 [ 1818.817117] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1818.817126] RIP: 0033:0x45ca59 [ 1818.822178] 2559 [ 1818.825032] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1818.825043] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1818.825049] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1818.825055] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1818.825061] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1818.825068] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 02:41:58 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1819.039116] Node 0 DMA32 free:35568kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:360kB local_pcp:144kB free_cma:0kB [ 1819.039166] syz-executor.3: [ 1819.074054] lowmem_reserve[]: [ 1819.074847] page allocation failure: order:0 [ 1819.077322] 0 0 0 0 0 [ 1819.077344] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1819.077365] lowmem_reserve[]: 0 0 0 0 0 [ 1819.077387] Node 1 Normal free:1920684kB min:53592kB low:66988kB high:80384kB active_anon:433000kB inactive_anon:35476kB active_file:32844kB inactive_file:248412kB unevictable:0kB writepending:1460kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3392kB pagetables:6776kB bounce:0kB free_pcp:800kB local_pcp:236kB free_cma:0kB [ 1819.077410] lowmem_reserve[]: 0 0 0 0 0 [ 1819.077433] Node 0 DMA: 5*4kB (UM) 4*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB [ 1819.077522] Node 0 DMA32: 1166*4kB (UMEH) 657*8kB (UMEH) 115*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35568kB [ 1819.077603] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1819.077654] Node 1 Normal: 21*4kB (ME) 335*8kB (UME) 366*16kB (UME) 535*32kB (UME) 201*64kB (UME) 23*128kB (UME) 26*256kB (UM) 15*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1920588kB [ 1819.077745] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1819.077752] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 02:41:58 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x3, 0x70, 0x0, 0x0, 0x0, 0x6, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x8) ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0205647, &(0x7f00000000c0)={0x9a0000, 0x7, 0x1, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x990a67, 0x6, [], @p_u8=&(0x7f0000000000)=0x4}}) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1819.077759] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1819.077765] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1819.077769] 79098 total pagecache pages [ 1819.077780] 0 pages in swap cache [ 1819.077786] Swap cache stats: add 0, delete 0, find 0/0 [ 1819.077790] Free swap = 0kB [ 1819.077793] Total swap = 0kB [ 1819.077799] 1965979 pages RAM [ 1819.077809] 0 pages HighMem/MovableOnly [ 1819.077813] 338456 pages reserved [ 1819.077817] 0 pages cma reserved [ 1819.173122] syz-executor.2: [ 1819.205429] syz-executor.4: [ 1819.259002] page allocation failure: order:0 [ 1819.277456] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1819.310690] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1819.319860] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1819.326065] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1819.328126] CPU: 1 PID: 23015 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1819.340594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1819.349945] Call Trace: [ 1819.352522] dump_stack+0x1b2/0x283 [ 1819.356141] warn_alloc.cold+0x96/0x1af [ 1819.360121] ? zone_watermark_ok_safe+0x250/0x250 [ 1819.364970] ? wait_for_completion_io+0x10/0x10 [ 1819.369630] __alloc_pages_nodemask+0x2129/0x2730 [ 1819.374465] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1819.379295] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1819.384034] ? check_preemption_disabled+0x35/0x240 [ 1819.389040] alloc_pages_current+0xe7/0x1e0 [ 1819.393350] kvm_mmu_create+0xd1/0x1c0 [ 1819.397222] kvm_arch_vcpu_init+0x282/0x890 [ 1819.401524] ? alloc_pages_current+0xef/0x1e0 [ 1819.406010] kvm_vcpu_init+0x26d/0x360 [ 1819.409889] vmx_create_vcpu+0xf5/0x2950 [ 1819.413934] ? __mutex_unlock_slowpath+0x75/0x780 [ 1819.418759] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1819.423763] ? alloc_loaded_vmcs+0x240/0x240 [ 1819.428159] kvm_vm_ioctl+0x4ae/0x1430 [ 1819.432028] ? __lock_acquire+0x655/0x42a0 [ 1819.436244] ? kvm_vcpu_release+0xa0/0xa0 [ 1819.440379] ? retint_kernel+0x2d/0x2d [ 1819.444254] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1819.449256] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1819.454011] ? check_preemption_disabled+0x35/0x240 [ 1819.459048] ? retint_kernel+0x2d/0x2d [ 1819.462956] ? selinux_file_ioctl+0x400/0x560 [ 1819.467455] ? __sanitizer_cov_trace_pc+0x3d/0x50 [ 1819.472305] ? kvm_vcpu_release+0xa0/0xa0 [ 1819.476456] do_vfs_ioctl+0x75a/0xfe0 [ 1819.480262] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1819.485888] ? ioctl_preallocate+0x1a0/0x1a0 [ 1819.490293] ? security_file_ioctl+0x76/0xb0 [ 1819.494683] ? security_file_ioctl+0x83/0xb0 [ 1819.499075] SyS_ioctl+0x7f/0xb0 [ 1819.502422] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1819.506388] do_syscall_64+0x1d5/0x640 [ 1819.510280] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1819.515449] RIP: 0033:0x45ca59 [ 1819.518618] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1819.526317] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1819.533571] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1819.540832] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1819.548086] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1819.555337] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1819.562619] CPU: 0 PID: 23030 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1819.564613] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1819.570497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1819.570501] Call Trace: [ 1819.570521] dump_stack+0x1b2/0x283 [ 1819.570536] warn_alloc.cold+0x96/0x1af [ 1819.570546] ? zone_watermark_ok_safe+0x250/0x250 [ 1819.570564] ? wait_for_completion_io+0x10/0x10 [ 1819.576606] (null) [ 1819.585774] __alloc_pages_nodemask+0x2129/0x2730 [ 1819.585803] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1819.588471] syz-executor.3 cpuset= [ 1819.591957] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1819.591983] ? do_raw_spin_unlock+0x164/0x250 [ 1819.596083] / [ 1819.600775] alloc_pages_current+0xe7/0x1e0 [ 1819.605500] mems_allowed=0-1 [ 1819.607548] kvm_mmu_create+0xd1/0x1c0 [ 1819.607561] kvm_arch_vcpu_init+0x282/0x890 [ 1819.607572] ? alloc_pages_current+0xef/0x1e0 [ 1819.607585] kvm_vcpu_init+0x26d/0x360 [ 1819.607598] vmx_create_vcpu+0xf5/0x2950 [ 1819.607612] ? __mutex_unlock_slowpath+0x75/0x780 [ 1819.607622] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1819.607635] ? alloc_loaded_vmcs+0x240/0x240 [ 1819.607649] kvm_vm_ioctl+0x4ae/0x1430 [ 1819.607663] ? __lock_acquire+0x655/0x42a0 [ 1819.682153] ? kvm_vcpu_release+0xa0/0xa0 [ 1819.686291] ? check_preemption_disabled+0x35/0x240 [ 1819.691299] ? perf_trace_lock+0x109/0x4b0 [ 1819.695515] ? check_preemption_disabled+0x35/0x240 [ 1819.700514] ? perf_trace_lock+0x109/0x4b0 [ 1819.704727] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1819.709652] ? futex_exit_release+0x60/0x60 [ 1819.713970] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1819.718882] ? lock_acquire+0x170/0x3f0 [ 1819.722840] ? kvm_vcpu_release+0xa0/0xa0 [ 1819.726969] do_vfs_ioctl+0x75a/0xfe0 [ 1819.730757] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1819.736363] ? ioctl_preallocate+0x1a0/0x1a0 [ 1819.740781] ? security_file_ioctl+0x76/0xb0 [ 1819.745190] ? security_file_ioctl+0x83/0xb0 [ 1819.749593] SyS_ioctl+0x7f/0xb0 [ 1819.752971] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1819.757035] do_syscall_64+0x1d5/0x640 [ 1819.760914] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1819.766095] RIP: 0033:0x45ca59 [ 1819.769273] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1819.776992] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1819.784243] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1819.788145] warn_alloc_show_mem: 1 callbacks suppressed [ 1819.788164] Mem-Info: [ 1819.791495] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1819.791502] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1819.791507] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1819.823748] CPU: 1 PID: 23031 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1819.831643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1819.841084] Call Trace: [ 1819.843675] dump_stack+0x1b2/0x283 [ 1819.847312] warn_alloc.cold+0x96/0x1af [ 1819.851290] ? zone_watermark_ok_safe+0x250/0x250 [ 1819.856137] ? check_preemption_disabled+0x35/0x240 [ 1819.861157] ? retint_kernel+0x2d/0x2d [ 1819.865061] __alloc_pages_nodemask+0x2129/0x2730 [ 1819.869917] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1819.874760] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1819.879616] ? check_preemption_disabled+0x35/0x240 [ 1819.884637] alloc_pages_current+0xe7/0x1e0 [ 1819.889016] kvm_mmu_create+0xd1/0x1c0 [ 1819.892908] kvm_arch_vcpu_init+0x282/0x890 [ 1819.898534] ? alloc_pages_current+0xef/0x1e0 [ 1819.903034] kvm_vcpu_init+0x26d/0x360 [ 1819.906933] vmx_create_vcpu+0xf5/0x2950 [ 1819.911001] ? __mutex_unlock_slowpath+0x75/0x780 [ 1819.915847] ? alloc_loaded_vmcs+0x240/0x240 [ 1819.920262] kvm_vm_ioctl+0x4ae/0x1430 [ 1819.924152] ? __lock_acquire+0x655/0x42a0 [ 1819.928385] ? kvm_vcpu_release+0xa0/0xa0 [ 1819.932532] ? check_preemption_disabled+0x35/0x240 [ 1819.937549] ? perf_trace_lock+0x109/0x4b0 [ 1819.941792] ? check_preemption_disabled+0x35/0x240 [ 1819.946813] ? perf_trace_lock+0x109/0x4b0 [ 1819.951055] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1819.955986] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1819.960919] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1819.965679] ? kvm_vcpu_release+0xa0/0xa0 [ 1819.969832] do_vfs_ioctl+0x75a/0xfe0 [ 1819.973639] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1819.979264] ? ioctl_preallocate+0x1a0/0x1a0 [ 1819.983681] ? security_file_ioctl+0x76/0xb0 [ 1819.988091] ? security_file_ioctl+0x83/0xb0 [ 1819.992500] SyS_ioctl+0x7f/0xb0 [ 1819.995862] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1819.999843] do_syscall_64+0x1d5/0x640 [ 1820.003738] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1820.008925] RIP: 0033:0x45ca59 [ 1820.012109] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1820.020775] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1820.028047] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1820.035313] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 02:41:59 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, 0xffffffffffffffff) [ 1820.042581] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1820.049851] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1820.063573] active_anon:447097 inactive_anon:48677 isolated_anon:0 [ 1820.063573] active_file:8214 inactive_file:62117 isolated_file:0 [ 1820.063573] unevictable:2560 dirty:374 writeback:0 unstable:0 [ 1820.063573] slab_reclaimable:125598 slab_unreclaimable:330345 [ 1820.063573] mapped:64578 shmem:38045 pagetables:8700 bounce:0 [ 1820.063573] free:490842 free_pcp:369 free_cma:0 [ 1820.106717] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:16kB inactive_file:4kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1820.139998] Node 1 active_anon:433040kB inactive_anon:35476kB active_file:32844kB inactive_file:248460kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:33656kB dirty:1496kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1820.169081] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1820.202831] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1820.208378] Node 0 DMA32 free:35624kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:4kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:364kB local_pcp:216kB free_cma:0kB 02:41:59 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYRES16, @ANYRES32=r5, @ANYBLOB="0000400000000005280012000c00010076657468"], 0x48}}, 0x0) setsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000100)=@assoc_value, 0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in={{0x2, 0x4e22, @private=0xa010101}}, 0x7, 0x1, 0xffffffff, 0x3f, 0x74, 0x0, 0x2}, 0x9c) sendmsg$AUDIT_SET_FEATURE(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, 0x3fa, 0x20, 0x70bd27, 0x25dfdbfd, {0x1, 0x0, 0x1}, ["", "", ""]}, 0x20}}, 0x20040841) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r1, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) r6 = semget(0x3, 0x0, 0x428) semctl$IPC_SET(r6, 0x0, 0x1, 0x0) [ 1820.243506] lowmem_reserve[]: 0 0 0 0 0 [ 1820.248183] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1820.279765] lowmem_reserve[]: 0 0 0 0 0 [ 1820.283981] Node 1 Normal free:1919268kB min:53592kB low:66988kB high:80384kB active_anon:432840kB inactive_anon:35476kB active_file:32844kB inactive_file:248460kB unevictable:0kB writepending:1496kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3136kB pagetables:6688kB bounce:0kB free_pcp:1292kB local_pcp:668kB free_cma:0kB 02:41:59 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) dup(0xffffffffffffffff) [ 1820.354384] lowmem_reserve[]: 0 0 0 0 0 [ 1820.360115] Node 0 DMA: 5*4kB (UM) 4*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB 02:41:59 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) [ 1820.388641] Node 0 DMA32: 1166*4kB (UMEH) 674*8kB (UMEH) 115*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35704kB [ 1820.412311] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1820.424530] Node 1 Normal: 165*4kB (UME) 572*8kB (UME) 378*16kB (UE) 542*32kB (UME) 203*64kB (UME) 5*128kB (ME) 19*256kB (UM) 16*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1920020kB [ 1820.482896] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1820.502003] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1820.516564] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1820.525487] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1820.538600] 79107 total pagecache pages [ 1820.542727] 0 pages in swap cache [ 1820.555289] Swap cache stats: add 0, delete 0, find 0/0 [ 1820.566432] Free swap = 0kB [ 1820.569556] Total swap = 0kB [ 1820.572621] 1965979 pages RAM [ 1820.575776] 0 pages HighMem/MovableOnly [ 1820.601585] 338456 pages reserved [ 1820.605114] 0 pages cma reserved [ 1820.648419] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1820.685008] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1820.693071] CPU: 0 PID: 23102 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1820.700970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1820.710331] Call Trace: [ 1820.712931] dump_stack+0x1b2/0x283 [ 1820.716567] warn_alloc.cold+0x96/0x1af [ 1820.720549] ? zone_watermark_ok_safe+0x250/0x250 [ 1820.725399] ? __sanitizer_cov_trace_pc+0x2d/0x50 [ 1820.730242] ? wait_for_completion_io+0x10/0x10 [ 1820.734921] __alloc_pages_nodemask+0x2129/0x2730 [ 1820.739787] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1820.744636] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1820.749493] ? check_preemption_disabled+0x35/0x240 [ 1820.754517] alloc_pages_current+0xe7/0x1e0 [ 1820.758847] kvm_mmu_create+0xd1/0x1c0 [ 1820.762742] kvm_arch_vcpu_init+0x282/0x890 [ 1820.767070] ? alloc_pages_current+0xef/0x1e0 [ 1820.771573] kvm_vcpu_init+0x26d/0x360 [ 1820.775469] vmx_create_vcpu+0xf5/0x2950 [ 1820.779542] ? alloc_loaded_vmcs+0x240/0x240 [ 1820.783952] ? kvm_arch_vcpu_create+0x60/0xb0 [ 1820.788459] kvm_vm_ioctl+0x4ae/0x1430 [ 1820.792351] ? __lock_acquire+0x655/0x42a0 02:42:00 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) dup(0xffffffffffffffff) ioctl$KVM_RUN(r4, 0xae80, 0x0) 02:42:00 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:00 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) 02:42:00 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1820.796591] ? kvm_vcpu_release+0xa0/0xa0 [ 1820.800740] ? check_preemption_disabled+0x35/0x240 [ 1820.805765] ? perf_trace_lock+0x109/0x4b0 [ 1820.810013] ? check_preemption_disabled+0x35/0x240 [ 1820.815037] ? perf_trace_lock+0x109/0x4b0 [ 1820.819281] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1820.824214] ? retint_kernel+0x2d/0x2d [ 1820.828103] ? kvm_vcpu_release+0xa0/0xa0 [ 1820.832254] do_vfs_ioctl+0x75a/0xfe0 [ 1820.836055] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1820.841728] ? ioctl_preallocate+0x1a0/0x1a0 [ 1820.846157] ? security_file_ioctl+0x76/0xb0 [ 1820.850571] ? security_file_ioctl+0x83/0xb0 [ 1820.854992] SyS_ioctl+0x7f/0xb0 [ 1820.858362] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1820.862344] do_syscall_64+0x1d5/0x640 [ 1820.866336] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1820.871523] RIP: 0033:0x45ca59 [ 1820.874708] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1820.882419] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1820.889692] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1820.896964] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1820.904242] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1820.911512] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1820.932630] warn_alloc_show_mem: 2 callbacks suppressed [ 1820.932648] Mem-Info: [ 1820.943298] active_anon:447105 inactive_anon:48677 isolated_anon:0 [ 1820.943298] active_file:8215 inactive_file:62125 isolated_file:0 [ 1820.943298] unevictable:2560 dirty:377 writeback:0 unstable:0 [ 1820.943298] slab_reclaimable:125608 slab_unreclaimable:330206 [ 1820.943298] mapped:64586 shmem:38045 pagetables:8710 bounce:0 [ 1820.943298] free:491096 free_pcp:210 free_cma:0 [ 1821.007622] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1821.068588] Node 1 active_anon:433204kB inactive_anon:35476kB active_file:32844kB inactive_file:248524kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:33876kB dirty:1536kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1821.098440] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1821.129564] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1821.135190] Node 0 DMA32 free:35704kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:368kB local_pcp:148kB free_cma:0kB 02:42:00 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCL_SETVESABLANK(r4, 0x541c, &(0x7f0000000000)) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1821.183377] lowmem_reserve[]: 0 0 0 0 0 [ 1821.189462] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1821.221869] lowmem_reserve[]: 0 0 0 0 0 [ 1821.226871] Node 1 Normal free:1920484kB min:53592kB low:66988kB high:80384kB active_anon:432804kB inactive_anon:35476kB active_file:32844kB inactive_file:248524kB unevictable:0kB writepending:1536kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3136kB pagetables:6692kB bounce:0kB free_pcp:1304kB local_pcp:612kB free_cma:0kB [ 1821.278230] lowmem_reserve[]: 0 0 0 0 0 [ 1821.282490] Node 0 DMA: 5*4kB (UM) 4*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB [ 1821.300123] Node 0 DMA32: 1166*4kB (UMEH) 674*8kB (UMEH) 115*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35704kB [ 1821.301534] warn_alloc: 1 callbacks suppressed [ 1821.301564] syz-executor.2: [ 1821.318745] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1821.330545] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1821.337615] Node 1 Normal: 143*4kB (UME) 127*8kB (UME) 719*16kB (UE) 548*32kB (UME) 203*64kB (UME) 14*128kB (UME) 13*256kB (UM) 17*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1922148kB [ 1821.350758] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1821.364554] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1821.376657] CPU: 1 PID: 23147 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1821.380262] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1821.385941] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1821.385946] Call Trace: [ 1821.385964] dump_stack+0x1b2/0x283 [ 1821.385982] warn_alloc.cold+0x96/0x1af [ 1821.385992] ? zone_watermark_ok_safe+0x250/0x250 [ 1821.386012] ? wait_for_completion_io+0x10/0x10 [ 1821.386026] __alloc_pages_nodemask+0x2129/0x2730 [ 1821.386052] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1821.386063] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1821.386085] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1821.399892] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1821.403981] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1821.403998] alloc_pages_current+0xe7/0x1e0 [ 1821.404013] kvm_mmu_create+0xd1/0x1c0 [ 1821.404026] kvm_arch_vcpu_init+0x282/0x890 [ 1821.406784] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1821.410195] ? alloc_pages_current+0xef/0x1e0 [ 1821.410209] kvm_vcpu_init+0x26d/0x360 [ 1821.410224] vmx_create_vcpu+0xf5/0x2950 [ 1821.410238] ? __mutex_unlock_slowpath+0x75/0x780 [ 1821.410250] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1821.414320] 79117 total pagecache pages [ 1821.419018] ? alloc_loaded_vmcs+0x240/0x240 [ 1821.419036] kvm_vm_ioctl+0x4ae/0x1430 [ 1821.419049] ? __lock_acquire+0x655/0x42a0 [ 1821.419059] ? kvm_vcpu_release+0xa0/0xa0 [ 1821.419068] ? check_preemption_disabled+0x35/0x240 [ 1821.419080] ? perf_trace_lock+0x109/0x4b0 [ 1821.419091] ? check_preemption_disabled+0x35/0x240 [ 1821.419102] ? perf_trace_lock+0x109/0x4b0 [ 1821.431729] 0 pages in swap cache [ 1821.433405] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1821.433421] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1821.433437] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1821.433452] ? kvm_vcpu_release+0xa0/0xa0 [ 1821.444730] Swap cache stats: add 0, delete 0, find 0/0 [ 1821.452135] do_vfs_ioctl+0x75a/0xfe0 [ 1821.452151] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1821.452163] ? ioctl_preallocate+0x1a0/0x1a0 [ 1821.452183] ? security_file_ioctl+0x76/0xb0 [ 1821.452193] ? security_file_ioctl+0x83/0xb0 [ 1821.452202] SyS_ioctl+0x7f/0xb0 [ 1821.452210] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1821.452223] do_syscall_64+0x1d5/0x640 [ 1821.461382] Free swap = 0kB [ 1821.465169] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1821.465179] RIP: 0033:0x45ca59 [ 1821.465185] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1821.465196] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1821.465201] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1821.465209] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1821.473248] Total swap = 0kB [ 1821.478063] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1821.478070] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1821.620793] syz-executor.4: [ 1821.633528] 1965979 pages RAM [ 1821.649963] page allocation failure: order:0 [ 1821.657668] 0 pages HighMem/MovableOnly [ 1821.664075] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1821.671116] 338456 pages reserved [ 1821.671447] (null) [ 1821.675463] 0 pages cma reserved [ 1821.681867] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1821.705059] CPU: 1 PID: 23134 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1821.713157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1821.722515] Call Trace: [ 1821.725152] dump_stack+0x1b2/0x283 [ 1821.728784] warn_alloc.cold+0x96/0x1af [ 1821.732771] ? zone_watermark_ok_safe+0x250/0x250 [ 1821.737619] ? check_preemption_disabled+0x35/0x240 [ 1821.742656] __alloc_pages_nodemask+0x2129/0x2730 [ 1821.747511] ? retint_kernel+0x2d/0x2d [ 1821.751384] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1821.756208] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1821.761218] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1821.765956] ? check_preemption_disabled+0x35/0x240 [ 1821.770969] ? retint_kernel+0x2d/0x2d [ 1821.774843] alloc_pages_current+0xe7/0x1e0 [ 1821.779152] kvm_mmu_create+0xd1/0x1c0 [ 1821.783022] kvm_arch_vcpu_init+0x282/0x890 [ 1821.787335] ? alloc_pages_current+0xef/0x1e0 [ 1821.791812] kvm_vcpu_init+0x26d/0x360 [ 1821.795695] vmx_create_vcpu+0xf5/0x2950 [ 1821.799749] ? __mutex_unlock_slowpath+0x75/0x780 [ 1821.804587] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1821.809596] ? alloc_loaded_vmcs+0x240/0x240 [ 1821.814009] kvm_vm_ioctl+0x4ae/0x1430 [ 1821.817886] ? __lock_acquire+0x655/0x42a0 [ 1821.822117] ? kvm_vcpu_release+0xa0/0xa0 [ 1821.826271] ? check_preemption_disabled+0x35/0x240 [ 1821.831373] ? perf_trace_lock+0x109/0x4b0 [ 1821.835588] ? check_preemption_disabled+0x35/0x240 [ 1821.840595] ? perf_trace_lock+0x109/0x4b0 [ 1821.844809] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1821.849717] ? lock_acquire+0x170/0x3f0 [ 1821.853671] ? kvm_vcpu_release+0xa0/0xa0 [ 1821.857926] do_vfs_ioctl+0x75a/0xfe0 [ 1821.861727] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1821.867340] ? ioctl_preallocate+0x1a0/0x1a0 [ 1821.871745] ? security_file_ioctl+0x76/0xb0 [ 1821.876133] ? security_file_ioctl+0x83/0xb0 [ 1821.880523] SyS_ioctl+0x7f/0xb0 [ 1821.883880] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1821.887848] do_syscall_64+0x1d5/0x640 [ 1821.891723] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1821.896904] RIP: 0033:0x45ca59 [ 1821.900075] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1821.907779] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1821.915026] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1821.922278] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 02:42:01 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) [ 1821.929533] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1821.936783] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 02:42:01 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:01 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) r7 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0) ioctl$TIOCSCTTY(r7, 0x540e, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) r8 = socket$inet(0x2, 0x3, 0x2) getsockopt(r8, 0x0, 0xce, 0x0, &(0x7f0000000000)) ppoll(&(0x7f0000000040)=[{r8, 0x80}], 0x1, &(0x7f0000000080), &(0x7f0000000100)={[0x3]}, 0x8) dup2(r1, r4) [ 1822.074876] warn_alloc_show_mem: 1 callbacks suppressed [ 1822.074891] Mem-Info: [ 1822.131619] active_anon:447092 inactive_anon:48677 isolated_anon:0 [ 1822.131619] active_file:8216 inactive_file:62139 isolated_file:0 [ 1822.131619] unevictable:2560 dirty:392 writeback:0 unstable:0 [ 1822.131619] slab_reclaimable:125621 slab_unreclaimable:329909 [ 1822.131619] mapped:64585 shmem:38045 pagetables:8689 bounce:0 [ 1822.131619] free:491457 free_pcp:333 free_cma:0 [ 1822.174950] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1822.188928] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1822.194492] CPU: 0 PID: 23186 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1822.202384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1822.211744] Call Trace: [ 1822.214342] dump_stack+0x1b2/0x283 [ 1822.217982] warn_alloc.cold+0x96/0x1af [ 1822.221963] ? zone_watermark_ok_safe+0x250/0x250 [ 1822.226822] ? wait_for_completion_io+0x10/0x10 [ 1822.231494] __alloc_pages_nodemask+0x2129/0x2730 [ 1822.234178] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1822.236352] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1822.236363] ? mark_held_locks+0xa6/0xf0 [ 1822.236372] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1822.236396] ? retint_kernel+0x2d/0x2d [ 1822.236413] alloc_pages_current+0xe7/0x1e0 [ 1822.236428] kvm_mmu_create+0xd1/0x1c0 [ 1822.236442] kvm_arch_vcpu_init+0x282/0x890 [ 1822.236451] ? alloc_pages_current+0xef/0x1e0 [ 1822.236464] kvm_vcpu_init+0x26d/0x360 [ 1822.236479] vmx_create_vcpu+0xf5/0x2950 [ 1822.236493] ? __mutex_unlock_slowpath+0x75/0x780 [ 1822.236502] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1822.236519] ? alloc_loaded_vmcs+0x240/0x240 [ 1822.282344] Node 1 active_anon:432976kB inactive_anon:35476kB active_file:32844kB inactive_file:248556kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:33728kB dirty:1568kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1822.282457] kvm_vm_ioctl+0x4ae/0x1430 [ 1822.282470] ? __lock_acquire+0x655/0x42a0 [ 1822.291429] Node 0 [ 1822.294957] ? kvm_vcpu_release+0xa0/0xa0 [ 1822.294970] ? check_preemption_disabled+0x35/0x240 [ 1822.294983] ? perf_trace_lock+0x109/0x4b0 [ 1822.294996] ? check_preemption_disabled+0x35/0x240 02:42:01 executing program 1: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240), 0xd}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) dup2(r0, r3) perf_event_open(0x0, 0x0, 0x7, r0, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r5, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff7}, 0x0, 0x3, 0xffffffffffffffff, 0x0) r6 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r6, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r4, 0x0, r6, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r7 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x222040, 0x0) ioctl$LOOP_CLR_FD(r7, 0x4c01) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r5, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, 0x2, 0x8, 0x401, 0x0, 0x0, {0x5, 0x0, 0x7}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x11}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x3a}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0xaa04}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0xf7}]}, 0x40}, 0x1, 0x0, 0x0, 0x840}, 0x40000) 02:42:01 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) dup(0xffffffffffffffff) [ 1822.303600] DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1822.307389] ? perf_trace_lock+0x109/0x4b0 [ 1822.307406] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1822.307417] ? check_preemption_disabled+0x35/0x240 [ 1822.307428] ? kvm_vcpu_release+0xa0/0xa0 [ 1822.307439] do_vfs_ioctl+0x75a/0xfe0 [ 1822.307452] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1822.307464] ? ioctl_preallocate+0x1a0/0x1a0 [ 1822.307484] ? security_file_ioctl+0x76/0xb0 [ 1822.307493] ? security_file_ioctl+0x83/0xb0 [ 1822.307510] SyS_ioctl+0x7f/0xb0 [ 1822.307519] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1822.307532] do_syscall_64+0x1d5/0x640 [ 1822.307551] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1822.307559] RIP: 0033:0x45ca59 [ 1822.307565] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 02:42:02 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1822.307576] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1822.307582] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1822.307586] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1822.307592] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1822.307598] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1822.531485] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1822.539592] Node 0 DMA32 free:35704kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:368kB local_pcp:220kB free_cma:0kB [ 1822.615589] lowmem_reserve[]: 0 0 0 0 0 [ 1822.628636] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1822.675082] lowmem_reserve[]: 0 0 0 0 0 [ 1822.684397] Node 1 Normal free:1919356kB min:53592kB low:66988kB high:80384kB active_anon:433176kB inactive_anon:35476kB active_file:32844kB inactive_file:248556kB unevictable:0kB writepending:1568kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3424kB pagetables:6844kB bounce:0kB free_pcp:1136kB local_pcp:524kB free_cma:0kB [ 1822.701144] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1822.729962] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1822.735578] CPU: 0 PID: 23200 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1822.742681] lowmem_reserve[]: [ 1822.743458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1822.743462] Call Trace: [ 1822.743485] dump_stack+0x1b2/0x283 [ 1822.746768] 0 [ 1822.755909] warn_alloc.cold+0x96/0x1af [ 1822.755919] ? zone_watermark_ok_safe+0x250/0x250 [ 1822.755937] ? wait_for_completion_io+0x10/0x10 [ 1822.755952] __alloc_pages_nodemask+0x2129/0x2730 [ 1822.755980] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1822.755991] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1822.756024] alloc_pages_current+0xe7/0x1e0 [ 1822.756039] kvm_mmu_create+0xd1/0x1c0 [ 1822.756052] kvm_arch_vcpu_init+0x282/0x890 [ 1822.756062] ? alloc_pages_current+0xef/0x1e0 [ 1822.756075] kvm_vcpu_init+0x26d/0x360 [ 1822.756089] vmx_create_vcpu+0xf5/0x2950 [ 1822.756103] ? __mutex_unlock_slowpath+0x75/0x780 [ 1822.756117] ? alloc_loaded_vmcs+0x240/0x240 [ 1822.756134] kvm_vm_ioctl+0x4ae/0x1430 [ 1822.756147] ? __lock_acquire+0x655/0x42a0 [ 1822.756157] ? kvm_vcpu_release+0xa0/0xa0 [ 1822.756169] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1822.765015] 0 [ 1822.768081] ? check_preemption_disabled+0x35/0x240 [ 1822.768093] ? perf_trace_lock+0x109/0x4b0 [ 1822.768106] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1822.768118] ? retint_kernel+0x2d/0x2d [ 1822.768128] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1822.768140] ? kvm_vcpu_release+0xa0/0xa0 [ 1822.768152] do_vfs_ioctl+0x75a/0xfe0 [ 1822.768162] ? check_preemption_disabled+0x35/0x240 [ 1822.768173] ? ioctl_preallocate+0x1a0/0x1a0 [ 1822.768191] ? security_file_ioctl+0x3b/0xb0 [ 1822.768203] ? audit_add_tree_rule.cold+0x2f/0x2f [ 1822.768215] ? security_file_ioctl+0x83/0xb0 [ 1822.768226] SyS_ioctl+0x7f/0xb0 [ 1822.768234] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1822.768248] do_syscall_64+0x1d5/0x640 [ 1822.768265] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1822.768273] RIP: 0033:0x45ca59 02:42:02 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) fchmod(r5, 0x20) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x89f6, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000100)=""/176) ioctl$KVM_RUN(r4, 0xae80, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$VIDIOC_G_PRIORITY(r8, 0x80045643, 0x3) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1822.768278] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1822.768288] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1822.768293] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1822.768298] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1822.768304] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1822.768310] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1822.970744] 0 0 0 [ 1822.973139] Node 0 DMA: 5*4kB (UM) 4*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB [ 1823.005831] Node 0 DMA32: 1166*4kB (UMEH) 674*8kB (UMEH) 115*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35704kB [ 1823.032031] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1823.045090] Node 1 Normal: 116*4kB (UME) 444*8kB (UME) 804*16kB (UME) 544*32kB (UE) 198*64kB (UME) 27*128kB (UME) 4*256kB (UM) 12*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1922288kB [ 1823.076521] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1823.085424] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1823.093683] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1823.094751] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1823.105978] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1823.119464] (null) [ 1823.123342] 79137 total pagecache pages [ 1823.124650] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1823.129058] 0 pages in swap cache [ 1823.138172] Swap cache stats: add 0, delete 0, find 0/0 [ 1823.148152] CPU: 0 PID: 23234 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1823.148724] Free swap = 0kB [ 1823.156058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1823.156063] Call Trace: [ 1823.156081] dump_stack+0x1b2/0x283 [ 1823.156096] warn_alloc.cold+0x96/0x1af [ 1823.156106] ? zone_watermark_ok_safe+0x250/0x250 [ 1823.156126] ? wait_for_completion_io+0x10/0x10 [ 1823.156143] __alloc_pages_nodemask+0x2129/0x2730 [ 1823.156170] ? retint_kernel+0x2d/0x2d [ 1823.156180] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1823.156191] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1823.156202] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1823.156211] ? retint_kernel+0x2d/0x2d [ 1823.156225] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1823.156241] ? retint_kernel+0x2d/0x2d [ 1823.156258] alloc_pages_current+0xe7/0x1e0 [ 1823.156274] kvm_mmu_create+0xd1/0x1c0 [ 1823.168304] Total swap = 0kB [ 1823.168625] kvm_arch_vcpu_init+0x282/0x890 [ 1823.168640] ? alloc_pages_current+0xef/0x1e0 [ 1823.173838] 1965979 pages RAM [ 1823.174822] kvm_vcpu_init+0x26d/0x360 [ 1823.174837] vmx_create_vcpu+0xf5/0x2950 [ 1823.174852] ? __mutex_unlock_slowpath+0x75/0x780 [ 1823.179123] 0 pages HighMem/MovableOnly [ 1823.183626] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1823.183641] ? alloc_loaded_vmcs+0x240/0x240 [ 1823.183659] kvm_vm_ioctl+0x4ae/0x1430 [ 1823.183672] ? __lock_acquire+0x655/0x42a0 [ 1823.188683] 338456 pages reserved [ 1823.193158] ? kvm_vcpu_release+0xa0/0xa0 [ 1823.193171] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1823.193183] ? retint_kernel+0x2d/0x2d [ 1823.193194] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1823.193208] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1823.197258] 0 pages cma reserved [ 1823.201905] ? check_preemption_disabled+0x35/0x240 [ 1823.201915] ? retint_kernel+0x2d/0x2d [ 1823.201933] ? do_vfs_ioctl+0x76/0xfe0 [ 1823.201945] ? kvm_vcpu_release+0xa0/0xa0 [ 1823.327902] do_vfs_ioctl+0x75a/0xfe0 [ 1823.331713] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1823.337350] ? ioctl_preallocate+0x1a0/0x1a0 [ 1823.341781] ? security_file_ioctl+0x76/0xb0 [ 1823.346191] ? security_file_ioctl+0x83/0xb0 [ 1823.350604] SyS_ioctl+0x7f/0xb0 [ 1823.353968] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1823.357949] do_syscall_64+0x1d5/0x640 [ 1823.361844] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1823.367028] RIP: 0033:0x45ca59 [ 1823.370213] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 02:42:02 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) dup(0xffffffffffffffff) ioctl$KVM_RUN(r4, 0xae80, 0x0) 02:42:02 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) 02:42:02 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:02 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 02:42:02 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r3) mount$9p_xen(&(0x7f0000000000)='syz\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x69a3080, &(0x7f0000000100)={'trans=xen,', {[{@cache_mmap='cache=mmap'}, {@afid={'afid', 0x3d, 0x4}}, {@aname={'aname'}}, {@uname={'uname'}}, {@loose='loose'}], [{@func={'func', 0x3d, 'BPRM_CHECK'}}, {@euid_gt={'euid>', r3}}]}}) r4 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r4, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1823.377921] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1823.385186] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1823.392454] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1823.399722] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1823.406997] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1823.488471] warn_alloc_show_mem: 2 callbacks suppressed [ 1823.488493] Mem-Info: [ 1823.499556] active_anon:447169 inactive_anon:48677 isolated_anon:0 [ 1823.499556] active_file:8216 inactive_file:62151 isolated_file:0 [ 1823.499556] unevictable:2560 dirty:404 writeback:0 unstable:0 [ 1823.499556] slab_reclaimable:125650 slab_unreclaimable:329393 [ 1823.499556] mapped:64851 shmem:38045 pagetables:8738 bounce:0 [ 1823.499556] free:491917 free_pcp:258 free_cma:0 [ 1823.547440] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1823.577469] Node 1 active_anon:433284kB inactive_anon:35476kB active_file:32844kB inactive_file:248604kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34792kB dirty:1616kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1823.606818] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1823.647966] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1823.653483] Node 0 DMA32 free:35704kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:376kB local_pcp:148kB free_cma:0kB [ 1823.705059] lowmem_reserve[]: 0 0 0 0 0 [ 1823.709634] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1823.730907] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1823.753974] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1823.759076] lowmem_reserve[]: 0 0 0 0 0 [ 1823.763943] Node 1 Normal free:1920572kB min:53592kB low:66988kB high:80384kB active_anon:433184kB inactive_anon:35476kB active_file:32844kB inactive_file:248604kB unevictable:0kB writepending:1616kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3552kB pagetables:6744kB bounce:0kB free_pcp:888kB local_pcp:616kB free_cma:0kB [ 1823.769965] CPU: 1 PID: 23255 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1823.802018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1823.803552] lowmem_reserve[]: [ 1823.811375] Call Trace: [ 1823.811396] dump_stack+0x1b2/0x283 [ 1823.811412] warn_alloc.cold+0x96/0x1af [ 1823.811424] ? zone_watermark_ok_safe+0x250/0x250 [ 1823.811443] ? wait_for_completion_io+0x10/0x10 [ 1823.811458] __alloc_pages_nodemask+0x2129/0x2730 [ 1823.811484] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1823.811499] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1823.814911] 0 [ 1823.817169] ? check_preemption_disabled+0x35/0x240 [ 1823.817183] alloc_pages_current+0xe7/0x1e0 [ 1823.817199] kvm_mmu_create+0xd1/0x1c0 [ 1823.817213] kvm_arch_vcpu_init+0x282/0x890 [ 1823.817223] ? alloc_pages_current+0xef/0x1e0 [ 1823.817242] kvm_vcpu_init+0x26d/0x360 [ 1823.817254] vmx_create_vcpu+0xf5/0x2950 [ 1823.817267] ? __mutex_unlock_slowpath+0x75/0x780 [ 1823.823461] 0 [ 1823.824833] ? alloc_loaded_vmcs+0x240/0x240 [ 1823.824852] kvm_vm_ioctl+0x4ae/0x1430 [ 1823.824866] ? __lock_acquire+0x655/0x42a0 [ 1823.824877] ? kvm_vcpu_release+0xa0/0xa0 [ 1823.824891] ? check_preemption_disabled+0x35/0x240 [ 1823.831073] 0 [ 1823.834373] ? perf_trace_lock+0x109/0x4b0 [ 1823.834387] ? check_preemption_disabled+0x35/0x240 [ 1823.834399] ? perf_trace_lock+0x109/0x4b0 [ 1823.834408] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1823.834419] ? futex_exit_release+0x60/0x60 [ 1823.834430] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1823.834441] ? lock_acquire+0x170/0x3f0 [ 1823.839747] 0 [ 1823.844091] ? kvm_vcpu_release+0xa0/0xa0 [ 1823.844104] do_vfs_ioctl+0x75a/0xfe0 [ 1823.844118] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1823.844130] ? ioctl_preallocate+0x1a0/0x1a0 [ 1823.844151] ? security_file_ioctl+0x76/0xb0 [ 1823.844164] ? security_file_ioctl+0x83/0xb0 [ 1823.849464] 0 [ 1823.850769] SyS_ioctl+0x7f/0xb0 [ 1823.850778] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1823.850793] do_syscall_64+0x1d5/0x640 [ 1823.850812] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1823.850820] RIP: 0033:0x45ca59 [ 1823.850825] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 02:42:03 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1823.850836] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1823.850847] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1823.860136] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1823.860142] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1823.860148] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1824.041079] Node 0 DMA: 5*4kB (UM) 4*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB [ 1824.050722] syz-executor.3: [ 1824.060879] Node 0 [ 1824.063887] page allocation failure: order:0 [ 1824.064145] DMA32: [ 1824.067488] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1824.072879] 1166*4kB [ 1824.073235] (null) [ 1824.080683] (UMEH) 679*8kB (UMEH) 116*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35760kB [ 1824.091062] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1824.105463] CPU: 1 PID: 23258 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1824.113349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1824.116905] Node 0 [ 1824.122693] Call Trace: [ 1824.122712] dump_stack+0x1b2/0x283 [ 1824.122730] warn_alloc.cold+0x96/0x1af [ 1824.122741] ? zone_watermark_ok_safe+0x250/0x250 [ 1824.122759] ? wait_for_completion_io+0x10/0x10 [ 1824.125061] Normal: [ 1824.127544] __alloc_pages_nodemask+0x2129/0x2730 [ 1824.127571] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1824.127581] ? mark_held_locks+0xa6/0xf0 [ 1824.127592] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1824.127624] alloc_pages_current+0xe7/0x1e0 [ 1824.127639] kvm_mmu_create+0xd1/0x1c0 [ 1824.135728] 0*4kB [ 1824.140113] kvm_arch_vcpu_init+0x282/0x890 [ 1824.140126] ? alloc_pages_current+0xef/0x1e0 [ 1824.140142] kvm_vcpu_init+0x26d/0x360 [ 1824.148197] 0*8kB [ 1824.151926] vmx_create_vcpu+0xf5/0x2950 [ 1824.151947] ? __mutex_unlock_slowpath+0x75/0x780 [ 1824.156876] 0*16kB [ 1824.160815] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1824.160829] ? alloc_loaded_vmcs+0x240/0x240 [ 1824.160848] kvm_vm_ioctl+0x4ae/0x1430 [ 1824.160862] ? __lock_acquire+0x655/0x42a0 [ 1824.169104] 0*32kB [ 1824.169994] ? kvm_vcpu_release+0xa0/0xa0 [ 1824.170006] ? check_preemption_disabled+0x35/0x240 [ 1824.173965] 0*64kB [ 1824.176004] ? perf_trace_lock+0x109/0x4b0 [ 1824.176017] ? check_preemption_disabled+0x35/0x240 [ 1824.176027] ? perf_trace_lock+0x109/0x4b0 [ 1824.176037] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1824.176050] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1824.176067] ? retint_kernel+0x2d/0x2d [ 1824.186665] 0*128kB [ 1824.188714] ? kvm_vcpu_release+0xa0/0xa0 [ 1824.188727] do_vfs_ioctl+0x75a/0xfe0 [ 1824.188741] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1824.188751] ? ioctl_preallocate+0x1a0/0x1a0 [ 1824.188771] ? security_file_ioctl+0x76/0xb0 [ 1824.190970] 0*256kB [ 1824.194934] ? security_file_ioctl+0x83/0xb0 [ 1824.194945] SyS_ioctl+0x7f/0xb0 [ 1824.194953] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1824.194966] do_syscall_64+0x1d5/0x640 [ 1824.204334] 0*512kB 02:42:03 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) dup(0xffffffffffffffff) [ 1824.207019] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1824.207027] RIP: 0033:0x45ca59 [ 1824.207031] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1824.207042] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1824.207047] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1824.207053] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1824.207059] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 02:42:03 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000080)=0x4) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1824.207065] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1824.370852] 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1824.376650] Node 1 Normal: 81*4kB (UME) 439*8kB (UME) 874*16kB (UME) 547*32kB (UE) 198*64kB (UME) 12*128kB (UME) 6*256kB (UM) 12*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1921916kB [ 1824.399888] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1824.410911] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1824.422899] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1824.433296] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1824.444016] 79147 total pagecache pages [ 1824.449176] 0 pages in swap cache [ 1824.453013] Swap cache stats: add 0, delete 0, find 0/0 [ 1824.460025] Free swap = 0kB [ 1824.463975] Total swap = 0kB [ 1824.469204] 1965979 pages RAM [ 1824.472617] 0 pages HighMem/MovableOnly [ 1824.480565] 338456 pages reserved [ 1824.484300] 0 pages cma reserved [ 1824.646737] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1824.677812] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1824.683231] CPU: 0 PID: 23234 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1824.683768] syz-executor.4: [ 1824.691107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1824.691112] Call Trace: [ 1824.691132] dump_stack+0x1b2/0x283 [ 1824.691149] warn_alloc.cold+0x96/0x1af [ 1824.691158] ? zone_watermark_ok_safe+0x250/0x250 [ 1824.691176] ? wait_for_completion_io+0x10/0x10 [ 1824.691192] __alloc_pages_nodemask+0x2129/0x2730 [ 1824.691221] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1824.691232] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1824.691254] ? check_preemption_disabled+0x35/0x240 [ 1824.691271] alloc_pages_current+0xe7/0x1e0 [ 1824.691338] kvm_mmu_create+0xd1/0x1c0 [ 1824.691351] kvm_arch_vcpu_init+0x282/0x890 [ 1824.691359] ? alloc_pages_current+0xef/0x1e0 [ 1824.691372] kvm_vcpu_init+0x26d/0x360 [ 1824.691385] vmx_create_vcpu+0xf5/0x2950 [ 1824.691399] ? __mutex_unlock_slowpath+0x75/0x780 [ 1824.691408] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1824.691421] ? alloc_loaded_vmcs+0x240/0x240 [ 1824.691437] kvm_vm_ioctl+0x4ae/0x1430 [ 1824.691449] ? __lock_acquire+0x655/0x42a0 [ 1824.691459] ? kvm_vcpu_release+0xa0/0xa0 [ 1824.691470] ? retint_kernel+0x2d/0x2d [ 1824.691482] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1824.691493] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1824.691505] ? check_preemption_disabled+0x35/0x240 [ 1824.691515] ? retint_kernel+0x2d/0x2d [ 1824.691534] ? selinux_file_ioctl+0x19a/0x560 [ 1824.691545] ? selinux_file_ioctl+0x213/0x560 [ 1824.691556] ? kvm_vcpu_release+0xa0/0xa0 [ 1824.691566] do_vfs_ioctl+0x75a/0xfe0 [ 1824.691578] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1824.691589] ? ioctl_preallocate+0x1a0/0x1a0 [ 1824.691611] ? security_file_ioctl+0x76/0xb0 [ 1824.711963] page allocation failure: order:0 [ 1824.714116] ? security_file_ioctl+0x83/0xb0 [ 1824.714129] SyS_ioctl+0x7f/0xb0 [ 1824.714138] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1824.714152] do_syscall_64+0x1d5/0x640 [ 1824.714171] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1824.714185] RIP: 0033:0x45ca59 [ 1824.733118] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1824.733307] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1824.733318] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1824.733326] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1824.751394] (null) [ 1824.755689] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1824.755695] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1824.755701] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1824.808464] warn_alloc_show_mem: 2 callbacks suppressed [ 1824.808480] Mem-Info: [ 1824.817264] syz-executor.4 cpuset= [ 1824.829896] active_anon:447082 inactive_anon:48677 isolated_anon:0 [ 1824.829896] active_file:8216 inactive_file:62158 isolated_file:0 [ 1824.829896] unevictable:2560 dirty:414 writeback:0 unstable:0 [ 1824.829896] slab_reclaimable:125703 slab_unreclaimable:328985 [ 1824.829896] mapped:64649 shmem:38045 pagetables:8699 bounce:0 [ 1824.829896] free:492258 free_pcp:337 free_cma:0 [ 1824.833461] / [ 1824.841145] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1824.842941] mems_allowed=0-1 [ 1824.851102] Node 1 active_anon:432936kB inactive_anon:35476kB active_file:32844kB inactive_file:248632kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:33984kB dirty:1656kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1824.857519] CPU: 1 PID: 23304 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 02:42:04 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1824.868441] Node 0 [ 1824.870799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1824.870804] Call Trace: [ 1824.870823] dump_stack+0x1b2/0x283 [ 1824.870840] warn_alloc.cold+0x96/0x1af [ 1824.870852] ? zone_watermark_ok_safe+0x250/0x250 [ 1824.870870] ? wait_for_completion_io+0x10/0x10 02:42:04 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1824.878876] DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1824.879234] __alloc_pages_nodemask+0x2129/0x2730 [ 1824.879261] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1824.885270] lowmem_reserve[]: [ 1824.892860] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1824.892871] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1824.892898] alloc_pages_current+0xe7/0x1e0 [ 1824.892914] kvm_mmu_create+0xd1/0x1c0 [ 1824.892926] kvm_arch_vcpu_init+0x282/0x890 [ 1824.892940] ? alloc_pages_current+0xef/0x1e0 [ 1824.901806] 0 [ 1824.907466] kvm_vcpu_init+0x26d/0x360 [ 1824.907482] vmx_create_vcpu+0xf5/0x2950 [ 1824.907496] ? __mutex_unlock_slowpath+0x75/0x780 [ 1824.907505] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1824.907517] ? alloc_loaded_vmcs+0x240/0x240 [ 1824.907535] kvm_vm_ioctl+0x4ae/0x1430 [ 1824.907550] ? __lock_acquire+0x655/0x42a0 [ 1824.910195] 2559 [ 1824.916942] ? kvm_vcpu_release+0xa0/0xa0 [ 1824.916953] ? check_preemption_disabled+0x35/0x240 [ 1824.916967] ? perf_trace_lock+0x109/0x4b0 [ 1824.916978] ? check_preemption_disabled+0x35/0x240 [ 1824.916989] ? perf_trace_lock+0x109/0x4b0 [ 1824.916996] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1824.917005] ? futex_exit_release+0x60/0x60 [ 1824.917017] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1824.917027] ? retint_kernel+0x2d/0x2d [ 1824.917039] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1824.925203] 2559 [ 1824.931574] ? kvm_vcpu_release+0xa0/0xa0 [ 1824.931586] do_vfs_ioctl+0x75a/0xfe0 [ 1824.931600] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1824.931608] ? check_preemption_disabled+0x35/0x240 [ 1824.931617] ? ioctl_preallocate+0x1a0/0x1a0 [ 1824.931637] ? security_file_ioctl+0x76/0xb0 [ 1824.931646] ? security_file_ioctl+0x83/0xb0 [ 1824.931658] SyS_ioctl+0x7f/0xb0 [ 1824.931665] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1824.931678] do_syscall_64+0x1d5/0x640 [ 1824.937737] 2559 [ 1824.939424] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1824.939433] RIP: 0033:0x45ca59 [ 1824.939439] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1824.939450] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1824.939456] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1824.939461] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1824.939469] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1824.943083] 2559 [ 1824.977437] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1825.127447] syz-executor.5: [ 1825.161480] page allocation failure: order:0 [ 1825.162733] Node 0 [ 1825.168093] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= 02:42:04 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) [ 1825.173685] DMA32 free:35784kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:4kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:388kB local_pcp:152kB free_cma:0kB [ 1825.175117] (null) [ 1825.181315] lowmem_reserve[]: [ 1825.186571] syz-executor.5 cpuset= [ 1825.191855] 0 [ 1825.195283] / [ 1825.201432] 0 [ 1825.212750] mems_allowed=0-1 [ 1825.217144] 0 [ 1825.219164] CPU: 1 PID: 23327 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1825.222637] 0 [ 1825.227558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1825.227563] Call Trace: [ 1825.227580] dump_stack+0x1b2/0x283 [ 1825.227596] warn_alloc.cold+0x96/0x1af [ 1825.227608] ? zone_watermark_ok_safe+0x250/0x250 [ 1825.227624] ? wait_for_completion_io+0x10/0x10 [ 1825.227639] __alloc_pages_nodemask+0x2129/0x2730 [ 1825.227667] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1825.227678] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1825.227704] ? do_raw_spin_unlock+0x164/0x250 [ 1825.227719] alloc_pages_current+0xe7/0x1e0 [ 1825.227735] kvm_mmu_create+0xd1/0x1c0 [ 1825.227746] kvm_arch_vcpu_init+0x282/0x890 [ 1825.227757] ? alloc_pages_current+0xef/0x1e0 [ 1825.230975] 0 [ 1825.233954] kvm_vcpu_init+0x26d/0x360 [ 1825.233969] vmx_create_vcpu+0xf5/0x2950 [ 1825.233983] ? __mutex_unlock_slowpath+0x75/0x780 [ 1825.248366] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1825.248381] ? alloc_loaded_vmcs+0x240/0x240 [ 1825.248398] kvm_vm_ioctl+0x4ae/0x1430 [ 1825.252878] Node 0 [ 1825.257174] ? __lock_acquire+0x655/0x42a0 [ 1825.257186] ? kvm_vcpu_release+0xa0/0xa0 [ 1825.257195] ? check_preemption_disabled+0x35/0x240 [ 1825.257205] ? perf_trace_lock+0x109/0x4b0 [ 1825.257216] ? check_preemption_disabled+0x35/0x240 [ 1825.257227] ? perf_trace_lock+0x109/0x4b0 [ 1825.257236] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1825.266476] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1825.268951] ? futex_exit_release+0x60/0x60 [ 1825.268966] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1825.268979] ? lock_acquire+0x170/0x3f0 [ 1825.272973] lowmem_reserve[]: [ 1825.274947] ? kvm_vcpu_release+0xa0/0xa0 [ 1825.274959] do_vfs_ioctl+0x75a/0xfe0 [ 1825.274974] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1825.286152] 0 [ 1825.291006] ? ioctl_preallocate+0x1a0/0x1a0 [ 1825.291029] ? security_file_ioctl+0x76/0xb0 [ 1825.299178] 0 [ 1825.305622] ? security_file_ioctl+0x83/0xb0 [ 1825.305634] SyS_ioctl+0x7f/0xb0 [ 1825.305641] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1825.305655] do_syscall_64+0x1d5/0x640 [ 1825.305671] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1825.305681] RIP: 0033:0x45ca59 [ 1825.317355] 0 [ 1825.320183] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1825.320195] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1825.320200] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1825.320209] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1825.322256] 0 [ 1825.329501] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1825.329507] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1825.674779] 0 [ 1825.677236] Node 1 Normal free:1922100kB min:53592kB low:66988kB high:80384kB active_anon:433232kB inactive_anon:35476kB active_file:32844kB inactive_file:248664kB unevictable:0kB writepending:1712kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3264kB pagetables:6756kB bounce:0kB free_pcp:932kB local_pcp:604kB free_cma:0kB [ 1825.708061] lowmem_reserve[]: 0 0 0 0 0 [ 1825.712120] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1825.728862] Node 0 DMA32: 1166*4kB (UMEH) 692*8kB (UMEH) 116*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35864kB [ 1825.746204] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1825.757078] Node 1 Normal: 26*4kB (ME) 25*8kB (ME) 805*16kB (UME) 628*32kB (UME) 199*64kB (UME) 17*128kB (UME) 7*256kB (UM) 13*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1921344kB [ 1825.782417] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1825.799773] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1825.814624] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1825.837569] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 02:42:05 executing program 2: r0 = socket$bt_bnep(0x1f, 0x3, 0x4) ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f0000000040)=@add_del={0x2, &(0x7f0000000000)='vlan0\x00'}) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000380)) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) r8 = socket$inet6(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000c40)=ANY=[@ANYBLOB="66696c74657200000000000000000000000000000000000000000000000000000e0000000400000098030000f8000000c8010000f8000000c8010000f8000000c8020000c8020000c8020000c8020000c80200000400000000000000000000004cc7872711511674c05009ff3488171900000000000000000000ffff000000000000000000000000000000000000000000000000000000000000000000000000736974300000000000000000000000006272696467655f736c6176655f3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d000f8000000000000000000000000000000000000000000000000002800686c00000000000000000000000000000000000000000000000000000000000000000000000028004e46515545554500000000000000000000000000000000000000000000020000018000000000fe880000000000000000000000000001fe880000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000068737230000000000000000000000000000000000000000000000000000000000000000000000000000000000000530000000000000000000000000000000000000000000000000000000000a800d00000000000000000000000000000000000000000000000000028004e46515545554500000000000000000000000000000000000bed4bd500020000060000000000fe8000000000000000000000000000bbfe88000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000006272696467655f736c6176655f310000626174616476300000000000000000000000000000000000000000000000000000000000000000000000000000000000110000050000000000000016d800000100000000000000000000000000000000000000000000000030006c32747000000000000000000000000000000000000000000000000000000000000000000000f7ff010000000000280052454a45435400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a800d0000000000000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff"], 0x1) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r8, 0x84, 0x72, &(0x7f0000000080)={0x0, 0x2565, 0x10}, &(0x7f0000000100)=0xc) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r3, r4, 0x80000) dup2(r2, r5) 02:42:05 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) 02:42:05 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:05 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) 02:42:05 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 02:42:05 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) dup(0xffffffffffffffff) [ 1825.852283] 79161 total pagecache pages [ 1825.859151] 0 pages in swap cache [ 1825.862879] Swap cache stats: add 0, delete 0, find 0/0 [ 1825.875199] Free swap = 0kB [ 1825.878724] Total swap = 0kB [ 1825.881873] 1965979 pages RAM [ 1825.885101] 0 pages HighMem/MovableOnly [ 1825.889571] 338456 pages reserved [ 1825.893136] 0 pages cma reserved [ 1826.087563] ip6_tables: ip6tables: counters copy to user failed while replacing table [ 1826.217205] ip6_tables: ip6tables: counters copy to user failed while replacing table 02:42:05 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x7, 0x0, 0x41bc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_config_ext, 0x0, 0xffffffffffffffff, 0x0, 0xce90c32b88381a67}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x80041, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r6, 0x0, 0x0, 0x400806e, &(0x7f0000000040)={0xa, 0x4e1f, 0x0, @local, 0xfffffffc}, 0x1c) sendmmsg$inet6(r6, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) getsockopt$IP6T_SO_GET_ENTRIES(r6, 0x29, 0x41, &(0x7f00000003c0)=ANY=[@ANYBLOB="66696c7465720000000000000000000000000000000000000000000000000000c80000009b79ed709b1b7408f08147db300500b3dd6add824a19bee783512b49ca59a72ba72a05679546b628155fe3dbafc684b0dff96d28829b9e87ab107a47aa2e785116650cebfe75012939cddcf547b391697eccba00efb25debaaef1f9de5591d715c90f5aa00a588895e7d17994f54c69db11d20c3bcb2960ebec5f61146341b58066d1a3491b063c03d9440e1c9b856dfd0ecddea6a876bec5c0d2e7ce99735cfd619cc0df6b65d8f2109504f150a6dd004b8b8298fb99dbadce47d67c31597a87cee6e3b716dad9dca26a0738f6e685d530073d7"], &(0x7f0000000000)=0xec) r7 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$SIOCAX25DELFWD(r7, 0x89eb, &(0x7f0000000080)={@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1826.322960] warn_alloc: 2 callbacks suppressed [ 1826.322977] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1826.350794] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1826.356678] CPU: 1 PID: 23369 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1826.364559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1826.373910] Call Trace: [ 1826.376501] dump_stack+0x1b2/0x283 [ 1826.380396] warn_alloc.cold+0x96/0x1af [ 1826.384371] ? zone_watermark_ok_safe+0x250/0x250 [ 1826.389227] ? wait_for_completion_io+0x10/0x10 [ 1826.393903] __alloc_pages_nodemask+0x2129/0x2730 [ 1826.398764] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1826.403608] ? mark_held_locks+0xa6/0xf0 [ 1826.407671] ? retint_kernel+0x2d/0x2d [ 1826.411560] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1826.416335] alloc_pages_current+0xe7/0x1e0 [ 1826.420664] kvm_mmu_create+0xd1/0x1c0 [ 1826.424556] kvm_arch_vcpu_init+0x282/0x890 [ 1826.428874] ? alloc_pages_current+0xef/0x1e0 [ 1826.433379] kvm_vcpu_init+0x26d/0x360 [ 1826.437281] vmx_create_vcpu+0xf5/0x2950 [ 1826.441342] ? __mutex_unlock_slowpath+0x75/0x780 [ 1826.446184] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1826.451380] ? alloc_loaded_vmcs+0x240/0x240 [ 1826.455801] kvm_vm_ioctl+0x4ae/0x1430 [ 1826.459695] ? __lock_acquire+0x655/0x42a0 [ 1826.463968] ? kvm_vcpu_release+0xa0/0xa0 [ 1826.468116] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1826.472881] ? retint_kernel+0x2d/0x2d [ 1826.476773] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1826.481711] syz-executor.3: [ 1826.481787] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1826.481803] ? check_preemption_disabled+0x35/0x240 [ 1826.484819] page allocation failure: order:0 [ 1826.489541] ? retint_kernel+0x2d/0x2d [ 1826.489552] ? __fget+0x1ff/0x360 [ 1826.489565] ? kvm_vcpu_release+0xa0/0xa0 [ 1826.489574] do_vfs_ioctl+0x75a/0xfe0 [ 1826.489588] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1826.489597] ? ioctl_preallocate+0x1a0/0x1a0 [ 1826.489622] ? security_file_ioctl+0x76/0xb0 [ 1826.512152] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1826.514231] ? security_file_ioctl+0x83/0xb0 [ 1826.514244] SyS_ioctl+0x7f/0xb0 [ 1826.514253] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1826.514269] do_syscall_64+0x1d5/0x640 [ 1826.519928] (null) [ 1826.524270] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1826.524280] RIP: 0033:0x45ca59 [ 1826.532510] syz-executor.3 cpuset= [ 1826.534527] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 02:42:06 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1826.534538] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1826.534544] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1826.534550] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1826.534556] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1826.534562] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1826.573220] warn_alloc_show_mem: 2 callbacks suppressed [ 1826.573237] Mem-Info: [ 1826.573313] active_anon:447101 inactive_anon:48677 isolated_anon:0 [ 1826.573313] active_file:8216 inactive_file:62181 isolated_file:0 [ 1826.573313] unevictable:2560 dirty:434 writeback:0 unstable:0 [ 1826.573313] slab_reclaimable:125695 slab_unreclaimable:329347 [ 1826.573313] mapped:64667 shmem:38045 pagetables:8675 bounce:0 [ 1826.573313] free:491746 free_pcp:381 free_cma:0 [ 1826.573373] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1826.594067] / [ 1826.603412] Node 1 active_anon:433012kB inactive_anon:35476kB active_file:32844kB inactive_file:248724kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34056kB dirty:1736kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1826.655026] mems_allowed=0-1 [ 1826.690864] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1826.744634] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1826.750815] Node 0 DMA32 free:35864kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:400kB local_pcp:236kB free_cma:0kB [ 1826.762355] syz-executor.5: [ 1826.781919] lowmem_reserve[]: [ 1826.783743] page allocation failure: order:0 [ 1826.785327] 0 0 0 0 0 [ 1826.796824] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1826.797627] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1826.824457] lowmem_reserve[]: [ 1826.828232] CPU: 0 PID: 23364 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1826.834926] 0 [ 1826.841332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1826.841336] Call Trace: [ 1826.841355] dump_stack+0x1b2/0x283 [ 1826.841370] warn_alloc.cold+0x96/0x1af [ 1826.841382] ? zone_watermark_ok_safe+0x250/0x250 [ 1826.841403] ? wait_for_completion_io+0x10/0x10 [ 1826.841420] __alloc_pages_nodemask+0x2129/0x2730 [ 1826.841447] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1826.841458] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1826.841489] alloc_pages_current+0xe7/0x1e0 [ 1826.841505] kvm_mmu_create+0xd1/0x1c0 [ 1826.841518] kvm_arch_vcpu_init+0x282/0x890 [ 1826.841528] ? alloc_pages_current+0xef/0x1e0 [ 1826.841546] kvm_vcpu_init+0x26d/0x360 [ 1826.841560] vmx_create_vcpu+0xf5/0x2950 [ 1826.841573] ? __mutex_unlock_slowpath+0x75/0x780 [ 1826.841584] ? drop_futex_key_refs.isra.0+0x17/0x80 02:42:06 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x400043, 0x0) ioctl$NS_GET_OWNER_UID(r3, 0xb704, &(0x7f0000000000)) r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0)='mptcp_pm\x00') sendmsg$MPTCP_PM_CMD_SET_LIMITS(r3, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, r4, 0x100, 0x70bd2d, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x840) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1826.841597] ? alloc_loaded_vmcs+0x240/0x240 [ 1826.841614] kvm_vm_ioctl+0x4ae/0x1430 [ 1826.845019] 0 [ 1826.852763] ? __lock_acquire+0x655/0x42a0 [ 1826.852774] ? kvm_vcpu_release+0xa0/0xa0 [ 1826.852784] ? check_preemption_disabled+0x35/0x240 [ 1826.852795] ? retint_kernel+0x2d/0x2d [ 1826.852807] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1826.852820] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1826.852833] ? check_preemption_disabled+0x35/0x240 [ 1826.852843] ? retint_kernel+0x2d/0x2d [ 1826.852859] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1826.852872] ? kvm_vcpu_release+0xa0/0xa0 [ 1826.858422] 0 [ 1826.859158] do_vfs_ioctl+0x75a/0xfe0 [ 1826.859175] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1826.864558] 0 [ 1826.867959] ? ioctl_preallocate+0x1a0/0x1a0 [ 1826.867980] ? security_file_ioctl+0x76/0xb0 [ 1826.867989] ? security_file_ioctl+0x83/0xb0 [ 1826.867998] SyS_ioctl+0x7f/0xb0 [ 1826.868006] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1826.868021] do_syscall_64+0x1d5/0x640 [ 1826.868040] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1826.868049] RIP: 0033:0x45ca59 [ 1826.868055] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1826.868065] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1826.868070] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1826.868075] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1826.868081] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1826.868087] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1826.899050] (null) [ 1826.913958] 0 [ 1826.969197] syz-executor.5 cpuset= [ 1826.992014] / [ 1826.993212] Node 1 [ 1826.994537] mems_allowed=0-1 [ 1826.999731] Normal free:1921076kB min:53592kB low:66988kB high:80384kB active_anon:433048kB inactive_anon:35476kB active_file:32844kB inactive_file:248760kB unevictable:0kB writepending:1772kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3424kB pagetables:6784kB bounce:0kB free_pcp:1016kB local_pcp:636kB free_cma:0kB [ 1827.010770] CPU: 0 PID: 23412 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1827.012227] lowmem_reserve[]: [ 1827.015679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1827.015684] Call Trace: [ 1827.015701] dump_stack+0x1b2/0x283 [ 1827.015718] warn_alloc.cold+0x96/0x1af [ 1827.015730] ? zone_watermark_ok_safe+0x250/0x250 [ 1827.015749] ? wait_for_completion_io+0x10/0x10 [ 1827.015765] __alloc_pages_nodemask+0x2129/0x2730 [ 1827.015791] ? retint_kernel+0x2d/0x2d [ 1827.015802] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1827.015816] ? trace_hardirqs_on_thunk+0x1a/0x1c 02:42:06 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1827.015831] ? check_preemption_disabled+0x35/0x240 [ 1827.015856] alloc_pages_current+0xe7/0x1e0 [ 1827.015871] kvm_mmu_create+0xd1/0x1c0 [ 1827.015885] kvm_arch_vcpu_init+0x282/0x890 [ 1827.015894] ? alloc_pages_current+0xef/0x1e0 [ 1827.015908] kvm_vcpu_init+0x26d/0x360 [ 1827.015922] vmx_create_vcpu+0xf5/0x2950 [ 1827.015935] ? __mutex_unlock_slowpath+0x75/0x780 [ 1827.015945] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1827.015956] ? alloc_loaded_vmcs+0x240/0x240 [ 1827.015972] kvm_vm_ioctl+0x4ae/0x1430 [ 1827.015984] ? __lock_acquire+0x655/0x42a0 [ 1827.015995] ? kvm_vcpu_release+0xa0/0xa0 [ 1827.016004] ? check_preemption_disabled+0x35/0x240 [ 1827.016016] ? perf_trace_lock+0x109/0x4b0 [ 1827.016029] ? check_preemption_disabled+0x35/0x240 [ 1827.016041] ? perf_trace_lock+0x109/0x4b0 [ 1827.016055] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1827.016065] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1827.016078] ? kvm_vcpu_release+0xa0/0xa0 [ 1827.016090] do_vfs_ioctl+0x75a/0xfe0 [ 1827.016102] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1827.016114] ? ioctl_preallocate+0x1a0/0x1a0 [ 1827.016134] ? security_file_ioctl+0x76/0xb0 [ 1827.016143] ? security_file_ioctl+0x83/0xb0 [ 1827.016154] SyS_ioctl+0x7f/0xb0 [ 1827.016161] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1827.016173] do_syscall_64+0x1d5/0x640 [ 1827.016190] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1827.016198] RIP: 0033:0x45ca59 [ 1827.016204] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1827.016215] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1827.016221] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1827.016227] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1827.016233] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1827.016238] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1827.183273] syz-executor.5: [ 1827.206219] 0 [ 1827.234050] page allocation failure: order:0 [ 1827.249387] 0 [ 1827.264069] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1827.275500] 0 [ 1827.281232] (null) [ 1827.289512] 0 [ 1827.291773] syz-executor.5 cpuset= [ 1827.293407] 0 [ 1827.293480] Node 0 [ 1827.301060] / [ 1827.305843] DMA: [ 1827.311408] mems_allowed=0-1 [ 1827.320307] 5*4kB [ 1827.325262] CPU: 0 PID: 23424 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1827.332945] (UM) [ 1827.339643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1827.339648] Call Trace: [ 1827.339669] dump_stack+0x1b2/0x283 [ 1827.339686] warn_alloc.cold+0x96/0x1af [ 1827.339696] ? zone_watermark_ok_safe+0x250/0x250 [ 1827.339717] ? wait_for_completion_io+0x10/0x10 [ 1827.339733] __alloc_pages_nodemask+0x2129/0x2730 [ 1827.339760] ? retint_kernel+0x2d/0x2d [ 1827.339770] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1827.339780] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1827.339791] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1827.339823] alloc_pages_current+0xe7/0x1e0 [ 1827.460679] kvm_mmu_create+0xd1/0x1c0 [ 1827.464550] kvm_arch_vcpu_init+0x282/0x890 [ 1827.468851] ? alloc_pages_current+0xef/0x1e0 [ 1827.473339] kvm_vcpu_init+0x26d/0x360 [ 1827.477220] vmx_create_vcpu+0xf5/0x2950 [ 1827.481264] ? __mutex_unlock_slowpath+0x75/0x780 [ 1827.486086] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1827.491082] ? alloc_loaded_vmcs+0x240/0x240 [ 1827.495474] kvm_vm_ioctl+0x4ae/0x1430 [ 1827.499339] ? __lock_acquire+0x655/0x42a0 [ 1827.503553] ? kvm_vcpu_release+0xa0/0xa0 [ 1827.507680] ? check_preemption_disabled+0x35/0x240 [ 1827.512676] ? perf_trace_lock+0x109/0x4b0 [ 1827.516901] ? check_preemption_disabled+0x35/0x240 [ 1827.521897] ? perf_trace_lock+0x109/0x4b0 [ 1827.526109] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1827.531026] ? futex_exit_release+0x60/0x60 [ 1827.535331] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1827.540242] ? lock_acquire+0x170/0x3f0 [ 1827.544214] ? kvm_vcpu_release+0xa0/0xa0 [ 1827.548343] do_vfs_ioctl+0x75a/0xfe0 [ 1827.552125] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1827.557739] ? ioctl_preallocate+0x1a0/0x1a0 [ 1827.562148] ? security_file_ioctl+0x76/0xb0 [ 1827.566536] ? security_file_ioctl+0x83/0xb0 [ 1827.570922] SyS_ioctl+0x7f/0xb0 [ 1827.574265] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1827.578234] do_syscall_64+0x1d5/0x640 [ 1827.582104] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1827.587284] RIP: 0033:0x45ca59 [ 1827.590452] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1827.598140] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1827.605392] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1827.612653] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1827.619904] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1827.627166] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1827.646470] 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1827.669713] warn_alloc_show_mem: 2 callbacks suppressed [ 1827.669731] Mem-Info: [ 1827.678391] active_anon:447135 inactive_anon:48677 isolated_anon:0 [ 1827.678391] active_file:8216 inactive_file:62190 isolated_file:0 [ 1827.678391] unevictable:2560 dirty:443 writeback:0 unstable:0 [ 1827.678391] slab_reclaimable:125692 slab_unreclaimable:329814 [ 1827.678391] mapped:64668 shmem:38045 pagetables:8711 bounce:0 [ 1827.678391] free:491311 free_pcp:412 free_cma:0 [ 1827.688831] Node 0 DMA32: 1166*4kB (UMEH) 695*8kB (UMEH) 116*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35888kB [ 1827.722691] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1827.742231] Node 0 [ 1827.773582] Node 1 active_anon:433148kB inactive_anon:35476kB active_file:32844kB inactive_file:248760kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34060kB dirty:1772kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1827.774034] Normal: [ 1827.778900] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1827.813929] 0*4kB [ 1827.844134] lowmem_reserve[]: [ 1827.844529] 0*8kB [ 1827.848773] 0 [ 1827.850193] 0*16kB [ 1827.852070] 2559 [ 1827.853896] 0*32kB [ 1827.858651] 2559 2559 2559 [ 1827.866440] 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB [ 1827.866649] Node 0 [ 1827.872053] 0*2048kB 02:42:07 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r4, 0x54a2) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1827.873143] DMA32 free:35888kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:400kB local_pcp:164kB free_cma:0kB [ 1827.874537] 0*4096kB [ 1827.877516] lowmem_reserve[]: [ 1827.920721] = 0kB [ 1827.928322] Node 1 Normal: 132*4kB (UME) 253*8kB (UME) 569*16kB (UME) 637*32kB (UME) 199*64kB (UME) 22*128kB (UME) 15*256kB (UM) 13*512kB (UME) 3*1024kB (UM) 1*2048kB (U) [ 1827.929252] 0 [ 1827.929280] 454*4096kB (M) = 1922792kB [ 1827.960520] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1827.968540] 0 0 0 0 [ 1827.971859] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1827.977328] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1828.013220] lowmem_reserve[]: 0 0 0 0 0 [ 1828.013718] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1828.018798] Node 1 Normal free:1921468kB min:53592kB low:66988kB high:80384kB active_anon:432980kB inactive_anon:35476kB active_file:32844kB inactive_file:248788kB unevictable:0kB writepending:1812kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3264kB pagetables:6652kB bounce:0kB free_pcp:1128kB local_pcp:588kB free_cma:0kB [ 1828.032642] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1828.063650] lowmem_reserve[]: 0 0 0 0 0 [ 1828.073346] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1828.074999] 79186 total pagecache pages [ 1828.090258] Node 0 DMA32: 1166*4kB (UMEH) 696*8kB (UMEH) 116*16kB (UM) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 35896kB [ 1828.100212] 0 pages in swap cache [ 1828.111923] Node 0 [ 1828.114886] Swap cache stats: add 0, delete 0, find 0/0 [ 1828.115536] Normal: [ 1828.122606] Free swap = 0kB [ 1828.123550] 0*4kB [ 1828.125041] Total swap = 0kB [ 1828.130573] 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1828.140701] 1965979 pages RAM [ 1828.148736] 0 pages HighMem/MovableOnly [ 1828.149486] Node 1 [ 1828.152881] 338456 pages reserved [ 1828.155228] Normal: [ 1828.160616] 0 pages cma reserved 02:42:07 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1828.164815] 101*4kB (UME) 139*8kB (UME) 555*16kB (UME) 634*32kB (UME) 199*64kB (UME) 23*128kB (UME) 15*256kB (UM) 13*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1921564kB [ 1828.192896] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1828.217722] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1828.218460] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1828.231232] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1828.244098] CPU: 1 PID: 23396 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1828.251979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1828.259255] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1828.261324] Call Trace: [ 1828.261342] dump_stack+0x1b2/0x283 [ 1828.261359] warn_alloc.cold+0x96/0x1af [ 1828.261371] ? zone_watermark_ok_safe+0x250/0x250 [ 1828.272118] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1828.272785] ? wait_for_completion_io+0x10/0x10 [ 1828.272803] __alloc_pages_nodemask+0x2129/0x2730 [ 1828.272828] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1828.276598] 79186 total pagecache pages [ 1828.280379] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1828.280407] ? do_raw_spin_unlock+0x164/0x250 [ 1828.280422] alloc_pages_current+0xe7/0x1e0 [ 1828.280438] kvm_mmu_create+0xd1/0x1c0 [ 1828.285398] 0 pages in swap cache [ 1828.293804] kvm_arch_vcpu_init+0x282/0x890 [ 1828.293816] ? alloc_pages_current+0xef/0x1e0 [ 1828.293831] kvm_vcpu_init+0x26d/0x360 [ 1828.293844] vmx_create_vcpu+0xf5/0x2950 [ 1828.293857] ? __mutex_unlock_slowpath+0x75/0x780 [ 1828.298632] Swap cache stats: add 0, delete 0, find 0/0 [ 1828.303316] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1828.303330] ? alloc_loaded_vmcs+0x240/0x240 [ 1828.303347] kvm_vm_ioctl+0x4ae/0x1430 [ 1828.303358] ? __lock_acquire+0x655/0x42a0 [ 1828.303369] ? kvm_vcpu_release+0xa0/0xa0 [ 1828.308323] Free swap = 0kB [ 1828.312139] ? check_preemption_disabled+0x35/0x240 [ 1828.312152] ? perf_trace_lock+0x109/0x4b0 [ 1828.312165] ? check_preemption_disabled+0x35/0x240 [ 1828.312177] ? perf_trace_lock+0x109/0x4b0 [ 1828.312187] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1828.317138] Total swap = 0kB [ 1828.321475] ? futex_exit_release+0x60/0x60 [ 1828.321489] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1828.321501] ? lock_acquire+0x170/0x3f0 [ 1828.321512] ? kvm_vcpu_release+0xa0/0xa0 02:42:08 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) [ 1828.321529] do_vfs_ioctl+0x75a/0xfe0 [ 1828.325957] 1965979 pages RAM [ 1828.329687] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1828.329700] ? ioctl_preallocate+0x1a0/0x1a0 [ 1828.329722] ? security_file_ioctl+0x76/0xb0 [ 1828.329733] ? security_file_ioctl+0x83/0xb0 [ 1828.333277] 0 pages HighMem/MovableOnly [ 1828.337462] SyS_ioctl+0x7f/0xb0 [ 1828.337470] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1828.337485] do_syscall_64+0x1d5/0x640 [ 1828.337505] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1828.337514] RIP: 0033:0x45ca59 02:42:08 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) r7 = dup3(r2, r3, 0x80000) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0)='TIPCv2\x00') sendmsg$TIPC_NL_LINK_SET(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="0100000000000000000009000000240004800c000780080003000000000013c7010062726f6164dfc77f7c2d6c696e6b0000"], 0x38}}, 0x0) sendmsg$TIPC_NL_PEER_REMOVE(r7, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)={0x100, r9, 0x10, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x10, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}]}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}]}, @TIPC_NLA_SOCK={0xc4, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7fff}]}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xc3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x100}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffffff7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x72}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffff801}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x100}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1904a9e6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x80}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x100}, 0x1, 0x0, 0x0, 0xc004}, 0x200400d0) dup2(r1, r4) 02:42:08 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1828.337518] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1828.337534] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1828.337542] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1828.342231] 338456 pages reserved [ 1828.345872] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1828.345878] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1828.345884] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1828.528224] 0 pages cma reserved 02:42:08 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:08 executing program 5: getpid() perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1828.809391] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1828.821336] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1828.832954] CPU: 1 PID: 23483 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1828.840850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1828.850202] Call Trace: [ 1828.852798] dump_stack+0x1b2/0x283 [ 1828.856436] warn_alloc.cold+0x96/0x1af [ 1828.860411] ? zone_watermark_ok_safe+0x250/0x250 [ 1828.864012] syz-executor.3: [ 1828.865260] ? wait_for_completion_io+0x10/0x10 [ 1828.865281] __alloc_pages_nodemask+0x2129/0x2730 [ 1828.868337] page allocation failure: order:0 [ 1828.872959] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1828.884452] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1828.887009] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1828.887037] ? do_raw_spin_unlock+0x164/0x250 [ 1828.887054] alloc_pages_current+0xe7/0x1e0 [ 1828.892942] (null) [ 1828.897746] kvm_mmu_create+0xd1/0x1c0 [ 1828.897759] kvm_arch_vcpu_init+0x282/0x890 [ 1828.897768] ? alloc_pages_current+0xef/0x1e0 [ 1828.897782] kvm_vcpu_init+0x26d/0x360 [ 1828.897799] vmx_create_vcpu+0xf5/0x2950 [ 1828.906547] syz-executor.3 cpuset= [ 1828.908705] ? __mutex_unlock_slowpath+0x75/0x780 [ 1828.908717] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1828.908733] ? alloc_loaded_vmcs+0x240/0x240 [ 1828.908749] kvm_vm_ioctl+0x4ae/0x1430 [ 1828.912638] / [ 1828.916916] ? __lock_acquire+0x655/0x42a0 [ 1828.925332] mems_allowed=0-1 [ 1828.929429] ? kvm_vcpu_release+0xa0/0xa0 [ 1828.929441] ? check_preemption_disabled+0x35/0x240 [ 1828.929454] ? perf_trace_lock+0x109/0x4b0 [ 1828.973358] ? check_preemption_disabled+0x35/0x240 [ 1828.978377] ? perf_trace_lock+0x109/0x4b0 [ 1828.982598] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1828.987531] ? futex_exit_release+0x60/0x60 [ 1828.991846] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1828.996767] ? lock_acquire+0x170/0x3f0 [ 1829.000729] ? kvm_vcpu_release+0xa0/0xa0 [ 1829.004905] do_vfs_ioctl+0x75a/0xfe0 [ 1829.008726] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1829.014340] ? ioctl_preallocate+0x1a0/0x1a0 [ 1829.018753] ? security_file_ioctl+0x76/0xb0 [ 1829.024102] ? security_file_ioctl+0x83/0xb0 [ 1829.028501] SyS_ioctl+0x7f/0xb0 [ 1829.031856] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1829.035821] do_syscall_64+0x1d5/0x640 [ 1829.039703] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1829.044880] RIP: 0033:0x45ca59 [ 1829.048058] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1829.055767] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1829.063023] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1829.071233] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1829.078490] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1829.085746] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1829.093029] CPU: 0 PID: 23456 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1829.100912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 02:42:08 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) dup(0xffffffffffffffff) [ 1829.110263] Call Trace: [ 1829.112860] dump_stack+0x1b2/0x283 [ 1829.116497] warn_alloc.cold+0x96/0x1af [ 1829.120477] ? zone_watermark_ok_safe+0x250/0x250 [ 1829.125336] ? wait_for_completion_io+0x10/0x10 [ 1829.130017] __alloc_pages_nodemask+0x2129/0x2730 [ 1829.134898] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1829.139752] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1829.144618] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1829.149383] alloc_pages_current+0xe7/0x1e0 [ 1829.153717] kvm_mmu_create+0xd1/0x1c0 [ 1829.157781] kvm_arch_vcpu_init+0x282/0x890 [ 1829.162109] ? alloc_pages_current+0xef/0x1e0 [ 1829.166734] kvm_vcpu_init+0x26d/0x360 [ 1829.170649] vmx_create_vcpu+0xf5/0x2950 [ 1829.174715] ? __mutex_unlock_slowpath+0x75/0x780 [ 1829.179557] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1829.184578] ? alloc_loaded_vmcs+0x240/0x240 [ 1829.188991] kvm_vm_ioctl+0x4ae/0x1430 [ 1829.192625] warn_alloc_show_mem: 1 callbacks suppressed [ 1829.192629] Mem-Info: [ 1829.192879] ? __lock_acquire+0x655/0x42a0 [ 1829.198533] active_anon:447139 inactive_anon:48678 isolated_anon:0 [ 1829.198533] active_file:8217 inactive_file:62205 isolated_file:0 [ 1829.198533] unevictable:2560 dirty:462 writeback:0 unstable:0 [ 1829.198533] slab_reclaimable:125720 slab_unreclaimable:329164 [ 1829.198533] mapped:64933 shmem:38045 pagetables:8737 bounce:0 [ 1829.198533] free:491963 free_pcp:262 free_cma:0 [ 1829.200617] ? kvm_vcpu_release+0xa0/0xa0 [ 1829.200629] ? check_preemption_disabled+0x35/0x240 [ 1829.200643] ? perf_trace_lock+0x109/0x4b0 [ 1829.200655] ? check_preemption_disabled+0x35/0x240 [ 1829.200669] ? perf_trace_lock+0x109/0x4b0 [ 1829.205026] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:20kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224612kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1829.239325] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1829.239338] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1829.239347] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1829.239360] ? kvm_vcpu_release+0xa0/0xa0 [ 1829.239370] do_vfs_ioctl+0x75a/0xfe0 [ 1829.239384] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1829.239394] ? ioctl_preallocate+0x1a0/0x1a0 [ 1829.239405] ? check_preemption_disabled+0x3b/0x240 [ 1829.239425] ? security_file_ioctl+0x76/0xb0 [ 1829.239435] ? security_file_ioctl+0x83/0xb0 [ 1829.239446] SyS_ioctl+0x7f/0xb0 [ 1829.239453] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1829.239463] do_syscall_64+0x1d5/0x640 [ 1829.239479] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1829.239488] RIP: 0033:0x45ca59 02:42:08 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) r3 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0x400, 0x400) bind$inet6(r3, &(0x7f0000000140)={0xa, 0x4e21, 0xf24, @private2={0xfc, 0x2, [], 0x1}, 0xff}, 0x1c) 02:42:08 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1829.239493] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1829.239503] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1829.239509] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1829.239515] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1829.239521] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1829.239526] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1829.313277] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1829.354047] Node 1 active_anon:433336kB inactive_anon:35476kB active_file:32848kB inactive_file:248832kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:35104kB dirty:1856kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1829.356442] syz-executor.2: [ 1829.359381] Node 0 [ 1829.387881] page allocation failure: order:0 [ 1829.403398] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1829.412998] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1829.413055] syz-executor.2 cpuset=/ [ 1829.463642] lowmem_reserve[]: [ 1829.491265] mems_allowed=0-1 [ 1829.500969] 0 2559 2559 2559 2559 [ 1829.504692] CPU: 0 PID: 23457 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1829.507154] Node 0 [ 1829.512573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1829.512578] Call Trace: [ 1829.512595] dump_stack+0x1b2/0x283 [ 1829.512612] warn_alloc.cold+0x96/0x1af [ 1829.512624] ? zone_watermark_ok_safe+0x250/0x250 [ 1829.514961] DMA32 free:36176kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:0kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:120kB local_pcp:0kB free_cma:0kB [ 1829.524208] ? __mutex_unlock_slowpath+0x268/0x780 [ 1829.524222] ? wait_for_completion_io+0x10/0x10 [ 1829.524237] __alloc_pages_nodemask+0x2129/0x2730 [ 1829.524265] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1829.524278] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1829.524288] ? retint_kernel+0x2d/0x2d [ 1829.524307] ? retint_kernel+0x2d/0x2d [ 1829.524323] alloc_pages_current+0xe7/0x1e0 [ 1829.524338] kvm_mmu_create+0xd1/0x1c0 [ 1829.524352] kvm_arch_vcpu_init+0x282/0x890 [ 1829.534532] lowmem_reserve[]: [ 1829.539316] ? alloc_pages_current+0xef/0x1e0 [ 1829.539331] kvm_vcpu_init+0x26d/0x360 [ 1829.539344] vmx_create_vcpu+0xf5/0x2950 [ 1829.539354] ? check_preemption_disabled+0x35/0x240 [ 1829.539365] ? retint_kernel+0x2d/0x2d [ 1829.539379] ? alloc_loaded_vmcs+0x240/0x240 [ 1829.539397] kvm_vm_ioctl+0x4ae/0x1430 [ 1829.539410] ? __lock_acquire+0x655/0x42a0 [ 1829.539420] ? kvm_vcpu_release+0xa0/0xa0 [ 1829.539428] ? check_preemption_disabled+0x35/0x240 [ 1829.539438] ? retint_kernel+0x2d/0x2d [ 1829.539448] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1829.539460] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1829.576244] 0 [ 1829.578177] ? check_preemption_disabled+0x35/0x240 [ 1829.578190] ? retint_kernel+0x2d/0x2d [ 1829.578206] ? kvm_vcpu_release+0xa0/0xa0 [ 1829.583144] 0 [ 1829.587855] ? kvm_vcpu_release+0xa0/0xa0 [ 1829.587868] do_vfs_ioctl+0x75a/0xfe0 [ 1829.587882] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1829.587891] ? ioctl_preallocate+0x1a0/0x1a0 [ 1829.587913] ? security_file_ioctl+0x76/0xb0 02:42:09 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) [ 1829.587921] ? security_file_ioctl+0x83/0xb0 [ 1829.587932] SyS_ioctl+0x7f/0xb0 [ 1829.587939] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1829.587950] do_syscall_64+0x1d5/0x640 [ 1829.587968] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1829.601512] 0 [ 1829.604835] RIP: 0033:0x45ca59 [ 1829.604842] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1829.604854] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1829.604860] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1829.604865] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1829.604870] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1829.604878] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1829.609003] 0 0 [ 1829.789986] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1829.816768] lowmem_reserve[]: 0 0 0 0 0 [ 1829.820998] Node 1 Normal free:1919612kB min:53592kB low:66988kB high:80384kB active_anon:433436kB inactive_anon:35476kB active_file:32848kB inactive_file:248832kB unevictable:0kB writepending:1856kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3456kB pagetables:6984kB bounce:0kB free_pcp:896kB local_pcp:480kB free_cma:0kB [ 1829.851394] lowmem_reserve[]: 0 0 0 0 0 [ 1829.855510] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1829.870965] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1829.871377] Node 0 DMA32: 1231*4kB (UMEH) 703*8kB (UMEH) 117*16kB (UME) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36228kB [ 1829.896457] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1829.908700] Node 1 Normal: 134*4kB (UM) 109*8kB (UM) 398*16kB (UME) 733*32kB (UME) 203*64kB (UME) 14*128kB (UME) 7*256kB (UM) 13*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1919168kB [ 1829.926985] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1829.936020] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1829.944674] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1829.954697] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1829.970142] 79204 total pagecache pages [ 1829.976423] 0 pages in swap cache [ 1829.979951] Swap cache stats: add 0, delete 0, find 0/0 [ 1829.986664] Free swap = 0kB [ 1829.989736] Total swap = 0kB [ 1829.992806] 1965979 pages RAM [ 1829.997646] 0 pages HighMem/MovableOnly [ 1830.001674] 338456 pages reserved [ 1830.005162] 0 pages cma reserved 02:42:09 executing program 5: getpid() perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1830.031359] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1830.070733] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1830.081225] CPU: 0 PID: 23492 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1830.089124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1830.098479] Call Trace: [ 1830.101076] dump_stack+0x1b2/0x283 [ 1830.104713] warn_alloc.cold+0x96/0x1af [ 1830.108700] ? zone_watermark_ok_safe+0x250/0x250 [ 1830.113556] ? wait_for_completion_io+0x10/0x10 [ 1830.118235] __alloc_pages_nodemask+0x2129/0x2730 [ 1830.119941] syz-executor.3: [ 1830.123096] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1830.123110] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1830.123126] ? retint_kernel+0x2d/0x2d [ 1830.127555] page allocation failure: order:0 [ 1830.130970] alloc_pages_current+0xe7/0x1e0 [ 1830.130991] kvm_mmu_create+0xd1/0x1c0 [ 1830.144404] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1830.148301] kvm_arch_vcpu_init+0x282/0x890 [ 1830.148312] ? alloc_pages_current+0xef/0x1e0 [ 1830.148326] kvm_vcpu_init+0x26d/0x360 [ 1830.148478] vmx_create_vcpu+0xf5/0x2950 [ 1830.148496] ? check_preemption_disabled+0x35/0x240 [ 1830.148508] ? retint_kernel+0x2d/0x2d [ 1830.148524] ? alloc_loaded_vmcs+0x240/0x240 [ 1830.148533] ? alloc_loaded_vmcs+0x240/0x240 [ 1830.148550] kvm_vm_ioctl+0x4ae/0x1430 [ 1830.148562] ? __lock_acquire+0x655/0x42a0 [ 1830.148573] ? kvm_vcpu_release+0xa0/0xa0 [ 1830.148583] ? check_preemption_disabled+0x35/0x240 [ 1830.148593] ? retint_kernel+0x2d/0x2d [ 1830.148604] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1830.148617] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1830.162584] (null) 02:42:09 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0xfa, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, r3, 0x200, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x2040000}, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1830.162688] ? check_preemption_disabled+0x35/0x240 [ 1830.162705] ? retint_kernel+0x2d/0x2d [ 1830.168294] syz-executor.3 cpuset= [ 1830.171088] ? do_vfs_ioctl+0x76/0xfe0 [ 1830.171100] ? kvm_vcpu_release+0xa0/0xa0 [ 1830.171112] do_vfs_ioctl+0x75a/0xfe0 [ 1830.171127] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1830.171138] ? ioctl_preallocate+0x1a0/0x1a0 [ 1830.179496] / [ 1830.180216] ? security_file_ioctl+0x76/0xb0 [ 1830.184241] mems_allowed=0-1 [ 1830.188458] ? security_file_ioctl+0x83/0xb0 [ 1830.188469] SyS_ioctl+0x7f/0xb0 [ 1830.188477] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1830.188490] do_syscall_64+0x1d5/0x640 [ 1830.188507] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1830.188517] RIP: 0033:0x45ca59 [ 1830.188522] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1830.188533] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1830.188538] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1830.188543] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1830.188549] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1830.188555] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1830.244334] warn_alloc_show_mem: 2 callbacks suppressed [ 1830.244352] Mem-Info: [ 1830.255040] CPU: 1 PID: 23520 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1830.284973] active_anon:447085 inactive_anon:48677 isolated_anon:0 [ 1830.284973] active_file:8215 inactive_file:62219 isolated_file:0 [ 1830.284973] unevictable:2560 dirty:474 writeback:0 unstable:0 [ 1830.284973] slab_reclaimable:125737 slab_unreclaimable:329813 [ 1830.284973] mapped:64718 shmem:38045 pagetables:8676 bounce:0 [ 1830.284973] free:491305 free_pcp:341 free_cma:0 [ 1830.287776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1830.287781] Call Trace: [ 1830.287799] dump_stack+0x1b2/0x283 [ 1830.287815] warn_alloc.cold+0x96/0x1af [ 1830.287826] ? zone_watermark_ok_safe+0x250/0x250 [ 1830.287847] ? wait_for_completion_io+0x10/0x10 [ 1830.287864] __alloc_pages_nodemask+0x2129/0x2730 [ 1830.287888] ? gfp_pfmemalloc_allowed+0x150/0x150 02:42:09 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1830.293168] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:12kB inactive_file:4kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1830.296227] ? retint_kernel+0x2d/0x2d [ 1830.296242] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1830.296267] alloc_pages_current+0xe7/0x1e0 [ 1830.296285] kvm_mmu_create+0xd1/0x1c0 [ 1830.304071] Node 1 active_anon:432948kB inactive_anon:35476kB active_file:32848kB inactive_file:248872kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34264kB dirty:1896kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1830.311233] kvm_arch_vcpu_init+0x282/0x890 [ 1830.311243] ? alloc_pages_current+0xef/0x1e0 [ 1830.311256] kvm_vcpu_init+0x26d/0x360 [ 1830.311269] vmx_create_vcpu+0xf5/0x2950 [ 1830.311287] ? alloc_loaded_vmcs+0x240/0x240 [ 1830.322180] Node 0 [ 1830.325814] ? check_tsc_unstable+0x6/0x10 [ 1830.325833] kvm_vm_ioctl+0x4ae/0x1430 [ 1830.325847] ? __lock_acquire+0x655/0x42a0 [ 1830.325857] ? kvm_vcpu_release+0xa0/0xa0 [ 1830.325867] ? check_preemption_disabled+0x35/0x240 [ 1830.325877] ? perf_trace_lock+0x109/0x4b0 [ 1830.325888] ? check_preemption_disabled+0x35/0x240 [ 1830.325900] ? perf_trace_lock+0x109/0x4b0 [ 1830.325907] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1830.325923] ? futex_exit_release+0x60/0x60 [ 1830.333819] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1830.340442] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1830.340453] ? retint_kernel+0x2d/0x2d [ 1830.340465] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1830.340476] ? kvm_vcpu_release+0xa0/0xa0 [ 1830.340488] do_vfs_ioctl+0x75a/0xfe0 [ 1830.340500] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1830.340509] ? check_preemption_disabled+0x35/0x240 [ 1830.340518] ? ioctl_preallocate+0x1a0/0x1a0 [ 1830.340540] ? security_file_ioctl+0x76/0xb0 [ 1830.340556] ? security_file_ioctl+0x83/0xb0 [ 1830.350032] lowmem_reserve[]: [ 1830.356162] SyS_ioctl+0x7f/0xb0 [ 1830.356172] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1830.356186] do_syscall_64+0x1d5/0x640 [ 1830.356206] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1830.356214] RIP: 0033:0x45ca59 [ 1830.356218] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 02:42:10 executing program 5: getpid() perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1830.356228] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1830.356234] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1830.356239] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1830.356245] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1830.356252] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1830.736645] 0 2559 2559 2559 2559 [ 1830.740408] Node 0 DMA32 free:36228kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:12kB inactive_file:4kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:120kB local_pcp:120kB free_cma:0kB [ 1830.780402] lowmem_reserve[]: 0 0 0 0 0 [ 1830.794904] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1830.836533] lowmem_reserve[]: 0 0 0 0 0 [ 1830.844803] Node 1 Normal free:1922632kB min:53592kB low:66988kB high:80384kB active_anon:432848kB inactive_anon:35476kB active_file:32848kB inactive_file:248872kB unevictable:0kB writepending:1896kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3072kB pagetables:6644kB bounce:0kB free_pcp:1384kB local_pcp:700kB free_cma:0kB [ 1830.884375] lowmem_reserve[]: 0 0 0 0 0 [ 1830.895250] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1830.912319] Node 0 DMA32: 1231*4kB (UMEH) 703*8kB (UMEH) 117*16kB (UME) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36228kB 02:42:10 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) getsockopt(0xffffffffffffffff, 0x0, 0xce, 0x0, &(0x7f0000000000)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) io_cancel(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x17, 0xffffffffffffffff, &(0x7f0000000100)="4d008bbadda063fc355c2fc9266c0a326782cca7ff1ea0dfb6ab92f27b2102c268d74027511ce974fe888ac80e1bbf09b533fc789507df8d86c776971c84992c26e95753f3c023ea98fe2e0b93dd20c255bd1613ae56ad8a9ef868b4e4f5eeaab380231da33239f22747c238fa49e26d4aad96454f3e2cbf041eb01abdb818a956b9f8136c6cb4217e41cd1cca8f84dddaa4cf8130f642a0bca05087d4fe4ead5c4afae0aebe6574645adc6f576138630b188033e53abdf5f0ea74b6e0507fb24c6f0485aaeaf4ac866f8c38", 0xcc, 0x4, 0x0, 0x2, r8}, &(0x7f0000000080)) 02:42:10 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:10 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:10 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) [ 1830.930469] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1830.942557] Node 1 Normal: 179*4kB (UME) 615*8kB (UME) 200*16kB (UME) 747*32kB (UME) 204*64kB (UME) 29*128kB (UME) 8*256kB (UM) 14*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 454*4096kB (M) = 1923428kB [ 1830.965550] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1830.974448] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1830.984328] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1830.999415] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1831.012121] 79216 total pagecache pages [ 1831.018311] 0 pages in swap cache [ 1831.022017] Swap cache stats: add 0, delete 0, find 0/0 [ 1831.029400] Free swap = 0kB [ 1831.032879] Total swap = 0kB [ 1831.037292] 1965979 pages RAM [ 1831.040518] 0 pages HighMem/MovableOnly [ 1831.044802] 338456 pages reserved [ 1831.053306] 0 pages cma reserved 02:42:10 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) 02:42:10 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:10 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:10 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r0, &(0x7f0000000000)=ANY=[], 0xfffffecc) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8}, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f00000000c0)={0x38, 0x2, 0x31, 0x0, 0x1ff}, 0x0) r2 = socket$key(0xf, 0x3, 0x2) recvmmsg(r2, &(0x7f0000002b00)=[{{0x0, 0x0, 0x0}, 0x1}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000940)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) write(r4, &(0x7f0000000340), 0x41395527) vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r5 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) write$UHID_INPUT(r5, &(0x7f00000019c0)={0x8, {'\x00', 0x1000}}, 0x1006) r6 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fcntl$setstatus(r6, 0x4, 0x46000) lseek(r6, 0x4200, 0x0) creat(&(0x7f0000000000)='./bus\x00', 0x0) open(&(0x7f0000000180)='./bus\x00', 0x0, 0x0) 02:42:10 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1831.433717] warn_alloc: 4 callbacks suppressed [ 1831.433723] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1831.466819] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1831.482250] CPU: 0 PID: 23617 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1831.490160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1831.499516] Call Trace: [ 1831.502110] dump_stack+0x1b2/0x283 [ 1831.505750] warn_alloc.cold+0x96/0x1af [ 1831.509727] ? zone_watermark_ok_safe+0x250/0x250 [ 1831.514583] ? wait_for_completion_io+0x10/0x10 [ 1831.519263] __alloc_pages_nodemask+0x2129/0x2730 [ 1831.524134] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1831.528982] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1831.533842] ? do_raw_spin_unlock+0x164/0x250 [ 1831.538349] alloc_pages_current+0xe7/0x1e0 [ 1831.542677] kvm_mmu_create+0xd1/0x1c0 [ 1831.546569] kvm_arch_vcpu_init+0x282/0x890 [ 1831.550897] ? alloc_pages_current+0xef/0x1e0 [ 1831.555398] kvm_vcpu_init+0x26d/0x360 [ 1831.559293] vmx_create_vcpu+0xf5/0x2950 [ 1831.563367] ? __mutex_unlock_slowpath+0x75/0x780 [ 1831.568649] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1831.573687] ? alloc_loaded_vmcs+0x240/0x240 [ 1831.578111] kvm_vm_ioctl+0x4ae/0x1430 [ 1831.582009] ? __lock_acquire+0x655/0x42a0 [ 1831.586249] ? kvm_vcpu_release+0xa0/0xa0 [ 1831.590404] ? check_preemption_disabled+0x35/0x240 [ 1831.595422] ? perf_trace_lock+0x109/0x4b0 [ 1831.599659] ? check_preemption_disabled+0x35/0x240 [ 1831.604679] ? perf_trace_lock+0x109/0x4b0 [ 1831.608911] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1831.613837] ? futex_exit_release+0x60/0x60 [ 1831.618251] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1831.623181] ? lock_acquire+0x170/0x3f0 [ 1831.627194] ? kvm_vcpu_release+0xa0/0xa0 [ 1831.631351] do_vfs_ioctl+0x75a/0xfe0 [ 1831.635157] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1831.640791] ? ioctl_preallocate+0x1a0/0x1a0 [ 1831.645215] ? security_file_ioctl+0x76/0xb0 [ 1831.649625] ? security_file_ioctl+0x83/0xb0 [ 1831.654040] SyS_ioctl+0x7f/0xb0 [ 1831.657406] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1831.661389] do_syscall_64+0x1d5/0x640 [ 1831.665287] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1831.670530] RIP: 0033:0x45ca59 [ 1831.673713] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 02:42:11 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1831.681422] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1831.688693] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1831.695969] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1831.703241] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1831.710513] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1831.733915] audit: type=1804 audit(1592275331.246:150): pid=23638 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir229777760/syzkaller.zC0plF/1773/bus" dev="sda1" ino=15896 res=1 [ 1831.774198] warn_alloc_show_mem: 1 callbacks suppressed [ 1831.774202] Mem-Info: [ 1831.782147] active_anon:450535 inactive_anon:48677 isolated_anon:0 [ 1831.782147] active_file:8216 inactive_file:62230 isolated_file:0 [ 1831.782147] unevictable:2560 dirty:112 writeback:0 unstable:0 [ 1831.782147] slab_reclaimable:125775 slab_unreclaimable:328197 [ 1831.782147] mapped:64733 shmem:38045 pagetables:8701 bounce:0 [ 1831.782147] free:489471 free_pcp:343 free_cma:0 [ 1831.819117] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1831.850630] Node 1 active_anon:449448kB inactive_anon:35476kB active_file:32848kB inactive_file:248920kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34324kB dirty:548kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1831.898183] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1831.908979] syz-executor.2: [ 1831.932323] lowmem_reserve[]: [ 1831.932846] page allocation failure: order:0 [ 1831.935708] 0 [ 1831.938714] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1831.943179] 2559 [ 1831.944934] (null) [ 1831.954511] 2559 2559 2559 [ 1831.961138] syz-executor.2 cpuset= [ 1831.963596] Node 0 [ 1831.963845] / [ 1831.970930] DMA32 free:36228kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:124kB local_pcp:120kB free_cma:0kB [ 1831.972193] mems_allowed=0-1 [ 1831.972810] lowmem_reserve[]: [ 1832.008039] CPU: 1 PID: 23574 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1832.018403] 0 [ 1832.019009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1832.019016] 0 [ 1832.020795] Call Trace: [ 1832.020813] dump_stack+0x1b2/0x283 [ 1832.020831] warn_alloc.cold+0x96/0x1af [ 1832.020841] ? zone_watermark_ok_safe+0x250/0x250 [ 1832.020859] ? wait_for_completion_io+0x10/0x10 [ 1832.030942] 0 [ 1832.031977] __alloc_pages_nodemask+0x2129/0x2730 [ 1832.032005] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1832.032016] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1832.034701] 0 [ 1832.038188] ? retint_kernel+0x2d/0x2d [ 1832.038206] ? retint_kernel+0x2d/0x2d [ 1832.038223] alloc_pages_current+0xe7/0x1e0 [ 1832.038239] kvm_mmu_create+0xd1/0x1c0 [ 1832.038253] kvm_arch_vcpu_init+0x282/0x890 [ 1832.038263] ? alloc_pages_current+0xef/0x1e0 [ 1832.038275] kvm_vcpu_init+0x26d/0x360 [ 1832.052207] 0 [ 1832.053490] vmx_create_vcpu+0xf5/0x2950 [ 1832.053507] ? __mutex_unlock_slowpath+0x75/0x780 [ 1832.053519] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1832.067996] ? alloc_loaded_vmcs+0x240/0x240 [ 1832.068015] kvm_vm_ioctl+0x4ae/0x1430 [ 1832.068027] ? __lock_acquire+0x655/0x42a0 [ 1832.068037] ? kvm_vcpu_release+0xa0/0xa0 [ 1832.068048] ? retint_kernel+0x2d/0x2d [ 1832.068058] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1832.068069] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1832.068081] ? check_preemption_disabled+0x35/0x240 [ 1832.074287] Node 0 [ 1832.077603] ? retint_kernel+0x2d/0x2d [ 1832.077625] ? selinux_file_ioctl+0x2b8/0x560 [ 1832.077636] ? kvm_vcpu_release+0xa0/0xa0 [ 1832.077649] do_vfs_ioctl+0x75a/0xfe0 [ 1832.077662] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1832.077673] ? ioctl_preallocate+0x1a0/0x1a0 [ 1832.077693] ? security_file_ioctl+0x76/0xb0 [ 1832.086891] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1832.090157] ? security_file_ioctl+0x83/0xb0 [ 1832.090171] SyS_ioctl+0x7f/0xb0 [ 1832.090180] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1832.090196] do_syscall_64+0x1d5/0x640 [ 1832.094796] lowmem_reserve[]: [ 1832.098545] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1832.098553] RIP: 0033:0x45ca59 [ 1832.098558] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1832.098568] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1832.098574] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1832.098580] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1832.098586] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1832.098593] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1832.214278] syz-executor.0: [ 1832.229695] 0 [ 1832.236790] page allocation failure: order:0 [ 1832.248504] 0 [ 1832.254009] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= 02:42:11 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1832.263401] 0 [ 1832.278574] (null) [ 1832.285496] 0 0 [ 1832.285510] Node 1 Normal free:1912056kB min:53592kB low:66988kB high:80384kB active_anon:442288kB inactive_anon:35476kB active_file:32848kB inactive_file:248944kB unevictable:0kB writepending:556kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3136kB pagetables:6788kB bounce:0kB free_pcp:1152kB local_pcp:492kB free_cma:0kB [ 1832.285534] lowmem_reserve[]: 0 0 0 0 0 [ 1832.285554] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1832.285642] Node 0 DMA32: 1231*4kB (UMEH) 706*8kB (UMEH) 117*16kB (UME) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36252kB [ 1832.285722] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1832.285773] Node 1 Normal: 326*4kB (UME) 840*8kB (UME) 408*16kB (UME) 740*32kB (UME) 207*64kB (UME) 4*128kB (ME) 6*256kB (UM) 16*512kB (UME) 3*1024kB (UM) 2*2048kB (UM) 450*4096kB (M) = 1912088kB [ 1832.285864] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1832.285870] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1832.285877] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1832.285884] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1832.285889] 79222 total pagecache pages [ 1832.285899] 0 pages in swap cache 02:42:11 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1832.285904] Swap cache stats: add 0, delete 0, find 0/0 [ 1832.285908] Free swap = 0kB [ 1832.285912] Total swap = 0kB [ 1832.285919] 1965979 pages RAM [ 1832.285922] 0 pages HighMem/MovableOnly [ 1832.285925] 338456 pages reserved [ 1832.285929] 0 pages cma reserved [ 1832.397006] syz-executor.4: [ 1832.521042] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1832.529526] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1832.550364] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1832.553204] syz-executor.5 cpuset= [ 1832.556612] CPU: 0 PID: 23600 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1832.558195] / [ 1832.560157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1832.574545] mems_allowed=0-1 [ 1832.579047] Call Trace: [ 1832.579066] dump_stack+0x1b2/0x283 [ 1832.579082] warn_alloc.cold+0x96/0x1af [ 1832.579093] ? zone_watermark_ok_safe+0x250/0x250 [ 1832.579114] ? wait_for_completion_io+0x10/0x10 [ 1832.579129] __alloc_pages_nodemask+0x2129/0x2730 [ 1832.579157] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1832.579168] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1832.579189] ? check_preemption_disabled+0x35/0x240 [ 1832.579205] alloc_pages_current+0xe7/0x1e0 [ 1832.579220] kvm_mmu_create+0xd1/0x1c0 [ 1832.579232] kvm_arch_vcpu_init+0x282/0x890 [ 1832.633843] ? alloc_pages_current+0xef/0x1e0 [ 1832.638354] kvm_vcpu_init+0x26d/0x360 [ 1832.642243] vmx_create_vcpu+0xf5/0x2950 [ 1832.646299] ? __mutex_unlock_slowpath+0x75/0x780 [ 1832.651155] ? alloc_loaded_vmcs+0x240/0x240 [ 1832.655564] kvm_vm_ioctl+0x4ae/0x1430 [ 1832.659448] ? __lock_acquire+0x655/0x42a0 [ 1832.664263] ? kvm_vcpu_release+0xa0/0xa0 [ 1832.668398] ? check_preemption_disabled+0x35/0x240 [ 1832.673412] ? perf_trace_lock+0x109/0x4b0 [ 1832.677639] ? check_preemption_disabled+0x35/0x240 [ 1832.682650] ? perf_trace_lock+0x109/0x4b0 [ 1832.686870] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1832.691787] ? futex_exit_release+0x60/0x60 [ 1832.696101] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1832.701021] ? retint_kernel+0x2d/0x2d [ 1832.704913] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1832.709936] ? kvm_vcpu_release+0xa0/0xa0 [ 1832.714078] do_vfs_ioctl+0x75a/0xfe0 [ 1832.717880] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1832.723491] ? check_preemption_disabled+0x35/0x240 [ 1832.728490] ? ioctl_preallocate+0x1a0/0x1a0 [ 1832.732887] ? security_file_ioctl+0x76/0xb0 [ 1832.737285] ? security_file_ioctl+0x83/0xb0 [ 1832.741681] SyS_ioctl+0x7f/0xb0 [ 1832.745031] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1832.748996] do_syscall_64+0x1d5/0x640 [ 1832.752870] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1832.758047] RIP: 0033:0x45ca59 [ 1832.761224] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1832.768929] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1832.776188] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1832.783448] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1832.790703] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1832.797965] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1832.807358] warn_alloc_show_mem: 1 callbacks suppressed [ 1832.807377] Mem-Info: [ 1832.816871] active_anon:447095 inactive_anon:48677 isolated_anon:0 [ 1832.816871] active_file:8216 inactive_file:62236 isolated_file:0 [ 1832.816871] unevictable:2560 dirty:139 writeback:0 unstable:0 [ 1832.816871] slab_reclaimable:125767 slab_unreclaimable:328704 [ 1832.816871] mapped:64715 shmem:38045 pagetables:8712 bounce:0 [ 1832.816871] free:492536 free_pcp:389 free_cma:0 [ 1832.825291] CPU: 1 PID: 23661 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1832.852354] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1832.859219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1832.859224] Call Trace: [ 1832.859242] dump_stack+0x1b2/0x283 [ 1832.859257] warn_alloc.cold+0x96/0x1af [ 1832.859268] ? zone_watermark_ok_safe+0x250/0x250 [ 1832.859295] ? wait_for_completion_io+0x10/0x10 [ 1832.887915] Node 1 active_anon:432988kB inactive_anon:35476kB active_file:32848kB inactive_file:248944kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34252kB dirty:556kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1832.896994] __alloc_pages_nodemask+0x2129/0x2730 [ 1832.897022] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1832.897034] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1832.897061] ? do_raw_spin_unlock+0x164/0x250 [ 1832.899753] Node 0 [ 1832.903237] alloc_pages_current+0xe7/0x1e0 [ 1832.903254] kvm_mmu_create+0xd1/0x1c0 [ 1832.903267] kvm_arch_vcpu_init+0x282/0x890 [ 1832.903275] ? alloc_pages_current+0xef/0x1e0 [ 1832.903288] kvm_vcpu_init+0x26d/0x360 [ 1832.907401] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1832.912061] vmx_create_vcpu+0xf5/0x2950 [ 1832.912081] ? __mutex_unlock_slowpath+0x75/0x780 [ 1832.912092] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1832.912107] ? alloc_loaded_vmcs+0x240/0x240 [ 1832.916890] lowmem_reserve[]: [ 1832.944762] kvm_vm_ioctl+0x4ae/0x1430 [ 1832.944776] ? __lock_acquire+0x655/0x42a0 [ 1832.944786] ? kvm_vcpu_release+0xa0/0xa0 [ 1832.944796] ? check_preemption_disabled+0x35/0x240 [ 1832.944807] ? perf_trace_lock+0x109/0x4b0 [ 1832.944819] ? check_preemption_disabled+0x35/0x240 [ 1832.944830] ? perf_trace_lock+0x109/0x4b0 [ 1832.949841] 0 [ 1832.954491] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1832.954500] ? futex_exit_release+0x60/0x60 [ 1832.954514] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1832.954527] ? lock_acquire+0x170/0x3f0 [ 1832.954541] ? kvm_vcpu_release+0xa0/0xa0 [ 1832.959495] 2559 [ 1832.963832] do_vfs_ioctl+0x75a/0xfe0 [ 1832.963847] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1832.963858] ? ioctl_preallocate+0x1a0/0x1a0 [ 1832.963880] ? security_file_ioctl+0x76/0xb0 [ 1832.966228] 2559 [ 1832.970387] ? security_file_ioctl+0x83/0xb0 [ 1832.970400] SyS_ioctl+0x7f/0xb0 [ 1832.970409] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1832.970423] do_syscall_64+0x1d5/0x640 [ 1832.970441] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1832.970450] RIP: 0033:0x45ca59 [ 1832.974440] 2559 [ 1832.978608] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1832.978619] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1832.978624] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1832.978630] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1832.978635] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1832.978642] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1833.032404] syz-executor.0 cpuset= [ 1833.034962] 2559 [ 1833.038796] / [ 1833.050594] mems_allowed=0-1 [ 1833.064128] Node 0 [ 1833.069580] CPU: 1 PID: 23640 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1833.082124] DMA32 free:36252kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:168kB local_pcp:120kB free_cma:0kB [ 1833.084396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1833.084401] Call Trace: [ 1833.084419] dump_stack+0x1b2/0x283 [ 1833.084436] warn_alloc.cold+0x96/0x1af [ 1833.084449] ? zone_watermark_ok_safe+0x250/0x250 [ 1833.084467] ? wait_for_completion_io+0x10/0x10 [ 1833.088993] lowmem_reserve[]: [ 1833.092563] __alloc_pages_nodemask+0x2129/0x2730 [ 1833.092593] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1833.092607] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1833.092622] ? check_preemption_disabled+0x35/0x240 [ 1833.094800] 0 [ 1833.098454] alloc_pages_current+0xe7/0x1e0 [ 1833.098469] kvm_mmu_create+0xd1/0x1c0 [ 1833.098482] kvm_arch_vcpu_init+0x282/0x890 [ 1833.098491] ? alloc_pages_current+0xef/0x1e0 [ 1833.098506] kvm_vcpu_init+0x26d/0x360 [ 1833.098521] vmx_create_vcpu+0xf5/0x2950 [ 1833.098531] ? check_preemption_disabled+0x35/0x240 [ 1833.098541] ? retint_kernel+0x2d/0x2d [ 1833.098556] ? alloc_loaded_vmcs+0x240/0x240 [ 1833.104287] 0 [ 1833.108542] ? alloc_loaded_vmcs+0x240/0x240 [ 1833.108558] kvm_vm_ioctl+0x4ae/0x1430 [ 1833.108571] ? __lock_acquire+0x655/0x42a0 [ 1833.108582] ? kvm_vcpu_release+0xa0/0xa0 [ 1833.108592] ? check_preemption_disabled+0x35/0x240 [ 1833.108603] ? retint_kernel+0x2d/0x2d [ 1833.108615] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1833.108626] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1833.108642] ? check_preemption_disabled+0x35/0x240 [ 1833.113144] 0 02:42:12 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x81, 0x0, 0x0, 0x0, 0x41bd, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$BLKSECDISCARD(r7, 0x127d, &(0x7f0000000140)=0x5) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) r8 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x40001, 0x0) setsockopt$inet_sctp_SCTP_NODELAY(r8, 0x84, 0x3, &(0x7f0000000100)=0xffffffff, 0x4) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:12 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000140)) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x40501, 0x0) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm_plock\x00', 0x101100, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000100)={@map, r3, 0x16}, 0x10) ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000080)={0xf000, 0x1000, 0xd3, 0x31, 0xff}) r4 = socket$inet6(0xa, 0x3, 0xff) splice(r0, 0x0, r4, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) 02:42:12 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:12 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1833.115070] ? retint_kernel+0x2d/0x2d [ 1833.115087] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1833.115098] ? kvm_vcpu_release+0xa0/0xa0 [ 1833.115108] do_vfs_ioctl+0x75a/0xfe0 [ 1833.115121] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1833.115132] ? ioctl_preallocate+0x1a0/0x1a0 [ 1833.119644] 0 [ 1833.122872] ? security_file_ioctl+0x76/0xb0 [ 1833.122883] ? security_file_ioctl+0x83/0xb0 [ 1833.122895] SyS_ioctl+0x7f/0xb0 [ 1833.122904] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1833.122918] do_syscall_64+0x1d5/0x640 [ 1833.122939] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1833.127043] 0 [ 1833.130748] RIP: 0033:0x45ca59 [ 1833.130754] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1833.130765] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1833.130771] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1833.130778] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1833.130784] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1833.130790] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1833.481993] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1833.517677] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1833.533019] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1833.541180] CPU: 0 PID: 23686 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1833.549081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1833.558438] Call Trace: [ 1833.561036] dump_stack+0x1b2/0x283 [ 1833.564673] warn_alloc.cold+0x96/0x1af [ 1833.568308] syz-executor.2: page allocation failure: order:0 [ 1833.568646] ? zone_watermark_ok_safe+0x250/0x250 [ 1833.568665] ? wait_for_completion_io+0x10/0x10 [ 1833.574451] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1833.579282] __alloc_pages_nodemask+0x2129/0x2730 [ 1833.579307] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1833.579316] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1833.579339] ? do_raw_spin_unlock+0x164/0x250 [ 1833.579353] alloc_pages_current+0xe7/0x1e0 [ 1833.579368] kvm_mmu_create+0xd1/0x1c0 [ 1833.579381] kvm_arch_vcpu_init+0x282/0x890 [ 1833.579390] ? alloc_pages_current+0xef/0x1e0 [ 1833.579404] kvm_vcpu_init+0x26d/0x360 [ 1833.579417] vmx_create_vcpu+0xf5/0x2950 [ 1833.579432] ? __mutex_unlock_slowpath+0x75/0x780 [ 1833.579442] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1833.579452] ? alloc_loaded_vmcs+0x240/0x240 [ 1833.579467] kvm_vm_ioctl+0x4ae/0x1430 [ 1833.595614] (null) [ 1833.599671] ? __lock_acquire+0x655/0x42a0 [ 1833.599686] ? kvm_vcpu_release+0xa0/0xa0 [ 1833.599697] ? check_preemption_disabled+0x35/0x240 [ 1833.599710] ? perf_trace_lock+0x109/0x4b0 [ 1833.599721] ? check_preemption_disabled+0x35/0x240 [ 1833.599733] ? perf_trace_lock+0x109/0x4b0 [ 1833.625400] lowmem_reserve[]: [ 1833.626005] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1833.629975] 0 [ 1833.633907] ? futex_exit_release+0x60/0x60 [ 1833.633921] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1833.633936] ? lock_acquire+0x170/0x3f0 [ 1833.640046] syz-executor.2 cpuset= [ 1833.643753] ? kvm_vcpu_release+0xa0/0xa0 [ 1833.643767] do_vfs_ioctl+0x75a/0xfe0 [ 1833.643782] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1833.643794] ? ioctl_preallocate+0x1a0/0x1a0 [ 1833.662061] / [ 1833.662570] ? security_file_ioctl+0x76/0xb0 [ 1833.674194] 0 [ 1833.676891] ? security_file_ioctl+0x83/0xb0 [ 1833.676904] SyS_ioctl+0x7f/0xb0 [ 1833.676913] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1833.676927] do_syscall_64+0x1d5/0x640 [ 1833.676943] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1833.676951] RIP: 0033:0x45ca59 [ 1833.676956] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1833.676966] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1833.676971] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1833.676976] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1833.676981] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1833.676989] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1833.681352] mems_allowed=0-1 [ 1833.754130] 0 [ 1833.765191] CPU: 1 PID: 23687 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1833.771021] 0 [ 1833.773416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1833.773421] Call Trace: [ 1833.773440] dump_stack+0x1b2/0x283 [ 1833.773456] warn_alloc.cold+0x96/0x1af [ 1833.773468] ? zone_watermark_ok_safe+0x250/0x250 [ 1833.781722] 0 [ 1833.787987] ? wait_for_completion_io+0x10/0x10 [ 1833.788007] __alloc_pages_nodemask+0x2129/0x2730 [ 1833.788033] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1833.788043] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1833.788067] ? do_raw_spin_unlock+0x164/0x250 [ 1833.788081] alloc_pages_current+0xe7/0x1e0 [ 1833.802715] kvm_mmu_create+0xd1/0x1c0 [ 1833.802731] kvm_arch_vcpu_init+0x282/0x890 [ 1833.802743] ? alloc_pages_current+0xef/0x1e0 [ 1833.802757] kvm_vcpu_init+0x26d/0x360 [ 1833.802774] vmx_create_vcpu+0xf5/0x2950 [ 1833.806378] Node 1 [ 1833.807658] ? __mutex_unlock_slowpath+0x75/0x780 [ 1833.807669] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1833.807684] ? alloc_loaded_vmcs+0x240/0x240 [ 1833.807702] kvm_vm_ioctl+0x4ae/0x1430 [ 1833.816101] Normal free:1923440kB min:53592kB low:66988kB high:80384kB active_anon:432896kB inactive_anon:35476kB active_file:32848kB inactive_file:248976kB unevictable:0kB writepending:628kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3040kB pagetables:6656kB bounce:0kB free_pcp:1168kB local_pcp:660kB free_cma:0kB [ 1833.817351] ? __lock_acquire+0x655/0x42a0 [ 1833.817364] ? kvm_vcpu_release+0xa0/0xa0 [ 1833.817374] ? check_preemption_disabled+0x35/0x240 [ 1833.817387] ? perf_trace_lock+0x109/0x4b0 [ 1833.817404] ? check_preemption_disabled+0x35/0x240 [ 1833.827229] lowmem_reserve[]: [ 1833.829306] ? perf_trace_lock+0x109/0x4b0 [ 1833.829316] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1833.829327] ? futex_exit_release+0x60/0x60 [ 1833.829340] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1833.829352] ? lock_acquire+0x170/0x3f0 [ 1833.833117] 0 [ 1833.836908] ? kvm_vcpu_release+0xa0/0xa0 [ 1833.836920] do_vfs_ioctl+0x75a/0xfe0 [ 1833.836933] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1833.836945] ? ioctl_preallocate+0x1a0/0x1a0 [ 1833.836966] ? security_file_ioctl+0x76/0xb0 [ 1833.836975] ? security_file_ioctl+0x83/0xb0 [ 1833.836985] SyS_ioctl+0x7f/0xb0 [ 1833.836992] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1833.837006] do_syscall_64+0x1d5/0x640 [ 1833.842218] 0 [ 1833.843622] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1833.843631] RIP: 0033:0x45ca59 [ 1833.843637] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1833.843648] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1833.843653] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1833.843661] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1833.848672] 0 [ 1833.853126] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1833.853132] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1833.920465] syz-executor.0: [ 1833.945446] 0 [ 1833.958226] warn_alloc_show_mem: 3 callbacks suppressed [ 1833.958230] Mem-Info: [ 1833.962140] 0 [ 1833.973351] active_anon:447063 inactive_anon:48677 isolated_anon:0 [ 1833.973351] active_file:8216 inactive_file:62259 isolated_file:0 [ 1833.973351] unevictable:2560 dirty:173 writeback:0 unstable:0 [ 1833.973351] slab_reclaimable:125757 slab_unreclaimable:328715 [ 1833.973351] mapped:64753 shmem:38045 pagetables:8653 bounce:0 [ 1833.973351] free:492592 free_pcp:363 free_cma:0 [ 1833.981004] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1833.983923] Node 0 [ 1833.994662] Node 1 active_anon:432860kB inactive_anon:35476kB active_file:32848kB inactive_file:249036kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34404kB dirty:692kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1833.998969] DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) [ 1834.004240] Node 0 [ 1834.008602] 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1834.008655] Node 0 DMA32: 1231*4kB (UMEH) 717*8kB (UMEH) 117*16kB (UME) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36340kB [ 1834.008738] Node 0 Normal: 0*4kB [ 1834.022727] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1834.025588] 0*8kB [ 1834.029550] lowmem_reserve[]: 0 2559 2559 [ 1834.033570] 0*16kB [ 1834.041805] 2559 [ 1834.043850] 0*32kB [ 1834.052799] 2559 [ 1834.059017] 0*64kB [ 1834.073921] 0*128kB [ 1834.076495] Node 0 [ 1834.083072] 0*256kB [ 1834.096554] DMA32 free:36340kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:172kB local_pcp:52kB free_cma:0kB [ 1834.100755] 0*512kB [ 1834.102955] lowmem_reserve[]: 0 0 0 0 0 [ 1834.102979] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1834.103001] lowmem_reserve[]: 0 0 0 [ 1834.105005] 0*1024kB [ 1834.147304] page allocation failure: order:0 [ 1834.168043] 0*2048kB [ 1834.174468] 0 [ 1834.198612] 0*4096kB [ 1834.213545] 0 [ 1834.218231] = 0kB [ 1834.267160] Node 1 [ 1834.276849] Node 1 [ 1834.277682] Normal: [ 1834.279606] Normal free:1923768kB min:53592kB low:66988kB high:80384kB active_anon:432860kB inactive_anon:35476kB active_file:32848kB inactive_file:249036kB unevictable:0kB writepending:692kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3040kB pagetables:6552kB bounce:0kB free_pcp:1244kB local_pcp:664kB free_cma:0kB [ 1834.279610] lowmem_reserve[]: 0 0 0 0 0 [ 1834.279633] Node 0 DMA: [ 1834.281956] 280*4kB [ 1834.284166] 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) [ 1834.286590] (UME) [ 1834.307262] 2*256kB [ 1834.318626] 302*8kB [ 1834.324189] (ME) [ 1834.324738] (UME) [ 1834.356773] 2*512kB [ 1834.378527] 635*16kB [ 1834.414231] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1834.441985] (UME) [ 1834.450071] (ME) [ 1834.452349] 768*32kB [ 1834.453922] 2*1024kB [ 1834.456501] (UME) [ 1834.460767] (ME) [ 1834.460989] 225*64kB [ 1834.463016] 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1834.463035] Node 0 DMA32: 1231*4kB (UMEH) 717*8kB [ 1834.466029] (UME) [ 1834.474655] (UMEH) [ 1834.478186] 26*128kB [ 1834.479951] 117*16kB [ 1834.481978] (UME) [ 1834.484253] (UME) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) [ 1834.488728] 16*256kB [ 1834.493645] 1*1024kB [ 1834.498436] (UM) [ 1834.500120] (M) [ 1834.502227] 22*512kB [ 1834.504177] 0*2048kB 0*4096kB = 36340kB [ 1834.504190] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB [ 1834.508585] (UME) [ 1834.513665] 0*64kB [ 1834.519097] 5*1024kB [ 1834.520536] 0*128kB [ 1834.522461] (UM) [ 1834.524753] 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1834.524778] Node 1 Normal: 326*4kB (UME) 02:42:14 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:14 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 02:42:14 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:14 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x1, 0x7) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x4c0b40, 0x0) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r3, 0x84, 0x4, &(0x7f0000000080)=0xffffffff, 0x4) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1834.529510] 2*2048kB (UM) 450*4096kB (M) = 1923776kB 02:42:14 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1834.540000] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 02:42:14 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:14 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1834.540007] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 02:42:14 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1834.540015] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1834.540022] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1834.540026] 79249 total pagecache pages [ 1834.540037] 0 pages in swap cache [ 1834.540043] Swap cache stats: add 0, delete 0, find 0/0 [ 1834.540047] Free swap = 0kB [ 1834.540051] Total swap = 0kB [ 1834.540058] 1965979 pages RAM [ 1834.540062] 0 pages HighMem/MovableOnly [ 1834.540067] 338456 pages reserved [ 1834.540070] 0 pages cma reserved [ 1834.540697] 62*8kB (ME) 640*16kB (UME) 769*32kB (UME) 225*64kB (UME) 25*128kB (UME) 16*256kB (UM) 22*512kB (UME) 5*1024kB (UM) 2*2048kB (UM) 450*4096kB (M) = 1922024kB [ 1834.540770] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1834.540776] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1834.540783] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1834.540789] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1834.540792] 79249 total pagecache pages [ 1834.540802] 0 pages in swap cache [ 1834.540807] Swap cache stats: add 0, delete 0, find 0/0 [ 1834.540811] Free swap = 0kB [ 1834.540814] Total swap = 0kB [ 1834.540820] 1965979 pages RAM [ 1834.540824] 0 pages HighMem/MovableOnly [ 1834.540827] 338456 pages reserved [ 1834.540830] 0 pages cma reserved [ 1834.546994] (null) [ 1834.547000] syz-executor.0 cpuset=/ mems_allowed=0-1 [ 1834.547146] CPU: 1 PID: 23681 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1834.547152] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1834.547156] Call Trace: [ 1834.547174] dump_stack+0x1b2/0x283 [ 1834.547190] warn_alloc.cold+0x96/0x1af [ 1834.547201] ? zone_watermark_ok_safe+0x250/0x250 [ 1834.547221] ? wait_for_completion_io+0x10/0x10 [ 1834.547237] __alloc_pages_nodemask+0x2129/0x2730 [ 1834.547265] ? retint_kernel+0x2d/0x2d [ 1834.547275] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1834.547286] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1834.547296] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1834.547305] ? retint_kernel+0x2d/0x2d [ 1834.547319] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1834.547335] ? retint_kernel+0x2d/0x2d [ 1834.547360] alloc_pages_current+0xe7/0x1e0 [ 1834.547375] kvm_mmu_create+0xd1/0x1c0 [ 1834.547388] kvm_arch_vcpu_init+0x282/0x890 [ 1834.547397] ? alloc_pages_current+0xef/0x1e0 [ 1834.547409] kvm_vcpu_init+0x26d/0x360 [ 1834.547424] vmx_create_vcpu+0xf5/0x2950 [ 1834.547437] ? __mutex_unlock_slowpath+0x75/0x780 [ 1834.547447] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1834.547460] ? alloc_loaded_vmcs+0x240/0x240 [ 1834.547477] kvm_vm_ioctl+0x4ae/0x1430 [ 1834.547489] ? __lock_acquire+0x655/0x42a0 [ 1834.547500] ? kvm_vcpu_release+0xa0/0xa0 [ 1834.547509] ? check_preemption_disabled+0x35/0x240 [ 1834.547520] ? perf_trace_lock+0x109/0x4b0 [ 1834.547531] ? check_preemption_disabled+0x35/0x240 [ 1834.547540] ? perf_trace_lock+0x109/0x4b0 [ 1834.547548] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1834.547556] ? futex_exit_release+0x60/0x60 [ 1834.547569] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1834.547581] ? lock_acquire+0x170/0x3f0 [ 1834.547590] ? kvm_vcpu_release+0xa0/0xa0 [ 1834.547601] do_vfs_ioctl+0x75a/0xfe0 [ 1834.547613] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1834.547624] ? ioctl_preallocate+0x1a0/0x1a0 [ 1834.547647] ? security_file_ioctl+0x76/0xb0 [ 1834.547657] ? security_file_ioctl+0x83/0xb0 [ 1834.547668] SyS_ioctl+0x7f/0xb0 [ 1834.547676] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1834.547688] do_syscall_64+0x1d5/0x640 [ 1834.547704] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1834.547712] RIP: 0033:0x45ca59 [ 1834.547718] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1834.547729] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1834.547735] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1834.547741] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1834.547747] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1834.547753] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1834.652564] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1834.652590] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1834.652615] CPU: 1 PID: 23709 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1834.652622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1834.652626] Call Trace: [ 1834.652644] dump_stack+0x1b2/0x283 [ 1834.652661] warn_alloc.cold+0x96/0x1af [ 1834.652675] ? zone_watermark_ok_safe+0x250/0x250 [ 1834.652695] ? wait_for_completion_io+0x10/0x10 [ 1834.652711] __alloc_pages_nodemask+0x2129/0x2730 [ 1834.652738] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1834.652749] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1834.652774] ? do_raw_spin_unlock+0x164/0x250 [ 1834.652788] alloc_pages_current+0xe7/0x1e0 [ 1834.652802] kvm_mmu_create+0xd1/0x1c0 [ 1834.652814] kvm_arch_vcpu_init+0x282/0x890 [ 1834.652825] ? alloc_pages_current+0xef/0x1e0 [ 1834.652840] kvm_vcpu_init+0x26d/0x360 [ 1834.652852] vmx_create_vcpu+0xf5/0x2950 [ 1834.652866] ? __mutex_unlock_slowpath+0x75/0x780 [ 1834.652875] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1834.652888] ? alloc_loaded_vmcs+0x240/0x240 [ 1834.652904] kvm_vm_ioctl+0x4ae/0x1430 [ 1834.652916] ? __lock_acquire+0x655/0x42a0 [ 1834.652928] ? kvm_vcpu_release+0xa0/0xa0 [ 1834.652938] ? check_preemption_disabled+0x35/0x240 [ 1834.652950] ? perf_trace_lock+0x109/0x4b0 [ 1834.652963] ? check_preemption_disabled+0x35/0x240 [ 1834.652975] ? perf_trace_lock+0x109/0x4b0 [ 1834.652983] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1834.652992] ? futex_exit_release+0x60/0x60 [ 1834.653003] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1834.653015] ? lock_acquire+0x170/0x3f0 [ 1834.653026] ? kvm_vcpu_release+0xa0/0xa0 [ 1834.653037] do_vfs_ioctl+0x75a/0xfe0 [ 1834.653049] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1834.653060] ? ioctl_preallocate+0x1a0/0x1a0 [ 1834.653080] ? security_file_ioctl+0x76/0xb0 [ 1834.653089] ? security_file_ioctl+0x83/0xb0 [ 1834.653101] SyS_ioctl+0x7f/0xb0 [ 1834.653109] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1834.653121] do_syscall_64+0x1d5/0x640 [ 1834.653136] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1834.653144] RIP: 0033:0x45ca59 [ 1834.653149] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1834.653161] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1834.653166] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1834.653171] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1834.653178] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1834.653183] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1834.754715] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1834.754741] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1834.754766] CPU: 1 PID: 23722 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1834.754772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1834.754783] Call Trace: [ 1834.754801] dump_stack+0x1b2/0x283 [ 1834.754818] warn_alloc.cold+0x96/0x1af [ 1834.754831] ? zone_watermark_ok_safe+0x250/0x250 [ 1834.754852] ? wait_for_completion_io+0x10/0x10 [ 1834.754868] __alloc_pages_nodemask+0x2129/0x2730 [ 1834.754894] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1834.754904] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1834.754929] ? do_raw_spin_unlock+0x164/0x250 [ 1834.754943] alloc_pages_current+0xe7/0x1e0 [ 1834.754958] kvm_mmu_create+0xd1/0x1c0 [ 1834.754971] kvm_arch_vcpu_init+0x282/0x890 [ 1834.754981] ? alloc_pages_current+0xef/0x1e0 [ 1834.754994] kvm_vcpu_init+0x26d/0x360 [ 1834.755007] vmx_create_vcpu+0xf5/0x2950 [ 1834.755020] ? __mutex_unlock_slowpath+0x75/0x780 [ 1834.755029] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1834.755041] ? alloc_loaded_vmcs+0x240/0x240 [ 1834.755058] kvm_vm_ioctl+0x4ae/0x1430 [ 1834.755069] ? __lock_acquire+0x655/0x42a0 [ 1834.755081] ? kvm_vcpu_release+0xa0/0xa0 [ 1834.755091] ? check_preemption_disabled+0x35/0x240 [ 1834.755103] ? perf_trace_lock+0x109/0x4b0 [ 1834.755115] ? check_preemption_disabled+0x35/0x240 [ 1834.755126] ? perf_trace_lock+0x109/0x4b0 [ 1834.755134] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1834.755143] ? futex_exit_release+0x60/0x60 [ 1834.755155] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1834.755165] ? lock_acquire+0x170/0x3f0 [ 1834.755176] ? kvm_vcpu_release+0xa0/0xa0 [ 1834.755187] do_vfs_ioctl+0x75a/0xfe0 [ 1834.755200] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1834.755212] ? ioctl_preallocate+0x1a0/0x1a0 [ 1834.755233] ? security_file_ioctl+0x76/0xb0 [ 1834.755242] ? security_file_ioctl+0x83/0xb0 [ 1834.755252] SyS_ioctl+0x7f/0xb0 [ 1834.755269] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1834.755284] do_syscall_64+0x1d5/0x640 [ 1834.755302] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1834.755311] RIP: 0033:0x45ca59 [ 1834.755316] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1834.755326] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1834.755332] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1834.755337] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 02:42:15 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/timer\x00', 0x10000) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) r7 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r7, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r7, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) getsockopt$inet6_mtu(r7, 0x29, 0x17, &(0x7f0000000000), &(0x7f0000000040)=0x4) 02:42:15 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:15 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:15 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:15 executing program 4: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:15 executing program 1: r0 = socket$inet(0x2, 0x3, 0x2) getsockopt(r0, 0x0, 0xce, 0x0, &(0x7f0000000000)) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8982, &(0x7f0000000000)={0x6, 'ip6tnl0\x00', {0x9}, 0x7}) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r2, &(0x7f0000000000)=ANY=[], 0xfffffecc) r3 = gettid() tkill(r3, 0x3c) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYRES16, @ANYRES32=r4, @ANYBLOB="0000400000000005280012000c00010076657468"], 0x48}}, 0x0) sendmsg$IPSET_CMD_GET_BYINDEX(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x3c, 0xf, 0x6, 0x201, 0x0, 0x0, {0x3, 0x0, 0x7}, [@IPSET_ATTR_INDEX={0x6, 0xb, 0xffffffffffffffff}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x4}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x3}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x3c}}, 0x1) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x20, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x1}, 0x11121, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, r3, 0x0, 0xffffffffffffffff, 0x0) r5 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r1, 0x0, r5, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1834.755343] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1834.755349] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 02:42:15 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:15 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:15 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:15 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) 02:42:15 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = gettid() tkill(r2, 0x3c) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r2, 0x4, &(0x7f0000000080)=""/236) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r3, 0x0, 0x4ffe0, 0x0) ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x8) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) bind$rose(r4, &(0x7f0000000000)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, 0x1, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}}, 0x1c) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) 02:42:15 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) 02:42:16 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) r2 = gettid() tkill(r2, 0x3c) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x5, 0x0, 0x41c1, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8000000}, 0xc1, 0x6, 0x0, 0x9, 0x1}, r2, 0x0, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) write$P9_RXATTRCREATE(r5, &(0x7f0000000000)={0x7, 0x21, 0x2}, 0x7) splice(r0, 0x0, r3, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) 02:42:16 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) 02:42:16 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:16 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) 02:42:16 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:16 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) r7 = socket$inet6(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x1) connect$inet6(r7, &(0x7f0000000000)={0xa, 0x4e22, 0xfffffffd, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x14}}, 0xb7e}, 0x1c) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000100)=@assoc_value, 0x8) setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000080)={0x0, 0xa2, 0xb99d, 0x6}, 0x10) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:16 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 02:42:16 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) r1 = socket$inet(0x2, 0x3, 0x2) getsockopt(r1, 0x0, 0xce, 0x0, &(0x7f0000000000)) r2 = socket$inet(0x2, 0x3, 0x2) getsockopt(r2, 0x0, 0xce, 0x0, &(0x7f0000000000)) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYRES32=r1, @ANYRESOCT, @ANYBLOB="f4cd3ad2aa3ff5a26f3f265da05c7843250b8e0035141fefbbc2371c6fb549b8b926c1db0e7ae32759cc7451a3a28997b434d343590d1d07f7ed31fbf76b381904734234b1eb70717cdec810d1fdd37639a9cab62fcc832781c5bfe17057a9248bc34ee407caccf34b6d3a3da653b00a195a2811b587c1c9c8193ce84b2d6d003bad214c49d14aca35fbbc38dd561d1b733cdfe4a503d06d486a668b712c1e4a4a1ac03c0949f88b186ea6a85af18b8be4fd17b24a1aece43c29778d5084a827b3ea96283a193030f7e7ff9b481e16a732318e72", @ANYRES16=0x0, @ANYRESDEC=r2], 0xb360521b) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r3, 0x0, 0x0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) 02:42:16 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1836.913145] warn_alloc: 5 callbacks suppressed 02:42:16 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000c40)=ANY=[@ANYBLOB="66696c74657200000000000000000000000000000000000000000000000000000e0000000400000098030000f8000000c8010000f8000000c8010000f8000000c8020000c8020000c8020000c8020000c80200000400000000000000000000004cc7872711511674c05009ff3488171900000000000000000000ffff000000000000000000000000000000000000000000000000000000000000000000000000736974300000000000000000000000006272696467655f736c6176655f3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d000f8000000000000000000000000000000000000000000000000002800686c00000000000000000000000000000000000000000000000000000000000000000000000028004e46515545554500000000000000000000000000000000000000000000020000018000000000fe880000000000000000000000000001fe880000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000068737230000000000000000000000000000000000000000000000000000000000000000000000000000000000000530000000000000000000000000000000000000000000000000000000000a800d00000000000000000000000000000000000000000000000000028004e46515545554500000000000000000000000000000000000bed4bd500020000060000000000fe8000000000000000000000000000bbfe88000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000006272696467655f736c6176655f310000626174616476300000000000000000000000000000000000000000000000000000000000000000000000000000000000110000050000000000000000d800000100000000000000000000000000000000000000000000000030006c32747000000000000000000000000000000000000000000000000000000000000000000000f7ff010000000000280052454a45435400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a800d0000000000000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff"], 0x1) getsockopt$IP6T_SO_GET_INFO(r3, 0x29, 0x40, &(0x7f0000000080)={'raw\x00'}, &(0x7f0000000100)=0x54) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r4 = socket$inet(0x2, 0x3, 0x2) getsockopt(r4, 0x0, 0xce, 0x0, &(0x7f0000000000)) ioctl$FIOCLEX(r4, 0x5451) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x7, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89}}) ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f0000000000)={[{0x97f6, 0xffff, 0x1, 0x80, 0x1, 0xc, 0x0, 0x2, 0x1, 0x76, 0x3, 0x9, 0x100000000}, {0x8, 0x9, 0x0, 0xa6, 0x48, 0x3, 0xf7, 0x8, 0xc0, 0x0, 0x3f, 0xfd, 0x7ff}, {0xae1, 0x2ff, 0x3f, 0x40, 0x4, 0x2f, 0x81, 0x81, 0x3, 0x3, 0x82, 0x1, 0x800}], 0x7ff}) ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f0000000140)={0x3f, 0x7}) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1836.913150] syz-executor.0: [ 1836.992549] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1837.016589] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1837.021974] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1837.038258] CPU: 0 PID: 23844 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1837.046160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1837.055550] Call Trace: [ 1837.058144] dump_stack+0x1b2/0x283 [ 1837.061802] warn_alloc.cold+0x96/0x1af [ 1837.065782] ? zone_watermark_ok_safe+0x250/0x250 [ 1837.070644] ? wait_for_completion_io+0x10/0x10 [ 1837.075322] __alloc_pages_nodemask+0x2129/0x2730 [ 1837.080195] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1837.085042] ? retint_kernel+0x2d/0x2d [ 1837.088935] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1837.093713] alloc_pages_current+0xe7/0x1e0 [ 1837.098046] kvm_mmu_create+0xd1/0x1c0 [ 1837.101939] kvm_arch_vcpu_init+0x282/0x890 [ 1837.106264] ? alloc_pages_current+0xef/0x1e0 [ 1837.110758] kvm_vcpu_init+0x26d/0x360 [ 1837.114645] vmx_create_vcpu+0xf5/0x2950 [ 1837.118711] ? __mutex_unlock_slowpath+0x75/0x780 [ 1837.123558] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1837.128578] ? alloc_loaded_vmcs+0x240/0x240 [ 1837.132996] kvm_vm_ioctl+0x4ae/0x1430 [ 1837.136884] ? __lock_acquire+0x655/0x42a0 02:42:16 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1837.141120] ? kvm_vcpu_release+0xa0/0xa0 [ 1837.145273] ? check_preemption_disabled+0x35/0x240 [ 1837.150294] ? retint_kernel+0x2d/0x2d [ 1837.154190] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1837.157518] ip6_tables: ip6tables: counters copy to user failed while replacing table [ 1837.159206] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1837.159222] ? check_preemption_disabled+0x35/0x240 [ 1837.159237] ? retint_kernel+0x2d/0x2d [ 1837.180857] ? __fget+0x1ff/0x360 [ 1837.184316] ? kvm_vcpu_release+0xa0/0xa0 [ 1837.188468] do_vfs_ioctl+0x75a/0xfe0 [ 1837.192272] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1837.197897] ? ioctl_preallocate+0x1a0/0x1a0 [ 1837.202320] ? security_file_ioctl+0x76/0xb0 [ 1837.206731] ? security_file_ioctl+0x83/0xb0 [ 1837.211144] SyS_ioctl+0x7f/0xb0 [ 1837.214509] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1837.218484] do_syscall_64+0x1d5/0x640 [ 1837.222378] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1837.227562] RIP: 0033:0x45ca59 [ 1837.227993] syz-executor.0 cpuset= [ 1837.230779] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 02:42:16 executing program 5: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1837.230792] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1837.230799] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1837.230806] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1837.230812] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1837.230818] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1837.251664] warn_alloc_show_mem: 3 callbacks suppressed [ 1837.251681] Mem-Info: [ 1837.308872] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1837.325442] active_anon:447117 inactive_anon:48677 isolated_anon:0 [ 1837.325442] active_file:8213 inactive_file:62280 isolated_file:3 [ 1837.325442] unevictable:2560 dirty:175 writeback:0 unstable:0 [ 1837.325442] slab_reclaimable:125754 slab_unreclaimable:328612 [ 1837.325442] mapped:64785 shmem:38045 pagetables:8717 bounce:0 [ 1837.325442] free:492413 free_pcp:352 free_cma:0 [ 1837.334578] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1837.370177] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:4kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):12kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1837.373643] CPU: 1 PID: 23842 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1837.407962] Node 1 active_anon:433076kB inactive_anon:35476kB active_file:32848kB inactive_file:249120kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34532kB dirty:700kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1837.409189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1837.409194] Call Trace: [ 1837.409212] dump_stack+0x1b2/0x283 [ 1837.409228] warn_alloc.cold+0x96/0x1af [ 1837.409241] ? zone_watermark_ok_safe+0x250/0x250 [ 1837.437634] Node 0 [ 1837.446596] ? wait_for_completion_io+0x10/0x10 [ 1837.446614] __alloc_pages_nodemask+0x2129/0x2730 [ 1837.446640] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1837.446652] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1837.446676] ? check_preemption_disabled+0x35/0x240 [ 1837.446692] alloc_pages_current+0xe7/0x1e0 [ 1837.446707] kvm_mmu_create+0xd1/0x1c0 [ 1837.446720] kvm_arch_vcpu_init+0x282/0x890 [ 1837.446729] ? alloc_pages_current+0xef/0x1e0 [ 1837.446748] kvm_vcpu_init+0x26d/0x360 [ 1837.446762] vmx_create_vcpu+0xf5/0x2950 [ 1837.446775] ? __mutex_unlock_slowpath+0x75/0x780 [ 1837.446785] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1837.446799] ? alloc_loaded_vmcs+0x240/0x240 [ 1837.449541] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1837.452974] kvm_vm_ioctl+0x4ae/0x1430 [ 1837.452988] ? __lock_acquire+0x655/0x42a0 [ 1837.452999] ? kvm_vcpu_release+0xa0/0xa0 [ 1837.453008] ? check_preemption_disabled+0x35/0x240 [ 1837.453023] ? retint_kernel+0x2d/0x2d [ 1837.457247] lowmem_reserve[]: [ 1837.461792] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1837.461804] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1837.461818] ? check_preemption_disabled+0x35/0x240 [ 1837.461828] ? retint_kernel+0x2d/0x2d [ 1837.461841] ? kvm_vcpu_release+0xa0/0xa0 [ 1837.464177] 0 [ 1837.468709] ? kvm_vcpu_release+0xa0/0xa0 [ 1837.468719] do_vfs_ioctl+0x75a/0xfe0 [ 1837.468733] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1837.468744] ? ioctl_preallocate+0x1a0/0x1a0 [ 1837.468767] ? security_file_ioctl+0x76/0xb0 [ 1837.468777] ? security_file_ioctl+0x83/0xb0 [ 1837.468788] SyS_ioctl+0x7f/0xb0 [ 1837.468796] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1837.468808] do_syscall_64+0x1d5/0x640 [ 1837.468826] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1837.468834] RIP: 0033:0x45ca59 [ 1837.468840] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 02:42:17 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1837.468852] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1837.468858] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1837.468870] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1837.473828] 2559 [ 1837.478531] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1837.478537] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1837.522016] / [ 1837.542068] 2559 [ 1837.588789] mems_allowed=0-1 [ 1837.595334] 2559 [ 1837.599040] CPU: 1 PID: 23849 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1837.617976] 2559 [ 1837.618764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1837.618769] Call Trace: [ 1837.618787] dump_stack+0x1b2/0x283 [ 1837.618806] warn_alloc.cold+0x96/0x1af [ 1837.627586] ? zone_watermark_ok_safe+0x250/0x250 [ 1837.627606] ? wait_for_completion_io+0x10/0x10 [ 1837.627620] __alloc_pages_nodemask+0x2129/0x2730 [ 1837.627644] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1837.627655] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1837.627681] ? do_raw_spin_unlock+0x164/0x250 [ 1837.627697] alloc_pages_current+0xe7/0x1e0 [ 1837.627711] kvm_mmu_create+0xd1/0x1c0 [ 1837.627724] kvm_arch_vcpu_init+0x282/0x890 [ 1837.627733] ? alloc_pages_current+0xef/0x1e0 [ 1837.627746] kvm_vcpu_init+0x26d/0x360 [ 1837.627760] vmx_create_vcpu+0xf5/0x2950 [ 1837.627778] ? __mutex_unlock_slowpath+0x75/0x780 [ 1837.636554] Node 0 [ 1837.639463] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1837.639479] ? alloc_loaded_vmcs+0x240/0x240 02:42:17 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1837.639501] kvm_vm_ioctl+0x4ae/0x1430 [ 1837.643484] DMA32 free:36296kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:4kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:312kB local_pcp:260kB free_cma:0kB [ 1837.648533] ? __lock_acquire+0x655/0x42a0 [ 1837.648545] ? kvm_vcpu_release+0xa0/0xa0 [ 1837.648554] ? check_preemption_disabled+0x35/0x240 [ 1837.648564] ? perf_trace_lock+0x109/0x4b0 [ 1837.648575] ? check_preemption_disabled+0x35/0x240 [ 1837.648587] ? perf_trace_lock+0x109/0x4b0 [ 1837.648594] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1837.648603] ? futex_exit_release+0x60/0x60 [ 1837.648615] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1837.648626] ? lock_acquire+0x170/0x3f0 [ 1837.648636] ? kvm_vcpu_release+0xa0/0xa0 [ 1837.648648] do_vfs_ioctl+0x75a/0xfe0 [ 1837.648659] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1837.648670] ? ioctl_preallocate+0x1a0/0x1a0 [ 1837.648692] ? security_file_ioctl+0x76/0xb0 02:42:17 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1837.648702] ? security_file_ioctl+0x83/0xb0 [ 1837.648713] SyS_ioctl+0x7f/0xb0 [ 1837.648721] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1837.648735] do_syscall_64+0x1d5/0x640 [ 1837.648756] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1837.654127] lowmem_reserve[]: [ 1837.659610] RIP: 0033:0x45ca59 [ 1837.659615] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1837.659625] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1837.659630] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1837.659635] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1837.659641] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1837.659647] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1837.982055] 0 0 0 0 0 [ 1837.985329] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1838.012529] lowmem_reserve[]: 0 0 0 0 0 [ 1838.018184] Node 1 Normal free:1922184kB min:53592kB low:66988kB high:80384kB active_anon:432800kB inactive_anon:35476kB active_file:32848kB inactive_file:249168kB unevictable:0kB writepending:764kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3136kB pagetables:6804kB bounce:0kB free_pcp:1364kB local_pcp:724kB free_cma:0kB [ 1838.037267] syz-executor.0: [ 1838.049229] lowmem_reserve[]: 0 0 0 0 0 [ 1838.056812] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1838.058313] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1838.082616] Node 0 DMA32: 1200*4kB (UMEH) 730*8kB (UMEH) 117*16kB (UME) 46*32kB (UM) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36320kB [ 1838.086368] syz-executor.0 cpuset= [ 1838.099899] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1838.112867] / mems_allowed=0-1 [ 1838.115921] Node 1 Normal: 188*4kB (UME) 278*8kB (UME) 318*16kB (UME) 765*32kB (UME) 226*64kB (UME) 26*128kB (UME) 22*256kB (UM) 27*512kB (UME) 6*1024kB (UM) 2*2048kB (UM) 450*4096kB (M) = 1923232kB [ 1838.122709] CPU: 1 PID: 23914 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1838.135749] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1838.143365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1838.143370] Call Trace: [ 1838.143386] dump_stack+0x1b2/0x283 [ 1838.143402] warn_alloc.cold+0x96/0x1af [ 1838.157234] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1838.161567] ? zone_watermark_ok_safe+0x250/0x250 [ 1838.161587] ? wait_for_completion_io+0x10/0x10 [ 1838.164183] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1838.167765] __alloc_pages_nodemask+0x2129/0x2730 [ 1838.167792] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1838.167804] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1838.167829] ? do_raw_spin_unlock+0x164/0x250 [ 1838.167842] alloc_pages_current+0xe7/0x1e0 [ 1838.167857] kvm_mmu_create+0xd1/0x1c0 [ 1838.174753] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1838.180372] kvm_arch_vcpu_init+0x282/0x890 [ 1838.180387] ? alloc_pages_current+0xef/0x1e0 [ 1838.188009] 79278 total pagecache pages [ 1838.189898] kvm_vcpu_init+0x26d/0x360 [ 1838.189912] vmx_create_vcpu+0xf5/0x2950 [ 1838.200150] 0 pages in swap cache [ 1838.203560] ? __mutex_unlock_slowpath+0x75/0x780 [ 1838.203572] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1838.209807] Swap cache stats: add 0, delete 0, find 0/0 [ 1838.213224] ? alloc_loaded_vmcs+0x240/0x240 [ 1838.213241] kvm_vm_ioctl+0x4ae/0x1430 [ 1838.219124] Free swap = 0kB [ 1838.222026] ? __lock_acquire+0x655/0x42a0 [ 1838.222039] ? kvm_vcpu_release+0xa0/0xa0 [ 1838.227299] Total swap = 0kB [ 1838.234467] ? check_preemption_disabled+0x35/0x240 [ 1838.234482] ? perf_trace_lock+0x109/0x4b0 [ 1838.240310] 1965979 pages RAM [ 1838.243267] ? check_preemption_disabled+0x35/0x240 [ 1838.243280] ? perf_trace_lock+0x109/0x4b0 [ 1838.248851] 0 pages HighMem/MovableOnly [ 1838.251106] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1838.251116] ? futex_exit_release+0x60/0x60 [ 1838.251128] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1838.258606] 338456 pages reserved [ 1838.258625] ? lock_acquire+0x170/0x3f0 [ 1838.263490] 0 pages cma reserved [ 1838.268440] ? kvm_vcpu_release+0xa0/0xa0 [ 1838.268451] do_vfs_ioctl+0x75a/0xfe0 [ 1838.268464] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1838.268475] ? ioctl_preallocate+0x1a0/0x1a0 [ 1838.268495] ? security_file_ioctl+0x76/0xb0 [ 1838.268502] ? security_file_ioctl+0x83/0xb0 [ 1838.268515] SyS_ioctl+0x7f/0xb0 [ 1838.376685] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1838.380643] do_syscall_64+0x1d5/0x640 [ 1838.384533] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1838.389725] RIP: 0033:0x45ca59 [ 1838.392911] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1838.400612] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1838.410814] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1838.418064] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1838.425314] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1838.432577] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 02:42:18 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:18 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:18 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x4, 0x3, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}, 0x0, 0xff, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:18 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1838.475121] warn_alloc_show_mem: 2 callbacks suppressed [ 1838.475126] Mem-Info: [ 1838.486326] active_anon:447048 inactive_anon:48677 isolated_anon:0 [ 1838.486326] active_file:8215 inactive_file:62293 isolated_file:0 [ 1838.486326] unevictable:2560 dirty:191 writeback:0 unstable:0 [ 1838.486326] slab_reclaimable:125762 slab_unreclaimable:328544 [ 1838.486326] mapped:64818 shmem:38045 pagetables:8642 bounce:0 [ 1838.486326] free:492746 free_pcp:373 free_cma:0 [ 1838.539974] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:12kB inactive_file:4kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 02:42:18 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) r7 = socket$inet6(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x1) connect$inet6(r7, &(0x7f0000000000)={0xa, 0x4e22, 0xfffffffd, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x14}}, 0xb7e}, 0x1c) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000100)=@assoc_value, 0x8) setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000080)={0x0, 0xa2, 0xb99d, 0x6}, 0x10) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:18 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) [ 1838.811761] Node 1 active_anon:433120kB inactive_anon:35476kB active_file:32848kB inactive_file:249180kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34800kB dirty:776kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1838.837173] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1838.864944] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1838.870515] CPU: 1 PID: 23953 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1838.878519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1838.887878] Call Trace: [ 1838.890483] dump_stack+0x1b2/0x283 [ 1838.894120] warn_alloc.cold+0x96/0x1af [ 1838.898117] ? zone_watermark_ok_safe+0x250/0x250 [ 1838.902979] ? wait_for_completion_io+0x10/0x10 [ 1838.907677] __alloc_pages_nodemask+0x2129/0x2730 [ 1838.912554] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1838.917406] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1838.922273] alloc_pages_current+0xe7/0x1e0 [ 1838.926953] kvm_mmu_create+0xd1/0x1c0 [ 1838.930851] kvm_arch_vcpu_init+0x282/0x890 [ 1838.935180] ? alloc_pages_current+0xef/0x1e0 [ 1838.939692] kvm_vcpu_init+0x26d/0x360 [ 1838.943584] vmx_create_vcpu+0xf5/0x2950 [ 1838.945157] syz-executor.2: [ 1838.947653] ? alloc_loaded_vmcs+0x240/0x240 [ 1838.947667] ? kvm_arch_vcpu_create+0x2/0xb0 [ 1838.947682] kvm_vm_ioctl+0x4ae/0x1430 [ 1838.950822] page allocation failure: order:0 [ 1838.955089] ? __lock_acquire+0x655/0x42a0 [ 1838.955101] ? kvm_vcpu_release+0xa0/0xa0 [ 1838.955112] ? check_preemption_disabled+0x35/0x240 [ 1838.955123] ? retint_kernel+0x2d/0x2d [ 1838.955133] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1838.955143] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1838.955154] ? check_preemption_disabled+0x35/0x240 [ 1838.955163] ? retint_kernel+0x2d/0x2d [ 1838.955178] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1838.955187] ? kvm_vcpu_release+0xa0/0xa0 [ 1838.955196] do_vfs_ioctl+0x75a/0xfe0 [ 1838.955208] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1838.955217] ? ioctl_preallocate+0x1a0/0x1a0 [ 1838.955239] ? security_file_ioctl+0x76/0xb0 [ 1838.955249] ? security_file_ioctl+0x83/0xb0 [ 1838.955260] SyS_ioctl+0x7f/0xb0 [ 1838.955267] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1838.955281] do_syscall_64+0x1d5/0x640 [ 1838.961135] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1838.963560] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1838.963569] RIP: 0033:0x45ca59 [ 1838.963575] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1838.963586] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1838.963592] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1838.963599] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1838.969109] (null) [ 1838.972211] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1838.972217] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1839.107738] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1839.115266] syz-executor.2 cpuset= [ 1839.137728] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1839.154646] Node 0 DMA32 free:36152kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:424kB local_pcp:256kB free_cma:0kB [ 1839.163915] / [ 1839.192925] lowmem_reserve[]: 0 0 0 0 0 [ 1839.199476] mems_allowed=0-1 [ 1839.200264] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1839.205707] CPU: 1 PID: 23938 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1839.233928] lowmem_reserve[]: [ 1839.236945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1839.236950] Call Trace: [ 1839.236967] dump_stack+0x1b2/0x283 [ 1839.236988] warn_alloc.cold+0x96/0x1af [ 1839.236999] ? zone_watermark_ok_safe+0x250/0x250 [ 1839.237019] ? wait_for_completion_io+0x10/0x10 [ 1839.237033] __alloc_pages_nodemask+0x2129/0x2730 [ 1839.237059] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1839.237073] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1839.258403] 0 [ 1839.259677] ? do_raw_spin_unlock+0x164/0x250 [ 1839.259692] alloc_pages_current+0xe7/0x1e0 [ 1839.281579] 0 [ 1839.283674] kvm_mmu_create+0xd1/0x1c0 [ 1839.283688] kvm_arch_vcpu_init+0x282/0x890 [ 1839.286167] 0 [ 1839.289956] ? alloc_pages_current+0xef/0x1e0 [ 1839.289971] kvm_vcpu_init+0x26d/0x360 [ 1839.294315] 0 [ 1839.296059] vmx_create_vcpu+0xf5/0x2950 [ 1839.296074] ? __mutex_unlock_slowpath+0x75/0x780 [ 1839.296083] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1839.296095] ? alloc_loaded_vmcs+0x240/0x240 [ 1839.296111] kvm_vm_ioctl+0x4ae/0x1430 [ 1839.296123] ? __lock_acquire+0x655/0x42a0 [ 1839.296132] ? kvm_vcpu_release+0xa0/0xa0 [ 1839.296143] ? check_preemption_disabled+0x35/0x240 [ 1839.296155] ? perf_trace_lock+0x109/0x4b0 [ 1839.296167] ? check_preemption_disabled+0x35/0x240 [ 1839.310142] 0 [ 1839.310614] ? perf_trace_lock+0x109/0x4b0 02:42:18 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DEST(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="000000da8087073302", @ANYRES16=r5, @ANYBLOB="20002bbd7000fbdbdf25050000002c00018014000300640101020000000000000000000000000c0007001200000002000000060004004e240000080004000001000008000600060000005800018014000300ac14141d000000000000000000000000060002008800000008000b0073697000080006006f766600060002003b000000060004004e200000060002008700000008000b00736970000600010002000000"], 0xa8}, 0x1, 0x0, 0x0, 0x8020}, 0x20008002) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r6, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r6, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r6) [ 1839.310625] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1839.316289] ? futex_exit_release+0x60/0x60 [ 1839.320408] Node 1 [ 1839.325183] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1839.325194] ? lock_acquire+0x170/0x3f0 [ 1839.325205] ? kvm_vcpu_release+0xa0/0xa0 [ 1839.325216] do_vfs_ioctl+0x75a/0xfe0 [ 1839.325228] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1839.325238] ? ioctl_preallocate+0x1a0/0x1a0 [ 1839.325260] ? security_file_ioctl+0x76/0xb0 [ 1839.331766] Normal free:1921468kB min:53592kB low:66988kB high:80384kB active_anon:433156kB inactive_anon:35476kB active_file:32848kB inactive_file:249192kB unevictable:0kB writepending:828kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3392kB pagetables:6840kB bounce:0kB free_pcp:1232kB local_pcp:596kB free_cma:0kB [ 1839.334667] ? security_file_ioctl+0x83/0xb0 [ 1839.334680] SyS_ioctl+0x7f/0xb0 [ 1839.334687] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1839.334699] do_syscall_64+0x1d5/0x640 [ 1839.334716] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1839.334723] RIP: 0033:0x45ca59 [ 1839.334728] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1839.334738] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1839.334743] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1839.334749] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1839.334754] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1839.334759] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1839.567272] lowmem_reserve[]: 0 0 0 0 0 [ 1839.572577] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1839.595620] Node 0 DMA32: 1168*4kB (UMEH) 733*8kB (UMH) 117*16kB (UM) 46*32kB (UM) 74*64kB (UM) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36152kB [ 1839.620737] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1839.628420] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1839.639380] Node 1 Normal: 152*4kB (UME) 182*8kB (UME) 613*16kB (UME) 760*32kB (UME) 227*64kB (UME) 17*128kB (UME) 13*256kB (UM) 22*512kB (UME) 6*1024kB (UM) 2*2048kB (UM) 450*4096kB (M) = 1920928kB [ 1839.643005] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1839.667374] CPU: 1 PID: 23989 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1839.669562] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1839.675262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1839.675268] Call Trace: [ 1839.675288] dump_stack+0x1b2/0x283 [ 1839.675304] warn_alloc.cold+0x96/0x1af [ 1839.675314] ? zone_watermark_ok_safe+0x250/0x250 [ 1839.675332] ? wait_for_completion_io+0x10/0x10 [ 1839.675346] __alloc_pages_nodemask+0x2129/0x2730 [ 1839.675373] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1839.675387] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1839.675400] ? check_preemption_disabled+0x35/0x240 [ 1839.675424] alloc_pages_current+0xe7/0x1e0 [ 1839.696072] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1839.696163] kvm_mmu_create+0xd1/0x1c0 [ 1839.701104] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1839.703736] kvm_arch_vcpu_init+0x282/0x890 [ 1839.703754] kvm_vcpu_init+0x26d/0x360 [ 1839.703767] vmx_create_vcpu+0xf5/0x2950 [ 1839.703785] ? alloc_loaded_vmcs+0x240/0x240 [ 1839.717278] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1839.718126] ? kvm_arch_vcpu_create+0x79/0xb0 [ 1839.723124] 79288 total pagecache pages [ 1839.727687] kvm_vm_ioctl+0x4ae/0x1430 [ 1839.727702] ? __lock_acquire+0x655/0x42a0 [ 1839.727714] ? kvm_vcpu_release+0xa0/0xa0 [ 1839.727723] ? check_preemption_disabled+0x35/0x240 [ 1839.727734] ? retint_kernel+0x2d/0x2d [ 1839.727745] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1839.727756] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1839.727768] ? check_preemption_disabled+0x35/0x240 [ 1839.727776] ? retint_kernel+0x2d/0x2d [ 1839.727791] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1839.727801] ? kvm_vcpu_release+0xa0/0xa0 [ 1839.727812] do_vfs_ioctl+0x75a/0xfe0 [ 1839.727823] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1839.727833] ? ioctl_preallocate+0x1a0/0x1a0 [ 1839.727854] ? security_file_ioctl+0x76/0xb0 [ 1839.745200] 0 pages in swap cache [ 1839.745728] ? security_file_ioctl+0x83/0xb0 [ 1839.749874] Swap cache stats: add 0, delete 0, find 0/0 [ 1839.758436] SyS_ioctl+0x7f/0xb0 [ 1839.758447] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1839.758461] do_syscall_64+0x1d5/0x640 [ 1839.758478] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1839.758486] RIP: 0033:0x45ca59 [ 1839.758490] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1839.758501] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1839.758507] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 02:42:19 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:19 executing program 1: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1839.758512] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1839.758517] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1839.758523] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1839.763495] warn_alloc_show_mem: 2 callbacks suppressed [ 1839.763512] Mem-Info: [ 1839.777331] Free swap = 0kB [ 1839.789119] active_anon:447137 inactive_anon:48677 isolated_anon:0 [ 1839.789119] active_file:8216 inactive_file:62298 isolated_file:0 [ 1839.789119] unevictable:2560 dirty:207 writeback:0 unstable:0 02:42:19 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1839.789119] slab_reclaimable:125714 slab_unreclaimable:329472 [ 1839.789119] mapped:64856 shmem:38045 pagetables:8725 bounce:0 [ 1839.789119] free:491627 free_pcp:381 free_cma:0 [ 1839.790856] Total swap = 0kB [ 1839.793486] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1839.801137] 1965979 pages RAM [ 1839.828135] Node 1 active_anon:433156kB inactive_anon:35476kB active_file:32848kB inactive_file:249192kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34816kB dirty:828kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1839.832755] 0 pages HighMem/MovableOnly [ 1839.839355] syz-executor.5: [ 1839.842441] 338456 pages reserved [ 1839.847590] Node 0 [ 1839.857020] 0 pages cma reserved [ 1839.864029] page allocation failure: order:0 [ 1839.964092] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1840.010186] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1840.157205] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1840.160409] syz-executor.5 cpuset= [ 1840.163057] Node 0 [ 1840.165978] / [ 1840.174169] DMA32 free:36152kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:424kB local_pcp:256kB free_cma:0kB [ 1840.185538] syz-executor.3: [ 1840.207674] mems_allowed=0-1 [ 1840.221800] CPU: 1 PID: 23937 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1840.229708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1840.239071] Call Trace: [ 1840.241671] dump_stack+0x1b2/0x283 [ 1840.242487] lowmem_reserve[]: [ 1840.245390] warn_alloc.cold+0x96/0x1af [ 1840.245403] ? zone_watermark_ok_safe+0x250/0x250 [ 1840.245426] ? wait_for_completion_io+0x10/0x10 [ 1840.245441] __alloc_pages_nodemask+0x2129/0x2730 [ 1840.245467] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1840.245481] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1840.245494] ? check_preemption_disabled+0x35/0x240 [ 1840.245519] alloc_pages_current+0xe7/0x1e0 [ 1840.245535] kvm_mmu_create+0xd1/0x1c0 [ 1840.245549] kvm_arch_vcpu_init+0x282/0x890 [ 1840.245558] ? alloc_pages_current+0xef/0x1e0 [ 1840.245572] kvm_vcpu_init+0x26d/0x360 [ 1840.245586] vmx_create_vcpu+0xf5/0x2950 [ 1840.245600] ? __mutex_unlock_slowpath+0x75/0x780 [ 1840.245610] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1840.245622] ? alloc_loaded_vmcs+0x240/0x240 [ 1840.245638] kvm_vm_ioctl+0x4ae/0x1430 [ 1840.245650] ? __lock_acquire+0x655/0x42a0 [ 1840.245661] ? kvm_vcpu_release+0xa0/0xa0 [ 1840.245671] ? check_preemption_disabled+0x35/0x240 [ 1840.245683] ? perf_trace_lock+0x109/0x4b0 [ 1840.245695] ? check_preemption_disabled+0x35/0x240 [ 1840.245707] ? perf_trace_lock+0x109/0x4b0 [ 1840.245715] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1840.245728] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1840.245738] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1840.245752] ? kvm_vcpu_release+0xa0/0xa0 [ 1840.245764] do_vfs_ioctl+0x75a/0xfe0 [ 1840.245777] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1840.245792] ? ioctl_preallocate+0x1a0/0x1a0 [ 1840.249845] 0 [ 1840.252859] ? security_file_ioctl+0x76/0xb0 [ 1840.252870] ? security_file_ioctl+0x83/0xb0 [ 1840.252882] SyS_ioctl+0x7f/0xb0 [ 1840.252891] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1840.252903] do_syscall_64+0x1d5/0x640 [ 1840.252919] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1840.292063] 0 [ 1840.294292] RIP: 0033:0x45ca59 [ 1840.294297] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1840.294309] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1840.294316] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1840.294322] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1840.294328] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1840.294334] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1840.301075] page allocation failure: order:0 [ 1840.320891] 0 [ 1840.326814] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1840.355748] 0 [ 1840.360329] (null) [ 1840.383740] 0 [ 1840.392836] syz-executor.3 cpuset= [ 1840.403042] / [ 1840.409671] Node 0 [ 1840.411318] mems_allowed=0-1 [ 1840.429290] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1840.437452] CPU: 1 PID: 24004 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1840.461857] lowmem_reserve[]: [ 1840.465780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1840.465785] Call Trace: [ 1840.465803] dump_stack+0x1b2/0x283 [ 1840.465817] warn_alloc.cold+0x96/0x1af [ 1840.465827] ? zone_watermark_ok_safe+0x250/0x250 [ 1840.465847] ? wait_for_completion_io+0x10/0x10 [ 1840.465863] __alloc_pages_nodemask+0x2129/0x2730 [ 1840.465891] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1840.465902] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1840.465933] alloc_pages_current+0xe7/0x1e0 [ 1840.465955] kvm_mmu_create+0xd1/0x1c0 [ 1840.465967] kvm_arch_vcpu_init+0x282/0x890 [ 1840.465982] kvm_vcpu_init+0x26d/0x360 [ 1840.465996] vmx_create_vcpu+0xf5/0x2950 [ 1840.466010] ? __mutex_unlock_slowpath+0x75/0x780 [ 1840.466025] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1840.466042] ? alloc_loaded_vmcs+0x240/0x240 [ 1840.466059] kvm_vm_ioctl+0x4ae/0x1430 [ 1840.466077] ? __lock_acquire+0x655/0x42a0 [ 1840.466087] ? kvm_vcpu_release+0xa0/0xa0 02:42:20 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) [ 1840.466098] ? check_preemption_disabled+0x35/0x240 [ 1840.466109] ? retint_kernel+0x2d/0x2d [ 1840.466120] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1840.466132] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1840.466144] ? check_preemption_disabled+0x35/0x240 [ 1840.466155] ? retint_kernel+0x2d/0x2d [ 1840.466172] ? do_vfs_ioctl+0x6fb/0xfe0 [ 1840.466182] ? kvm_vcpu_release+0xa0/0xa0 [ 1840.466192] do_vfs_ioctl+0x75a/0xfe0 [ 1840.466204] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1840.466216] ? ioctl_preallocate+0x1a0/0x1a0 [ 1840.466237] ? security_file_ioctl+0x76/0xb0 [ 1840.466247] ? security_file_ioctl+0x83/0xb0 [ 1840.466257] SyS_ioctl+0x7f/0xb0 [ 1840.466263] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1840.466276] do_syscall_64+0x1d5/0x640 [ 1840.466296] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1840.489292] 0 [ 1840.491499] RIP: 0033:0x45ca59 [ 1840.491506] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1840.491517] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1840.491538] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1840.491544] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1840.491550] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1840.491559] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1840.500936] 0 [ 1840.643920] syz-executor.0: [ 1840.669932] 0 [ 1840.700180] page allocation failure: order:0 [ 1840.723703] 0 [ 1840.739586] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1840.748809] 0 [ 1840.752675] (null) [ 1840.761350] syz-executor.0 cpuset= [ 1840.765213] Node 1 [ 1840.774252] / [ 1840.775303] Normal free:1922436kB min:53592kB low:66988kB high:80384kB active_anon:433088kB inactive_anon:35476kB active_file:32848kB inactive_file:249252kB unevictable:0kB writepending:916kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3328kB pagetables:6804kB bounce:0kB free_pcp:896kB local_pcp:644kB free_cma:0kB [ 1840.778353] mems_allowed=0-1 [ 1840.780404] lowmem_reserve[]: [ 1840.782637] CPU: 1 PID: 24015 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1840.784199] 0 [ 1840.813566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1840.813572] Call Trace: [ 1840.813593] dump_stack+0x1b2/0x283 [ 1840.813607] warn_alloc.cold+0x96/0x1af [ 1840.813618] ? zone_watermark_ok_safe+0x250/0x250 [ 1840.813637] ? wait_for_completion_io+0x10/0x10 [ 1840.813651] __alloc_pages_nodemask+0x2129/0x2730 [ 1840.813677] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1840.813687] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1840.813710] ? do_raw_spin_unlock+0x164/0x250 [ 1840.813725] alloc_pages_current+0xe7/0x1e0 [ 1840.813738] kvm_mmu_create+0xd1/0x1c0 [ 1840.813750] kvm_arch_vcpu_init+0x282/0x890 [ 1840.813758] ? alloc_pages_current+0xef/0x1e0 [ 1840.813771] kvm_vcpu_init+0x26d/0x360 [ 1840.813785] vmx_create_vcpu+0xf5/0x2950 [ 1840.813798] ? __mutex_unlock_slowpath+0x75/0x780 [ 1840.813806] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1840.813818] ? alloc_loaded_vmcs+0x240/0x240 [ 1840.813832] kvm_vm_ioctl+0x4ae/0x1430 [ 1840.813843] ? __lock_acquire+0x655/0x42a0 [ 1840.813852] ? kvm_vcpu_release+0xa0/0xa0 [ 1840.813862] ? check_preemption_disabled+0x35/0x240 [ 1840.813873] ? perf_trace_lock+0x109/0x4b0 [ 1840.813884] ? check_preemption_disabled+0x35/0x240 [ 1840.813895] ? perf_trace_lock+0x109/0x4b0 [ 1840.813902] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1840.813910] ? futex_exit_release+0x60/0x60 [ 1840.813921] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1840.813932] ? lock_acquire+0x170/0x3f0 [ 1840.813940] ? kvm_vcpu_release+0xa0/0xa0 [ 1840.813951] do_vfs_ioctl+0x75a/0xfe0 [ 1840.813962] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1840.813973] ? ioctl_preallocate+0x1a0/0x1a0 [ 1840.813992] ? security_file_ioctl+0x76/0xb0 [ 1840.814003] ? security_file_ioctl+0x83/0xb0 [ 1840.817257] 0 [ 1840.820186] SyS_ioctl+0x7f/0xb0 [ 1840.820194] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1840.820207] do_syscall_64+0x1d5/0x640 [ 1840.828159] 0 [ 1840.829861] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1840.829873] RIP: 0033:0x45ca59 [ 1840.839285] 0 [ 1840.841778] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1840.841789] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1840.841795] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1840.841802] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1840.845472] 0 [ 1840.849354] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1840.849360] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1840.892810] warn_alloc_show_mem: 2 callbacks suppressed [ 1840.892814] Mem-Info: [ 1840.920167] active_anon:447126 inactive_anon:48677 isolated_anon:0 [ 1840.920167] active_file:8216 inactive_file:62313 isolated_file:0 [ 1840.920167] unevictable:2560 dirty:231 writeback:0 unstable:0 [ 1840.920167] slab_reclaimable:125693 slab_unreclaimable:329183 [ 1840.920167] mapped:65040 shmem:38045 pagetables:8725 bounce:0 [ 1840.920167] free:491970 free_pcp:321 free_cma:0 [ 1840.927712] Node 0 [ 1840.937103] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1840.942641] DMA: [ 1840.945968] Node 1 active_anon:433112kB inactive_anon:35476kB active_file:32848kB inactive_file:249252kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34752kB dirty:924kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1840.951175] 5*4kB [ 1840.957318] Node 0 [ 1840.960648] (UM) [ 1840.963572] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1840.969740] 3*8kB [ 1840.975465] lowmem_reserve[]: [ 1840.979233] (UM) [ 1840.983754] 0 [ 1840.988885] 2*16kB [ 1840.994530] 2559 [ 1840.998595] (UM) [ 1841.001287] 2559 [ 1841.008317] 3*32kB [ 1841.009306] 2559 [ 1841.010922] (UME) [ 1841.017079] 2559 [ 1841.023373] 1*64kB [ 1841.042673] (E) [ 1841.044484] Node 0 [ 1841.052077] 3*128kB [ 1841.055165] DMA32 free:36176kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:440kB local_pcp:180kB free_cma:0kB [ 1841.066029] (UME) [ 1841.068482] lowmem_reserve[]: [ 1841.072630] 2*256kB [ 1841.077467] 0 [ 1841.116220] (ME) [ 1841.151362] 0 [ 1841.185619] 2*512kB [ 1841.218174] 0 [ 1841.227357] (ME) [ 1841.245793] 0 [ 1841.269195] 2*1024kB [ 1841.281946] 0 [ 1841.285753] (ME) [ 1841.297102] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1841.300220] 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1841.332434] Node 0 DMA32: 1168*4kB (UMEH) 736*8kB (UMH) 117*16kB (UM) 46*32kB (UM) 74*64kB (UM) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36176kB [ 1841.348982] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1841.359887] Node 1 Normal: 110*4kB (UME) 337*8kB (UME) 442*16kB (UME) 765*32kB (UME) 227*64kB (UME) 30*128kB (UME) 15*256kB (UM) 22*512kB (UME) 6*1024kB (UM) 2*2048kB (UM) 450*4096kB (M) = 1921600kB [ 1841.369098] lowmem_reserve[]: [ 1841.378120] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1841.390608] 0 0 0 0 0 [ 1841.394868] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1841.403565] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1841.417313] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1841.419012] Node 1 [ 1841.426796] 79311 total pagecache pages [ 1841.430652] Normal free:1921344kB min:53592kB low:66988kB high:80384kB active_anon:432928kB inactive_anon:35476kB active_file:32848kB inactive_file:249300kB unevictable:0kB writepending:840kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3328kB pagetables:6840kB bounce:0kB free_pcp:1100kB local_pcp:404kB free_cma:0kB [ 1841.433092] 0 pages in swap cache [ 1841.468722] Swap cache stats: add 0, delete 0, find 0/0 [ 1841.470316] lowmem_reserve[]: [ 1841.474171] Free swap = 0kB [ 1841.474222] 0 [ 1841.478858] Total swap = 0kB [ 1841.484847] 0 0 0 0 [ 1841.486919] 1965979 pages RAM [ 1841.487973] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) [ 1841.490809] 0 pages HighMem/MovableOnly [ 1841.490815] 338456 pages reserved [ 1841.501020] 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1841.505113] 0 pages cma reserved 02:42:21 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r3) mount$9p_xen(&(0x7f0000000000)='syz\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x69a3080, &(0x7f0000000100)={'trans=xen,', {[{@cache_mmap='cache=mmap'}, {@afid={'afid', 0x3d, 0x4}}, {@aname={'aname'}}, {@uname={'uname'}}, {@loose='loose'}], [{@func={'func', 0x3d, 'BPRM_CHECK'}}, {@euid_gt={'euid>', r3}}]}}) r4 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r4, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1841.523301] Node 0 DMA32: 1168*4kB (UMEH) 736*8kB (UMH) 117*16kB (UM) 46*32kB (UM) 74*64kB (UM) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36176kB [ 1841.564861] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1841.588143] Node 1 Normal: 116*4kB (UE) 431*8kB (UME) 437*16kB (UME) 769*32kB (UME) 227*64kB (UME) 30*128kB (UME) 15*256kB (UM) 22*512kB (UME) 6*1024kB (UM) 2*2048kB (UM) 450*4096kB (M) = 1922424kB [ 1841.606909] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1841.615964] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1841.624931] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 02:42:21 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1841.634272] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1841.646519] 79311 total pagecache pages [ 1841.652512] 0 pages in swap cache [ 1841.657462] Swap cache stats: add 0, delete 0, find 0/0 [ 1841.663020] Free swap = 0kB [ 1841.671070] Total swap = 0kB [ 1841.674156] 1965979 pages RAM [ 1841.679519] 0 pages HighMem/MovableOnly [ 1841.697183] 338456 pages reserved [ 1841.706504] 0 pages cma reserved 02:42:21 executing program 0: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:21 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:21 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x2, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_config_ext, 0x80, 0x0, 0x0, 0x8, 0x4, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$BLKRAGET(0xffffffffffffffff, 0x1263, &(0x7f0000000000)) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$MON_IOCQ_URB_LEN(r8, 0x9201) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(r8, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1841.927375] warn_alloc: 1 callbacks suppressed [ 1841.927381] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1841.948460] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1841.957376] CPU: 0 PID: 24076 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1841.965276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1841.974631] Call Trace: [ 1841.977231] dump_stack+0x1b2/0x283 [ 1841.980874] warn_alloc.cold+0x96/0x1af [ 1841.984855] ? zone_watermark_ok_safe+0x250/0x250 [ 1841.989713] ? wait_for_completion_io+0x10/0x10 [ 1841.994388] __alloc_pages_nodemask+0x2129/0x2730 [ 1841.999255] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1842.004106] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1842.008977] ? do_raw_spin_unlock+0x164/0x250 [ 1842.013479] alloc_pages_current+0xe7/0x1e0 [ 1842.017897] kvm_mmu_create+0xd1/0x1c0 [ 1842.021785] kvm_arch_vcpu_init+0x282/0x890 [ 1842.026108] ? alloc_pages_current+0xef/0x1e0 [ 1842.030609] kvm_vcpu_init+0x26d/0x360 [ 1842.034500] vmx_create_vcpu+0xf5/0x2950 [ 1842.038564] ? __mutex_unlock_slowpath+0x75/0x780 [ 1842.043404] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1842.046625] syz-executor.5: [ 1842.048423] ? alloc_loaded_vmcs+0x240/0x240 [ 1842.048441] kvm_vm_ioctl+0x4ae/0x1430 [ 1842.048456] ? __lock_acquire+0x655/0x42a0 [ 1842.048471] ? kvm_vcpu_release+0xa0/0xa0 [ 1842.051593] page allocation failure: order:0 [ 1842.055878] ? check_preemption_disabled+0x35/0x240 [ 1842.055891] ? perf_trace_lock+0x109/0x4b0 [ 1842.055902] ? check_preemption_disabled+0x35/0x240 [ 1842.055913] ? perf_trace_lock+0x109/0x4b0 [ 1842.055920] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1842.055928] ? futex_exit_release+0x60/0x60 [ 1842.055939] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1842.055951] ? lock_acquire+0x170/0x3f0 [ 1842.055961] ? kvm_vcpu_release+0xa0/0xa0 [ 1842.055977] do_vfs_ioctl+0x75a/0xfe0 [ 1842.060893] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1842.064060] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1842.064073] ? ioctl_preallocate+0x1a0/0x1a0 [ 1842.064095] ? security_file_ioctl+0x76/0xb0 [ 1842.064110] ? security_file_ioctl+0x83/0xb0 [ 1842.068630] (null) [ 1842.072631] SyS_ioctl+0x7f/0xb0 [ 1842.072646] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1842.072661] do_syscall_64+0x1d5/0x640 [ 1842.072680] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1842.072689] RIP: 0033:0x45ca59 [ 1842.072693] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1842.078071] syz-executor.5 cpuset= 02:42:21 executing program 0: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:21 executing program 1: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:21 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1842.081912] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1842.081918] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1842.081924] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1842.081930] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1842.081936] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1842.124910] Mem-Info: [ 1842.206404] / mems_allowed=0-1 [ 1842.257391] CPU: 1 PID: 24068 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1842.265297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1842.273256] active_anon:447115 inactive_anon:48677 isolated_anon:0 [ 1842.273256] active_file:8217 inactive_file:62330 isolated_file:0 [ 1842.273256] unevictable:2560 dirty:222 writeback:0 unstable:0 [ 1842.273256] slab_reclaimable:125747 slab_unreclaimable:328787 [ 1842.273256] mapped:64871 shmem:38045 pagetables:8726 bounce:0 [ 1842.273256] free:492283 free_pcp:357 free_cma:0 [ 1842.274647] Call Trace: [ 1842.274666] dump_stack+0x1b2/0x283 [ 1842.274684] warn_alloc.cold+0x96/0x1af [ 1842.274695] ? zone_watermark_ok_safe+0x250/0x250 [ 1842.274712] ? wait_for_completion_io+0x10/0x10 [ 1842.274727] __alloc_pages_nodemask+0x2129/0x2730 [ 1842.274760] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1842.338475] ? retint_kernel+0x2d/0x2d [ 1842.338694] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1842.342362] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1842.342391] alloc_pages_current+0xe7/0x1e0 [ 1842.342407] kvm_mmu_create+0xd1/0x1c0 [ 1842.342420] kvm_arch_vcpu_init+0x282/0x890 02:42:21 executing program 0: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1842.387081] Node 1 active_anon:433068kB inactive_anon:35476kB active_file:32852kB inactive_file:249320kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34876kB dirty:888kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1842.388022] ? alloc_pages_current+0xef/0x1e0 [ 1842.420524] kvm_vcpu_init+0x26d/0x360 [ 1842.424505] vmx_create_vcpu+0xf5/0x2950 [ 1842.428568] ? __mutex_unlock_slowpath+0x75/0x780 [ 1842.433415] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1842.438442] ? alloc_loaded_vmcs+0x240/0x240 [ 1842.442859] kvm_vm_ioctl+0x4ae/0x1430 02:42:22 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DEST(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="000000da8087073302", @ANYRES16=r5, @ANYBLOB="20002bbd7000fbdbdf25050000002c00018014000300640101020000000000000000000000000c0007001200000002000000060004004e240000080004000001000008000600060000005800018014000300ac14141d000000000000000000000000060002008800000008000b0073697000080006006f766600060002003b000000060004004e200000060002008700000008000b00736970000600010002000000"], 0xa8}, 0x1, 0x0, 0x0, 0x8020}, 0x20008002) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r6, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r6, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r6) [ 1842.446757] ? __lock_acquire+0x655/0x42a0 [ 1842.450374] Node 0 [ 1842.450989] ? kvm_vcpu_release+0xa0/0xa0 [ 1842.451002] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1842.451007] lowmem_reserve[]: [ 1842.453228] ? retint_kernel+0x2d/0x2d [ 1842.453242] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1842.453255] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1842.453270] ? check_preemption_disabled+0x35/0x240 [ 1842.459977] 0 [ 1842.483252] ? retint_kernel+0x2d/0x2d [ 1842.483275] ? selinux_file_ioctl+0x19a/0x560 [ 1842.483284] ? selinux_file_ioctl+0x22c/0x560 [ 1842.483294] ? kvm_vcpu_release+0xa0/0xa0 [ 1842.483305] do_vfs_ioctl+0x75a/0xfe0 [ 1842.483316] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1842.483326] ? ioctl_preallocate+0x1a0/0x1a0 [ 1842.483345] ? security_file_ioctl+0x76/0xb0 [ 1842.483354] ? security_file_ioctl+0x83/0xb0 [ 1842.483364] SyS_ioctl+0x7f/0xb0 [ 1842.483375] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1842.553728] do_syscall_64+0x1d5/0x640 [ 1842.557631] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1842.562821] RIP: 0033:0x45ca59 [ 1842.566012] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1842.573727] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1842.579815] 2559 [ 1842.580997] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1842.581003] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 02:42:22 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1842.581009] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1842.581016] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1842.682991] 2559 2559 2559 [ 1842.688795] Node 0 DMA32 free:36176kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:460kB local_pcp:276kB free_cma:0kB [ 1842.738722] lowmem_reserve[]: 0 0 0 0 0 [ 1842.743432] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1842.775443] lowmem_reserve[]: 0 0 0 0 0 02:42:22 executing program 0: sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1842.779706] Node 1 Normal free:1922484kB min:53592kB low:66988kB high:80384kB active_anon:433068kB inactive_anon:35476kB active_file:32852kB inactive_file:249320kB unevictable:0kB writepending:888kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3328kB pagetables:6844kB bounce:0kB free_pcp:1120kB local_pcp:464kB free_cma:0kB [ 1842.813727] lowmem_reserve[]: 0 0 0 0 0 [ 1842.819728] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1842.837087] Node 0 DMA32: 1168*4kB (UMEH) 736*8kB (UMH) 117*16kB (UM) 46*32kB (UM) 74*64kB (UM) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36176kB [ 1842.855479] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1842.866535] Node 1 Normal: 107*4kB (UME) 189*8kB (UME) 357*16kB (UME) 769*32kB (UME) 229*64kB (UME) 42*128kB (UME) 18*256kB (UM) 22*512kB (UME) 6*1024kB [ 1842.866639] syz-executor.3: [ 1842.866641] (UM) 2*2048kB [ 1842.886571] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1842.890937] (UM) 450*4096kB (M) = 1921604kB [ 1842.904283] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1842.910687] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1842.912325] CPU: 1 PID: 24093 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1842.920477] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1842.927760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1842.927765] Call Trace: [ 1842.927784] dump_stack+0x1b2/0x283 [ 1842.927800] warn_alloc.cold+0x96/0x1af [ 1842.927811] ? zone_watermark_ok_safe+0x250/0x250 [ 1842.927828] ? __sanitizer_cov_trace_pc+0x41/0x50 [ 1842.927839] ? wait_for_completion_io+0x10/0x10 [ 1842.927855] __alloc_pages_nodemask+0x2129/0x2730 [ 1842.927882] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1842.927893] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1842.927915] ? check_preemption_disabled+0x35/0x240 [ 1842.927932] alloc_pages_current+0xe7/0x1e0 [ 1842.927947] kvm_mmu_create+0xd1/0x1c0 [ 1842.927960] kvm_arch_vcpu_init+0x282/0x890 [ 1842.927970] ? alloc_pages_current+0xef/0x1e0 [ 1842.942975] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1842.945894] kvm_vcpu_init+0x26d/0x360 [ 1842.945911] vmx_create_vcpu+0xf5/0x2950 [ 1842.945926] ? __mutex_unlock_slowpath+0x75/0x780 [ 1842.945938] ? alloc_loaded_vmcs+0x240/0x240 [ 1842.945953] kvm_vm_ioctl+0x4ae/0x1430 [ 1842.945964] ? __lock_acquire+0x655/0x42a0 [ 1842.945976] ? kvm_vcpu_release+0xa0/0xa0 [ 1842.948661] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1842.952171] ? check_preemption_disabled+0x35/0x240 [ 1842.952182] ? retint_kernel+0x2d/0x2d [ 1842.952195] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1842.952207] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1842.952219] ? check_preemption_disabled+0x35/0x240 [ 1842.961038] 79326 total pagecache pages [ 1842.965829] ? retint_kernel+0x2d/0x2d [ 1842.965843] ? __fget+0x1ff/0x360 [ 1842.965860] ? kvm_vcpu_release+0xa0/0xa0 [ 1842.965870] do_vfs_ioctl+0x75a/0xfe0 [ 1842.965883] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1842.965893] ? ioctl_preallocate+0x1a0/0x1a0 [ 1842.965913] ? security_file_ioctl+0x76/0xb0 [ 1842.965922] ? security_file_ioctl+0x83/0xb0 [ 1842.965933] SyS_ioctl+0x7f/0xb0 [ 1842.965940] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1842.965953] do_syscall_64+0x1d5/0x640 [ 1842.965968] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1842.965976] RIP: 0033:0x45ca59 [ 1842.965981] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1842.965993] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1842.971244] 0 pages in swap cache [ 1842.975462] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1842.975468] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1842.975474] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1842.975480] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1843.123841] syz-executor.0: [ 1843.132872] Swap cache stats: add 0, delete 0, find 0/0 [ 1843.186406] syz-executor.4: [ 1843.192762] Free swap = 0kB [ 1843.193835] page allocation failure: order:0 [ 1843.197892] Total swap = 0kB [ 1843.208139] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1843.213621] 1965979 pages RAM [ 1843.218520] 0 pages HighMem/MovableOnly [ 1843.227137] 338456 pages reserved [ 1843.227297] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1843.230788] 0 pages cma reserved [ 1843.241332] CPU: 1 PID: 24118 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1843.249221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1843.258573] Call Trace: [ 1843.261174] dump_stack+0x1b2/0x283 [ 1843.265767] warn_alloc.cold+0x96/0x1af [ 1843.269742] ? zone_watermark_ok_safe+0x250/0x250 [ 1843.274604] ? wait_for_completion_io+0x10/0x10 [ 1843.279278] __alloc_pages_nodemask+0x2129/0x2730 [ 1843.284146] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1843.288989] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1843.293829] ? retint_kernel+0x2d/0x2d [ 1843.297727] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1843.302519] ? retint_kernel+0x2d/0x2d [ 1843.306412] alloc_pages_current+0xe7/0x1e0 [ 1843.310743] kvm_mmu_create+0xd1/0x1c0 [ 1843.314666] kvm_arch_vcpu_init+0x282/0x890 [ 1843.318987] ? alloc_pages_current+0xef/0x1e0 [ 1843.323483] kvm_vcpu_init+0x26d/0x360 [ 1843.327369] vmx_create_vcpu+0xf5/0x2950 [ 1843.331413] ? __mutex_unlock_slowpath+0x75/0x780 [ 1843.336234] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1843.341230] ? alloc_loaded_vmcs+0x240/0x240 [ 1843.345624] kvm_vm_ioctl+0x4ae/0x1430 [ 1843.349512] ? __lock_acquire+0x655/0x42a0 [ 1843.353728] ? kvm_vcpu_release+0xa0/0xa0 [ 1843.357854] ? retint_kernel+0x2d/0x2d [ 1843.361719] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1843.366714] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1843.371454] ? check_preemption_disabled+0x35/0x240 [ 1843.376460] ? retint_kernel+0x2d/0x2d [ 1843.380631] ? selinux_file_ioctl+0x19a/0x560 [ 1843.385118] ? selinux_file_ioctl+0x19a/0x560 [ 1843.389592] ? kvm_vcpu_release+0xa0/0xa0 [ 1843.393721] do_vfs_ioctl+0x75a/0xfe0 [ 1843.397500] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1843.403102] ? ioctl_preallocate+0x1a0/0x1a0 [ 1843.407512] ? security_file_ioctl+0x76/0xb0 [ 1843.411897] ? security_file_ioctl+0x83/0xb0 [ 1843.416284] SyS_ioctl+0x7f/0xb0 [ 1843.419629] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1843.423582] do_syscall_64+0x1d5/0x640 [ 1843.427464] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1843.432631] RIP: 0033:0x45ca59 [ 1843.435802] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1843.443489] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1843.450747] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1843.458009] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1843.465268] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1843.472624] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1843.509427] warn_alloc_show_mem: 2 callbacks suppressed [ 1843.509442] Mem-Info: [ 1843.518454] active_anon:447116 inactive_anon:48677 isolated_anon:0 [ 1843.518454] active_file:8217 inactive_file:62339 isolated_file:0 [ 1843.518454] unevictable:2560 dirty:241 writeback:0 unstable:0 [ 1843.518454] slab_reclaimable:125743 slab_unreclaimable:328655 [ 1843.518454] mapped:64875 shmem:38045 pagetables:8701 bounce:0 [ 1843.518454] free:492495 free_pcp:389 free_cma:0 [ 1843.555632] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1843.567646] syz-executor.1: [ 1843.584504] Node 1 active_anon:433072kB inactive_anon:35476kB active_file:32852kB inactive_file:249356kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:34892kB dirty:964kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1843.591332] page allocation failure: order:0 [ 1843.617375] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1843.622892] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1843.651901] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1843.663652] (null) [ 1843.664157] Node 0 DMA32 free:36176kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:484kB local_pcp:204kB free_cma:0kB [ 1843.670769] syz-executor.1 cpuset= [ 1843.701223] lowmem_reserve[]: 0 0 0 0 0 [ 1843.709736] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1843.718792] / [ 1843.736970] lowmem_reserve[]: 0 0 0 0 0 [ 1843.740990] mems_allowed=0-1 [ 1843.742926] Node 1 Normal free:1922728kB min:53592kB low:66988kB high:80384kB active_anon:433072kB inactive_anon:35476kB active_file:32852kB inactive_file:249356kB unevictable:0kB writepending:964kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3328kB pagetables:6744kB bounce:0kB free_pcp:1012kB local_pcp:404kB free_cma:0kB [ 1843.747642] CPU: 0 PID: 24121 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 1843.778557] lowmem_reserve[]: [ 1843.784112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1843.784117] Call Trace: [ 1843.784134] dump_stack+0x1b2/0x283 [ 1843.787539] 0 [ 1843.796555] warn_alloc.cold+0x96/0x1af [ 1843.796565] ? zone_watermark_ok_safe+0x250/0x250 [ 1843.796572] ? __alloc_pages_nodemask+0x1fee/0x2730 [ 1843.796590] ? __sanitizer_cov_trace_pc+0x4a/0x50 [ 1843.796601] ? wait_for_completion_io+0x10/0x10 [ 1843.796618] __alloc_pages_nodemask+0x2129/0x2730 [ 1843.796646] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1843.804297] 0 [ 1843.804623] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1843.804652] alloc_pages_current+0xe7/0x1e0 [ 1843.808597] 0 [ 1843.813418] kvm_mmu_create+0xd1/0x1c0 [ 1843.813433] kvm_arch_vcpu_init+0x282/0x890 [ 1843.813444] ? alloc_pages_current+0xef/0x1e0 [ 1843.823482] 0 [ 1843.827909] kvm_vcpu_init+0x26d/0x360 [ 1843.827923] vmx_create_vcpu+0xf5/0x2950 [ 1843.827932] ? check_preemption_disabled+0x35/0x240 [ 1843.827944] ? retint_kernel+0x2d/0x2d [ 1843.827963] ? alloc_loaded_vmcs+0x240/0x240 [ 1843.834292] 0 [ 1843.837638] kvm_vm_ioctl+0x4ae/0x1430 [ 1843.837652] ? __lock_acquire+0x655/0x42a0 [ 1843.844272] ? kvm_vcpu_release+0xa0/0xa0 [ 1843.844281] ? check_preemption_disabled+0x35/0x240 [ 1843.844292] ? retint_kernel+0x2d/0x2d [ 1843.844305] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1843.844318] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1843.853255] Node 0 [ 1843.854278] ? check_preemption_disabled+0x35/0x240 [ 1843.854290] ? retint_kernel+0x2d/0x2d [ 1843.854303] ? kvm_vcpu_release+0xa0/0xa0 [ 1843.854317] ? do_vfs_ioctl+0x6fb/0xfe0 [ 1843.854329] ? kvm_vcpu_release+0xa0/0xa0 [ 1843.861247] DMA: [ 1843.863123] do_vfs_ioctl+0x75a/0xfe0 [ 1843.863140] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1843.866241] 5*4kB 02:42:23 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1843.868789] ? ioctl_preallocate+0x1a0/0x1a0 [ 1843.868812] ? security_file_ioctl+0x76/0xb0 [ 1843.872868] (UM) [ 1843.877924] ? security_file_ioctl+0x83/0xb0 [ 1843.877935] SyS_ioctl+0x7f/0xb0 [ 1843.877942] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1843.877954] do_syscall_64+0x1d5/0x640 [ 1843.877971] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1843.877979] RIP: 0033:0x45ca59 [ 1843.877990] RSP: 002b:00007f9232553c78 EFLAGS: 00000246 [ 1843.884298] 3*8kB [ 1843.886238] ORIG_RAX: 0000000000000010 [ 1843.886245] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1843.886251] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1843.886257] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1843.886262] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1843.886271] R13: 000000000000039c R14: 00000000004c635c R15: 00007f92325546d4 [ 1843.888064] (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1844.060886] Node 0 DMA32: 1168*4kB (UMEH) 736*8kB (UMH) 117*16kB (UM) 46*32kB (UM) 74*64kB (UM) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36176kB [ 1844.088979] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1844.104832] Node 1 Normal: 68*4kB (UME) 45*8kB (UME) 432*16kB (UME) 781*32kB (UME) 230*64kB (UME) 47*128kB (UME) 19*256kB (UM) 21*512kB (UME) 5*1024kB (UM) 3*2048kB (UM) 450*4096kB (M) = 1923352kB [ 1844.126615] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1844.131234] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1844.141984] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1844.148379] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1844.162070] CPU: 0 PID: 24144 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1844.162969] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1844.169944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1844.169948] Call Trace: [ 1844.169968] dump_stack+0x1b2/0x283 [ 1844.169983] warn_alloc.cold+0x96/0x1af [ 1844.169994] ? zone_watermark_ok_safe+0x250/0x250 [ 1844.170013] ? wait_for_completion_io+0x10/0x10 [ 1844.170027] __alloc_pages_nodemask+0x2129/0x2730 [ 1844.170053] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1844.170067] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1844.170080] ? check_preemption_disabled+0x35/0x240 [ 1844.170105] alloc_pages_current+0xe7/0x1e0 [ 1844.170119] kvm_mmu_create+0xd1/0x1c0 [ 1844.170132] kvm_arch_vcpu_init+0x282/0x890 [ 1844.170142] ? alloc_pages_current+0xef/0x1e0 [ 1844.170156] kvm_vcpu_init+0x26d/0x360 [ 1844.170170] vmx_create_vcpu+0xf5/0x2950 [ 1844.170189] ? alloc_loaded_vmcs+0x240/0x240 [ 1844.170200] ? arch_uninstall_hw_breakpoint.cold+0x20/0x20 [ 1844.170213] kvm_vm_ioctl+0x4ae/0x1430 [ 1844.190180] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1844.190951] ? __lock_acquire+0x655/0x42a0 [ 1844.190964] ? kvm_vcpu_release+0xa0/0xa0 [ 1844.190976] ? check_preemption_disabled+0x35/0x240 [ 1844.194689] 79341 total pagecache pages [ 1844.198537] ? retint_kernel+0x2d/0x2d [ 1844.198554] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1844.198565] ? trace_hardirqs_on_thunk+0x1a/0x1c 02:42:23 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1844.198578] ? check_preemption_disabled+0x35/0x240 [ 1844.203533] 0 pages in swap cache [ 1844.208037] ? retint_kernel+0x2d/0x2d [ 1844.208053] ? do_vfs_ioctl+0x76/0xfe0 [ 1844.208063] ? kvm_vcpu_release+0xa0/0xa0 [ 1844.208073] do_vfs_ioctl+0x75a/0xfe0 [ 1844.208087] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1844.208098] ? ioctl_preallocate+0x1a0/0x1a0 [ 1844.208120] ? security_file_ioctl+0x76/0xb0 [ 1844.208131] ? security_file_ioctl+0x83/0xb0 [ 1844.214287] Swap cache stats: add 0, delete 0, find 0/0 [ 1844.217776] SyS_ioctl+0x7f/0xb0 [ 1844.217786] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1844.217798] do_syscall_64+0x1d5/0x640 [ 1844.217815] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1844.222619] Free swap = 0kB [ 1844.227549] RIP: 0033:0x45ca59 [ 1844.227554] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1844.227564] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1844.227569] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1844.227575] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1844.227581] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1844.227587] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1844.232152] page allocation failure: order:0 [ 1844.248929] Total swap = 0kB [ 1844.433906] 1965979 pages RAM [ 1844.442006] 0 pages HighMem/MovableOnly [ 1844.446960] 338456 pages reserved [ 1844.450487] 0 pages cma reserved 02:42:24 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1844.487082] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 02:42:24 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1844.539940] syz-executor.0 cpuset=/ mems_allowed=0-1 [ 1844.543295] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1844.561386] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1844.575807] CPU: 0 PID: 24165 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1844.583714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1844.593067] Call Trace: [ 1844.595665] dump_stack+0x1b2/0x283 [ 1844.599299] warn_alloc.cold+0x96/0x1af [ 1844.603280] ? zone_watermark_ok_safe+0x250/0x250 [ 1844.608230] ? wait_for_completion_io+0x10/0x10 [ 1844.612914] __alloc_pages_nodemask+0x2129/0x2730 [ 1844.617781] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1844.622663] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1844.627517] ? do_raw_spin_unlock+0x164/0x250 [ 1844.632150] alloc_pages_current+0xe7/0x1e0 [ 1844.636478] kvm_mmu_create+0xd1/0x1c0 [ 1844.640374] kvm_arch_vcpu_init+0x282/0x890 [ 1844.644703] ? alloc_pages_current+0xef/0x1e0 [ 1844.649208] kvm_vcpu_init+0x26d/0x360 [ 1844.653107] vmx_create_vcpu+0xf5/0x2950 [ 1844.657181] ? __mutex_unlock_slowpath+0x75/0x780 [ 1844.662034] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1844.667069] ? alloc_loaded_vmcs+0x240/0x240 [ 1844.671488] kvm_vm_ioctl+0x4ae/0x1430 [ 1844.675383] ? __lock_acquire+0x655/0x42a0 [ 1844.679625] ? kvm_vcpu_release+0xa0/0xa0 [ 1844.683856] ? check_preemption_disabled+0x35/0x240 [ 1844.688856] ? perf_trace_lock+0x109/0x4b0 [ 1844.693076] ? check_preemption_disabled+0x35/0x240 [ 1844.698081] ? perf_trace_lock+0x109/0x4b0 [ 1844.702302] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1844.707219] ? futex_exit_release+0x60/0x60 [ 1844.711528] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1844.716442] ? lock_acquire+0x170/0x3f0 [ 1844.720416] ? kvm_vcpu_release+0xa0/0xa0 [ 1844.724547] do_vfs_ioctl+0x75a/0xfe0 [ 1844.728334] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1844.733941] ? ioctl_preallocate+0x1a0/0x1a0 [ 1844.738427] ? security_file_ioctl+0x76/0xb0 [ 1844.742956] ? security_file_ioctl+0x83/0xb0 [ 1844.747356] SyS_ioctl+0x7f/0xb0 [ 1844.750712] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1844.754681] do_syscall_64+0x1d5/0x640 [ 1844.758656] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1844.763829] RIP: 0033:0x45ca59 [ 1844.767001] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1844.774692] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1844.781948] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1844.789207] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1844.796476] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1844.803729] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1844.855906] CPU: 1 PID: 24131 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1844.863825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1844.874051] Call Trace: [ 1844.876655] dump_stack+0x1b2/0x283 [ 1844.880301] warn_alloc.cold+0x96/0x1af [ 1844.884281] ? zone_watermark_ok_safe+0x250/0x250 [ 1844.889135] ? wait_for_completion_io+0x10/0x10 [ 1844.893816] __alloc_pages_nodemask+0x2129/0x2730 [ 1844.898680] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1844.903524] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1844.908384] ? check_preemption_disabled+0x35/0x240 [ 1844.912768] syz-executor.5: [ 1844.913405] alloc_pages_current+0xe7/0x1e0 [ 1844.913423] kvm_mmu_create+0xd1/0x1c0 [ 1844.913436] kvm_arch_vcpu_init+0x282/0x890 [ 1844.921075] page allocation failure: order:0 [ 1844.924639] ? alloc_pages_current+0xef/0x1e0 [ 1844.924655] kvm_vcpu_init+0x26d/0x360 [ 1844.924670] vmx_create_vcpu+0xf5/0x2950 [ 1844.924683] ? __mutex_unlock_slowpath+0x75/0x780 [ 1844.924693] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1844.924704] ? alloc_loaded_vmcs+0x240/0x240 [ 1844.924721] kvm_vm_ioctl+0x4ae/0x1430 [ 1844.924733] ? __lock_acquire+0x655/0x42a0 [ 1844.924743] ? kvm_vcpu_release+0xa0/0xa0 [ 1844.924755] ? check_preemption_disabled+0x35/0x240 [ 1844.924766] ? retint_kernel+0x2d/0x2d [ 1844.924777] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1844.924790] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1844.924802] ? check_preemption_disabled+0x35/0x240 [ 1844.924812] ? retint_kernel+0x2d/0x2d [ 1844.924828] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1844.924837] ? kvm_vcpu_release+0xa0/0xa0 [ 1844.924847] do_vfs_ioctl+0x75a/0xfe0 [ 1844.924862] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1844.924872] ? ioctl_preallocate+0x1a0/0x1a0 [ 1844.924895] ? security_file_ioctl+0x76/0xb0 [ 1844.924904] ? security_file_ioctl+0x83/0xb0 [ 1844.924915] SyS_ioctl+0x7f/0xb0 [ 1844.924923] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1844.924936] do_syscall_64+0x1d5/0x640 [ 1844.924957] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1844.929508] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1844.933687] RIP: 0033:0x45ca59 [ 1844.933692] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1844.933703] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1844.933710] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1844.933716] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1844.933722] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1844.933728] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1844.946907] warn_alloc_show_mem: 2 callbacks suppressed [ 1844.946911] Mem-Info: [ 1844.952310] (null) [ 1844.980202] active_anon:447075 inactive_anon:48677 isolated_anon:0 [ 1844.980202] active_file:8218 inactive_file:62350 isolated_file:0 [ 1844.980202] unevictable:2560 dirty:267 writeback:0 unstable:0 [ 1844.980202] slab_reclaimable:125726 slab_unreclaimable:328563 [ 1844.980202] mapped:64905 shmem:38045 pagetables:8646 bounce:0 [ 1844.980202] free:492702 free_pcp:378 free_cma:0 [ 1844.984923] syz-executor.5 cpuset= [ 1844.994908] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1844.999377] / [ 1845.004542] Node 1 active_anon:432812kB inactive_anon:35476kB active_file:32864kB inactive_file:249432kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:35008kB dirty:1136kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1845.007762] mems_allowed=0-1 [ 1845.011075] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1845.011100] lowmem_reserve[]: [ 1845.015642] CPU: 0 PID: 24176 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1845.028400] 0 [ 1845.029242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1845.033701] 2559 [ 1845.038017] Call Trace: [ 1845.038037] dump_stack+0x1b2/0x283 [ 1845.038052] warn_alloc.cold+0x96/0x1af [ 1845.038063] ? zone_watermark_ok_safe+0x250/0x250 [ 1845.038073] ? check_preemption_disabled+0x35/0x240 [ 1845.041473] 2559 [ 1845.045390] __alloc_pages_nodemask+0x2129/0x2730 [ 1845.045417] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1845.045429] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1845.054399] 2559 [ 1845.054478] ? retint_kernel+0x2d/0x2d [ 1845.061000] 2559 [ 1845.064152] ? retint_kernel+0x2d/0x2d [ 1845.064169] alloc_pages_current+0xe7/0x1e0 [ 1845.064185] kvm_mmu_create+0xd1/0x1c0 [ 1845.079158] kvm_arch_vcpu_init+0x282/0x890 [ 1845.079171] ? alloc_pages_current+0xef/0x1e0 [ 1845.079184] kvm_vcpu_init+0x26d/0x360 [ 1845.079198] vmx_create_vcpu+0xf5/0x2950 [ 1845.079213] ? __mutex_unlock_slowpath+0x75/0x780 [ 1845.079227] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1845.091847] Node 0 [ 1845.093756] ? alloc_loaded_vmcs+0x240/0x240 [ 1845.093773] kvm_vm_ioctl+0x4ae/0x1430 [ 1845.102638] DMA32 free:36176kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:16kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:496kB local_pcp:208kB free_cma:0kB [ 1845.108290] ? __lock_acquire+0x655/0x42a0 [ 1845.108302] ? kvm_vcpu_release+0xa0/0xa0 [ 1845.108314] ? retint_kernel+0x2d/0x2d [ 1845.108324] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1845.108334] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1845.108347] ? check_preemption_disabled+0x35/0x240 [ 1845.118465] lowmem_reserve[]: [ 1845.152686] ? retint_kernel+0x2d/0x2d [ 1845.152705] ? selinux_file_ioctl+0x83/0x560 [ 1845.152714] ? selinux_file_ioctl+0x42b/0x560 [ 1845.152724] ? kvm_vcpu_release+0xa0/0xa0 [ 1845.152737] do_vfs_ioctl+0x75a/0xfe0 [ 1845.156326] 0 [ 1845.184624] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1845.184635] ? ioctl_preallocate+0x1a0/0x1a0 [ 1845.184656] ? security_file_ioctl+0x76/0xb0 [ 1845.184665] ? security_file_ioctl+0x83/0xb0 [ 1845.184675] SyS_ioctl+0x7f/0xb0 [ 1845.191493] 0 [ 1845.214472] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1845.214487] do_syscall_64+0x1d5/0x640 [ 1845.214503] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1845.214512] RIP: 0033:0x45ca59 [ 1845.214516] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1845.214526] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1845.214531] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1845.214540] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1845.221625] 0 [ 1845.244075] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1845.244081] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1845.531416] 0 0 [ 1845.531427] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 02:42:25 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$SOUND_MIXER_READ_RECMASK(0xffffffffffffffff, 0x80044dfd, &(0x7f0000000040)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$BINDER_GET_NODE_INFO_FOR_REF(r8, 0xc018620c, &(0x7f0000000000)={0x2}) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1845.531448] lowmem_reserve[]: 0 0 0 0 0 [ 1845.531468] Node 1 Normal free:1924172kB min:53592kB low:66988kB high:80384kB active_anon:432608kB inactive_anon:35476kB active_file:32864kB inactive_file:249468kB unevictable:0kB writepending:1152kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:2784kB pagetables:6344kB bounce:0kB free_pcp:1048kB local_pcp:588kB free_cma:0kB [ 1845.531490] lowmem_reserve[]: 0 0 0 0 0 02:42:25 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:25 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) dup(0xffffffffffffffff) 02:42:25 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:25 executing program 0: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1845.531509] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1845.636409] Node 0 DMA32: 1168*4kB (UMEH) 736*8kB (UMH) 117*16kB (UM) 46*32kB (UM) 74*64kB (UM) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36176kB [ 1845.653844] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1845.665993] Node 1 Normal: 160*4kB (UME) 48*8kB (UME) 274*16kB (UME) 790*32kB (UME) 231*64kB (UME) 49*128kB (UME) 24*256kB (UM) 21*512kB (UME) 5*1024kB (UM) 3*2048kB (UM) 450*4096kB (M) = 1923104kB [ 1845.685101] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1845.694235] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1845.702960] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1845.714318] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1845.723252] 79358 total pagecache pages [ 1845.754745] 0 pages in swap cache [ 1845.762588] Swap cache stats: add 0, delete 0, find 0/0 [ 1845.771491] Free swap = 0kB [ 1845.779206] Total swap = 0kB [ 1845.803377] 1965979 pages RAM [ 1845.819445] 0 pages HighMem/MovableOnly [ 1845.828058] 338456 pages reserved [ 1845.837451] 0 pages cma reserved [ 1845.849969] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1845.879166] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1845.891629] CPU: 1 PID: 24192 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1845.899570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1845.909966] Call Trace: [ 1845.912544] dump_stack+0x1b2/0x283 [ 1845.916160] warn_alloc.cold+0x96/0x1af [ 1845.920147] ? zone_watermark_ok_safe+0x250/0x250 [ 1845.924979] ? __sanitizer_cov_trace_pc+0x29/0x50 [ 1845.929803] ? wait_for_completion_io+0x10/0x10 [ 1845.934457] __alloc_pages_nodemask+0x2129/0x2730 [ 1845.939296] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1845.944481] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1845.949325] ? check_preemption_disabled+0x35/0x240 [ 1845.954334] alloc_pages_current+0xe7/0x1e0 [ 1845.958640] kvm_mmu_create+0xd1/0x1c0 [ 1845.962601] kvm_arch_vcpu_init+0x282/0x890 [ 1845.966905] ? alloc_pages_current+0xef/0x1e0 [ 1845.971384] kvm_vcpu_init+0x26d/0x360 [ 1845.975270] vmx_create_vcpu+0xf5/0x2950 [ 1845.979336] ? __mutex_unlock_slowpath+0x75/0x780 [ 1845.984158] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1845.989188] ? alloc_loaded_vmcs+0x240/0x240 [ 1845.993581] kvm_vm_ioctl+0x4ae/0x1430 [ 1845.997468] ? __lock_acquire+0x655/0x42a0 [ 1846.001684] ? kvm_vcpu_release+0xa0/0xa0 [ 1846.005814] ? check_preemption_disabled+0x35/0x240 [ 1846.010810] ? perf_trace_lock+0x109/0x4b0 [ 1846.015028] ? check_preemption_disabled+0x35/0x240 [ 1846.020034] ? perf_trace_lock+0x109/0x4b0 [ 1846.024254] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1846.029172] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1846.033942] ? kvm_vcpu_release+0xa0/0xa0 [ 1846.038071] do_vfs_ioctl+0x75a/0xfe0 [ 1846.041868] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1846.046622] ? ioctl_preallocate+0x1a0/0x1a0 [ 1846.051010] ? check_preemption_disabled+0x35/0x240 [ 1846.056008] ? retint_kernel+0x2d/0x2d [ 1846.059912] SyS_ioctl+0x7f/0xb0 [ 1846.063259] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1846.067220] do_syscall_64+0x1d5/0x640 [ 1846.071807] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1846.076975] RIP: 0033:0x45ca59 [ 1846.080144] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1846.087851] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1846.095113] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 02:42:25 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1846.102372] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1846.109639] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1846.116890] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 02:42:25 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1846.183015] warn_alloc_show_mem: 2 callbacks suppressed [ 1846.183218] Mem-Info: [ 1846.199189] active_anon:447089 inactive_anon:48677 isolated_anon:0 [ 1846.199189] active_file:8217 inactive_file:62369 isolated_file:3 [ 1846.199189] unevictable:2560 dirty:291 writeback:0 unstable:0 [ 1846.199189] slab_reclaimable:125677 slab_unreclaimable:329582 [ 1846.199189] mapped:64919 shmem:38045 pagetables:8668 bounce:0 [ 1846.199189] free:491549 free_pcp:446 free_cma:0 [ 1846.288533] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:4kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):12kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1846.325035] Node 1 active_anon:433264kB inactive_anon:35476kB active_file:32864kB inactive_file:249476kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:35968kB dirty:1164kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1846.356531] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1846.384722] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1846.390343] Node 0 DMA32 free:36176kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:4kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:524kB local_pcp:224kB free_cma:0kB [ 1846.422637] lowmem_reserve[]: 0 0 0 0 0 [ 1846.427614] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1846.455485] lowmem_reserve[]: 0 0 0 0 0 02:42:26 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1846.460103] Node 1 Normal free:1920336kB min:53592kB low:66988kB high:80384kB active_anon:433364kB inactive_anon:35476kB active_file:32864kB inactive_file:249476kB unevictable:0kB writepending:1164kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3456kB pagetables:6908kB bounce:0kB free_pcp:936kB local_pcp:312kB free_cma:0kB [ 1846.498941] lowmem_reserve[]: 0 0 0 0 0 [ 1846.504612] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1846.528663] Node 0 DMA32: 1168*4kB (UMEH) 736*8kB (UMH) 117*16kB (UM) 46*32kB (UM) 74*64kB (UM) 39*128kB (M) 15*256kB (UM) 15*512kB (UME) 1*1024kB (M) 0*2048kB 0*4096kB = 36176kB [ 1846.550680] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1846.564298] Node 1 Normal: 134*4kB (UME) 701*8kB (UME) 109*16kB (UME) 781*32kB (UME) 232*64kB (UME) 17*128kB (UME) 24*256kB (UM) 21*512kB (UME) 5*1024kB (UM) 3*2048kB (UM) 450*4096kB (M) = 1921264kB [ 1846.584025] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1846.593915] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1846.603392] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1846.618576] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1846.627889] 79359 total pagecache pages [ 1846.632731] 0 pages in swap cache 02:42:26 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:26 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1846.637696] Swap cache stats: add 0, delete 0, find 0/0 [ 1846.643808] Free swap = 0kB [ 1846.647700] Total swap = 0kB [ 1846.651132] 1965979 pages RAM [ 1846.655191] 0 pages HighMem/MovableOnly [ 1846.659582] 338456 pages reserved [ 1846.672027] 0 pages cma reserved 02:42:26 executing program 4: sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:26 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1846.978670] warn_alloc: 5 callbacks suppressed [ 1846.978686] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1846.997376] syz-executor.1 cpuset=/ mems_allowed=0-1 [ 1847.010522] CPU: 1 PID: 24194 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 1847.018437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1847.027795] Call Trace: [ 1847.030390] dump_stack+0x1b2/0x283 [ 1847.034029] warn_alloc.cold+0x96/0x1af [ 1847.038009] ? zone_watermark_ok_safe+0x250/0x250 [ 1847.042877] ? wait_for_completion_io+0x10/0x10 [ 1847.047559] __alloc_pages_nodemask+0x2129/0x2730 [ 1847.052427] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1847.057275] ? mark_held_locks+0xa6/0xf0 [ 1847.061350] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1847.066196] ? retint_kernel+0x2d/0x2d [ 1847.070097] ? retint_kernel+0x2d/0x2d [ 1847.073997] alloc_pages_current+0xe7/0x1e0 [ 1847.078336] kvm_mmu_create+0xd1/0x1c0 [ 1847.082238] kvm_arch_vcpu_init+0x282/0x890 [ 1847.086567] ? alloc_pages_current+0xef/0x1e0 [ 1847.091071] kvm_vcpu_init+0x26d/0x360 [ 1847.094968] vmx_create_vcpu+0xf5/0x2950 [ 1847.099033] ? __mutex_unlock_slowpath+0x75/0x780 [ 1847.103875] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1847.108897] ? alloc_loaded_vmcs+0x240/0x240 [ 1847.113312] kvm_vm_ioctl+0x4ae/0x1430 [ 1847.117212] ? __lock_acquire+0x655/0x42a0 [ 1847.121443] ? kvm_vcpu_release+0xa0/0xa0 [ 1847.125604] ? retint_kernel+0x2d/0x2d [ 1847.129562] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1847.134561] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1847.139330] ? check_preemption_disabled+0x35/0x240 [ 1847.144330] ? retint_kernel+0x2d/0x2d [ 1847.148204] ? selinux_file_ioctl+0x19a/0x560 [ 1847.152708] ? selinux_file_ioctl+0x1b7/0x560 [ 1847.157184] ? kvm_vcpu_release+0xa0/0xa0 [ 1847.161340] do_vfs_ioctl+0x75a/0xfe0 [ 1847.165140] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1847.170747] ? ioctl_preallocate+0x1a0/0x1a0 [ 1847.175162] ? security_file_ioctl+0x76/0xb0 [ 1847.179598] ? security_file_ioctl+0x83/0xb0 [ 1847.183989] SyS_ioctl+0x7f/0xb0 [ 1847.187339] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1847.191295] do_syscall_64+0x1d5/0x640 [ 1847.195190] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1847.200373] RIP: 0033:0x45ca59 [ 1847.203552] RSP: 002b:00007f9232553c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1847.211256] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1847.218506] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1847.225755] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1847.233020] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1847.240269] R13: 000000000000039c R14: 00000000004c635c R15: 00007f92325546d4 [ 1847.284217] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1847.301828] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1847.307661] CPU: 1 PID: 24258 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1847.315556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1847.324910] Call Trace: [ 1847.327503] dump_stack+0x1b2/0x283 [ 1847.331143] warn_alloc.cold+0x96/0x1af [ 1847.335130] ? zone_watermark_ok_safe+0x250/0x250 [ 1847.339985] ? wait_for_completion_io+0x10/0x10 [ 1847.344667] __alloc_pages_nodemask+0x2129/0x2730 [ 1847.349536] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1847.354420] ? check_preemption_disabled+0x35/0x240 [ 1847.359470] ? __sanitizer_cov_trace_pc+0x2d/0x50 [ 1847.364366] alloc_pages_current+0xe7/0x1e0 [ 1847.368697] kvm_mmu_create+0xd1/0x1c0 [ 1847.372592] kvm_arch_vcpu_init+0x282/0x890 [ 1847.376918] ? alloc_pages_current+0xef/0x1e0 [ 1847.381420] kvm_vcpu_init+0x26d/0x360 [ 1847.385323] vmx_create_vcpu+0xf5/0x2950 [ 1847.389390] ? __mutex_unlock_slowpath+0x75/0x780 [ 1847.394236] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1847.399372] ? alloc_loaded_vmcs+0x240/0x240 [ 1847.400366] Mem-Info: [ 1847.403786] kvm_vm_ioctl+0x4ae/0x1430 [ 1847.403802] ? __lock_acquire+0x655/0x42a0 [ 1847.409180] active_anon:447057 inactive_anon:48677 isolated_anon:0 [ 1847.409180] active_file:8218 inactive_file:62369 isolated_file:2 [ 1847.409180] unevictable:2560 dirty:282 writeback:0 unstable:0 [ 1847.409180] slab_reclaimable:125685 slab_unreclaimable:328840 [ 1847.409180] mapped:64941 shmem:38045 pagetables:8622 bounce:0 [ 1847.409180] free:492459 free_pcp:381 free_cma:0 [ 1847.410077] ? kvm_vcpu_release+0xa0/0xa0 [ 1847.428647] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):8kB mapped:224608kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1847.448765] ? check_preemption_disabled+0x35/0x240 [ 1847.448778] ? retint_kernel+0x2d/0x2d [ 1847.448791] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1847.448802] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1847.448813] ? check_preemption_disabled+0x35/0x240 [ 1847.448821] ? retint_kernel+0x2d/0x2d [ 1847.448836] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1847.448847] ? kvm_vcpu_release+0xa0/0xa0 [ 1847.448857] do_vfs_ioctl+0x75a/0xfe0 [ 1847.448871] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1847.448882] ? ioctl_preallocate+0x1a0/0x1a0 [ 1847.448904] ? security_file_ioctl+0x76/0xb0 [ 1847.448913] ? security_file_ioctl+0x83/0xb0 [ 1847.448923] SyS_ioctl+0x7f/0xb0 [ 1847.448933] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1847.469415] Node 1 active_anon:432836kB inactive_anon:35476kB active_file:32864kB inactive_file:249476kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:35156kB dirty:1128kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1847.481339] do_syscall_64+0x1d5/0x640 [ 1847.481358] entry_SYSCALL_64_after_hwframe+0x46/0xbb 02:42:27 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x3, 0x0, 0x0, 0x2000000000041bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_ASSIGN_PCI_DEVICE(r3, 0x8040ae69, &(0x7f0000000000)={0x81, 0xfffffffb, 0x9, 0x6, 0x3}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r6, 0xc0305615, &(0x7f0000000040)={0x0, {0xfffffff7, 0x7}}) dup2(r1, r4) 02:42:27 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1847.481366] RIP: 0033:0x45ca59 [ 1847.481371] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1847.481380] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1847.481386] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1847.481391] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1847.481396] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1847.481401] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1847.640401] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1847.713370] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1847.718998] Node 0 DMA32 free:36212kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:484kB local_pcp:248kB free_cma:0kB [ 1847.750407] lowmem_reserve[]: 0 0 0 0 0 [ 1847.755262] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1847.783052] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1847.799236] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1847.800610] lowmem_reserve[]: [ 1847.804530] CPU: 1 PID: 24284 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1847.804545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1847.804549] Call Trace: [ 1847.804567] dump_stack+0x1b2/0x283 [ 1847.808344] syz-executor.0: [ 1847.815564] warn_alloc.cold+0x96/0x1af [ 1847.815577] ? zone_watermark_ok_safe+0x250/0x250 [ 1847.815598] ? wait_for_completion_io+0x10/0x10 [ 1847.815612] __alloc_pages_nodemask+0x2129/0x2730 [ 1847.815637] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1847.815647] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1847.815671] ? do_raw_spin_unlock+0x164/0x250 [ 1847.815685] alloc_pages_current+0xe7/0x1e0 [ 1847.815700] kvm_mmu_create+0xd1/0x1c0 [ 1847.815713] kvm_arch_vcpu_init+0x282/0x890 [ 1847.815726] ? alloc_pages_current+0xef/0x1e0 [ 1847.834205] 0 [ 1847.834913] kvm_vcpu_init+0x26d/0x360 [ 1847.840852] 0 [ 1847.843702] vmx_create_vcpu+0xf5/0x2950 [ 1847.843719] ? __mutex_unlock_slowpath+0x75/0x780 [ 1847.843728] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1847.843741] ? alloc_loaded_vmcs+0x240/0x240 [ 1847.848556] 0 [ 1847.853224] kvm_vm_ioctl+0x4ae/0x1430 [ 1847.853239] ? __lock_acquire+0x655/0x42a0 [ 1847.853249] ? kvm_vcpu_release+0xa0/0xa0 [ 1847.853258] ? check_preemption_disabled+0x35/0x240 [ 1847.853269] ? perf_trace_lock+0x109/0x4b0 [ 1847.862811] page allocation failure: order:0 [ 1847.862931] ? check_preemption_disabled+0x35/0x240 [ 1847.868486] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1847.871719] ? perf_trace_lock+0x109/0x4b0 [ 1847.871729] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1847.871739] ? futex_exit_release+0x60/0x60 [ 1847.871759] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1847.871770] ? lock_acquire+0x170/0x3f0 [ 1847.875818] 0 [ 1847.879941] ? kvm_vcpu_release+0xa0/0xa0 [ 1847.879954] do_vfs_ioctl+0x75a/0xfe0 [ 1847.879969] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1847.879979] ? ioctl_preallocate+0x1a0/0x1a0 [ 1847.889220] (null) [ 1847.890152] ? security_file_ioctl+0x76/0xb0 [ 1847.892051] 0 [ 1847.895966] ? security_file_ioctl+0x83/0xb0 [ 1847.895979] SyS_ioctl+0x7f/0xb0 [ 1847.895988] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1847.896001] do_syscall_64+0x1d5/0x640 [ 1847.896017] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1847.896025] RIP: 0033:0x45ca59 [ 1847.896030] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1847.896040] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1847.896045] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1847.896051] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1847.896056] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1847.896061] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1847.994148] syz-executor.0 cpuset= [ 1848.027540] / [ 1848.034053] Node 1 [ 1848.047580] mems_allowed=0-1 [ 1848.058309] Normal free:1923840kB min:53592kB low:66988kB high:80384kB active_anon:432668kB inactive_anon:35476kB active_file:32872kB inactive_file:249552kB unevictable:0kB writepending:1256kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:2848kB pagetables:6384kB bounce:0kB free_pcp:1164kB local_pcp:616kB free_cma:0kB [ 1848.062166] CPU: 1 PID: 24286 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1848.069585] lowmem_reserve[]: [ 1848.072885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1848.072889] Call Trace: [ 1848.072907] dump_stack+0x1b2/0x283 [ 1848.072924] warn_alloc.cold+0x96/0x1af [ 1848.074776] 0 [ 1848.076858] ? zone_watermark_ok_safe+0x250/0x250 [ 1848.076879] ? wait_for_completion_io+0x10/0x10 [ 1848.076895] __alloc_pages_nodemask+0x2129/0x2730 [ 1848.079968] 0 [ 1848.109544] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1848.109569] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1848.109593] ? do_raw_spin_unlock+0x164/0x250 [ 1848.109608] alloc_pages_current+0xe7/0x1e0 [ 1848.128806] 0 [ 1848.129960] kvm_mmu_create+0xd1/0x1c0 [ 1848.129973] kvm_arch_vcpu_init+0x282/0x890 [ 1848.129986] ? alloc_pages_current+0xef/0x1e0 [ 1848.132555] 0 [ 1848.136165] kvm_vcpu_init+0x26d/0x360 [ 1848.136177] vmx_create_vcpu+0xf5/0x2950 [ 1848.136192] ? __mutex_unlock_slowpath+0x75/0x780 [ 1848.136201] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1848.136212] ? alloc_loaded_vmcs+0x240/0x240 [ 1848.136228] kvm_vm_ioctl+0x4ae/0x1430 [ 1848.148393] 0 [ 1848.151559] ? __lock_acquire+0x655/0x42a0 [ 1848.151572] ? kvm_vcpu_release+0xa0/0xa0 [ 1848.151581] ? check_preemption_disabled+0x35/0x240 [ 1848.151592] ? perf_trace_lock+0x109/0x4b0 [ 1848.158203] ? check_preemption_disabled+0x35/0x240 [ 1848.158216] ? perf_trace_lock+0x109/0x4b0 [ 1848.158224] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1848.158232] ? futex_exit_release+0x60/0x60 [ 1848.158244] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1848.163059] Node 0 [ 1848.167882] ? lock_acquire+0x170/0x3f0 [ 1848.167893] ? kvm_vcpu_release+0xa0/0xa0 [ 1848.167904] do_vfs_ioctl+0x75a/0xfe0 [ 1848.167917] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1848.167926] ? ioctl_preallocate+0x1a0/0x1a0 [ 1848.167948] ? security_file_ioctl+0x76/0xb0 [ 1848.167957] ? security_file_ioctl+0x83/0xb0 [ 1848.167968] SyS_ioctl+0x7f/0xb0 [ 1848.167974] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1848.167986] do_syscall_64+0x1d5/0x640 [ 1848.168004] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1848.187610] DMA: [ 1848.191332] RIP: 0033:0x45ca59 [ 1848.191338] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1848.191350] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1848.191356] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1848.191364] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1848.193152] 5*4kB [ 1848.197017] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1848.197023] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1848.366377] (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1848.380464] Node 0 DMA32: 1177*4kB (UMEH) 750*8kB (UMEH) 117*16kB (UM) 47*32kB (UME) 75*64kB (UME) 40*128kB (ME) 16*256kB (UME) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36292kB [ 1848.397205] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1848.408040] Node 1 Normal: 224*4kB (UME) 1042*8kB (UME) 216*16kB (UME) 797*32kB (UME) 232*64kB (UME) 16*128kB (ME) 14*256kB (UM) 20*512kB (UME) 5*1024kB (UM) 3*2048kB (UM) 450*4096kB (M) = 1923376kB [ 1848.426007] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1848.434958] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1848.443530] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1848.452442] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1848.461112] 79383 total pagecache pages 02:42:28 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) dup(0xffffffffffffffff) 02:42:28 executing program 4: sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:28 executing program 3: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:28 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:28 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) r7 = socket$inet(0x2, 0x3, 0x2) getsockopt(r7, 0x0, 0xce, 0x0, &(0x7f0000000000)) r8 = socket$inet(0x2, 0x3, 0x2) getsockopt(r8, 0x0, 0xce, 0x0, &(0x7f0000000000)) ioctl$sock_netdev_private(r8, 0x89ff, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:28 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1848.465171] 0 pages in swap cache [ 1848.468621] Swap cache stats: add 0, delete 0, find 0/0 [ 1848.474051] Free swap = 0kB [ 1848.477058] Total swap = 0kB [ 1848.480055] 1965979 pages RAM [ 1848.483137] 0 pages HighMem/MovableOnly [ 1848.487247] 338456 pages reserved [ 1848.490733] 0 pages cma reserved 02:42:28 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:28 executing program 3: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:28 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:28 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:28 executing program 3: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1848.857152] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1848.878509] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1848.906487] CPU: 1 PID: 24310 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1848.914407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1848.923772] Call Trace: [ 1848.926369] dump_stack+0x1b2/0x283 [ 1848.930007] warn_alloc.cold+0x96/0x1af [ 1848.933988] ? zone_watermark_ok_safe+0x250/0x250 [ 1848.938842] ? wait_for_completion_io+0x10/0x10 [ 1848.943523] __alloc_pages_nodemask+0x2129/0x2730 [ 1848.948386] ? retint_kernel+0x2d/0x2d [ 1848.952282] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1848.957128] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1848.962231] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1848.963395] syz-executor.3: [ 1848.966984] ? check_preemption_disabled+0x35/0x240 [ 1848.966995] ? retint_kernel+0x2d/0x2d [ 1848.967017] alloc_pages_current+0xe7/0x1e0 [ 1848.967032] kvm_mmu_create+0xd1/0x1c0 [ 1848.967045] kvm_arch_vcpu_init+0x282/0x890 [ 1848.967055] ? alloc_pages_current+0xef/0x1e0 [ 1848.967068] kvm_vcpu_init+0x26d/0x360 [ 1848.967082] vmx_create_vcpu+0xf5/0x2950 [ 1848.967101] ? alloc_loaded_vmcs+0x240/0x240 [ 1848.967113] ? vmx_create_vcpu+0x2/0x2950 [ 1848.967127] kvm_vm_ioctl+0x4ae/0x1430 [ 1848.967139] ? __lock_acquire+0x655/0x42a0 [ 1848.967150] ? kvm_vcpu_release+0xa0/0xa0 [ 1848.967160] ? retint_kernel+0x2d/0x2d [ 1848.967171] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1848.967182] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1848.967195] ? check_preemption_disabled+0x35/0x240 [ 1848.967204] ? retint_kernel+0x2d/0x2d [ 1848.967222] ? selinux_file_ioctl+0x19a/0x560 [ 1848.967233] ? selinux_file_ioctl+0x1b7/0x560 [ 1848.967244] ? kvm_vcpu_release+0xa0/0xa0 [ 1848.967255] do_vfs_ioctl+0x75a/0xfe0 [ 1848.967266] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1848.967277] ? ioctl_preallocate+0x1a0/0x1a0 [ 1848.967299] ? security_file_ioctl+0x76/0xb0 [ 1848.967309] ? security_file_ioctl+0x83/0xb0 [ 1848.967319] SyS_ioctl+0x7f/0xb0 [ 1848.967327] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1848.967340] do_syscall_64+0x1d5/0x640 [ 1848.967357] entry_SYSCALL_64_after_hwframe+0x46/0xbb 02:42:28 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1848.967365] RIP: 0033:0x45ca59 [ 1848.967371] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1848.967382] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1848.967388] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1848.967393] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1848.967399] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1848.967405] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1849.023508] warn_alloc_show_mem: 3 callbacks suppressed [ 1849.023523] Mem-Info: [ 1849.061595] page allocation failure: order:0 [ 1849.076474] active_anon:447100 inactive_anon:48677 isolated_anon:0 [ 1849.076474] active_file:8220 inactive_file:62394 isolated_file:0 [ 1849.076474] unevictable:2560 dirty:324 writeback:0 unstable:0 [ 1849.076474] slab_reclaimable:125732 slab_unreclaimable:328910 [ 1849.076474] mapped:64975 shmem:38045 pagetables:8734 bounce:0 [ 1849.076474] free:492071 free_pcp:413 free_cma:0 [ 1849.083801] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1849.103112] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1849.135759] syz-executor.0: [ 1849.146338] Node 1 active_anon:433008kB inactive_anon:35476kB active_file:32872kB inactive_file:249576kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:35300kB dirty:1296kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1849.155193] (null) [ 1849.166377] Node 0 [ 1849.172781] syz-executor.3 cpuset= [ 1849.208564] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1849.208590] lowmem_reserve[]: 0 2559 2559 [ 1849.239125] page allocation failure: order:0 [ 1849.249306] 2559 [ 1849.292288] / mems_allowed=0-1 [ 1849.318086] CPU: 0 PID: 24357 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1849.325971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1849.334313] 2559 [ 1849.335320] Call Trace: [ 1849.335339] dump_stack+0x1b2/0x283 [ 1849.335355] warn_alloc.cold+0x96/0x1af [ 1849.335370] ? zone_watermark_ok_safe+0x250/0x250 [ 1849.339996] ? wait_for_completion_io+0x10/0x10 [ 1849.340014] __alloc_pages_nodemask+0x2129/0x2730 [ 1849.340043] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1849.343731] Node 0 [ 1849.347602] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1849.347630] alloc_pages_current+0xe7/0x1e0 [ 1849.347647] kvm_mmu_create+0xd1/0x1c0 [ 1849.347660] kvm_arch_vcpu_init+0x282/0x890 [ 1849.347671] ? alloc_pages_current+0xef/0x1e0 [ 1849.362486] DMA32 free:36292kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:504kB local_pcp:248kB free_cma:0kB [ 1849.366817] kvm_vcpu_init+0x26d/0x360 [ 1849.366831] vmx_create_vcpu+0xf5/0x2950 [ 1849.366848] ? __mutex_unlock_slowpath+0x75/0x780 [ 1849.366861] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1849.369158] lowmem_reserve[]: [ 1849.373911] ? alloc_loaded_vmcs+0x240/0x240 [ 1849.373928] kvm_vm_ioctl+0x4ae/0x1430 [ 1849.373940] ? __lock_acquire+0x655/0x42a0 [ 1849.373950] ? kvm_vcpu_release+0xa0/0xa0 [ 1849.373962] ? check_preemption_disabled+0x35/0x240 [ 1849.373971] ? retint_kernel+0x2d/0x2d [ 1849.373985] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1849.384230] 0 [ 1849.386465] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1849.386480] ? check_preemption_disabled+0x35/0x240 [ 1849.386492] ? retint_kernel+0x2d/0x2d [ 1849.386506] ? kvm_vcpu_release+0xa0/0xa0 [ 1849.391070] 0 [ 1849.420218] ? kvm_vm_ioctl+0x2/0x1430 [ 1849.420227] ? kvm_vcpu_release+0xa0/0xa0 [ 1849.420237] do_vfs_ioctl+0x75a/0xfe0 [ 1849.420251] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1849.420260] ? ioctl_preallocate+0x1a0/0x1a0 [ 1849.420283] ? security_file_ioctl+0x76/0xb0 [ 1849.420296] ? security_file_ioctl+0x83/0xb0 [ 1849.430234] 0 [ 1849.433095] SyS_ioctl+0x7f/0xb0 [ 1849.433105] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1849.433119] do_syscall_64+0x1d5/0x640 [ 1849.433138] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1849.440737] 0 [ 1849.441244] RIP: 0033:0x45ca59 [ 1849.441252] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 [ 1849.447018] 0 [ 1849.449538] ORIG_RAX: 0000000000000010 [ 1849.449545] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1849.449552] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1849.449558] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1849.449564] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1849.449570] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1849.482525] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1849.557480] (null) [ 1849.573389] Node 0 [ 1849.592145] syz-executor.0 cpuset= [ 1849.604144] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1849.612302] / [ 1849.613223] lowmem_reserve[]: [ 1849.642715] mems_allowed=0-1 [ 1849.645297] 0 [ 1849.646129] CPU: 0 PID: 24365 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1849.649033] 0 [ 1849.650721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1849.650726] Call Trace: [ 1849.650744] dump_stack+0x1b2/0x283 [ 1849.660343] 0 [ 1849.660402] warn_alloc.cold+0x96/0x1af [ 1849.660414] ? zone_watermark_ok_safe+0x250/0x250 [ 1849.674907] 0 [ 1849.675941] ? wait_for_completion_io+0x10/0x10 [ 1849.675959] __alloc_pages_nodemask+0x2129/0x2730 [ 1849.677760] 0 [ 1849.681716] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1849.692975] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1849.693006] alloc_pages_current+0xe7/0x1e0 [ 1849.697865] Node 1 [ 1849.699604] kvm_mmu_create+0xd1/0x1c0 [ 1849.699617] kvm_arch_vcpu_init+0x282/0x890 [ 1849.706967] Normal free:1920160kB min:53592kB low:66988kB high:80384kB active_anon:433008kB inactive_anon:35476kB active_file:32872kB inactive_file:249576kB unevictable:0kB writepending:1296kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3168kB pagetables:6580kB bounce:0kB free_pcp:1428kB local_pcp:724kB free_cma:0kB [ 1849.709264] ? alloc_pages_current+0xef/0x1e0 [ 1849.709280] kvm_vcpu_init+0x26d/0x360 [ 1849.713604] lowmem_reserve[]: [ 1849.715819] vmx_create_vcpu+0xf5/0x2950 [ 1849.715832] ? __mutex_unlock_slowpath+0x75/0x780 [ 1849.715841] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1849.715854] ? alloc_loaded_vmcs+0x240/0x240 [ 1849.715869] kvm_vm_ioctl+0x4ae/0x1430 [ 1849.715882] ? __lock_acquire+0x655/0x42a0 [ 1849.715895] ? kvm_vcpu_release+0xa0/0xa0 [ 1849.725700] 0 [ 1849.753732] ? check_preemption_disabled+0x35/0x240 [ 1849.753746] ? perf_trace_lock+0x109/0x4b0 [ 1849.753757] ? check_preemption_disabled+0x35/0x240 [ 1849.753772] ? perf_trace_lock+0x109/0x4b0 [ 1849.758779] 0 [ 1849.762126] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1849.762136] ? futex_exit_release+0x60/0x60 [ 1849.762151] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1849.771094] 0 [ 1849.774299] ? lock_acquire+0x170/0x3f0 [ 1849.774312] ? kvm_vcpu_release+0xa0/0xa0 [ 1849.774323] do_vfs_ioctl+0x75a/0xfe0 [ 1849.774337] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1849.774346] ? ioctl_preallocate+0x1a0/0x1a0 [ 1849.774366] ? security_file_ioctl+0x76/0xb0 [ 1849.783250] 0 [ 1849.783758] ? security_file_ioctl+0x83/0xb0 [ 1849.783771] SyS_ioctl+0x7f/0xb0 [ 1849.789195] 0 [ 1849.791862] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1849.791879] do_syscall_64+0x1d5/0x640 [ 1849.797803] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1849.797813] RIP: 0033:0x45ca59 [ 1849.802819] Node 0 [ 1849.807032] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1849.807044] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1849.807049] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1849.807054] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1849.807060] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1849.807065] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1849.940998] DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1849.957424] Node 0 DMA32: 1177*4kB (UMEH) 753*8kB (UMEH) 117*16kB (UM) 47*32kB (UME) 75*64kB (UME) 40*128kB (ME) 16*256kB (UME) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36316kB [ 1849.975480] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1849.987850] Node 1 Normal: 158*4kB (UME) 60*8kB (UME) 483*16kB (UME) 794*32kB (UME) 233*64kB (UME) 53*128kB (UME) 15*256kB (UM) 15*512kB (UME) 5*1024kB (UM) 3*2048kB (UM) 450*4096kB (M) = 1921928kB [ 1850.006388] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1850.015547] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1850.024706] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1850.033548] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1850.042783] 79398 total pagecache pages [ 1850.047182] 0 pages in swap cache [ 1850.050635] Swap cache stats: add 0, delete 0, find 0/0 [ 1850.056302] Free swap = 0kB [ 1850.059328] Total swap = 0kB [ 1850.062343] 1965979 pages RAM [ 1850.066523] 0 pages HighMem/MovableOnly [ 1850.070498] 338456 pages reserved [ 1850.074240] 0 pages cma reserved 02:42:29 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) r7 = socket$inet(0x2, 0x3, 0x2) getsockopt(r7, 0x0, 0xce, 0x0, &(0x7f0000000000)) r8 = socket$inet(0x2, 0x3, 0x2) getsockopt(r8, 0x0, 0xce, 0x0, &(0x7f0000000000)) ioctl$sock_netdev_private(r8, 0x89ff, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:29 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 02:42:29 executing program 3: sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:29 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:29 executing program 4: sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:29 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ppp\x00', 0x0, 0x0) syz_genetlink_get_family_id$ipvs(0x0) dup3(r8, r7, 0x0) r9 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r3, 0xae80, 0x0) 02:42:29 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 02:42:29 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 02:42:29 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) 02:42:29 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) 02:42:29 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$SOUND_MIXER_READ_RECMASK(0xffffffffffffffff, 0x80044dfd, &(0x7f0000000040)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$BINDER_GET_NODE_INFO_FOR_REF(r8, 0xc018620c, &(0x7f0000000000)={0x2}) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:29 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1850.622731] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1850.627369] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1850.644658] syz-executor.0 cpuset=/ mems_allowed=0-1 [ 1850.649945] CPU: 1 PID: 24449 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1850.651217] syz-executor.1 cpuset= [ 1850.657827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1850.657834] Call Trace: [ 1850.657854] dump_stack+0x1b2/0x283 [ 1850.657870] warn_alloc.cold+0x96/0x1af [ 1850.657881] ? zone_watermark_ok_safe+0x250/0x250 [ 1850.657902] ? wait_for_completion_io+0x10/0x10 [ 1850.657918] __alloc_pages_nodemask+0x2129/0x2730 [ 1850.657947] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1850.657958] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1850.657984] ? do_raw_spin_unlock+0x164/0x250 [ 1850.657998] alloc_pages_current+0xe7/0x1e0 [ 1850.658012] kvm_mmu_create+0xd1/0x1c0 [ 1850.658024] kvm_arch_vcpu_init+0x282/0x890 [ 1850.658035] ? alloc_pages_current+0xef/0x1e0 [ 1850.658047] kvm_vcpu_init+0x26d/0x360 [ 1850.658061] vmx_create_vcpu+0xf5/0x2950 [ 1850.658080] ? __mutex_unlock_slowpath+0x75/0x780 [ 1850.658090] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1850.658104] ? alloc_loaded_vmcs+0x240/0x240 [ 1850.658122] kvm_vm_ioctl+0x4ae/0x1430 [ 1850.658134] ? __lock_acquire+0x655/0x42a0 [ 1850.658145] ? kvm_vcpu_release+0xa0/0xa0 [ 1850.658155] ? check_preemption_disabled+0x35/0x240 [ 1850.658168] ? perf_trace_lock+0x109/0x4b0 [ 1850.658180] ? check_preemption_disabled+0x35/0x240 [ 1850.658193] ? perf_trace_lock+0x109/0x4b0 [ 1850.658201] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1850.658209] ? futex_exit_release+0x60/0x60 [ 1850.658222] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1850.658233] ? lock_acquire+0x170/0x3f0 [ 1850.658244] ? kvm_vcpu_release+0xa0/0xa0 [ 1850.658255] do_vfs_ioctl+0x75a/0xfe0 [ 1850.658267] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1850.658278] ? ioctl_preallocate+0x1a0/0x1a0 [ 1850.658301] ? security_file_ioctl+0x76/0xb0 [ 1850.658311] ? security_file_ioctl+0x83/0xb0 [ 1850.658323] SyS_ioctl+0x7f/0xb0 [ 1850.658331] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1850.658344] do_syscall_64+0x1d5/0x640 [ 1850.658362] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1850.658371] RIP: 0033:0x45ca59 [ 1850.658376] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1850.658388] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1850.658394] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1850.658400] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1850.658406] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1850.658412] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1850.663540] warn_alloc_show_mem: 2 callbacks suppressed [ 1850.663544] Mem-Info: [ 1850.700933] / [ 1850.702959] active_anon:447080 inactive_anon:48677 isolated_anon:0 [ 1850.702959] active_file:8220 inactive_file:62408 isolated_file:0 [ 1850.702959] unevictable:2560 dirty:336 writeback:0 unstable:0 [ 1850.702959] slab_reclaimable:125680 slab_unreclaimable:328813 [ 1850.702959] mapped:64971 shmem:38045 pagetables:8623 bounce:0 [ 1850.702959] free:492395 free_pcp:364 free_cma:0 [ 1850.712046] mems_allowed=0-1 [ 1850.715991] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1850.720792] CPU: 0 PID: 24418 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 1850.724702] Node 1 active_anon:432928kB inactive_anon:35476kB active_file:32872kB inactive_file:249632kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:35284kB dirty:1344kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1850.728305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1850.728309] Call Trace: [ 1850.728326] dump_stack+0x1b2/0x283 [ 1850.728343] warn_alloc.cold+0x96/0x1af [ 1850.728355] ? zone_watermark_ok_safe+0x250/0x250 [ 1850.732350] Node 0 [ 1850.736272] ? wait_for_completion_io+0x10/0x10 [ 1850.736290] __alloc_pages_nodemask+0x2129/0x2730 [ 1850.736315] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1850.736327] ? check_preemption_disabled+0x35/0x240 [ 1850.736350] ? policy_nodemask+0x3e/0x140 [ 1850.741528] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1850.746162] alloc_pages_current+0xe7/0x1e0 [ 1850.746179] kvm_mmu_create+0xd1/0x1c0 [ 1850.746192] kvm_arch_vcpu_init+0x282/0x890 [ 1850.746206] kvm_vcpu_init+0x26d/0x360 [ 1850.746218] vmx_create_vcpu+0xf5/0x2950 [ 1850.746231] ? __mutex_unlock_slowpath+0x75/0x780 [ 1850.751146] lowmem_reserve[]: [ 1850.754488] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1850.754503] ? alloc_loaded_vmcs+0x240/0x240 [ 1850.754520] kvm_vm_ioctl+0x4ae/0x1430 [ 1850.754533] ? __lock_acquire+0x655/0x42a0 [ 1850.754542] ? kvm_vcpu_release+0xa0/0xa0 [ 1850.754554] ? retint_kernel+0x2d/0x2d [ 1850.764098] 0 [ 1850.768013] ? retint_kernel+0x2d/0x2d [ 1850.768028] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1850.768040] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1850.768055] ? check_preemption_disabled+0x35/0x240 [ 1850.787219] 2559 [ 1850.790736] ? retint_kernel+0x2d/0x2d [ 1850.790756] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1850.790769] ? kvm_vcpu_release+0xa0/0xa0 [ 1850.814197] 2559 [ 1850.817668] do_vfs_ioctl+0x75a/0xfe0 [ 1850.817685] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1850.817696] ? ioctl_preallocate+0x1a0/0x1a0 [ 1850.822184] 2559 [ 1850.826498] ? security_file_ioctl+0x76/0xb0 [ 1850.826509] ? security_file_ioctl+0x83/0xb0 [ 1850.826519] SyS_ioctl+0x7f/0xb0 [ 1850.826526] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1850.826539] do_syscall_64+0x1d5/0x640 [ 1850.826555] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1850.826564] RIP: 0033:0x45ca59 [ 1850.830415] 2559 [ 1850.833860] RSP: 002b:00007f9232553c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1850.833872] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1850.833878] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1850.833884] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1850.833890] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1850.833896] R13: 000000000000039c R14: 00000000004c635c R15: 00007f92325546d4 [ 1851.226314] syz-executor.2: [ 1851.248257] page allocation failure: order:0 [ 1851.249969] Node 0 [ 1851.262663] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1851.264976] DMA32 free:36216kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:4kB inactive_file:4kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:432kB local_pcp:168kB free_cma:0kB [ 1851.264980] lowmem_reserve[]: 0 0 0 0 0 02:42:30 executing program 1: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:30 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) 02:42:30 executing program 3: sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:30 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1851.265003] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1851.265033] lowmem_reserve[]: 0 0 0 0 0 [ 1851.265054] Node 1 Normal free:1921224kB min:53592kB low:66988kB high:80384kB active_anon:432904kB inactive_anon:35480kB active_file:32872kB inactive_file:249660kB unevictable:0kB writepending:1396kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3040kB pagetables:6556kB bounce:0kB free_pcp:1272kB local_pcp:680kB free_cma:0kB [ 1851.265075] lowmem_reserve[]: 0 0 0 0 0 [ 1851.265097] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1851.265184] Node 0 DMA32: 1176*4kB (UMH) 755*8kB (UMH) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 16*256kB (UME) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36216kB [ 1851.265262] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1851.265313] Node 1 Normal: 98*4kB (UME) 846*8kB (UME) 479*16kB (UME) 798*32kB (UME) 234*64kB (UME) 18*128kB (UME) 12*256kB (M) 12*512kB (ME) 5*1024kB (UM) 3*2048kB (UM) 450*4096kB (M) = 1921320kB [ 1851.265407] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1851.265415] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1851.265421] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1851.265427] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1851.265431] 79408 total pagecache pages [ 1851.265441] 0 pages in swap cache [ 1851.265447] Swap cache stats: add 0, delete 0, find 0/0 [ 1851.265450] Free swap = 0kB [ 1851.265454] Total swap = 0kB [ 1851.265461] 1965979 pages RAM [ 1851.265464] 0 pages HighMem/MovableOnly [ 1851.265468] 338456 pages reserved [ 1851.265471] 0 pages cma reserved [ 1851.508900] (null) [ 1851.511213] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1851.516976] CPU: 0 PID: 24408 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 02:42:31 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1851.524955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1851.534313] Call Trace: [ 1851.536909] dump_stack+0x1b2/0x283 [ 1851.540546] warn_alloc.cold+0x96/0x1af [ 1851.544526] ? zone_watermark_ok_safe+0x250/0x250 [ 1851.549382] ? wait_for_completion_io+0x10/0x10 [ 1851.554062] __alloc_pages_nodemask+0x2129/0x2730 [ 1851.558931] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1851.563779] ? mark_held_locks+0xa6/0xf0 [ 1851.567848] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1851.572703] ? retint_kernel+0x2d/0x2d [ 1851.576608] ? retint_kernel+0x2d/0x2d [ 1851.580506] alloc_pages_current+0xe7/0x1e0 [ 1851.584838] kvm_mmu_create+0xd1/0x1c0 [ 1851.588738] kvm_arch_vcpu_init+0x282/0x890 [ 1851.593062] ? alloc_pages_current+0xef/0x1e0 [ 1851.597559] kvm_vcpu_init+0x26d/0x360 [ 1851.601453] vmx_create_vcpu+0xf5/0x2950 [ 1851.605531] ? __mutex_unlock_slowpath+0x75/0x780 [ 1851.610378] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1851.615405] ? alloc_loaded_vmcs+0x240/0x240 [ 1851.619827] kvm_vm_ioctl+0x4ae/0x1430 [ 1851.623730] ? __lock_acquire+0x655/0x42a0 [ 1851.627972] ? kvm_vcpu_release+0xa0/0xa0 [ 1851.632126] ? check_preemption_disabled+0x35/0x240 [ 1851.637148] ? perf_trace_lock+0x109/0x4b0 [ 1851.641389] ? check_preemption_disabled+0x35/0x240 [ 1851.646414] ? perf_trace_lock+0x109/0x4b0 [ 1851.650651] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1851.655578] ? futex_exit_release+0x60/0x60 [ 1851.659888] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1851.664800] ? retint_kernel+0x2d/0x2d [ 1851.668670] ? kvm_vcpu_release+0xa0/0xa0 [ 1851.672824] do_vfs_ioctl+0x75a/0xfe0 [ 1851.676610] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1851.682214] ? ioctl_preallocate+0x1a0/0x1a0 [ 1851.686620] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1851.690601] ? security_file_ioctl+0x76/0xb0 [ 1851.694990] ? security_file_ioctl+0x83/0xb0 [ 1851.699380] SyS_ioctl+0x7f/0xb0 [ 1851.702812] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1851.706787] do_syscall_64+0x1d5/0x640 [ 1851.710659] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1851.715827] RIP: 0033:0x45ca59 [ 1851.719016] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1851.726704] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1851.733955] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1851.741204] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1851.748452] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1851.755701] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1851.768867] warn_alloc_show_mem: 1 callbacks suppressed [ 1851.768871] Mem-Info: [ 1851.790758] active_anon:447074 inactive_anon:48678 isolated_anon:0 [ 1851.790758] active_file:8219 inactive_file:62416 isolated_file:0 [ 1851.790758] unevictable:2560 dirty:349 writeback:0 unstable:0 [ 1851.790758] slab_reclaimable:125715 slab_unreclaimable:329924 [ 1851.790758] mapped:65007 shmem:38046 pagetables:8654 bounce:0 [ 1851.790758] free:491065 free_pcp:364 free_cma:0 [ 1851.853943] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:4kB inactive_file:4kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1851.886598] Node 1 active_anon:432904kB inactive_anon:35480kB active_file:32872kB inactive_file:249660kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36228kB dirty:1396kB writeback:0kB shmem:46160kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1851.927766] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1851.954389] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1851.959439] Node 0 DMA32 free:36216kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:440kB local_pcp:264kB free_cma:0kB [ 1851.989506] lowmem_reserve[]: 0 0 0 0 0 [ 1851.993585] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1852.019100] lowmem_reserve[]: 0 0 0 0 0 [ 1852.023099] Node 1 Normal free:1925004kB min:53592kB low:66988kB high:80384kB active_anon:432624kB inactive_anon:35476kB active_file:32872kB inactive_file:249692kB unevictable:0kB writepending:1436kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:2752kB pagetables:6244kB bounce:0kB free_pcp:1252kB local_pcp:616kB free_cma:0kB [ 1852.054084] lowmem_reserve[]: 0 0 0 0 0 [ 1852.058110] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1852.073962] Node 0 DMA32: 1176*4kB (UMH) 755*8kB (UMH) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 16*256kB (UME) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36216kB [ 1852.090431] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1852.101261] Node 1 Normal: 268*4kB (UME) 1057*8kB (UME) 677*16kB (UME) 816*32kB (UME) 233*64kB (UME) 21*128kB (UME) 13*256kB (UM) 12*512kB (ME) 4*1024kB (M) 2*2048kB (UM) 450*4096kB (M) = 1924936kB [ 1852.119165] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1852.128116] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1852.136798] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1852.145751] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 02:42:31 executing program 1: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r0, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYRES16, @ANYRES32=r5, @ANYBLOB="0000400000000005280012000c00010076657468"], 0x48}}, 0x0) setsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000100)=@assoc_value, 0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in={{0x2, 0x4e22, @private=0xa010101}}, 0x7, 0x1, 0xffffffff, 0x3f, 0x74, 0x0, 0x2}, 0x9c) sendmsg$AUDIT_SET_FEATURE(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, 0x3fa, 0x20, 0x70bd27, 0x25dfdbfd, {0x1, 0x0, 0x1}, ["", "", ""]}, 0x20}}, 0x20040841) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r1, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) r6 = semget(0x3, 0x0, 0x428) semctl$IPC_SET(r6, 0x0, 0x1, 0x0) 02:42:31 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:31 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r3) r4 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r5) setresuid(r3, r5, 0xffffffffffffffff) r6 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r6, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r6, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) r7 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x0, 0x0) getsockname$tipc(r7, &(0x7f0000000080)=@name, &(0x7f00000000c0)=0x10) 02:42:31 executing program 3: sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:31 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) getsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000000), &(0x7f0000000040)=0x4) dup2(r1, r4) 02:42:31 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1852.154427] 79416 total pagecache pages [ 1852.158396] 0 pages in swap cache [ 1852.161829] Swap cache stats: add 0, delete 0, find 0/0 [ 1852.167658] Free swap = 0kB [ 1852.170679] Total swap = 0kB [ 1852.173779] 1965979 pages RAM [ 1852.176878] 0 pages HighMem/MovableOnly [ 1852.180839] 338456 pages reserved [ 1852.184457] 0 pages cma reserved [ 1852.257934] warn_alloc: 3 callbacks suppressed [ 1852.257940] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1852.292242] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1852.300589] CPU: 0 PID: 24510 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1852.308499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1852.317852] Call Trace: [ 1852.320444] dump_stack+0x1b2/0x283 [ 1852.324079] warn_alloc.cold+0x96/0x1af [ 1852.325004] syz-executor.2: [ 1852.328056] ? zone_watermark_ok_safe+0x250/0x250 [ 1852.328078] ? wait_for_completion_io+0x10/0x10 [ 1852.328094] __alloc_pages_nodemask+0x2129/0x2730 [ 1852.332274] page allocation failure: order:0 [ 1852.335947] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1852.335959] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1852.335982] ? do_raw_spin_unlock+0x164/0x250 [ 1852.335998] alloc_pages_current+0xe7/0x1e0 [ 1852.336014] kvm_mmu_create+0xd1/0x1c0 [ 1852.336026] kvm_arch_vcpu_init+0x282/0x890 [ 1852.336038] ? alloc_pages_current+0xef/0x1e0 [ 1852.341375] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1852.345641] kvm_vcpu_init+0x26d/0x360 [ 1852.345658] vmx_create_vcpu+0xf5/0x2950 [ 1852.345672] ? __mutex_unlock_slowpath+0x75/0x780 [ 1852.345682] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1852.345695] ? alloc_loaded_vmcs+0x240/0x240 [ 1852.345710] kvm_vm_ioctl+0x4ae/0x1430 [ 1852.350630] (null) [ 1852.355017] ? __lock_acquire+0x655/0x42a0 [ 1852.355028] ? kvm_vcpu_release+0xa0/0xa0 [ 1852.355038] ? check_preemption_disabled+0x35/0x240 [ 1852.355049] ? perf_trace_lock+0x109/0x4b0 [ 1852.355060] ? check_preemption_disabled+0x35/0x240 [ 1852.355072] ? perf_trace_lock+0x109/0x4b0 [ 1852.355080] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1852.355089] ? futex_exit_release+0x60/0x60 [ 1852.355102] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1852.360247] syz-executor.2 cpuset= [ 1852.364403] ? lock_acquire+0x170/0x3f0 [ 1852.364415] ? kvm_vcpu_release+0xa0/0xa0 [ 1852.364427] do_vfs_ioctl+0x75a/0xfe0 [ 1852.364440] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1852.364451] ? ioctl_preallocate+0x1a0/0x1a0 [ 1852.364472] ? security_file_ioctl+0x76/0xb0 [ 1852.369094] / [ 1852.372661] ? security_file_ioctl+0x83/0xb0 [ 1852.377283] mems_allowed=0-1 [ 1852.381456] SyS_ioctl+0x7f/0xb0 [ 1852.381465] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1852.381480] do_syscall_64+0x1d5/0x640 [ 1852.381498] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1852.511660] RIP: 0033:0x45ca59 [ 1852.514842] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1852.522542] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1852.529802] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1852.537062] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1852.544321] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1852.551585] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1852.558873] CPU: 1 PID: 24520 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1852.566770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1852.576128] Call Trace: [ 1852.578728] dump_stack+0x1b2/0x283 [ 1852.582367] warn_alloc.cold+0x96/0x1af [ 1852.586353] ? zone_watermark_ok_safe+0x250/0x250 [ 1852.591215] ? wait_for_completion_io+0x10/0x10 [ 1852.595897] __alloc_pages_nodemask+0x2129/0x2730 [ 1852.600771] ? gfp_pfmemalloc_allowed+0x150/0x150 02:42:32 executing program 5: sched_setscheduler(0x0, 0x0, &(0x7f0000000380)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1852.605624] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1852.610472] ? retint_kernel+0x2d/0x2d [ 1852.614383] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1852.619153] ? retint_kernel+0x2d/0x2d [ 1852.623050] alloc_pages_current+0xe7/0x1e0 [ 1852.627379] kvm_mmu_create+0xd1/0x1c0 [ 1852.631270] kvm_arch_vcpu_init+0x282/0x890 [ 1852.635598] ? alloc_pages_current+0xef/0x1e0 [ 1852.640105] kvm_vcpu_init+0x26d/0x360 [ 1852.643999] vmx_create_vcpu+0xf5/0x2950 [ 1852.648062] ? __mutex_unlock_slowpath+0x75/0x780 [ 1852.652908] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1852.657931] ? alloc_loaded_vmcs+0x240/0x240 [ 1852.662354] kvm_vm_ioctl+0x4ae/0x1430 [ 1852.666248] ? __lock_acquire+0x655/0x42a0 [ 1852.670839] ? kvm_vcpu_release+0xa0/0xa0 [ 1852.674994] ? check_preemption_disabled+0x35/0x240 [ 1852.680042] ? retint_kernel+0x2d/0x2d [ 1852.683935] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1852.689043] ? check_preemption_disabled+0x35/0x240 [ 1852.694097] ? perf_trace_lock+0x109/0x4b0 [ 1852.698368] ? check_preemption_disabled+0x35/0x240 [ 1852.702358] syz-executor.5: page allocation failure: order:0 [ 1852.703385] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1852.703401] ? kvm_vcpu_release+0xa0/0xa0 [ 1852.718324] do_vfs_ioctl+0x75a/0xfe0 [ 1852.722133] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1852.727761] ? ioctl_preallocate+0x1a0/0x1a0 [ 1852.731155] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1852.732181] ? security_file_ioctl+0x76/0xb0 [ 1852.732192] ? security_file_ioctl+0x83/0xb0 [ 1852.732205] SyS_ioctl+0x7f/0xb0 [ 1852.732213] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1852.732226] do_syscall_64+0x1d5/0x640 [ 1852.732242] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1852.739158] (null) [ 1852.742502] RIP: 0033:0x45ca59 [ 1852.742509] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1852.742520] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1852.742526] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1852.742532] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1852.742538] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1852.742544] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1852.819774] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1852.827752] CPU: 0 PID: 24537 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1852.836689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1852.846045] Call Trace: [ 1852.848640] dump_stack+0x1b2/0x283 [ 1852.852282] warn_alloc.cold+0x96/0x1af [ 1852.856311] ? zone_watermark_ok_safe+0x250/0x250 [ 1852.861166] ? wait_for_completion_io+0x10/0x10 [ 1852.866194] __alloc_pages_nodemask+0x2129/0x2730 [ 1852.871059] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1852.875906] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1852.880774] ? do_raw_spin_unlock+0x164/0x250 [ 1852.885275] alloc_pages_current+0xe7/0x1e0 [ 1852.889689] kvm_mmu_create+0xd1/0x1c0 [ 1852.893581] kvm_arch_vcpu_init+0x282/0x890 [ 1852.897905] ? alloc_pages_current+0xef/0x1e0 [ 1852.902404] kvm_vcpu_init+0x26d/0x360 [ 1852.904216] syz-executor.2: [ 1852.906291] vmx_create_vcpu+0xf5/0x2950 [ 1852.906312] ? __mutex_unlock_slowpath+0x75/0x780 [ 1852.906327] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1852.909805] page allocation failure: order:0 [ 1852.913382] ? alloc_loaded_vmcs+0x240/0x240 [ 1852.913402] kvm_vm_ioctl+0x4ae/0x1430 [ 1852.913420] ? __lock_acquire+0x655/0x42a0 [ 1852.930409] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1852.932077] ? kvm_vcpu_release+0xa0/0xa0 [ 1852.932090] ? check_preemption_disabled+0x35/0x240 [ 1852.932102] ? perf_trace_lock+0x109/0x4b0 [ 1852.932117] ? check_preemption_disabled+0x35/0x240 [ 1852.936493] (null) [ 1852.940209] ? perf_trace_lock+0x109/0x4b0 [ 1852.940218] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1852.940228] ? futex_exit_release+0x60/0x60 [ 1852.940242] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1852.950649] syz-executor.2 cpuset= [ 1852.955244] ? lock_acquire+0x170/0x3f0 [ 1852.955257] ? kvm_vcpu_release+0xa0/0xa0 [ 1852.955269] do_vfs_ioctl+0x75a/0xfe0 [ 1852.955282] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1852.955297] ? ioctl_preallocate+0x1a0/0x1a0 [ 1852.955320] ? security_file_ioctl+0x76/0xb0 [ 1852.955328] ? security_file_ioctl+0x83/0xb0 [ 1852.955338] SyS_ioctl+0x7f/0xb0 [ 1852.963831] / [ 1852.964561] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1852.966849] mems_allowed=0-1 [ 1852.970943] do_syscall_64+0x1d5/0x640 [ 1852.970963] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1852.970977] RIP: 0033:0x45ca59 [ 1853.043586] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1853.051293] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1853.058553] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1853.065815] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1853.073076] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1853.080338] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1853.087721] CPU: 1 PID: 24520 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1853.095606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1853.104943] Call Trace: [ 1853.107517] dump_stack+0x1b2/0x283 [ 1853.111129] warn_alloc.cold+0x96/0x1af [ 1853.115086] ? zone_watermark_ok_safe+0x250/0x250 [ 1853.119916] ? wait_for_completion_io+0x10/0x10 [ 1853.124569] __alloc_pages_nodemask+0x2129/0x2730 [ 1853.129402] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1853.134226] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1853.139060] alloc_pages_current+0xe7/0x1e0 [ 1853.143364] kvm_mmu_create+0xd1/0x1c0 [ 1853.147233] kvm_arch_vcpu_init+0x282/0x890 [ 1853.151538] kvm_vcpu_init+0x26d/0x360 [ 1853.155407] vmx_create_vcpu+0xf5/0x2950 [ 1853.159462] ? __mutex_unlock_slowpath+0x75/0x780 [ 1853.164290] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1853.169289] ? alloc_loaded_vmcs+0x240/0x240 [ 1853.173700] kvm_vm_ioctl+0x4ae/0x1430 [ 1853.177569] ? __lock_acquire+0x655/0x42a0 [ 1853.181789] ? kvm_vcpu_release+0xa0/0xa0 [ 1853.185937] ? check_preemption_disabled+0x35/0x240 [ 1853.190943] ? perf_trace_lock+0x109/0x4b0 [ 1853.195186] ? check_preemption_disabled+0x35/0x240 [ 1853.200210] ? perf_trace_lock+0x109/0x4b0 [ 1853.204432] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1853.209176] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1853.214090] ? retint_kernel+0x2d/0x2d [ 1853.217961] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1853.222991] ? kvm_vcpu_release+0xa0/0xa0 [ 1853.227122] do_vfs_ioctl+0x75a/0xfe0 [ 1853.230908] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1853.236512] ? check_preemption_disabled+0x35/0x240 [ 1853.241508] ? ioctl_preallocate+0x1a0/0x1a0 [ 1853.245921] ? security_file_ioctl+0x76/0xb0 [ 1853.250309] ? security_file_ioctl+0x83/0xb0 [ 1853.254698] SyS_ioctl+0x7f/0xb0 [ 1853.258044] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1853.262002] do_syscall_64+0x1d5/0x640 [ 1853.265878] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1853.271049] RIP: 0033:0x45ca59 [ 1853.274220] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1853.281929] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1853.289184] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1853.296436] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1853.303702] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 02:42:32 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x0, 0x0, 0x38, 0x9, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x89f7, 0x0) r7 = socket$inet(0x2, 0x3, 0x2) getsockopt(r7, 0x0, 0xce, 0x0, &(0x7f0000000000)) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r7) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) r8 = socket$inet(0x2, 0x3, 0x2) getsockopt(r8, 0x0, 0xce, 0x0, &(0x7f0000000000)) dup3(r2, r8, 0x80000) dup2(r1, r4) 02:42:32 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) [ 1853.310951] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 02:42:32 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1853.426917] warn_alloc_show_mem: 2 callbacks suppressed [ 1853.426922] Mem-Info: [ 1853.484094] active_anon:447105 inactive_anon:48677 isolated_anon:0 [ 1853.484094] active_file:8220 inactive_file:62436 isolated_file:0 [ 1853.484094] unevictable:2560 dirty:371 writeback:0 unstable:0 [ 1853.484094] slab_reclaimable:125690 slab_unreclaimable:329714 [ 1853.484094] mapped:65231 shmem:38045 pagetables:8736 bounce:0 [ 1853.484094] free:491321 free_pcp:371 free_cma:0 [ 1853.496900] syz-executor.0: [ 1853.536835] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1853.554139] page allocation failure: order:0 [ 1853.579167] Node 1 active_anon:433128kB inactive_anon:35476kB active_file:32872kB inactive_file:249744kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36324kB dirty:1484kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1853.581584] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1853.587710] Node 0 [ 1853.621923] (null) [ 1853.625429] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1853.632107] syz-executor.0 cpuset= [ 1853.653652] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1853.659618] / [ 1853.662239] Node 0 [ 1853.662469] mems_allowed=0-1 [ 1853.666288] DMA32 free:36216kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:472kB local_pcp:288kB free_cma:0kB [ 1853.666809] CPU: 1 PID: 24563 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1853.669405] lowmem_reserve[]: [ 1853.698619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1853.698624] Call Trace: [ 1853.698643] dump_stack+0x1b2/0x283 [ 1853.698657] warn_alloc.cold+0x96/0x1af [ 1853.698667] ? zone_watermark_ok_safe+0x250/0x250 [ 1853.698686] ? wait_for_completion_io+0x10/0x10 [ 1853.698700] __alloc_pages_nodemask+0x2129/0x2730 [ 1853.698730] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1853.698741] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1853.698764] ? do_raw_spin_unlock+0x164/0x250 [ 1853.698778] alloc_pages_current+0xe7/0x1e0 [ 1853.698793] kvm_mmu_create+0xd1/0x1c0 [ 1853.698806] kvm_arch_vcpu_init+0x282/0x890 [ 1853.698816] ? alloc_pages_current+0xef/0x1e0 [ 1853.698829] kvm_vcpu_init+0x26d/0x360 [ 1853.698843] vmx_create_vcpu+0xf5/0x2950 [ 1853.698856] ? __mutex_unlock_slowpath+0x75/0x780 [ 1853.698866] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1853.698878] ? alloc_loaded_vmcs+0x240/0x240 [ 1853.698894] kvm_vm_ioctl+0x4ae/0x1430 [ 1853.698904] ? __lock_acquire+0x655/0x42a0 [ 1853.698916] ? kvm_vcpu_release+0xa0/0xa0 [ 1853.718262] 0 [ 1853.719222] ? check_preemption_disabled+0x35/0x240 [ 1853.721784] 0 [ 1853.725395] ? perf_trace_lock+0x109/0x4b0 [ 1853.725406] ? check_preemption_disabled+0x35/0x240 [ 1853.725416] ? perf_trace_lock+0x109/0x4b0 [ 1853.725423] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1853.725431] ? futex_exit_release+0x60/0x60 [ 1853.725442] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1853.725452] ? lock_acquire+0x170/0x3f0 [ 1853.725464] ? kvm_vcpu_release+0xa0/0xa0 [ 1853.729410] 0 [ 1853.734238] do_vfs_ioctl+0x75a/0xfe0 [ 1853.734251] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1853.734260] ? ioctl_preallocate+0x1a0/0x1a0 [ 1853.734281] ? security_file_ioctl+0x76/0xb0 [ 1853.734289] ? security_file_ioctl+0x83/0xb0 [ 1853.734299] SyS_ioctl+0x7f/0xb0 [ 1853.734306] ? do_vfs_ioctl+0xfe0/0xfe0 02:42:33 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1853.734319] do_syscall_64+0x1d5/0x640 [ 1853.734337] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1853.743597] 0 [ 1853.743804] RIP: 0033:0x45ca59 [ 1853.748621] 0 [ 1853.753439] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1853.766094] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1853.770397] Node 0 [ 1853.774882] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1853.774888] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1853.774893] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1853.774897] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1853.898831] syz-executor.0: [ 1853.903822] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1853.917283] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1853.917302] syz-executor.0 cpuset=/ mems_allowed=0-1 [ 1853.917326] CPU: 1 PID: 24580 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1853.917333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1853.917337] Call Trace: [ 1853.917355] dump_stack+0x1b2/0x283 [ 1853.917370] warn_alloc.cold+0x96/0x1af [ 1853.917382] ? zone_watermark_ok_safe+0x250/0x250 [ 1853.920139] lowmem_reserve[]: [ 1853.926885] ? wait_for_completion_io+0x10/0x10 [ 1853.926904] __alloc_pages_nodemask+0x2129/0x2730 [ 1853.926930] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1853.926940] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1853.926965] ? do_raw_spin_unlock+0x164/0x250 [ 1853.926981] alloc_pages_current+0xe7/0x1e0 [ 1853.926997] kvm_mmu_create+0xd1/0x1c0 [ 1853.927010] kvm_arch_vcpu_init+0x282/0x890 [ 1853.927018] ? alloc_pages_current+0xef/0x1e0 [ 1853.927031] kvm_vcpu_init+0x26d/0x360 [ 1853.927044] vmx_create_vcpu+0xf5/0x2950 [ 1853.945440] 0 [ 1853.948829] ? __mutex_unlock_slowpath+0x75/0x780 [ 1853.951821] 0 [ 1853.978013] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1853.978027] ? alloc_loaded_vmcs+0x240/0x240 [ 1853.978043] kvm_vm_ioctl+0x4ae/0x1430 [ 1853.978054] ? __lock_acquire+0x655/0x42a0 [ 1853.978063] ? kvm_vcpu_release+0xa0/0xa0 [ 1853.978072] ? check_preemption_disabled+0x35/0x240 [ 1853.978083] ? perf_trace_lock+0x109/0x4b0 [ 1853.978093] ? check_preemption_disabled+0x35/0x240 [ 1853.978103] ? perf_trace_lock+0x109/0x4b0 [ 1853.978110] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1853.978120] ? futex_exit_release+0x60/0x60 [ 1853.987354] 0 02:42:33 executing program 3: getpid() sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:33 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1853.992368] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1854.007874] 0 [ 1854.009668] ? lock_acquire+0x170/0x3f0 [ 1854.012225] 0 [ 1854.015834] ? kvm_vcpu_release+0xa0/0xa0 [ 1854.015845] do_vfs_ioctl+0x75a/0xfe0 [ 1854.015858] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1854.015868] ? ioctl_preallocate+0x1a0/0x1a0 [ 1854.015888] ? security_file_ioctl+0x76/0xb0 [ 1854.015898] ? security_file_ioctl+0x83/0xb0 [ 1854.024668] SyS_ioctl+0x7f/0xb0 [ 1854.024675] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1854.024686] do_syscall_64+0x1d5/0x640 [ 1854.024702] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1854.024710] RIP: 0033:0x45ca59 [ 1854.024716] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1854.024725] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1854.024730] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1854.024737] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1854.033623] Node 1 [ 1854.037391] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1854.042226] Normal free:1919044kB min:53592kB low:66988kB high:80384kB active_anon:433028kB inactive_anon:35476kB active_file:32872kB inactive_file:249744kB unevictable:0kB writepending:1484kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3200kB pagetables:6884kB bounce:0kB free_pcp:1100kB local_pcp:708kB free_cma:0kB [ 1854.047031] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1854.231944] syz-executor.0: [ 1854.241521] lowmem_reserve[]: [ 1854.280505] page allocation failure: order:0 [ 1854.287348] 0 [ 1854.291320] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1854.291967] 0 [ 1854.299443] (null) [ 1854.304468] 0 0 0 [ 1854.307400] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1854.311569] syz-executor.0 cpuset= [ 1854.326397] Node 0 DMA32: 1176*4kB (UMH) 758*8kB (UMH) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 16*256kB (UME) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36240kB [ 1854.332304] / [ 1854.347783] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1854.354741] mems_allowed=0-1 [ 1854.361782] Node 1 Normal: 91*4kB (UME) 125*8kB (UME) 746*16kB (UME) 807*32kB (UME) 234*64kB (UME) 42*128kB (UME) 20*256kB (UM) 12*512kB (ME) 5*1024kB (UM) 2*2048kB (UM) 449*4096kB (M) [ 1854.363959] CPU: 1 PID: 24591 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1854.380611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1854.380616] Call Trace: [ 1854.380636] dump_stack+0x1b2/0x283 [ 1854.380651] warn_alloc.cold+0x96/0x1af [ 1854.380661] ? zone_watermark_ok_safe+0x250/0x250 [ 1854.380679] ? wait_for_completion_io+0x10/0x10 [ 1854.380695] __alloc_pages_nodemask+0x2129/0x2730 [ 1854.380720] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1854.380730] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1854.380762] ? do_raw_spin_unlock+0x164/0x250 [ 1854.380777] alloc_pages_current+0xe7/0x1e0 [ 1854.380792] kvm_mmu_create+0xd1/0x1c0 [ 1854.380805] kvm_arch_vcpu_init+0x282/0x890 [ 1854.380814] ? alloc_pages_current+0xef/0x1e0 [ 1854.380826] kvm_vcpu_init+0x26d/0x360 [ 1854.380839] vmx_create_vcpu+0xf5/0x2950 [ 1854.392975] = 1919060kB [ 1854.398058] ? __mutex_unlock_slowpath+0x75/0x780 [ 1854.398068] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1854.398082] ? alloc_loaded_vmcs+0x240/0x240 [ 1854.398099] kvm_vm_ioctl+0x4ae/0x1430 [ 1854.398111] ? __lock_acquire+0x655/0x42a0 [ 1854.398121] ? kvm_vcpu_release+0xa0/0xa0 [ 1854.398132] ? check_preemption_disabled+0x35/0x240 [ 1854.413640] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1854.417767] ? perf_trace_lock+0x109/0x4b0 [ 1854.417780] ? check_preemption_disabled+0x35/0x240 [ 1854.422629] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1854.427451] ? perf_trace_lock+0x109/0x4b0 [ 1854.427459] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1854.427468] ? futex_exit_release+0x60/0x60 02:42:34 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$TIOCSISO7816(r5, 0xc0285443, &(0x7f0000000040)={0x1, 0xfffffff8, 0x7, 0xfffffe00, 0x2}) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r6, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r6, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r6) [ 1854.427479] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1854.427489] ? lock_acquire+0x170/0x3f0 [ 1854.427500] ? kvm_vcpu_release+0xa0/0xa0 [ 1854.427511] do_vfs_ioctl+0x75a/0xfe0 [ 1854.427525] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1854.427535] ? ioctl_preallocate+0x1a0/0x1a0 [ 1854.427556] ? security_file_ioctl+0x76/0xb0 [ 1854.427566] ? security_file_ioctl+0x83/0xb0 [ 1854.447551] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1854.449378] SyS_ioctl+0x7f/0xb0 [ 1854.449386] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1854.449400] do_syscall_64+0x1d5/0x640 [ 1854.457449] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1854.457760] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1854.461824] 79426 total pagecache pages [ 1854.464393] RIP: 0033:0x45ca59 [ 1854.464398] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1854.464407] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1854.464413] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1854.464418] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1854.464423] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1854.464428] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1854.566861] warn_alloc_show_mem: 3 callbacks suppressed [ 1854.566865] Mem-Info: [ 1854.605093] 0 pages in swap cache [ 1854.658052] active_anon:447105 inactive_anon:48677 isolated_anon:0 [ 1854.658052] active_file:8220 inactive_file:62436 isolated_file:0 [ 1854.658052] unevictable:2560 dirty:371 writeback:0 unstable:0 [ 1854.658052] slab_reclaimable:125715 slab_unreclaimable:329616 [ 1854.658052] mapped:65056 shmem:38045 pagetables:8699 bounce:0 [ 1854.658052] free:491304 free_pcp:377 free_cma:0 [ 1854.677715] Swap cache stats: add 0, delete 0, find 0/0 [ 1854.712081] Free swap = 0kB [ 1854.716818] Total swap = 0kB [ 1854.719887] 1965979 pages RAM 02:42:34 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1854.720694] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1854.722992] 0 pages HighMem/MovableOnly [ 1854.722997] 338456 pages reserved [ 1854.723000] 0 pages cma reserved [ 1854.768680] Node 1 active_anon:432928kB inactive_anon:35476kB active_file:32872kB inactive_file:249744kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:35624kB dirty:1484kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1854.817217] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1854.828907] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1854.835343] CPU: 1 PID: 24602 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1854.843269] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1854.852624] Call Trace: [ 1854.855219] dump_stack+0x1b2/0x283 [ 1854.858882] warn_alloc.cold+0x96/0x1af [ 1854.862864] ? zone_watermark_ok_safe+0x250/0x250 [ 1854.867719] ? wait_for_completion_io+0x10/0x10 [ 1854.872396] __alloc_pages_nodemask+0x2129/0x2730 [ 1854.877262] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1854.882109] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1854.886955] ? retint_kernel+0x2d/0x2d [ 1854.890855] ? retint_kernel+0x2d/0x2d [ 1854.894749] alloc_pages_current+0xe7/0x1e0 [ 1854.899075] kvm_mmu_create+0xd1/0x1c0 [ 1854.902966] kvm_arch_vcpu_init+0x282/0x890 [ 1854.907299] ? alloc_pages_current+0xef/0x1e0 [ 1854.911802] kvm_vcpu_init+0x26d/0x360 02:42:34 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) set_robust_list(&(0x7f0000000140)={&(0x7f0000000040)={&(0x7f0000000000)}, 0x7, &(0x7f0000000100)={&(0x7f0000000080)}}, 0x18) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) socket$inet6_sctp(0xa, 0x1, 0x84) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180)='/dev/zero\x00', 0x400300, 0x0) sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x20, 0x0, 0xe00, 0x70bd29, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000040}, 0x20000000) ioctl$PERF_EVENT_IOC_RESET(r7, 0x2403, 0xfffe) [ 1854.915698] vmx_create_vcpu+0xf5/0x2950 [ 1854.919771] ? __mutex_unlock_slowpath+0x75/0x780 [ 1854.924642] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1854.929670] ? alloc_loaded_vmcs+0x240/0x240 [ 1854.934528] kvm_vm_ioctl+0x4ae/0x1430 [ 1854.938437] ? __lock_acquire+0x655/0x42a0 [ 1854.942683] ? kvm_vcpu_release+0xa0/0xa0 [ 1854.946846] ? check_preemption_disabled+0x35/0x240 [ 1854.951868] ? perf_trace_lock+0x109/0x4b0 [ 1854.956111] ? check_preemption_disabled+0x35/0x240 [ 1854.961131] ? perf_trace_lock+0x109/0x4b0 [ 1854.965369] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1854.970316] ? futex_exit_release+0x60/0x60 [ 1854.971223] Node 0 [ 1854.974634] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1854.974646] ? retint_kernel+0x2d/0x2d [ 1854.974664] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1854.974675] ? kvm_vcpu_release+0xa0/0xa0 [ 1854.974685] do_vfs_ioctl+0x75a/0xfe0 [ 1854.974698] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1854.974707] ? check_preemption_disabled+0x35/0x240 [ 1854.974718] ? ioctl_preallocate+0x1a0/0x1a0 [ 1854.974726] ? do_vfs_ioctl+0xf2b/0xfe0 [ 1854.974745] ? security_file_ioctl+0x76/0xb0 [ 1854.974755] ? security_file_ioctl+0x83/0xb0 [ 1854.974766] SyS_ioctl+0x7f/0xb0 [ 1854.974775] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1854.974788] do_syscall_64+0x1d5/0x640 [ 1854.974804] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1854.974813] RIP: 0033:0x45ca59 [ 1854.974818] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1854.974829] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 02:42:34 executing program 3: getpid() sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1854.974835] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1854.974841] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1854.974846] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1854.974852] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1855.031738] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 02:42:34 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1855.168803] syz-executor.1 cpuset=/ mems_allowed=0-1 [ 1855.176049] CPU: 1 PID: 24618 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 1855.183946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1855.187206] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1855.193320] Call Trace: [ 1855.193340] dump_stack+0x1b2/0x283 [ 1855.193355] warn_alloc.cold+0x96/0x1af [ 1855.193368] ? zone_watermark_ok_safe+0x250/0x250 [ 1855.229109] lowmem_reserve[]: [ 1855.229367] ? wait_for_completion_io+0x10/0x10 [ 1855.229384] __alloc_pages_nodemask+0x2129/0x2730 [ 1855.238735] 0 [ 1855.241970] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1855.241983] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1855.242004] ? check_preemption_disabled+0x35/0x240 [ 1855.258233] 2559 [ 1855.258293] alloc_pages_current+0xe7/0x1e0 [ 1855.264382] 2559 [ 1855.265335] kvm_mmu_create+0xd1/0x1c0 [ 1855.265350] kvm_arch_vcpu_init+0x282/0x890 [ 1855.265362] ? alloc_pages_current+0xef/0x1e0 [ 1855.269760] 2559 [ 1855.271704] kvm_vcpu_init+0x26d/0x360 [ 1855.271719] vmx_create_vcpu+0xf5/0x2950 [ 1855.271737] ? alloc_loaded_vmcs+0x240/0x240 [ 1855.285322] 2559 [ 1855.286482] ? kvm_arch_vcpu_create+0x60/0xb0 [ 1855.286500] kvm_vm_ioctl+0x4ae/0x1430 [ 1855.286515] ? __lock_acquire+0x655/0x42a0 [ 1855.294433] ? kvm_vcpu_release+0xa0/0xa0 [ 1855.294445] ? check_preemption_disabled+0x35/0x240 [ 1855.294458] ? perf_trace_lock+0x109/0x4b0 [ 1855.294468] ? check_preemption_disabled+0x35/0x240 [ 1855.294478] ? perf_trace_lock+0x109/0x4b0 [ 1855.294486] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1855.294496] ? futex_exit_release+0x60/0x60 [ 1855.294506] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1855.294519] ? retint_kernel+0x2d/0x2d [ 1855.294529] ? kvm_vcpu_release+0xa0/0xa0 [ 1855.294540] do_vfs_ioctl+0x75a/0xfe0 [ 1855.294554] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1855.294564] ? ioctl_preallocate+0x1a0/0x1a0 [ 1855.294583] ? security_file_ioctl+0x76/0xb0 [ 1855.294592] ? security_file_ioctl+0x83/0xb0 [ 1855.294601] SyS_ioctl+0x7f/0xb0 [ 1855.294611] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1855.315176] Node 0 [ 1855.317805] do_syscall_64+0x1d5/0x640 [ 1855.317825] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1855.317835] RIP: 0033:0x45ca59 02:42:34 executing program 3: getpid() sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1855.329793] DMA32 free:36240kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:484kB local_pcp:300kB free_cma:0kB [ 1855.332041] RSP: 002b:00007f9232553c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1855.332054] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1855.332060] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1855.332066] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1855.332072] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 02:42:35 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) 02:42:35 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1855.332079] R13: 000000000000039c R14: 00000000004c635c R15: 00007f92325546d4 [ 1855.480051] lowmem_reserve[]: 0 0 0 0 0 [ 1855.487610] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1855.671647] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1855.686335] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1855.701224] CPU: 0 PID: 24655 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1855.702124] lowmem_reserve[]: [ 1855.709124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1855.709129] Call Trace: [ 1855.709150] dump_stack+0x1b2/0x283 [ 1855.709167] warn_alloc.cold+0x96/0x1af [ 1855.709179] ? zone_watermark_ok_safe+0x250/0x250 [ 1855.709198] ? wait_for_completion_io+0x10/0x10 [ 1855.709212] __alloc_pages_nodemask+0x2129/0x2730 [ 1855.709238] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1855.709251] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1855.709264] ? check_preemption_disabled+0x35/0x240 [ 1855.709287] alloc_pages_current+0xe7/0x1e0 [ 1855.709302] kvm_mmu_create+0xd1/0x1c0 [ 1855.709315] kvm_arch_vcpu_init+0x282/0x890 [ 1855.709324] ? alloc_pages_current+0xef/0x1e0 [ 1855.709335] kvm_vcpu_init+0x26d/0x360 [ 1855.709350] vmx_create_vcpu+0xf5/0x2950 [ 1855.722735] 0 [ 1855.724373] ? alloc_loaded_vmcs+0x240/0x240 [ 1855.724388] ? __sanitizer_cov_trace_pc+0x9/0x50 [ 1855.724403] kvm_vm_ioctl+0x4ae/0x1430 [ 1855.724416] ? __lock_acquire+0x655/0x42a0 [ 1855.724427] ? kvm_vcpu_release+0xa0/0xa0 [ 1855.724440] ? retint_kernel+0x2d/0x2d [ 1855.724450] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1855.724462] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1855.728316] 0 [ 1855.732474] ? check_preemption_disabled+0x35/0x240 [ 1855.732486] ? retint_kernel+0x2d/0x2d [ 1855.732515] ? selinux_file_ioctl+0x24a/0x560 [ 1855.732527] ? kvm_vcpu_release+0xa0/0xa0 [ 1855.732538] do_vfs_ioctl+0x75a/0xfe0 [ 1855.732550] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1855.757939] 0 [ 1855.761452] ? ioctl_preallocate+0x1a0/0x1a0 [ 1855.761477] ? security_file_ioctl+0x76/0xb0 [ 1855.761487] ? security_file_ioctl+0x83/0xb0 [ 1855.761502] SyS_ioctl+0x7f/0xb0 [ 1855.761512] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1855.818982] 0 [ 1855.823183] do_syscall_64+0x1d5/0x640 [ 1855.823205] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1855.823214] RIP: 0033:0x45ca59 [ 1855.823219] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1855.823231] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1855.823237] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1855.823246] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1855.826438] 0 [ 1855.830024] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1855.830031] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1855.864247] warn_alloc_show_mem: 2 callbacks suppressed [ 1855.864271] Mem-Info: [ 1855.875973] Node 1 Normal free:1918308kB min:53592kB low:66988kB high:80384kB active_anon:433036kB inactive_anon:35476kB active_file:32872kB inactive_file:249824kB unevictable:0kB writepending:1564kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3328kB pagetables:6760kB bounce:0kB free_pcp:1060kB local_pcp:440kB free_cma:0kB [ 1855.875998] lowmem_reserve[]: 0 0 0 0 0 [ 1855.876021] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1855.876108] Node 0 DMA32: 1176*4kB (UMH) 758*8kB (UMH) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 16*256kB (UME) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36240kB [ 1855.876190] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB [ 1855.883206] active_anon:447107 inactive_anon:48677 isolated_anon:0 [ 1855.883206] active_file:8220 inactive_file:62456 isolated_file:0 [ 1855.883206] unevictable:2560 dirty:391 writeback:0 unstable:0 [ 1855.883206] slab_reclaimable:125712 slab_unreclaimable:329723 [ 1855.883206] mapped:65057 shmem:38045 pagetables:8705 bounce:0 [ 1855.883206] free:491224 free_pcp:384 free_cma:0 [ 1855.891578] 0*256kB [ 1855.906031] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1855.918529] 0*512kB [ 1855.927319] Node 1 active_anon:433036kB inactive_anon:35476kB active_file:32872kB inactive_file:249828kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:35588kB dirty:1576kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1855.934479] 0*1024kB [ 1855.939212] Node 0 [ 1855.942221] 0*2048kB [ 1855.947416] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1855.979340] 0*4096kB [ 1856.000067] lowmem_reserve[]: [ 1856.017620] = 0kB [ 1856.023121] 0 [ 1856.056179] Node 1 [ 1856.093092] 2559 [ 1856.121815] Normal: [ 1856.127272] 2559 [ 1856.159358] 40*4kB [ 1856.160485] 2559 [ 1856.162430] (UME) [ 1856.164999] 2559 [ 1856.170705] 608*8kB [ 1856.174919] (UME) [ 1856.175869] Node 0 [ 1856.178111] 1022*16kB [ 1856.180356] DMA32 free:36240kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:484kB local_pcp:300kB free_cma:0kB [ 1856.182522] (UME) [ 1856.185314] lowmem_reserve[]: 0 0 0 0 0 [ 1856.221560] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1856.226631] 823*32kB [ 1856.247768] lowmem_reserve[]: 0 0 0 0 0 [ 1856.255913] Node 1 Normal free:1919020kB min:53592kB low:66988kB high:80384kB active_anon:433132kB inactive_anon:35476kB active_file:32872kB inactive_file:249864kB unevictable:0kB writepending:1612kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3200kB pagetables:6760kB bounce:0kB free_pcp:1284kB local_pcp:720kB free_cma:0kB [ 1856.277617] (UME) 234*64kB (UME) 19*128kB (UME) 13*256kB (UM) 12*512kB (ME) 4*1024kB (M) 1*2048kB (M) 449*4096kB (M) = 1919840kB [ 1856.291646] lowmem_reserve[]: 0 0 0 0 0 [ 1856.305073] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1856.314440] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1856.323216] Node 0 DMA32: 1176*4kB (UMH) 758*8kB (UMH) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 16*256kB (UME) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36240kB [ 1856.342799] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1856.351472] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1856.376627] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1856.378966] Node 1 [ 1856.387176] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1856.387875] Normal: [ 1856.389493] 79458 total pagecache pages [ 1856.402180] 54*4kB (UM) 503*8kB (UME) 1023*16kB (UME) 825*32kB (UME) 234*64kB (UME) 19*128kB (UME) 13*256kB (UM) 12*512kB (ME) 4*1024kB (M) 1*2048kB (M) 449*4096kB (M) = 1919136kB [ 1856.407120] 0 pages in swap cache [ 1856.427797] Swap cache stats: add 0, delete 0, find 0/0 [ 1856.429367] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1856.435087] Free swap = 0kB [ 1856.442323] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1856.450726] Total swap = 0kB [ 1856.457982] 1965979 pages RAM [ 1856.458390] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1856.461229] 0 pages HighMem/MovableOnly 02:42:36 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1856.470469] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1856.476383] 338456 pages reserved [ 1856.487253] 79458 total pagecache pages [ 1856.487556] 0 pages cma reserved [ 1856.491339] 0 pages in swap cache [ 1856.498194] Swap cache stats: add 0, delete 0, find 0/0 [ 1856.503719] Free swap = 0kB [ 1856.509053] Total swap = 0kB [ 1856.515500] 1965979 pages RAM [ 1856.520481] 0 pages HighMem/MovableOnly 02:42:36 executing program 5: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1856.529224] 338456 pages reserved [ 1856.532745] 0 pages cma reserved 02:42:36 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x20, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x400000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x40, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000340)=@assoc_value, &(0x7f00000004c0)=0x8) add_key(&(0x7f0000000080)='pkcs7_test\x00', 0x0, &(0x7f0000000200)="3081a3", 0x1001, r4) keyctl$KEYCTL_PKEY_DECRYPT(0x1a, &(0x7f0000000080)={r4, 0xcc, 0xf7}, 0x0, &(0x7f0000000100)="cf6c49601afc9283c4fca0bca7d76bb4e06b63bb8244ef0e235f2bcb8d9506c18a6ebfa508bbabc85f6c041f23929fac31dffdd4fdfe04b6a07d5b194c46b3d3bd000da8cdbd2966fe92cbad530aa7b591c0a8ec6ad083fbacedf15373b97af793299400170d60348cb296ece07fe3759b2818271569df74768c53afe45b3fedc0c8f39a1f3f2d0b7ebe503546ddc25872522e504ff0d19d107b50ad2473fbf001dc4d57fcdf8b30207914eefae5de5cd41dda376e241402ac0a336a9bbf2fb572bbbf683885380bc2225009", &(0x7f00000003c0)=""/247) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r7, 0x40505331, &(0x7f0000000000)={{0x50, 0x9f}, {0x8c, 0x7}, 0x7f, 0x2}) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r5) 02:42:36 executing program 5: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:36 executing program 5: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:36 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:36 executing program 5: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:36 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) setsockopt$bt_hci_HCI_FILTER(r6, 0x0, 0x2, &(0x7f0000000000)={0xffffffff, [0x20, 0x3], 0xaa}, 0x10) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:36 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:36 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:36 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0xe) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) 02:42:36 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:36 executing program 5: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:36 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:36 executing program 5: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:36 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x0, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:36 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:36 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:36 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1857.346995] warn_alloc: 11 callbacks suppressed [ 1857.347000] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1857.407193] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1857.415564] CPU: 1 PID: 24774 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1857.423466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1857.432822] Call Trace: [ 1857.435417] dump_stack+0x1b2/0x283 [ 1857.439053] warn_alloc.cold+0x96/0x1af [ 1857.443038] ? zone_watermark_ok_safe+0x250/0x250 [ 1857.447902] ? wait_for_completion_io+0x10/0x10 [ 1857.452584] __alloc_pages_nodemask+0x2129/0x2730 [ 1857.457453] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1857.462309] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1857.467176] ? do_raw_spin_unlock+0x164/0x250 [ 1857.471681] alloc_pages_current+0xe7/0x1e0 [ 1857.476040] kvm_mmu_create+0xd1/0x1c0 [ 1857.479947] kvm_arch_vcpu_init+0x282/0x890 [ 1857.484268] ? alloc_pages_current+0xef/0x1e0 [ 1857.488766] kvm_vcpu_init+0x26d/0x360 [ 1857.492659] vmx_create_vcpu+0xf5/0x2950 [ 1857.496725] ? __mutex_unlock_slowpath+0x75/0x780 [ 1857.502106] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1857.507129] ? alloc_loaded_vmcs+0x240/0x240 [ 1857.511549] kvm_vm_ioctl+0x4ae/0x1430 [ 1857.515440] ? __lock_acquire+0x655/0x42a0 [ 1857.519678] ? kvm_vcpu_release+0xa0/0xa0 [ 1857.523833] ? check_preemption_disabled+0x35/0x240 [ 1857.528854] ? perf_trace_lock+0x109/0x4b0 [ 1857.533096] ? check_preemption_disabled+0x35/0x240 [ 1857.538117] ? perf_trace_lock+0x109/0x4b0 [ 1857.542351] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1857.547304] ? futex_exit_release+0x60/0x60 [ 1857.551629] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1857.556564] ? lock_acquire+0x170/0x3f0 [ 1857.560540] ? kvm_vcpu_release+0xa0/0xa0 [ 1857.564689] do_vfs_ioctl+0x75a/0xfe0 [ 1857.568493] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1857.574123] ? ioctl_preallocate+0x1a0/0x1a0 [ 1857.578547] ? security_file_ioctl+0x76/0xb0 [ 1857.582964] ? security_file_ioctl+0x83/0xb0 [ 1857.587374] SyS_ioctl+0x7f/0xb0 [ 1857.590738] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1857.594717] do_syscall_64+0x1d5/0x640 [ 1857.598610] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1857.603798] RIP: 0033:0x45ca59 [ 1857.607154] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1857.614864] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1857.622146] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1857.629419] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1857.636691] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1857.637290] syz-executor.3: [ 1857.643983] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1857.694216] Mem-Info: [ 1857.696794] active_anon:447093 inactive_anon:48677 isolated_anon:0 [ 1857.696794] active_file:8220 inactive_file:62474 isolated_file:0 [ 1857.696794] unevictable:2560 dirty:410 writeback:0 unstable:0 [ 1857.696794] slab_reclaimable:125760 slab_unreclaimable:330006 [ 1857.696794] mapped:65065 shmem:38045 pagetables:8701 bounce:0 [ 1857.696794] free:490991 free_pcp:457 free_cma:0 [ 1857.714492] page allocation failure: order:0 [ 1857.741806] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1857.744877] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1857.748662] Node 1 active_anon:432980kB inactive_anon:35476kB active_file:32872kB inactive_file:249896kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:35660kB dirty:1640kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1857.775021] (null) [ 1857.800891] Node 0 [ 1857.815237] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1857.820672] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1857.825576] CPU: 0 PID: 24783 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1857.852633] lowmem_reserve[]: [ 1857.857485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1857.857490] Call Trace: [ 1857.857509] dump_stack+0x1b2/0x283 [ 1857.857526] warn_alloc.cold+0x96/0x1af [ 1857.857536] ? zone_watermark_ok_safe+0x250/0x250 [ 1857.857554] ? wait_for_completion_io+0x10/0x10 [ 1857.857570] __alloc_pages_nodemask+0x2129/0x2730 [ 1857.857595] ? retint_kernel+0x2d/0x2d [ 1857.860811] 0 [ 1857.870025] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1857.870036] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1857.870047] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1857.870088] alloc_pages_current+0xe7/0x1e0 [ 1857.870107] kvm_mmu_create+0xd1/0x1c0 [ 1857.872777] 2559 [ 1857.876279] kvm_arch_vcpu_init+0x282/0x890 [ 1857.876290] ? alloc_pages_current+0xef/0x1e0 [ 1857.876304] kvm_vcpu_init+0x26d/0x360 [ 1857.876319] vmx_create_vcpu+0xf5/0x2950 [ 1857.876332] ? __mutex_unlock_slowpath+0x75/0x780 [ 1857.876343] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1857.880398] 2559 [ 1857.885114] ? alloc_loaded_vmcs+0x240/0x240 [ 1857.885132] kvm_vm_ioctl+0x4ae/0x1430 [ 1857.885145] ? __lock_acquire+0x655/0x42a0 [ 1857.885155] ? kvm_vcpu_release+0xa0/0xa0 [ 1857.885165] ? check_preemption_disabled+0x35/0x240 [ 1857.885177] ? perf_trace_lock+0x109/0x4b0 [ 1857.889939] 2559 [ 1857.894643] ? check_preemption_disabled+0x35/0x240 [ 1857.894656] ? perf_trace_lock+0x109/0x4b0 [ 1857.894665] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1857.894674] ? futex_exit_release+0x60/0x60 [ 1857.894686] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1857.894697] ? lock_acquire+0x170/0x3f0 [ 1857.894708] ? kvm_vcpu_release+0xa0/0xa0 [ 1857.898694] 2559 [ 1857.900371] do_vfs_ioctl+0x75a/0xfe0 [ 1857.900385] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1857.900401] ? ioctl_preallocate+0x1a0/0x1a0 [ 1857.900422] ? security_file_ioctl+0x76/0xb0 [ 1857.910238] ? security_file_ioctl+0x83/0xb0 [ 1857.910252] SyS_ioctl+0x7f/0xb0 [ 1857.910261] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1857.910275] do_syscall_64+0x1d5/0x640 [ 1857.910292] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1857.915287] Node 0 [ 1857.919512] RIP: 0033:0x45ca59 [ 1857.919518] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1857.919529] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1857.919535] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1857.919541] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1857.919547] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1857.919553] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1858.107650] DMA32 free:36240kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:516kB local_pcp:208kB free_cma:0kB [ 1858.137226] lowmem_reserve[]: 0 0 0 0 0 [ 1858.141312] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1858.167045] lowmem_reserve[]: 0 0 0 0 0 [ 1858.175538] Node 1 Normal free:1919728kB min:53592kB low:66988kB high:80384kB active_anon:432684kB inactive_anon:35476kB active_file:32872kB inactive_file:249908kB unevictable:0kB writepending:1672kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:2880kB pagetables:6404kB bounce:0kB free_pcp:1140kB local_pcp:676kB free_cma:0kB [ 1858.196833] syz-executor.2: [ 1858.210067] lowmem_reserve[]: [ 1858.210662] page allocation failure: order:0 [ 1858.217104] 0 [ 1858.220127] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1858.221578] 0 [ 1858.228676] (null) [ 1858.229363] 0 [ 1858.231564] syz-executor.2 cpuset= [ 1858.234680] 0 [ 1858.236972] / [ 1858.238747] 0 [ 1858.240583] mems_allowed=0-1 [ 1858.248105] CPU: 0 PID: 24724 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1858.250861] Node 0 [ 1858.255986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1858.255990] Call Trace: [ 1858.256007] dump_stack+0x1b2/0x283 [ 1858.256024] warn_alloc.cold+0x96/0x1af [ 1858.256034] ? zone_watermark_ok_safe+0x250/0x250 [ 1858.256053] ? wait_for_completion_io+0x10/0x10 [ 1858.258310] DMA: [ 1858.267607] __alloc_pages_nodemask+0x2129/0x2730 [ 1858.267634] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1858.267645] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1858.267675] alloc_pages_current+0xe7/0x1e0 [ 1858.275208] 5*4kB [ 1858.277792] kvm_mmu_create+0xd1/0x1c0 [ 1858.277806] kvm_arch_vcpu_init+0x282/0x890 [ 1858.282653] (UM) [ 1858.287274] ? alloc_pages_current+0xef/0x1e0 [ 1858.287287] kvm_vcpu_init+0x26d/0x360 [ 1858.287300] vmx_create_vcpu+0xf5/0x2950 [ 1858.287315] ? __mutex_unlock_slowpath+0x75/0x780 [ 1858.287328] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1858.294406] 3*8kB [ 1858.299020] ? alloc_loaded_vmcs+0x240/0x240 [ 1858.299037] kvm_vm_ioctl+0x4ae/0x1430 [ 1858.305769] (UM) [ 1858.308158] ? __lock_acquire+0x655/0x42a0 [ 1858.308172] ? kvm_vcpu_release+0xa0/0xa0 [ 1858.310330] 2*16kB [ 1858.314166] ? check_preemption_disabled+0x35/0x240 [ 1858.314177] ? perf_trace_lock+0x109/0x4b0 [ 1858.314189] ? check_preemption_disabled+0x35/0x240 [ 1858.314200] ? perf_trace_lock+0x109/0x4b0 [ 1858.314214] ? retint_kernel+0x2d/0x2d [ 1858.322186] (UM) [ 1858.325031] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1858.325045] ? check_preemption_disabled+0x35/0x240 [ 1858.325056] ? kvm_vcpu_release+0xa0/0xa0 [ 1858.325066] do_vfs_ioctl+0x75a/0xfe0 [ 1858.325080] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1858.331411] 3*32kB [ 1858.332988] ? ioctl_preallocate+0x1a0/0x1a0 [ 1858.333010] ? security_file_ioctl+0x76/0xb0 [ 1858.339167] (UME) [ 1858.342824] ? security_file_ioctl+0x83/0xb0 [ 1858.342839] SyS_ioctl+0x7f/0xb0 [ 1858.346230] 1*64kB [ 1858.349360] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1858.349375] do_syscall_64+0x1d5/0x640 [ 1858.354525] (E) 02:42:38 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @ioapic={0x10000, 0x7, 0x7fffffff, 0x0, 0x0, [{0x1f, 0x1, 0x7, [], 0x7f}, {0x5, 0x1, 0x7, [], 0x1}, {0x1f, 0x1, 0x0, [], 0x4}, {0xcf, 0x7, 0x20, [], 0x6}, {0x0, 0xd9, 0x74, [], 0x8}, {0x9, 0x0, 0x0, [], 0x5}, {0x20, 0x9, 0x6, [], 0x8}, {0x3, 0x20, 0x6, [], 0x8e}, {0x7, 0x6, 0x3, [], 0x35}, {0x4, 0x4, 0x5, [], 0xca}, {0x0, 0x3, 0x2b, [], 0x40}, {0x36, 0x3, 0x40, [], 0x6}, {0x80, 0x6, 0x0, [], 0x6}, {0x2, 0x1, 0xff, [], 0x1}, {0x6, 0x1, 0x1, [], 0x3}, {0xff, 0x7, 0x4, [], 0x3f}, {0x80, 0x2, 0x7f, [], 0x2d}, {0x0, 0x1, 0x7, [], 0x20}, {0xcb, 0x7, 0x40, [], 0x20}, {0x4, 0xfc, 0x75, [], 0x6}, {0x6, 0x7, 0x0, [], 0x1}, {0x2, 0x4, 0x8, [], 0x40}, {0x8, 0x1, 0x9, [], 0x7}, {0x8, 0x80, 0xa1, [], 0x1f}]}}) ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f0000000000)={[{0x97f6, 0xffff, 0x1, 0x80, 0x1, 0xc, 0x0, 0x2, 0x1, 0x76, 0x3, 0x9, 0x100000000}, {0x8, 0x9, 0x0, 0xa6, 0x1, 0x3, 0xf7, 0x8, 0xc0, 0x0, 0x3f, 0x20, 0x7ff}, {0x1, 0x2, 0x3f, 0x40, 0x4, 0x2f, 0x81, 0x81, 0x5, 0x3, 0x82, 0x1, 0x800}], 0x7ff}) ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000000000)=0x2) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1858.355290] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1858.359538] 3*128kB [ 1858.363621] RIP: 0033:0x45ca59 [ 1858.363626] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1858.363636] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1858.363641] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1858.363647] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1858.363652] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 02:42:38 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:38 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:38 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:38 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1858.363658] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 02:42:38 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) setsockopt$bt_hci_HCI_FILTER(r6, 0x0, 0x2, &(0x7f0000000000)={0xffffffff, [0x20, 0x3], 0xaa}, 0x10) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1858.636365] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1858.656430] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1858.679172] CPU: 0 PID: 24811 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1858.687083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1858.696442] Call Trace: [ 1858.699125] dump_stack+0x1b2/0x283 [ 1858.702761] warn_alloc.cold+0x96/0x1af [ 1858.706763] ? zone_watermark_ok_safe+0x250/0x250 [ 1858.711618] ? check_preemption_disabled+0x35/0x240 [ 1858.713851] (UME) [ 1858.716632] ? retint_kernel+0x2d/0x2d [ 1858.716658] __alloc_pages_nodemask+0x2129/0x2730 [ 1858.716682] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1858.720033] 2*256kB [ 1858.722681] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1858.722697] ? check_preemption_disabled+0x35/0x240 [ 1858.722720] alloc_pages_current+0xe7/0x1e0 [ 1858.722736] kvm_mmu_create+0xd1/0x1c0 [ 1858.743722] (ME) [ 1858.744433] kvm_arch_vcpu_init+0x282/0x890 [ 1858.744447] ? alloc_pages_current+0xef/0x1e0 [ 1858.744459] kvm_vcpu_init+0x26d/0x360 [ 1858.744473] vmx_create_vcpu+0xf5/0x2950 [ 1858.748886] 2*512kB [ 1858.752645] ? __mutex_unlock_slowpath+0x75/0x780 [ 1858.752656] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1858.752669] ? alloc_loaded_vmcs+0x240/0x240 [ 1858.752686] kvm_vm_ioctl+0x4ae/0x1430 [ 1858.759465] (ME) [ 1858.763507] ? __lock_acquire+0x655/0x42a0 [ 1858.763521] ? kvm_vcpu_release+0xa0/0xa0 [ 1858.763532] ? check_preemption_disabled+0x35/0x240 [ 1858.763543] ? retint_kernel+0x2d/0x2d [ 1858.763554] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1858.763564] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1858.763576] ? check_preemption_disabled+0x35/0x240 02:42:38 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) [ 1858.763586] ? retint_kernel+0x2d/0x2d [ 1858.771671] 2*1024kB [ 1858.773817] ? kvm_vcpu_release+0xa0/0xa0 [ 1858.773832] ? do_vfs_ioctl+0x6fb/0xfe0 [ 1858.773842] ? kvm_vcpu_release+0xa0/0xa0 [ 1858.773852] do_vfs_ioctl+0x75a/0xfe0 [ 1858.773866] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1858.773876] ? ioctl_preallocate+0x1a0/0x1a0 [ 1858.773895] ? security_file_ioctl+0x76/0xb0 [ 1858.784524] (ME) [ 1858.788236] ? security_file_ioctl+0x83/0xb0 [ 1858.788251] SyS_ioctl+0x7f/0xb0 [ 1858.788260] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1858.788274] do_syscall_64+0x1d5/0x640 [ 1858.788304] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1858.796039] 1*2048kB [ 1858.798423] RIP: 0033:0x45ca59 [ 1858.798429] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1858.798440] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1858.798446] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1858.798452] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1858.798457] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1858.798465] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1858.802713] (E) [ 1858.861782] warn_alloc_show_mem: 2 callbacks suppressed [ 1858.861820] Mem-Info: [ 1858.895134] 1*4096kB [ 1858.916552] active_anon:447094 inactive_anon:48677 isolated_anon:0 [ 1858.916552] active_file:8220 inactive_file:62477 isolated_file:0 [ 1858.916552] unevictable:2560 dirty:418 writeback:0 unstable:0 [ 1858.916552] slab_reclaimable:125757 slab_unreclaimable:330313 [ 1858.916552] mapped:65093 shmem:38045 pagetables:8727 bounce:0 [ 1858.916552] free:490590 free_pcp:388 free_cma:0 02:42:38 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) 02:42:38 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 1858.952678] (M) [ 1859.003040] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1859.040325] Node 1 active_anon:432920kB inactive_anon:35476kB active_file:32872kB inactive_file:249944kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:35804kB dirty:1732kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1859.074576] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1859.081332] = 10348kB [ 1859.109855] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1859.118299] Node 0 DMA32: 1176*4kB (UMH) 761*8kB (UMH) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 16*256kB (UME) 14*512kB (UM) 1*1024kB (M) [ 1859.118403] Node 0 [ 1859.138447] 0*2048kB 0*4096kB = 36264kB [ 1859.146234] DMA32 free:36264kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:532kB local_pcp:320kB free_cma:0kB [ 1859.162214] syz-executor.2: [ 1859.179436] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1859.188305] lowmem_reserve[]: 0 0 0 0 0 [ 1859.199800] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1859.212651] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1859.213440] Node 1 [ 1859.240838] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1859.245440] lowmem_reserve[]: 0 0 0 0 0 [ 1859.250283] CPU: 1 PID: 24812 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1859.257779] Node 1 [ 1859.261054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1859.261059] Call Trace: [ 1859.261078] dump_stack+0x1b2/0x283 [ 1859.261095] warn_alloc.cold+0x96/0x1af [ 1859.261105] ? zone_watermark_ok_safe+0x250/0x250 [ 1859.261124] ? wait_for_completion_io+0x10/0x10 [ 1859.269206] Normal free:1915912kB min:53592kB low:66988kB high:80384kB active_anon:432920kB inactive_anon:35476kB active_file:32872kB inactive_file:249944kB unevictable:0kB writepending:1732kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3136kB pagetables:6720kB bounce:0kB free_pcp:1016kB local_pcp:720kB free_cma:0kB [ 1859.272712] __alloc_pages_nodemask+0x2129/0x2730 [ 1859.272743] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1859.272758] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1859.280482] lowmem_reserve[]: [ 1859.282995] ? retint_kernel+0x2d/0x2d [ 1859.283017] ? retint_kernel+0x2d/0x2d [ 1859.283037] alloc_pages_current+0xe7/0x1e0 [ 1859.283052] kvm_mmu_create+0xd1/0x1c0 [ 1859.292259] 0 [ 1859.292532] kvm_arch_vcpu_init+0x282/0x890 [ 1859.292544] ? alloc_pages_current+0xef/0x1e0 [ 1859.292557] kvm_vcpu_init+0x26d/0x360 [ 1859.331986] 0 [ 1859.336634] vmx_create_vcpu+0xf5/0x2950 [ 1859.336651] ? alloc_loaded_vmcs+0x240/0x240 [ 1859.336663] ? kvm_arch_vcpu_create+0x79/0xb0 [ 1859.336676] kvm_vm_ioctl+0x4ae/0x1430 [ 1859.336694] ? __lock_acquire+0x655/0x42a0 [ 1859.336706] ? kvm_vcpu_release+0xa0/0xa0 [ 1859.339937] 0 [ 1859.343691] ? retint_kernel+0x2d/0x2d [ 1859.343705] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1859.343715] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1859.343728] ? check_preemption_disabled+0x35/0x240 [ 1859.343737] ? retint_kernel+0x2d/0x2d [ 1859.343756] ? selinux_file_ioctl+0x19a/0x560 [ 1859.343767] ? selinux_file_ioctl+0x206/0x560 [ 1859.343778] ? kvm_vcpu_release+0xa0/0xa0 [ 1859.343790] do_vfs_ioctl+0x75a/0xfe0 [ 1859.343801] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1859.343811] ? ioctl_preallocate+0x1a0/0x1a0 [ 1859.343832] ? security_file_ioctl+0x76/0xb0 [ 1859.343841] ? security_file_ioctl+0x83/0xb0 [ 1859.343852] SyS_ioctl+0x7f/0xb0 [ 1859.358656] 0 [ 1859.361988] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1859.362004] do_syscall_64+0x1d5/0x640 [ 1859.362022] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1859.475288] RIP: 0033:0x45ca59 [ 1859.478462] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1859.486161] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1859.493414] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1859.500662] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1859.507915] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1859.516121] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1859.528325] Normal: 149*4kB (UME) 109*8kB (UME) 1585*16kB (UME) 858*32kB (UME) 237*64kB (UME) 41*128kB (UME) 14*256kB (UM) 12*512kB (ME) 4*1024kB (M) 2*2048kB (UM) 445*4096kB (M) = 1915340kB [ 1859.535891] 0 [ 1859.548329] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1859.559074] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1859.559592] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1859.583899] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1859.592958] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1859.601405] Node 0 DMA32: 1176*4kB (UMH) 761*8kB (UMH) 118*16kB (UME) 47*32kB (UME) [ 1859.602284] 79476 total pagecache pages [ 1859.605964] 75*64kB [ 1859.610766] 0 pages in swap cache [ 1859.619416] (UME) 39*128kB (M) 16*256kB (UME) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36264kB [ 1859.620459] Swap cache stats: add 0, delete 0, find 0/0 [ 1859.635307] Free swap = 0kB [ 1859.638510] Total swap = 0kB [ 1859.638809] Node 0 [ 1859.641644] 1965979 pages RAM [ 1859.642799] Normal: [ 1859.644370] 0 pages HighMem/MovableOnly 02:42:39 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:39 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) [ 1859.654655] 338456 pages reserved [ 1859.658172] 0 pages cma reserved [ 1859.662177] 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1859.679776] Node 1 Normal: 149*4kB (UME) 173*8kB (UME) 1560*16kB (UME) 855*32kB (UME) 237*64kB (UME) 46*128kB (UME) 16*256kB (UM) 12*512kB (ME) 4*1024kB (M) 2*2048kB (UM) 445*4096kB (M) = 1916508kB 02:42:39 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1859.707899] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1859.719573] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1859.733880] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1859.733888] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1859.733893] 79476 total pagecache pages [ 1859.733903] 0 pages in swap cache [ 1859.733908] Swap cache stats: add 0, delete 0, find 0/0 [ 1859.733915] Free swap = 0kB [ 1859.772580] Total swap = 0kB [ 1859.776278] 1965979 pages RAM [ 1859.779549] 0 pages HighMem/MovableOnly [ 1859.788082] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1859.788148] 338456 pages reserved [ 1859.807889] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1859.813528] 0 pages cma reserved [ 1859.817852] CPU: 1 PID: 24859 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1859.825743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1859.835093] Call Trace: [ 1859.837683] dump_stack+0x1b2/0x283 [ 1859.841331] warn_alloc.cold+0x96/0x1af [ 1859.845312] ? zone_watermark_ok_safe+0x250/0x250 [ 1859.850164] ? wait_for_completion_io+0x10/0x10 [ 1859.854838] __alloc_pages_nodemask+0x2129/0x2730 [ 1859.859698] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1859.864543] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1859.869400] ? do_raw_spin_unlock+0x164/0x250 [ 1859.873897] alloc_pages_current+0xe7/0x1e0 [ 1859.878267] kvm_mmu_create+0xd1/0x1c0 [ 1859.882167] kvm_arch_vcpu_init+0x282/0x890 [ 1859.886495] ? alloc_pages_current+0xef/0x1e0 [ 1859.890993] kvm_vcpu_init+0x26d/0x360 [ 1859.894884] vmx_create_vcpu+0xf5/0x2950 [ 1859.898948] ? __mutex_unlock_slowpath+0x75/0x780 [ 1859.903877] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1859.908893] ? alloc_loaded_vmcs+0x240/0x240 [ 1859.913319] kvm_vm_ioctl+0x4ae/0x1430 [ 1859.917208] ? __lock_acquire+0x655/0x42a0 [ 1859.921447] ? kvm_vcpu_release+0xa0/0xa0 [ 1859.925597] ? check_preemption_disabled+0x35/0x240 [ 1859.930615] ? perf_trace_lock+0x109/0x4b0 [ 1859.934852] ? check_preemption_disabled+0x35/0x240 [ 1859.939867] ? perf_trace_lock+0x109/0x4b0 [ 1859.944094] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1859.949017] ? futex_exit_release+0x60/0x60 [ 1859.953351] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1859.958290] ? lock_acquire+0x170/0x3f0 [ 1859.962266] ? kvm_vcpu_release+0xa0/0xa0 [ 1859.966421] do_vfs_ioctl+0x75a/0xfe0 [ 1859.970221] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1859.975846] ? ioctl_preallocate+0x1a0/0x1a0 [ 1859.980266] ? security_file_ioctl+0x76/0xb0 [ 1859.984680] ? security_file_ioctl+0x83/0xb0 [ 1859.989089] SyS_ioctl+0x7f/0xb0 [ 1859.992451] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1859.996430] do_syscall_64+0x1d5/0x640 [ 1859.997387] syz-executor.4: [ 1860.000317] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1860.000327] RIP: 0033:0x45ca59 [ 1860.000337] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 [ 1860.007811] page allocation failure: order:0 [ 1860.008506] ORIG_RAX: 0000000000000010 [ 1860.008513] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1860.008519] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1860.008524] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1860.008533] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1860.011739] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1860.017046] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1860.029904] warn_alloc_show_mem: 1 callbacks suppressed [ 1860.029908] Mem-Info: [ 1860.076729] active_anon:447090 inactive_anon:48677 isolated_anon:0 [ 1860.076729] active_file:8220 inactive_file:62498 isolated_file:0 [ 1860.076729] unevictable:2560 dirty:452 writeback:0 unstable:0 [ 1860.076729] slab_reclaimable:125739 slab_unreclaimable:330301 [ 1860.076729] mapped:65094 shmem:38045 pagetables:8653 bounce:0 [ 1860.076729] free:490653 free_pcp:392 free_cma:0 [ 1860.100058] (null) [ 1860.121721] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1860.124766] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1860.129321] CPU: 0 PID: 24832 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1860.160826] Node 1 active_anon:432968kB inactive_anon:35476kB active_file:32872kB inactive_file:249992kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:35776kB dirty:1808kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1860.164195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1860.164200] Call Trace: [ 1860.164218] dump_stack+0x1b2/0x283 [ 1860.164235] warn_alloc.cold+0x96/0x1af [ 1860.164246] ? zone_watermark_ok_safe+0x250/0x250 [ 1860.164264] ? wait_for_completion_io+0x10/0x10 [ 1860.164280] __alloc_pages_nodemask+0x2129/0x2730 [ 1860.164305] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1860.164317] ? mark_held_locks+0xa6/0xf0 [ 1860.192714] Node 0 [ 1860.201796] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1860.201825] alloc_pages_current+0xe7/0x1e0 [ 1860.201844] kvm_mmu_create+0xd1/0x1c0 [ 1860.201857] kvm_arch_vcpu_init+0x282/0x890 [ 1860.201866] ? alloc_pages_current+0xef/0x1e0 [ 1860.201878] kvm_vcpu_init+0x26d/0x360 [ 1860.204616] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1860.208053] vmx_create_vcpu+0xf5/0x2950 [ 1860.208068] ? __mutex_unlock_slowpath+0x75/0x780 [ 1860.208079] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1860.208091] ? alloc_loaded_vmcs+0x240/0x240 [ 1860.208108] kvm_vm_ioctl+0x4ae/0x1430 [ 1860.212163] lowmem_reserve[]: [ 1860.216883] ? __lock_acquire+0x655/0x42a0 [ 1860.216894] ? kvm_vcpu_release+0xa0/0xa0 [ 1860.216904] ? check_preemption_disabled+0x35/0x240 [ 1860.216916] ? perf_trace_lock+0x109/0x4b0 [ 1860.216929] ? check_preemption_disabled+0x35/0x240 [ 1860.216941] ? perf_trace_lock+0x109/0x4b0 [ 1860.216949] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1860.216960] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1860.221718] 0 [ 1860.226429] ? retint_kernel+0x2d/0x2d [ 1860.226441] ? kvm_vcpu_release+0xa0/0xa0 [ 1860.226453] do_vfs_ioctl+0x75a/0xfe0 [ 1860.226466] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1860.226477] ? ioctl_preallocate+0x1a0/0x1a0 [ 1860.226498] ? security_file_ioctl+0x76/0xb0 [ 1860.231421] 2559 [ 1860.235354] ? security_file_ioctl+0x83/0xb0 [ 1860.235366] SyS_ioctl+0x7f/0xb0 [ 1860.235376] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1860.235390] do_syscall_64+0x1d5/0x640 [ 1860.235406] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1860.235414] RIP: 0033:0x45ca59 [ 1860.235421] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 [ 1860.237743] 2559 [ 1860.242472] ORIG_RAX: 0000000000000010 [ 1860.242479] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1860.242485] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1860.242491] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1860.242497] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1860.242504] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1860.389777] syz-executor.1: [ 1860.391989] 2559 [ 1860.397814] page allocation failure: order:0 [ 1860.398959] 2559 [ 1860.398969] Node 0 DMA32 free:36288kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:536kB local_pcp:212kB free_cma:0kB [ 1860.411511] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1860.414978] lowmem_reserve[]: [ 1860.417277] (null) [ 1860.419376] 0 0 0 0 0 [ 1860.432427] syz-executor.1 cpuset= [ 1860.435951] Node 0 [ 1860.446860] / [ 1860.450106] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1860.461529] mems_allowed=0-1 [ 1860.467275] lowmem_reserve[]: [ 1860.510120] syz-executor.2: [ 1860.524577] 0 [ 1860.549349] CPU: 0 PID: 24849 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 1860.552444] 0 [ 1860.553373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1860.553378] Call Trace: [ 1860.553395] dump_stack+0x1b2/0x283 [ 1860.553410] warn_alloc.cold+0x96/0x1af [ 1860.553421] ? zone_watermark_ok_safe+0x250/0x250 [ 1860.553438] ? wait_for_completion_io+0x10/0x10 [ 1860.553453] __alloc_pages_nodemask+0x2129/0x2730 [ 1860.553481] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1860.553493] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1860.553524] alloc_pages_current+0xe7/0x1e0 [ 1860.553540] kvm_mmu_create+0xd1/0x1c0 [ 1860.553553] kvm_arch_vcpu_init+0x282/0x890 [ 1860.553562] ? alloc_pages_current+0xef/0x1e0 [ 1860.553579] kvm_vcpu_init+0x26d/0x360 [ 1860.563183] 0 [ 1860.563247] vmx_create_vcpu+0xf5/0x2950 [ 1860.565065] 0 [ 1860.574361] ? __mutex_unlock_slowpath+0x75/0x780 [ 1860.574371] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1860.574382] ? alloc_loaded_vmcs+0x240/0x240 [ 1860.574404] kvm_vm_ioctl+0x4ae/0x1430 [ 1860.582164] 0 [ 1860.585050] ? __lock_acquire+0x655/0x42a0 [ 1860.585062] ? kvm_vcpu_release+0xa0/0xa0 [ 1860.585072] ? check_preemption_disabled+0x35/0x240 [ 1860.585083] ? perf_trace_lock+0x109/0x4b0 [ 1860.585094] ? check_preemption_disabled+0x35/0x240 [ 1860.594576] ? perf_trace_lock+0x109/0x4b0 [ 1860.594584] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1860.594593] ? futex_exit_release+0x60/0x60 [ 1860.594605] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1860.594618] ? lock_acquire+0x170/0x3f0 [ 1860.601518] Node 1 [ 1860.604270] ? kvm_vcpu_release+0xa0/0xa0 [ 1860.604282] do_vfs_ioctl+0x75a/0xfe0 [ 1860.604296] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1860.604307] ? ioctl_preallocate+0x1a0/0x1a0 [ 1860.604327] ? security_file_ioctl+0x76/0xb0 [ 1860.611703] Normal free:1915228kB min:53592kB low:66988kB high:80384kB active_anon:432968kB inactive_anon:35476kB active_file:32872kB inactive_file:249992kB unevictable:0kB writepending:1808kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3200kB pagetables:6552kB bounce:0kB free_pcp:1216kB local_pcp:704kB free_cma:0kB [ 1860.613450] ? security_file_ioctl+0x83/0xb0 [ 1860.613462] SyS_ioctl+0x7f/0xb0 [ 1860.613471] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1860.613484] do_syscall_64+0x1d5/0x640 [ 1860.613500] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1860.619871] lowmem_reserve[]: [ 1860.621705] RIP: 0033:0x45ca59 [ 1860.627814] 0 [ 1860.630047] RSP: 002b:00007f9232553c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1860.630058] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1860.630063] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1860.630068] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1860.630077] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1860.631904] 0 [ 1860.635903] R13: 000000000000039c R14: 00000000004c635c R15: 00007f92325546d4 [ 1860.647465] page allocation failure: order:0 [ 1860.652160] 0 [ 1860.657399] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1860.658754] 0 [ 1860.662194] (null) [ 1860.668446] 0 [ 1860.676518] syz-executor.2 cpuset= [ 1860.686294] / [ 1860.691024] Node 0 [ 1860.699086] mems_allowed=0-1 [ 1860.701508] DMA: [ 1860.704921] CPU: 0 PID: 24812 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1860.707042] 5*4kB [ 1860.710213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1860.710218] Call Trace: [ 1860.710234] dump_stack+0x1b2/0x283 [ 1860.710250] warn_alloc.cold+0x96/0x1af [ 1860.714097] (UM) [ 1860.719624] ? zone_watermark_ok_safe+0x250/0x250 [ 1860.719644] ? wait_for_completion_io+0x10/0x10 [ 1860.727482] 3*8kB [ 1860.728426] __alloc_pages_nodemask+0x2129/0x2730 [ 1860.758993] (UM) [ 1860.762399] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1860.762411] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1860.765824] 2*16kB [ 1860.769718] ? check_preemption_disabled+0x35/0x240 [ 1860.769734] alloc_pages_current+0xe7/0x1e0 [ 1860.778726] (UM) [ 1860.778878] kvm_mmu_create+0xd1/0x1c0 [ 1860.782005] 3*32kB [ 1860.785146] kvm_arch_vcpu_init+0x282/0x890 [ 1860.785158] ? alloc_pages_current+0xef/0x1e0 [ 1860.785171] kvm_vcpu_init+0x26d/0x360 [ 1860.785184] vmx_create_vcpu+0xf5/0x2950 [ 1860.785203] ? alloc_loaded_vmcs+0x240/0x240 [ 1860.790205] (UME) [ 1860.794709] ? kvm_arch_vcpu_create+0x2/0xb0 [ 1860.794724] kvm_vm_ioctl+0x4ae/0x1430 [ 1860.794737] ? __lock_acquire+0x655/0x42a0 [ 1860.794747] ? kvm_vcpu_release+0xa0/0xa0 [ 1860.794756] ? check_preemption_disabled+0x35/0x240 [ 1860.794766] ? perf_trace_lock+0x109/0x4b0 [ 1860.794777] ? check_preemption_disabled+0x35/0x240 [ 1860.794787] ? perf_trace_lock+0x109/0x4b0 [ 1860.794795] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1860.794803] ? futex_exit_release+0x60/0x60 02:42:40 executing program 2: r0 = getpid() socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x1014, 0x2}) sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x42082, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) dup3(r4, r5, 0x80000) dup2(r3, r6) 02:42:40 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:40 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1860.794813] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1860.794825] ? lock_acquire+0x170/0x3f0 [ 1860.807423] 1*64kB [ 1860.809524] ? kvm_vcpu_release+0xa0/0xa0 [ 1860.816866] (E) [ 1860.824026] do_vfs_ioctl+0x75a/0xfe0 [ 1860.824041] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1860.824051] ? ioctl_preallocate+0x1a0/0x1a0 [ 1860.824073] ? security_file_ioctl+0x76/0xb0 [ 1860.825879] 3*128kB [ 1860.833105] ? security_file_ioctl+0x83/0xb0 [ 1860.833116] SyS_ioctl+0x7f/0xb0 [ 1860.833123] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1860.833137] do_syscall_64+0x1d5/0x640 [ 1860.833155] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1860.842890] (UME) [ 1860.845187] RIP: 0033:0x45ca59 [ 1860.845192] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1860.845202] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1860.845212] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1860.845217] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1860.845223] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1860.845229] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1861.130247] 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1861.138607] Node 0 DMA32: 1176*4kB (UMH) 767*8kB (UMH) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 16*256kB (UME) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36312kB 02:42:40 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1861.156076] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1861.174529] Node 1 Normal: 46*4kB (UME) 387*8kB (UE) 1386*16kB (UME) 851*32kB (UME) 237*64kB (UME) 29*128kB (UME) 28*256kB (UM) 12*512kB (ME) 4*1024kB (M) 2*2048kB (UM) 445*4096kB (M) = 1915792kB [ 1861.207163] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1861.216082] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1861.226267] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1861.240153] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1861.251845] 79506 total pagecache pages [ 1861.256918] 0 pages in swap cache [ 1861.260952] Swap cache stats: add 0, delete 0, find 0/0 [ 1861.273417] Free swap = 0kB [ 1861.276899] Total swap = 0kB [ 1861.286038] 1965979 pages RAM [ 1861.290051] 0 pages HighMem/MovableOnly [ 1861.299938] 338456 pages reserved [ 1861.304542] 0 pages cma reserved 02:42:40 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1861.322073] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1861.335874] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1861.354449] CPU: 1 PID: 24907 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1861.362358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1861.371710] Call Trace: [ 1861.374304] dump_stack+0x1b2/0x283 [ 1861.377940] warn_alloc.cold+0x96/0x1af [ 1861.381921] ? zone_watermark_ok_safe+0x250/0x250 [ 1861.386769] ? wait_for_completion_io+0x10/0x10 [ 1861.391451] __alloc_pages_nodemask+0x2129/0x2730 [ 1861.396317] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1861.401164] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1861.406045] ? do_raw_spin_unlock+0x164/0x250 [ 1861.410545] alloc_pages_current+0xe7/0x1e0 [ 1861.414870] kvm_mmu_create+0xd1/0x1c0 [ 1861.418768] kvm_arch_vcpu_init+0x282/0x890 [ 1861.423091] ? alloc_pages_current+0xef/0x1e0 [ 1861.427586] kvm_vcpu_init+0x26d/0x360 [ 1861.431484] vmx_create_vcpu+0xf5/0x2950 [ 1861.435550] ? __mutex_unlock_slowpath+0x75/0x780 [ 1861.440391] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1861.445414] ? alloc_loaded_vmcs+0x240/0x240 [ 1861.449916] kvm_vm_ioctl+0x4ae/0x1430 [ 1861.453807] ? __lock_acquire+0x655/0x42a0 [ 1861.458065] ? kvm_vcpu_release+0xa0/0xa0 [ 1861.462247] ? check_preemption_disabled+0x35/0x240 [ 1861.467265] ? perf_trace_lock+0x109/0x4b0 [ 1861.471503] ? check_preemption_disabled+0x35/0x240 [ 1861.476519] ? perf_trace_lock+0x109/0x4b0 [ 1861.480753] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1861.485685] ? futex_exit_release+0x60/0x60 [ 1861.490092] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1861.495021] ? lock_acquire+0x170/0x3f0 [ 1861.498998] ? kvm_vcpu_release+0xa0/0xa0 [ 1861.503145] do_vfs_ioctl+0x75a/0xfe0 [ 1861.506943] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1861.512568] ? ioctl_preallocate+0x1a0/0x1a0 [ 1861.518291] ? security_file_ioctl+0x76/0xb0 [ 1861.522700] ? security_file_ioctl+0x83/0xb0 [ 1861.527108] SyS_ioctl+0x7f/0xb0 [ 1861.530472] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1861.534452] do_syscall_64+0x1d5/0x640 [ 1861.538344] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1861.544494] RIP: 0033:0x45ca59 [ 1861.547682] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1861.555391] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1861.562663] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1861.569929] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1861.577200] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1861.584470] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 02:42:41 executing program 4: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:41 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:41 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:41 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1861.689250] warn_alloc_show_mem: 3 callbacks suppressed [ 1861.689255] Mem-Info: [ 1861.697319] active_anon:447058 inactive_anon:48677 isolated_anon:0 [ 1861.697319] active_file:8220 inactive_file:62516 isolated_file:0 [ 1861.697319] unevictable:2560 dirty:469 writeback:0 unstable:0 [ 1861.697319] slab_reclaimable:125745 slab_unreclaimable:330241 [ 1861.697319] mapped:65145 shmem:38045 pagetables:8653 bounce:0 [ 1861.697319] free:490792 free_pcp:480 free_cma:0 02:42:41 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) fanotify_mark(0xffffffffffffffff, 0x30, 0x40000020, 0xffffffffffffffff, &(0x7f0000000040)='./file0\x00') r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r6, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$sock_inet_SIOCGIFDSTADDR(r8, 0x8917, &(0x7f0000000000)={'batadv_slave_1\x00', {0x2, 0x4e23, @remote}}) ioctl$KVM_RUN(r6, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r6) [ 1861.749922] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 02:42:41 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1861.860044] Node 1 active_anon:432940kB inactive_anon:35476kB active_file:32872kB inactive_file:250064kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36780kB dirty:1676kB writeback:300kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 02:42:41 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) r5 = dup(0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'batadv_slave_1\x00'}) sendmsg$NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000808130561462b2e0e66a8a22b00000000", @ANYRES32=0x0, @ANYBLOB="08000100030000000a201a00aaaaaaaaaabb00000c009900080000000200000008000107020000000a000600aaaaaaaaaa4000000a001a002747fa0c291f00000a46e9af879b4c0bae47d2a5789ad5ef001a00aaaaaaaaaa1700000a000600aaaaaaaaaa33000008000300", @ANYRES32=0x0, @ANYBLOB], 0x7c}, 0x1, 0x0, 0x0, 0x841}, 0x5) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x7) r6 = socket$inet(0x2, 0x3, 0x2) getsockopt(r6, 0x0, 0xce, 0x0, &(0x7f0000000000)) setsockopt$inet_group_source_req(r6, 0x0, 0x2f, &(0x7f0000000100)={0x7fff, {{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e24, @loopback}}}, 0x108) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r3, 0xae80, 0x0) dup3(0xffffffffffffffff, r2, 0x80000) dup2(r4, r6) 02:42:41 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1861.911315] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 02:42:41 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1862.029075] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1862.042336] Node 0 DMA32 free:36188kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:528kB local_pcp:216kB free_cma:0kB 02:42:41 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1862.130730] lowmem_reserve[]: 0 0 0 0 0 [ 1862.160330] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1862.219811] lowmem_reserve[]: 0 0 0 0 0 [ 1862.226497] Node 1 Normal free:1916564kB min:53592kB low:66988kB high:80384kB active_anon:433080kB inactive_anon:35476kB active_file:32872kB inactive_file:250064kB unevictable:0kB writepending:592kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3264kB pagetables:6716kB bounce:0kB free_pcp:1168kB local_pcp:508kB free_cma:0kB [ 1862.282277] lowmem_reserve[]: 0 0 0 0 0 [ 1862.290387] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1862.316978] Node 0 DMA32: 1177*4kB (UMEH) 767*8kB (UMH) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 40*128kB (ME) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36188kB [ 1862.342444] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1862.361582] Node 1 Normal: 191*4kB (UME) 1063*8kB (UME) 1383*16kB (UE) 870*32kB (UME) 238*64kB (UME) 16*128kB (ME) 12*256kB (M) 13*512kB (UME) 4*1024kB (M) 2*2048kB (UM) 445*4096kB (M) = 1917156kB [ 1862.384543] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1862.397408] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1862.410804] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1862.422734] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1862.433215] 79506 total pagecache pages [ 1862.437306] 0 pages in swap cache [ 1862.440869] Swap cache stats: add 0, delete 0, find 0/0 [ 1862.461729] Free swap = 0kB [ 1862.464941] Total swap = 0kB [ 1862.467963] 1965979 pages RAM [ 1862.471066] 0 pages HighMem/MovableOnly [ 1862.477244] 338456 pages reserved [ 1862.480709] 0 pages cma reserved 02:42:42 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:42 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:42 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 02:42:42 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) 02:42:42 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x2, 0x0) r3 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000100)={r3}) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) write$binfmt_elf32(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="7f454c46f38b03f80100000000000000020003000080ffff1302000038000000be010000d23b000000082000010001000500030000000000000000605c0000000800000080000000080000000010000009000000018000006ba1eb874ff841fa930cd478e338cdbef0fa73ed2c1b9e6e709327c50428065b2ca07213d12e4d580882afbe98929a119e0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c12beb998ed1af2077aa6ad2aca343df0e2a20f1ee0206b66baea88dee3215ddeb52fa4ffcbddf32c6691ded9620fb23f9c7f5f60be4c8c07dbb06b4c515d8034dd46b03349054eb04"], 0x589) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_NMI(r7, 0xae9a) ioctl$KVM_RUN(r7, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_GET_XSAVE(0xffffffffffffffff, 0x9000aea4, &(0x7f0000002980)) ioctl$PPPIOCGFLAGS1(0xffffffffffffffff, 0x8004745a, &(0x7f0000000180)) r8 = dup3(r4, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r8, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x4e23, @dev}}) 02:42:42 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) [ 1862.520879] warn_alloc: 6 callbacks suppressed [ 1862.520895] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1862.577613] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1862.584397] CPU: 1 PID: 24942 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1862.592297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1862.601654] Call Trace: [ 1862.604249] dump_stack+0x1b2/0x283 [ 1862.607887] warn_alloc.cold+0x96/0x1af [ 1862.611871] ? zone_watermark_ok_safe+0x250/0x250 [ 1862.616717] ? check_preemption_disabled+0x35/0x240 [ 1862.621752] __alloc_pages_nodemask+0x2129/0x2730 [ 1862.626628] ? retint_kernel+0x2d/0x2d [ 1862.630520] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1862.635370] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1862.640427] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1862.645290] alloc_pages_current+0xe7/0x1e0 [ 1862.649706] kvm_mmu_create+0xd1/0x1c0 [ 1862.653605] kvm_arch_vcpu_init+0x282/0x890 [ 1862.657955] ? alloc_pages_current+0xef/0x1e0 [ 1862.662466] kvm_vcpu_init+0x26d/0x360 [ 1862.666358] vmx_create_vcpu+0xf5/0x2950 [ 1862.667125] syz-executor.4: page allocation failure: order:0 [ 1862.670423] ? __mutex_unlock_slowpath+0x75/0x780 [ 1862.670436] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1862.686075] ? alloc_loaded_vmcs+0x240/0x240 [ 1862.690496] kvm_vm_ioctl+0x4ae/0x1430 [ 1862.694390] ? __lock_acquire+0x655/0x42a0 [ 1862.698629] ? kvm_vcpu_release+0xa0/0xa0 [ 1862.702775] ? check_preemption_disabled+0x35/0x240 [ 1862.707792] ? retint_kernel+0x2d/0x2d [ 1862.711682] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1862.716876] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1862.721185] syz-executor.3: page allocation failure: order:0 [ 1862.722592] ? check_preemption_disabled+0x35/0x240 [ 1862.722606] ? retint_kernel+0x2d/0x2d [ 1862.738228] ? do_vfs_ioctl+0x6fb/0xfe0 [ 1862.742211] ? kvm_vcpu_release+0xa0/0xa0 [ 1862.746363] do_vfs_ioctl+0x75a/0xfe0 [ 1862.750299] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1862.752596] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1862.755931] ? ioctl_preallocate+0x1a0/0x1a0 [ 1862.755953] ? security_file_ioctl+0x76/0xb0 [ 1862.755962] ? security_file_ioctl+0x83/0xb0 [ 1862.755973] SyS_ioctl+0x7f/0xb0 [ 1862.755982] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1862.755995] do_syscall_64+0x1d5/0x640 [ 1862.756011] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1862.756019] RIP: 0033:0x45ca59 [ 1862.756024] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1862.756035] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1862.756040] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1862.756046] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1862.756052] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1862.756057] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1862.766914] Mem-Info: [ 1862.785685] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1862.800475] active_anon:447127 inactive_anon:48677 isolated_anon:0 [ 1862.800475] active_file:8220 inactive_file:62516 isolated_file:0 [ 1862.800475] unevictable:2560 dirty:139 writeback:0 unstable:0 [ 1862.800475] slab_reclaimable:125711 slab_unreclaimable:330634 [ 1862.800475] mapped:65177 shmem:38045 pagetables:8710 bounce:0 [ 1862.800475] free:490335 free_pcp:312 free_cma:0 [ 1862.824160] (null) [ 1862.840960] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1862.852238] syz-executor.4 cpuset= [ 1862.895433] Node 1 active_anon:433128kB inactive_anon:35476kB active_file:32872kB inactive_file:250112kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36732kB dirty:624kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1862.918972] (null) [ 1862.937405] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1862.959811] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1862.994213] CPU: 0 PID: 25013 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1863.000511] lowmem_reserve[]: [ 1863.002098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1863.002103] Call Trace: [ 1863.002122] dump_stack+0x1b2/0x283 [ 1863.002140] warn_alloc.cold+0x96/0x1af [ 1863.002151] ? zone_watermark_ok_safe+0x250/0x250 [ 1863.002169] ? wait_for_completion_io+0x10/0x10 [ 1863.007233] 0 [ 1863.014606] __alloc_pages_nodemask+0x2129/0x2730 [ 1863.014636] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1863.014647] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1863.014673] ? do_raw_spin_unlock+0x164/0x250 [ 1863.014688] alloc_pages_current+0xe7/0x1e0 [ 1863.014702] kvm_mmu_create+0xd1/0x1c0 [ 1863.024187] 2559 [ 1863.024863] kvm_arch_vcpu_init+0x282/0x890 [ 1863.024877] ? alloc_pages_current+0xef/0x1e0 [ 1863.031517] 2559 [ 1863.034359] kvm_vcpu_init+0x26d/0x360 [ 1863.034375] vmx_create_vcpu+0xf5/0x2950 [ 1863.034391] ? __mutex_unlock_slowpath+0x75/0x780 [ 1863.034400] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1863.034412] ? alloc_loaded_vmcs+0x240/0x240 [ 1863.034429] kvm_vm_ioctl+0x4ae/0x1430 [ 1863.034440] ? __lock_acquire+0x655/0x42a0 [ 1863.034456] ? kvm_vcpu_release+0xa0/0xa0 [ 1863.041796] 2559 [ 1863.045902] ? check_preemption_disabled+0x35/0x240 [ 1863.045917] ? perf_trace_lock+0x109/0x4b0 [ 1863.045930] ? check_preemption_disabled+0x35/0x240 [ 1863.045986] ? perf_trace_lock+0x109/0x4b0 [ 1863.045997] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1863.053931] 2559 [ 1863.055296] ? futex_exit_release+0x60/0x60 [ 1863.055311] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1863.055323] ? lock_acquire+0x170/0x3f0 [ 1863.055336] ? kvm_vcpu_release+0xa0/0xa0 [ 1863.055348] do_vfs_ioctl+0x75a/0xfe0 [ 1863.055362] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1863.063529] ? ioctl_preallocate+0x1a0/0x1a0 [ 1863.063552] ? security_file_ioctl+0x76/0xb0 [ 1863.063561] ? security_file_ioctl+0x83/0xb0 [ 1863.063572] SyS_ioctl+0x7f/0xb0 [ 1863.063580] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1863.063592] do_syscall_64+0x1d5/0x640 [ 1863.063609] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1863.063622] RIP: 0033:0x45ca59 [ 1863.072280] Node 0 [ 1863.074446] RSP: 002b:00007f3eca8bfc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1863.074457] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1863.074463] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1863.074468] RBP: 000000000078c040 R08: 0000000000000000 R09: 0000000000000000 [ 1863.074474] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1863.074480] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca8c06d4 [ 1863.075008] / [ 1863.080442] DMA32 free:36188kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:528kB local_pcp:216kB free_cma:0kB [ 1863.080576] mems_allowed=0-1 [ 1863.092662] lowmem_reserve[]: [ 1863.094880] CPU: 0 PID: 25008 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1863.100554] 0 [ 1863.103031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1863.103036] Call Trace: [ 1863.103054] dump_stack+0x1b2/0x283 [ 1863.103070] warn_alloc.cold+0x96/0x1af [ 1863.103082] ? zone_watermark_ok_safe+0x250/0x250 [ 1863.103102] ? wait_for_completion_io+0x10/0x10 [ 1863.103118] __alloc_pages_nodemask+0x2129/0x2730 [ 1863.103146] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1863.103157] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1863.103182] ? do_raw_spin_unlock+0x164/0x250 [ 1863.103197] alloc_pages_current+0xe7/0x1e0 [ 1863.103213] kvm_mmu_create+0xd1/0x1c0 [ 1863.103225] kvm_arch_vcpu_init+0x282/0x890 [ 1863.103234] ? alloc_pages_current+0xef/0x1e0 [ 1863.103248] kvm_vcpu_init+0x26d/0x360 [ 1863.103260] vmx_create_vcpu+0xf5/0x2950 [ 1863.103273] ? __mutex_unlock_slowpath+0x75/0x780 [ 1863.103283] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1863.103296] ? alloc_loaded_vmcs+0x240/0x240 [ 1863.103313] kvm_vm_ioctl+0x4ae/0x1430 [ 1863.103325] ? __lock_acquire+0x655/0x42a0 [ 1863.103335] ? kvm_vcpu_release+0xa0/0xa0 [ 1863.103346] ? check_preemption_disabled+0x35/0x240 [ 1863.103357] ? perf_trace_lock+0x109/0x4b0 [ 1863.103370] ? check_preemption_disabled+0x35/0x240 [ 1863.103382] ? perf_trace_lock+0x109/0x4b0 [ 1863.103390] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1863.103398] ? futex_exit_release+0x60/0x60 [ 1863.103411] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1863.103422] ? lock_acquire+0x170/0x3f0 [ 1863.103433] ? kvm_vcpu_release+0xa0/0xa0 [ 1863.103444] do_vfs_ioctl+0x75a/0xfe0 [ 1863.103457] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1863.103468] ? ioctl_preallocate+0x1a0/0x1a0 [ 1863.103490] ? security_file_ioctl+0x76/0xb0 [ 1863.103499] ? security_file_ioctl+0x83/0xb0 [ 1863.103510] SyS_ioctl+0x7f/0xb0 [ 1863.103523] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1863.108147] 0 [ 1863.111872] do_syscall_64+0x1d5/0x640 [ 1863.111891] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1863.111900] RIP: 0033:0x45ca59 [ 1863.111906] RSP: 002b:00007f56a4249c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1863.127830] 0 [ 1863.128259] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1863.128265] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000008 [ 1863.128272] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.128278] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1863.128288] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a424a6d4 [ 1863.138317] 0 [ 1863.487124] syz-executor.1: [ 1863.490774] 0 [ 1863.502825] page allocation failure: order:0 [ 1863.520593] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1863.528796] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1863.528819] lowmem_reserve[]: 0 0 0 0 0 [ 1863.528842] Node 1 Normal free:1914948kB min:53592kB low:66988kB high:80384kB active_anon:432764kB inactive_anon:35476kB active_file:32872kB inactive_file:250112kB unevictable:0kB writepending:688kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3104kB pagetables:6440kB bounce:0kB free_pcp:1324kB local_pcp:612kB free_cma:0kB [ 1863.528864] lowmem_reserve[]: 0 0 0 0 0 [ 1863.528885] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1863.528972] Node 0 DMA32: 1177*4kB (UMEH) 767*8kB (UMH) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 40*128kB (ME) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36188kB [ 1863.529051] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1863.529101] Node 1 Normal: 154*4kB (UME) 145*8kB (UME) 1558*16kB (UE) 874*32kB (UME) 243*64kB (UME) 35*128kB (UME) 15*256kB (UM) 13*512kB (UME) 5*1024kB (UM) 1*2048kB (M) 445*4096kB (M) = 1915088kB [ 1863.529193] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 02:42:43 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r6, 0x80045530, &(0x7f0000000000)=""/175) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:43 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) 02:42:43 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 02:42:43 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:43 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x2, 0x0) r3 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000100)={r3}) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) write$binfmt_elf32(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x589) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_NMI(r7, 0xae9a) ioctl$KVM_RUN(r7, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_GET_XSAVE(0xffffffffffffffff, 0x9000aea4, &(0x7f0000002980)) ioctl$PPPIOCGFLAGS1(0xffffffffffffffff, 0x8004745a, &(0x7f0000000180)) r8 = dup3(r4, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r8, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x4e23, @dev}}) [ 1863.529199] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1863.529206] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1863.529213] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1863.529217] 79518 total pagecache pages [ 1863.529227] 0 pages in swap cache [ 1863.529233] Swap cache stats: add 0, delete 0, find 0/0 [ 1863.529237] Free swap = 0kB [ 1863.529241] Total swap = 0kB [ 1863.529248] 1965979 pages RAM 02:42:43 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) [ 1863.529252] 0 pages HighMem/MovableOnly [ 1863.529256] 338456 pages reserved [ 1863.529259] 0 pages cma reserved [ 1863.792125] (null) [ 1863.794436] syz-executor.1 cpuset=/ mems_allowed=0-1 [ 1863.804912] CPU: 0 PID: 25006 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 1863.812821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1863.822180] Call Trace: [ 1863.822709] syz-executor.3: [ 1863.825724] dump_stack+0x1b2/0x283 [ 1863.825740] warn_alloc.cold+0x96/0x1af [ 1863.825752] ? zone_watermark_ok_safe+0x250/0x250 [ 1863.841241] ? check_preemption_disabled+0x35/0x240 [ 1863.846263] ? retint_kernel+0x2d/0x2d [ 1863.846918] page allocation failure: order:0 [ 1863.850164] __alloc_pages_nodemask+0x2129/0x2730 [ 1863.850194] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1863.850206] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1863.854817] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1863.859433] ? check_preemption_disabled+0x35/0x240 [ 1863.859450] alloc_pages_current+0xe7/0x1e0 [ 1863.859466] kvm_mmu_create+0xd1/0x1c0 [ 1863.859478] kvm_arch_vcpu_init+0x282/0x890 [ 1863.864829] (null) [ 1863.869138] ? alloc_pages_current+0xef/0x1e0 [ 1863.869154] kvm_vcpu_init+0x26d/0x360 [ 1863.869170] vmx_create_vcpu+0xf5/0x2950 [ 1863.869189] ? alloc_loaded_vmcs+0x240/0x240 [ 1863.869201] ? arch_uninstall_hw_breakpoint.cold+0x20/0x20 [ 1863.876447] syz-executor.3 cpuset= [ 1863.880079] kvm_vm_ioctl+0x4ae/0x1430 [ 1863.880094] ? __lock_acquire+0x655/0x42a0 [ 1863.880106] ? kvm_vcpu_release+0xa0/0xa0 [ 1863.880116] ? check_preemption_disabled+0x35/0x240 [ 1863.880128] ? retint_kernel+0x2d/0x2d [ 1863.884839] / [ 1863.888311] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1863.893058] mems_allowed=0-1 [ 1863.894754] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1863.894770] ? check_preemption_disabled+0x35/0x240 [ 1863.894782] ? retint_kernel+0x2d/0x2d [ 1863.894799] ? do_vfs_ioctl+0x76/0xfe0 [ 1863.894811] ? kvm_vcpu_release+0xa0/0xa0 [ 1863.973791] do_vfs_ioctl+0x75a/0xfe0 [ 1863.977597] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1863.983217] ? ioctl_preallocate+0x1a0/0x1a0 [ 1863.987615] ? security_file_ioctl+0x76/0xb0 [ 1863.992003] ? security_file_ioctl+0x83/0xb0 [ 1863.996492] SyS_ioctl+0x7f/0xb0 [ 1863.999839] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1864.003796] do_syscall_64+0x1d5/0x640 [ 1864.007672] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1864.012849] RIP: 0033:0x45ca59 [ 1864.016020] RSP: 002b:00007f9232553c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1864.023709] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1864.030962] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1864.038233] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1864.045483] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1864.052734] R13: 000000000000039c R14: 00000000004c635c R15: 00007f92325546d4 [ 1864.060001] CPU: 1 PID: 25060 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1864.067888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1864.077242] Call Trace: [ 1864.079828] dump_stack+0x1b2/0x283 [ 1864.083440] warn_alloc.cold+0x96/0x1af [ 1864.087393] ? zone_watermark_ok_safe+0x250/0x250 [ 1864.092222] ? wait_for_completion_io+0x10/0x10 [ 1864.096879] __alloc_pages_nodemask+0x2129/0x2730 [ 1864.101712] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1864.106535] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1864.111366] ? do_raw_spin_unlock+0x164/0x250 [ 1864.115846] alloc_pages_current+0xe7/0x1e0 [ 1864.120151] kvm_mmu_create+0xd1/0x1c0 [ 1864.124018] kvm_arch_vcpu_init+0x282/0x890 [ 1864.128316] ? alloc_pages_current+0xef/0x1e0 [ 1864.132791] kvm_vcpu_init+0x26d/0x360 [ 1864.136674] vmx_create_vcpu+0xf5/0x2950 [ 1864.140726] ? __mutex_unlock_slowpath+0x75/0x780 [ 1864.145556] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1864.150561] ? alloc_loaded_vmcs+0x240/0x240 [ 1864.154954] kvm_vm_ioctl+0x4ae/0x1430 [ 1864.158822] ? __lock_acquire+0x655/0x42a0 [ 1864.163047] ? kvm_vcpu_release+0xa0/0xa0 [ 1864.167184] ? check_preemption_disabled+0x35/0x240 [ 1864.172178] ? perf_trace_lock+0x109/0x4b0 [ 1864.176392] ? check_preemption_disabled+0x35/0x240 [ 1864.181386] ? perf_trace_lock+0x109/0x4b0 [ 1864.185598] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1864.190503] ? futex_exit_release+0x60/0x60 [ 1864.194803] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1864.199711] ? lock_acquire+0x170/0x3f0 [ 1864.203668] ? kvm_vcpu_release+0xa0/0xa0 [ 1864.207808] do_vfs_ioctl+0x75a/0xfe0 [ 1864.211590] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1864.217193] ? ioctl_preallocate+0x1a0/0x1a0 [ 1864.221588] ? security_file_ioctl+0x76/0xb0 [ 1864.225987] ? security_file_ioctl+0x83/0xb0 [ 1864.230375] SyS_ioctl+0x7f/0xb0 [ 1864.233719] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1864.241773] do_syscall_64+0x1d5/0x640 [ 1864.245651] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1864.250819] RIP: 0033:0x45ca59 [ 1864.253985] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1864.261683] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1864.269973] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1864.277226] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1864.284472] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 02:42:43 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1864.291726] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1864.347109] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1864.370659] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1864.376606] CPU: 1 PID: 25073 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1864.384499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1864.393859] Call Trace: [ 1864.396454] dump_stack+0x1b2/0x283 [ 1864.400092] warn_alloc.cold+0x96/0x1af [ 1864.404070] ? zone_watermark_ok_safe+0x250/0x250 [ 1864.408964] ? wait_for_completion_io+0x10/0x10 [ 1864.413638] __alloc_pages_nodemask+0x2129/0x2730 [ 1864.418505] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1864.423348] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1864.428217] ? do_raw_spin_unlock+0x164/0x250 [ 1864.432365] warn_alloc_show_mem: 2 callbacks suppressed [ 1864.432369] Mem-Info: [ 1864.432712] alloc_pages_current+0xe7/0x1e0 [ 1864.438178] active_anon:447131 inactive_anon:48677 isolated_anon:0 [ 1864.438178] active_file:8220 inactive_file:62540 isolated_file:0 [ 1864.438178] unevictable:2560 dirty:200 writeback:0 unstable:0 [ 1864.438178] slab_reclaimable:125738 slab_unreclaimable:330288 [ 1864.438178] mapped:65175 shmem:38045 pagetables:8725 bounce:0 [ 1864.438178] free:490599 free_pcp:391 free_cma:0 [ 1864.440449] kvm_mmu_create+0xd1/0x1c0 [ 1864.440463] kvm_arch_vcpu_init+0x282/0x890 [ 1864.458814] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1864.479209] ? alloc_pages_current+0xef/0x1e0 [ 1864.479226] kvm_vcpu_init+0x26d/0x360 [ 1864.479239] vmx_create_vcpu+0xf5/0x2950 [ 1864.479252] ? __mutex_unlock_slowpath+0x75/0x780 [ 1864.479261] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1864.479273] ? alloc_loaded_vmcs+0x240/0x240 [ 1864.479287] kvm_vm_ioctl+0x4ae/0x1430 [ 1864.479298] ? __lock_acquire+0x655/0x42a0 [ 1864.479309] ? kvm_vcpu_release+0xa0/0xa0 [ 1864.479317] ? check_preemption_disabled+0x35/0x240 [ 1864.479329] ? perf_trace_lock+0x109/0x4b0 [ 1864.483980] Node 1 active_anon:433132kB inactive_anon:35476kB active_file:32872kB inactive_file:250160kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36100kB dirty:800kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1864.487513] ? check_preemption_disabled+0x35/0x240 02:42:44 executing program 0: sched_setscheduler(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1864.487527] ? perf_trace_lock+0x109/0x4b0 [ 1864.487537] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1864.532918] Node 0 [ 1864.533026] ? futex_exit_release+0x60/0x60 [ 1864.538066] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1864.542441] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1864.542454] ? lock_acquire+0x170/0x3f0 [ 1864.546386] lowmem_reserve[]: [ 1864.550535] ? kvm_vcpu_release+0xa0/0xa0 [ 1864.550550] do_vfs_ioctl+0x75a/0xfe0 [ 1864.558431] 0 [ 1864.559675] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1864.559687] ? ioctl_preallocate+0x1a0/0x1a0 [ 1864.577723] 2559 [ 1864.591919] ? security_file_ioctl+0x76/0xb0 [ 1864.591928] ? security_file_ioctl+0x83/0xb0 [ 1864.591939] SyS_ioctl+0x7f/0xb0 [ 1864.591946] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1864.591958] do_syscall_64+0x1d5/0x640 02:42:44 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1864.591974] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1864.591981] RIP: 0033:0x45ca59 [ 1864.591986] RSP: 002b:00007f56a4249c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1864.627545] syz-executor.2: [ 1864.638832] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1864.638839] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009 [ 1864.638845] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1864.638850] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1864.638855] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a424a6d4 [ 1864.756523] 2559 2559 2559 [ 1864.759487] Node 0 DMA32 free:36188kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:532kB local_pcp:316kB free_cma:0kB [ 1864.818665] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1864.824672] page allocation failure: order:0 [ 1864.841758] syz-executor.5 cpuset= [ 1864.843778] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1864.850986] / mems_allowed=0-1 [ 1864.870156] CPU: 1 PID: 25098 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1864.875557] syz-executor.2 cpuset= [ 1864.878050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1864.878056] Call Trace: [ 1864.878078] dump_stack+0x1b2/0x283 [ 1864.881637] / [ 1864.890944] warn_alloc.cold+0x96/0x1af [ 1864.894210] mems_allowed=0-1 [ 1864.897110] ? zone_watermark_ok_safe+0x250/0x250 [ 1864.897130] ? wait_for_completion_io+0x10/0x10 [ 1864.915339] __alloc_pages_nodemask+0x2129/0x2730 [ 1864.920278] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1864.925113] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1864.929945] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1864.934711] alloc_pages_current+0xe7/0x1e0 [ 1864.939027] kvm_mmu_create+0xd1/0x1c0 [ 1864.942906] kvm_arch_vcpu_init+0x282/0x890 [ 1864.947223] ? alloc_pages_current+0xef/0x1e0 [ 1864.951708] kvm_vcpu_init+0x26d/0x360 [ 1864.955590] vmx_create_vcpu+0xf5/0x2950 [ 1864.959646] ? alloc_loaded_vmcs+0x240/0x240 [ 1864.964043] ? check_tsc_unstable+0x6/0x10 [ 1864.968272] kvm_vm_ioctl+0x4ae/0x1430 [ 1864.972152] ? __lock_acquire+0x655/0x42a0 [ 1864.976391] ? kvm_vcpu_release+0xa0/0xa0 [ 1864.980545] ? check_preemption_disabled+0x35/0x240 [ 1864.985554] ? perf_trace_lock+0x109/0x4b0 [ 1864.989783] ? check_preemption_disabled+0x35/0x240 [ 1864.992899] lowmem_reserve[]: [ 1864.994785] ? perf_trace_lock+0x109/0x4b0 [ 1864.994793] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1864.994801] ? futex_exit_release+0x60/0x60 [ 1864.994811] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1864.994821] ? lock_acquire+0x170/0x3f0 [ 1864.994832] ? kvm_vcpu_release+0xa0/0xa0 [ 1864.994841] do_vfs_ioctl+0x75a/0xfe0 [ 1864.994852] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1864.994861] ? ioctl_preallocate+0x1a0/0x1a0 [ 1864.994880] ? security_file_ioctl+0x76/0xb0 [ 1864.994890] ? security_file_ioctl+0x83/0xb0 [ 1864.994901] SyS_ioctl+0x7f/0xb0 [ 1864.994908] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1864.994922] do_syscall_64+0x1d5/0x640 [ 1864.994939] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1864.994946] RIP: 0033:0x45ca59 [ 1864.994951] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1864.994963] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1864.994968] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1864.994973] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1864.994979] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1864.994985] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1865.119548] CPU: 0 PID: 25059 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1865.127454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1865.136819] Call Trace: [ 1865.139424] dump_stack+0x1b2/0x283 [ 1865.143060] warn_alloc.cold+0x96/0x1af [ 1865.147043] ? zone_watermark_ok_safe+0x250/0x250 [ 1865.151898] ? wait_for_completion_io+0x10/0x10 [ 1865.156576] __alloc_pages_nodemask+0x2129/0x2730 [ 1865.161434] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1865.166279] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1865.171117] ? retint_kernel+0x2d/0x2d [ 1865.175005] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1865.179743] ? retint_kernel+0x2d/0x2d [ 1865.183617] alloc_pages_current+0xe7/0x1e0 [ 1865.187934] kvm_mmu_create+0xd1/0x1c0 [ 1865.191820] kvm_arch_vcpu_init+0x282/0x890 [ 1865.196120] ? alloc_pages_current+0xef/0x1e0 [ 1865.200597] kvm_vcpu_init+0x26d/0x360 [ 1865.204468] vmx_create_vcpu+0xf5/0x2950 [ 1865.208511] ? __mutex_unlock_slowpath+0x75/0x780 [ 1865.213334] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1865.218329] ? alloc_loaded_vmcs+0x240/0x240 [ 1865.222718] kvm_vm_ioctl+0x4ae/0x1430 [ 1865.226590] ? __lock_acquire+0x655/0x42a0 [ 1865.230808] ? kvm_vcpu_release+0xa0/0xa0 [ 1865.234934] ? check_preemption_disabled+0x35/0x240 [ 1865.239929] ? perf_trace_lock+0x109/0x4b0 [ 1865.244156] ? check_preemption_disabled+0x35/0x240 [ 1865.249240] ? perf_trace_lock+0x109/0x4b0 [ 1865.253458] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1865.258379] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1865.263117] ? kvm_vcpu_release+0xa0/0xa0 [ 1865.267242] do_vfs_ioctl+0x75a/0xfe0 [ 1865.271021] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1865.276623] ? ioctl_preallocate+0x1a0/0x1a0 [ 1865.281029] ? security_file_ioctl+0x76/0xb0 [ 1865.285416] ? security_file_ioctl+0x83/0xb0 [ 1865.289809] SyS_ioctl+0x7f/0xb0 [ 1865.293153] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1865.297117] do_syscall_64+0x1d5/0x640 [ 1865.300987] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1865.306165] RIP: 0033:0x45ca59 [ 1865.309342] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1865.317027] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1865.324273] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1865.331535] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1865.338788] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1865.346035] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1865.409340] 0 0 0 0 0 [ 1865.411930] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1865.451405] lowmem_reserve[]: 0 0 0 0 0 [ 1865.456216] Node 1 Normal free:1917348kB min:53592kB low:66988kB high:80384kB active_anon:432932kB inactive_anon:35476kB active_file:32872kB inactive_file:250160kB unevictable:0kB writepending:800kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:2816kB pagetables:6396kB bounce:0kB free_pcp:1072kB local_pcp:624kB free_cma:0kB [ 1865.488383] lowmem_reserve[]: 0 0 0 0 0 [ 1865.492427] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1865.509853] Node 0 DMA32: 1177*4kB (UMEH) 775*8kB (UMH) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 40*128kB (ME) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36252kB [ 1865.527031] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1865.538321] Node 1 Normal: 218*4kB (UME) 182*8kB (UME) 1197*16kB (UME) 882*32kB (UME) 242*64kB (UME) 64*128kB (UME) 29*256kB (UM) 15*512kB (UME) 5*1024kB (UM) 1*2048kB (M) 445*4096kB (M) = 1918376kB [ 1865.557060] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1865.566218] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1865.575024] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1865.584013] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1865.592589] 79548 total pagecache pages [ 1865.597187] 0 pages in swap cache [ 1865.600740] Swap cache stats: add 0, delete 0, find 0/0 [ 1865.607407] Free swap = 0kB 02:42:45 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) 02:42:45 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r1, r2, 0x80000) 02:42:45 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:45 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:45 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/btrfs-control\x00', 0x2, 0x0) r3 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000100)={r3}) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) write$binfmt_elf32(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x589) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_NMI(r7, 0xae9a) ioctl$KVM_RUN(r7, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_GET_XSAVE(0xffffffffffffffff, 0x9000aea4, &(0x7f0000002980)) ioctl$PPPIOCGFLAGS1(0xffffffffffffffff, 0x8004745a, &(0x7f0000000180)) r8 = dup3(r4, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r8, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x4e23, @dev}}) 02:42:45 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x41bd, 0x4838c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00') sendmsg$NL80211_CMD_GET_KEY(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0xb8}, 0x1, 0x0, 0x0, 0x20040800}, 0x40000) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r7, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd9, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r2, r4, 0x80000) dup2(r1, r5) [ 1865.610428] Total swap = 0kB [ 1865.614272] 1965979 pages RAM [ 1865.617408] 0 pages HighMem/MovableOnly [ 1865.621368] 338456 pages reserved [ 1865.625125] 0 pages cma reserved [ 1865.740023] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1865.758923] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1865.762019] syz-executor.5: [ 1865.764952] CPU: 1 PID: 25128 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1865.768882] page allocation failure: order:0 [ 1865.775851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1865.775857] Call Trace: [ 1865.775876] dump_stack+0x1b2/0x283 [ 1865.775893] warn_alloc.cold+0x96/0x1af [ 1865.775903] ? zone_watermark_ok_safe+0x250/0x250 [ 1865.775921] ? wait_for_completion_io+0x10/0x10 [ 1865.775937] __alloc_pages_nodemask+0x2129/0x2730 [ 1865.775965] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1865.775977] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1865.776001] ? do_raw_spin_unlock+0x164/0x250 [ 1865.776016] alloc_pages_current+0xe7/0x1e0 [ 1865.776031] kvm_mmu_create+0xd1/0x1c0 [ 1865.776044] kvm_arch_vcpu_init+0x282/0x890 [ 1865.776054] ? alloc_pages_current+0xef/0x1e0 [ 1865.776067] kvm_vcpu_init+0x26d/0x360 [ 1865.776080] vmx_create_vcpu+0xf5/0x2950 [ 1865.776094] ? __mutex_unlock_slowpath+0x75/0x780 [ 1865.776104] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1865.776116] ? alloc_loaded_vmcs+0x240/0x240 [ 1865.776131] kvm_vm_ioctl+0x4ae/0x1430 [ 1865.776143] ? __lock_acquire+0x655/0x42a0 [ 1865.776153] ? kvm_vcpu_release+0xa0/0xa0 [ 1865.776164] ? check_preemption_disabled+0x35/0x240 [ 1865.776177] ? perf_trace_lock+0x109/0x4b0 [ 1865.776188] ? check_preemption_disabled+0x35/0x240 [ 1865.776200] ? perf_trace_lock+0x109/0x4b0 [ 1865.776209] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1865.776217] ? futex_exit_release+0x60/0x60 [ 1865.776229] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1865.776241] ? lock_acquire+0x170/0x3f0 [ 1865.776292] ? kvm_vcpu_release+0xa0/0xa0 [ 1865.776301] do_vfs_ioctl+0x75a/0xfe0 [ 1865.776310] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1865.776319] ? ioctl_preallocate+0x1a0/0x1a0 [ 1865.776339] ? security_file_ioctl+0x76/0xb0 [ 1865.776347] ? security_file_ioctl+0x83/0xb0 [ 1865.776357] SyS_ioctl+0x7f/0xb0 [ 1865.776365] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1865.776378] do_syscall_64+0x1d5/0x640 [ 1865.776395] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1865.776404] RIP: 0033:0x45ca59 [ 1865.776409] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1865.776421] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1865.776426] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1865.776432] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1865.776437] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1865.776442] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1865.784790] warn_alloc_show_mem: 4 callbacks suppressed [ 1865.784794] Mem-Info: [ 1865.807280] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1865.836025] active_anon:447124 inactive_anon:48677 isolated_anon:0 [ 1865.836025] active_file:8223 inactive_file:62555 isolated_file:0 [ 1865.836025] unevictable:2560 dirty:225 writeback:0 unstable:0 [ 1865.836025] slab_reclaimable:125762 slab_unreclaimable:329686 [ 1865.836025] mapped:65205 shmem:38045 pagetables:8703 bounce:0 [ 1865.836025] free:491326 free_pcp:298 free_cma:0 [ 1865.851630] (null) [ 1865.859413] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 02:42:45 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1865.860714] syz-executor.5 cpuset= [ 1865.868148] Node 1 active_anon:433104kB inactive_anon:35476kB active_file:32884kB inactive_file:250220kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36220kB dirty:900kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1865.873039] / [ 1865.876963] Node 0 [ 1865.883732] mems_allowed=0-1 [ 1865.891095] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1865.898754] CPU: 0 PID: 25123 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1865.907899] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=6901 sclass=netlink_route_socket pid=25129 comm=syz-executor.2 [ 1865.911588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1865.911593] Call Trace: [ 1865.911612] dump_stack+0x1b2/0x283 [ 1865.911628] warn_alloc.cold+0x96/0x1af [ 1865.911642] ? zone_watermark_ok_safe+0x250/0x250 [ 1865.916764] lowmem_reserve[]: [ 1865.920515] ? check_preemption_disabled+0x35/0x240 [ 1865.920542] __alloc_pages_nodemask+0x2129/0x2730 [ 1865.920569] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1865.930874] 0 [ 1865.934094] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1865.934106] ? retint_kernel+0x2d/0x2d [ 1865.934127] ? retint_kernel+0x2d/0x2d [ 1865.934148] alloc_pages_current+0xe7/0x1e0 [ 1865.934163] kvm_mmu_create+0xd1/0x1c0 [ 1865.934177] kvm_arch_vcpu_init+0x282/0x890 [ 1865.942031] 2559 [ 1865.942963] ? alloc_pages_current+0xef/0x1e0 [ 1865.942977] kvm_vcpu_init+0x26d/0x360 [ 1865.942991] vmx_create_vcpu+0xf5/0x2950 [ 1865.943006] ? __mutex_unlock_slowpath+0x75/0x780 [ 1865.943019] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1865.950411] 2559 [ 1865.950802] ? alloc_loaded_vmcs+0x240/0x240 [ 1865.956186] 2559 [ 1865.958640] kvm_vm_ioctl+0x4ae/0x1430 [ 1865.958655] ? __lock_acquire+0x655/0x42a0 [ 1865.958665] ? kvm_vcpu_release+0xa0/0xa0 02:42:45 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1865.958676] ? check_preemption_disabled+0x35/0x240 [ 1865.963957] 2559 [ 1865.967047] ? perf_trace_lock+0x109/0x4b0 [ 1865.967061] ? check_preemption_disabled+0x35/0x240 [ 1865.967073] ? perf_trace_lock+0x109/0x4b0 [ 1865.967084] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1865.982027] ? futex_exit_release+0x60/0x60 [ 1865.982042] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1865.982055] ? lock_acquire+0x170/0x3f0 [ 1865.982070] ? kvm_vcpu_release+0xa0/0xa0 [ 1865.991525] Node 0 [ 1865.996576] do_vfs_ioctl+0x75a/0xfe0 [ 1865.996592] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1865.996603] ? ioctl_preallocate+0x1a0/0x1a0 [ 1865.996624] ? security_file_ioctl+0x76/0xb0 [ 1865.996632] ? security_file_ioctl+0x83/0xb0 [ 1865.996643] SyS_ioctl+0x7f/0xb0 [ 1865.996653] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1866.009658] DMA32 free:36252kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:536kB local_pcp:220kB free_cma:0kB [ 1866.011175] do_syscall_64+0x1d5/0x640 [ 1866.011195] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1866.011203] RIP: 0033:0x45ca59 [ 1866.011211] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 [ 1866.018791] lowmem_reserve[]: [ 1866.018954] ORIG_RAX: 0000000000000010 [ 1866.026580] 0 [ 1866.059254] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1866.059259] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 02:42:45 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1866.059264] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1866.059269] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1866.059275] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1866.459748] 0 0 0 0 [ 1866.462089] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1866.492403] lowmem_reserve[]: 0 0 0 0 0 [ 1866.496508] Node 1 Normal free:1917064kB min:53592kB low:66988kB high:80384kB active_anon:433044kB inactive_anon:35476kB active_file:32884kB inactive_file:250236kB unevictable:0kB writepending:988kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3328kB pagetables:6816kB bounce:0kB free_pcp:1028kB local_pcp:392kB free_cma:0kB [ 1866.529819] lowmem_reserve[]: 0 0 0 0 0 [ 1866.534104] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1866.551617] Node 0 DMA32: 1177*4kB (UMEH) 775*8kB (UMH) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 40*128kB (ME) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36252kB [ 1866.569127] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1866.581319] Node 1 Normal: 88*4kB (UME) 111*8kB (UME) 1159*16kB (UME) 863*32kB (UME) 242*64kB (UME) 65*128kB (UME) 28*256kB (UM) 18*512kB (UME) 5*1024kB (UM) 1*2048kB (M) 445*4096kB (M) = 1917480kB 02:42:46 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1866.632302] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1866.641676] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1866.651428] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1866.661819] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1866.677631] 79557 total pagecache pages 02:42:46 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r6, 0x80045530, &(0x7f0000000000)=""/175) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1866.687122] 0 pages in swap cache [ 1866.691503] Swap cache stats: add 0, delete 0, find 0/0 [ 1866.699092] Free swap = 0kB [ 1866.705621] Total swap = 0kB [ 1866.713391] 1965979 pages RAM [ 1866.718242] 0 pages HighMem/MovableOnly [ 1866.724981] 338456 pages reserved [ 1866.731565] 0 pages cma reserved 02:42:46 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1866.990867] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=6901 sclass=netlink_route_socket pid=25178 comm=syz-executor.2 02:42:46 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) 02:42:46 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:46 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:46 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r1, r2, 0x80000) 02:42:46 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:46 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key(&(0x7f0000000080)='pkcs7_test\x00', 0x0, &(0x7f0000000200)="3081a3", 0x1001, 0x0) r2 = request_key(&(0x7f0000000080)='pkcs7_test\x00', &(0x7f0000000100)={'syz', 0x1}, &(0x7f0000000140)='/dev/kvm\x00', 0x0) r3 = request_key(&(0x7f0000000180)='.dead\x00', &(0x7f00000001c0)={'syz', 0x1}, &(0x7f0000000200)='\x00', 0xfffffffffffffffc) keyctl$KEYCTL_MOVE(0x1e, 0x0, r2, r3, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r6, 0xae80, 0x0) dup3(r4, r5, 0x80000) r9 = dup2(r1, r6) ioctl$sock_SIOCGIFBR(r9, 0x8940, &(0x7f0000000040)=@add_del={0x2, &(0x7f0000000000)='veth0_vlan\x00'}) 02:42:46 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r1, r2, 0x80000) 02:42:46 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002580)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000200)=""/101, 0x65}, {&(0x7f0000000480)=""/126, 0x7e}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/131, 0x83}, {&(0x7f0000000280)=""/9, 0x9}, {&(0x7f0000000680)=""/140, 0x8c}, {&(0x7f0000000740)=""/95, 0x5f}], 0x8, &(0x7f0000000880)=""/25, 0x19}}, {{0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x4ac}, {{&(0x7f0000000a80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000e80)=""/110, 0x6e}, {0x0}], 0x2, &(0x7f00000014c0)=""/252, 0xfc}}], 0x3, 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000180)=[@in6={0xa, 0x4e22, 0x0, @ipv4={[0x0, 0x0, 0x0, 0xfec0000000000000], [], @local}}, @in={0x2, 0x0, @remote}], 0x2c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @local}], 0x20) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000400), 0xc, 0x0, 0x1, 0x0, 0x0, 0x88095}, 0x0) 02:42:47 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:47 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$phonet(0xffffffffffffffff, &(0x7f00000003c0)=""/4096, 0x1000, 0x1, &(0x7f00000000c0)={0x23, 0x2c, 0x4, 0x5}, 0x10) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = dup3(r2, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r3, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @dev}}) r4 = socket$inet(0x2, 0x3, 0x2) getsockopt(r4, 0x0, 0xce, 0x0, &(0x7f0000000000)) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYRES16, @ANYRES32=r8, @ANYBLOB="0000400000000005280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@ipv4_newaddr={0x20, 0x14, 0x121, 0x0, 0x0, {0x2, 0x1f, 0x0, 0x0, r8}, [@IFA_LOCAL={0x8, 0x2, @local}]}, 0x20}}, 0x0) sendmmsg$inet(r4, &(0x7f0000002800)=[{{&(0x7f0000001400)={0x2, 0x4e22, @rand_addr=0x64010102}, 0x10, &(0x7f0000002a40)=[{&(0x7f0000001440)="fd662e9cff", 0x5}, {&(0x7f0000001480)="9eac5c903a1bcbb61377651b963d523f9b37288b5a443877302869952ec61c632316c03f88a4e2ed99b50bec4310706015dd9e62a146a1329dd123d72e69ce04647f7090396192e11a4b8c551f3bab6a2b1711df00a39e2528dadf7e4daabc0e08a814bb52af24a6148346053bbda7722b11413b38682ed33d85381c644217dde4b1cdfe603829a858de2403d37baf72c44656d61b27e746d53d795c4dfdb9ef013032529684", 0xa6}, {&(0x7f0000001540)="8333984652d603906cc04f486c3baa5e27ef32ff290d18456fd39907bde6e4b8978dca429a7a462790bfb2ecce5e88ec31e2f8accb9c60fb2b9d9031fafa170db92fb3375fc71e080d7af7bbc2a6f1f1f70496efdc0d50cfa203abedde9db6b21473f91892e74adb3f912d8137d4cef049b641a61b9ff205dfc6974c119d840eb33243aadf5c1d4e75047abbd7132de339aefa1119f8efbe0a4a92c062941236af644cab99f3a63931fbbda4", 0xac}, {&(0x7f0000001600)="83ed2aa5433ac7531ce699f2bcce6699c52a23d47d2eae954075d925ed332193b5cba44ca79641b2bfb14bb7701f6f96e15d2257b7e13e087c7372b3a434ec365ed0a31b82ff5d816ac1e3c12e41653e4c8861d08379ffdda3a138774fc401bd72abee746ed1d0d76c130bf9a353f1369bddff26750a6c37dacd6f535750ce669b09cb0fa451e32efff0295ded8af267da88bee3", 0x94}, {&(0x7f00000016c0)="de5ddfe3a3798685c93a4e132a731d81f9b0ae648184c50046d9310e131b06bc7bfb76efc8a985ab85d6a80c24fc8ace81ff46edc3913cf430ff01291273b8aede30cd55fb258f9964dfafcce71f98ad63375c602837542b2a160230a5c85da16abe693221120968b179654b6333223f915295c136d97039a40be908c0e3967a628b4571f436f44597c22fc0519b9a91d2ac01b461c9d021ba48c1b7e75c18f6568f5e14edfd12510c68043451c186e6a288ec03ac1437160682eb26c3572e6989997ba1e464cd678e192b06af7b3f", 0xcf}, {&(0x7f0000002940)="f4878cf01e90efde58da30ba878d8da2c491f30798e1b256d98e9596687200d1ebad943c6d1162015d443cde38136585", 0x30}, {&(0x7f0000002980)="8894d6ab8483b1c243be20ea77ba93f0e8e687aa4ee652fee511860171e84c12d12d162b0b1f", 0x26}, {&(0x7f00000029c0)="8bf1e676febdb8a48ffe1698b5f5e539eb0fc2ec8703de7d6ed5dac0e0ded84b283ba831048a3ba495f5950ace0a23638df3bcc1a4890953fdc430d67a0b6893afb473c6967cd54248ca20e326ef29070a4bcd0df750e801f0c1b15eb832abb6391a91b6d8b6a98c17078b3c53", 0x6d}], 0x8, &(0x7f0000001840)=[@ip_retopts={{0x2c, 0x0, 0x7, {[@timestamp_addr={0x44, 0x1c, 0xeb, 0x1, 0x6, [{@remote, 0x2}, {@local, 0xfffffffd}, {@multicast1, 0x7fffffff}]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xfffffffe}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x1}}], 0x80}}, {{&(0x7f00000018c0)={0x2, 0x4e23, @broadcast}, 0x10, &(0x7f0000001940)=[{&(0x7f0000001900)="73788dcbb3178769e3fc5f85ae6a1317b245308a8ba4f5133c4f51b0f26b3e52edffe8d6c35d6a8c20fd63585d931d9a2a59318c1a20acc8499a275d5527e0", 0x3f}], 0x1}}, {{&(0x7f0000001980)={0x2, 0x4e23, @remote}, 0x10, &(0x7f0000001e80)=[{&(0x7f00000019c0)="aaa7b4a07448424567558966e65fe0833541cc79b0891c635ff2564ba68ac52afbcbf78a2724f93fc5de953ab201200339612a0ecc368c79d889b8f344a4645335e7ce4167c7214ea233d8", 0x4b}, {&(0x7f0000001a40)="9fc108ea0d73bf7217c6e671bad86c8e78f02cbccf7ed16d644108bdbd3c4fc67d4ebe455a7192f20fc9ca035944952281208cdaccd6db08f4ce344bbb5f79ea029a664c0b5274f41d8a104cb5410865779b3a5edfd8708a1eaa1d5cfae92bef19b5d221ec6e703d40a1ef03c835eb2be5060d9870b908d0999b18a59b2de81fa62766eb888bb2f1aebce0ed83d5bbe8afc809c816e083ae0b4c817434fcd25e3cc12934609c63d53d3864f9232f582d63b9a17f0a94ee68353047a57321d02e77c0ac092aa99572fa352e1193eca71191a30e64a7", 0xd5}, {&(0x7f0000001b40)="13e279b50d8144104704fe6c929f3384027ed299976490334c1939bb3b245aec5092e4bf3d8e3b8c1af20697af1517fcca1576da8d563d2aaad9c2cd10a5aadad019a0d6227bf0f336705eb45f950e2588db3c266410e99190067ed40842447a3962da3c601f41efed41b50220036c3118edb6ea3cfdf52224f1780f94dc5ac1d1f77cbcdca2bc70e7aa7cd56c3e65c35fc703802ad7d30d8470be7db5ca19b01d5f8888cb216b9a6a", 0xa9}, {&(0x7f0000001c00)="544a1d2d3143dc01c434ee6b1bc9aa9f8207a541ac59bd1231f3cc9956a0e737d2af97f683e7eb01c87eaafc3bafde4add6d96b333d39b821e5a6ecba6f184549691fdd16594b6f61086388273a84a37ae20bdd2c24be5217dd23f95117979d2c211b34ca6763bd7492b1b6e697890188c3e677d1f29db28c078a1360f809aabe20f4e66db1b01d3b2387309d7c49abb38245d5a41326bff4073b51eaee01b8f47c12ec73e300bf722c806b51e313c", 0xaf}, {&(0x7f0000001cc0)="ba08644db9d16116120994c968a9e2d478d0f312ec932fa4c4a5422229834387cb8e80bb208f4275d394e32cdc8582544f7288b86937954830346113674c533dabc9046784c0bc7a9e505c42b618ef48bd297ae863e1cc6144edbbf661b385305311fb668e98603e1ef0058215b5f1f6fcc3cbbca572533958433590ffc7104239b6a0a143e5ea", 0x87}, {&(0x7f0000001d80)="b10ed0cbb84eabd65422d663b70a8654d2b389f50e9f62976d7e395123f8a6dfaad993d3c361116b8ea33869f639baee5e1a4290b346bfbf9928eb70d41b89583093adf1b5f014a5b58323ff5818a505efb0ffa540d078839623c074f48366ebca84cec565cd96578f7044feece88546c2bc44c2b6736a41aab7e5197866d84dba1c9ecef5720cbc8637e65136f14a5e22cd85a3cd3dc1c863d7d12a216b31de9848bad8995b8395a3f695aee57f9f7d6da6faec2a2d2f208b288e8bb2863b66a4bfc7c6", 0xc4}], 0x6, &(0x7f0000001f00)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x9}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}], 0x30}}, {{&(0x7f0000001f40)={0x2, 0x4e24, @local}, 0x10, &(0x7f00000021c0)=[{&(0x7f0000001f80)="312f70f981b7f2616cfeb150ca96556043e27e91aa924cb7cebb4879811510aa40edb2666b057506997da3216dbdbd01f235708b8595d2fec836dcaaa18523a5f0dbb863de3f2bcc93da4a7ffe851164", 0x50}, {&(0x7f0000002000)="7916da68a2bec54bb56a5cc3d3108f4552143f4b3c43a6842ab3ef7f17c5080ede8a5e4ba3487851054159c6e44bf6740595373ea2dd184c19d1fb2d06da9315bb7ce5229f59a37491c1d12b7d96c03c8f07d46a", 0x54}, {&(0x7f0000002080)="e68f2e4494d542c64a342a0d5def2be66160a6c9d7285adfbd7967b21ca39de464aa8462957408a33204f2fcf7b5c5c70ef5d5219b9e4d5d893542ae59f46d50971fb153b93c5998e114064e9c6ac7815e13f0ffe3af9ff8bf84fa93d304b60978e85368c5b3925458f43c098280e2271f41923f69e94470be0314fee2be3f87247f0eca45440b5354febaa9b03e0a010264dee75b0e5d35eb897bce52fc79b199be7702c91060e73c6ce80f923dc7f969e3df3ca4026a44", 0xb8}, {&(0x7f0000002140)="0dd72c6e7a6bbe08a4b50609a18e0c62577901dce4ea6a14a65d43c9d4d8d997d90922f76a4eb4bd4cdf1bb6ff8069133599d5105c519e3dcaa20cb0b427e87fddf78e2efcdcde88fb8b19dbb102cc424d932a593aa357644aceed05d6733bea1a2202a5af0961b8bf6f", 0x6a}], 0x4}}, {{0x0, 0x0, &(0x7f00000026c0)=[{&(0x7f0000002200)="2b9f39c0a5d99f07c9803e8d71f769c0934f44350b0de2bda7e2600aa24becb5189b9f2536b098172c06f67636af0a785a59f0ff67b049", 0x37}, {&(0x7f0000002240)="d16d7d635137559c678ddba309be99a44cdb0f318d988d1724d8bccd2711dfe757ea6bab2e412d02496816af329506ace9cb1b1be01c0ce4e44b90eb3584f28a6538", 0x42}, {&(0x7f00000022c0)="ae904a88ced55cbf8552fb40d1e1be23da70ff3b79493379359ce8e4e8d6689cb7c5a6e7b6f3ecd3184ef5f3bb07fa11d75d137f80065827d2a850783a5f5e6f6ad8d258d415f039e0f1d0f76f625ea93f012cb05adb50234f2e64b5042d3ec3e880b55379b1473a4bce9ca92003170c8e89d7d1dd645746e36294f514b4fe9a36be6a7af6b54bba7fa4bad38c10749af7da08b886d976d5cc0ea3135448eedc8c60ecf2b9c7cdde0d3a3da29c99a91f57752a5385b464f52ced6ecc40ab61bd6768853f52600e792009a4218fe6e4166edaf280cc385f059e32a2477edf022d844d52df", 0xe4}, {&(0x7f00000023c0)="efc2b02d44e120ad5988369a52e188c703ebd16045cae021697d87d465435e80eb1833928225bc473eb7b2475301b628c58539e54f98c51dc8a65b52265bbadb73e31ee159a2ecea667e75052d0b3502b7195d5a4947b9c1a4c216671481e4e53f83e0058564c3db2cc2665183f1928df203f152b833db4b6e3b7cc826193dbb8cc85198a8730e984b9a14ee30be37baeb", 0x91}, {&(0x7f0000002480)="3e382d656e869066bcbb4779fea4262c68cdee4cd7a358b5d5c9aa72979a9b5aba53f524aa33cdea640924164077d9be583b3cc8ccd41a8ee9ce974fc96a2716efa569dcf6b382ce64f7dc19afc41af2453f7c957cdf690d3448b319cee8fd21af00f2a01c410e14b326a5d867ce1f712fb97649c2c1d39288eb40b04f96a51037e72c0d627123d5bf889120df2ff2c7d67c7aea99c3d778d4cdf3a862355a05ff00880e7f94531ad52ea4c0e65e2985c05ec953b556bd7f2be229e1ed52ca76cbc44d1b2b9381bf6d43ba6897bdc5462564639adeb0a7fa", 0xd8}, {&(0x7f0000002580)="1969320e453dd20ea789bd0cef1f594e511245fe312399f2ff26de3bb8416f4db7f029b135807fdbab4f1040fba524ab0bd33ae5459345323f3dcb990fe7c2136f4ba6f49e66c82c5db6af76b189ebb9e452886a92c91db29f63ab607e44405948656edb8fc38579ffb04c89", 0x6c}, {&(0x7f0000002600)="15d29a9807d037f2bc756a808b54acc84e23fc11580f07fa3d16cc3a4ae403e9936e9972a3d0aec0758c97f74ac69a8d9c7aa4757233c578a753d522aec64b4fb91fbe8ad447add1904c65d89b775b74ed874dcc9ebe0881dd3851014916cb34db6dc86cd97c94e5e59e7c5986d4e60d8eaa5f19007103a061f7d803a89db2f97418a49d7f0f57ec72a7a3612ed4a0f50abd54691e0b110685cc18", 0x9b}], 0x7, &(0x7f0000002740)=[@ip_retopts={{0xa0, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x14, 0x4b, 0x3, 0x0, [{@multicast2, 0x1ac}, {@local}]}, @cipso={0x86, 0x31, 0xffffffffffffffff, [{0x1, 0xe, "422ac5156e07db2663243094"}, {0x7, 0xb, "32ad91cba853f32bab"}, {0x5, 0x3, '\x00'}, {0x2, 0xf, "869882fbe610b7078402d11ec4"}]}, @cipso={0x86, 0x48, 0x1, [{0x0, 0x7, "64582afbfa"}, {0x2, 0xe, "223dc1ddf54615ba25f01fae"}, {0x0, 0x11, "23a3e41fc065e1aed0bfa4dcf17e34"}, {0x2, 0x7, "b09795e39e"}, {0x2, 0xb, "ad8700e8a7006e388d"}, {0x6, 0xa, "5f7f4da956c68d88"}]}]}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x3}}], 0xb8}}], 0x5, 0x1) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, &(0x7f00000013c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x88, 0x3, 0x1, 0x401, 0x0, 0x0, {0x5, 0x0, 0x5}, [@CTA_ID={0x8, 0xc, 0x1, 0x0, 0x2}, @CTA_NAT_SRC={0x24, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @broadcast}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast1}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @rand_addr=0x64010102}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @remote}]}, @CTA_LABELS={0x20, 0x16, 0x1, 0x0, [0x7, 0x5, 0x4, 0x1ff, 0xffffffff, 0x1, 0x5]}, @CTA_TUPLE_MASTER={0xc, 0xe, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_SYNPROXY={0x1c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x5}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x80000}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x5}]}]}, 0x88}}, 0x200440d4) [ 1867.728369] warn_alloc: 6 callbacks suppressed [ 1867.728387] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1867.797005] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1867.810295] CPU: 0 PID: 25259 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1867.818215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1867.827567] Call Trace: [ 1867.830162] dump_stack+0x1b2/0x283 [ 1867.833802] warn_alloc.cold+0x96/0x1af [ 1867.837788] ? zone_watermark_ok_safe+0x250/0x250 [ 1867.842648] ? wait_for_completion_io+0x10/0x10 [ 1867.847322] __alloc_pages_nodemask+0x2129/0x2730 [ 1867.852171] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1867.857004] ? mark_held_locks+0xa6/0xf0 [ 1867.861046] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1867.865870] ? retint_kernel+0x2d/0x2d [ 1867.869740] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1867.874577] ? retint_kernel+0x2d/0x2d [ 1867.878448] alloc_pages_current+0xe7/0x1e0 [ 1867.882751] kvm_mmu_create+0xd1/0x1c0 [ 1867.886619] kvm_arch_vcpu_init+0x282/0x890 [ 1867.890922] ? alloc_pages_current+0xef/0x1e0 [ 1867.895402] kvm_vcpu_init+0x26d/0x360 [ 1867.899274] vmx_create_vcpu+0xf5/0x2950 [ 1867.903317] ? __mutex_unlock_slowpath+0x75/0x780 [ 1867.908142] ? alloc_loaded_vmcs+0x240/0x240 [ 1867.912533] kvm_vm_ioctl+0x4ae/0x1430 [ 1867.916406] ? __lock_acquire+0x655/0x42a0 [ 1867.920621] ? kvm_vcpu_release+0xa0/0xa0 [ 1867.924748] ? check_preemption_disabled+0x35/0x240 [ 1867.930700] ? perf_trace_lock+0x109/0x4b0 [ 1867.934915] ? check_preemption_disabled+0x35/0x240 [ 1867.940071] ? perf_trace_lock+0x109/0x4b0 [ 1867.944302] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1867.949053] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1867.953967] ? retint_kernel+0x2d/0x2d [ 1867.957844] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1867.962838] ? kvm_vcpu_release+0xa0/0xa0 [ 1867.966965] do_vfs_ioctl+0x75a/0xfe0 [ 1867.970752] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1867.976353] ? check_preemption_disabled+0x35/0x240 [ 1867.981349] ? ioctl_preallocate+0x1a0/0x1a0 [ 1867.985755] ? security_file_ioctl+0x76/0xb0 [ 1867.990152] ? security_file_ioctl+0x83/0xb0 [ 1867.994555] SyS_ioctl+0x7f/0xb0 [ 1867.997913] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1868.001869] do_syscall_64+0x1d5/0x640 [ 1868.005739] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1868.010917] RIP: 0033:0x45ca59 [ 1868.014086] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1868.021773] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1868.029025] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1868.036285] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1868.043543] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1868.050801] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1868.110402] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1868.129147] warn_alloc_show_mem: 1 callbacks suppressed [ 1868.129168] Mem-Info: [ 1868.138822] active_anon:447159 inactive_anon:48677 isolated_anon:0 [ 1868.138822] active_file:8224 inactive_file:62566 isolated_file:0 [ 1868.138822] unevictable:2560 dirty:251 writeback:0 unstable:0 [ 1868.138822] slab_reclaimable:125868 slab_unreclaimable:329596 [ 1868.138822] mapped:65278 shmem:38045 pagetables:8710 bounce:0 [ 1868.138822] free:491072 free_pcp:343 free_cma:0 [ 1868.168482] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1868.180024] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1868.188688] syz-executor.1 cpuset= [ 1868.192940] CPU: 0 PID: 25276 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1868.192947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1868.192950] Call Trace: [ 1868.192967] dump_stack+0x1b2/0x283 [ 1868.192985] warn_alloc.cold+0x96/0x1af [ 1868.192995] ? zone_watermark_ok_safe+0x250/0x250 [ 1868.193015] ? wait_for_completion_io+0x10/0x10 [ 1868.193032] __alloc_pages_nodemask+0x2129/0x2730 [ 1868.193060] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1868.193072] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1868.193099] ? do_raw_spin_unlock+0x164/0x250 [ 1868.193114] alloc_pages_current+0xe7/0x1e0 [ 1868.193130] kvm_mmu_create+0xd1/0x1c0 [ 1868.193143] kvm_arch_vcpu_init+0x282/0x890 [ 1868.193152] ? alloc_pages_current+0xef/0x1e0 [ 1868.193167] kvm_vcpu_init+0x26d/0x360 [ 1868.193179] vmx_create_vcpu+0xf5/0x2950 [ 1868.193193] ? __mutex_unlock_slowpath+0x75/0x780 [ 1868.193202] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1868.193215] ? alloc_loaded_vmcs+0x240/0x240 [ 1868.193232] kvm_vm_ioctl+0x4ae/0x1430 [ 1868.193244] ? __lock_acquire+0x655/0x42a0 [ 1868.193255] ? kvm_vcpu_release+0xa0/0xa0 [ 1868.193266] ? check_preemption_disabled+0x35/0x240 [ 1868.193277] ? perf_trace_lock+0x109/0x4b0 [ 1868.193288] ? check_preemption_disabled+0x35/0x240 [ 1868.193301] ? perf_trace_lock+0x109/0x4b0 [ 1868.193308] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1868.193316] ? futex_exit_release+0x60/0x60 [ 1868.193329] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1868.193340] ? lock_acquire+0x170/0x3f0 [ 1868.193357] ? kvm_vcpu_release+0xa0/0xa0 [ 1868.211383] / [ 1868.214095] do_vfs_ioctl+0x75a/0xfe0 [ 1868.228190] mems_allowed=0-1 [ 1868.229060] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1868.229075] ? ioctl_preallocate+0x1a0/0x1a0 [ 1868.229097] ? security_file_ioctl+0x76/0xb0 [ 1868.229107] ? security_file_ioctl+0x83/0xb0 [ 1868.229119] SyS_ioctl+0x7f/0xb0 [ 1868.229128] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1868.229141] do_syscall_64+0x1d5/0x640 [ 1868.229158] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1868.388504] RIP: 0033:0x45ca59 [ 1868.391684] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1868.399387] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1868.406649] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1868.413909] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1868.421173] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1868.428781] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1868.440412] CPU: 1 PID: 25234 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 1868.449278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1868.451725] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1868.458628] Call Trace: [ 1868.458648] dump_stack+0x1b2/0x283 [ 1868.458662] warn_alloc.cold+0x96/0x1af [ 1868.458673] ? zone_watermark_ok_safe+0x250/0x250 [ 1868.458691] ? wait_for_completion_io+0x10/0x10 [ 1868.458706] __alloc_pages_nodemask+0x2129/0x2730 [ 1868.458732] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1868.458744] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1868.458754] ? retint_kernel+0x2d/0x2d [ 1868.458784] alloc_pages_current+0xe7/0x1e0 [ 1868.458799] kvm_mmu_create+0xd1/0x1c0 [ 1868.458812] kvm_arch_vcpu_init+0x282/0x890 [ 1868.458825] kvm_vcpu_init+0x26d/0x360 [ 1868.487365] Node 1 active_anon:433144kB inactive_anon:35476kB active_file:32888kB inactive_file:250264kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36312kB dirty:1004kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1868.489666] vmx_create_vcpu+0xf5/0x2950 [ 1868.489681] ? __mutex_unlock_slowpath+0x75/0x780 [ 1868.493360] Node 0 [ 1868.497243] ? alloc_loaded_vmcs+0x240/0x240 [ 1868.497255] ? kvm_vm_ioctl+0x490/0x1430 [ 1868.497269] kvm_vm_ioctl+0x4ae/0x1430 [ 1868.497282] ? __lock_acquire+0x655/0x42a0 [ 1868.497293] ? kvm_vcpu_release+0xa0/0xa0 [ 1868.497306] ? check_preemption_disabled+0x35/0x240 02:42:48 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r1, r2, 0x80000) [ 1868.502186] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1868.506828] ? perf_trace_lock+0x109/0x4b0 [ 1868.506839] ? check_preemption_disabled+0x35/0x240 [ 1868.506851] ? perf_trace_lock+0x109/0x4b0 [ 1868.506859] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1868.506871] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1868.506883] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1868.506893] ? retint_kernel+0x2d/0x2d [ 1868.506905] ? kvm_vcpu_release+0xa0/0xa0 [ 1868.506921] do_vfs_ioctl+0x75a/0xfe0 [ 1868.511845] lowmem_reserve[]: [ 1868.516557] ? check_preemption_disabled+0x35/0x240 [ 1868.516566] ? ioctl_preallocate+0x1a0/0x1a0 [ 1868.516583] ? do_vfs_ioctl+0x1f/0xfe0 [ 1868.516597] SyS_ioctl+0x7f/0xb0 [ 1868.516604] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1868.516618] do_syscall_64+0x1d5/0x640 [ 1868.516635] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1868.516648] RIP: 0033:0x45ca59 [ 1868.521479] 0 [ 1868.525327] RSP: 002b:00007f9232553c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1868.525338] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1868.525343] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1868.525349] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1868.525355] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1868.525361] R13: 000000000000039c R14: 00000000004c635c R15: 00007f92325546d4 [ 1868.621262] syz-executor.5: 02:42:48 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1868.675939] 2559 [ 1868.689187] page allocation failure: order:0 [ 1868.696993] 2559 [ 1868.700575] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1868.705346] 2559 [ 1868.716443] (null) [ 1868.728283] 2559 [ 1868.731889] syz-executor.5 cpuset= [ 1868.767708] / [ 1868.777100] Node 0 [ 1868.784720] mems_allowed=0-1 [ 1868.799811] CPU: 1 PID: 25258 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1868.807716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1868.817074] Call Trace: [ 1868.817696] DMA32 free:36180kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:512kB local_pcp:300kB free_cma:0kB [ 1868.819659] dump_stack+0x1b2/0x283 [ 1868.819676] warn_alloc.cold+0x96/0x1af [ 1868.819689] ? zone_watermark_ok_safe+0x250/0x250 [ 1868.861324] ? wait_for_completion_io+0x10/0x10 [ 1868.866008] __alloc_pages_nodemask+0x2129/0x2730 [ 1868.870875] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1868.875725] ? mark_held_locks+0xa6/0xf0 [ 1868.879789] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1868.884629] ? retint_kernel+0x2d/0x2d [ 1868.888525] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1868.893284] ? retint_kernel+0x2d/0x2d [ 1868.897180] alloc_pages_current+0xe7/0x1e0 [ 1868.901510] kvm_mmu_create+0xd1/0x1c0 [ 1868.905405] kvm_arch_vcpu_init+0x282/0x890 [ 1868.909723] ? alloc_pages_current+0xef/0x1e0 [ 1868.914222] kvm_vcpu_init+0x26d/0x360 [ 1868.918113] vmx_create_vcpu+0xf5/0x2950 [ 1868.919816] lowmem_reserve[]: [ 1868.922207] ? alloc_loaded_vmcs+0x240/0x240 [ 1868.922220] ? check_tsc_unstable+0x6/0x10 [ 1868.933921] kvm_vm_ioctl+0x4ae/0x1430 [ 1868.937813] ? __lock_acquire+0x655/0x42a0 [ 1868.942051] ? kvm_vcpu_release+0xa0/0xa0 [ 1868.946199] ? check_preemption_disabled+0x35/0x240 [ 1868.951214] ? retint_kernel+0x2d/0x2d [ 1868.954793] 0 [ 1868.955100] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1868.955115] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1868.956924] 0 [ 1868.961902] ? check_preemption_disabled+0x35/0x240 [ 1868.961914] ? retint_kernel+0x2d/0x2d [ 1868.961929] ? kvm_vcpu_release+0xa0/0xa0 [ 1868.978705] 0 [ 1868.981563] ? kvm_vm_ioctl+0x2/0x1430 [ 1868.981574] ? kvm_vcpu_release+0xa0/0xa0 [ 1868.984238] 0 [ 1868.987231] do_vfs_ioctl+0x75a/0xfe0 [ 1868.987246] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1868.991380] 0 [ 1868.993158] ? ioctl_preallocate+0x1a0/0x1a0 [ 1868.993178] ? security_file_ioctl+0x76/0xb0 [ 1868.993186] ? security_file_ioctl+0x83/0xb0 [ 1868.993196] SyS_ioctl+0x7f/0xb0 [ 1868.993203] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1868.993216] do_syscall_64+0x1d5/0x640 [ 1868.993234] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1868.993242] RIP: 0033:0x45ca59 [ 1868.993247] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1868.993258] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1868.993263] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1868.993269] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1868.993274] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1868.993280] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1869.032793] syz-executor.3: [ 1869.052262] page allocation failure: order:0 [ 1869.055968] Node 0 [ 1869.061620] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1869.072775] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1869.083661] (null) [ 1869.084732] lowmem_reserve[]: [ 1869.087106] syz-executor.3 cpuset= [ 1869.091564] 0 [ 1869.099597] / [ 1869.100392] 0 [ 1869.136088] mems_allowed=0-1 [ 1869.138160] 0 [ 1869.138714] CPU: 1 PID: 25314 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1869.140545] 0 [ 1869.143443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1869.143447] Call Trace: [ 1869.143467] dump_stack+0x1b2/0x283 [ 1869.143483] warn_alloc.cold+0x96/0x1af [ 1869.143493] ? zone_watermark_ok_safe+0x250/0x250 [ 1869.143512] ? wait_for_completion_io+0x10/0x10 [ 1869.143527] __alloc_pages_nodemask+0x2129/0x2730 [ 1869.143555] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1869.143567] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1869.143593] ? do_raw_spin_unlock+0x164/0x250 [ 1869.143607] alloc_pages_current+0xe7/0x1e0 [ 1869.143623] kvm_mmu_create+0xd1/0x1c0 [ 1869.143635] kvm_arch_vcpu_init+0x282/0x890 [ 1869.143645] ? alloc_pages_current+0xef/0x1e0 [ 1869.143658] kvm_vcpu_init+0x26d/0x360 [ 1869.143672] vmx_create_vcpu+0xf5/0x2950 [ 1869.143686] ? __mutex_unlock_slowpath+0x75/0x780 [ 1869.143696] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1869.143709] ? alloc_loaded_vmcs+0x240/0x240 [ 1869.143725] kvm_vm_ioctl+0x4ae/0x1430 [ 1869.143736] ? __lock_acquire+0x655/0x42a0 [ 1869.143746] ? kvm_vcpu_release+0xa0/0xa0 [ 1869.143755] ? check_preemption_disabled+0x35/0x240 [ 1869.143768] ? perf_trace_lock+0x109/0x4b0 [ 1869.143779] ? check_preemption_disabled+0x35/0x240 [ 1869.143791] ? perf_trace_lock+0x109/0x4b0 [ 1869.143800] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1869.143808] ? futex_exit_release+0x60/0x60 [ 1869.143820] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1869.143832] ? lock_acquire+0x170/0x3f0 [ 1869.143845] ? kvm_vcpu_release+0xa0/0xa0 [ 1869.143856] do_vfs_ioctl+0x75a/0xfe0 [ 1869.143869] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1869.143880] ? ioctl_preallocate+0x1a0/0x1a0 [ 1869.143903] ? security_file_ioctl+0x76/0xb0 [ 1869.143913] ? security_file_ioctl+0x83/0xb0 [ 1869.143924] SyS_ioctl+0x7f/0xb0 [ 1869.143932] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1869.143944] do_syscall_64+0x1d5/0x640 [ 1869.143961] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1869.143969] RIP: 0033:0x45ca59 [ 1869.143975] RSP: 002b:00007f3eca8e0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1869.143986] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1869.143992] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1869.143998] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1869.144004] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1869.144010] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca8e16d4 [ 1869.173252] warn_alloc_show_mem: 3 callbacks suppressed [ 1869.173256] Mem-Info: [ 1869.176715] 0 [ 1869.180588] active_anon:447139 inactive_anon:48677 isolated_anon:0 [ 1869.180588] active_file:8225 inactive_file:62577 isolated_file:0 [ 1869.180588] unevictable:2560 dirty:266 writeback:0 unstable:0 [ 1869.180588] slab_reclaimable:125876 slab_unreclaimable:330094 [ 1869.180588] mapped:65244 shmem:38045 pagetables:8725 bounce:0 [ 1869.180588] free:490583 free_pcp:461 free_cma:0 [ 1869.201121] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1869.206120] Node 1 [ 1869.210997] Node 1 active_anon:433164kB inactive_anon:35476kB active_file:32892kB inactive_file:250308kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36376kB dirty:1064kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1869.213622] Normal free:1918388kB min:53592kB low:66988kB high:80384kB active_anon:433164kB inactive_anon:35476kB active_file:32892kB inactive_file:250308kB unevictable:0kB writepending:1064kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3520kB pagetables:6840kB bounce:0kB free_pcp:1332kB local_pcp:616kB free_cma:0kB [ 1869.222632] Node 0 [ 1869.226536] lowmem_reserve[]: [ 1869.230232] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1869.235257] 0 [ 1869.246110] lowmem_reserve[]: [ 1869.248951] 0 [ 1869.253884] 0 [ 1869.260272] 0 [ 1869.262298] 2559 [ 1869.266907] 0 [ 1869.274466] 2559 [ 1869.280560] 0 [ 1869.281997] 2559 [ 1869.291407] 2559 [ 1869.298928] Node 0 [ 1869.308477] DMA: [ 1869.313270] Node 0 [ 1869.321560] 5*4kB [ 1869.325154] DMA32 free:36228kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:512kB local_pcp:212kB free_cma:0kB [ 1869.329062] (UM) [ 1869.333140] lowmem_reserve[]: [ 1869.345290] 3*8kB [ 1869.349522] 0 [ 1869.359688] (UM) [ 1869.364092] 0 [ 1869.376990] 2*16kB [ 1869.378876] 0 [ 1869.389061] (UM) [ 1869.392143] 0 [ 1869.399128] 3*32kB [ 1869.431791] 0 [ 1869.461817] (UME) [ 1869.520585] 1*64kB [ 1869.528803] Node 0 [ 1869.551936] (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) [ 1869.559009] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1869.559189] = 10348kB [ 1869.561005] lowmem_reserve[]: [ 1869.562954] Node 0 [ 1869.567153] 0 [ 1869.568918] DMA32: [ 1869.570744] 0 [ 1869.577264] 1177*4kB [ 1869.583343] 0 [ 1869.583893] (UMEH) [ 1869.614557] 0 [ 1869.622689] 772*8kB [ 1869.630532] 0 [ 1869.648871] (UMH) [ 1869.685198] 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 40*128kB (ME) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36228kB [ 1869.723667] Node 1 Normal free:1917788kB min:53592kB low:66988kB high:80384kB active_anon:433164kB inactive_anon:35476kB active_file:32892kB inactive_file:250308kB unevictable:0kB writepending:1064kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3456kB pagetables:6840kB bounce:0kB free_pcp:1320kB local_pcp:716kB free_cma:0kB [ 1869.727960] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1869.779125] Node 1 Normal: 149*4kB (UME) 33*8kB (UME) 895*16kB (UME) 863*32kB (UME) 254*64kB (UME) 65*128kB (UME) 39*256kB (UM) 20*512kB (UME) 5*1024kB (UM) 1*2048kB (M) 445*4096kB (M) = 1917484kB [ 1869.806103] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1869.822163] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1869.842146] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1869.851442] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1869.868711] 79572 total pagecache pages [ 1869.872584] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1869.877522] 0 pages in swap cache [ 1869.883919] syz-executor.4 cpuset=/ mems_allowed=0-1 [ 1869.893697] CPU: 1 PID: 25307 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1869.901587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1869.905895] Swap cache stats: add 0, delete 0, find 0/0 [ 1869.910932] Call Trace: [ 1869.910949] dump_stack+0x1b2/0x283 [ 1869.910964] warn_alloc.cold+0x96/0x1af [ 1869.918024] Free swap = 0kB [ 1869.918878] ? zone_watermark_ok_safe+0x250/0x250 [ 1869.918898] ? wait_for_completion_io+0x10/0x10 [ 1869.926266] Total swap = 0kB [ 1869.926458] __alloc_pages_nodemask+0x2129/0x2730 [ 1869.926485] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1869.929493] 1965979 pages RAM [ 1869.934299] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1869.934310] ? retint_kernel+0x2d/0x2d [ 1869.934328] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1869.934340] ? retint_kernel+0x2d/0x2d [ 1869.934356] alloc_pages_current+0xe7/0x1e0 [ 1869.934372] kvm_mmu_create+0xd1/0x1c0 [ 1869.934385] kvm_arch_vcpu_init+0x282/0x890 [ 1869.934395] ? alloc_pages_current+0xef/0x1e0 [ 1869.934409] kvm_vcpu_init+0x26d/0x360 [ 1869.934423] vmx_create_vcpu+0xf5/0x2950 [ 1869.934437] ? __mutex_unlock_slowpath+0x75/0x780 [ 1869.934446] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1869.934458] ? alloc_loaded_vmcs+0x240/0x240 [ 1869.934475] kvm_vm_ioctl+0x4ae/0x1430 [ 1869.934487] ? __lock_acquire+0x655/0x42a0 [ 1869.934498] ? kvm_vcpu_release+0xa0/0xa0 [ 1869.934508] ? check_preemption_disabled+0x35/0x240 [ 1869.934520] ? perf_trace_lock+0x109/0x4b0 [ 1869.934532] ? check_preemption_disabled+0x35/0x240 [ 1869.934545] ? perf_trace_lock+0x109/0x4b0 [ 1869.934552] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1869.934560] ? futex_exit_release+0x60/0x60 [ 1869.934573] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1869.934585] ? lock_acquire+0x170/0x3f0 [ 1869.934600] ? kvm_vcpu_release+0xa0/0xa0 [ 1869.946885] 0 pages HighMem/MovableOnly [ 1869.947095] do_vfs_ioctl+0x75a/0xfe0 [ 1869.947112] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1869.951935] 338456 pages reserved [ 1869.955011] ? ioctl_preallocate+0x1a0/0x1a0 [ 1869.955031] ? security_file_ioctl+0x76/0xb0 [ 1869.955040] ? security_file_ioctl+0x83/0xb0 [ 1869.955050] SyS_ioctl+0x7f/0xb0 [ 1869.955059] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1869.955072] do_syscall_64+0x1d5/0x640 [ 1869.955090] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1869.955098] RIP: 0033:0x45ca59 02:42:49 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r1, r2, 0x80000) 02:42:49 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002580)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000200)=""/101, 0x65}, {&(0x7f0000000480)=""/126, 0x7e}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/131, 0x83}, {&(0x7f0000000280)=""/9, 0x9}, {&(0x7f0000000680)=""/140, 0x8c}, {&(0x7f0000000740)=""/95, 0x5f}], 0x8, &(0x7f0000000880)=""/25, 0x19}}, {{0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x4ac}, {{&(0x7f0000000a80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000e80)=""/110, 0x6e}, {0x0}], 0x2, &(0x7f00000014c0)=""/252, 0xfc}}], 0x3, 0x0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000180)=[@in6={0xa, 0x4e22, 0x0, @ipv4={[0x0, 0x0, 0x0, 0xfec0000000000000], [], @local}}, @in={0x2, 0x0, @remote}], 0x2c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @local}], 0x20) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000400), 0xc, 0x0, 0x1, 0x0, 0x0, 0x88095}, 0x0) 02:42:49 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r1, r2, 0x80000) [ 1869.955104] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1869.955115] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1869.955121] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1869.955127] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1869.955133] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1869.955139] R13: 000000000000039c R14: 00000000004c635c R15: 00007f56a426b6d4 [ 1870.103327] lowmem_reserve[]: [ 1870.115615] 0 pages cma reserved 02:42:50 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) shutdown(0xffffffffffffffff, 0x0) dup2(r1, r0) mount(0x0, 0x0, 0x0, 0x0, 0x0) r2 = open(0x0, 0x0, 0x0) write$P9_RATTACH(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGPROP(r2, 0x80404509, &(0x7f00000000c0)=""/154) syz_emit_ethernet(0x14, &(0x7f0000000080)={@local, @random="09108200", @void, {@generic={0x8863, "39768977fed9"}}}, 0x0) [ 1870.549985] 0 0 0 0 0 [ 1870.556796] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1870.579003] Node 0 DMA32: 1177*4kB (UMEH) 768*8kB (UM) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 40*128kB (ME) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36196kB [ 1870.600887] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1870.614503] Node 1 Normal: 73*4kB (UME) 202*8kB (UE) 831*16kB (UME) 860*32kB (UME) 228*64kB (UME) 49*128kB (UME) 35*256kB (U) 12*512kB (UME) 3*1024kB (UM) 0*2048kB 445*4096kB (M) = 1904484kB [ 1870.636485] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 02:42:50 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) shutdown(0xffffffffffffffff, 0x0) dup2(r1, r0) mount(0x0, 0x0, 0x0, 0x0, 0x0) r2 = open(0x0, 0x0, 0x0) write$P9_RATTACH(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGPROP(r2, 0x80404509, &(0x7f00000000c0)=""/154) syz_emit_ethernet(0x14, &(0x7f0000000080)={@local, @random="09108200", @void, {@generic={0x8863, "39768977fed9"}}}, 0x0) [ 1870.657233] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1870.670424] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1870.680965] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1870.690997] 79585 total pagecache pages 02:42:50 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffffffffffffb, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) write$P9_RFSYNC(r7, &(0x7f0000000000)={0x7, 0x33, 0x1}, 0x7) r8 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:50 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) shutdown(0xffffffffffffffff, 0x0) dup2(r1, r0) mount(0x0, 0x0, 0x0, 0x0, 0x0) r2 = open(0x0, 0x0, 0x0) write$P9_RATTACH(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGPROP(r2, 0x80404509, &(0x7f00000000c0)=""/154) syz_emit_ethernet(0x14, &(0x7f0000000080)={@local, @random="09108200", @void, {@generic={0x8863, "39768977fed9"}}}, 0x0) [ 1870.728154] 0 pages in swap cache [ 1870.731746] Swap cache stats: add 0, delete 0, find 0/0 [ 1870.741137] Free swap = 0kB [ 1870.750502] Total swap = 0kB 02:42:50 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) shutdown(0xffffffffffffffff, 0x0) dup2(r1, r0) mount(0x0, 0x0, 0x0, 0x0, 0x0) r2 = open(0x0, 0x0, 0x0) write$P9_RATTACH(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGPROP(r2, 0x80404509, &(0x7f00000000c0)=""/154) [ 1870.800405] 1965979 pages RAM [ 1870.803823] 0 pages HighMem/MovableOnly [ 1870.809106] 338456 pages reserved [ 1870.814551] 0 pages cma reserved [ 1870.830076] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1870.869146] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1870.881081] CPU: 0 PID: 25374 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1870.889000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1870.898358] Call Trace: [ 1870.900952] dump_stack+0x1b2/0x283 [ 1870.904586] warn_alloc.cold+0x96/0x1af [ 1870.907708] syz-executor.1: [ 1870.908562] ? zone_watermark_ok_safe+0x250/0x250 [ 1870.908586] ? wait_for_completion_io+0x10/0x10 [ 1870.908602] __alloc_pages_nodemask+0x2129/0x2730 [ 1870.911741] page allocation failure: order:0 [ 1870.916455] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1870.916466] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1870.916491] ? do_raw_spin_unlock+0x164/0x250 [ 1870.916507] alloc_pages_current+0xe7/0x1e0 [ 1870.916522] kvm_mmu_create+0xd1/0x1c0 [ 1870.916538] kvm_arch_vcpu_init+0x282/0x890 [ 1870.930054] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1870.930533] ? alloc_pages_current+0xef/0x1e0 [ 1870.930548] kvm_vcpu_init+0x26d/0x360 [ 1870.935922] (null) [ 1870.940468] vmx_create_vcpu+0xf5/0x2950 [ 1870.940486] ? __mutex_unlock_slowpath+0x75/0x780 [ 1870.940497] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1870.940509] ? alloc_loaded_vmcs+0x240/0x240 [ 1870.940526] kvm_vm_ioctl+0x4ae/0x1430 [ 1870.949501] syz-executor.1 cpuset= [ 1870.953185] ? __lock_acquire+0x655/0x42a0 [ 1870.953200] ? kvm_vcpu_release+0xa0/0xa0 [ 1870.953211] ? check_preemption_disabled+0x35/0x240 [ 1870.953221] ? perf_trace_lock+0x109/0x4b0 [ 1870.953232] ? check_preemption_disabled+0x35/0x240 [ 1870.953245] ? perf_trace_lock+0x109/0x4b0 [ 1870.953253] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1870.953262] ? futex_exit_release+0x60/0x60 [ 1870.953275] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1870.953291] ? lock_acquire+0x170/0x3f0 [ 1870.962442] / [ 1870.963478] ? kvm_vcpu_release+0xa0/0xa0 [ 1870.968130] mems_allowed=0-1 [ 1870.971819] do_vfs_ioctl+0x75a/0xfe0 [ 1870.971835] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1870.971847] ? ioctl_preallocate+0x1a0/0x1a0 [ 1870.971869] ? security_file_ioctl+0x76/0xb0 [ 1871.071553] ? security_file_ioctl+0x83/0xb0 [ 1871.075970] SyS_ioctl+0x7f/0xb0 [ 1871.079329] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1871.083299] do_syscall_64+0x1d5/0x640 [ 1871.087190] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1871.092372] RIP: 0033:0x45ca59 [ 1871.095552] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1871.103254] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1871.110515] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 02:42:50 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:50 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r1, r2, 0x80000) 02:42:50 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) shutdown(0xffffffffffffffff, 0x0) dup2(r1, r0) mount(0x0, 0x0, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) write$P9_RATTACH(0xffffffffffffffff, 0x0, 0x0) [ 1871.117778] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1871.125043] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1871.132303] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1871.204186] CPU: 1 PID: 25343 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 1871.212106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1871.221468] Call Trace: [ 1871.224068] dump_stack+0x1b2/0x283 [ 1871.227711] warn_alloc.cold+0x96/0x1af [ 1871.231695] ? zone_watermark_ok_safe+0x250/0x250 [ 1871.236551] ? wait_for_completion_io+0x10/0x10 [ 1871.241235] __alloc_pages_nodemask+0x2129/0x2730 [ 1871.246106] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1871.247824] syz-executor.3: page allocation failure: order:0 [ 1871.250948] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1871.250971] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1871.266331] alloc_pages_current+0xe7/0x1e0 [ 1871.268868] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1871.270659] kvm_mmu_create+0xd1/0x1c0 [ 1871.270674] kvm_arch_vcpu_init+0x282/0x890 [ 1871.284821] ? alloc_pages_current+0xef/0x1e0 [ 1871.289326] kvm_vcpu_init+0x26d/0x360 [ 1871.291340] (null) [ 1871.293221] vmx_create_vcpu+0xf5/0x2950 [ 1871.293237] ? __mutex_unlock_slowpath+0x75/0x780 [ 1871.293247] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1871.293258] ? alloc_loaded_vmcs+0x240/0x240 [ 1871.293273] kvm_vm_ioctl+0x4ae/0x1430 [ 1871.293284] ? __lock_acquire+0x655/0x42a0 [ 1871.293296] ? kvm_vcpu_release+0xa0/0xa0 [ 1871.302201] syz-executor.3 cpuset= [ 1871.304316] ? check_preemption_disabled+0x35/0x240 [ 1871.304329] ? retint_kernel+0x2d/0x2d [ 1871.304342] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1871.304353] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1871.304365] ? check_preemption_disabled+0x35/0x240 [ 1871.304374] ? retint_kernel+0x2d/0x2d [ 1871.304385] ? __fget+0x1ff/0x360 [ 1871.304399] ? kvm_vcpu_release+0xa0/0xa0 [ 1871.304410] do_vfs_ioctl+0x75a/0xfe0 [ 1871.319689] / [ 1871.322000] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1871.338430] mems_allowed=0-1 [ 1871.338529] ? ioctl_preallocate+0x1a0/0x1a0 [ 1871.383324] ? security_file_ioctl+0x76/0xb0 [ 1871.387729] ? security_file_ioctl+0x83/0xb0 [ 1871.392130] SyS_ioctl+0x7f/0xb0 [ 1871.395482] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1871.399462] do_syscall_64+0x1d5/0x640 [ 1871.403345] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1871.408527] RIP: 0033:0x45ca59 [ 1871.411715] RSP: 002b:00007f9232553c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1871.419426] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1871.426691] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1871.433962] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1871.441237] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1871.444958] syz-executor.5: [ 1871.448504] R13: 000000000000039c R14: 00000000004c635c R15: 00007f92325546d4 [ 1871.448514] page allocation failure: order:0 [ 1871.470761] warn_alloc_show_mem: 1 callbacks suppressed [ 1871.470782] Mem-Info: [ 1871.485143] active_anon:451222 inactive_anon:48677 isolated_anon:0 [ 1871.485143] active_file:8225 inactive_file:62595 isolated_file:0 [ 1871.485143] unevictable:2560 dirty:297 writeback:0 unstable:0 [ 1871.485143] slab_reclaimable:125799 slab_unreclaimable:329022 [ 1871.485143] mapped:65254 shmem:38045 pagetables:8749 bounce:0 [ 1871.485143] free:487540 free_pcp:433 free_cma:0 [ 1871.487841] CPU: 0 PID: 25395 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1871.527610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1871.536969] Call Trace: [ 1871.539564] dump_stack+0x1b2/0x283 [ 1871.543204] warn_alloc.cold+0x96/0x1af [ 1871.547186] ? zone_watermark_ok_safe+0x250/0x250 [ 1871.552043] ? wait_for_completion_io+0x10/0x10 [ 1871.556722] __alloc_pages_nodemask+0x2129/0x2730 [ 1871.561614] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1871.563460] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1871.566456] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1871.566484] ? do_raw_spin_unlock+0x164/0x250 [ 1871.566500] alloc_pages_current+0xe7/0x1e0 [ 1871.566517] kvm_mmu_create+0xd1/0x1c0 [ 1871.566535] kvm_arch_vcpu_init+0x282/0x890 [ 1871.596735] Node 1 active_anon:449496kB inactive_anon:35476kB active_file:32892kB inactive_file:250380kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36516kB dirty:1188kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1871.599657] ? alloc_pages_current+0xef/0x1e0 [ 1871.599674] kvm_vcpu_init+0x26d/0x360 02:42:51 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) shutdown(0xffffffffffffffff, 0x0) dup2(r1, r0) mount(0x0, 0x0, 0x0, 0x0, 0x0) open(0x0, 0x0, 0x0) [ 1871.599689] vmx_create_vcpu+0xf5/0x2950 [ 1871.599709] ? __mutex_unlock_slowpath+0x75/0x780 [ 1871.606723] Node 0 [ 1871.609452] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1871.609471] ? alloc_loaded_vmcs+0x240/0x240 [ 1871.609489] kvm_vm_ioctl+0x4ae/0x1430 [ 1871.609505] ? __lock_acquire+0x655/0x42a0 [ 1871.615147] DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1871.617695] ? kvm_vcpu_release+0xa0/0xa0 [ 1871.617708] ? check_preemption_disabled+0x35/0x240 [ 1871.617722] ? perf_trace_lock+0x109/0x4b0 [ 1871.617733] ? check_preemption_disabled+0x35/0x240 [ 1871.617747] ? perf_trace_lock+0x109/0x4b0 [ 1871.646078] lowmem_reserve[]: [ 1871.650318] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1871.650329] ? futex_exit_release+0x60/0x60 [ 1871.650344] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1871.650356] ? lock_acquire+0x170/0x3f0 [ 1871.650366] ? kvm_vcpu_release+0xa0/0xa0 [ 1871.650380] do_vfs_ioctl+0x75a/0xfe0 [ 1871.654609] 0 [ 1871.658296] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1871.658309] ? ioctl_preallocate+0x1a0/0x1a0 [ 1871.658332] ? security_file_ioctl+0x76/0xb0 [ 1871.658344] ? security_file_ioctl+0x83/0xb0 [ 1871.664502] 2559 [ 1871.665395] SyS_ioctl+0x7f/0xb0 [ 1871.665405] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1871.665420] do_syscall_64+0x1d5/0x640 [ 1871.671720] 2559 [ 1871.674817] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1871.674826] RIP: 0033:0x45ca59 [ 1871.674831] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1871.674843] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1871.674849] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1871.674855] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1871.674861] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1871.674867] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1871.694867] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1871.731954] 2559 [ 1871.770583] (null) [ 1871.791342] 2559 [ 1871.795441] syz-executor.5 cpuset= [ 1871.801056] / [ 1871.804589] Node 0 [ 1871.811801] mems_allowed=0-1 [ 1871.822668] DMA32 free:36196kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:512kB local_pcp:212kB free_cma:0kB [ 1871.831223] CPU: 0 PID: 25403 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1871.835554] lowmem_reserve[]: [ 1871.841204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1871.841209] Call Trace: [ 1871.841228] dump_stack+0x1b2/0x283 [ 1871.841245] warn_alloc.cold+0x96/0x1af [ 1871.841257] ? zone_watermark_ok_safe+0x250/0x250 [ 1871.841285] ? wait_for_completion_io+0x10/0x10 [ 1871.854812] 0 [ 1871.855822] __alloc_pages_nodemask+0x2129/0x2730 [ 1871.855854] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1871.855867] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1871.855893] ? do_raw_spin_unlock+0x164/0x250 [ 1871.855907] alloc_pages_current+0xe7/0x1e0 [ 1871.862004] 0 [ 1871.863837] kvm_mmu_create+0xd1/0x1c0 [ 1871.863849] kvm_arch_vcpu_init+0x282/0x890 [ 1871.863859] ? alloc_pages_current+0xef/0x1e0 [ 1871.863871] kvm_vcpu_init+0x26d/0x360 [ 1871.863886] vmx_create_vcpu+0xf5/0x2950 [ 1871.863901] ? __mutex_unlock_slowpath+0x75/0x780 [ 1871.863912] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1871.863924] ? alloc_loaded_vmcs+0x240/0x240 [ 1871.863941] kvm_vm_ioctl+0x4ae/0x1430 [ 1871.872547] 0 [ 1871.873348] ? __lock_acquire+0x655/0x42a0 [ 1871.873360] ? kvm_vcpu_release+0xa0/0xa0 [ 1871.878632] 0 [ 1871.878676] ? check_preemption_disabled+0x35/0x240 [ 1871.910096] 0 [ 1871.915765] ? perf_trace_lock+0x109/0x4b0 [ 1871.915780] ? check_preemption_disabled+0x35/0x240 [ 1871.915793] ? perf_trace_lock+0x109/0x4b0 [ 1871.915801] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1871.915811] ? futex_exit_release+0x60/0x60 [ 1871.915821] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1871.915833] ? lock_acquire+0x170/0x3f0 [ 1871.915843] ? kvm_vcpu_release+0xa0/0xa0 [ 1871.915858] do_vfs_ioctl+0x75a/0xfe0 [ 1871.928294] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1871.928306] ? ioctl_preallocate+0x1a0/0x1a0 [ 1871.928330] ? security_file_ioctl+0x76/0xb0 [ 1871.928340] ? security_file_ioctl+0x83/0xb0 [ 1871.928349] SyS_ioctl+0x7f/0xb0 [ 1871.928357] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1871.928370] do_syscall_64+0x1d5/0x640 [ 1871.928386] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1871.928400] RIP: 0033:0x45ca59 [ 1871.940153] Node 0 [ 1871.943443] RSP: 002b:00007f6177e45c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1871.943455] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1871.943461] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1871.943468] RBP: 000000000078c040 R08: 0000000000000000 R09: 0000000000000000 [ 1871.943474] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1871.943481] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e466d4 [ 1872.177654] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1872.218597] lowmem_reserve[]: 0 0 0 0 0 [ 1872.222699] Node 1 Normal free:1905912kB min:53592kB low:66988kB high:80384kB active_anon:449196kB inactive_anon:35476kB active_file:32892kB inactive_file:250380kB unevictable:0kB writepending:892kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:2880kB pagetables:6640kB bounce:0kB free_pcp:1360kB local_pcp:652kB free_cma:0kB [ 1872.260394] lowmem_reserve[]: 0 0 0 0 0 [ 1872.265615] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1872.281338] Node 0 DMA32: 1177*4kB (UMEH) 768*8kB (UM) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 40*128kB (ME) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36196kB [ 1872.299841] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1872.310816] Node 1 Normal: 268*4kB (UME) 51*8kB (UME) 249*16kB (UME) 880*32kB (UME) 227*64kB (UE) 54*128kB (UME) 50*256kB (UM) 17*512kB (UME) 5*1024kB (U) 1*2048kB (U) 445*4096kB (M) = 1906456kB [ 1872.328695] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1872.337729] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1872.346503] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1872.355495] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1872.364243] 79608 total pagecache pages 02:42:51 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x11, 0x80a, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x411, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9, 0x1, 'bond\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_ARP_INTERVAL={0x8}]}}}]}, 0x3c}}, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = dup3(r5, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r6, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @dev}}) 02:42:51 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000140)={0x38, 0x3, 0x61, 0x6b5, 0x9, 0x0, 0x0, 0x80000000}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002580)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000200)=""/101, 0x65}, {&(0x7f0000000480)=""/126, 0x7e}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/131, 0x83}, {&(0x7f0000000280)=""/9, 0x9}, {&(0x7f0000000680)=""/140, 0x8c}, {&(0x7f0000000740)=""/95, 0x5f}], 0x8, &(0x7f0000000880)=""/25, 0x19}}, {{0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x4ac}, {{&(0x7f0000000a80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000e80)=""/110, 0x6e}, {0x0}], 0x2, &(0x7f00000014c0)=""/252, 0xfc}}], 0x3, 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000180)=[@in6={0xa, 0x4e22, 0x0, @ipv4={[0x0, 0x0, 0x0, 0xfec0000000000000], [], @local}}, @in={0x2, 0x0, @remote}], 0x2c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @local}], 0x20) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000400), 0xc, 0x0, 0x1, 0x0, 0x0, 0x88095}, 0x0) 02:42:51 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:51 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) shutdown(0xffffffffffffffff, 0x0) dup2(r1, r0) mount(0x0, 0x0, 0x0, 0x0, 0x0) 02:42:51 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) r7 = socket$inet(0x2, 0x3, 0x2) getsockopt(r7, 0x0, 0xce, 0x0, &(0x7f0000000000)) ioctl$sock_FIOSETOWN(r7, 0x8901, &(0x7f0000000040)=r0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) r8 = socket$inet(0x2, 0x3, 0x2) getsockopt(r8, 0x0, 0x7fff, 0x0, &(0x7f0000000000)) dup3(r1, r8, 0x80000) dup2(r1, r4) 02:42:51 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r1, r2, 0x80000) [ 1872.368217] 0 pages in swap cache [ 1872.371647] Swap cache stats: add 0, delete 0, find 0/0 [ 1872.377216] Free swap = 0kB [ 1872.380230] Total swap = 0kB [ 1872.383331] 1965979 pages RAM [ 1872.386432] 0 pages HighMem/MovableOnly [ 1872.390390] 338456 pages reserved [ 1872.393904] 0 pages cma reserved 02:42:52 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) shutdown(0xffffffffffffffff, 0x0) dup2(r1, r0) 02:42:52 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) 02:42:52 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup2(0xffffffffffffffff, r0) 02:42:52 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup2(0xffffffffffffffff, r0) 02:42:52 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x11, 0x80a, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x411, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9, 0x1, 'bond\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_ARP_INTERVAL={0x8}]}}}]}, 0x3c}}, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r5 = socket$nl_route(0x10, 0x3, 0x0) r6 = dup3(r5, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r6, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @dev}}) 02:42:52 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup2(0xffffffffffffffff, r0) 02:42:52 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r1, r2, 0x80000) [ 1872.798750] warn_alloc: 2 callbacks suppressed [ 1872.798768] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1872.837549] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1872.845792] CPU: 0 PID: 25442 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1872.853697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1872.863057] Call Trace: [ 1872.865660] dump_stack+0x1b2/0x283 [ 1872.869300] warn_alloc.cold+0x96/0x1af [ 1872.873280] ? zone_watermark_ok_safe+0x250/0x250 [ 1872.878129] ? wait_for_completion_io+0x10/0x10 [ 1872.882810] __alloc_pages_nodemask+0x2129/0x2730 [ 1872.887676] ? retint_kernel+0x2d/0x2d [ 1872.891570] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1872.896413] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1872.901433] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1872.906281] ? retint_kernel+0x2d/0x2d [ 1872.910174] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1872.914939] ? retint_kernel+0x2d/0x2d [ 1872.918839] alloc_pages_current+0xe7/0x1e0 [ 1872.923170] kvm_mmu_create+0xd1/0x1c0 [ 1872.927068] kvm_arch_vcpu_init+0x282/0x890 [ 1872.931394] ? alloc_pages_current+0xef/0x1e0 [ 1872.935897] kvm_vcpu_init+0x26d/0x360 [ 1872.939797] vmx_create_vcpu+0xf5/0x2950 [ 1872.943866] ? __mutex_unlock_slowpath+0x75/0x780 [ 1872.948718] ? alloc_loaded_vmcs+0x240/0x240 [ 1872.953133] ? kvm_vm_ioctl+0x490/0x1430 [ 1872.957204] kvm_vm_ioctl+0x4ae/0x1430 [ 1872.961099] ? __lock_acquire+0x655/0x42a0 [ 1872.965335] ? kvm_vcpu_release+0xa0/0xa0 [ 1872.969483] ? retint_kernel+0x2d/0x2d [ 1872.973377] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1872.978399] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1872.983165] ? check_preemption_disabled+0x35/0x240 [ 1872.988189] ? retint_kernel+0x2d/0x2d [ 1872.992092] ? selinux_file_ioctl+0x19a/0x560 [ 1872.996607] ? selinux_file_ioctl+0x1f1/0x560 [ 1873.001110] ? kvm_vcpu_release+0xa0/0xa0 [ 1873.005264] do_vfs_ioctl+0x75a/0xfe0 [ 1873.009107] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1873.014737] ? ioctl_preallocate+0x1a0/0x1a0 [ 1873.019426] ? security_file_ioctl+0x76/0xb0 [ 1873.023838] ? security_file_ioctl+0x83/0xb0 [ 1873.028262] SyS_ioctl+0x7f/0xb0 [ 1873.031630] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1873.035612] do_syscall_64+0x1d5/0x640 [ 1873.039528] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1873.044715] RIP: 0033:0x45ca59 02:42:52 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:52 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x3, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setreuid(0x0, 0x0) r7 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setreuid(0x0, r8) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="18010000040801042abd7000ffdbdf2500000001e600298008001c00", @ANYRES32=0x0, @ANYBLOB="14000200ff0100000000000000000000000000016e1ceef958ef670a1a7a3e3c94cca33e263493ecbbf4352b71b351c528963a1d26040ebafe090ce9bc280043e70556958be1161c7f91c8f5c0efd6515b6819ac66c57f26e76bc34e1f49f13043091507f2908543fc695f2273042dcee174fdf6ff9a147c536f4bc9736110a57df78bee62aba2a2f45a2b5948ac50f45241356fb016ce0f733d09a2b423b76001701b268e59311fa6f7e4ff6b46c54d309129d2abb6c0327bfa657403567536c07b3694091ca836e03b0d001f002f6465762f6b766d000000000000140005002001000000000000000000000000000108007e00", @ANYRES32=r8, @ANYBLOB="a3f112dcb8e885808de532ad1566e8de247bbaffcdfff8431ab68ef5336a"], 0x118}, 0x1, 0x0, 0x0, 0x40}, 0x20000010) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1873.047904] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1873.055614] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1873.062974] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1873.070281] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1873.077558] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1873.084834] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 02:42:52 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r0, 0xffffffffffffffff) 02:42:52 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r0, 0xffffffffffffffff) [ 1873.159784] warn_alloc_show_mem: 3 callbacks suppressed [ 1873.159801] Mem-Info: [ 1873.169541] active_anon:451211 inactive_anon:48677 isolated_anon:0 [ 1873.169541] active_file:8226 inactive_file:62613 isolated_file:0 [ 1873.169541] unevictable:2560 dirty:274 writeback:0 unstable:0 [ 1873.169541] slab_reclaimable:125702 slab_unreclaimable:328668 [ 1873.169541] mapped:65266 shmem:38045 pagetables:8721 bounce:0 [ 1873.169541] free:488183 free_pcp:364 free_cma:0 [ 1873.231703] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1873.265615] Node 1 active_anon:450052kB inactive_anon:35476kB active_file:32896kB inactive_file:250452kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:37464kB dirty:1096kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1873.296362] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1873.325517] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1873.338742] Node 0 DMA32 free:36252kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:520kB local_pcp:308kB free_cma:0kB [ 1873.344934] syz-executor.3: [ 1873.375326] lowmem_reserve[]: 0 0 0 0 0 [ 1873.387985] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1873.390960] page allocation failure: order:0 [ 1873.418472] syz-executor.2: [ 1873.428537] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1873.431601] lowmem_reserve[]: [ 1873.432140] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1873.441220] 0 [ 1873.450254] (null) [ 1873.450261] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1873.450284] CPU: 1 PID: 25516 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1873.450290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1873.450294] Call Trace: [ 1873.450311] dump_stack+0x1b2/0x283 [ 1873.450327] warn_alloc.cold+0x96/0x1af [ 1873.450347] ? zone_watermark_ok_safe+0x250/0x250 [ 1873.458142] 0 [ 1873.459405] ? wait_for_completion_io+0x10/0x10 [ 1873.459425] __alloc_pages_nodemask+0x2129/0x2730 [ 1873.459454] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1873.459469] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1873.468544] 0 [ 1873.477134] ? do_raw_spin_unlock+0x164/0x250 [ 1873.477147] alloc_pages_current+0xe7/0x1e0 [ 1873.477167] kvm_mmu_create+0xd1/0x1c0 [ 1873.477179] kvm_arch_vcpu_init+0x282/0x890 [ 1873.477189] ? alloc_pages_current+0xef/0x1e0 [ 1873.477201] kvm_vcpu_init+0x26d/0x360 [ 1873.477216] vmx_create_vcpu+0xf5/0x2950 [ 1873.477232] ? __mutex_unlock_slowpath+0x75/0x780 [ 1873.477242] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1873.477253] ? alloc_loaded_vmcs+0x240/0x240 [ 1873.477267] kvm_vm_ioctl+0x4ae/0x1430 [ 1873.477277] ? __lock_acquire+0x655/0x42a0 [ 1873.477284] ? kvm_vcpu_release+0xa0/0xa0 [ 1873.477292] ? check_preemption_disabled+0x35/0x240 [ 1873.477301] ? perf_trace_lock+0x109/0x4b0 [ 1873.477310] ? check_preemption_disabled+0x35/0x240 [ 1873.477318] ? perf_trace_lock+0x109/0x4b0 [ 1873.477324] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1873.477331] ? futex_exit_release+0x60/0x60 [ 1873.477343] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1873.477352] ? lock_acquire+0x170/0x3f0 [ 1873.477362] ? kvm_vcpu_release+0xa0/0xa0 [ 1873.477372] do_vfs_ioctl+0x75a/0xfe0 [ 1873.477384] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1873.477394] ? ioctl_preallocate+0x1a0/0x1a0 [ 1873.477417] ? security_file_ioctl+0x76/0xb0 [ 1873.477426] ? security_file_ioctl+0x83/0xb0 [ 1873.477437] SyS_ioctl+0x7f/0xb0 [ 1873.477445] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1873.477459] do_syscall_64+0x1d5/0x640 [ 1873.477474] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1873.477482] RIP: 0033:0x45ca59 [ 1873.477487] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1873.477498] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1873.477504] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1873.477510] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1873.477516] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1873.477522] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1873.483757] syz-executor.2 cpuset= [ 1873.505466] 0 [ 1873.514980] / mems_allowed=0-1 [ 1873.515003] CPU: 1 PID: 25515 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1873.515010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1873.515014] Call Trace: [ 1873.515030] dump_stack+0x1b2/0x283 [ 1873.515045] warn_alloc.cold+0x96/0x1af [ 1873.515057] ? zone_watermark_ok_safe+0x250/0x250 [ 1873.515077] ? wait_for_completion_io+0x10/0x10 [ 1873.515093] __alloc_pages_nodemask+0x2129/0x2730 [ 1873.534196] 0 [ 1873.535241] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1873.535252] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1873.535272] ? do_raw_spin_unlock+0x164/0x250 [ 1873.535285] alloc_pages_current+0xe7/0x1e0 [ 1873.535300] kvm_mmu_create+0xd1/0x1c0 [ 1873.535315] kvm_arch_vcpu_init+0x282/0x890 [ 1873.543670] ? alloc_pages_current+0xef/0x1e0 [ 1873.543684] kvm_vcpu_init+0x26d/0x360 [ 1873.543699] vmx_create_vcpu+0xf5/0x2950 [ 1873.543714] ? __mutex_unlock_slowpath+0x75/0x780 [ 1873.543724] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1873.543735] ? alloc_loaded_vmcs+0x240/0x240 [ 1873.543750] kvm_vm_ioctl+0x4ae/0x1430 [ 1873.549097] Node 1 [ 1873.552624] ? __lock_acquire+0x655/0x42a0 [ 1873.552637] ? kvm_vcpu_release+0xa0/0xa0 [ 1873.552649] ? check_preemption_disabled+0x35/0x240 [ 1873.552660] ? perf_trace_lock+0x109/0x4b0 [ 1873.552671] ? check_preemption_disabled+0x35/0x240 [ 1873.552681] ? perf_trace_lock+0x109/0x4b0 [ 1873.552688] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1873.552697] ? futex_exit_release+0x60/0x60 [ 1873.552710] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1873.552721] ? lock_acquire+0x170/0x3f0 [ 1873.552732] ? kvm_vcpu_release+0xa0/0xa0 [ 1873.552743] do_vfs_ioctl+0x75a/0xfe0 [ 1873.552755] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1873.552765] ? ioctl_preallocate+0x1a0/0x1a0 [ 1873.552786] ? security_file_ioctl+0x76/0xb0 [ 1873.552794] ? security_file_ioctl+0x83/0xb0 [ 1873.552803] SyS_ioctl+0x7f/0xb0 [ 1873.552812] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1873.552825] do_syscall_64+0x1d5/0x640 [ 1873.552845] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1873.560169] Normal free:1904592kB min:53592kB low:66988kB high:80384kB active_anon:449552kB inactive_anon:35476kB active_file:32896kB inactive_file:250452kB unevictable:0kB writepending:1096kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3360kB pagetables:6676kB bounce:0kB free_pcp:1392kB local_pcp:644kB free_cma:0kB [ 1873.562335] RIP: 0033:0x45ca59 [ 1873.562341] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1873.562353] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1873.562358] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1873.562363] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1873.562368] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1873.562373] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1873.726056] syz-executor.0: [ 1873.737406] lowmem_reserve[]: [ 1873.770583] page allocation failure: order:0 [ 1873.774409] 0 0 0 0 0 [ 1873.774582] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1873.775331] Node 0 DMA32: 1177*4kB (UMEH) 775*8kB (UM) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 40*128kB (ME) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36252kB 02:42:53 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002580)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000200)=""/101, 0x65}, {&(0x7f0000000480)=""/126, 0x7e}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/131, 0x83}, {&(0x7f0000000280)=""/9, 0x9}, {&(0x7f0000000680)=""/140, 0x8c}, {&(0x7f0000000740)=""/95, 0x5f}], 0x8, &(0x7f0000000880)=""/25, 0x19}}, {{0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x4aa}, {{&(0x7f0000000a80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000e80)=""/110, 0x6e}, {0x0}], 0x2, &(0x7f00000014c0)=""/252, 0xfc}}], 0x3, 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000180)=[@in6={0xa, 0x4e22, 0x0, @ipv4={[0x0, 0x0, 0x0, 0xfec0000000000000], [], @local}}, @in={0x2, 0x0, @remote}], 0x2c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @local}], 0x20) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000400), 0xc, 0x0, 0x1, 0x0, 0x0, 0x88095}, 0x0) 02:42:53 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r0, 0xffffffffffffffff) 02:42:53 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:53 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) r7 = socket$inet(0x2, 0x3, 0x2) getsockopt(r7, 0x0, 0xce, 0x0, &(0x7f0000000000)) ioctl$sock_FIOSETOWN(r7, 0x8901, &(0x7f0000000040)=r0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) r8 = socket$inet(0x2, 0x3, 0x2) getsockopt(r8, 0x0, 0x7fff, 0x0, &(0x7f0000000000)) dup3(r1, r8, 0x80000) dup2(r1, r4) 02:42:53 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x30, 0xfd, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xc, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) write$binfmt_elf32(0xffffffffffffffff, &(0x7f00000003c0)={{0x7f, 0x45, 0x4c, 0x46, 0x80, 0xb4, 0xff, 0x9, 0x2, 0x3, 0x6, 0x3, 0x147, 0x38, 0x230, 0x5110c1dc, 0xad8e, 0x20, 0x1, 0x7, 0x4, 0x100}, [{0x7, 0x0, 0x6, 0x6, 0x9, 0x1, 0x0, 0x4}, {0x3, 0x1, 0x7, 0xa, 0x8, 0x1, 0x0, 0x82e0}], "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", [[], [], [], [], [], [], []]}, 0x1778) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$VT_RELDISP(r8, 0x5605) [ 1873.776190] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1873.776705] Node 1 Normal: 253*4kB (UME) 168*8kB (UME) 516*16kB (UME) 870*32kB (UME) 229*64kB (UME) 4*128kB [ 1873.826470] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1873.830216] (UME) 48*256kB [ 1873.865406] (null) [ 1873.868379] (UM) [ 1873.916081] syz-executor.0 cpuset= [ 1873.916891] 17*512kB [ 1873.955840] / [ 1873.958382] (UE) [ 1873.970830] mems_allowed=0-1 [ 1873.972448] 4*1024kB (U) 2*2048kB (U) 445*4096kB (M) = 1905524kB [ 1873.972686] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1873.972716] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1873.972752] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1873.972802] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1873.972851] 79623 total pagecache pages [ 1873.972934] 0 pages in swap cache [ 1873.972970] Swap cache stats: add 0, delete 0, find 0/0 [ 1873.973002] Free swap = 0kB [ 1873.973029] Total swap = 0kB [ 1873.973069] 1965979 pages RAM [ 1873.973098] 0 pages HighMem/MovableOnly [ 1873.973120] 338456 pages reserved [ 1873.973153] 0 pages cma reserved [ 1874.165305] CPU: 1 PID: 25487 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1874.173199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1874.182563] Call Trace: [ 1874.185155] dump_stack+0x1b2/0x283 02:42:53 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) [ 1874.189495] warn_alloc.cold+0x96/0x1af [ 1874.193474] ? zone_watermark_ok_safe+0x250/0x250 [ 1874.198333] ? wait_for_completion_io+0x10/0x10 [ 1874.203016] __alloc_pages_nodemask+0x2129/0x2730 [ 1874.207914] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1874.212763] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1874.217622] ? check_preemption_disabled+0x35/0x240 [ 1874.222646] alloc_pages_current+0xe7/0x1e0 [ 1874.226977] kvm_mmu_create+0xd1/0x1c0 [ 1874.230871] kvm_arch_vcpu_init+0x282/0x890 [ 1874.235204] ? alloc_pages_current+0xef/0x1e0 [ 1874.239713] kvm_vcpu_init+0x26d/0x360 [ 1874.243602] vmx_create_vcpu+0xf5/0x2950 [ 1874.247670] ? alloc_loaded_vmcs+0x240/0x240 [ 1874.252082] ? kvm_arch_vcpu_create+0x79/0xb0 [ 1874.256613] kvm_vm_ioctl+0x4ae/0x1430 [ 1874.260503] ? __lock_acquire+0x655/0x42a0 [ 1874.264742] ? kvm_vcpu_release+0xa0/0xa0 [ 1874.268892] ? check_preemption_disabled+0x35/0x240 [ 1874.273914] ? retint_kernel+0x2d/0x2d [ 1874.277800] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1874.282822] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1874.287588] ? check_preemption_disabled+0x35/0x240 [ 1874.292619] ? retint_kernel+0x2d/0x2d [ 1874.296515] ? do_vfs_ioctl+0x6fb/0xfe0 [ 1874.300489] ? kvm_vcpu_release+0xa0/0xa0 [ 1874.304639] do_vfs_ioctl+0x75a/0xfe0 [ 1874.308446] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1874.314077] ? ioctl_preallocate+0x1a0/0x1a0 [ 1874.318503] ? security_file_ioctl+0x76/0xb0 [ 1874.322914] ? security_file_ioctl+0x83/0xb0 [ 1874.327326] SyS_ioctl+0x7f/0xb0 [ 1874.330693] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1874.334673] do_syscall_64+0x1d5/0x640 [ 1874.338571] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1874.343761] RIP: 0033:0x45ca59 [ 1874.346949] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1874.351610] syz-executor.2: [ 1874.354654] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1874.354661] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1874.354666] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1874.354671] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1874.354676] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1874.390359] warn_alloc_show_mem: 2 callbacks suppressed [ 1874.390387] Mem-Info: [ 1874.409573] active_anon:451264 inactive_anon:48677 isolated_anon:0 [ 1874.409573] active_file:8226 inactive_file:62621 isolated_file:0 [ 1874.409573] unevictable:2560 dirty:297 writeback:0 unstable:0 [ 1874.409573] slab_reclaimable:125691 slab_unreclaimable:329162 [ 1874.409573] mapped:65314 shmem:38045 pagetables:8735 bounce:0 [ 1874.409573] free:487381 free_pcp:452 free_cma:0 02:42:54 executing program 4: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) [ 1874.423708] page allocation failure: order:0 [ 1874.450108] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1874.490596] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1874.510217] Node 1 active_anon:449764kB inactive_anon:35476kB active_file:32896kB inactive_file:250484kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36656kB dirty:1188kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1874.520340] syz-executor.2 cpuset= [ 1874.544383] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1874.564768] / mems_allowed=0-1 [ 1874.590561] CPU: 0 PID: 25552 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1874.598445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1874.607801] Call Trace: [ 1874.610384] dump_stack+0x1b2/0x283 [ 1874.614075] warn_alloc.cold+0x96/0x1af [ 1874.618054] ? zone_watermark_ok_safe+0x250/0x250 [ 1874.622894] ? wait_for_completion_io+0x10/0x10 [ 1874.627553] __alloc_pages_nodemask+0x2129/0x2730 [ 1874.632416] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1874.637268] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1874.642115] ? do_raw_spin_unlock+0x164/0x250 [ 1874.646621] alloc_pages_current+0xe7/0x1e0 [ 1874.650933] kvm_mmu_create+0xd1/0x1c0 [ 1874.654806] kvm_arch_vcpu_init+0x282/0x890 [ 1874.659200] ? alloc_pages_current+0xef/0x1e0 [ 1874.663678] kvm_vcpu_init+0x26d/0x360 [ 1874.667549] vmx_create_vcpu+0xf5/0x2950 [ 1874.671597] ? __mutex_unlock_slowpath+0x75/0x780 [ 1874.676421] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1874.681420] ? alloc_loaded_vmcs+0x240/0x240 [ 1874.685851] kvm_vm_ioctl+0x4ae/0x1430 [ 1874.689749] ? __lock_acquire+0x655/0x42a0 [ 1874.693969] ? kvm_vcpu_release+0xa0/0xa0 [ 1874.698102] ? check_preemption_disabled+0x35/0x240 [ 1874.703103] ? perf_trace_lock+0x109/0x4b0 [ 1874.707322] ? check_preemption_disabled+0x35/0x240 [ 1874.712321] ? perf_trace_lock+0x109/0x4b0 [ 1874.716539] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1874.721451] ? futex_exit_release+0x60/0x60 [ 1874.725770] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1874.730684] ? lock_acquire+0x170/0x3f0 [ 1874.734642] ? kvm_vcpu_release+0xa0/0xa0 [ 1874.738772] do_vfs_ioctl+0x75a/0xfe0 [ 1874.742557] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1874.748160] ? ioctl_preallocate+0x1a0/0x1a0 [ 1874.752558] ? security_file_ioctl+0x76/0xb0 [ 1874.756947] ? security_file_ioctl+0x83/0xb0 [ 1874.761334] SyS_ioctl+0x7f/0xb0 [ 1874.764697] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1874.768659] do_syscall_64+0x1d5/0x640 [ 1874.772533] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1874.777717] RIP: 0033:0x45ca59 [ 1874.782188] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1874.789877] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1874.797146] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1874.804419] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1874.811678] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1874.818961] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1874.868181] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1874.873649] Node 0 DMA32 free:36252kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:516kB local_pcp:220kB free_cma:0kB [ 1874.883214] syz-executor.3: [ 1874.906977] lowmem_reserve[]: 0 0 0 0 0 [ 1874.915662] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1874.925284] page allocation failure: order:0 [ 1874.942325] lowmem_reserve[]: [ 1874.945887] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1874.946811] 0 [ 1874.950108] (null) [ 1874.959429] 0 0 0 0 [ 1874.960397] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1874.969055] CPU: 0 PID: 25553 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1874.970565] Node 1 [ 1874.976931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1874.976935] Call Trace: [ 1874.976954] dump_stack+0x1b2/0x283 [ 1874.976970] warn_alloc.cold+0x96/0x1af [ 1874.976981] ? zone_watermark_ok_safe+0x250/0x250 [ 1874.976999] ? wait_for_completion_io+0x10/0x10 [ 1874.977016] __alloc_pages_nodemask+0x2129/0x2730 [ 1874.977043] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1874.977055] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1874.977064] ? retint_kernel+0x2d/0x2d [ 1874.977079] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1874.977093] ? retint_kernel+0x2d/0x2d [ 1874.977112] alloc_pages_current+0xe7/0x1e0 [ 1874.977127] kvm_mmu_create+0xd1/0x1c0 [ 1874.977140] kvm_arch_vcpu_init+0x282/0x890 [ 1874.977150] ? alloc_pages_current+0xef/0x1e0 [ 1874.977163] kvm_vcpu_init+0x26d/0x360 [ 1874.977176] vmx_create_vcpu+0xf5/0x2950 [ 1874.977187] ? check_preemption_disabled+0x35/0x240 [ 1874.993484] Normal free:1905192kB min:53592kB low:66988kB high:80384kB active_anon:449592kB inactive_anon:35476kB active_file:32896kB inactive_file:250540kB unevictable:0kB writepending:1260kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3264kB pagetables:6792kB bounce:0kB free_pcp:1332kB local_pcp:624kB free_cma:0kB [ 1874.994946] ? retint_kernel+0x2d/0x2d [ 1874.994965] ? alloc_loaded_vmcs+0x240/0x240 [ 1874.994975] ? alloc_loaded_vmcs+0x240/0x240 [ 1874.994993] kvm_vm_ioctl+0x4ae/0x1430 [ 1874.995008] ? __lock_acquire+0x655/0x42a0 [ 1875.001162] lowmem_reserve[]: [ 1875.003794] ? kvm_vcpu_release+0xa0/0xa0 [ 1875.003806] ? check_preemption_disabled+0x35/0x240 [ 1875.003819] ? retint_kernel+0x2d/0x2d [ 1875.003830] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1875.003841] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1875.003853] ? check_preemption_disabled+0x35/0x240 [ 1875.003862] ? retint_kernel+0x2d/0x2d [ 1875.003874] ? kvm_vcpu_release+0xa0/0xa0 [ 1875.003887] ? kvm_vcpu_release+0xa0/0xa0 [ 1875.015808] 0 [ 1875.018196] do_vfs_ioctl+0x75a/0xfe0 [ 1875.018212] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1875.018224] ? ioctl_preallocate+0x1a0/0x1a0 [ 1875.018249] ? security_file_ioctl+0x76/0xb0 [ 1875.025463] 0 [ 1875.026954] ? security_file_ioctl+0x83/0xb0 [ 1875.026968] SyS_ioctl+0x7f/0xb0 [ 1875.026977] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1875.026998] do_syscall_64+0x1d5/0x640 [ 1875.031852] 0 [ 1875.035609] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1875.035618] RIP: 0033:0x45ca59 [ 1875.035623] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1875.035634] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1875.035639] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1875.035645] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1875.035651] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1875.035658] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1875.210759] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1875.269158] 0 0 [ 1875.274604] Node 0 DMA: 5*4kB (UM) 3*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10348kB [ 1875.277350] syz-executor.2 cpuset= [ 1875.295886] Node 0 DMA32: 1177*4kB (UMEH) 770*8kB (UM) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 40*128kB (ME) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36212kB [ 1875.300297] / [ 1875.320218] Node 0 [ 1875.321340] mems_allowed=0-1 [ 1875.321998] Normal: [ 1875.324427] CPU: 0 PID: 25552 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1875.324433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1875.324438] Call Trace: [ 1875.324463] dump_stack+0x1b2/0x283 [ 1875.324481] warn_alloc.cold+0x96/0x1af [ 1875.324492] ? zone_watermark_ok_safe+0x250/0x250 [ 1875.324514] ? wait_for_completion_io+0x10/0x10 [ 1875.324531] __alloc_pages_nodemask+0x2129/0x2730 [ 1875.324559] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1875.324570] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1875.324595] ? do_raw_spin_unlock+0x164/0x250 [ 1875.324610] alloc_pages_current+0xe7/0x1e0 [ 1875.324626] kvm_mmu_create+0xd1/0x1c0 [ 1875.324638] kvm_arch_vcpu_init+0x282/0x890 [ 1875.324648] ? alloc_pages_current+0xef/0x1e0 [ 1875.324662] kvm_vcpu_init+0x26d/0x360 [ 1875.324676] vmx_create_vcpu+0xf5/0x2950 [ 1875.324689] ? __mutex_unlock_slowpath+0x75/0x780 [ 1875.324699] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1875.324711] ? alloc_loaded_vmcs+0x240/0x240 [ 1875.324729] kvm_vm_ioctl+0x4ae/0x1430 [ 1875.324741] ? __lock_acquire+0x655/0x42a0 [ 1875.324752] ? kvm_vcpu_release+0xa0/0xa0 [ 1875.324763] ? check_preemption_disabled+0x35/0x240 [ 1875.324775] ? perf_trace_lock+0x109/0x4b0 [ 1875.324788] ? check_preemption_disabled+0x35/0x240 [ 1875.324803] ? perf_trace_lock+0x109/0x4b0 [ 1875.344690] 0*4kB [ 1875.347443] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1875.347458] ? futex_exit_release+0x60/0x60 [ 1875.347470] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1875.350060] 0*8kB [ 1875.353654] ? lock_acquire+0x170/0x3f0 [ 1875.353666] ? kvm_vcpu_release+0xa0/0xa0 [ 1875.353676] do_vfs_ioctl+0x75a/0xfe0 [ 1875.353689] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1875.353699] ? ioctl_preallocate+0x1a0/0x1a0 [ 1875.353724] ? security_file_ioctl+0x76/0xb0 [ 1875.363995] 0*16kB [ 1875.367160] ? security_file_ioctl+0x83/0xb0 [ 1875.367175] SyS_ioctl+0x7f/0xb0 [ 1875.372014] 0*32kB [ 1875.376835] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1875.376850] do_syscall_64+0x1d5/0x640 [ 1875.381681] 0*64kB [ 1875.386155] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1875.386163] RIP: 0033:0x45ca59 [ 1875.386168] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1875.386178] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1875.386183] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1875.386188] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1875.386194] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1875.386200] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1875.580783] 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1875.591011] Node 1 Normal: 255*4kB (UME) 231*8kB (UME) 152*16kB (UME) 880*32kB (UME) 229*64kB (UME) 32*128kB (UME) 50*256kB (UM) 19*512kB (UE) 4*1024kB (U) 2*2048kB (U) 445*4096kB (M) = 1905652kB [ 1875.609736] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1875.619445] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1875.628844] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1875.638238] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1875.647469] 79637 total pagecache pages [ 1875.651549] 0 pages in swap cache [ 1875.656181] Swap cache stats: add 0, delete 0, find 0/0 [ 1875.661620] Free swap = 0kB [ 1875.665557] Total swap = 0kB [ 1875.668582] 1965979 pages RAM 02:42:55 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002580)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000200)=""/101, 0x65}, {&(0x7f0000000480)=""/126, 0x7e}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/131, 0x83}, {&(0x7f0000000280)=""/9, 0x9}, {&(0x7f0000000680)=""/140, 0x8c}, {&(0x7f0000000740)=""/95, 0x5f}], 0x8, &(0x7f0000000880)=""/25, 0x19}}, {{0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x4ac}, {{&(0x7f0000000a80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000e80)=""/110, 0x6e}, {0x0}], 0x2, &(0x7f00000014c0)=""/252, 0xfc}}], 0x3, 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000140)=[@in6={0xa, 0x6e22, 0x0, @ipv4={[0x0, 0x0, 0x0, 0xfec0000000000000], [], @remote}}, @in6={0xa, 0x4e20, 0xfffffff7, @loopback, 0x8}], 0x38) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @local}], 0x20) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000400), 0xc, 0x0, 0x1, 0x0, 0x0, 0x88095}, 0x0) 02:42:55 executing program 0: ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000003b80)={0xfffc, 0x24}) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r2 = socket$inet(0x2, 0x3, 0x2) getsockopt(r2, 0x0, 0xce, 0x0, &(0x7f0000000000)) ioctl$sock_inet_SIOCGARP(r2, 0x8954, &(0x7f0000003b00)={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x22}}, {0x1}, 0x2, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x4, 0x0}}, 'geneve1\x00'}) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$inet(0x2, 0x3, 0x2) getsockopt(r4, 0x0, 0xce, 0x0, &(0x7f0000000000)) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000003980)={{{@in=@local, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in=@local}}, &(0x7f0000003a80)=0xe8) ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000003ac0)={'wg0\x00', r5}) r6 = dup3(r3, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r6, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) r7 = gettid() tkill(r7, 0x3c) process_vm_readv(r7, &(0x7f00000025c0)=[{&(0x7f0000000180)=""/225, 0xe1}, {&(0x7f00000000c0)=""/68, 0x44}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/1, 0x1}, {&(0x7f0000001400)=""/214, 0xd6}, {&(0x7f0000001500)=""/4, 0x4}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000002540)=""/30, 0x1e}, {&(0x7f0000002580)=""/27, 0x1b}], 0x9, &(0x7f0000003900)=[{&(0x7f0000002680)=""/177, 0xb1}, {&(0x7f0000002740)}, {&(0x7f0000002780)=""/4096, 0x1000}, {&(0x7f0000003780)=""/124, 0x7c}, {&(0x7f0000003800)=""/91, 0x5b}, {&(0x7f0000003880)=""/90, 0x5a}], 0x6, 0x0) ioctl$PPPOEIOCSFWD(r6, 0x4008b100, &(0x7f0000002740)={0x18, 0x0, {0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'team0\x00'}}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @dev}}) 02:42:55 executing program 4: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) 02:42:55 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:55 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x34293, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x55e}}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_DEASSIGN_DEV_IRQ(0xffffffffffffffff, 0x4040ae75, &(0x7f0000000080)={0xed, 0x0, 0x9, 0x301}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$DRM_IOCTL_GET_STATS(r8, 0x80f86406, &(0x7f0000000000)=""/72) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:55 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:55 executing program 4: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) [ 1875.671666] 0 pages HighMem/MovableOnly [ 1875.676759] 338456 pages reserved [ 1875.680268] 0 pages cma reserved 02:42:55 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x0, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) 02:42:55 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x0, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) 02:42:55 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x0, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) 02:42:55 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) 02:42:55 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) 02:42:56 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) dup3(r1, r2, 0x80000) 02:42:56 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) 02:42:56 executing program 0: ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000003b80)={0xfffc, 0x24}) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r2 = socket$inet(0x2, 0x3, 0x2) getsockopt(r2, 0x0, 0xce, 0x0, &(0x7f0000000000)) ioctl$sock_inet_SIOCGARP(r2, 0x8954, &(0x7f0000003b00)={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x22}}, {0x1}, 0x2, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x4, 0x0}}, 'geneve1\x00'}) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket$inet(0x2, 0x3, 0x2) getsockopt(r4, 0x0, 0xce, 0x0, &(0x7f0000000000)) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000003980)={{{@in=@local, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in=@local}}, &(0x7f0000003a80)=0xe8) ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000003ac0)={'wg0\x00', r5}) r6 = dup3(r3, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r6, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) r7 = gettid() tkill(r7, 0x3c) process_vm_readv(r7, &(0x7f00000025c0)=[{&(0x7f0000000180)=""/225, 0xe1}, {&(0x7f00000000c0)=""/68, 0x44}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/1, 0x1}, {&(0x7f0000001400)=""/214, 0xd6}, {&(0x7f0000001500)=""/4, 0x4}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000002540)=""/30, 0x1e}, {&(0x7f0000002580)=""/27, 0x1b}], 0x9, &(0x7f0000003900)=[{&(0x7f0000002680)=""/177, 0xb1}, {&(0x7f0000002740)}, {&(0x7f0000002780)=""/4096, 0x1000}, {&(0x7f0000003780)=""/124, 0x7c}, {&(0x7f0000003800)=""/91, 0x5b}, {&(0x7f0000003880)=""/90, 0x5a}], 0x6, 0x0) ioctl$PPPOEIOCSFWD(r6, 0x4008b100, &(0x7f0000002740)={0x18, 0x0, {0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'team0\x00'}}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @dev}}) 02:42:56 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:56 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x7, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89}}) ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f0000000000)={[{0x97f6, 0xffff, 0x1, 0x80, 0x1, 0xc, 0x0, 0x2, 0x1, 0x76, 0x3, 0x9, 0x100000000}, {0x8, 0x9, 0x0, 0xa6, 0x48, 0x3, 0xf7, 0x8, 0xc0, 0x0, 0x3f, 0xfd, 0x7ff}, {0xae1, 0x2ff, 0x3f, 0x40, 0x4, 0x2f, 0x81, 0x81, 0x3, 0x3, 0x82, 0x1, 0x800}], 0x7ff}) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f00000003c0)={0x8, 0x0, [{0x9e7, 0x3, 0x0, 0x0, @msi={0xbba1, 0xffff, 0x1, 0x6}}, {0xff, 0x2, 0x0, 0x0, @msi={0xfe42, 0xfffffffa, 0xffff, 0xc0}}, {0x800, 0x4, 0x0, 0x0, @adapter={0x3, 0x8, 0x1, 0x101, 0x61062eb6}}, {0x1ff, 0x3, 0x0, 0x0, @adapter={0x7, 0xfffffffffffffffa, 0x200, 0x6c, 0x80000001}}, {0x4, 0x4, 0x0, 0x0, @sint={0x8, 0x1}}, {0xb, 0x4, 0x0, 0x0, @irqchip={0x20000000}}, {0x100, 0x4, 0x0, 0x0, @sint={0x0, 0x8}}, {0x7, 0x4, 0x0, 0x0, @irqchip={0x6, 0x7fff}}]}) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:56 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) dup3(r1, r2, 0x80000) 02:42:56 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x0, 0x84) dup2(r1, r0) 02:42:56 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) dup3(r1, r2, 0x80000) 02:42:56 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 02:42:56 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:42:56 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x0, 0x84) dup2(r1, r0) 02:42:56 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x0, 0x84) dup2(r1, r0) [ 1877.344604] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1877.356927] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1877.365599] CPU: 0 PID: 25706 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1877.373498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1877.382859] Call Trace: [ 1877.385454] dump_stack+0x1b2/0x283 [ 1877.389093] warn_alloc.cold+0x96/0x1af [ 1877.393072] ? zone_watermark_ok_safe+0x250/0x250 [ 1877.397927] ? wait_for_completion_io+0x10/0x10 [ 1877.402608] __alloc_pages_nodemask+0x2129/0x2730 [ 1877.407473] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1877.412681] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1877.417539] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1877.422556] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1877.427322] alloc_pages_current+0xe7/0x1e0 [ 1877.431653] kvm_mmu_create+0xd1/0x1c0 [ 1877.435545] kvm_arch_vcpu_init+0x282/0x890 [ 1877.439867] ? alloc_pages_current+0xef/0x1e0 [ 1877.444363] kvm_vcpu_init+0x26d/0x360 [ 1877.448271] vmx_create_vcpu+0xf5/0x2950 [ 1877.452366] ? alloc_loaded_vmcs+0x240/0x240 [ 1877.456774] ? check_tsc_unstable+0x6/0x10 [ 1877.461027] kvm_vm_ioctl+0x4ae/0x1430 [ 1877.464915] ? __lock_acquire+0x655/0x42a0 [ 1877.469151] ? kvm_vcpu_release+0xa0/0xa0 [ 1877.473299] ? check_preemption_disabled+0x35/0x240 [ 1877.478318] ? retint_kernel+0x2d/0x2d [ 1877.482220] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1877.487240] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1877.492006] ? check_preemption_disabled+0x35/0x240 [ 1877.497030] ? retint_kernel+0x2d/0x2d [ 1877.500929] ? do_vfs_ioctl+0x76/0xfe0 [ 1877.504825] ? kvm_vcpu_release+0xa0/0xa0 [ 1877.508983] do_vfs_ioctl+0x75a/0xfe0 [ 1877.512790] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1877.518420] ? ioctl_preallocate+0x1a0/0x1a0 [ 1877.522875] ? security_file_ioctl+0x76/0xb0 [ 1877.527285] ? security_file_ioctl+0x83/0xb0 [ 1877.531696] SyS_ioctl+0x7f/0xb0 [ 1877.535060] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1877.539038] do_syscall_64+0x1d5/0x640 [ 1877.542937] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1877.548125] RIP: 0033:0x45ca59 [ 1877.551309] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1877.559023] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1877.565402] syz-executor.1: [ 1877.566285] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1877.566292] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1877.566298] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1877.566304] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1877.599961] warn_alloc_show_mem: 3 callbacks suppressed [ 1877.600094] Mem-Info: [ 1877.609734] active_anon:455445 inactive_anon:48677 isolated_anon:0 [ 1877.609734] active_file:8228 inactive_file:62646 isolated_file:0 [ 1877.609734] unevictable:2560 dirty:346 writeback:0 unstable:0 [ 1877.609734] slab_reclaimable:125591 slab_unreclaimable:329398 [ 1877.609734] mapped:65332 shmem:38045 pagetables:8765 bounce:0 [ 1877.609734] free:483164 free_pcp:401 free_cma:0 [ 1877.644537] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1877.644786] syz-executor.1 cpuset= [ 1877.655736] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1877.660544] / [ 1877.690288] Node 1 active_anon:466388kB inactive_anon:35476kB active_file:32904kB inactive_file:250584kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36728kB dirty:1384kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1877.709891] syz-executor.0: [ 1877.722052] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1877.726554] mems_allowed=0-1 [ 1877.753704] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1877.760594] Node 0 DMA32 free:36184kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:496kB local_pcp:228kB free_cma:0kB [ 1877.760913] page allocation failure: order:0 [ 1877.792152] lowmem_reserve[]: 0 0 0 0 0 [ 1877.798020] CPU: 1 PID: 25705 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 1877.800834] Node 0 [ 1877.808697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1877.808702] Call Trace: [ 1877.808721] dump_stack+0x1b2/0x283 [ 1877.808737] warn_alloc.cold+0x96/0x1af [ 1877.808747] ? zone_watermark_ok_safe+0x250/0x250 [ 1877.808765] ? wait_for_completion_io+0x10/0x10 [ 1877.808780] __alloc_pages_nodemask+0x2129/0x2730 [ 1877.808808] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1877.808818] ? mark_held_locks+0xa6/0xf0 [ 1877.808829] ? retint_kernel+0x2d/0x2d [ 1877.808844] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1877.808870] alloc_pages_current+0xe7/0x1e0 [ 1877.808885] kvm_mmu_create+0xd1/0x1c0 [ 1877.808899] kvm_arch_vcpu_init+0x282/0x890 [ 1877.808913] kvm_vcpu_init+0x26d/0x360 [ 1877.808926] vmx_create_vcpu+0xf5/0x2950 [ 1877.808940] ? __mutex_unlock_slowpath+0x75/0x780 [ 1877.808952] ? alloc_loaded_vmcs+0x240/0x240 [ 1877.808968] kvm_vm_ioctl+0x4ae/0x1430 [ 1877.808987] ? __lock_acquire+0x655/0x42a0 [ 1877.808998] ? kvm_vcpu_release+0xa0/0xa0 [ 1877.809009] ? check_preemption_disabled+0x35/0x240 [ 1877.809021] ? perf_trace_lock+0x109/0x4b0 [ 1877.809033] ? check_preemption_disabled+0x35/0x240 [ 1877.809044] ? perf_trace_lock+0x109/0x4b0 [ 1877.809053] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1877.809062] ? futex_exit_release+0x60/0x60 [ 1877.809073] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1877.809084] ? lock_acquire+0x170/0x3f0 [ 1877.809094] ? kvm_vcpu_release+0xa0/0xa0 [ 1877.809105] do_vfs_ioctl+0x75a/0xfe0 [ 1877.809119] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1877.809129] ? ioctl_preallocate+0x1a0/0x1a0 [ 1877.809153] ? security_file_ioctl+0x76/0xb0 [ 1877.809162] ? security_file_ioctl+0x83/0xb0 [ 1877.809173] SyS_ioctl+0x7f/0xb0 [ 1877.809180] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1877.809193] do_syscall_64+0x1d5/0x640 [ 1877.809209] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1877.809218] RIP: 0033:0x45ca59 [ 1877.809223] RSP: 002b:00007f9232553c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1877.809234] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1877.809240] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1877.809246] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1877.809252] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1877.809258] R13: 000000000000039c R14: 00000000004c635c R15: 00007f92325546d4 [ 1877.812324] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1877.832057] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1877.850632] (null) [ 1877.858950] lowmem_reserve[]: [ 1877.866383] syz-executor.0 cpuset= [ 1877.871607] 0 [ 1877.879615] / [ 1877.884361] 0 [ 1877.888969] mems_allowed=0-1 [ 1877.893261] 0 [ 1877.901179] CPU: 1 PID: 25708 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0 [ 1877.904698] 0 [ 1877.908435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1877.913468] 0 [ 1877.917637] Call Trace: [ 1877.927118] dump_stack+0x1b2/0x283 [ 1877.932062] Node 1 [ 1877.936341] warn_alloc.cold+0x96/0x1af [ 1877.941251] Normal free:1882408kB min:53592kB low:66988kB high:80384kB active_anon:466300kB inactive_anon:35476kB active_file:32904kB inactive_file:250584kB unevictable:0kB writepending:1356kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3520kB pagetables:6912kB bounce:0kB free_pcp:1340kB local_pcp:728kB free_cma:0kB [ 1877.945192] ? zone_watermark_ok_safe+0x250/0x250 [ 1877.945211] ? wait_for_completion_io+0x10/0x10 [ 1877.945225] __alloc_pages_nodemask+0x2129/0x2730 [ 1877.945252] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1877.949369] lowmem_reserve[]: [ 1877.953166] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1877.953193] alloc_pages_current+0xe7/0x1e0 [ 1877.953208] kvm_mmu_create+0xd1/0x1c0 [ 1877.953220] kvm_arch_vcpu_init+0x282/0x890 [ 1877.953235] kvm_vcpu_init+0x26d/0x360 [ 1877.969581] 0 02:42:57 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) dup3(r1, r2, 0x80000) 02:42:57 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) dup2(0xffffffffffffffff, r0) 02:42:57 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1877.972010] vmx_create_vcpu+0xf5/0x2950 [ 1877.972028] ? alloc_loaded_vmcs+0x240/0x240 [ 1877.972038] ? vmx_create_vcpu+0x2/0x2950 [ 1877.972051] kvm_vm_ioctl+0x4ae/0x1430 [ 1877.972062] ? __lock_acquire+0x655/0x42a0 [ 1877.972073] ? kvm_vcpu_release+0xa0/0xa0 [ 1877.975419] 0 [ 1877.979378] ? check_preemption_disabled+0x35/0x240 [ 1877.987116] 0 [ 1877.988417] ? perf_trace_lock+0x109/0x4b0 [ 1877.991607] 0 [ 1877.999307] ? check_preemption_disabled+0x35/0x240 [ 1877.999318] ? perf_trace_lock+0x109/0x4b0 [ 1877.999325] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1877.999339] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1877.999349] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1877.999361] ? kvm_vcpu_release+0xa0/0xa0 [ 1877.999372] do_vfs_ioctl+0x75a/0xfe0 [ 1878.006715] 0 [ 1878.014312] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1878.014323] ? ioctl_preallocate+0x1a0/0x1a0 [ 1878.014345] ? security_file_ioctl+0x76/0xb0 [ 1878.014354] ? security_file_ioctl+0x83/0xb0 [ 1878.014364] SyS_ioctl+0x7f/0xb0 [ 1878.014373] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1878.029146] do_syscall_64+0x1d5/0x640 [ 1878.036529] Node 0 [ 1878.042270] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1878.042279] RIP: 0033:0x45ca59 [ 1878.042283] RSP: 002b:00007f84b2e37c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1878.042293] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1878.042298] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1878.042304] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1878.042310] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1878.042316] R13: 000000000000039c R14: 00000000004c635c R15: 00007f84b2e386d4 [ 1878.369298] DMA: 5*4kB (UM) 4*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10356kB 02:42:57 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) dup2(0xffffffffffffffff, r0) [ 1878.389531] Node 0 DMA32: 1176*4kB (UMH) 785*8kB (UME) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36200kB [ 1878.444995] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1878.456560] Node 1 Normal: 258*4kB (UE) 619*8kB (UE) 446*16kB (UME) 858*32kB (UME) 232*64kB (UME) 2*128kB (ME) 12*256kB (UM) 22*512kB (UE) 4*1024kB (U) 2*2048kB (U) 441*4096kB (M) = 1884544kB [ 1878.480714] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1878.490829] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1878.509732] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1878.529499] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1878.531671] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1878.544262] 79656 total pagecache pages [ 1878.555838] 0 pages in swap cache [ 1878.559634] Swap cache stats: add 0, delete 0, find 0/0 [ 1878.562081] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1878.568008] Free swap = 0kB [ 1878.575200] Total swap = 0kB [ 1878.578404] 1965979 pages RAM [ 1878.578916] CPU: 1 PID: 25762 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1878.583818] 0 pages HighMem/MovableOnly [ 1878.589409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1878.589414] Call Trace: [ 1878.589431] dump_stack+0x1b2/0x283 [ 1878.589448] warn_alloc.cold+0x96/0x1af [ 1878.589459] ? zone_watermark_ok_safe+0x250/0x250 [ 1878.593606] 338456 pages reserved [ 1878.602763] ? wait_for_completion_io+0x10/0x10 [ 1878.602781] __alloc_pages_nodemask+0x2129/0x2730 [ 1878.602807] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1878.602821] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1878.602834] ? check_preemption_disabled+0x35/0x240 [ 1878.602857] alloc_pages_current+0xe7/0x1e0 [ 1878.611432] 0 pages cma reserved [ 1878.612992] kvm_mmu_create+0xd1/0x1c0 [ 1878.613005] kvm_arch_vcpu_init+0x282/0x890 [ 1878.613013] ? kvm_arch_vcpu_init+0x2/0x890 [ 1878.613027] kvm_vcpu_init+0x26d/0x360 [ 1878.613041] vmx_create_vcpu+0xf5/0x2950 [ 1878.613059] ? __mutex_unlock_slowpath+0x75/0x780 [ 1878.613067] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1878.613078] ? alloc_loaded_vmcs+0x240/0x240 [ 1878.613093] kvm_vm_ioctl+0x4ae/0x1430 [ 1878.613105] ? __lock_acquire+0x655/0x42a0 [ 1878.613116] ? kvm_vcpu_release+0xa0/0xa0 [ 1878.700165] ? check_preemption_disabled+0x35/0x240 [ 1878.705185] ? perf_trace_lock+0x109/0x4b0 [ 1878.709422] ? check_preemption_disabled+0x35/0x240 [ 1878.714442] ? perf_trace_lock+0x109/0x4b0 [ 1878.718685] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1878.723710] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1878.728648] ? retint_kernel+0x2d/0x2d [ 1878.732574] ? kvm_vcpu_release+0xa0/0xa0 [ 1878.736724] do_vfs_ioctl+0x75a/0xfe0 [ 1878.740528] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 02:42:58 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x81, 0x0, 0x0, 0x41b9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x200, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) r7 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) add_key(&(0x7f0000000080)='pkcs7_test\x00', 0x0, &(0x7f0000000200)="3081a3", 0x1001, r7) r8 = add_key(&(0x7f0000000080)='.dead\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)="e4860b0f92e759ae1b1a1426f9c66639e1aeff2b4e0bbabbfa85bcb311d0a4201284611c85c6bc04bf1d1b3dafc94d0461", 0x31, r7) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r8, &(0x7f0000000140)='id_resolver\x00', &(0x7f0000000180)=@secondary='builtin_and_secondary_trusted\x00') ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) setsockopt$rose(r6, 0x104, 0x1, &(0x7f00000001c0)=0x1ff, 0x4) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:58 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = socket$inet(0x2, 0x3, 0x2) getsockopt(r3, 0x0, 0xce, 0x0, &(0x7f0000000000)) setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000000)={@multicast2, @local}, 0x8) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) socket$inet(0x2, 0x3, 0x2) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) setsockopt$inet_MCAST_LEAVE_GROUP(r3, 0x0, 0x2d, &(0x7f0000000100)={0x8, {{0x2, 0x4e24, @loopback}}}, 0x88) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r2, r4, 0x80000) dup2(r1, r5) 02:42:58 executing program 4: r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) dup2(0xffffffffffffffff, r0) 02:42:58 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) [ 1878.746158] ? ioctl_preallocate+0x1a0/0x1a0 [ 1878.750579] ? security_file_ioctl+0x76/0xb0 [ 1878.755009] ? security_file_ioctl+0x83/0xb0 [ 1878.759426] SyS_ioctl+0x7f/0xb0 [ 1878.762880] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1878.766863] do_syscall_64+0x1d5/0x640 [ 1878.770762] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1878.775962] RIP: 0033:0x45ca59 [ 1878.779151] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1878.787247] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 02:42:58 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x400, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = dup3(r2, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r3, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @dev}}) [ 1878.794522] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1878.801796] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1878.809075] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1878.811485] syz-executor.2: [ 1878.816344] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1878.855011] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1878.879405] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1878.894735] CPU: 0 PID: 25789 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1878.902669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1878.907352] warn_alloc_show_mem: 2 callbacks suppressed [ 1878.907369] Mem-Info: [ 1878.912020] Call Trace: [ 1878.912041] dump_stack+0x1b2/0x283 [ 1878.912057] warn_alloc.cold+0x96/0x1af [ 1878.912068] ? zone_watermark_ok_safe+0x250/0x250 [ 1878.912087] ? wait_for_completion_io+0x10/0x10 [ 1878.912103] __alloc_pages_nodemask+0x2129/0x2730 [ 1878.917682] active_anon:455491 inactive_anon:48677 isolated_anon:0 [ 1878.917682] active_file:8228 inactive_file:62660 isolated_file:0 [ 1878.917682] unevictable:2560 dirty:356 writeback:0 unstable:0 [ 1878.917682] slab_reclaimable:125531 slab_unreclaimable:329671 [ 1878.917682] mapped:65589 shmem:38045 pagetables:8838 bounce:0 [ 1878.917682] free:482949 free_pcp:269 free_cma:0 [ 1878.919910] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1878.919923] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1878.919950] ? do_raw_spin_unlock+0x164/0x250 [ 1878.928656] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1878.930122] alloc_pages_current+0xe7/0x1e0 [ 1878.930140] kvm_mmu_create+0xd1/0x1c0 [ 1878.930153] kvm_arch_vcpu_init+0x282/0x890 [ 1878.930164] ? alloc_pages_current+0xef/0x1e0 [ 1878.930179] kvm_vcpu_init+0x26d/0x360 [ 1878.938557] Node 1 active_anon:466572kB inactive_anon:35476kB active_file:32904kB inactive_file:250640kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:37756kB dirty:1424kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1878.939665] vmx_create_vcpu+0xf5/0x2950 [ 1878.939682] ? __mutex_unlock_slowpath+0x75/0x780 [ 1878.939692] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1878.939706] ? alloc_loaded_vmcs+0x240/0x240 [ 1878.948480] Node 0 [ 1878.983412] kvm_vm_ioctl+0x4ae/0x1430 [ 1878.983427] ? __lock_acquire+0x655/0x42a0 02:42:58 executing program 4: perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r0, 0xffffffffffffffff) [ 1878.983438] ? kvm_vcpu_release+0xa0/0xa0 [ 1878.983448] ? check_preemption_disabled+0x35/0x240 [ 1878.983458] ? perf_trace_lock+0x109/0x4b0 [ 1878.983469] ? check_preemption_disabled+0x35/0x240 [ 1878.983480] ? perf_trace_lock+0x109/0x4b0 [ 1878.983488] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1878.983498] ? futex_exit_release+0x60/0x60 [ 1878.983509] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1878.983523] ? lock_acquire+0x170/0x3f0 [ 1878.997241] DMA free:10356kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1878.997666] ? kvm_vcpu_release+0xa0/0xa0 [ 1878.997679] do_vfs_ioctl+0x75a/0xfe0 [ 1878.997694] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1879.034072] lowmem_reserve[]: [ 1879.034134] ? ioctl_preallocate+0x1a0/0x1a0 [ 1879.034155] ? security_file_ioctl+0x76/0xb0 [ 1879.038555] 0 [ 1879.042933] ? security_file_ioctl+0x83/0xb0 [ 1879.042945] SyS_ioctl+0x7f/0xb0 [ 1879.042953] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1879.042966] do_syscall_64+0x1d5/0x640 [ 1879.042983] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1879.042991] RIP: 0033:0x45ca59 [ 1879.042996] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1879.043007] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1879.043013] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1879.043018] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1879.043027] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1879.047363] 2559 [ 1879.074978] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1879.274033] 2559 2559 2559 [ 1879.277174] Node 0 DMA32 free:36200kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:560kB local_pcp:300kB free_cma:0kB 02:42:58 executing program 4: perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r0, 0xffffffffffffffff) [ 1879.330114] lowmem_reserve[]: 0 0 0 0 0 [ 1879.340857] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1879.353689] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1879.385571] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1879.390872] CPU: 0 PID: 25789 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1879.398885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1879.408261] Call Trace: [ 1879.410852] dump_stack+0x1b2/0x283 [ 1879.411916] lowmem_reserve[]: [ 1879.414495] warn_alloc.cold+0x96/0x1af [ 1879.414510] ? zone_watermark_ok_safe+0x250/0x250 [ 1879.417641] 0 [ 1879.421675] ? wait_for_completion_io+0x10/0x10 [ 1879.421695] __alloc_pages_nodemask+0x2129/0x2730 [ 1879.437850] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1879.441557] 0 [ 1879.442696] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1879.442722] ? do_raw_spin_unlock+0x164/0x250 [ 1879.442737] alloc_pages_current+0xe7/0x1e0 [ 1879.444529] 0 [ 1879.449348] kvm_mmu_create+0xd1/0x1c0 [ 1879.449363] kvm_arch_vcpu_init+0x282/0x890 [ 1879.457179] 0 [ 1879.458141] ? alloc_pages_current+0xef/0x1e0 [ 1879.458155] kvm_vcpu_init+0x26d/0x360 [ 1879.459946] 0 [ 1879.463810] vmx_create_vcpu+0xf5/0x2950 [ 1879.463824] ? __mutex_unlock_slowpath+0x75/0x780 [ 1879.463833] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1879.463845] ? alloc_loaded_vmcs+0x240/0x240 [ 1879.463861] kvm_vm_ioctl+0x4ae/0x1430 [ 1879.463874] ? __lock_acquire+0x655/0x42a0 [ 1879.463885] ? kvm_vcpu_release+0xa0/0xa0 [ 1879.463899] ? check_preemption_disabled+0x35/0x240 [ 1879.474504] ? perf_trace_lock+0x109/0x4b0 [ 1879.474518] ? check_preemption_disabled+0x35/0x240 [ 1879.478396] Node 1 [ 1879.480173] ? perf_trace_lock+0x109/0x4b0 [ 1879.480183] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1879.488970] Normal free:1882968kB min:53592kB low:66988kB high:80384kB active_anon:466232kB inactive_anon:35476kB active_file:32904kB inactive_file:250648kB unevictable:0kB writepending:1448kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3488kB pagetables:7148kB bounce:0kB free_pcp:1168kB local_pcp:568kB free_cma:0kB [ 1879.489056] ? futex_exit_release+0x60/0x60 [ 1879.489071] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1879.495391] lowmem_reserve[]: 02:42:59 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1879.498467] ? lock_acquire+0x170/0x3f0 [ 1879.498483] ? kvm_vcpu_release+0xa0/0xa0 [ 1879.503643] 0 [ 1879.506565] do_vfs_ioctl+0x75a/0xfe0 [ 1879.506583] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1879.510725] 0 [ 1879.515727] ? ioctl_preallocate+0x1a0/0x1a0 [ 1879.515747] ? security_file_ioctl+0x76/0xb0 [ 1879.515755] ? security_file_ioctl+0x83/0xb0 [ 1879.515766] SyS_ioctl+0x7f/0xb0 [ 1879.515774] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1879.515788] do_syscall_64+0x1d5/0x640 [ 1879.515805] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1879.524529] 0 [ 1879.525035] RIP: 0033:0x45ca59 [ 1879.525044] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 [ 1879.527289] 0 [ 1879.531474] ORIG_RAX: 0000000000000010 [ 1879.531481] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1879.531486] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1879.531494] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1879.539808] 0 [ 1879.565998] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1879.566005] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1879.728392] Node 0 DMA: 5*4kB (UM) 2*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10340kB [ 1879.771903] Node 0 DMA32: 1176*4kB (UMH) 785*8kB (UME) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36200kB [ 1879.789955] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1879.800868] Node 1 Normal: 355*4kB (UME) 360*8kB (UME) 517*16kB (UME) 878*32kB (UME) 232*64kB (UME) 15*128kB (UME) 7*256kB (UM) 21*512kB (UE) 5*1024kB (U) 2*2048kB (U) 441*4096kB (M) = 1885532kB [ 1879.823975] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1879.835913] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1879.849655] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1879.862225] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 02:42:59 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 02:42:59 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002580)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f00000008c0)=""/117, 0x75}, {&(0x7f0000000480)=""/126, 0x7e}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/127, 0x7f}, {&(0x7f0000000280)=""/9, 0x9}, {&(0x7f0000000680)=""/140, 0x8c}, {&(0x7f0000000740)=""/95, 0x5f}], 0x8, &(0x7f0000000880)=""/25, 0x19}}, {{0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x4ac}, {{&(0x7f0000000a80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000e80)=""/110, 0x6e}, {0x0}], 0x2, &(0x7f00000014c0)=""/252, 0xfc}}], 0x3, 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f00000007c0)=[@in6={0xa, 0x4e22, 0x0, @dev={0xfe, 0x80, [], 0x32}}, @in={0x2, 0x0, @remote}, @in6={0xa, 0x4e22, 0xffff, @loopback, 0x8}, @in6={0xa, 0x4e22, 0x9, @local, 0x8}], 0x64) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @local}], 0x20) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000400), 0xc, 0x0, 0x1, 0x0, 0x0, 0x88095}, 0x0) 02:42:59 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r5 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:42:59 executing program 4: perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r0, 0xffffffffffffffff) 02:42:59 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x400, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = dup3(r2, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r3, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @dev}}) 02:42:59 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) dup3(r1, r2, 0x80000) [ 1879.870853] 79661 total pagecache pages [ 1879.880071] 0 pages in swap cache [ 1879.885045] Swap cache stats: add 0, delete 0, find 0/0 [ 1879.890452] Free swap = 0kB [ 1879.898557] Total swap = 0kB [ 1879.904023] 1965979 pages RAM [ 1879.907135] 0 pages HighMem/MovableOnly [ 1879.911102] 338456 pages reserved [ 1879.916221] 0 pages cma reserved 02:42:59 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002580)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f00000008c0)=""/117, 0x75}, {&(0x7f0000000480)=""/126, 0x7e}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/127, 0x7f}, {&(0x7f0000000280)=""/9, 0x9}, {&(0x7f0000000680)=""/140, 0x8c}, {&(0x7f0000000740)=""/95, 0x5f}], 0x8, &(0x7f0000000880)=""/25, 0x19}}, {{0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x4ac}, {{&(0x7f0000000a80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000e80)=""/110, 0x6e}, {0x0}], 0x2, &(0x7f00000014c0)=""/252, 0xfc}}], 0x3, 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f00000007c0)=[@in6={0xa, 0x4e22, 0x0, @dev={0xfe, 0x80, [], 0x32}}, @in={0x2, 0x0, @remote}, @in6={0xa, 0x4e22, 0xffff, @loopback, 0x8}, @in6={0xa, 0x4e22, 0x9, @local, 0x8}], 0x64) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @local}], 0x20) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000400), 0xc, 0x0, 0x1, 0x0, 0x0, 0x88095}, 0x0) [ 1880.057718] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1880.076204] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1880.089476] CPU: 1 PID: 25858 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1880.097388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1880.106749] Call Trace: [ 1880.109357] dump_stack+0x1b2/0x283 [ 1880.112995] warn_alloc.cold+0x96/0x1af [ 1880.116973] ? zone_watermark_ok_safe+0x250/0x250 [ 1880.121834] ? wait_for_completion_io+0x10/0x10 [ 1880.126516] __alloc_pages_nodemask+0x2129/0x2730 [ 1880.131381] ? retint_kernel+0x2d/0x2d [ 1880.135272] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1880.140121] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1880.145144] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1880.149916] ? check_preemption_disabled+0x35/0x240 [ 1880.154941] ? retint_kernel+0x2d/0x2d [ 1880.158848] alloc_pages_current+0xe7/0x1e0 [ 1880.163181] kvm_mmu_create+0xd1/0x1c0 [ 1880.167076] kvm_arch_vcpu_init+0x282/0x890 [ 1880.171404] ? alloc_pages_current+0xef/0x1e0 [ 1880.176024] kvm_vcpu_init+0x26d/0x360 [ 1880.179922] vmx_create_vcpu+0xf5/0x2950 [ 1880.184010] ? __mutex_unlock_slowpath+0x75/0x780 [ 1880.188882] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1880.193912] ? alloc_loaded_vmcs+0x240/0x240 [ 1880.198335] kvm_vm_ioctl+0x4ae/0x1430 [ 1880.202232] ? __lock_acquire+0x655/0x42a0 [ 1880.206558] ? kvm_vcpu_release+0xa0/0xa0 [ 1880.210712] ? check_preemption_disabled+0x35/0x240 [ 1880.215734] ? retint_kernel+0x2d/0x2d [ 1880.219631] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1880.224655] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1880.229441] ? check_preemption_disabled+0x35/0x240 [ 1880.234466] ? retint_kernel+0x2d/0x2d [ 1880.238364] ? do_vfs_ioctl+0xcc8/0xfe0 [ 1880.242346] ? kvm_vcpu_release+0xa0/0xa0 [ 1880.246498] do_vfs_ioctl+0x75a/0xfe0 [ 1880.250738] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1880.256360] ? ioctl_preallocate+0x1a0/0x1a0 [ 1880.260780] ? security_file_ioctl+0x76/0xb0 [ 1880.265197] ? security_file_ioctl+0x83/0xb0 [ 1880.269612] SyS_ioctl+0x7f/0xb0 [ 1880.272980] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1880.276958] do_syscall_64+0x1d5/0x640 [ 1880.280865] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1880.286053] RIP: 0033:0x45ca59 [ 1880.289270] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1880.296978] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1880.304262] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1880.311534] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1880.318805] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1880.326081] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 02:43:00 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) add_key(&(0x7f0000000080)='pkcs7_test\x00', 0x0, &(0x7f0000000200)="3081a3", 0x1001, 0x0) r2 = request_key(&(0x7f0000000180)='pkcs7_test\x00', &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000000240)='.\xf7(&\x00', 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0506617, &(0x7f0000000280)=ANY=[@ANYBLOB="0300000000000000ea3f85834fa48e0fff662fb2568886da00000000000000000000000000000000df000000", @ANYRES32=r2, @ANYBLOB="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"]) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000c40)=ANY=[@ANYBLOB="66696c74657200000000000000000000000000000000000000000000000000000e0000000400000098030000f8000000c8010000f8000000c8010000f8000000c8020000c8020000c8020000c8020000c80200000400000000000000000000004cc7872711511674c05009ff3488171900000000000000000000ffff000000000000000000000000000000000000000000000000000000000000000000000000736974300000000000000000000000006272696467655f736c6176655f3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d000f8000000000000000000000000000000000000000000000000002800686c00000000000000000000000000000000000000000000000000000000000000000000000028004e46515545554500000000000000000000000000000000000000000000020000018000000000fe880000000000000000000000000001fe880000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000068737230000000000000000000000000000000000000000000000000000000000000000000000000000000000000530000000000000000000000000000000000000000000000000000000000a800d00000000000000000000000000000000000000000000000000028004e46515545554500000000000000000000000000000000000bed4bd500020000060000000000fe8000000000000000000000000000bbfe88000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000006272696467655f736c6176655f310000626174616476300000000000000000000000000000000000000000000000000000000000000000000000000000000000110000050000000000000000d800000100000000000000000000000000000000000000000000000030006c32747000000000000000000000000000000000000000000000000000000000000000000000f7ff010000000000280052454a45435400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a800d0000000000000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff"], 0x1) r4 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000100)=@assoc_value={r5}, 0x8) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r3, 0x84, 0x79, &(0x7f0000000000)={r5, 0x2, 0x9}, 0x8) r6 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r6, &(0x7f0000000200)={0xa, 0x0, 0x9, @dev={0xfe, 0x80, [], 0x42}, 0x1ffffffc}, 0x1c) splice(r0, 0x0, r6, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1880.646887] warn_alloc_show_mem: 2 callbacks suppressed [ 1880.646908] Mem-Info: [ 1880.655722] active_anon:459537 inactive_anon:48677 isolated_anon:0 [ 1880.655722] active_file:8228 inactive_file:62673 isolated_file:0 [ 1880.655722] unevictable:2560 dirty:375 writeback:0 unstable:0 [ 1880.655722] slab_reclaimable:125458 slab_unreclaimable:330153 [ 1880.655722] mapped:65608 shmem:38045 pagetables:8835 bounce:0 [ 1880.655722] free:477677 free_pcp:279 free_cma:0 [ 1880.697991] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1880.700089] ip6_tables: ip6tables: counters copy to user failed while replacing table 02:43:00 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) add_key(&(0x7f0000000080)='pkcs7_test\x00', 0x0, &(0x7f0000000200)="3081a3", 0x1001, 0x0) r2 = request_key(&(0x7f0000000180)='pkcs7_test\x00', &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000000240)='.\xf7(&\x00', 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0506617, &(0x7f0000000280)=ANY=[@ANYBLOB="0300000000000000ea3f85834fa48e0fff662fb2568886da00000000000000000000000000000000df000000", @ANYRES32=r2, @ANYBLOB="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"]) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000c40)=ANY=[@ANYBLOB="66696c74657200000000000000000000000000000000000000000000000000000e0000000400000098030000f8000000c8010000f8000000c8010000f8000000c8020000c8020000c8020000c8020000c80200000400000000000000000000004cc7872711511674c05009ff3488171900000000000000000000ffff000000000000000000000000000000000000000000000000000000000000000000000000736974300000000000000000000000006272696467655f736c6176655f3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d000f8000000000000000000000000000000000000000000000000002800686c00000000000000000000000000000000000000000000000000000000000000000000000028004e46515545554500000000000000000000000000000000000000000000020000018000000000fe880000000000000000000000000001fe880000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000068737230000000000000000000000000000000000000000000000000000000000000000000000000000000000000530000000000000000000000000000000000000000000000000000000000a800d00000000000000000000000000000000000000000000000000028004e46515545554500000000000000000000000000000000000bed4bd500020000060000000000fe8000000000000000000000000000bbfe88000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000006272696467655f736c6176655f310000626174616476300000000000000000000000000000000000000000000000000000000000000000000000000000000000110000050000000000000000d800000100000000000000000000000000000000000000000000000030006c32747000000000000000000000000000000000000000000000000000000000000000000000f7ff010000000000280052454a45435400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a800d0000000000000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff"], 0x1) r4 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000100)=@assoc_value={r5}, 0x8) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r3, 0x84, 0x79, &(0x7f0000000000)={r5, 0x2, 0x9}, 0x8) r6 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r6, &(0x7f0000000200)={0xa, 0x0, 0x9, @dev={0xfe, 0x80, [], 0x42}, 0x1ffffffc}, 0x1c) splice(r0, 0x0, r6, 0x0, 0x4ffe0, 0x0) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) 02:43:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) connect$phonet_pipe(r2, &(0x7f00000000c0)={0x23, 0x9, 0x7}, 0x10) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = dup3(r3, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r4, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @dev}}) [ 1880.732233] Node 1 active_anon:482756kB inactive_anon:35476kB active_file:32904kB inactive_file:250692kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36832kB dirty:1500kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1880.766081] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1880.828644] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1880.834281] Node 0 DMA32 free:36200kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:584kB local_pcp:324kB free_cma:0kB [ 1880.865598] lowmem_reserve[]: 0 0 0 0 0 [ 1880.870156] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1880.898459] lowmem_reserve[]: 0 0 0 0 0 02:43:00 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) dup3(r1, r2, 0x80000) 02:43:00 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) [ 1880.912026] Node 1 Normal free:1866200kB min:53592kB low:66988kB high:80384kB active_anon:482876kB inactive_anon:35476kB active_file:32904kB inactive_file:250692kB unevictable:0kB writepending:1552kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3392kB pagetables:7332kB bounce:0kB free_pcp:588kB local_pcp:488kB free_cma:0kB [ 1880.954006] lowmem_reserve[]: 0 0 0 0 0 [ 1880.954877] ip6_tables: ip6tables: counters copy to user failed while replacing table [ 1880.959501] Node 0 DMA: 5*4kB (UM) 2*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10340kB [ 1881.002741] Node 0 DMA32: 1176*4kB (UMH) 777*8kB (UME) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36136kB [ 1881.023816] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1881.037634] Node 1 Normal: 298*4kB (UME) 449*8kB (UME) 285*16kB (UE) 770*32kB (UME) 236*64kB (UME) 13*128kB (UME) 14*256kB (UM) 24*512kB (UME) 6*1024kB (UM) 3*2048kB (UM) 436*4096kB (M) = 1864768kB [ 1881.056748] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1881.068060] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1881.077054] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1881.100685] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1881.110615] 79678 total pagecache pages [ 1881.120281] 0 pages in swap cache [ 1881.126481] Swap cache stats: add 0, delete 0, find 0/0 [ 1881.134450] Free swap = 0kB [ 1881.138802] Total swap = 0kB [ 1881.143622] 1965979 pages RAM [ 1881.149912] 0 pages HighMem/MovableOnly [ 1881.180944] 338456 pages reserved [ 1881.186047] 0 pages cma reserved 02:43:00 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r1, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) connect$phonet_pipe(r2, &(0x7f00000000c0)={0x23, 0x9, 0x7}, 0x10) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = dup3(r3, r1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r4, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @dev}}) 02:43:00 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa\x00', 0x400, 0x0) r7 = open(&(0x7f0000000000)='./file0\x00', 0x2, 0xa) getsockname$ax25(r7, &(0x7f0000000040)={{0x3, @bcast}, [@null, @remote, @remote, @bcast, @bcast, @bcast, @rose, @null]}, &(0x7f0000000100)=0x48) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$TUNGETSNDBUF(r7, 0x800454d3, &(0x7f0000000140)) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:43:00 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r5 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:43:01 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 1881.451195] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1881.486319] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1881.501341] CPU: 1 PID: 25955 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1881.509347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1881.518706] Call Trace: [ 1881.521305] dump_stack+0x1b2/0x283 [ 1881.524942] warn_alloc.cold+0x96/0x1af [ 1881.528757] syz-executor.1: [ 1881.528917] ? zone_watermark_ok_safe+0x250/0x250 [ 1881.528937] ? wait_for_completion_io+0x10/0x10 [ 1881.541469] __alloc_pages_nodemask+0x2129/0x2730 [ 1881.546336] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1881.551182] ? mark_held_locks+0xa6/0xf0 [ 1881.555254] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1881.560102] ? retint_kernel+0x2d/0x2d [ 1881.563999] ? retint_kernel+0x2d/0x2d [ 1881.564745] page allocation failure: order:0 [ 1881.567887] alloc_pages_current+0xe7/0x1e0 [ 1881.567905] kvm_mmu_create+0xd1/0x1c0 [ 1881.567920] kvm_arch_vcpu_init+0x282/0x890 [ 1881.567931] ? alloc_pages_current+0xef/0x1e0 [ 1881.567944] kvm_vcpu_init+0x26d/0x360 [ 1881.567958] vmx_create_vcpu+0xf5/0x2950 [ 1881.567975] ? alloc_loaded_vmcs+0x240/0x240 [ 1881.593432] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1881.595255] ? arch_uninstall_hw_breakpoint.cold+0x20/0x20 [ 1881.595272] kvm_vm_ioctl+0x4ae/0x1430 [ 1881.595287] ? __lock_acquire+0x655/0x42a0 [ 1881.595298] ? kvm_vcpu_release+0xa0/0xa0 [ 1881.595308] ? check_preemption_disabled+0x35/0x240 [ 1881.595326] ? retint_kernel+0x2d/0x2d [ 1881.620875] (null) [ 1881.623363] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1881.623374] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1881.623386] ? check_preemption_disabled+0x35/0x240 [ 1881.623397] ? retint_kernel+0x2d/0x2d [ 1881.623416] ? do_vfs_ioctl+0x76/0xfe0 [ 1881.623427] ? kvm_vcpu_release+0xa0/0xa0 [ 1881.623438] do_vfs_ioctl+0x75a/0xfe0 [ 1881.623452] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1881.623463] ? ioctl_preallocate+0x1a0/0x1a0 [ 1881.623485] ? security_file_ioctl+0x76/0xb0 [ 1881.623495] ? security_file_ioctl+0x83/0xb0 [ 1881.623506] SyS_ioctl+0x7f/0xb0 [ 1881.623513] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1881.623526] do_syscall_64+0x1d5/0x640 [ 1881.623542] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1881.623550] RIP: 0033:0x45ca59 [ 1881.623555] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1881.623566] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1881.623572] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1881.623578] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1881.623585] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1881.623592] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1881.810512] syz-executor.1 cpuset=/ mems_allowed=0-1 [ 1881.818884] CPU: 0 PID: 25922 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 1881.827242] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1881.837043] Call Trace: [ 1881.839678] dump_stack+0x1b2/0x283 [ 1881.843318] warn_alloc.cold+0x96/0x1af [ 1881.847310] ? zone_watermark_ok_safe+0x250/0x250 [ 1881.852183] ? wait_for_completion_io+0x10/0x10 [ 1881.856951] __alloc_pages_nodemask+0x2129/0x2730 [ 1881.860891] syz-executor.2: [ 1881.861822] ? retint_kernel+0x2d/0x2d [ 1881.861836] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1881.861846] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1881.861854] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1881.861885] alloc_pages_current+0xe7/0x1e0 [ 1881.865134] page allocation failure: order:0 [ 1881.868787] kvm_mmu_create+0xd1/0x1c0 [ 1881.868802] kvm_arch_vcpu_init+0x282/0x890 [ 1881.868815] ? alloc_pages_current+0xef/0x1e0 [ 1881.868829] kvm_vcpu_init+0x26d/0x360 [ 1881.868843] vmx_create_vcpu+0xf5/0x2950 [ 1881.868861] ? alloc_loaded_vmcs+0x240/0x240 [ 1881.868876] ? alloc_loaded_vmcs+0x240/0x240 [ 1881.886450] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1881.888026] ? kvm_arch_vcpu_create+0x7f/0xb0 [ 1881.888060] kvm_vm_ioctl+0x4ae/0x1430 [ 1881.888074] ? __lock_acquire+0x655/0x42a0 [ 1881.888085] ? kvm_vcpu_release+0xa0/0xa0 [ 1881.888096] ? check_preemption_disabled+0x35/0x240 [ 1881.888107] ? perf_trace_lock+0x109/0x4b0 [ 1881.892767] (null) [ 1881.896378] ? check_preemption_disabled+0x35/0x240 [ 1881.896391] ? perf_trace_lock+0x109/0x4b0 [ 1881.896406] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1881.896418] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1881.896432] ? kvm_vcpu_release+0xa0/0xa0 [ 1881.896443] do_vfs_ioctl+0x75a/0xfe0 [ 1881.896457] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1881.896467] ? ioctl_preallocate+0x1a0/0x1a0 [ 1881.901057] syz-executor.2 cpuset= [ 1881.905255] ? security_file_ioctl+0x76/0xb0 [ 1881.905264] ? security_file_ioctl+0x83/0xb0 [ 1881.905275] SyS_ioctl+0x7f/0xb0 [ 1881.905282] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1881.905296] do_syscall_64+0x1d5/0x640 [ 1881.905316] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1881.905325] RIP: 0033:0x45ca59 [ 1881.905336] RSP: 002b:00007f9232553c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1881.905347] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1881.905356] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1881.921943] / 02:43:01 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002580)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000200)=""/101, 0x65}, {&(0x7f0000000480)=""/126, 0x7e}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/131, 0x83}, {&(0x7f0000000280)=""/9, 0x9}, {&(0x7f0000000680)=""/140, 0x8c}, {&(0x7f0000000740)=""/95, 0x5f}], 0x8, &(0x7f0000000880)=""/25, 0x19}}, {{0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x4ac}, {{&(0x7f0000000a80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000e80)=""/110, 0x6e}, {0x0}], 0x2, &(0x7f00000014c0)=""/252, 0xfc}}], 0x3, 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000140)=[@in6={0xa, 0x4e22, 0x0, @ipv4={[0x0, 0x0, 0x0, 0xfec0000000000000], [], @initdev={0xac, 0x1e, 0x0, 0x0}}}, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x2c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @local}], 0x20) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000400), 0xc, 0x0, 0x1, 0x0, 0x0, 0x88095}, 0x0) [ 1881.922319] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1881.929675] mems_allowed=0-1 [ 1881.932694] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1881.932701] R13: 000000000000039c R14: 00000000004c635c R15: 00007f92325546d4 [ 1881.988317] warn_alloc_show_mem: 1 callbacks suppressed [ 1881.988343] Mem-Info: [ 1882.005144] CPU: 1 PID: 25955 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1882.005151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1882.005155] Call Trace: [ 1882.005173] dump_stack+0x1b2/0x283 [ 1882.005189] warn_alloc.cold+0x96/0x1af [ 1882.005201] ? zone_watermark_ok_safe+0x250/0x250 [ 1882.005221] ? wait_for_completion_io+0x10/0x10 [ 1882.005238] __alloc_pages_nodemask+0x2129/0x2730 [ 1882.005267] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1882.005279] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1882.005304] ? check_preemption_disabled+0x35/0x240 [ 1882.005319] alloc_pages_current+0xe7/0x1e0 [ 1882.005333] kvm_mmu_create+0xd1/0x1c0 [ 1882.005346] kvm_arch_vcpu_init+0x282/0x890 [ 1882.005355] ? alloc_pages_current+0xef/0x1e0 [ 1882.005369] kvm_vcpu_init+0x26d/0x360 [ 1882.005383] vmx_create_vcpu+0xf5/0x2950 [ 1882.005399] ? __mutex_unlock_slowpath+0x75/0x780 [ 1882.015766] active_anon:459553 inactive_anon:48677 isolated_anon:0 [ 1882.015766] active_file:8230 inactive_file:62687 isolated_file:0 [ 1882.015766] unevictable:2560 dirty:410 writeback:0 unstable:0 [ 1882.015766] slab_reclaimable:125453 slab_unreclaimable:330085 [ 1882.015766] mapped:65377 shmem:38045 pagetables:8804 bounce:0 [ 1882.015766] free:477541 free_pcp:437 free_cma:0 [ 1882.017135] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1882.017153] ? alloc_loaded_vmcs+0x240/0x240 [ 1882.017173] kvm_vm_ioctl+0x4ae/0x1430 [ 1882.021181] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1882.026242] ? __lock_acquire+0x655/0x42a0 [ 1882.026252] ? kvm_vcpu_release+0xa0/0xa0 [ 1882.026261] ? check_preemption_disabled+0x35/0x240 [ 1882.026272] ? perf_trace_lock+0x109/0x4b0 [ 1882.026284] ? check_preemption_disabled+0x35/0x240 [ 1882.026296] ? perf_trace_lock+0x109/0x4b0 [ 1882.026305] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1882.026317] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1882.026327] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1882.026339] ? kvm_vcpu_release+0xa0/0xa0 [ 1882.026351] do_vfs_ioctl+0x75a/0xfe0 [ 1882.026362] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1882.026373] ? ioctl_preallocate+0x1a0/0x1a0 [ 1882.026396] ? security_file_ioctl+0x76/0xb0 [ 1882.037410] Node 1 active_anon:482820kB inactive_anon:35476kB active_file:32912kB inactive_file:250748kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:36908kB dirty:1640kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1882.044601] ? security_file_ioctl+0x83/0xb0 [ 1882.044615] SyS_ioctl+0x7f/0xb0 [ 1882.044623] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1882.044635] do_syscall_64+0x1d5/0x640 02:43:01 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) getsockopt$PNPIPE_IFINDEX(r1, 0x113, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x4) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}}, 0x0, 0xb, 0xffffffffffffffff, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r3, r4, 0x80000) dup2(r2, r5) getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000080), &(0x7f0000000140)=0x4) [ 1882.044653] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1882.044661] RIP: 0033:0x45ca59 [ 1882.044666] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1882.044678] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1882.044684] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1882.044690] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1882.044695] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1882.044702] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1882.454096] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1882.468326] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1882.475530] CPU: 0 PID: 25969 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1882.483430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1882.492786] Call Trace: [ 1882.495385] dump_stack+0x1b2/0x283 [ 1882.499022] warn_alloc.cold+0x96/0x1af [ 1882.503011] ? zone_watermark_ok_safe+0x250/0x250 [ 1882.507875] ? check_preemption_disabled+0x35/0x240 [ 1882.512903] ? wait_for_completion_io+0x10/0x10 [ 1882.517588] __alloc_pages_nodemask+0x2129/0x2730 [ 1882.522452] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1882.527302] ? mark_held_locks+0xa6/0xf0 [ 1882.531371] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1882.536237] alloc_pages_current+0xe7/0x1e0 [ 1882.540563] kvm_mmu_create+0xd1/0x1c0 [ 1882.544458] kvm_arch_vcpu_init+0x282/0x890 [ 1882.548789] kvm_vcpu_init+0x26d/0x360 [ 1882.552682] vmx_create_vcpu+0xf5/0x2950 [ 1882.556746] ? __mutex_unlock_slowpath+0x75/0x780 [ 1882.561587] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1882.566607] ? alloc_loaded_vmcs+0x240/0x240 [ 1882.571044] kvm_vm_ioctl+0x4ae/0x1430 [ 1882.574939] ? __lock_acquire+0x655/0x42a0 [ 1882.579178] ? kvm_vcpu_release+0xa0/0xa0 [ 1882.583325] ? check_preemption_disabled+0x35/0x240 [ 1882.588342] ? retint_kernel+0x2d/0x2d [ 1882.592232] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1882.597251] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1882.602020] ? check_preemption_disabled+0x35/0x240 [ 1882.607038] ? retint_kernel+0x2d/0x2d [ 1882.610931] ? kvm_vcpu_release+0xa0/0xa0 [ 1882.615088] ? kvm_vm_ioctl+0x2/0x1430 [ 1882.617351] syz-executor.2: [ 1882.618973] ? kvm_vcpu_release+0xa0/0xa0 [ 1882.618987] do_vfs_ioctl+0x75a/0xfe0 [ 1882.619002] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1882.635454] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1882.635570] ? ioctl_preallocate+0x1a0/0x1a0 [ 1882.635592] ? security_file_ioctl+0x76/0xb0 [ 1882.654013] ? security_file_ioctl+0x83/0xb0 [ 1882.658427] SyS_ioctl+0x7f/0xb0 [ 1882.661800] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1882.665794] do_syscall_64+0x1d5/0x640 [ 1882.669697] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1882.674897] RIP: 0033:0x45ca59 [ 1882.676201] (null) [ 1882.678078] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1882.678091] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1882.678097] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 02:43:02 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa\x00', 0x400, 0x0) r7 = open(&(0x7f0000000000)='./file0\x00', 0x2, 0xa) getsockname$ax25(r7, &(0x7f0000000040)={{0x3, @bcast}, [@null, @remote, @remote, @bcast, @bcast, @bcast, @rose, @null]}, &(0x7f0000000100)=0x48) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$TUNGETSNDBUF(r7, 0x800454d3, &(0x7f0000000140)) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1882.678102] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1882.678111] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1882.688234] syz-executor.2 cpuset= [ 1882.695231] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1882.772814] / mems_allowed=0-1 [ 1882.783633] CPU: 1 PID: 26010 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1882.791546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1882.800906] Call Trace: [ 1882.803500] dump_stack+0x1b2/0x283 [ 1882.807151] warn_alloc.cold+0x96/0x1af [ 1882.811135] ? zone_watermark_ok_safe+0x250/0x250 [ 1882.815997] ? wait_for_completion_io+0x10/0x10 [ 1882.820682] __alloc_pages_nodemask+0x2129/0x2730 [ 1882.825557] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1882.830414] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1882.835287] ? do_raw_spin_unlock+0x164/0x250 [ 1882.839797] alloc_pages_current+0xe7/0x1e0 [ 1882.844136] kvm_mmu_create+0xd1/0x1c0 [ 1882.846992] Node 0 [ 1882.848030] kvm_arch_vcpu_init+0x282/0x890 [ 1882.848043] ? alloc_pages_current+0xef/0x1e0 [ 1882.848058] kvm_vcpu_init+0x26d/0x360 [ 1882.848073] vmx_create_vcpu+0xf5/0x2950 [ 1882.848089] ? __mutex_unlock_slowpath+0x75/0x780 [ 1882.848102] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1882.862973] DMA free:10340kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1882.863005] lowmem_reserve[]: [ 1882.867060] ? alloc_loaded_vmcs+0x240/0x240 [ 1882.867080] kvm_vm_ioctl+0x4ae/0x1430 [ 1882.867095] ? __lock_acquire+0x655/0x42a0 [ 1882.867106] ? kvm_vcpu_release+0xa0/0xa0 [ 1882.867120] ? check_preemption_disabled+0x35/0x240 [ 1882.883784] 0 [ 1882.902798] ? perf_trace_lock+0x109/0x4b0 [ 1882.902814] ? check_preemption_disabled+0x35/0x240 [ 1882.902827] ? perf_trace_lock+0x109/0x4b0 [ 1882.902836] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1882.902846] ? futex_exit_release+0x60/0x60 [ 1882.902857] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1882.902867] ? lock_acquire+0x170/0x3f0 [ 1882.902878] ? kvm_vcpu_release+0xa0/0xa0 [ 1882.902889] do_vfs_ioctl+0x75a/0xfe0 02:43:02 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 1882.902902] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1882.902914] ? ioctl_preallocate+0x1a0/0x1a0 [ 1882.902934] ? security_file_ioctl+0x76/0xb0 [ 1882.902943] ? security_file_ioctl+0x83/0xb0 [ 1882.902955] SyS_ioctl+0x7f/0xb0 [ 1882.902963] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1882.902977] do_syscall_64+0x1d5/0x640 [ 1882.902994] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1882.903002] RIP: 0033:0x45ca59 [ 1882.903008] RSP: 002b:00007f735f301c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1882.903018] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1882.903024] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1882.903030] RBP: 000000000078c040 R08: 0000000000000000 R09: 0000000000000000 [ 1882.903035] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1882.903042] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3026d4 [ 1883.092510] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1883.106735] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1883.113047] CPU: 0 PID: 26007 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1883.120945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1883.130391] Call Trace: [ 1883.132990] dump_stack+0x1b2/0x283 [ 1883.136630] warn_alloc.cold+0x96/0x1af [ 1883.140613] ? zone_watermark_ok_safe+0x250/0x250 [ 1883.145510] ? wait_for_completion_io+0x10/0x10 [ 1883.150191] __alloc_pages_nodemask+0x2129/0x2730 [ 1883.155063] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1883.159913] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1883.164799] ? do_raw_spin_unlock+0x164/0x250 [ 1883.169306] alloc_pages_current+0xe7/0x1e0 [ 1883.173635] kvm_mmu_create+0xd1/0x1c0 [ 1883.177532] kvm_arch_vcpu_init+0x282/0x890 [ 1883.181859] ? alloc_pages_current+0xef/0x1e0 [ 1883.186363] kvm_vcpu_init+0x26d/0x360 02:43:02 executing program 5: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002580)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000200)=""/85, 0x55}, {&(0x7f0000000480)=""/126, 0x7e}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/131, 0x83}, {&(0x7f0000000140)=""/10, 0xa}, {&(0x7f0000000680)=""/140, 0x8c}, {&(0x7f0000000740)=""/95, 0x5f}], 0x8, &(0x7f0000000880)=""/25, 0x19}}, {{0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x4ac}, {{&(0x7f0000000a80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000e80)=""/110, 0x6e}, {0x0}], 0x2, &(0x7f00000014c0)=""/252, 0xfc}}], 0x3, 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000180)=[@in6={0xa, 0x4e22, 0x0, @ipv4={[0x0, 0x0, 0x0, 0xfec0000000000000], [], @local}}, @in={0x2, 0x0, @remote}], 0x2c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @local}], 0x20) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000400), 0xc, 0x0, 0x1, 0x0, 0x0, 0x88095}, 0x0) [ 1883.190257] vmx_create_vcpu+0xf5/0x2950 [ 1883.194324] ? __mutex_unlock_slowpath+0x75/0x780 [ 1883.199167] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1883.204463] ? alloc_loaded_vmcs+0x240/0x240 [ 1883.208888] kvm_vm_ioctl+0x4ae/0x1430 [ 1883.212788] ? __lock_acquire+0x655/0x42a0 [ 1883.217029] ? kvm_vcpu_release+0xa0/0xa0 [ 1883.221186] ? check_preemption_disabled+0x35/0x240 [ 1883.226225] ? perf_trace_lock+0x109/0x4b0 [ 1883.230467] ? check_preemption_disabled+0x35/0x240 [ 1883.235489] ? perf_trace_lock+0x109/0x4b0 02:43:02 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) ioctl$SG_SET_KEEP_ORPHAN(r6, 0x2287, &(0x7f0000000000)=0x5) dup2(r1, r4) [ 1883.239760] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1883.244695] ? futex_exit_release+0x60/0x60 [ 1883.249031] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1883.253966] ? lock_acquire+0x170/0x3f0 [ 1883.257946] ? kvm_vcpu_release+0xa0/0xa0 [ 1883.262095] do_vfs_ioctl+0x75a/0xfe0 [ 1883.265900] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1883.271528] ? ioctl_preallocate+0x1a0/0x1a0 [ 1883.275953] ? security_file_ioctl+0x76/0xb0 [ 1883.280370] ? security_file_ioctl+0x83/0xb0 [ 1883.284785] SyS_ioctl+0x7f/0xb0 [ 1883.288152] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1883.292132] do_syscall_64+0x1d5/0x640 [ 1883.296075] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1883.301282] RIP: 0033:0x45ca59 [ 1883.304472] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1883.312184] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1883.319455] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1883.326726] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1883.334002] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1883.341279] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1883.413753] warn_alloc_show_mem: 3 callbacks suppressed [ 1883.413758] Mem-Info: [ 1883.422842] active_anon:463722 inactive_anon:48677 isolated_anon:0 [ 1883.422842] active_file:8233 inactive_file:62691 isolated_file:0 [ 1883.422842] unevictable:2560 dirty:425 writeback:0 unstable:0 [ 1883.422842] slab_reclaimable:125409 slab_unreclaimable:330740 [ 1883.422842] mapped:65442 shmem:38045 pagetables:8894 bounce:0 [ 1883.422842] free:472730 free_pcp:430 free_cma:0 [ 1883.467741] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1883.496368] Node 1 active_anon:499596kB inactive_anon:35476kB active_file:32924kB inactive_file:250764kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:37168kB dirty:1700kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1883.515984] 2559 [ 1883.526234] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1883.540374] 2559 [ 1883.572573] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1883.580225] Node 0 DMA32 free:36128kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:596kB local_pcp:256kB free_cma:0kB [ 1883.613492] lowmem_reserve[]: 0 0 0 0 0 [ 1883.617524] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1883.643592] 2559 2559 [ 1883.646833] Node 0 DMA32 free:36128kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:596kB local_pcp:340kB free_cma:0kB [ 1883.647431] lowmem_reserve[]: 0 0 0 0 0 [ 1883.682502] Node 1 Normal free:1845180kB min:53592kB low:66988kB high:80384kB active_anon:499496kB inactive_anon:35476kB active_file:32924kB inactive_file:250764kB unevictable:0kB writepending:1700kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3328kB pagetables:7368kB bounce:0kB free_pcp:1296kB local_pcp:644kB free_cma:0kB [ 1883.685643] lowmem_reserve[]: [ 1883.712822] lowmem_reserve[]: 0 0 0 0 0 [ 1883.712847] Node 0 DMA: 5*4kB (UM) 2*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10340kB [ 1883.712935] Node 0 DMA32: 1176*4kB (UMH) 778*8kB (UME) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) [ 1883.725516] 0 [ 1883.736586] 39*128kB (M) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36144kB [ 1883.754913] 0 [ 1883.756193] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1883.759700] 0 [ 1883.768803] Node 1 Normal: 315*4kB (UME) 1280*8kB (UME) 1153*16kB (UME) 792*32kB (UME) 232*64kB (UE) 7*128kB (UE) 2*256kB (UM) 2*512kB (ME) 2*1024kB (UM) 1*2048kB (M) 432*4096kB (M) = 1846140kB [ 1883.768898] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1883.778321] 0 [ 1883.788247] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1883.788256] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1883.788262] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1883.788267] 79694 total pagecache pages [ 1883.788276] 0 pages in swap cache [ 1883.788282] Swap cache stats: add 0, delete 0, find 0/0 [ 1883.788286] Free swap = 0kB [ 1883.788289] Total swap = 0kB [ 1883.788297] 1965979 pages RAM [ 1883.788301] 0 pages HighMem/MovableOnly [ 1883.788304] 338456 pages reserved [ 1883.788308] 0 pages cma reserved [ 1883.864482] 0 [ 1883.866353] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1883.892663] lowmem_reserve[]: 0 0 0 0 0 [ 1883.896752] Node 1 Normal free:1846304kB min:53592kB low:66988kB high:80384kB active_anon:499196kB inactive_anon:35476kB active_file:32924kB inactive_file:250764kB unevictable:0kB writepending:1700kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3200kB pagetables:7220kB bounce:0kB free_pcp:1360kB local_pcp:696kB free_cma:0kB [ 1883.929912] lowmem_reserve[]: 0 0 0 0 0 [ 1883.934584] Node 0 DMA: 5*4kB (UM) 2*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10340kB [ 1883.951200] Node 0 DMA32: 1176*4kB (UMH) 778*8kB (UME) 118*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36144kB [ 1883.968216] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1883.981057] Node 1 Normal: 422*4kB (UME) 1093*8kB (UME) 1181*16kB (UE) 799*32kB (UME) 233*64kB (UME) 15*128kB (UE) 3*256kB (UM) 2*512kB (ME) 2*1024kB (UM) 1*2048kB (M) 432*4096kB (M) = 1847088kB [ 1884.000278] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1884.009987] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1884.019454] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1884.029020] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1884.039524] 79706 total pagecache pages [ 1884.044932] 0 pages in swap cache [ 1884.048395] Swap cache stats: add 0, delete 0, find 0/0 [ 1884.055380] Free swap = 0kB [ 1884.058431] Total swap = 0kB [ 1884.063115] 1965979 pages RAM [ 1884.066248] 0 pages HighMem/MovableOnly [ 1884.070219] 338456 pages reserved 02:43:03 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r1, r2, 0x80000) 02:43:03 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x1, 0x7) recvmmsg(r1, &(0x7f0000002580)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000200)=""/101, 0x65}, {&(0x7f0000000480)=""/126, 0x7e}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/131, 0x83}, {&(0x7f0000000280)=""/9, 0x9}, {&(0x7f0000000680)=""/140, 0x8c}, {&(0x7f0000000740)=""/95, 0x5f}], 0x8, &(0x7f0000000880)=""/25, 0x19}}, {{0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x4ac}, {{&(0x7f0000000a80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000e80)=""/110, 0x6e}, {0x0}], 0x2, &(0x7f00000014c0)=""/252, 0xfc}}], 0x3, 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) perf_event_open(&(0x7f00000008c0)={0x1, 0x70, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x90, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000180)=[@in6={0xa, 0x4e22, 0x0, @ipv4={[0x0, 0x0, 0x0, 0xfec0000000000000], [], @local}}, @in={0x2, 0x0, @remote}], 0x2c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e24, @remote}, @in={0x2, 0x4e22, @local}], 0x20) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000400), 0xc, 0x0, 0x1, 0x0, 0x0, 0x88095}, 0x0) 02:43:03 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x0, 0x10000002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:43:03 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r5) r6 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r8, 0xae60) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x100000400201) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup2(r1, r4) 02:43:03 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) r6 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x21, 0x37, 0x2, {0x1, 0x101, 0x36fe5b74, r0, 0x3, '#%]'}}, 0x21) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 1884.075893] 0 pages cma reserved 02:43:03 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r0, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x3, 0xff) r1 = socket$inet(0x2, 0x3, 0x2) getsockopt(r1, 0x0, 0xce, 0x0, &(0x7f0000000000)) r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhost-vsock\x00', 0x2, 0x0) r3 = socket$inet(0x2, 0x3, 0x2) getsockopt(r3, 0x0, 0xce, 0x0, &(0x7f0000000000)) splice(r3, 0x0, r2, 0x0, 0x8, 0xd) r4 = socket$inet(0x2, 0x3, 0x2) getsockopt(r4, 0x0, 0xce, 0x0, &(0x7f0000000000)) ioctl$sock_inet_SIOCSIFNETMASK(r4, 0x891c, &(0x7f0000000000)={'sit0\x00', {0x2, 0x4e22, @loopback}}) ioctl$UI_SET_RELBIT(0xffffffffffffffff, 0x40045566, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, 0x0) [ 1884.346171] warn_alloc: 3 callbacks suppressed [ 1884.346188] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1884.381351] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1884.394908] CPU: 1 PID: 26072 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1884.402808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1884.412171] Call Trace: [ 1884.414767] dump_stack+0x1b2/0x283 [ 1884.418412] warn_alloc.cold+0x96/0x1af [ 1884.422390] ? zone_watermark_ok_safe+0x250/0x250 [ 1884.427252] ? wait_for_completion_io+0x10/0x10 [ 1884.432455] __alloc_pages_nodemask+0x2129/0x2730 [ 1884.437412] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1884.442283] ? retint_kernel+0x2d/0x2d [ 1884.444505] syz-executor.3: [ 1884.446170] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1884.446180] ? retint_kernel+0x2d/0x2d [ 1884.446202] ? retint_kernel+0x2d/0x2d [ 1884.446218] alloc_pages_current+0xe7/0x1e0 [ 1884.446237] kvm_mmu_create+0xd1/0x1c0 [ 1884.449674] page allocation failure: order:0 [ 1884.454076] kvm_arch_vcpu_init+0x282/0x890 [ 1884.454087] ? alloc_pages_current+0xef/0x1e0 [ 1884.454103] kvm_vcpu_init+0x26d/0x360 [ 1884.454117] vmx_create_vcpu+0xf5/0x2950 [ 1884.454132] ? __mutex_unlock_slowpath+0x75/0x780 [ 1884.454141] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1884.454154] ? alloc_loaded_vmcs+0x240/0x240 [ 1884.454171] kvm_vm_ioctl+0x4ae/0x1430 [ 1884.454183] ? __lock_acquire+0x655/0x42a0 [ 1884.454194] ? kvm_vcpu_release+0xa0/0xa0 [ 1884.454204] ? check_preemption_disabled+0x35/0x240 [ 1884.454216] ? perf_trace_lock+0x109/0x4b0 [ 1884.454228] ? check_preemption_disabled+0x35/0x240 [ 1884.454240] ? perf_trace_lock+0x109/0x4b0 [ 1884.454249] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1884.454258] ? futex_exit_release+0x60/0x60 [ 1884.454271] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1884.454282] ? lock_acquire+0x170/0x3f0 [ 1884.454293] ? kvm_vcpu_release+0xa0/0xa0 [ 1884.454304] do_vfs_ioctl+0x75a/0xfe0 [ 1884.454317] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1884.454328] ? ioctl_preallocate+0x1a0/0x1a0 [ 1884.454351] ? security_file_ioctl+0x76/0xb0 [ 1884.454360] ? security_file_ioctl+0x83/0xb0 [ 1884.454373] SyS_ioctl+0x7f/0xb0 [ 1884.584946] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1884.588907] do_syscall_64+0x1d5/0x640 [ 1884.592785] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1884.597979] RIP: 0033:0x45ca59 [ 1884.601148] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1884.608856] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1884.616117] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1884.623371] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1884.630840] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1884.638103] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1884.659701] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1884.668493] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1884.674768] Mem-Info: [ 1884.674849] active_anon:463756 inactive_anon:48677 isolated_anon:0 [ 1884.674849] active_file:8234 inactive_file:62702 isolated_file:0 [ 1884.674849] unevictable:2560 dirty:446 writeback:0 unstable:0 [ 1884.674849] slab_reclaimable:125403 slab_unreclaimable:330765 [ 1884.674849] mapped:65428 shmem:38045 pagetables:8936 bounce:0 [ 1884.674849] free:472560 free_pcp:481 free_cma:0 [ 1884.674884] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1884.675045] Node 1 active_anon:499632kB inactive_anon:35476kB active_file:32928kB inactive_file:250808kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:37112kB dirty:1784kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1884.675065] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1884.675144] lowmem_reserve[]: 0 2559 2559 2559 2559 [ 1884.675335] Node 0 DMA32 free:36248kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:608kB local_pcp:340kB free_cma:0kB [ 1884.675413] lowmem_reserve[]: 0 0 0 0 0 [ 1884.675582] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1884.675632] lowmem_reserve[]: 0 0 0 0 0 [ 1884.675911] Node 1 Normal free:1843752kB min:53592kB low:66988kB high:80384kB active_anon:499632kB inactive_anon:35476kB active_file:32928kB inactive_file:250808kB unevictable:0kB writepending:1784kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3648kB pagetables:7684kB bounce:0kB free_pcp:1212kB local_pcp:584kB free_cma:0kB [ 1884.675991] lowmem_reserve[]: 0 [ 1884.694058] CPU: 0 PID: 26076 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1884.719247] 0 [ 1884.741900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1884.741905] Call Trace: [ 1884.741925] dump_stack+0x1b2/0x283 [ 1884.741943] warn_alloc.cold+0x96/0x1af [ 1884.741954] ? zone_watermark_ok_safe+0x250/0x250 [ 1884.741973] ? wait_for_completion_io+0x10/0x10 [ 1884.741988] __alloc_pages_nodemask+0x2129/0x2730 [ 1884.742017] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1884.742028] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1884.742053] ? check_preemption_disabled+0x35/0x240 [ 1884.742072] alloc_pages_current+0xe7/0x1e0 [ 1884.742087] kvm_mmu_create+0xd1/0x1c0 [ 1884.742100] kvm_arch_vcpu_init+0x282/0x890 [ 1884.742110] ? alloc_pages_current+0xef/0x1e0 [ 1884.742125] kvm_vcpu_init+0x26d/0x360 [ 1884.742137] vmx_create_vcpu+0xf5/0x2950 [ 1884.742151] ? __mutex_unlock_slowpath+0x75/0x780 [ 1884.742160] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1884.742173] ? alloc_loaded_vmcs+0x240/0x240 [ 1884.742190] kvm_vm_ioctl+0x4ae/0x1430 [ 1884.742202] ? __lock_acquire+0x655/0x42a0 [ 1884.742213] ? kvm_vcpu_release+0xa0/0xa0 [ 1884.742223] ? check_preemption_disabled+0x35/0x240 [ 1884.742234] ? perf_trace_lock+0x109/0x4b0 [ 1884.742247] ? check_preemption_disabled+0x35/0x240 [ 1884.742258] ? perf_trace_lock+0x109/0x4b0 [ 1884.742267] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1884.742278] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1884.742290] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1884.742303] ? kvm_vcpu_release+0xa0/0xa0 [ 1884.742314] do_vfs_ioctl+0x75a/0xfe0 [ 1884.742326] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1884.742337] ? ioctl_preallocate+0x1a0/0x1a0 [ 1884.742359] ? security_file_ioctl+0x76/0xb0 [ 1884.742368] ? security_file_ioctl+0x83/0xb0 [ 1884.742379] SyS_ioctl+0x7f/0xb0 [ 1884.742387] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1884.742399] do_syscall_64+0x1d5/0x640 [ 1884.742416] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1884.742424] RIP: 0033:0x45ca59 [ 1884.742430] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1884.742441] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1884.742447] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1884.742453] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1884.742459] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1884.742464] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1884.839843] syz-executor.5: [ 1884.868811] 0 [ 1884.905296] page allocation failure: order:0 [ 1884.911774] 0 [ 1884.913954] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1884.927610] 0 [ 1884.928720] (null) [ 1884.938539] syz-executor.5 cpuset= [ 1884.947208] Node 0 [ 1884.947499] / [ 1884.952528] DMA: [ 1884.958257] mems_allowed=0-1 [ 1884.971655] 5*4kB [ 1884.976944] CPU: 0 PID: 26077 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1884.979712] (UM) 02:43:04 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa\x00', 0x400, 0x0) r7 = open(&(0x7f0000000000)='./file0\x00', 0x2, 0xa) getsockname$ax25(r7, &(0x7f0000000040)={{0x3, @bcast}, [@null, @remote, @remote, @bcast, @bcast, @bcast, @rose, @null]}, &(0x7f0000000100)=0x48) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$TUNGETSNDBUF(r7, 0x800454d3, &(0x7f0000000140)) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1884.983385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1884.983390] Call Trace: [ 1884.983409] dump_stack+0x1b2/0x283 [ 1884.983426] warn_alloc.cold+0x96/0x1af [ 1884.983437] ? zone_watermark_ok_safe+0x250/0x250 [ 1884.983456] ? wait_for_completion_io+0x10/0x10 [ 1884.983473] __alloc_pages_nodemask+0x2129/0x2730 [ 1884.983501] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1884.983512] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1884.983535] ? trace_hardirqs_on_thunk+0x1a/0x1c 02:43:04 executing program 4: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x400000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002580)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000200)=""/101, 0x65}, {&(0x7f0000000480)=""/126, 0x7e}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/131, 0x83}, {&(0x7f0000000280)=""/9, 0x9}, {&(0x7f0000000680)=""/140, 0x8c}, {&(0x7f0000000740)=""/95, 0x5f}], 0x8, &(0x7f0000000880)=""/25, 0x19}}, {{0x0, 0x0, &(0x7f0000000f40)=[{0x0}], 0x1}, 0x4ac}, {{&(0x7f0000000a80)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000000e80)=""/110, 0x6e}, {0x0}], 0x2, &(0x7f00000014c0)=""/252, 0xfc}}], 0x3, 0x0, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x80002, 0x0) sendto$inet6(r4, 0x0, 0x0, 0x400806e, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000000)="6fb3ffff0000cee5", 0x8}], 0x1}}], 0x1, 0x0) setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x84, 0x3, &(0x7f00000000c0)=0x3, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440)}, 0x0, 0x0, 0x0, 0x1, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000180)=[@in6={0xa, 0x4e22, 0x0, @ipv4={[0x0, 0x0, 0x0, 0xfec0000000000000], [], @local}}, @in={0x2, 0x0, @remote}], 0x2c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r5, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @local}], 0x20) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000400), 0xc, 0x0, 0x1, 0x0, 0x0, 0x88095}, 0x0) [ 1884.983552] alloc_pages_current+0xe7/0x1e0 [ 1884.983567] kvm_mmu_create+0xd1/0x1c0 [ 1884.983581] kvm_arch_vcpu_init+0x282/0x890 [ 1884.983590] ? alloc_pages_current+0xef/0x1e0 [ 1884.983603] kvm_vcpu_init+0x26d/0x360 [ 1884.983616] vmx_create_vcpu+0xf5/0x2950 [ 1884.983632] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1884.983646] ? alloc_loaded_vmcs+0x240/0x240 [ 1884.983663] kvm_vm_ioctl+0x4ae/0x1430 [ 1884.983676] ? __lock_acquire+0x655/0x42a0 [ 1884.983687] ? kvm_vcpu_release+0xa0/0xa0 [ 1884.983698] ? retint_kernel+0x2d/0x2d [ 1884.983708] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1884.983717] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1884.983731] ? check_preemption_disabled+0x35/0x240 [ 1884.983740] ? retint_kernel+0x2d/0x2d [ 1884.983762] ? selinux_file_ioctl+0x2d0/0x560 [ 1884.983773] ? kvm_vcpu_release+0xa0/0xa0 [ 1884.983784] do_vfs_ioctl+0x75a/0xfe0 [ 1884.983796] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1884.983807] ? ioctl_preallocate+0x1a0/0x1a0 [ 1884.983829] ? security_file_ioctl+0x76/0xb0 [ 1884.983839] ? security_file_ioctl+0x83/0xb0 [ 1884.983850] SyS_ioctl+0x7f/0xb0 [ 1884.983858] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1884.983871] do_syscall_64+0x1d5/0x640 [ 1884.983887] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1884.983895] RIP: 0033:0x45ca59 [ 1884.983901] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1884.983912] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1884.983920] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1884.988201] 2*8kB [ 1884.992797] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1884.992803] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1884.992809] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1885.192314] syz-executor.3: [ 1885.201185] (UM) [ 1885.210649] page allocation failure: order:0 [ 1885.219951] 2*16kB [ 1885.229049] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1885.232056] (UM) [ 1885.237106] (null) [ 1885.240728] 3*32kB (UME) 1*64kB (E) [ 1885.250212] syz-executor.3 cpuset= [ 1885.265824] 3*128kB [ 1885.291700] / [ 1885.301227] (UME) [ 1885.322928] mems_allowed=0-1 [ 1885.336030] 2*256kB [ 1885.342537] CPU: 0 PID: 26076 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1885.347811] (ME) [ 1885.348244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1885.348249] Call Trace: [ 1885.348266] dump_stack+0x1b2/0x283 [ 1885.348281] warn_alloc.cold+0x96/0x1af [ 1885.353347] 2*512kB [ 1885.356124] ? zone_watermark_ok_safe+0x250/0x250 [ 1885.356145] ? wait_for_completion_io+0x10/0x10 [ 1885.356164] __alloc_pages_nodemask+0x2129/0x2730 [ 1885.365392] (ME) [ 1885.372313] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1885.372328] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1885.372342] ? check_preemption_disabled+0x35/0x240 [ 1885.372366] alloc_pages_current+0xe7/0x1e0 [ 1885.384433] 2*1024kB [ 1885.387788] kvm_mmu_create+0xd1/0x1c0 [ 1885.387805] kvm_arch_vcpu_init+0x282/0x890 [ 1885.389941] (ME) [ 1885.397195] ? alloc_pages_current+0xef/0x1e0 [ 1885.397207] kvm_vcpu_init+0x26d/0x360 [ 1885.397220] vmx_create_vcpu+0xf5/0x2950 [ 1885.397234] ? __mutex_unlock_slowpath+0x75/0x780 [ 1885.397244] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1885.397260] ? alloc_loaded_vmcs+0x240/0x240 [ 1885.408694] 1*2048kB [ 1885.411781] kvm_vm_ioctl+0x4ae/0x1430 [ 1885.411794] ? __lock_acquire+0x655/0x42a0 [ 1885.411805] ? kvm_vcpu_release+0xa0/0xa0 [ 1885.411821] ? check_preemption_disabled+0x35/0x240 [ 1885.411836] ? perf_trace_lock+0x109/0x4b0 [ 1885.417383] (E) [ 1885.421305] ? check_preemption_disabled+0x35/0x240 [ 1885.421319] ? perf_trace_lock+0x109/0x4b0 [ 1885.421329] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1885.425360] 1*4096kB [ 1885.429443] ? futex_exit_release+0x60/0x60 [ 1885.429456] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1885.429468] ? lock_acquire+0x170/0x3f0 [ 1885.429480] ? kvm_vcpu_release+0xa0/0xa0 [ 1885.429492] do_vfs_ioctl+0x75a/0xfe0 [ 1885.429511] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1885.441433] (M) [ 1885.443385] ? ioctl_preallocate+0x1a0/0x1a0 02:43:05 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) ioctl$IMGETVERSION(r1, 0x80044942, &(0x7f0000000240)) getsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f00000000c0), &(0x7f0000000100)=0x4) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2}) readv(r2, &(0x7f0000000380)=[{&(0x7f0000000280)=""/196, 0x10}], 0x1) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$VIDIOC_G_TUNER(0xffffffffffffffff, 0xc054561d, &(0x7f0000000180)={0x4f00, "2b7a8c75162c9a55912878bc8f849d3cdac563e2682814ef57b30e33531e5e0c", 0x1, 0x4, 0x7f, 0x1, 0x2, 0x4, 0xffffff81, 0xa1cd}) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0xa) ioctl$PPPOEIOCSFWD(r4, 0x4008b100, &(0x7f0000000200)={0x18, 0x0, {0x3, @dev={[], 0x24}, 'caif0\x00'}}) r5 = dup3(r3, r2, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r5, 0x8982, &(0x7f0000000000)={0x0, 'syzkaller1\x00'}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'veth1_vlan\x00', {0x7, 0x0, @multicast1}}) [ 1885.443406] ? security_file_ioctl+0x76/0xb0 [ 1885.445174] = 10340kB [ 1885.447231] ? security_file_ioctl+0x83/0xb0 [ 1885.447244] SyS_ioctl+0x7f/0xb0 [ 1885.447251] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1885.447264] do_syscall_64+0x1d5/0x640 [ 1885.447281] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1885.447291] RIP: 0033:0x45ca59 [ 1885.450444] Node 0 [ 1885.452675] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1885.452686] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1885.452691] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 000000000000000b [ 1885.452696] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1885.452702] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1885.452708] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1885.557006] syz-executor.1: [ 1885.587084] DMA32: [ 1885.589122] page allocation failure: order:0 [ 1885.589283] 1176*4kB [ 1885.599445] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1885.615296] (UMH) [ 1885.650608] (null) [ 1885.653900] 788*8kB [ 1885.660185] syz-executor.1 cpuset= [ 1885.667786] (UMEH) [ 1885.678842] / [ 1885.700629] 119*16kB [ 1885.721430] mems_allowed=0-1 [ 1885.737734] (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36240kB [ 1885.776846] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1885.788816] Node 1 Normal: 282*4kB (UME) 314*8kB (UME) 1303*16kB (UME) 818*32kB (UME) 240*64kB (UME) 31*128kB (UME) 5*256kB (UM) 2*512kB (ME) 1*1024kB (M) 1*2048kB (U) 431*4096kB (M) = 1840744kB [ 1885.792461] CPU: 0 PID: 26086 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0 [ 1885.813824] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1885.815719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1885.815724] Call Trace: [ 1885.815745] dump_stack+0x1b2/0x283 [ 1885.815762] warn_alloc.cold+0x96/0x1af [ 1885.824826] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1885.834017] ? zone_watermark_ok_safe+0x250/0x250 [ 1885.834036] ? wait_for_completion_io+0x10/0x10 [ 1885.834051] __alloc_pages_nodemask+0x2129/0x2730 [ 1885.834086] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1885.838014] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1885.840258] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1885.840289] alloc_pages_current+0xe7/0x1e0 [ 1885.844548] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1885.852808] kvm_mmu_create+0xd1/0x1c0 [ 1885.852822] kvm_arch_vcpu_init+0x282/0x890 [ 1885.852833] ? alloc_pages_current+0xef/0x1e0 [ 1885.852846] kvm_vcpu_init+0x26d/0x360 [ 1885.852861] vmx_create_vcpu+0xf5/0x2950 [ 1885.858523] 79719 total pagecache pages [ 1885.862337] ? __mutex_unlock_slowpath+0x75/0x780 [ 1885.862348] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1885.862361] ? alloc_loaded_vmcs+0x240/0x240 [ 1885.862379] kvm_vm_ioctl+0x4ae/0x1430 [ 1885.862391] ? __lock_acquire+0x655/0x42a0 [ 1885.862403] ? kvm_vcpu_release+0xa0/0xa0 [ 1885.862416] ? check_preemption_disabled+0x35/0x240 [ 1885.867438] 0 pages in swap cache [ 1885.872085] ? perf_trace_lock+0x109/0x4b0 [ 1885.872098] ? check_preemption_disabled+0x35/0x240 [ 1885.872109] ? perf_trace_lock+0x109/0x4b0 [ 1885.872118] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1885.872127] ? futex_exit_release+0x60/0x60 [ 1885.872142] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1885.883025] Swap cache stats: add 0, delete 0, find 0/0 [ 1885.885783] ? retint_kernel+0x2d/0x2d [ 1885.885798] ? kvm_vcpu_release+0xa0/0xa0 [ 1885.885809] do_vfs_ioctl+0x75a/0xfe0 [ 1885.885827] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1885.890129] Free swap = 0kB [ 1885.898678] ? ioctl_preallocate+0x1a0/0x1a0 [ 1885.898698] ? security_file_ioctl+0x76/0xb0 [ 1885.898706] ? security_file_ioctl+0x83/0xb0 [ 1885.898717] SyS_ioctl+0x7f/0xb0 [ 1885.898725] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1885.898738] do_syscall_64+0x1d5/0x640 [ 1885.898755] entry_SYSCALL_64_after_hwframe+0x46/0xbb 02:43:05 executing program 3: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r7) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000180)) ptrace$setregs(0xd, 0x0, 0x8, &(0x7f00000013c0)="2dbfba2276344eeb745e6248372656cfd508c8ca8d1e98b27aeafd1bc15be73bb8dee0ad5a7e15b2b4ccea9edc9a5d2e360beb3277e0c65099712be8ba125b8952ad47733ede271781c6c8cadec44bdca16cc4f472e4ac7715f9aaa0304808cbe46b79fd6c7ba19037f871262bc129e51d747c614cb69d7be053a402f7f4acf25e8a0377f2dc9846d0d3d55a2c526d593e2c088a02d7696da62035849a067759f502a706704ba7603107e7ae8e4c19713ca6d6e7e36e46c99ddef2a9c8e588b201529922051197e316a58e8a3d79481f6bb1300a6616c27d4376eef8415422a59be4f2bea443fb86ad471c552b251ed78cf86c03fa9d6664c463b2f56e413747d412d6c9e1dd120bb55f66db9bfe5e38f3f1fb5c2f8a143b88e2dcf25613b3a30d0fab8a78f7d6584d3214de2029e739766e85401b7d9256717e7fed98556c0862124a6ea29db9cd6037c7dbcebf868a71c05e4572b6b77a03d0ce24e3379e18a82cf35555c0d527ac41dcd4a48af613e407dd3e770722ecd68027ddc0925524b056615e82c71986b14263accff662fd28761ed447ec1a9717ba66458f41205d032f3c4b23c4b6914f9eaacd2c40e4b923fc65c00383b268bf3bab7c9f2381b5298c84728c555a0197b42b3a67dfa3abd2e0227bdd2969ee2a515eab5283e83cf35c1d3b744c3de6331ef6d03e7f85bdec3e7a7c9bb43f0794cd3c56022da625e758970efddcf62047539137aa2a6a862cc3f91d950f68f40db3f45bee2c19634914575489f2864966997bde96ad155f6fd22193e1258859fa26f14d1fd894f74b4237e02d45f79b31c6a6da4363072406ade31a7cadfabff5a4b19c03b2c8b34a2be2d57ac0a22cd96518054b3a07732071f78074ed725011aa5c9e2f8cc5aef1c5b538bc8db9d7b9c01e04781ec08b2f9c88d83f4817b3f7dc2b1ebf2a7fb5ab6fe95cb36e049c5de085450ada1dc1c9c823ae2fd03ccc8bf93fda16350bc9259dfad13ca514ea603061d63dc8099f29a5eed1292ad13b543cb6222e13d20235d5581458756f3ac100ab8bfebfdd2668fbe62013debae30668a391d6b6d97ac09345ebc84214710e7b7bcaa31c9fe2cbbd3f7b7d43a593fe3afc591d32dd6bd9c6e6fe2f2cf27f9a9c3d32d5374c8414791ebe6a4b70cabf5492bd32b853b1436190c6d7dcab35a0167b1c733eaf21efb846327d94aabbfee4bc151b7baadc37dd77c5f78fb8b01e5b804c9b61ebbba4458711608efb2a0eb5586f19ffdd1583ccfc6f784b45bf8225887dc717c63c1d7705d1b54fe32b5638aeb759e526229e7a0a2a76f81677eabfb8fadd45b5f1750ab55c136be9076c2c04697ca8f3c6eebd1e796f05f8e90d67cde4640c48f0d003db72d85e92ea6a880d216992edb9f58a04719842b0827eb8e986189011fa7854aaa001720c87f528453acc1f1de156a5470ae4c9700981b036cfd1bb6ffd762554496f7aaad3acbaf81aee25d1c86f5030ccd1d7443d472a756439c1deaf4cfb41c327981a1dd0f9478fb5be7340e032b5930aa831a4e9b624d03db8763ff0bedd2c7a16e33f02dc6d7e4a1a63967987c6430e73b4f20e8f1b663f8501d69f31fb0cd45f84c66312b76f79b4c434cffc9a1104e6d762c48a93ee1d2e5e4de7a45fdd9500a540e67373a8555b0e117f55573317adea15f1fc13f11a610a2dcf819487d871b80b1c9b5bbbaca5f8ff1d57df2f1cb597c26c853150a4841b1438e53d9367e25509936a05fd702abb3ab5863b98ff91354bab888c8640291e1c567e6344baaff5a85fa9d6a8b09845bc6962b15d0e050f6a677a6d5015eae1e6a9795377db2096fb02c18b4d05dd84959b70f690ee83640b040e9135e3f7c4fb6e5d2159f6a213997afe4ca3770bc31385a5109a3897d3dc1d7c84464f93e5dc3cc752c871c48b370c8c47fb86163236d335aaa56e8e87f2bb7ea7109ae9fc2f54b9024486b406b22d0be938991cf1db9d86302a38c7de1e62a1448da6c639d9adeeba055c75b197b65747c6a770e0a2ae786a36ba403645566290e6e6047cfdcac588d4c7c168e8f9ae112e6cc43e410a47468b169022d6679ce8f61c97619d45a56940be18e0a677c5f44a4f82999ee03455b6deaca2d82f1ce7cc143766d9b2bb57f1e7e2bd8b845940e66b664cbc9661a9da3cd027df6717a3b3ed658abbc61fbec4c9f80c7b966ce4eaf808b1cfa4c8f3c37cd309a462d0a5ef5a4ece559876e3ceef816ece941230fac7d0b1b98672ceba9ca72491516384653489053b682f45110d451ec80463b751656c743b8183d13792e1cd0de8435c18b6f613a95b287e1920196234acb39995356cb26c7f8485d41ccbf14edca26f22fa78cc3dd6df4958c353e5ae18aa30fa4b1a061a0b6382c5ad8d199a4ddb27857e1eb0d0618ca4e54d9d803922c3e0da004a9bf584910897477bb37678141551b46e9bde7305541beb9a5786e91e0b62abe1cb309adfb66e27967aa5300ab41279aecf81434011eab684ec884ca2c53d272349e52f09ee6f9ed2f8af87974b5a4875931b3e2be8814cf4db437bc2d25059e665a712a64edb7960ba7901c8bc88b5e25b5aa5d2dc9d0f68cd1619168984dbd30fe26024cc195721987023e5ed0737e9b68869914f833b270b35fe7a456f9e198d54171caf854272b3cc3b46531eb5d5faad5729ddd0ce739061f63a8cae1a52b86d9d842566423ee97c8dfa6820c9a1de7b762f656b4c2945e72dbd8c52e3e77982f0962f022b9cf17f8e31f742e15d2bf48939c5262694d7ae9cb05583060b321373d4903cb7cad47bc4fd79efaf87d58f4b4e2ee081614daf6ea6493964a42f8de3c9b9ba272eabb228e4ba791f54e512e3d82e31fc78d05b825a517df9ae76cb2becc943eadc89ab42a42013abb7deb63006baf15d98c6b71f86b79e6385b6ff126ecb42df64b9efe7ba84aa4c7ce60df35a06313ff6130c0a08b2fd1e0b983a0647aa0cb9f634e24d80ef3b4033c4f7c51daf5173970703d76fa28368e0c4f3589071b79bdedbf99b88350c8e5cdd564c239846f1275cabd5ed16f7e6a898778061cd3fa17363ebafc58f2425fd20a7ee0c53b9797338b04c3eb3ee93985c7a229bc1b6ced18f797033f9f48228f986c70e5e3466e2ee57eb036d79c6b394bdd55746ae6a82ad8da5b059b1ab8525522cd6093df0516009e7766af974345bf15b3c9c0b83f08448273ae32018adfcf2e0c878d2655829f7cc2efec5dca11a92a0fd727c0c24fd4f7a322ab2099e93c369ac26ec07cbb78af6dd9aa5a4b44e2632e47c320672e97b26bb652aa3b7a0a29a69f4b561ebc665d0b3ea1e8a02ea0ea36eff373cf3088dbad989f63d2ff54ebef3d0f6af7e345c0597661e452ea262c9bdcc37e8bef250786b8be0af516110e834d3ed7a6d2e34e0003047b2dd3757b7069d990eaeafcbbff2d7ccd942023e495dfedca76e8a7d0139496bf835df80ccbb26aada11e35c963a46ebd84921c50c721ffcdeda078ef4b5a3970d107d11a37794a1a619ae299d3f21224ec160ece6b2281422fae4a4c8325f730364f2c3d6523d4c7bd9cded034f97349b53afd221c0a8e935c8d8b205b38dc7089230ec8910cba36f56d8b729c471e0230795a4cb65239910e3d299ffcfb631be3bb10798fae8ddb7db467c886fcd492c7a439a7460c5fe94542158216ff4c9ced244846c53241ce30d9dee498a2d0a736f14cde6d1a0fbaf0d4f8ae70c5783a5b4fb213b8837bbd3382a760026aa11d623e5d36984ae2ad0ae7611d62f09ef656650747eb477b351345c16ee64ab7cc499ea2bb2be38dc8f21babad372eff5d7717c0986f469b8d3dc51d7fef174899ebc2da49e7b0c9942e215bacc39beaecc9c3d7a567e2abadabad4a31729c131f4eb66ca343bbd86c803c58317b43608cbe738e04eb4f2c98885e6946958568470230ce1d02a0cb6bfb38a1a2bb73e2accf7cdd26de27777bbc54248e5ffa70ff00219f7fbe74531855dadc4ba963d3893b8c56bfb12138d1cbe717849598062b6e48ededea237ad76ac871ad92e17e52ef2f269427d876c9fd6116c48ef189c489205900d77cbc5254de42689740c056a1d48500aab8d01b5ca594ead1fad5cc9bd12be6121397765ce61753e868bc320539bcb4fc5254a17b7e5b6b59dba299dcd3c5aaca60608eadd7369d99f17992dcad983357eaea78e9ab1f575d098ae75945d682c25cdc03afd56ea18360739576e6410b9b8411ff7616bb3f55835328d2557196dff2eac26af2a6ba42809eeb5a34771740f2c431ed1d2d4cb3478ce8475ee800f4ace26813d4c909a381203e7cdb3c34fba50a4d89cf6d5e6c8a310205471a31674eebdda458dde5552c25336fe8897b51f6d13bc6e8f88eb4b34874b03dcb98bf9f3a5ac1e2326358800633aaaa9cd83c6a8a864301beeb3b2fc04e97e8a2605952d598d607ffaa211c7caa2fb20cc989fa7b74e35188895df4cc32f2f8e2874124131cd1aeef35f90f2475c9974437d9dd240105fb63f2c1acd074b9021e4f7c909bfbe787de44a09bf124b0dc105297eeb8a743d018f4ce63d06e2b8f8e3f6a4937c8d603aada5821f229581ebe00de020eefcc33512be51607d3a7d1976e6dd9d14887b109583a4cf4709bd2f477fd34fa22bda26debdd88520dd194fc3350dfa57f5dc09af64ecef32a2f665e45781c7d7ac75a705647789ea01d8413d620ce8f44354a99017c8dd5ddc5912206fb2b16814586f48b81027656a60bfba8ba1863748f72c1651ef10b89eff39e5857331d4f36011edafbb6e94cc92012e3da7d38a788e3cd2ae673c1730a0bcb4f3fc6200c76fd7f6b667530fb0a1a32fbc9ab99fb3357a4a0ef28d107ec56cc6bb2dd7ad2ddf2e7b0f1d026b91b519d6f9612bb11eb3978f6e43fffbfa3dfa63627f36a896d0e5c5d363a607a5509dcf7df44410d859648b0358eca7232a09028f83a64847e7aee7cd52dfe9e0a7404c01465886bc5e3874994a1581d1d548693b0b27b5cc6e32c5333dce6c144517dbed85dc397f9f43ff7dd571b2eab79c8442e3b488f2a7d27e7ffc9a64c6ff5f9209244201d50360bf3b6cb0e05966e8fbf6a32bdf56ae079ee84dfb6a83347380209d5fd7173ec41371c2fedc09b2d133c9b7e4a4081accf74bc9bd952d8d80492f5399b31140f1ab25c1bf5562805650e88e4cac276e63239a51775d6ba143d328e1ba3d45554d2d4978bb8a0d3938594f29ae750e43be66964279d9135b7ff8c0afd283cb510664040f803c163a829d9da20a90e13aa14a426b47e97a8563fff88fd9c30815ca87d69b2e4803c51c366e25ab9246f1e1f96b501c1bd6b2527d14d1b5746335da0d78c0993b8255eabdead48769e5739e648e66526011f2b9403345cae62d49527dcff24f1979d64b415ad9105077812e90e6badb546ae29a9328d66042e92c5577019e1f30e5b1df6d722a133ec50a151f119ce9ea5e72dcced994b7b45b66448a43b8940428b27bf2536f3f8ab23e1c81ecf6e2dcf558760741c30fda8112ca30e43afb608c9371d8caf72b4529b8455522afacc02ea4bdb85cd0828f00d0fe7bec77af53b77ec2b385d949ce95b59d063d70de26eacdf3c3fad660f66d3a591055a7fa17d94c40056bf183c6e3dc3eb61f72a44dcf1768c045702c821e1e0d50b17e827889373957fc5b8fa132e00c80ef2aaadee9a7f5d8d128c45fc8c03bf0ebf8609be143790eabec7ee25491b1e92b7b2b2bf19c2be41f1585a61c7c030ca78e624d9e0b561cc000000000") pwrite64(r5, &(0x7f0000000040)="309b46a3968adc0ffb030d1ff43aad0180070fcb9fa1fae158b9e38e2e1346a78b689c85b4fd284ee5eee647f6cc8be202fd945a04b6eaadc72ec7eef6f513911a05beefdec4ea2ecae7", 0x4a, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) [ 1885.898764] RIP: 0033:0x45ca59 [ 1885.903119] Total swap = 0kB [ 1885.906927] RSP: 002b:00007f9232553c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1885.906939] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1885.906945] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 1885.906951] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1885.906957] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1885.906963] R13: 000000000000039c R14: 00000000004c635c R15: 00007f92325546d4 [ 1886.100801] 1965979 pages RAM [ 1886.109302] 0 pages HighMem/MovableOnly [ 1886.116447] 338456 pages reserved [ 1886.119016] warn_alloc_show_mem: 3 callbacks suppressed [ 1886.119041] Mem-Info: [ 1886.120127] 0 pages cma reserved [ 1886.134694] active_anon:463726 inactive_anon:48677 isolated_anon:0 [ 1886.134694] active_file:8235 inactive_file:62724 isolated_file:0 [ 1886.134694] unevictable:2560 dirty:472 writeback:0 unstable:0 [ 1886.134694] slab_reclaimable:125429 slab_unreclaimable:331544 [ 1886.134694] mapped:65463 shmem:38045 pagetables:8892 bounce:0 [ 1886.134694] free:471800 free_pcp:490 free_cma:0 [ 1886.165661] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1886.178389] Node 0 active_anon:1355392kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1886.190691] Node 1 active_anon:499512kB inactive_anon:35476kB active_file:32932kB inactive_file:250896kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:37252kB dirty:1888kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1886.229038] syz-executor.3 cpuset=/ mems_allowed=0-1 [ 1886.251473] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1886.262293] CPU: 1 PID: 26151 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1886.284204] lowmem_reserve[]: [ 1886.286084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1886.286089] Call Trace: [ 1886.286108] dump_stack+0x1b2/0x283 [ 1886.286125] warn_alloc.cold+0x96/0x1af [ 1886.289313] 0 [ 1886.298560] ? zone_watermark_ok_safe+0x250/0x250 [ 1886.298581] ? wait_for_completion_io+0x10/0x10 [ 1886.298595] __alloc_pages_nodemask+0x2129/0x2730 [ 1886.298619] ? retint_kernel+0x2d/0x2d [ 1886.298630] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1886.298644] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1886.298658] ? check_preemption_disabled+0x35/0x240 [ 1886.298683] alloc_pages_current+0xe7/0x1e0 [ 1886.298698] kvm_mmu_create+0xd1/0x1c0 [ 1886.298711] kvm_arch_vcpu_init+0x282/0x890 [ 1886.298722] ? alloc_pages_current+0xef/0x1e0 [ 1886.298735] kvm_vcpu_init+0x26d/0x360 [ 1886.298748] vmx_create_vcpu+0xf5/0x2950 [ 1886.298771] ? alloc_loaded_vmcs+0x240/0x240 [ 1886.298787] kvm_vm_ioctl+0x4ae/0x1430 [ 1886.298801] ? __lock_acquire+0x655/0x42a0 [ 1886.298810] ? kvm_vcpu_release+0xa0/0xa0 [ 1886.298820] ? check_preemption_disabled+0x35/0x240 [ 1886.298832] ? perf_trace_lock+0x109/0x4b0 [ 1886.298844] ? check_preemption_disabled+0x35/0x240 [ 1886.298856] ? perf_trace_lock+0x109/0x4b0 [ 1886.298864] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1886.298874] ? futex_exit_release+0x60/0x60 [ 1886.298888] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1886.298899] ? retint_kernel+0x2d/0x2d [ 1886.298910] ? kvm_vcpu_release+0xa0/0xa0 [ 1886.298921] do_vfs_ioctl+0x75a/0xfe0 [ 1886.317137] 2559 [ 1886.320327] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1886.320341] ? ioctl_preallocate+0x1a0/0x1a0 [ 1886.320361] ? security_file_ioctl+0x76/0xb0 [ 1886.326018] 2559 [ 1886.329056] ? security_file_ioctl+0x83/0xb0 [ 1886.329070] SyS_ioctl+0x7f/0xb0 [ 1886.329080] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1886.329096] do_syscall_64+0x1d5/0x640 [ 1886.338152] 2559 [ 1886.338667] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1886.338680] RIP: 0033:0x45ca59 [ 1886.345286] 2559 [ 1886.347995] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1886.348007] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 02:43:06 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x5) [ 1886.348014] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1886.348019] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1886.348025] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1886.348031] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 02:43:06 executing program 3 (fault-call:5 fault-nth:0): r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1886.525008] Node 0 DMA32 free:36220kB min:36296kB low:45368kB high:54440kB active_anon:1351232kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:748kB local_pcp:288kB free_cma:0kB [ 1886.559414] lowmem_reserve[]: 0 0 0 0 0 [ 1886.565385] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1886.618267] lowmem_reserve[]: 0 0 0 0 0 [ 1886.622794] Node 1 Normal free:1842764kB min:53592kB low:66988kB high:80384kB active_anon:499512kB inactive_anon:35476kB active_file:32932kB inactive_file:250896kB unevictable:0kB writepending:1888kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3488kB pagetables:7360kB bounce:0kB free_pcp:932kB local_pcp:368kB free_cma:0kB [ 1886.666631] lowmem_reserve[]: 0 0 0 0 0 [ 1886.671052] Node 0 DMA: 5*4kB (UM) 2*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10340kB [ 1886.692534] FAULT_INJECTION: forcing a failure. [ 1886.692534] name failslab, interval 1, probability 0, space 0, times 0 [ 1886.698449] Node 0 DMA32: 1145*4kB (UMH) 805*8kB (UMEH) 120*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36268kB [ 1886.726933] CPU: 1 PID: 26166 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1886.734869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1886.744223] Call Trace: [ 1886.746824] dump_stack+0x1b2/0x283 [ 1886.750465] should_fail.cold+0x10a/0x154 [ 1886.754629] should_failslab+0xd6/0x130 [ 1886.758634] kmem_cache_alloc+0x28e/0x3c0 [ 1886.762788] vmx_create_vcpu+0x86/0x2950 [ 1886.766646] Node 0 [ 1886.766856] ? __mutex_unlock_slowpath+0x75/0x780 [ 1886.766873] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1886.769304] Normal: [ 1886.773949] ? alloc_loaded_vmcs+0x240/0x240 [ 1886.773960] ? _kstrtoul+0x110/0x110 [ 1886.773978] kvm_vm_ioctl+0x4ae/0x1430 [ 1886.773991] ? __lock_acquire+0x655/0x42a0 [ 1886.774000] ? kvm_vcpu_release+0xa0/0xa0 [ 1886.774010] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1886.774018] ? check_preemption_disabled+0x35/0x240 [ 1886.774034] ? check_preemption_disabled+0x35/0x240 [ 1886.774045] ? perf_trace_lock+0x109/0x4b0 [ 1886.774054] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1886.774066] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1886.774077] ? retint_kernel+0x2d/0x2d [ 1886.774089] ? kvm_vcpu_release+0xa0/0xa0 [ 1886.774100] do_vfs_ioctl+0x75a/0xfe0 [ 1886.774111] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1886.774122] ? ioctl_preallocate+0x1a0/0x1a0 [ 1886.774131] ? check_preemption_disabled+0x35/0x240 [ 1886.774141] ? retint_kernel+0x2d/0x2d [ 1886.774162] SyS_ioctl+0x7f/0xb0 [ 1886.774170] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1886.774182] do_syscall_64+0x1d5/0x640 [ 1886.774198] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1886.774207] RIP: 0033:0x45ca59 [ 1886.774212] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1886.774223] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1886.774229] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1886.774234] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1886.774240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006 [ 1886.774246] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1886.957847] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1886.970353] syz-executor.5 cpuset=/ mems_allowed=0-1 [ 1886.978474] CPU: 0 PID: 26161 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0 [ 1886.986369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1886.995722] Call Trace: [ 1886.998313] dump_stack+0x1b2/0x283 [ 1887.001949] warn_alloc.cold+0x96/0x1af [ 1887.005934] ? zone_watermark_ok_safe+0x250/0x250 [ 1887.011742] ? wait_for_completion_io+0x10/0x10 [ 1887.015666] syz-executor.2: [ 1887.016415] __alloc_pages_nodemask+0x2129/0x2730 [ 1887.016441] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1887.019938] page allocation failure: order:0 [ 1887.024287] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1887.024313] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1887.024328] alloc_pages_current+0xe7/0x1e0 [ 1887.024345] kvm_mmu_create+0xd1/0x1c0 [ 1887.024358] kvm_arch_vcpu_init+0x282/0x890 [ 1887.024368] ? alloc_pages_current+0xef/0x1e0 [ 1887.024387] kvm_vcpu_init+0x26d/0x360 [ 1887.037312] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1887.038437] vmx_create_vcpu+0xf5/0x2950 [ 1887.038459] ? alloc_loaded_vmcs+0x240/0x240 [ 1887.038472] ? arch_uninstall_hw_breakpoint.cold+0x20/0x20 [ 1887.038487] kvm_vm_ioctl+0x4ae/0x1430 [ 1887.038500] ? __lock_acquire+0x655/0x42a0 [ 1887.038512] ? kvm_vcpu_release+0xa0/0xa0 [ 1887.043413] (null) [ 1887.047550] ? check_preemption_disabled+0x35/0x240 [ 1887.047563] ? perf_trace_lock+0x109/0x4b0 [ 1887.047576] ? check_preemption_disabled+0x35/0x240 [ 1887.047587] ? perf_trace_lock+0x109/0x4b0 [ 1887.047612] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1887.059912] syz-executor.2 cpuset= [ 1887.060270] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1887.060286] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1887.066000] / [ 1887.070023] ? kvm_vcpu_release+0xa0/0xa0 [ 1887.075430] mems_allowed=0-1 [ 1887.078448] do_vfs_ioctl+0x75a/0xfe0 [ 1887.078465] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1887.078475] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1887.078486] ? ioctl_preallocate+0x1a0/0x1a0 [ 1887.163662] ? check_preemption_disabled+0x35/0x240 [ 1887.168675] ? retint_kernel+0x2d/0x2d [ 1887.172562] ? security_file_ioctl+0x76/0xb0 [ 1887.176960] ? __fget_light+0x199/0x1f0 [ 1887.180922] ? security_file_ioctl+0x83/0xb0 [ 1887.185323] SyS_ioctl+0x7f/0xb0 [ 1887.188679] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1887.192645] do_syscall_64+0x1d5/0x640 [ 1887.196537] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1887.201716] RIP: 0033:0x45ca59 [ 1887.204893] RSP: 002b:00007f6177e87c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1887.212593] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1887.219853] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1887.227980] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1887.235242] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1887.242514] R13: 000000000000039c R14: 00000000004c635c R15: 00007f6177e886d4 [ 1887.249805] CPU: 1 PID: 26072 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0 [ 1887.257688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1887.267041] Call Trace: [ 1887.269632] dump_stack+0x1b2/0x283 [ 1887.271260] 0*4kB [ 1887.273274] warn_alloc.cold+0x96/0x1af [ 1887.273286] ? zone_watermark_ok_safe+0x250/0x250 [ 1887.275473] 0*8kB [ 1887.279379] ? wait_for_completion_io+0x10/0x10 [ 1887.279396] __alloc_pages_nodemask+0x2129/0x2730 [ 1887.284517] 0*16kB [ 1887.286362] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1887.286377] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1887.291096] warn_alloc_show_mem: 1 callbacks suppressed [ 1887.291113] Mem-Info: [ 1887.295934] ? check_preemption_disabled+0x35/0x240 [ 1887.295956] alloc_pages_current+0xe7/0x1e0 [ 1887.295972] kvm_mmu_create+0xd1/0x1c0 [ 1887.295987] kvm_arch_vcpu_init+0x282/0x890 [ 1887.295997] ? alloc_pages_current+0xef/0x1e0 [ 1887.296015] kvm_vcpu_init+0x26d/0x360 [ 1887.298390] active_anon:463748 inactive_anon:48677 isolated_anon:0 [ 1887.298390] active_file:8235 inactive_file:62735 isolated_file:0 [ 1887.298390] unevictable:2560 dirty:486 writeback:0 unstable:0 [ 1887.298390] slab_reclaimable:125401 slab_unreclaimable:331325 [ 1887.298390] mapped:65655 shmem:38045 pagetables:8888 bounce:0 [ 1887.298390] free:472218 free_pcp:322 free_cma:0 [ 1887.303066] vmx_create_vcpu+0xf5/0x2950 [ 1887.303082] ? __mutex_unlock_slowpath+0x75/0x780 [ 1887.303091] ? drop_futex_key_refs.isra.0+0x17/0x80 [ 1887.303103] ? alloc_loaded_vmcs+0x240/0x240 [ 1887.303119] kvm_vm_ioctl+0x4ae/0x1430 [ 1887.303132] ? __lock_acquire+0x655/0x42a0 [ 1887.303143] ? kvm_vcpu_release+0xa0/0xa0 [ 1887.303153] ? check_preemption_disabled+0x35/0x240 [ 1887.303165] ? perf_trace_lock+0x109/0x4b0 [ 1887.303177] ? check_preemption_disabled+0x35/0x240 [ 1887.303187] ? perf_trace_lock+0x109/0x4b0 [ 1887.303195] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1887.303208] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1887.303219] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1887.308115] 0*32kB [ 1887.313298] ? kvm_vcpu_release+0xa0/0xa0 [ 1887.313310] do_vfs_ioctl+0x75a/0xfe0 [ 1887.313321] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1887.313336] ? ioctl_preallocate+0x1a0/0x1a0 [ 1887.313345] ? check_preemption_disabled+0x35/0x240 [ 1887.313358] ? retint_kernel+0x2d/0x2d [ 1887.315914] Node 0 active_anon:1355400kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB isolated(anon):0kB isolated(file):0kB mapped:224600kB dirty:0kB writeback:0kB shmem:106024kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 755712kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1887.320753] SyS_ioctl+0x7f/0xb0 [ 1887.320762] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1887.320773] do_syscall_64+0x1d5/0x640 [ 1887.320789] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1887.325329] Node 1 active_anon:499592kB inactive_anon:35476kB active_file:32932kB inactive_file:250940kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:38020kB dirty:1944kB writeback:0kB shmem:46156kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1887.328954] RIP: 0033:0x45ca59 [ 1887.328959] RSP: 002b:00007f735f343c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1887.328970] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 [ 1887.328976] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1887.328982] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1887.328988] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1887.328994] R13: 000000000000039c R14: 00000000004c635c R15: 00007f735f3446d4 [ 1887.477913] 0*64kB [ 1887.500993] Node 0 [ 1887.528263] 0*128kB [ 1887.546253] DMA free:10340kB min:220kB low:272kB high:324kB active_anon:4160kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1887.555666] 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1887.555693] Node 1 Normal: 454*4kB (UME) 339*8kB (UME) 1818*16kB (UME) 857*32kB (UME) 239*64kB (UME) 12*128kB (UME) 2*256kB (M) 2*512kB (ME) 2*1024kB (UM) 0*2048kB 430*4096kB (M) = 1842736kB [ 1887.555788] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1887.555795] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 02:43:07 executing program 1 (fault-call:4 fault-nth:0): perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 02:43:07 executing program 4 (fault-call:2 fault-nth:0): r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) 02:43:07 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x7, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89}}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r6, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r6, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r6) 02:43:07 executing program 0: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x0, 0x10000002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0xd5, &(0x7f00000001c0), 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000280)=""/171) ioctl$KVM_RUN(r4, 0xae80, 0x0) dup3(r2, r3, 0x80000) dup2(r1, r4) 02:43:07 executing program 3 (fault-call:5 fault-nth:1): r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 1887.555803] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1887.555809] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1887.555812] 79740 total pagecache pages [ 1887.555823] 0 pages in swap cache [ 1887.555829] Swap cache stats: add 0, delete 0, find 0/0 [ 1887.555833] Free swap = 0kB [ 1887.555837] Total swap = 0kB [ 1887.555843] 1965979 pages RAM [ 1887.555854] 0 pages HighMem/MovableOnly [ 1887.565073] lowmem_reserve[]: [ 1887.582259] 338456 pages reserved [ 1887.585999] 0 [ 1887.598673] 0 pages cma reserved [ 1887.599956] 2559 2559 2559 2559 [ 1887.735243] Node 0 DMA32 free:36292kB min:36296kB low:45368kB high:54440kB active_anon:1351240kB inactive_anon:159232kB active_file:8kB inactive_file:0kB unevictable:10240kB writepending:0kB present:3129332kB managed:2623992kB mlocked:10240kB kernel_stack:13760kB pagetables:28056kB bounce:0kB free_pcp:760kB local_pcp:288kB free_cma:0kB [ 1887.773112] lowmem_reserve[]: 0 0 0 0 0 [ 1887.777500] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1887.807617] FAULT_INJECTION: forcing a failure. [ 1887.807617] name failslab, interval 1, probability 0, space 0, times 0 [ 1887.808283] lowmem_reserve[]: [ 1887.835786] CPU: 1 PID: 26200 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1887.844442] 0 [ 1887.846782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1887.846803] Call Trace: [ 1887.846826] dump_stack+0x1b2/0x283 [ 1887.846844] should_fail.cold+0x10a/0x154 [ 1887.848723] 0 [ 1887.857994] should_failslab+0xd6/0x130 [ 1887.858006] __kmalloc+0x2c1/0x400 [ 1887.858017] ? tracepoint_probe_unregister+0x17f/0x5b0 [ 1887.858026] ? perf_trace_sched_kthread_stop+0x460/0x460 [ 1887.858036] ? perf_trace_sched_kthread_stop+0x460/0x460 [ 1887.858044] tracepoint_probe_unregister+0x17f/0x5b0 [ 1887.858054] ? perf_trace_sched_kthread_stop+0x460/0x460 [ 1887.858068] trace_event_reg+0x165/0x330 [ 1887.858079] perf_trace_event_unreg.isra.0+0x9f/0x1d0 [ 1887.858090] perf_trace_destroy+0xb5/0xf0 [ 1887.858099] ? perf_tp_event_init+0xf0/0xf0 [ 1887.858110] _free_event+0x328/0xe50 [ 1887.858124] put_event+0x20/0x30 [ 1887.858134] perf_event_release_kernel+0x383/0x870 [ 1887.858146] ? fcntl_setlk+0xb30/0xb30 [ 1887.858159] ? perf_event_release_kernel+0x870/0x870 [ 1887.858169] perf_release+0x33/0x40 [ 1887.858179] __fput+0x25f/0x7a0 [ 1887.858197] task_work_run+0x113/0x190 [ 1887.858214] exit_to_usermode_loop+0x1ad/0x200 [ 1887.858228] do_syscall_64+0x4a3/0x640 [ 1887.858246] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1887.858254] RIP: 0033:0x45ca59 [ 1887.858260] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000021 [ 1887.858270] RAX: 0000000000000003 RBX: 00000000004dba60 RCX: 000000000045ca59 [ 1887.858276] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004 [ 1887.858282] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1887.858287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1887.858300] R13: 00000000000000a2 R14: 00000000004c35b5 R15: 00007f56a426b6d4 [ 1887.875663] 0 0 0 [ 1888.037572] Node 1 Normal free:1843340kB min:53592kB low:66988kB high:80384kB active_anon:499516kB inactive_anon:35476kB active_file:32932kB inactive_file:250988kB unevictable:0kB writepending:1992kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:3552kB pagetables:7596kB bounce:0kB free_pcp:924kB local_pcp:232kB free_cma:0kB [ 1888.064442] FAULT_INJECTION: forcing a failure. [ 1888.064442] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1888.079564] CPU: 1 PID: 26197 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0 [ 1888.087433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1888.096770] Call Trace: [ 1888.099348] dump_stack+0x1b2/0x283 [ 1888.102957] should_fail.cold+0x10a/0x154 [ 1888.107086] __alloc_pages_nodemask+0x22b/0x2730 [ 1888.111826] ? __lock_acquire+0x655/0x42a0 [ 1888.116040] ? __lock_acquire+0x655/0x42a0 [ 1888.120256] ? trace_hardirqs_on+0x10/0x10 [ 1888.124475] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1888.129297] ? check_preemption_disabled+0x35/0x240 [ 1888.134297] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1888.139205] ? perf_trace_lock+0x109/0x4b0 [ 1888.143415] ? lock_acquire+0x170/0x3f0 [ 1888.147458] cache_grow_begin+0x91/0x410 [ 1888.151513] cache_alloc_refill+0x28c/0x360 [ 1888.155828] kmem_cache_alloc+0x333/0x3c0 [ 1888.159979] vmx_create_vcpu+0x86/0x2950 [ 1888.164018] ? check_preemption_disabled+0x35/0x240 [ 1888.169016] ? retint_kernel+0x2d/0x2d [ 1888.172886] ? alloc_loaded_vmcs+0x240/0x240 [ 1888.177298] kvm_vm_ioctl+0x4ae/0x1430 [ 1888.181179] ? __lock_acquire+0x655/0x42a0 [ 1888.185402] ? kvm_vcpu_release+0xa0/0xa0 [ 1888.189534] ? check_preemption_disabled+0x35/0x240 [ 1888.194553] ? check_preemption_disabled+0x35/0x240 [ 1888.199553] ? perf_trace_lock+0x109/0x4b0 [ 1888.203783] ? perf_trace_lock_acquire+0x4b0/0x4b0 [ 1888.208739] ? retint_kernel+0x2d/0x2d [ 1888.212616] ? trace_hardirqs_on_caller+0x3a8/0x580 [ 1888.217619] ? kvm_vcpu_release+0xa0/0xa0 [ 1888.221749] do_vfs_ioctl+0x75a/0xfe0 [ 1888.225532] ? selinux_parse_skb.constprop.0+0x16c0/0x16c0 [ 1888.231134] ? check_preemption_disabled+0x35/0x240 [ 1888.236134] ? ioctl_preallocate+0x1a0/0x1a0 [ 1888.240545] ? security_file_ioctl+0x76/0xb0 [ 1888.244932] ? security_file_ioctl+0x83/0xb0 [ 1888.249319] SyS_ioctl+0x7f/0xb0 [ 1888.252675] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1888.256629] do_syscall_64+0x1d5/0x640 [ 1888.260500] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1888.265668] RIP: 0033:0x45ca59 [ 1888.268837] RSP: 002b:00007f3eca901c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1888.276525] RAX: ffffffffffffffda RBX: 00000000004e78e0 RCX: 000000000045ca59 02:43:07 executing program 4 (fault-call:2 fault-nth:1): r0 = perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_sctp(0x2, 0x1, 0x84) dup2(r1, r0) [ 1888.283788] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1888.291036] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1888.298302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006 [ 1888.305558] R13: 000000000000039c R14: 00000000004c635c R15: 00007f3eca9026d4 [ 1888.338850] lowmem_reserve[]: 0 0 0 0 0 [ 1888.343955] Node 0 DMA: 5*4kB (UM) 2*8kB (UM) 2*16kB (UM) 3*32kB (UME) 1*64kB (E) 3*128kB (UME) 2*256kB (ME) 2*512kB (ME) 2*1024kB (ME) 1*2048kB (E) 1*4096kB (M) = 10340kB [ 1888.367232] Node 0 DMA32: 1145*4kB (UMH) 809*8kB (UMEH) 121*16kB (UME) 47*32kB (UME) 75*64kB (UME) 39*128kB (M) 15*256kB (UM) 14*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 36316kB [ 1888.371157] ------------[ cut here ]------------ [ 1888.389416] WARNING: CPU: 1 PID: 26221 at kernel/tracepoint.c:210 tracepoint_probe_register_prio+0x1ed/0x6d0 [ 1888.395461] Node 0 [ 1888.399376] Kernel panic - not syncing: panic_on_warn set ... [ 1888.399376] [ 1888.399388] CPU: 1 PID: 26221 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0 [ 1888.399394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1888.399398] Call Trace: [ 1888.399420] dump_stack+0x1b2/0x283 [ 1888.407670] Normal: [ 1888.408989] panic+0x1f9/0x42d [ 1888.409001] ? add_taint.cold+0x16/0x16 [ 1888.409016] ? tracepoint_probe_register_prio+0x1ed/0x6d0 [ 1888.409028] ? __warn.cold+0x14/0x30 [ 1888.451027] ? tracepoint_probe_register_prio+0x1ed/0x6d0 [ 1888.456554] __warn.cold+0x2f/0x30 [ 1888.460074] ? ist_end_non_atomic+0x10/0x10 [ 1888.464373] ? tracepoint_probe_register_prio+0x1ed/0x6d0 [ 1888.469889] report_bug+0x20a/0x248 [ 1888.473498] do_error_trap+0x195/0x2d0 [ 1888.477373] ? math_error+0x2d0/0x2d0 [ 1888.481155] ? tracepoint_probe_register_prio+0x36/0x6d0 [ 1888.486588] ? __mutex_lock+0x2cb/0x1430 [ 1888.490637] ? lock_downgrade+0x6e0/0x6e0 [ 1888.494764] ? _find_next_bit+0xdb/0x100 [ 1888.498829] ? tracepoint_probe_register_prio+0x36/0x6d0 [ 1888.504260] ? pcpu_alloc+0x37d/0xf70 [ 1888.508041] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1888.512869] invalid_op+0x1b/0x40 [ 1888.516302] RIP: 0010:tracepoint_probe_register_prio+0x1ed/0x6d0 [ 1888.522427] RSP: 0018:ffff8881b1707bd8 EFLAGS: 00010216 [ 1888.527771] RAX: 0000000000040000 RBX: ffffffff886da600 RCX: ffffc90007e66000 [ 1888.535108] RDX: 0000000000001389 RSI: ffffffff815bbe0d RDI: ffff888096d07a30 [ 1888.542358] RBP: ffff888096d07a10 R08: ffffffff8a381c00 R09: ffffffff89e642a8 [ 1888.549616] R10: ffff8881b1707bd8 R11: ffff88802c63e040 R12: 00000000ffffffef [ 1888.556865] R13: 0000000000000001 R14: 00000000ffffffff R15: ffffffff813d4940 [ 1888.564119] ? perf_trace_sched_kthread_stop+0x460/0x460 [ 1888.569554] ? tracepoint_probe_register_prio+0x1ed/0x6d0 [ 1888.575074] ? tracepoint_probe_register_prio+0x1ed/0x6d0 [ 1888.580706] ? perf_trace_sched_kthread_stop+0x460/0x460 [ 1888.586143] trace_event_reg+0x272/0x330 [ 1888.590185] perf_trace_init+0x424/0xa50 [ 1888.594231] perf_tp_event_init+0x79/0xf0 [ 1888.598367] perf_try_init_event+0x15b/0x1f0 [ 1888.602757] perf_event_alloc.part.0+0xdd4/0x25c0 [ 1888.607597] SyS_perf_event_open+0x68c/0x24b0 [ 1888.612086] ? _copy_to_user+0x82/0xd0 [ 1888.615956] ? perf_bp_event+0x170/0x170 [ 1888.620009] ? put_timespec64+0xaa/0xf0 [ 1888.623972] ? fput+0xb/0x140 [ 1888.627056] ? do_syscall_64+0x4c/0x640 [ 1888.631017] ? perf_bp_event+0x170/0x170 [ 1888.635060] do_syscall_64+0x1d5/0x640 [ 1888.638935] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 1888.644115] RIP: 0033:0x45ca59 [ 1888.647293] RSP: 002b:00007f56a426ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 1888.654980] RAX: ffffffffffffffda RBX: 00000000004f9f20 RCX: 000000000045ca59 [ 1888.662247] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200003c0 [ 1888.669495] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1888.676750] R10: ffffffffffffffff R11: 0000000000000246 R12: 00000000ffffffff [ 1888.683999] R13: 0000000000000835 R14: 00000000004cb187 R15: 00007f56a426b6d4 [ 1888.692998] Kernel Offset: disabled [ 1888.696730] Rebooting in 86400 seconds..