xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:22 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:22 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:22 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:22 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:23 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:23 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:23 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:23 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:23 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:23 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:23 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:23 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:23 executing program 5:
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:23 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:23 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:23 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:23 executing program 5:
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:24 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:24 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:24 executing program 5:
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:24 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:24 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:24 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:24 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:24 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:24 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:24 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:24 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:24 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:24 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:24 executing program 0:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:24 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:24 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:24 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:25 executing program 0:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:25 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:25 executing program 5:
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:25 executing program 0:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:25 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:25 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:25 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:25 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:25 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:25 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:25 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:25 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:25 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:25 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:26 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:26 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:26 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:26 executing program 0:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:26 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:26 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:26 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:26 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:26 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:26 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:26 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:26 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:26 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:26 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$dupfd(r3, 0x0, r4)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000080)={0x3, 0x7, 0x4, 0x8, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_MAP_DUMB(r2, 0xc01064b3, &(0x7f00000000c0)={r5})
r6 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
r7 = socket$unix(0x1, 0x2, 0x0)
ioctl$SNDCTL_DSP_SETTRIGGER(r7, 0x40045010, &(0x7f0000000040)=0x3)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = fcntl$dupfd(r7, 0x0, r8)
syz_init_net_socket$llc(0x1a, 0x3, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r6, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r10=>0xffffffffffffffff})
dup(r10)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200))
dup2(0xffffffffffffffff, r0)

01:28:26 executing program 0:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:26 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r5=>0xffffffffffffffff})
r6 = dup(r5)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r7=>0x0, 0x0, <r8=>r6})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200)={r7, 0x0, <r9=>0xffffffffffffffff})
ioctl$VIDIOC_S_AUDOUT(r4, 0x40345632, &(0x7f0000000040)={0xfffffff7, "52f41bd102eb8cf15a872d752bfef253324d658b5d962d446e907d0fbf933a7e", 0x2})
ioctl$NBD_SET_TIMEOUT(r9, 0xab09, 0x0)
dup2(r8, r0)

01:28:26 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:26 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:26 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0x3, 0x1, 0x0, <r4=>0xffffffffffffffff})
r5 = dup(r4)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r6=>0x0, 0x0, <r7=>r5})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200)={r6})
dup2(r7, r0)

01:28:26 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:26 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x100, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r4)
ioctl$DRM_IOCTL_GET_MAP(r3, 0xc0286404, &(0x7f0000000040)={0x0, 0xb7, 0x3, 0x40, &(0x7f0000ffb000/0x2000)=nil, 0x561e})
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x6)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r8=>0xffffffffffffffff})
r9 = dup(r8)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r10=>0x0, 0x0, <r11=>r9})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200)={r10})
dup2(r11, r0)

01:28:27 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:27 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:27 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r5=>0xffffffffffffffff})
r6 = dup(r5)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = fcntl$dupfd(r7, 0x0, r8)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
ioctl$DRM_IOCTL_IRQ_BUSID(r9, 0xc0106403, &(0x7f0000000040)={0x9, 0x3b, 0x80000001, 0x5})
r10 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x59dd, 0x0)
writev(r10, &(0x7f0000000540)=[{&(0x7f0000000100)="ae3ced909ae2b4a8143415380cb2a6bace539d150ac5f6", 0x17}, {&(0x7f00000001c0)="b2d9d3c814975e52d05494310c6e21f790f3af49cb83d20d7c5d97019941281cb5e734a3e5e78ffbe7acafbb9d056962a5fc6b962f3c4f55502d94fb", 0x3c}, {&(0x7f0000000240)="0971a92c734bed30c3418accad3357a835cedd7b4c3943d3c718d6393b79d1f88bf2f6d35b741265e634570d0ec8062fac64a0b7442ef1211864cb5ef7e4cdb47a5e075cc5f6175d31d566c9badac500b7411d7126af4e7ee83a10eea2c640fc3389530573c5bfe320c82963e15fa1632e54405052930cf0fc59ef578ab9a3b3b516e1d8911743c1de469b6859c5004f7baf7b89ac481bc9c312c1f355768355220cfa27896ac21da80252d4040eeb115b002f641af3bc45e37603331e99929890cf03176e099c916cff", 0xca}, {&(0x7f0000000340)="5fb41ee4e4d267dd315c3e0440a7da03937bdbc32702ba1428c19a532266ab5cab64848c6e4d54b4600ac76d4e715fa0f6c90063266c0d0971eac3498602838a3dc62d6ed3c13f8f61c06a52d5dd82f37ab0f68e3a034c6d910ffc43194a3f4a4515f78b07478bdaa3ef85cb07895424e17461764f5e12bb89a74bb1955894dd2309c216e07c2ff1d2c4871f27af8575cd086af903f9c90ac16270d4c083653f36a731665d47695afbab39b24b2fd636f6a6524fe62a48865841e9e5402a84a5367fdea0f89ad48d7a82e8c35e", 0xcd}, {&(0x7f0000000440)="680e7ce0e94841d1ade51f6e292f5c2a2af2b96cd009af7d8d1a89be769a65338d6de72c09913025d39e4320ea2345d96193e1dd487add648c13a544c09474d98f09fc0c4b8f512b63852d3c16dd2ca6429eba95dcde2f49c6db540be5bad75fb54df635796d6d17cc0f46b5fee95414480bfe169b331fb3c43f3d615f90c77a046302df48a6895427bf133aa6690e8e629ca88681ea4d17f0631c78a1b14bd88b6d31ad733cea71c232ea6d78b744f2294ad60672bbf541f7d9fd9cde2a545d1eed1233bf0cf07bdf0387c9aaf35db9cc763d39d77e45024e952989aaf9bede102e33235d30a3de6d60916d0a593d9f3c2552", 0xf3}], 0x5)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r11=>0x0, 0x0, <r12=>r6})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200)={r11})
dup2(r12, r0)

01:28:27 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:27 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:27 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:27 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:27 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r5=>0xffffffffffffffff})
r6 = dup(r5)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r7=>0x0, 0x0, <r8=>r6})
r9 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x82900, 0x0)
ioctl$TIOCPKT(r9, 0x5420, &(0x7f0000000080)=0xd790)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200)={r7})
dup2(r8, r0)
r10 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x468000, 0x0)
sendmsg$OSF_MSG_REMOVE(r10, &(0x7f0000000740)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000240)={0x4bc, 0x1, 0x5, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2}, [{{0x254, 0x1, {{0x2, 0x8001}, 0x2, 0x4, 0x7, 0x6, 0x21, 'syz1\x00', "bdb83207eda6e09bce19b2a1285055ac3dd53a5e262e2347e6b1b083bab065c4", "6da10a3e5fcf893cff75d98bb73edf4d0ef73c0ffa9ffac7f14b7b89a039dfd7", [{0x7fff, 0x9, {0x2, 0x5}}, {0x4, 0x4, {0x2, 0x9f9}}, {0x400, 0xfff9, {0x2, 0x6c8036d2}}, {0x28c6, 0x1, {0x2, 0x298}}, {0x400, 0x7, {0x3, 0x10000}}, {0xff, 0x401, {0x3, 0x6}}, {0x7, 0x6, {0x1}}, {0x9, 0x9, {0x2, 0x6}}, {0x100, 0x1000, {0x3}}, {0x5, 0x3, {0x0, 0x3}}, {0x4, 0xfffa, {0x0, 0x2}}, {0x4, 0x80, {0x3, 0x8}}, {0x5, 0x6, {0x1, 0x7ff}}, {0x9, 0x7, {0x0, 0x7fff}}, {0x5, 0xff, {0x1, 0x2}}, {0x1ff, 0x98ba, {0x2, 0x8}}, {0x4, 0x1000, {0x1, 0x4}}, {0x6, 0x4, {0x3, 0x84c5}}, {0x4, 0x1, {0x0, 0x9}}, {0x3ff, 0x5, {0x0, 0x10000}}, {0x3ff, 0x0, {0x1, 0x8000}}, {0x81, 0x20, {0x2, 0x10001}}, {0x5, 0x80, {0x3, 0xffef}}, {0xfff8, 0x0, {0x3, 0x9}}, {0xf959, 0x4, {0x3}}, {0x9, 0x2, {0x1, 0x1ff}}, {0x3ff, 0x7, {0x3, 0xfa}}, {0x3, 0x6, {0x3, 0x40}}, {0xfeee, 0x5, {0x0, 0xffff}}, {0x3ff, 0x7fff, {0x1, 0x8}}, {0x7, 0x4, {0x2, 0x8000}}, {0xe49a, 0x76c7, {0x2, 0x5}}, {0x901d, 0x7, {0x3, 0x2}}, {0x9, 0xfff9, {0x2, 0x80}}, {0x9, 0x40, {0x2, 0x36}}, {0x72a0, 0x2, {0x0, 0x4}}, {0x1, 0x3ff, {0x0, 0x5}}, {0x8001, 0xff01, {0x3, 0x2}}, {0xe0d, 0x0, {0x4, 0x3}}, {0xfff8, 0x101, {0x1, 0x800}}]}}}, {{0x254, 0x1, {{0x3, 0x9}, 0x0, 0x0, 0xc20d, 0x81, 0x14, 'syz1\x00', "26fb9796b913726849bec6126219aac2ac16d92778b4644a8782ee1135f6dc12", "f48939518b0017e4787d30239a110e08c119b50d569b14da261db1812e8dee8e", [{0x9, 0x3, {0x0, 0x5}}, {0x7, 0x20, {0x2}}, {0x62c, 0x3, {0x3, 0x96}}, {0x9, 0xfffb, {0x1, 0x401}}, {0xa537, 0x7f, {0x2, 0x4}}, {0x4935, 0x1, {0x0, 0x8}}, {0x1865, 0x20, {0x7, 0x3a7975ae}}, {0x7ff, 0xffff, {0x1, 0x1}}, {0x5, 0x6, {0x1, 0x1}}, {0x1f, 0x401, {0x2, 0xffff6c6d}}, {0x7, 0x4, {0x2, 0x9}}, {0x20, 0xf792, {0x0, 0x3}}, {0x1, 0xffe7, {0x0, 0x7}}, {0x6, 0xfffd, {0x1, 0x8001}}, {0x7, 0x8, {0x3, 0x7}}, {0x3f7a, 0x200, {0x1, 0x2}}, {0x8, 0xf626, {0x2, 0x3}}, {0x1, 0x200, {0x0, 0x2}}, {0x101, 0x200, {0x3, 0x1}}, {0x3, 0x10, {0x2, 0x5}}, {0x1f, 0x0, {0x0, 0x401}}, {0x3, 0xfff7, {0x1, 0x74e2}}, {0x9, 0x0, {0x1, 0x100}}, {0x3, 0x40, {0x1, 0x4}}, {0x5f, 0x4, {0x1, 0x2}}, {0x800, 0x7, {0x2, 0x8}}, {0x8, 0x1, {0x3, 0x7}}, {0x8, 0x1000, {0x0, 0x7ff}}, {0x7ff, 0x3, {0x0, 0x1}}, {0x2, 0x62, {0x3, 0x1}}, {0x9, 0x9, {0x0, 0x7}}, {0x7, 0x3f, {0x2, 0x80}}, {0x4, 0xf1c6, {0x3, 0x7}}, {0x400, 0x9, {0x0, 0xeda2}}, {0x3ff, 0x4, {0x3, 0x203d}}, {0x0, 0xffff, {0x3, 0x8}}, {0x3, 0x3ff, {0x1, 0x3466}}, {0x1f, 0x8001, {0x2, 0x3}}, {0xe, 0x800, {0x0, 0x6}}, {0x0, 0x1, {0x1, 0xfff}}]}}}]}, 0x4bc}, 0x1, 0x0, 0x0, 0x44004}, 0x44)

01:28:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r5=>0xffffffffffffffff})
r6 = dup(r5)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r7=>0x0, 0x0, <r8=>r6})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200)={r7})
openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x208400, 0x0)
dup2(r8, r0)

01:28:27 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5})

01:28:27 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:27 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:27 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r5=>0xffffffffffffffff})
r6 = dup(r5)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r7=>0x0, 0x0, <r8=>r6})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200)={r7})
dup2(r8, r0)

01:28:27 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, 0x0)

01:28:27 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:27 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:27 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, 0x0)

01:28:27 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:27 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, 0x0)

01:28:28 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:28 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x5})

01:28:28 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:28 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x5})

01:28:28 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:28 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x5})

01:28:28 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:28 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400201)
ioctl$ION_IOC_ALLOC(r3, 0xc0184900, &(0x7f0000000040)={0x3, 0x1a, 0x0, <r4=>0xffffffffffffffff})
r5 = dup(r4)
r6 = dup(r5)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r6})
ioctl$DMA_BUF_IOCTL_SYNC(r6, 0x40086200, &(0x7f0000000080)=0x5)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240)='ethtool\x00')
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000380)='ethtool\x00')
sendmsg$ETHTOOL_MSG_STRSET_GET(r3, &(0x7f0000000100)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x50, r7, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x30, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0xfffffffffffffe08, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}]}]}, 0x50}}, 0x81)
r8 = socket$unix(0x1, 0x5, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = fcntl$dupfd(r8, 0x0, r9)
ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r10, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1100000}, 0xc, &(0x7f0000000180)={&(0x7f0000001540)={0x2224, 0x0, 0x20, 0x70bd2c, 0x25dfdbfb, {}, [@ETHTOOL_A_LINKMODES_OURS={0x1118, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0xa9, 0x4, "3dc3a76595c3152e58134d06983c25659468b3bf069bc87fb3dc8c126494ef01d5e46fa4ffd368e3fe205fe80fe1acbc0935cc7b09b51454e83afa12316146c9d95abadb83e08bf07a28b7aaf092ba8688d071d7017779ecaa05527eda7b7d22b60074697e4b095d218e481c4364008bde39679a0eeaba7da15063187310fbeb9c2440c79f4aa98e8c72bc93717a7ce56794c86985cc20d43fcc69981f47d819c529eb06b2"}, @ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "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"}, @ETHTOOL_A_BITSET_MASK={0x5f, 0x5, "52662e1247e42da6aa212e2db729d8db4a995bf84dd067a9b7632937beab70be689008c7f4da66080d912456b7a18bb7ffaf327ceb977717c7ab03f61d512f7b0976af489cd24505031d664dcc056bb5ddd418436d88a87fcd6cd1"}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_LINKMODES_OURS={0x10, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x4}]}, @ETHTOOL_A_LINKMODES_OURS={0x10c8, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0xbb, 0x5, "9205412daed24e50e1da7cfa42c900d6b9270ecd50b88d631e561aaf355371e434b2d4d735f0f25f9af5253b43ef8543eb398a8e36394d717fcaa98d4af0ff06c8dcd45faef9c6688aec53c7a0fb0cbe1eb659f607640a4992e69f34485b5a1ab1e519618d6466b2ff91841a72dc93e2555e1d683f24a1aa496b59c04f747aa2830760389a525a3435efc15ae7a435947bbda2818bed082f77784236497016095d9c3ce1d399c6cb46088b2073fb76684449304992bd8e"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "d64c0b196cf9208d46408d9b87dbc5578034f95d845d6ebf032a22b912cc182000339f1e296a9e0098302b8525421fb21dd4e7337fc3c96766b25f397ca93e0a659cd1e509f327a72157a8e40f36d65a4b508d9d1faac8f2b7062376f342cc445e64234e1e819a92f26e1bf8d915ab2c453009bf5838d4679b2d074162082cdf6e29df2ba892d8672ad2e056987d9953a2dc16c384895a357383f7dbe37899a918989f12c8cce4533a2e38910912a35543e6c454fc5a35b6f0c62e0fc1181d0c60c317b7c306b3a4c7a2d5bc700764e0181973b56f5b085637bb1f3be9e3a1d07ccfe02d4cdb618f8560cc1ddbffdc43e24f6c64f0937d683971f8d37b1f0a660faef38b63403aaafc5774a0ee275ca2b7b17074b9e8e9eb30a292f4ca9a22aa8527de1b8cb1149898df74bc140b1ae988aaea034860294a715698bb8dec37f91826e27857d57a6bf31db10e6cf895d5817d647ce9001178d69d611e9357d3a99f5053aa036d76cd5d6de4f88f37af55ecde328f1f07e42cc00e6984407934c4f0bcedbdb96be2b84a227ccf39093572f9b2101c68f7c82f16b68a725cd9aa4726f02df79d01839cff745ab102f145ea62a6fcbe68e27b19a7ac136c43dde9d84536455f49229678a6760919484ca65345ad3497826d94fd95c7a99e98446612dadf81fda2c323a85243793ef242daa93486197213ec10aaebe07b7d02f56169a848016bf574aeef45cd544d329988498ab1583cf6bd018a1f77faf7a84e60f7f411e5a6637a43d18f66370eb16d1cae988d565694cfe85e09aee8d15951eced834e76300cd3819d46e8bedd05be35c9b6a6eaf7e9d9c9bd06645bc45209976b228c96d1760a8e58b96438e9f959af53dd99aed808722c79f78026f7c4a757b0888cfd5cfabe087c5deb938ec75f2c5298d7ef6c8082d3486aa95cf87877139b0fcb971a0f909eea87be9a99a93233f598b38e4ca166f33ba222ea4df4cf35a44e85f41a3f03746d88c2a4ed81ee092e094ef59e971e8931a5adb76c22752b147c25d9dd2a5ad4bed0751e411b319809eff0a20686fcf9972b4a1e5db68cecf341d498e13ff73f4ad82471848fa64ba54f6d9cfec62a2b9fb673dc16664fa6e80ca2691b43a961c82df4336bff0c2e791168c755026bd17a8dafa220f2533d987d78bba332f55e6ebed5cbc4d13695cf3cefb366c4893cbb0f3ebc3afd0f244578aa314e372484c6157b0549ecaeab4e1d93014fba60f5bffb4b5802841c03347abcb43a8a1c0bc5596b3d3a02de90e05b738f45bd23087ad3f6a7217afe5944787a4f4741fbeec6661bb8c8f10d4d94187348811a21097587e9dd2df07ddcd346ec5e92b9173351a8871a7a84a3242283811513222430357bf146e566b5b3f9eaf60cae097ad6d454217cf07657e725c78d4142d5f389eb745ae87a1bc579bef91ce740070a98f80b85fc214ffc764e993e9301c3ba11e7f7ec90b561797f90db95cce6215ca3d115bf8d25620ca3ec95413aeb89d7a7f790d793ccb0661f085892666919251423be06ed9463ccfc721f96ebce8f42a04a4e3953ceba329f3d173e5aa8db72788188648cefd38558aff7d1e7280b38aea33e1073ad974ca6a060023964cafd318425325a0a70a0ca9bc2d1134809727a1473413d968cefcc132ed1a49c183ec14f6291d4acdfb0c810eb637139200bb9f52bc1df0ad189796f21ae45be8ba97ac2d9bfd3d787a0d0ba6cf4c46604e6912bd2ce7edf21dc54adae80dd0fd22ba18e210f7f0d4592074bd1da638d31ddc3407db01af56889f2f7f05fa751d374dd11aa0ef391ac4fbb1172886988a6fb453a1bf6d3f0f085a1c5d48d59d204382899a99bd912a46ba888dfd0336404aa8e487fcc2caf9a8e211f116f1f64465d96776dae19aefd486f0ff8fa99ed6512bc3f6ddc64a4204fbf3e47b7782ac6cf8d796fc0bee37405d7efaab43d21d307122ff5657af23e7a6e655260ed2ad16d01dc98727b73bac6c5b70827583bd09b77be33c8524c5dae3848147d74463e68e139e93f060ecc21be0802e137692554f9d08e1eccd1bb04f540ba1db1a95da5d1cf70310bccb97dd8960322feff1f8068750e32c257f48bd54b77202f4e830facea970f0980beb2bcaf213ec69a33daa57484c831fa0c9fd780c62121a5881fa32a5c36790b03b51d0a6a38e0c273dce964fa873ce40e892201fdd11a239fda4dedc13670589415a72546e9a17cf7356ea38af0813fc85765937feb7e3ddedb7ee26afbbda20782b3e8ad53b1f457d0480bd2552834737707682ce03aa1f7fd0bc7c56afeb3a0969e587cdab83be4d7b68465ff751f5cf395b285779a5e7d76d927ef828addffe26604a78c4c7602796491b32b3e2bd9dacf1e4a6f917161e4be35c5215cb619592057dfff4c0488deb32f733c0dc1416c5ed6475d8a13dc9ed682341a0da05714b3ec12a145bde20c490fdfe4dfa3185f1e38993c87c8fc51058ea7693c32f7bf26971d8a6838c1fe241f2cd5a695708ac6eb80c5daded9f4290706587510abd5afc3e3375a42b04214ceeb3c404b957c253fb9b0f76b6bed9fc324cd5fc485df438ff6c1381e0a31051fbc40169235e8c356a624f973a798c38fb30afec7d2d0a2366de278af1aa21bfc9284f1252bfa79a44854a4846834e1f21ac6e7d5832f887af19568e19c3d3826be985aee39425b73e6d5adbd740d7160203e12198b047c7583b9db9f090bbf58f41b31256c20017873c6f092d399f1d23fccda3c7448eac818e45cf6831d242c122ac57c06d898680f572a13d3165722ef311f82c6195c098a847e5e1aeecdcbe7af0d4c1ac67a054dffcc172ae3e9e1815a589969de172760f178576374103856fab699e02f073b1592d1a6a1a2370d5f33e373b62e93c9cdb82e0033d3c4b826d22a3114a0156ae095e1b8e7821185fff708fac86d132861b8af16ecd362adf5e624534f5a2bbab02510bc2eb61b9d2ec5c1d444f198e4946cbf2c4e4c0d4758e4050a66aa5068588e8701cfbecc78320b90f4db4905e4dd281617615298dc7a56abf65ea631864c0bb908bbe92bfa5d2ef1ef03e067a25c8751a5f2e3b0fc50a27eda71f097fb6001f7ba7a87ee2a54b1be39a72009afcb25ba47621ca4c32867014db37bb116a8538554f48fe5e99610de6613a4311443c8930fea8a9abc2265507b755ccce18125e3fcd5f415bc4e728c0c2e81ca21919a75cf918f759c0dc086327439fc6196f162d93c21aad55ab2b0cff30187e73b61965a8554d2ab4a6cf425e01504da2658cb0a9f0956f8d234738246c88d270b2652c3c53092f06adf9a215ae6a6ac65e980ac67f161091632191b1276f14845195ed2ba52d64872d55a315f0add18a96f4a9820785413a0cef5b0df156e34a0b3d13843e38db8b4735626700088be94d49481040016bca9da1b30d6a1352748842ac339c109e83a73c126d7c6370dc655fbf93db57264064e6950aa132704ded9b1115c968381af45d7ea3321c4510370aa237c430fbe8a0f3c847d3cf6a2ac113522922cb6a482f1ff17a86f1717eaf186081c5ceabbfb347edc80f1d14f9b5dc4ec07954c09d88097f82d30f93de7822c48698261b469e7fcfa7a5e021545f2e8e6f7614ebd00202fb6a88b6a973e65746a70dc77c2dc69efba3e3c1f8f5ea5b6e6f86dd53da7e0818d48c0cedb27d83e7ca7ae12134bc27803ff710d069ddd41e420772ab703ccccfa4b1ab107db16bf0074f260357b5648115ff2d3aad1d7707e6be5307ae6cbff0a51f57f4eca826bb8ba55688dafbc6d1f938328ea7644eb805567ae0ca3ce2d6a8a015be64d5840587a555e38adfc48051870aacb79858149454bfdcb490c59cffbfb7c7f9365da80d0290eb68c3f3ab2343805a27a1a880b7614208a1535069a2baec242ae6519f00cbd2713d274e002f80f11749f3c9678ebcd583b5d790ff0cc17ed315192173f74f6bfa1bb96b93f1836dfc462a2ca8f650e468a1c6b35af752c74aa68cb47dc76dd4be4cdde86425bd9a0ad5fd2755ff40b9999272de564160b1ea0b442a18cda0e2a23b034ecb00e13e15f759ca8cf0c1c4b20d4d1f4ed3dfcd3a4f800b77d05cb4d846ab49cc0fcd301ed6971704555479daaa26f7b292764ccfa029ce21087c1dd03af594e46d2df1d8b751c4631e94c46d26c49dec70639308dd3f7f05372b670c53ebdea40e07c4aa1ffac2afbab509dd10d082da710f588543bc41da2c2995e9e993ebc39e569301d32649e1e645de1c329e366aab3bcf79a760e9c8c0c8cd1c9643065dc3c61d60ac7d82953b115a56287939ab8c92f1cd7ca9a35d42e5e315f89c6caba03f41ccb0b02a474d5f8776ee79281ec60dd88e3340dc646d275cdd09a59f0b2eb6bcf21bc9dedd9092c81cdd5cdf62fb173f18b9fe6da91bcdfc694cea6096656e85ab9fd792ea921271703a3482d1ae00750c9e2a2e511516ed1b507d0cb6f4b3f111996e0e7aedf54884ea4996b444b666b4053dedbe022cc097a149129ba6547f32b9fb983db7d5cff85e330e79706a0ba4464b499ede0fb609195e54ddd391440cd6b14db10cb9c6e74910ab7365b918325b7beac9fed0b851827561a8d99e3a0592cac428987f214456a99480e2f65b8faa09e1d5873ccea90809603f92edca76dde628ff1f4ba987498929befde984723630831a3a9104d535ecf99b22874fb965c4ce47b1f2c297a6be396c5b68074b031e583749de3ae04ae2145b525667f02fdbc183c5bf3ffe205a0f41b61aeae7d86d68ef996303f5341b6cfee3ec2e790c7365ec55e141a230ede96d67d431aab4c15b8a29fe0c9d39a5d874550c0ccb36bac314a1f97f8ee203d80419cc0ea7ae4ddbd5d8b2a38562c2bdcc61dec14cb12c83dd0ebbb6630a7f9f640c583e7a86d41455ee9a880b0b9d0e1f5aae70030e10c83a50a2b1c346289d28ad90cb839ce2392e1dc1921d9292dcab30a5d7eec97270402e78bb62888a37f41f165dea2f60ebcca4b65f6c49eb9df1aed4cf02d16e6d006a5b99f57d95e5e09335e6a7b65ceb601a8647fd73282d37b6b283946d08e03dcf347e15b5b8b77a9a8b1c8365a7aeea6157ecbc3b9281c7b2fe69ea614cf04e7d27ea6d7e814ccf9721c00f6119a4924c92cbc64136a7c307c37b97556b029400f3c92c7e7dc6e991d5b9ab12bfd0a8d239073a4ead8989aca9a0e25aef08a8d9a164eb0661b4ae723d9a401c031f204c0ec67924711f06cac6ce1a618d1b7c68a0cf70e23235a8e3a0e77b3b1ed59f9b0b25035d7b0604c28203de5219ceb668601ab24f8e6eac2fdfbb0e2d2c61ed513dce124052df91ec9eb264f19b6d171356467c6729472161a759ed1ca730726cff005cab9b25de489e4917e5b7ae93a274bead9f48550e6bba89155e2b0d3b002054b353c263b981e742cd59040df819e17d811e1e9b92f0dee4ef0057d2ef1e8795f08b17519108d480bf4e29d0476992ac4365c01364be0e7e03e45322778b4bd0e266eeb0dfad5198ade59a08b3ddf62a155f7af595bc9c45b1c7d8753d3505d90f097818f970d19f1f7fd10782ab94d0bdf87809d4e1b3e4a400a31652771491bfcd2abd06f4da3dba1bdd96e4df7c0cf6d323c2c511a5bea687ca6cb4ef6ca6039c5f3119951219e3fea10b3b80ecad55e136d87dd9042cc89fbd93f8a474fd445817f2c3b82c9ae1c8f03113d6d0bca0261856f95deb4650a2dd6145d9c6eba94f24f5b8f032f40b19a0843f3e23521acc4b0f22368708cfe"}]}, @ETHTOOL_A_LINKMODES_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}]}]}, 0x2224}}, 0x24040000)

01:28:28 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 1:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:28 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)
ioctl$VIDIOC_DECODER_CMD(r4, 0xc0485660, &(0x7f0000000180)={0x2, 0x2, @raw_data=[0x443, 0x63, 0x2, 0x3, 0xffff, 0x8000, 0x7, 0x8000, 0x200, 0x2, 0x200, 0x7, 0x3, 0x8000, 0x7, 0x1]})
getpeername$l2tp(r4, &(0x7f0000000100)={0x2, 0x0, @multicast2}, &(0x7f0000000140)=0x10)

01:28:28 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x42000, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
write$FUSE_WRITE(r5, &(0x7f0000000180)={0x18, 0xfffffffffffffffe, 0x5, {0x200000}}, 0x18)
r6 = dup(r2)
r7 = dup(r6)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r7})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f0000000080)=0x5)

01:28:28 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x400, 0x10002)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00')
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$dupfd(r4, 0x0, r5)
ioctl$SNDRV_TIMER_IOCTL_STOP(r5, 0x54a1)
dup(r3)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000180)={0x0, 0x0, r5})
r6 = socket$unix(0x1, 0x2, 0x0)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$dupfd(r7, 0x0, r8)
ioctl$TIOCGDEV(r8, 0x80045432, &(0x7f00000000c0))
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r9)
ioctl$DMA_BUF_IOCTL_SYNC(r9, 0x40086200, &(0x7f0000000080))

01:28:29 executing program 1:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:29 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:29 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r6, 0x8982, &(0x7f0000000140))
arch_prctl$ARCH_SET_GS(0x1001, &(0x7f0000000100))
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:29 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:29 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
syz_emit_ethernet(0xab, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaf2a8aaaabb000000000000884800000000000000000000000000000000000000004c740089006500003f06907860835a13ac1414bb64010102940401004420971000000005000400060000008100060000000500000007000000020700000064010101000000070a01010200000001ac1e010100000008ac1414bbfffffff7640101020080019404010094040000000000000000000000000000000000000000000200004e2400"], &(0x7f00000001c0)={0x1, 0x2, [0xa4f, 0xffe, 0xb4d, 0x19c]})
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37})
socket$inet6(0xa, 0x2, 0x6899)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$dupfd(r4, 0x0, r5)
ioctl$TCSETSW(r5, 0x5403, &(0x7f0000000200)={0x2, 0xffff, 0x0, 0x1, 0x1a, "fb7b4341efc825ec7e9a0f1c773e3c11b022e8"})
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000240)=0x40)
fcntl$dupfd(r6, 0x0, r7)
dup(r7)
r8 = dup(0xffffffffffffffff)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r8})
ioctl$DMA_BUF_IOCTL_SYNC(r8, 0x40086200, &(0x7f0000000080)=0x7)

01:28:29 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:29 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:29 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:29 executing program 1:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x82, 0x0)
syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0xffffffffffffb2b2, 0x200240)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37})
accept4$tipc(r0, 0x0, &(0x7f0000000100), 0x80000)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = dup(r2)
r4 = dup(r3)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})

01:28:29 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:29 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_buf(r5, 0x29, 0x2f, &(0x7f0000000180)=""/215, &(0x7f0000000280)=0xd7)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f0000000140)={0x6, &(0x7f0000000100)=[{0x8, 0x6, 0x2, 0x7ff}, {0x8000, 0x3f, 0xf7, 0x6}, {0x8, 0x7, 0x7, 0x5}, {0x5, 0x9d, 0x5, 0x8001}, {0xcd57, 0x80, 0x6, 0x8}, {0x7, 0x7, 0x1f, 0x5985}]})

01:28:29 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:29 executing program 1:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:29 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:29 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 1:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:29 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:29 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:29 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:29 executing program 1:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:30 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:30 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:30 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:30 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:30 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:30 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:30 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:30 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:30 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:30 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:30 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:30 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:30 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:30 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:30 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:30 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:30 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:30 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:30 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:30 executing program 1:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:30 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:30 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:30 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:30 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:30 executing program 5:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:30 executing program 5:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:30 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:30 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:30 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:30 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280})

01:28:30 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280})

01:28:31 executing program 5:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280})

01:28:31 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 5:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:31 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:31 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:32 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:32 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:32 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:32 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:32 executing program 5:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:32 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:32 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:32 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:32 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:32 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r5, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r6 = fcntl$dupfd(r5, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$dupfd(r7, 0x0, r8)
ioctl$NBD_CLEAR_QUE(r8, 0xab05)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r9=>0xffffffffffffffff})
r10 = dup(r9)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r11=>0x0, 0x0, <r12=>r10})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200)={r11})
dup2(r12, r0)

01:28:32 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:32 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:32 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r5, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r6 = fcntl$dupfd(r5, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$dupfd(r7, 0x0, r8)
ioctl$NBD_CLEAR_QUE(r8, 0xab05)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r9=>0xffffffffffffffff})
r10 = dup(r9)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r11=>0x0, 0x0, <r12=>r10})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200)={r11})
dup2(r12, r0)

01:28:32 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:33 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:33 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r5, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r6 = fcntl$dupfd(r5, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$dupfd(r7, 0x0, r8)
ioctl$NBD_CLEAR_QUE(r8, 0xab05)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r9=>0xffffffffffffffff})
r10 = dup(r9)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r11=>0x0, 0x0, <r12=>r10})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200)={r11})
dup2(r12, r0)

[ 2311.965860] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
01:28:33 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:33 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2311.965888] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2311.965916] CPU: 1 PID: 20861 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2311.965924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2311.965929] Call Trace:
[ 2311.965950]  dump_stack+0x1b2/0x283
[ 2311.965970]  warn_alloc.cold+0x96/0x1af
[ 2311.965985]  ? zone_watermark_ok_safe+0x250/0x250
[ 2311.966011]  ? wait_for_completion_io+0x10/0x10
[ 2311.966032]  __alloc_pages_nodemask+0x2129/0x2730
[ 2311.966066]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2311.966079]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2311.966107]  ? HARDIRQ_verbose+0x10/0x10
[ 2311.966119]  ? do_raw_spin_unlock+0x164/0x250
[ 2311.966136]  alloc_pages_current+0xe7/0x1e0
[ 2311.966152]  kvm_mmu_create+0xd1/0x1c0
[ 2311.966167]  kvm_arch_vcpu_init+0x282/0x890
[ 2311.966176]  ? alloc_pages_current+0xef/0x1e0
[ 2311.966193]  kvm_vcpu_init+0x26d/0x360
[ 2311.966210]  vmx_create_vcpu+0xf5/0x2950
[ 2311.966226]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2311.966238]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2311.966252]  ? alloc_loaded_vmcs+0x240/0x240
[ 2311.966271]  kvm_vm_ioctl+0x4ae/0x1430
[ 2311.966285]  ? __lock_acquire+0x655/0x42a0
[ 2311.966298]  ? kvm_vcpu_release+0xa0/0xa0
[ 2311.966311]  ? check_preemption_disabled+0x35/0x240
[ 2311.966327]  ? perf_trace_lock+0x109/0x4b0
[ 2311.966343]  ? check_preemption_disabled+0x35/0x240
[ 2311.966375]  ? perf_trace_lock+0x109/0x4b0
[ 2311.966393]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2311.966408]  ? HARDIRQ_verbose+0x10/0x10
[ 2311.966422]  ? kvm_vcpu_release+0xa0/0xa0
[ 2311.966435]  do_vfs_ioctl+0x75a/0xfe0
[ 2311.966450]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2311.966466]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2311.966503]  ? security_file_ioctl+0x76/0xb0
[ 2311.966517]  ? security_file_ioctl+0x83/0xb0
[ 2311.966534]  SyS_ioctl+0x7f/0xb0
[ 2311.966552]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2311.966574]  do_syscall_64+0x1d5/0x640
[ 2311.966599]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2311.966612] RIP: 0033:0x45cb09
[ 2311.966621] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2311.966636] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2311.966645] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2311.966653] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2311.966660] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2311.966668] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2311.966697] Mem-Info:
[ 2311.966730] active_anon:427958 inactive_anon:15498 isolated_anon:0
[ 2311.966730]  active_file:3405 inactive_file:25475 isolated_file:0
[ 2311.966730]  unevictable:13607 dirty:223 writeback:0 unstable:0
[ 2311.966730]  slab_reclaimable:22261 slab_unreclaimable:309360
[ 2311.966730]  mapped:68388 shmem:18585 pagetables:27453 bounce:0
[ 2311.966730]  free:667032 free_pcp:553 free_cma:0
[ 2311.966763] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2311.966791] Node 1 active_anon:190988kB inactive_anon:40920kB active_file:13612kB inactive_file:101900kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64636kB dirty:888kB writeback:0kB shmem:49232kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2311.966797] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2311.966831] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2311.966857] Node 0 DMA32 free:31732kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1288kB local_pcp:628kB free_cma:0kB
[ 2311.966882] lowmem_reserve[]: 0 0 0 0 0
[ 2311.966906] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2311.971946] lowmem_reserve[]: 0 0 0 0 0
[ 2311.971974] Node 1 Normal free:2626084kB min:53592kB low:66988kB high:80384kB active_anon:190988kB inactive_anon:40920kB active_file:13612kB inactive_file:101900kB unevictable:54428kB writepending:888kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28896kB pagetables:74508kB bounce:0kB free_pcp:892kB local_pcp:616kB free_cma:0kB
[ 2311.972000] lowmem_reserve[]: 0 0 0 0 0
[ 2311.972023] Node 0 DMA: 1*4kB (U) 4*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10340kB
[ 2311.972116] Node 0 DMA32: 2667*4kB (UMEH) 933*8kB (UME) 432*16kB (UME) 145*32kB (UME) 30*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 31732kB
[ 2311.972198] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2311.972259] Node 1 Normal: 63*4kB (UME) 70*8kB (UM) 325*16kB (UME) 541*32kB (UM) 117*64kB (UME) 17*128kB (UME) 5*256kB (UME) 22*512kB (UME) 12*1024kB (UME) 8*2048kB (UM) 623*4096kB (UM) = 2626012kB
[ 2311.972361] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2311.972369] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2311.972376] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2311.972384] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2311.972389] 41723 total pagecache pages
[ 2311.972399] 0 pages in swap cache
[ 2311.972405] Swap cache stats: add 0, delete 0, find 0/0
[ 2311.972409] Free swap  = 0kB
[ 2311.972413] Total swap = 0kB
[ 2311.972421] 1965979 pages RAM
[ 2311.972425] 0 pages HighMem/MovableOnly
[ 2311.972429] 338456 pages reserved
[ 2311.972433] 0 pages cma reserved
[ 2312.112869] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2312.112898] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2312.112926] CPU: 1 PID: 20880 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2312.112933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2312.112939] Call Trace:
[ 2312.112959]  dump_stack+0x1b2/0x283
[ 2312.112979]  warn_alloc.cold+0x96/0x1af
[ 2312.112993]  ? zone_watermark_ok_safe+0x250/0x250
[ 2312.113018]  ? wait_for_completion_io+0x10/0x10
[ 2312.113038]  __alloc_pages_nodemask+0x2129/0x2730
[ 2312.113071]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2312.113086]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2312.113113]  ? HARDIRQ_verbose+0x10/0x10
[ 2312.113124]  ? do_raw_spin_unlock+0x164/0x250
[ 2312.113140]  alloc_pages_current+0xe7/0x1e0
[ 2312.113160]  kvm_mmu_create+0xd1/0x1c0
[ 2312.113176]  kvm_arch_vcpu_init+0x282/0x890
[ 2312.113186]  ? alloc_pages_current+0xef/0x1e0
[ 2312.113201]  kvm_vcpu_init+0x26d/0x360
[ 2312.113215]  vmx_create_vcpu+0xf5/0x2950
[ 2312.113232]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2312.113245]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2312.113261]  ? alloc_loaded_vmcs+0x240/0x240
[ 2312.113282]  kvm_vm_ioctl+0x4ae/0x1430
[ 2312.113295]  ? __lock_acquire+0x655/0x42a0
[ 2312.113306]  ? kvm_vcpu_release+0xa0/0xa0
[ 2312.113319]  ? check_preemption_disabled+0x35/0x240
[ 2312.113340]  ? perf_trace_lock+0x109/0x4b0
[ 2312.113355]  ? check_preemption_disabled+0x35/0x240
[ 2312.113369]  ? perf_trace_lock+0x109/0x4b0
[ 2312.113386]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2312.113400]  ? HARDIRQ_verbose+0x10/0x10
[ 2312.113412]  ? kvm_vcpu_release+0xa0/0xa0
[ 2312.113425]  do_vfs_ioctl+0x75a/0xfe0
[ 2312.113447]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2312.113462]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2312.113489]  ? security_file_ioctl+0x76/0xb0
[ 2312.113501]  ? security_file_ioctl+0x83/0xb0
[ 2312.113515]  SyS_ioctl+0x7f/0xb0
[ 2312.113524]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2312.113539]  do_syscall_64+0x1d5/0x640
[ 2312.113560]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2312.113569] RIP: 0033:0x45cb09
[ 2312.113574] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2312.113588] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2312.113595] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2312.113602] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2312.113608] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2312.113614] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2312.288471] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2312.288489] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2312.288507] CPU: 0 PID: 20892 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2312.288512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2312.288516] Call Trace:
[ 2312.288530]  dump_stack+0x1b2/0x283
[ 2312.288551]  warn_alloc.cold+0x96/0x1af
[ 2312.288561]  ? zone_watermark_ok_safe+0x250/0x250
[ 2312.288577]  ? wait_for_completion_io+0x10/0x10
[ 2312.288589]  __alloc_pages_nodemask+0x2129/0x2730
[ 2312.288609]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2312.288618]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2312.288634]  ? HARDIRQ_verbose+0x10/0x10
[ 2312.288640]  ? do_raw_spin_unlock+0x164/0x250
[ 2312.288650]  alloc_pages_current+0xe7/0x1e0
[ 2312.288659]  kvm_mmu_create+0xd1/0x1c0
[ 2312.288668]  kvm_arch_vcpu_init+0x282/0x890
[ 2312.288679]  ? alloc_pages_current+0xef/0x1e0
[ 2312.288690]  kvm_vcpu_init+0x26d/0x360
[ 2312.288698]  vmx_create_vcpu+0xf5/0x2950
[ 2312.288710]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2312.288722]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2312.288739]  ? alloc_loaded_vmcs+0x240/0x240
[ 2312.288762]  kvm_vm_ioctl+0x4ae/0x1430
[ 2312.288779]  ? __lock_acquire+0x655/0x42a0
[ 2312.288794]  ? kvm_vcpu_release+0xa0/0xa0
[ 2312.288809]  ? check_preemption_disabled+0x35/0x240
[ 2312.288826]  ? perf_trace_lock+0x109/0x4b0
[ 2312.288845]  ? check_preemption_disabled+0x35/0x240
[ 2312.288864]  ? perf_trace_lock+0x109/0x4b0
[ 2312.288884]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2312.288902]  ? HARDIRQ_verbose+0x10/0x10
[ 2312.288917]  ? kvm_vcpu_release+0xa0/0xa0
[ 2312.288932]  do_vfs_ioctl+0x75a/0xfe0
[ 2312.288951]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2312.288969]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2312.289003]  ? security_file_ioctl+0x76/0xb0
[ 2312.289020]  ? security_file_ioctl+0x83/0xb0
[ 2312.289041]  SyS_ioctl+0x7f/0xb0
[ 2312.289056]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2312.289075]  do_syscall_64+0x1d5/0x640
[ 2312.289099]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2312.289107] RIP: 0033:0x45cb09
[ 2312.289111] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2312.289119] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2312.289124] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2312.289129] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2312.289133] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2312.289138] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
01:28:34 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:34 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:34 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r5, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r6 = fcntl$dupfd(r5, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$dupfd(r7, 0x0, r8)
ioctl$NBD_CLEAR_QUE(r8, 0xab05)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r9=>0xffffffffffffffff})
r10 = dup(r9)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={<r11=>0x0, 0x0, r10})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc10c5541, &(0x7f0000000200)={r11})

01:28:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:34 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r5, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r6 = fcntl$dupfd(r5, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$dupfd(r7, 0x0, r8)
ioctl$NBD_CLEAR_QUE(r8, 0xab05)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r9=>0xffffffffffffffff})
r10 = dup(r9)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r10})

01:28:34 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:34 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:34 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r7)
ioctl$NBD_CLEAR_QUE(r7, 0xab05)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r8=>0xffffffffffffffff})
dup(r8)

01:28:34 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2313.519985] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2313.520017] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2313.520051] CPU: 1 PID: 20905 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2313.520059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2313.520064] Call Trace:
[ 2313.520088]  dump_stack+0x1b2/0x283
[ 2313.520116]  warn_alloc.cold+0x96/0x1af
[ 2313.520135]  ? zone_watermark_ok_safe+0x250/0x250
[ 2313.520162]  ? wait_for_completion_io+0x10/0x10
[ 2313.520185]  __alloc_pages_nodemask+0x2129/0x2730
[ 2313.520233]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2313.520250]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2313.520281]  ? HARDIRQ_verbose+0x10/0x10
[ 2313.520294]  ? do_raw_spin_unlock+0x164/0x250
[ 2313.520323]  alloc_pages_current+0xe7/0x1e0
[ 2313.520343]  kvm_mmu_create+0xd1/0x1c0
[ 2313.520365]  kvm_arch_vcpu_init+0x282/0x890
[ 2313.520379]  ? alloc_pages_current+0xef/0x1e0
[ 2313.520394]  kvm_vcpu_init+0x26d/0x360
[ 2313.520410]  vmx_create_vcpu+0xf5/0x2950
[ 2313.520426]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2313.520437]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2313.520453]  ? alloc_loaded_vmcs+0x240/0x240
[ 2313.520471]  kvm_vm_ioctl+0x4ae/0x1430
[ 2313.520484]  ? __lock_acquire+0x655/0x42a0
[ 2313.520496]  ? kvm_vcpu_release+0xa0/0xa0
[ 2313.520509]  ? check_preemption_disabled+0x35/0x240
[ 2313.520523]  ? perf_trace_lock+0x109/0x4b0
[ 2313.520536]  ? check_preemption_disabled+0x35/0x240
01:28:34 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:34 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2313.520548]  ? perf_trace_lock+0x109/0x4b0
[ 2313.520564]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2313.520578]  ? HARDIRQ_verbose+0x10/0x10
[ 2313.520592]  ? kvm_vcpu_release+0xa0/0xa0
[ 2313.520603]  do_vfs_ioctl+0x75a/0xfe0
[ 2313.520620]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2313.520638]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2313.520667]  ? security_file_ioctl+0x76/0xb0
[ 2313.520679]  ? security_file_ioctl+0x83/0xb0
[ 2313.520691]  SyS_ioctl+0x7f/0xb0
[ 2313.520700]  ? do_vfs_ioctl+0xfe0/0xfe0
01:28:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2313.520716]  do_syscall_64+0x1d5/0x640
[ 2313.520739]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2313.520749] RIP: 0033:0x45cb09
[ 2313.520756] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2313.520770] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2313.520777] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2313.520784] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2313.520791] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2313.520798] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2313.521957] warn_alloc_show_mem: 2 callbacks suppressed
[ 2313.521962] Mem-Info:
[ 2313.521992] active_anon:427936 inactive_anon:15498 isolated_anon:0
[ 2313.521992]  active_file:3405 inactive_file:25475 isolated_file:0
[ 2313.521992]  unevictable:13607 dirty:191 writeback:0 unstable:0
[ 2313.521992]  slab_reclaimable:22254 slab_unreclaimable:309354
[ 2313.521992]  mapped:68213 shmem:18585 pagetables:27464 bounce:0
[ 2313.521992]  free:667105 free_pcp:501 free_cma:0
01:28:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

[ 2313.522016] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2313.522039] Node 1 active_anon:190900kB inactive_anon:40920kB active_file:13612kB inactive_file:101900kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63936kB dirty:760kB writeback:0kB shmem:49232kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2313.522045] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2313.522072] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2313.522099] Node 0 DMA32 free:31608kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1380kB local_pcp:728kB free_cma:0kB
[ 2313.522128] lowmem_reserve[]: 0 0 0 0 0
[ 2313.522152] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2313.522176] lowmem_reserve[]: 0 0 0 0 0
[ 2313.522204] Node 1 Normal free:2626472kB min:53592kB low:66988kB high:80384kB active_anon:190900kB inactive_anon:40920kB active_file:13612kB inactive_file:101900kB unevictable:54428kB writepending:760kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28800kB pagetables:74552kB bounce:0kB free_pcp:624kB local_pcp:252kB free_cma:0kB
[ 2313.522231] lowmem_reserve[]: 0 0 0 0 0
[ 2313.522262] Node 0 DMA: 1*4kB (U) 4*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10340kB
[ 2313.522770] Node 0 DMA32: 2636*4kB (UMEH) 933*8kB (UME) 432*16kB (UME) 145*32kB (UME) 30*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 31608kB
[ 2313.522880] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2313.522949] Node 1 Normal: 106*4kB (UM) 62*8kB (UME) 303*16kB (UME) 546*32kB (UME) 117*64kB (UME) 21*128kB (UM) 5*256kB (UME) 22*512kB (UME) 12*1024kB (UME) 8*2048kB (UM) 623*4096kB (UM) = 2626440kB
[ 2313.523061] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2313.523070] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2313.523079] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2313.523089] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2313.523094] 41723 total pagecache pages
[ 2313.523106] 0 pages in swap cache
[ 2313.523113] Swap cache stats: add 0, delete 0, find 0/0
[ 2313.523118] Free swap  = 0kB
[ 2313.523122] Total swap = 0kB
[ 2313.523130] 1965979 pages RAM
[ 2313.523134] 0 pages HighMem/MovableOnly
[ 2313.523140] 338456 pages reserved
[ 2313.523144] 0 pages cma reserved
[ 2313.635862] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2313.635893] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2313.635922] CPU: 1 PID: 20919 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2313.635930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2313.635935] Call Trace:
[ 2313.635955]  dump_stack+0x1b2/0x283
[ 2313.635975]  warn_alloc.cold+0x96/0x1af
[ 2313.635988]  ? zone_watermark_ok_safe+0x250/0x250
[ 2313.636013]  ? wait_for_completion_io+0x10/0x10
[ 2313.636034]  __alloc_pages_nodemask+0x2129/0x2730
[ 2313.636072]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2313.636087]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2313.636116]  ? HARDIRQ_verbose+0x10/0x10
[ 2313.636128]  ? do_raw_spin_unlock+0x164/0x250
[ 2313.636144]  alloc_pages_current+0xe7/0x1e0
[ 2313.636161]  kvm_mmu_create+0xd1/0x1c0
[ 2313.636177]  kvm_arch_vcpu_init+0x282/0x890
[ 2313.636189]  ? alloc_pages_current+0xef/0x1e0
[ 2313.636205]  kvm_vcpu_init+0x26d/0x360
[ 2313.636219]  vmx_create_vcpu+0xf5/0x2950
[ 2313.636235]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2313.636246]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2313.636260]  ? alloc_loaded_vmcs+0x240/0x240
[ 2313.636280]  kvm_vm_ioctl+0x4ae/0x1430
[ 2313.636294]  ? __lock_acquire+0x655/0x42a0
[ 2313.636306]  ? kvm_vcpu_release+0xa0/0xa0
[ 2313.636318]  ? check_preemption_disabled+0x35/0x240
[ 2313.636332]  ? perf_trace_lock+0x109/0x4b0
[ 2313.636347]  ? check_preemption_disabled+0x35/0x240
[ 2313.636372]  ? perf_trace_lock+0x109/0x4b0
[ 2313.636391]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2313.636406]  ? HARDIRQ_verbose+0x10/0x10
[ 2313.636419]  ? kvm_vcpu_release+0xa0/0xa0
[ 2313.636434]  do_vfs_ioctl+0x75a/0xfe0
[ 2313.636448]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2313.636462]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2313.636488]  ? security_file_ioctl+0x76/0xb0
[ 2313.636498]  ? security_file_ioctl+0x83/0xb0
[ 2313.636512]  SyS_ioctl+0x7f/0xb0
[ 2313.636522]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2313.636536]  do_syscall_64+0x1d5/0x640
01:28:35 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:35 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:35 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2313.636555]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2313.636567] RIP: 0033:0x45cb09
[ 2313.636574] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2313.636587] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2313.636595] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2313.636604] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2313.636614] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2313.636625] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
01:28:35 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r7)
ioctl$NBD_CLEAR_QUE(r7, 0xab05)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r8=>0xffffffffffffffff})
dup(r8)

[ 2313.791000] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2314.611148] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2314.611174] CPU: 1 PID: 20932 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2314.611181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2314.611186] Call Trace:
[ 2314.611206]  dump_stack+0x1b2/0x283
01:28:35 executing program 0:
syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x80000000, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/hwrng\x00', 0x0, 0x0)
sendmsg$AUDIT_USER_TTY(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB="bc75884af66cbf30d029f1093d579200b7f350193677f11a56c5968c683925299dfb0d061bc7e0b02886b28ed38bbc1a8e95ba26eca9d833faa9cdcd07e06a2d25795ad47709eb3f532dfd193e04e67e3b29a31b6aa05f7d5394319cffeee7c7a392689fe57127416ce5729620ec0e0db8275bdf313e528398a1a1f3008f3d71eaf41602e81c11456792d376c745fa2348a5d754f8bcc12473"], 0x1c}, 0x1, 0x0, 0x0, 0x240a9182103ee6c0}, 0x40c0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240), 0xf}, 0x4802, 0x0, 0x2f9, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_gettime(0x7, &(0x7f00000000c0))
clock_settime(0x0, &(0x7f0000000400)={0x77359400})
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket(0x4, 0x5, 0x800)
poll(0x0, 0x0, 0x8000000000000200)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000140)=@ccm_128={{0x304}, "b5a8352c6f0107cf", "45c05b15c0613afe6c66c62fb020395d", "f1e52578", "aca61f86d4103a12"}, 0x28)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000000)=[@mss, @mss, @window={0x3, 0x7}, @mss={0x2, 0x919f}, @timestamp, @window={0x3, 0xfff}], 0x2000019f)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000200), 0x88)
sendto$inet(r1, &(0x7f0000000640)="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"/611, 0xffffffffffffff67, 0x40007bd, 0x0, 0xffffffffffffff4f)
r2 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r2, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r3=>0xffffffffffffffff})
dup(r3)

[ 2314.611224]  warn_alloc.cold+0x96/0x1af
[ 2314.611237]  ? zone_watermark_ok_safe+0x250/0x250
[ 2314.611261]  ? wait_for_completion_io+0x10/0x10
[ 2314.611280]  __alloc_pages_nodemask+0x2129/0x2730
[ 2314.611314]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2314.611327]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2314.611356]  ? HARDIRQ_verbose+0x10/0x10
[ 2314.611367]  ? do_raw_spin_unlock+0x164/0x250
[ 2314.611385]  alloc_pages_current+0xe7/0x1e0
[ 2314.611402]  kvm_mmu_create+0xd1/0x1c0
[ 2314.611417]  kvm_arch_vcpu_init+0x282/0x890
[ 2314.611427]  ? alloc_pages_current+0xef/0x1e0
[ 2314.611442]  kvm_vcpu_init+0x26d/0x360
[ 2314.611458]  vmx_create_vcpu+0xf5/0x2950
[ 2314.611482]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2314.611493]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2314.611508]  ? alloc_loaded_vmcs+0x240/0x240
[ 2314.611527]  kvm_vm_ioctl+0x4ae/0x1430
[ 2314.611540]  ? __lock_acquire+0x655/0x42a0
[ 2314.611552]  ? kvm_vcpu_release+0xa0/0xa0
[ 2314.611563]  ? check_preemption_disabled+0x35/0x240
[ 2314.611577]  ? perf_trace_lock+0x109/0x4b0
[ 2314.611591]  ? check_preemption_disabled+0x35/0x240
[ 2314.611605]  ? perf_trace_lock+0x109/0x4b0
[ 2314.611622]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2314.611635]  ? HARDIRQ_verbose+0x10/0x10
[ 2314.611646]  ? kvm_vcpu_release+0xa0/0xa0
[ 2314.611660]  do_vfs_ioctl+0x75a/0xfe0
[ 2314.611673]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2314.611686]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2314.611712]  ? security_file_ioctl+0x76/0xb0
[ 2314.611723]  ? security_file_ioctl+0x83/0xb0
[ 2314.611736]  SyS_ioctl+0x7f/0xb0
[ 2314.611745]  ? do_vfs_ioctl+0xfe0/0xfe0
03:33:20 executing program 0:
syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x80000000, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/hwrng\x00', 0x0, 0x0)
sendmsg$AUDIT_USER_TTY(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB="bc75884af66cbf30d029f1093d579200b7f350193677f11a56c5968c683925299dfb0d061bc7e0b02886b28ed38bbc1a8e95ba26eca9d833faa9cdcd07e06a2d25795ad47709eb3f532dfd193e04e67e3b29a31b6aa05f7d5394319cffeee7c7a392689fe57127416ce5729620ec0e0db8275bdf313e528398a1a1f3008f3d71eaf41602e81c11456792d376c745fa2348a5d754f8bcc12473"], 0x1c}, 0x1, 0x0, 0x0, 0x240a9182103ee6c0}, 0x40c0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240), 0xf}, 0x4802, 0x0, 0x2f9, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_gettime(0x7, &(0x7f00000000c0))
clock_settime(0x0, &(0x7f0000000400)={0x77359400})
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket(0x4, 0x5, 0x800)
poll(0x0, 0x0, 0x8000000000000200)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000140)=@ccm_128={{0x304}, "b5a8352c6f0107cf", "45c05b15c0613afe6c66c62fb020395d", "f1e52578", "aca61f86d4103a12"}, 0x28)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000000)=[@mss, @mss, @window={0x3, 0x7}, @mss={0x2, 0x919f}, @timestamp, @window={0x3, 0xfff}], 0x2000019f)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000200), 0x88)
sendto$inet(r1, &(0x7f0000000640)="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"/611, 0xffffffffffffff67, 0x40007bd, 0x0, 0xffffffffffffff4f)
r2 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r2, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r3=>0xffffffffffffffff})
dup(r3)

[ 2314.611760]  do_syscall_64+0x1d5/0x640
[ 2314.611779]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2314.611789] RIP: 0033:0x45cb09
[ 2314.611795] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2314.611807] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2314.611814] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2314.611821] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2314.611827] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2314.611834] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2314.611861] warn_alloc_show_mem: 1 callbacks suppressed
[ 2314.611865] Mem-Info:
[ 2314.611889] active_anon:427981 inactive_anon:15498 isolated_anon:0
[ 2314.611889]  active_file:3405 inactive_file:25499 isolated_file:0
[ 2314.611889]  unevictable:13607 dirty:220 writeback:0 unstable:0
[ 2314.611889]  slab_reclaimable:21894 slab_unreclaimable:310620
[ 2314.611889]  mapped:68240 shmem:18585 pagetables:27468 bounce:0
[ 2314.611889]  free:665813 free_pcp:655 free_cma:0
[ 2314.611910] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2314.611929] Node 1 active_anon:191080kB inactive_anon:40920kB active_file:13612kB inactive_file:101996kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64044kB dirty:876kB writeback:0kB shmem:49232kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2314.611934] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2314.611958] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2314.611992] Node 0 DMA32 free:31608kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1428kB local_pcp:728kB free_cma:0kB
[ 2314.612017] lowmem_reserve[]: 0 0 0 0 0
[ 2314.612041] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2314.612064] lowmem_reserve[]: 0 0 0 0 0
[ 2314.612088] Node 1 Normal free:2621304kB min:53592kB low:66988kB high:80384kB active_anon:191080kB inactive_anon:40920kB active_file:13612kB inactive_file:101996kB unevictable:54428kB writepending:876kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28832kB pagetables:74568kB bounce:0kB free_pcp:1192kB local_pcp:700kB free_cma:0kB
[ 2314.612113] lowmem_reserve[]: 0 0 0 0 0
[ 2314.612138] Node 0 DMA: 1*4kB (U) 4*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10340kB
[ 2314.612240] Node 0 DMA32: 2636*4kB (UMEH) 933*8kB (UME) 432*16kB (UME) 145*32kB (UME) 30*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 31608kB
[ 2314.612324] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2314.612386] Node 1 Normal: 142*4kB (UME) 28*8kB (UE) 36*16kB (UME) 547*32kB (UME) 117*64kB (UME) 15*128kB (UM) 5*256kB (UME) 22*512kB (UME) 12*1024kB (UME) 8*2048kB (UM) 623*4096kB (UM) = 2621304kB
[ 2314.612501] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2314.612509] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2314.612517] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2314.612525] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2314.612530] 41747 total pagecache pages
[ 2314.612541] 0 pages in swap cache
[ 2314.612548] Swap cache stats: add 0, delete 0, find 0/0
[ 2314.612552] Free swap  = 0kB
[ 2314.612557] Total swap = 0kB
[ 2314.612564] 1965979 pages RAM
[ 2314.612568] 0 pages HighMem/MovableOnly
[ 2314.612573] 338456 pages reserved
[ 2314.612577] 0 pages cma reserved
01:28:36 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2314.724924] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2315.379064] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2315.379091] CPU: 1 PID: 20962 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2315.379097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2315.379102] Call Trace:
[ 2315.379121]  dump_stack+0x1b2/0x283
[ 2315.379139]  warn_alloc.cold+0x96/0x1af
[ 2315.379152]  ? zone_watermark_ok_safe+0x250/0x250
[ 2315.379176]  ? wait_for_completion_io+0x10/0x10
[ 2315.379196]  __alloc_pages_nodemask+0x2129/0x2730
[ 2315.379230]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2315.379244]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2315.379272]  ? HARDIRQ_verbose+0x10/0x10
[ 2315.379284]  ? do_raw_spin_unlock+0x164/0x250
[ 2315.379299]  alloc_pages_current+0xe7/0x1e0
[ 2315.379316]  kvm_mmu_create+0xd1/0x1c0
[ 2315.379330]  kvm_arch_vcpu_init+0x282/0x890
[ 2315.379339]  ? alloc_pages_current+0xef/0x1e0
[ 2315.379354]  kvm_vcpu_init+0x26d/0x360
[ 2315.379368]  vmx_create_vcpu+0xf5/0x2950
[ 2315.379380]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2315.379389]  ? trace_hardirqs_on_caller+0x3a8/0x580
[ 2315.379405]  ? alloc_loaded_vmcs+0x240/0x240
[ 2315.379429]  kvm_vm_ioctl+0x4ae/0x1430
[ 2315.379441]  ? __schedule+0x8ae/0x1d70
[ 2315.379455]  ? kvm_vcpu_release+0xa0/0xa0
[ 2315.379466]  ? retint_kernel+0x2d/0x2d
[ 2315.379479]  ? trace_hardirqs_on_caller+0x3a8/0x580
[ 2315.379491]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 2315.379508]  ? retint_kernel+0x2d/0x2d
[ 2315.379527]  ? selinux_file_ioctl+0x103/0x560
[ 2315.379537]  ? selinux_file_ioctl+0x11a/0x560
[ 2315.379546]  ? kvm_vcpu_release+0xa0/0xa0
[ 2315.379556]  do_vfs_ioctl+0x75a/0xfe0
[ 2315.379567]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2315.379579]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2315.379603]  ? security_file_ioctl+0x76/0xb0
[ 2315.379614]  ? security_file_ioctl+0x83/0xb0
[ 2315.379627]  SyS_ioctl+0x7f/0xb0
[ 2315.379635]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2315.379648]  do_syscall_64+0x1d5/0x640
[ 2315.379663]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2315.379670] RIP: 0033:0x45cb09
[ 2315.379675] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2315.379686] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2315.379692] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
01:28:36 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2315.379698] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2315.379705] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2315.379710] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
01:28:36 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r7)
ioctl$NBD_CLEAR_QUE(r7, 0xab05)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1, 0x0, <r8=>0xffffffffffffffff})
dup(r8)

01:28:36 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:36 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:36 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:36 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:36 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:36 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:36 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:36 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r7)
ioctl$NBD_CLEAR_QUE(r7, 0xab05)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:36 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r4 = fcntl$dupfd(r3, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
ioctl$NBD_CLEAR_QUE(r6, 0xab05)

01:28:36 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:36 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:36 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2315.955326] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2315.955356] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2315.955385] CPU: 0 PID: 20995 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2315.955393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2315.955397] Call Trace:
[ 2315.955418]  dump_stack+0x1b2/0x283
[ 2315.955437]  warn_alloc.cold+0x96/0x1af
01:28:37 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:37 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2315.955453]  ? zone_watermark_ok_safe+0x250/0x250
[ 2315.955480]  ? wait_for_completion_io+0x10/0x10
[ 2315.955501]  __alloc_pages_nodemask+0x2129/0x2730
[ 2315.955538]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2315.955552]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2315.955580]  ? HARDIRQ_verbose+0x10/0x10
[ 2315.955592]  ? do_raw_spin_unlock+0x164/0x250
[ 2315.955608]  alloc_pages_current+0xe7/0x1e0
[ 2315.955624]  kvm_mmu_create+0xd1/0x1c0
[ 2315.955639]  kvm_arch_vcpu_init+0x282/0x890
[ 2315.955649]  ? alloc_pages_current+0xef/0x1e0
[ 2315.955665]  kvm_vcpu_init+0x26d/0x360
[ 2315.955691]  vmx_create_vcpu+0xf5/0x2950
[ 2315.955709]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2315.955722]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2315.955738]  ? alloc_loaded_vmcs+0x240/0x240
[ 2315.955760]  kvm_vm_ioctl+0x4ae/0x1430
[ 2315.955774]  ? __lock_acquire+0x655/0x42a0
[ 2315.955786]  ? kvm_vcpu_release+0xa0/0xa0
[ 2315.955798]  ? check_preemption_disabled+0x35/0x240
[ 2315.955813]  ? perf_trace_lock+0x109/0x4b0
[ 2315.955827]  ? check_preemption_disabled+0x35/0x240
[ 2315.955841]  ? perf_trace_lock+0x109/0x4b0
[ 2315.955857]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2315.955872]  ? HARDIRQ_verbose+0x10/0x10
[ 2315.955885]  ? kvm_vcpu_release+0xa0/0xa0
[ 2315.955903]  do_vfs_ioctl+0x75a/0xfe0
[ 2315.955924]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2315.955946]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2315.955977]  ? security_file_ioctl+0x76/0xb0
[ 2315.955993]  ? security_file_ioctl+0x83/0xb0
[ 2315.956009]  SyS_ioctl+0x7f/0xb0
[ 2315.956022]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2315.956043]  do_syscall_64+0x1d5/0x640
[ 2315.956068]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2315.956078] RIP: 0033:0x45cb09
[ 2315.956086] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2315.956099] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2315.956106] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2315.956114] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2315.956121] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2315.956129] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2315.960520] warn_alloc_show_mem: 1 callbacks suppressed
[ 2315.960525] Mem-Info:
[ 2315.960554] active_anon:427965 inactive_anon:21639 isolated_anon:0
[ 2315.960554]  active_file:3406 inactive_file:25508 isolated_file:0
[ 2315.960554]  unevictable:13607 dirty:246 writeback:0 unstable:0
[ 2315.960554]  slab_reclaimable:21818 slab_unreclaimable:311057
[ 2315.960554]  mapped:67990 shmem:24729 pagetables:27501 bounce:0
[ 2315.960554]  free:659503 free_pcp:590 free_cma:0
[ 2315.960583] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2315.961707] Node 1 active_anon:191016kB inactive_anon:65484kB active_file:13616kB inactive_file:102032kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63044kB dirty:980kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2315.961713] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2315.961833] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2315.961864] Node 0 DMA32 free:31880kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1232kB local_pcp:612kB free_cma:0kB
[ 2315.961899] lowmem_reserve[]: 0 0 0 0 0
[ 2315.961928] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2315.961969] lowmem_reserve[]: 0 0 0 0 0
[ 2315.962002] Node 1 Normal free:2595792kB min:53592kB low:66988kB high:80384kB active_anon:191016kB inactive_anon:65484kB active_file:13616kB inactive_file:102032kB unevictable:54428kB writepending:980kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28896kB pagetables:74700kB bounce:0kB free_pcp:1116kB local_pcp:652kB free_cma:0kB
[ 2315.962032] lowmem_reserve[]: 0 0 0 0 0
[ 2315.962060] Node 0 DMA: 1*4kB (U) 4*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10340kB
[ 2315.962170] Node 0 DMA32: 2672*4kB (UMEH) 939*8kB (UME) 435*16kB (UME) 146*32kB (UME) 30*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 31880kB
[ 2315.962261] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2315.962324] Node 1 Normal: 342*4kB (UME) 110*8kB (UE) 20*16kB (E) 467*32kB (UE) 114*64kB (UE) 18*128kB (UM) 2*256kB (UE) 18*512kB (UE) 9*1024kB (UE) 5*2048kB (U) 620*4096kB (UM) = 2595816kB
[ 2315.962436] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2315.962444] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2315.962453] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2315.962461] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2315.962465] 47901 total pagecache pages
[ 2315.962478] 0 pages in swap cache
[ 2315.962484] Swap cache stats: add 0, delete 0, find 0/0
[ 2315.962489] Free swap  = 0kB
[ 2315.962493] Total swap = 0kB
[ 2315.962500] 1965979 pages RAM
[ 2315.962505] 0 pages HighMem/MovableOnly
[ 2315.962509] 338456 pages reserved
[ 2315.962514] 0 pages cma reserved
[ 2316.078852] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2316.078882] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2316.078909] CPU: 0 PID: 21017 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2316.078916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2316.078921] Call Trace:
[ 2316.078941]  dump_stack+0x1b2/0x283
[ 2316.078969]  warn_alloc.cold+0x96/0x1af
[ 2316.078982]  ? zone_watermark_ok_safe+0x250/0x250
[ 2316.079007]  ? wait_for_completion_io+0x10/0x10
[ 2316.079027]  __alloc_pages_nodemask+0x2129/0x2730
[ 2316.079062]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2316.079074]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2316.079103]  ? HARDIRQ_verbose+0x10/0x10
[ 2316.079116]  ? do_raw_spin_unlock+0x164/0x250
[ 2316.079134]  alloc_pages_current+0xe7/0x1e0
[ 2316.079151]  kvm_mmu_create+0xd1/0x1c0
[ 2316.079165]  kvm_arch_vcpu_init+0x282/0x890
[ 2316.079176]  ? alloc_pages_current+0xef/0x1e0
[ 2316.079190]  kvm_vcpu_init+0x26d/0x360
[ 2316.079204]  vmx_create_vcpu+0xf5/0x2950
[ 2316.079227]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2316.079241]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2316.079259]  ? alloc_loaded_vmcs+0x240/0x240
[ 2316.079292]  kvm_vm_ioctl+0x4ae/0x1430
[ 2316.079310]  ? __lock_acquire+0x655/0x42a0
[ 2316.079325]  ? kvm_vcpu_release+0xa0/0xa0
[ 2316.079339]  ? check_preemption_disabled+0x35/0x240
[ 2316.079365]  ? perf_trace_lock+0x109/0x4b0
[ 2316.079384]  ? check_preemption_disabled+0x35/0x240
[ 2316.079400]  ? perf_trace_lock+0x109/0x4b0
[ 2316.079419]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2316.079434]  ? HARDIRQ_verbose+0x10/0x10
[ 2316.079449]  ? kvm_vcpu_release+0xa0/0xa0
[ 2316.079465]  do_vfs_ioctl+0x75a/0xfe0
[ 2316.079482]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2316.079497]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2316.079525]  ? security_file_ioctl+0x76/0xb0
[ 2316.079535]  ? security_file_ioctl+0x83/0xb0
[ 2316.079549]  SyS_ioctl+0x7f/0xb0
[ 2316.079559]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2316.079576]  do_syscall_64+0x1d5/0x640
[ 2316.079599]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
01:28:37 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2316.079609] RIP: 0033:0x45cb09
[ 2316.079616] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2316.079630] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2316.079637] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2316.079644] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2316.079651] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2316.079657] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
01:28:37 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r4 = fcntl$dupfd(r3, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
ioctl$NBD_CLEAR_QUE(r6, 0xab05)

[ 2316.223638] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2317.081450] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2317.081475] CPU: 0 PID: 21028 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2317.081481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2317.081485] Call Trace:
[ 2317.081504]  dump_stack+0x1b2/0x283
[ 2317.081522]  warn_alloc.cold+0x96/0x1af
[ 2317.081534]  ? zone_watermark_ok_safe+0x250/0x250
[ 2317.081558]  ? wait_for_completion_io+0x10/0x10
[ 2317.081578]  __alloc_pages_nodemask+0x2129/0x2730
[ 2317.081611]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2317.081624]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2317.081651]  ? HARDIRQ_verbose+0x10/0x10
[ 2317.081662]  ? do_raw_spin_unlock+0x164/0x250
[ 2317.081678]  alloc_pages_current+0xe7/0x1e0
[ 2317.081695]  kvm_mmu_create+0xd1/0x1c0
[ 2317.081711]  kvm_arch_vcpu_init+0x282/0x890
[ 2317.081721]  ? alloc_pages_current+0xef/0x1e0
[ 2317.081737]  kvm_vcpu_init+0x26d/0x360
[ 2317.081752]  vmx_create_vcpu+0xf5/0x2950
[ 2317.081769]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2317.081780]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2317.081794]  ? alloc_loaded_vmcs+0x240/0x240
[ 2317.081814]  kvm_vm_ioctl+0x4ae/0x1430
[ 2317.081827]  ? __lock_acquire+0x655/0x42a0
[ 2317.081839]  ? kvm_vcpu_release+0xa0/0xa0
[ 2317.081857]  ? check_preemption_disabled+0x35/0x240
[ 2317.081872]  ? perf_trace_lock+0x109/0x4b0
[ 2317.081886]  ? check_preemption_disabled+0x35/0x240
[ 2317.081900]  ? perf_trace_lock+0x109/0x4b0
[ 2317.081917]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2317.081935]  ? HARDIRQ_verbose+0x10/0x10
[ 2317.081947]  ? kvm_vcpu_release+0xa0/0xa0
[ 2317.081960]  do_vfs_ioctl+0x75a/0xfe0
[ 2317.081981]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2317.081994]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2317.082020]  ? security_file_ioctl+0x76/0xb0
[ 2317.082029]  ? security_file_ioctl+0x83/0xb0
01:28:38 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2317.082043]  SyS_ioctl+0x7f/0xb0
[ 2317.082052]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2317.082067]  do_syscall_64+0x1d5/0x640
[ 2317.082087]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2317.082096] RIP: 0033:0x45cb09
[ 2317.082102] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2317.082115] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2317.082122] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2317.082128] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2317.082135] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2317.082142] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2317.082411] warn_alloc_show_mem: 1 callbacks suppressed
[ 2317.082415] Mem-Info:
[ 2317.082440] active_anon:428007 inactive_anon:21639 isolated_anon:0
[ 2317.082440]  active_file:3406 inactive_file:25520 isolated_file:0
[ 2317.082440]  unevictable:13607 dirty:258 writeback:0 unstable:0
[ 2317.082440]  slab_reclaimable:21727 slab_unreclaimable:311303
[ 2317.082440]  mapped:68006 shmem:24729 pagetables:27505 bounce:0
[ 2317.082440]  free:659331 free_pcp:633 free_cma:0
[ 2317.082461] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2317.082479] Node 1 active_anon:191184kB inactive_anon:65484kB active_file:13616kB inactive_file:102080kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63108kB dirty:1028kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2317.082484] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2317.082509] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2317.082536] Node 0 DMA32 free:31880kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1304kB local_pcp:660kB free_cma:0kB
[ 2317.082562] lowmem_reserve[]: 0 0 0 0 0
[ 2317.082588] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2317.082612] lowmem_reserve[]: 0 0 0 0 0
[ 2317.082638] Node 1 Normal free:2595104kB min:53592kB low:66988kB high:80384kB active_anon:191184kB inactive_anon:65484kB active_file:13616kB inactive_file:102080kB unevictable:54428kB writepending:1028kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28864kB pagetables:74716kB bounce:0kB free_pcp:1228kB local_pcp:716kB free_cma:0kB
[ 2317.082664] lowmem_reserve[]: 0 0 0 0 0
[ 2317.082690] Node 0 DMA: 1*4kB (U) 4*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10340kB
[ 2317.082790] Node 0 DMA32: 2672*4kB (UMEH) 939*8kB (UME) 435*16kB (UME) 146*32kB (UME) 30*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 31880kB
[ 2317.082876] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2317.082939] Node 1 Normal: 422*4kB (UME) 113*8kB (UME) 36*16kB (UME) 386*32kB (UE) 114*64kB (UE) 28*128kB (U) 2*256kB (UE) 18*512kB (UE) 9*1024kB (UE) 5*2048kB (U) 620*4096kB (UM) = 2595104kB
[ 2317.083057] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2317.083065] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2317.083072] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2317.083081] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2317.083085] 47913 total pagecache pages
[ 2317.083096] 0 pages in swap cache
[ 2317.083103] Swap cache stats: add 0, delete 0, find 0/0
[ 2317.083107] Free swap  = 0kB
[ 2317.083111] Total swap = 0kB
01:28:38 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r4 = fcntl$dupfd(r3, 0x0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
ioctl$NBD_CLEAR_QUE(r6, 0xab05)

[ 2317.083119] 1965979 pages RAM
[ 2317.083123] 0 pages HighMem/MovableOnly
[ 2317.083127] 338456 pages reserved
[ 2317.083130] 0 pages cma reserved
[ 2317.236194] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2317.745612] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2317.745638] CPU: 0 PID: 21049 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2317.745645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2317.745649] Call Trace:
[ 2317.745669]  dump_stack+0x1b2/0x283
[ 2317.745688]  warn_alloc.cold+0x96/0x1af
01:28:38 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2317.745700]  ? zone_watermark_ok_safe+0x250/0x250
[ 2317.745724]  ? wait_for_completion_io+0x10/0x10
[ 2317.745744]  __alloc_pages_nodemask+0x2129/0x2730
[ 2317.745778]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2317.745791]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2317.745819]  ? HARDIRQ_verbose+0x10/0x10
[ 2317.745838]  alloc_pages_current+0xe7/0x1e0
[ 2317.745855]  kvm_mmu_create+0xd1/0x1c0
[ 2317.745870]  kvm_arch_vcpu_init+0x282/0x890
[ 2317.745880]  ? alloc_pages_current+0xef/0x1e0
[ 2317.745895]  kvm_vcpu_init+0x26d/0x360
[ 2317.745910]  vmx_create_vcpu+0xf5/0x2950
[ 2317.745926]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2317.745936]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2317.745950]  ? alloc_loaded_vmcs+0x240/0x240
[ 2317.745969]  kvm_vm_ioctl+0x4ae/0x1430
[ 2317.745982]  ? __lock_acquire+0x655/0x42a0
[ 2317.745994]  ? kvm_vcpu_release+0xa0/0xa0
[ 2317.746006]  ? check_preemption_disabled+0x35/0x240
[ 2317.746020]  ? perf_trace_lock+0x109/0x4b0
[ 2317.746034]  ? check_preemption_disabled+0x35/0x240
[ 2317.746048]  ? perf_trace_lock+0x109/0x4b0
[ 2317.746065]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2317.746078]  ? HARDIRQ_verbose+0x10/0x10
[ 2317.746089]  ? kvm_vcpu_release+0xa0/0xa0
[ 2317.746103]  do_vfs_ioctl+0x75a/0xfe0
[ 2317.746116]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2317.746129]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2317.746156]  ? security_file_ioctl+0x76/0xb0
[ 2317.746166]  ? security_file_ioctl+0x83/0xb0
[ 2317.746179]  SyS_ioctl+0x7f/0xb0
[ 2317.746188]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2317.746203]  do_syscall_64+0x1d5/0x640
[ 2317.746223]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
01:28:38 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r7)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2317.746232] RIP: 0033:0x45cb09
[ 2317.746238] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2317.746251] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2317.746257] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2317.746264] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2317.746271] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2317.746277] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
01:28:38 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2317.872023] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2318.080718] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2318.080745] CPU: 0 PID: 21060 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2318.080751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2318.080756] Call Trace:
[ 2318.080777]  dump_stack+0x1b2/0x283
[ 2318.080796]  warn_alloc.cold+0x96/0x1af
[ 2318.080808]  ? zone_watermark_ok_safe+0x250/0x250
[ 2318.080832]  ? wait_for_completion_io+0x10/0x10
[ 2318.080851]  __alloc_pages_nodemask+0x2129/0x2730
[ 2318.080885]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2318.080898]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2318.080926]  ? HARDIRQ_verbose+0x10/0x10
[ 2318.080938]  ? do_raw_spin_unlock+0x164/0x250
[ 2318.080955]  alloc_pages_current+0xe7/0x1e0
[ 2318.080972]  kvm_mmu_create+0xd1/0x1c0
[ 2318.080987]  kvm_arch_vcpu_init+0x282/0x890
[ 2318.080998]  ? alloc_pages_current+0xef/0x1e0
[ 2318.081013]  kvm_vcpu_init+0x26d/0x360
[ 2318.081028]  vmx_create_vcpu+0xf5/0x2950
[ 2318.081043]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2318.081056]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2318.081070]  ? alloc_loaded_vmcs+0x240/0x240
[ 2318.081089]  kvm_vm_ioctl+0x4ae/0x1430
[ 2318.081102]  ? __lock_acquire+0x655/0x42a0
[ 2318.081113]  ? kvm_vcpu_release+0xa0/0xa0
01:28:39 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2318.081124]  ? check_preemption_disabled+0x35/0x240
[ 2318.081143]  ? perf_trace_lock+0x109/0x4b0
[ 2318.081158]  ? check_preemption_disabled+0x35/0x240
[ 2318.081172]  ? perf_trace_lock+0x109/0x4b0
[ 2318.081188]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2318.081201]  ? HARDIRQ_verbose+0x10/0x10
[ 2318.081213]  ? kvm_vcpu_release+0xa0/0xa0
[ 2318.081226]  do_vfs_ioctl+0x75a/0xfe0
[ 2318.081239]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2318.081252]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2318.081278]  ? security_file_ioctl+0x76/0xb0
[ 2318.081289]  ? security_file_ioctl+0x83/0xb0
[ 2318.081302]  SyS_ioctl+0x7f/0xb0
[ 2318.081311]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2318.081326]  do_syscall_64+0x1d5/0x640
[ 2318.081345]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2318.081355] RIP: 0033:0x45cb09
[ 2318.081361] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2318.081373] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2318.081380] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2318.081386] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2318.081393] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2318.081400] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2318.161622] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2318.161657] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2318.161685] CPU: 1 PID: 21073 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2318.161693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2318.161697] Call Trace:
[ 2318.161717]  dump_stack+0x1b2/0x283
[ 2318.161736]  warn_alloc.cold+0x96/0x1af
[ 2318.161749]  ? zone_watermark_ok_safe+0x250/0x250
[ 2318.161774]  ? wait_for_completion_io+0x10/0x10
[ 2318.161794]  __alloc_pages_nodemask+0x2129/0x2730
[ 2318.161830]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2318.161845]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2318.161873]  ? HARDIRQ_verbose+0x10/0x10
[ 2318.161884]  ? do_raw_spin_unlock+0x164/0x250
[ 2318.161903]  alloc_pages_current+0xe7/0x1e0
[ 2318.161921]  kvm_mmu_create+0xd1/0x1c0
[ 2318.161937]  kvm_arch_vcpu_init+0x282/0x890
[ 2318.161947]  ? alloc_pages_current+0xef/0x1e0
[ 2318.161964]  kvm_vcpu_init+0x26d/0x360
[ 2318.161980]  vmx_create_vcpu+0xf5/0x2950
[ 2318.161997]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2318.162008]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2318.162024]  ? alloc_loaded_vmcs+0x240/0x240
[ 2318.162051]  kvm_vm_ioctl+0x4ae/0x1430
[ 2318.162072]  ? __lock_acquire+0x655/0x42a0
[ 2318.162085]  ? kvm_vcpu_release+0xa0/0xa0
[ 2318.162098]  ? check_preemption_disabled+0x35/0x240
[ 2318.162113]  ? perf_trace_lock+0x109/0x4b0
[ 2318.162126]  ? check_preemption_disabled+0x35/0x240
[ 2318.162141]  ? perf_trace_lock+0x109/0x4b0
[ 2318.162158]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2318.162170]  ? HARDIRQ_verbose+0x10/0x10
[ 2318.162182]  ? kvm_vcpu_release+0xa0/0xa0
[ 2318.162194]  do_vfs_ioctl+0x75a/0xfe0
[ 2318.162208]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2318.162222]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2318.162250]  ? security_file_ioctl+0x76/0xb0
[ 2318.162261]  ? security_file_ioctl+0x83/0xb0
[ 2318.162275]  SyS_ioctl+0x7f/0xb0
[ 2318.162284]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2318.162300]  do_syscall_64+0x1d5/0x640
[ 2318.162320]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2318.162329] RIP: 0033:0x45cb09
[ 2318.162336] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2318.162348] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2318.162356] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2318.162363] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2318.162370] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2318.162378] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2318.167473] warn_alloc_show_mem: 2 callbacks suppressed
[ 2318.167477] Mem-Info:
[ 2318.167508] active_anon:428030 inactive_anon:21639 isolated_anon:0
[ 2318.167508]  active_file:3406 inactive_file:25529 isolated_file:0
[ 2318.167508]  unevictable:13607 dirty:136 writeback:0 unstable:0
[ 2318.167508]  slab_reclaimable:21647 slab_unreclaimable:311552
[ 2318.167508]  mapped:68017 shmem:24729 pagetables:27531 bounce:0
[ 2318.167508]  free:659043 free_pcp:650 free_cma:0
[ 2318.167530] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2318.167549] Node 1 active_anon:191276kB inactive_anon:65484kB active_file:13616kB inactive_file:102116kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63152kB dirty:540kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2318.167554] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2318.167582] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2318.167608] Node 0 DMA32 free:31880kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1348kB local_pcp:660kB free_cma:0kB
[ 2318.167632] lowmem_reserve[]: 0 0 0 0 0
[ 2318.167658] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2318.167682] lowmem_reserve[]: 0 0 0 0 0
[ 2318.167708] Node 1 Normal free:2593952kB min:53592kB low:66988kB high:80384kB active_anon:191276kB inactive_anon:65484kB active_file:13616kB inactive_file:102116kB unevictable:54428kB writepending:540kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28896kB pagetables:74820kB bounce:0kB free_pcp:1252kB local_pcp:612kB free_cma:0kB
[ 2318.167736] lowmem_reserve[]: 0 0 0 0 0
[ 2318.167761] Node 0 DMA: 1*4kB (U) 4*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10340kB
[ 2318.167864] Node 0 DMA32: 2672*4kB (UMEH) 939*8kB (UME) 435*16kB (UME) 147*32kB (UME) 30*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 31912kB
[ 2318.167945] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2318.168002] Node 1 Normal: 409*4kB (UE) 93*8kB (UME) 60*16kB (UME) 364*32kB (UE) 114*64kB (UE) 25*128kB (UM) 3*256kB (UME) 19*512kB (UME) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2593932kB
[ 2318.168119] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2318.168127] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2318.168136] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2318.168144] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2318.168148] 47922 total pagecache pages
[ 2318.168160] 0 pages in swap cache
[ 2318.168166] Swap cache stats: add 0, delete 0, find 0/0
[ 2318.168170] Free swap  = 0kB
[ 2318.168175] Total swap = 0kB
[ 2318.168182] 1965979 pages RAM
[ 2318.168187] 0 pages HighMem/MovableOnly
[ 2318.168191] 338456 pages reserved
[ 2318.168196] 0 pages cma reserved
01:28:39 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2318.298380] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2319.089294] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2319.089321] CPU: 1 PID: 21079 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2319.089328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2319.089333] Call Trace:
[ 2319.089355]  dump_stack+0x1b2/0x283
[ 2319.089374]  warn_alloc.cold+0x96/0x1af
[ 2319.089387]  ? zone_watermark_ok_safe+0x250/0x250
[ 2319.089414]  ? wait_for_completion_io+0x10/0x10
[ 2319.089432]  __alloc_pages_nodemask+0x2129/0x2730
01:28:39 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
socket$unix(0x1, 0x2, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2319.089463]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2319.089475]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2319.089503]  ? HARDIRQ_verbose+0x10/0x10
[ 2319.089522]  alloc_pages_current+0xe7/0x1e0
[ 2319.089540]  kvm_mmu_create+0xd1/0x1c0
[ 2319.089555]  kvm_arch_vcpu_init+0x282/0x890
[ 2319.089565]  ? alloc_pages_current+0xef/0x1e0
[ 2319.089581]  kvm_vcpu_init+0x26d/0x360
[ 2319.089597]  vmx_create_vcpu+0xf5/0x2950
[ 2319.089613]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2319.089624]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2319.089639]  ? alloc_loaded_vmcs+0x240/0x240
[ 2319.089659]  kvm_vm_ioctl+0x4ae/0x1430
[ 2319.089672]  ? __lock_acquire+0x655/0x42a0
[ 2319.089684]  ? kvm_vcpu_release+0xa0/0xa0
[ 2319.089697]  ? check_preemption_disabled+0x35/0x240
[ 2319.089711]  ? perf_trace_lock+0x109/0x4b0
[ 2319.089725]  ? check_preemption_disabled+0x35/0x240
[ 2319.089740]  ? perf_trace_lock+0x109/0x4b0
[ 2319.089756]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2319.089769]  ? HARDIRQ_verbose+0x10/0x10
[ 2319.089781]  ? kvm_vcpu_release+0xa0/0xa0
[ 2319.089795]  do_vfs_ioctl+0x75a/0xfe0
[ 2319.089808]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2319.089821]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2319.089854]  ? security_file_ioctl+0x76/0xb0
[ 2319.089866]  ? security_file_ioctl+0x83/0xb0
[ 2319.089879]  SyS_ioctl+0x7f/0xb0
[ 2319.089888]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2319.089904]  do_syscall_64+0x1d5/0x640
[ 2319.089925]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
01:28:40 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2319.089934] RIP: 0033:0x45cb09
[ 2319.089941] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2319.089954] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2319.089960] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2319.089967] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2319.089974] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2319.089982] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2319.191599] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2319.191629] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2319.191657] CPU: 0 PID: 21089 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2319.191665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2319.191670] Call Trace:
[ 2319.191690]  dump_stack+0x1b2/0x283
[ 2319.191711]  warn_alloc.cold+0x96/0x1af
[ 2319.191725]  ? zone_watermark_ok_safe+0x250/0x250
[ 2319.191751]  ? wait_for_completion_io+0x10/0x10
[ 2319.191770]  __alloc_pages_nodemask+0x2129/0x2730
[ 2319.191805]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2319.191820]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2319.191850]  ? HARDIRQ_verbose+0x10/0x10
[ 2319.191864]  ? do_raw_spin_unlock+0x164/0x250
[ 2319.191880]  alloc_pages_current+0xe7/0x1e0
[ 2319.191902]  kvm_mmu_create+0xd1/0x1c0
[ 2319.191918]  kvm_arch_vcpu_init+0x282/0x890
[ 2319.191931]  ? alloc_pages_current+0xef/0x1e0
[ 2319.191948]  kvm_vcpu_init+0x26d/0x360
[ 2319.191966]  vmx_create_vcpu+0xf5/0x2950
[ 2319.191982]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2319.191992]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2319.192007]  ? alloc_loaded_vmcs+0x240/0x240
[ 2319.192026]  kvm_vm_ioctl+0x4ae/0x1430
[ 2319.192041]  ? __lock_acquire+0x655/0x42a0
[ 2319.192053]  ? kvm_vcpu_release+0xa0/0xa0
[ 2319.192065]  ? check_preemption_disabled+0x35/0x240
[ 2319.192079]  ? perf_trace_lock+0x109/0x4b0
[ 2319.192094]  ? check_preemption_disabled+0x35/0x240
[ 2319.192107]  ? perf_trace_lock+0x109/0x4b0
[ 2319.192126]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2319.192142]  ? HARDIRQ_verbose+0x10/0x10
[ 2319.192163]  ? kvm_vcpu_release+0xa0/0xa0
[ 2319.192180]  do_vfs_ioctl+0x75a/0xfe0
[ 2319.192204]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2319.192220]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2319.192250]  ? security_file_ioctl+0x76/0xb0
[ 2319.192262]  ? security_file_ioctl+0x83/0xb0
[ 2319.192277]  SyS_ioctl+0x7f/0xb0
[ 2319.192286]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2319.192303]  do_syscall_64+0x1d5/0x640
[ 2319.192323]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2319.192333] RIP: 0033:0x45cb09
[ 2319.192340] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2319.192352] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2319.192359] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2319.192366] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2319.192373] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2319.192379] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2319.192424] warn_alloc_show_mem: 1 callbacks suppressed
[ 2319.192428] Mem-Info:
[ 2319.192469] active_anon:428050 inactive_anon:21639 isolated_anon:0
[ 2319.192469]  active_file:3405 inactive_file:25530 isolated_file:0
[ 2319.192469]  unevictable:13607 dirty:31 writeback:0 unstable:0
[ 2319.192469]  slab_reclaimable:21533 slab_unreclaimable:311987
[ 2319.192469]  mapped:68038 shmem:24729 pagetables:27506 bounce:0
[ 2319.192469]  free:658745 free_pcp:665 free_cma:0
[ 2319.192495] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2319.192519] Node 1 active_anon:191356kB inactive_anon:65484kB active_file:13616kB inactive_file:102116kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63236kB dirty:120kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2319.192524] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2319.192561] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2319.192595] Node 0 DMA32 free:32060kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1364kB local_pcp:732kB free_cma:0kB
[ 2319.192624] lowmem_reserve[]: 0 0 0 0 0
[ 2319.192656] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2319.192688] lowmem_reserve[]: 0 0 0 0 0
[ 2319.192716] Node 1 Normal free:2592580kB min:53592kB low:66988kB high:80384kB active_anon:191356kB inactive_anon:65484kB active_file:13616kB inactive_file:102116kB unevictable:54428kB writepending:120kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28832kB pagetables:74720kB bounce:0kB free_pcp:1296kB local_pcp:604kB free_cma:0kB
[ 2319.192746] lowmem_reserve[]: 0 0 0 0 0
[ 2319.192774] Node 0 DMA: 1*4kB (U) 4*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10340kB
[ 2319.192892] Node 0 DMA32: 2687*4kB (UMEH) 950*8kB (UME) 435*16kB (UME) 147*32kB (UME) 30*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 32060kB
[ 2319.192981] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2319.193048] Node 1 Normal: 487*4kB (UE) 140*8kB (UME) 48*16kB (UME) 289*32kB (UE) 116*64kB (UME) 26*128kB (U) 4*256kB (UME) 19*512kB (UME) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2592540kB
[ 2319.193158] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2319.193166] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2319.193175] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2319.193182] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2319.193187] 47932 total pagecache pages
[ 2319.193200] 0 pages in swap cache
[ 2319.193207] Swap cache stats: add 0, delete 0, find 0/0
[ 2319.193211] Free swap  = 0kB
[ 2319.193216] Total swap = 0kB
[ 2319.193224] 1965979 pages RAM
[ 2319.193230] 0 pages HighMem/MovableOnly
[ 2319.193236] 338456 pages reserved
[ 2319.193242] 0 pages cma reserved
01:28:40 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
socket$unix(0x1, 0x2, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2319.321295] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2320.022860] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2320.022886] CPU: 1 PID: 21096 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2320.022892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2320.022897] Call Trace:
[ 2320.022916]  dump_stack+0x1b2/0x283
[ 2320.022933]  warn_alloc.cold+0x96/0x1af
[ 2320.022945]  ? zone_watermark_ok_safe+0x250/0x250
[ 2320.022968]  ? wait_for_completion_io+0x10/0x10
[ 2320.022987]  __alloc_pages_nodemask+0x2129/0x2730
[ 2320.023020]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2320.023031]  ? __schedule+0x8ae/0x1d70
[ 2320.023043]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2320.023079]  alloc_pages_current+0xe7/0x1e0
[ 2320.023096]  kvm_mmu_create+0xd1/0x1c0
[ 2320.023111]  kvm_arch_vcpu_init+0x282/0x890
[ 2320.023121]  ? alloc_pages_current+0xef/0x1e0
[ 2320.023136]  kvm_vcpu_init+0x26d/0x360
[ 2320.023151]  vmx_create_vcpu+0xf5/0x2950
[ 2320.023167]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2320.023179]  ? finish_task_switch+0x178/0x610
[ 2320.023192]  ? alloc_loaded_vmcs+0x240/0x240
[ 2320.023212]  kvm_vm_ioctl+0x4ae/0x1430
[ 2320.023225]  ? __lock_acquire+0x655/0x42a0
[ 2320.023237]  ? kvm_vcpu_release+0xa0/0xa0
[ 2320.023249]  ? check_preemption_disabled+0x35/0x240
[ 2320.023263]  ? perf_trace_lock+0x109/0x4b0
[ 2320.023277]  ? check_preemption_disabled+0x35/0x240
[ 2320.023291]  ? perf_trace_lock+0x109/0x4b0
[ 2320.023307]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2320.023320]  ? HARDIRQ_verbose+0x10/0x10
[ 2320.023331]  ? kvm_vcpu_release+0xa0/0xa0
[ 2320.023344]  do_vfs_ioctl+0x75a/0xfe0
[ 2320.023358]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2320.023371]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2320.023397]  ? security_file_ioctl+0x76/0xb0
[ 2320.023407]  ? security_file_ioctl+0x83/0xb0
[ 2320.023435]  SyS_ioctl+0x7f/0xb0
[ 2320.023444]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2320.023459]  do_syscall_64+0x1d5/0x640
[ 2320.023478]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2320.023488] RIP: 0033:0x45cb09
[ 2320.023494] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2320.023507] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2320.023513] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2320.023520] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2320.023527] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2320.023534] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2320.117777] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2320.118035] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2320.118064] CPU: 1 PID: 21107 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2320.118072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2320.118077] Call Trace:
[ 2320.118098]  dump_stack+0x1b2/0x283
[ 2320.118121]  warn_alloc.cold+0x96/0x1af
[ 2320.118136]  ? zone_watermark_ok_safe+0x250/0x250
[ 2320.118163]  ? wait_for_completion_io+0x10/0x10
[ 2320.118196]  __alloc_pages_nodemask+0x2129/0x2730
[ 2320.118235]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2320.118251]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2320.118283]  ? HARDIRQ_verbose+0x10/0x10
[ 2320.118300]  ? do_raw_spin_unlock+0x164/0x250
[ 2320.118322]  alloc_pages_current+0xe7/0x1e0
[ 2320.118342]  kvm_mmu_create+0xd1/0x1c0
[ 2320.118359]  kvm_arch_vcpu_init+0x282/0x890
[ 2320.118371]  ? alloc_pages_current+0xef/0x1e0
[ 2320.118388]  kvm_vcpu_init+0x26d/0x360
[ 2320.118405]  vmx_create_vcpu+0xf5/0x2950
[ 2320.118436]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2320.118450]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2320.118469]  ? alloc_loaded_vmcs+0x240/0x240
[ 2320.118491]  kvm_vm_ioctl+0x4ae/0x1430
[ 2320.118507]  ? __lock_acquire+0x655/0x42a0
[ 2320.118520]  ? kvm_vcpu_release+0xa0/0xa0
[ 2320.118531]  ? check_preemption_disabled+0x35/0x240
[ 2320.118545]  ? perf_trace_lock+0x109/0x4b0
[ 2320.118559]  ? check_preemption_disabled+0x35/0x240
[ 2320.118573]  ? perf_trace_lock+0x109/0x4b0
[ 2320.118591]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2320.118603]  ? HARDIRQ_verbose+0x10/0x10
[ 2320.118616]  ? kvm_vcpu_release+0xa0/0xa0
[ 2320.118629]  do_vfs_ioctl+0x75a/0xfe0
[ 2320.118642]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2320.118656]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2320.118682]  ? security_file_ioctl+0x76/0xb0
[ 2320.118693]  ? security_file_ioctl+0x83/0xb0
[ 2320.118708]  SyS_ioctl+0x7f/0xb0
[ 2320.118717]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2320.118732]  do_syscall_64+0x1d5/0x640
[ 2320.118751]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2320.118761] RIP: 0033:0x45cb09
[ 2320.118767] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2320.118781] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2320.118788] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2320.118795] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2320.118802] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
01:28:41 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:41 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2320.118810] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2320.707845] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2320.707879] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2320.707910] CPU: 0 PID: 21118 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2320.707920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2320.707925] Call Trace:
[ 2320.707947]  dump_stack+0x1b2/0x283
[ 2320.707971]  warn_alloc.cold+0x96/0x1af
[ 2320.707994]  ? zone_watermark_ok_safe+0x250/0x250
[ 2320.708026]  ? wait_for_completion_io+0x10/0x10
[ 2320.708052]  __alloc_pages_nodemask+0x2129/0x2730
[ 2320.708126]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2320.708142]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2320.708172]  ? HARDIRQ_verbose+0x10/0x10
[ 2320.708188]  ? do_raw_spin_unlock+0x164/0x250
[ 2320.708207]  alloc_pages_current+0xe7/0x1e0
[ 2320.708227]  kvm_mmu_create+0xd1/0x1c0
[ 2320.708243]  kvm_arch_vcpu_init+0x282/0x890
[ 2320.708255]  ? alloc_pages_current+0xef/0x1e0
[ 2320.708269]  kvm_vcpu_init+0x26d/0x360
[ 2320.708283]  vmx_create_vcpu+0xf5/0x2950
[ 2320.708302]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2320.708316]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2320.708343]  ? alloc_loaded_vmcs+0x240/0x240
[ 2320.708375]  kvm_vm_ioctl+0x4ae/0x1430
[ 2320.708390]  ? __lock_acquire+0x655/0x42a0
[ 2320.708404]  ? kvm_vcpu_release+0xa0/0xa0
[ 2320.708415]  ? check_preemption_disabled+0x35/0x240
[ 2320.708431]  ? perf_trace_lock+0x109/0x4b0
[ 2320.708448]  ? check_preemption_disabled+0x35/0x240
[ 2320.708462]  ? perf_trace_lock+0x109/0x4b0
[ 2320.708479]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2320.708493]  ? HARDIRQ_verbose+0x10/0x10
[ 2320.708507]  ? kvm_vcpu_release+0xa0/0xa0
[ 2320.708523]  do_vfs_ioctl+0x75a/0xfe0
[ 2320.708540]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2320.708555]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2320.708584]  ? security_file_ioctl+0x76/0xb0
[ 2320.708595]  ? security_file_ioctl+0x83/0xb0
[ 2320.708613]  SyS_ioctl+0x7f/0xb0
[ 2320.708624]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2320.708641]  do_syscall_64+0x1d5/0x640
[ 2320.708666]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2320.708676] RIP: 0033:0x45cb09
[ 2320.708683] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2320.708697] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2320.708705] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2320.708712] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2320.708719] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2320.708728] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2320.710344] warn_alloc_show_mem: 2 callbacks suppressed
[ 2320.710359] Mem-Info:
[ 2320.710392] active_anon:428043 inactive_anon:21639 isolated_anon:0
[ 2320.710392]  active_file:3405 inactive_file:25551 isolated_file:0
[ 2320.710392]  unevictable:13607 dirty:45 writeback:0 unstable:0
[ 2320.710392]  slab_reclaimable:21477 slab_unreclaimable:312484
[ 2320.710392]  mapped:68049 shmem:24729 pagetables:27505 bounce:0
[ 2320.710392]  free:658429 free_pcp:504 free_cma:0
[ 2320.710418] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2320.710442] Node 1 active_anon:191328kB inactive_anon:65484kB active_file:13616kB inactive_file:102200kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63280kB dirty:176kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2320.710447] Node 0 DMA free:10340kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2320.710476] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2320.710503] Node 0 DMA32 free:32432kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1264kB local_pcp:632kB free_cma:0kB
[ 2320.710532] lowmem_reserve[]: 0 0 0 0 0
[ 2320.710558] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2320.710584] lowmem_reserve[]: 0 0 0 0 0
[ 2320.710611] Node 1 Normal free:2590944kB min:53592kB low:66988kB high:80384kB active_anon:191328kB inactive_anon:65484kB active_file:13616kB inactive_file:102200kB unevictable:54428kB writepending:176kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28864kB pagetables:74716kB bounce:0kB free_pcp:752kB local_pcp:592kB free_cma:0kB
[ 2320.710641] lowmem_reserve[]: 0 0 0 0 0
[ 2320.710668] Node 0 DMA: 1*4kB (U) 4*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10340kB
[ 2320.710784] Node 0 DMA32: 2716*4kB (UMEH) 963*8kB (UME) 443*16kB (UME) 148*32kB (UME) 30*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 32440kB
[ 2320.710883] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2320.710952] Node 1 Normal: 642*4kB (UE) 104*8kB (UME) 150*16kB (UE) 169*32kB (UE) 117*64kB (UME) 29*128kB (UM) 3*256kB (UE) 19*512kB (UME) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2590856kB
[ 2320.712290] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2320.712299] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2320.712307] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2320.712315] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2320.712319] 47943 total pagecache pages
[ 2320.712339] 0 pages in swap cache
01:28:42 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:42 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
fcntl$dupfd(r4, 0x0, r1)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2320.712354] Swap cache stats: add 0, delete 0, find 0/0
[ 2320.712358] Free swap  = 0kB
[ 2320.712363] Total swap = 0kB
[ 2320.712371] 1965979 pages RAM
[ 2320.712376] 0 pages HighMem/MovableOnly
[ 2320.712381] 338456 pages reserved
[ 2320.712385] 0 pages cma reserved
[ 2321.432120] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2321.432150] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2321.432179] CPU: 1 PID: 21127 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2321.432188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2321.432193] Call Trace:
[ 2321.432213]  dump_stack+0x1b2/0x283
[ 2321.432234]  warn_alloc.cold+0x96/0x1af
[ 2321.432248]  ? zone_watermark_ok_safe+0x250/0x250
[ 2321.432272]  ? wait_for_completion_io+0x10/0x10
[ 2321.432292]  __alloc_pages_nodemask+0x2129/0x2730
[ 2321.432333]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2321.432350]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2321.432381]  ? HARDIRQ_verbose+0x10/0x10
[ 2321.432393]  ? do_raw_spin_unlock+0x164/0x250
[ 2321.432424]  alloc_pages_current+0xe7/0x1e0
[ 2321.432446]  kvm_mmu_create+0xd1/0x1c0
[ 2321.432463]  kvm_arch_vcpu_init+0x282/0x890
[ 2321.432475]  ? alloc_pages_current+0xef/0x1e0
[ 2321.432491]  kvm_vcpu_init+0x26d/0x360
[ 2321.432510]  vmx_create_vcpu+0xf5/0x2950
[ 2321.432527]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2321.432540]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2321.432556]  ? alloc_loaded_vmcs+0x240/0x240
[ 2321.432579]  kvm_vm_ioctl+0x4ae/0x1430
[ 2321.432594]  ? __lock_acquire+0x655/0x42a0
[ 2321.432607]  ? kvm_vcpu_release+0xa0/0xa0
[ 2321.432621]  ? check_preemption_disabled+0x35/0x240
[ 2321.432636]  ? perf_trace_lock+0x109/0x4b0
[ 2321.432652]  ? check_preemption_disabled+0x35/0x240
[ 2321.432669]  ? perf_trace_lock+0x109/0x4b0
[ 2321.432687]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2321.432701]  ? HARDIRQ_verbose+0x10/0x10
[ 2321.432713]  ? kvm_vcpu_release+0xa0/0xa0
[ 2321.432727]  do_vfs_ioctl+0x75a/0xfe0
[ 2321.432743]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2321.432757]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2321.432787]  ? security_file_ioctl+0x76/0xb0
[ 2321.432808]  ? security_file_ioctl+0x83/0xb0
[ 2321.432825]  SyS_ioctl+0x7f/0xb0
[ 2321.432835]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2321.432853]  do_syscall_64+0x1d5/0x640
[ 2321.432877]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2321.432888] RIP: 0033:0x45cb09
[ 2321.432897] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2321.432911] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2321.432920] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2321.432927] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2321.432935] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2321.432943] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
01:28:42 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:42 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:42 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:42 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:42 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:42 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2321.875006] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2321.875036] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2321.875063] CPU: 0 PID: 21141 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2321.875071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2321.875076] Call Trace:
[ 2321.875096]  dump_stack+0x1b2/0x283
[ 2321.875121]  warn_alloc.cold+0x96/0x1af
[ 2321.875136]  ? zone_watermark_ok_safe+0x250/0x250
[ 2321.875162]  ? wait_for_completion_io+0x10/0x10
[ 2321.875182]  __alloc_pages_nodemask+0x2129/0x2730
[ 2321.875217]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2321.875230]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2321.875259]  ? HARDIRQ_verbose+0x10/0x10
[ 2321.875270]  ? do_raw_spin_unlock+0x164/0x250
[ 2321.875286]  alloc_pages_current+0xe7/0x1e0
[ 2321.875303]  kvm_mmu_create+0xd1/0x1c0
[ 2321.875317]  kvm_arch_vcpu_init+0x282/0x890
[ 2321.875328]  ? alloc_pages_current+0xef/0x1e0
[ 2321.875343]  kvm_vcpu_init+0x26d/0x360
[ 2321.875358]  vmx_create_vcpu+0xf5/0x2950
[ 2321.875374]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2321.875385]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2321.875409]  ? alloc_loaded_vmcs+0x240/0x240
[ 2321.875431]  kvm_vm_ioctl+0x4ae/0x1430
[ 2321.875445]  ? __lock_acquire+0x655/0x42a0
[ 2321.875459]  ? kvm_vcpu_release+0xa0/0xa0
[ 2321.875471]  ? check_preemption_disabled+0x35/0x240
[ 2321.875485]  ? perf_trace_lock+0x109/0x4b0
[ 2321.875499]  ? check_preemption_disabled+0x35/0x240
[ 2321.875513]  ? perf_trace_lock+0x109/0x4b0
[ 2321.875530]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2321.875543]  ? HARDIRQ_verbose+0x10/0x10
[ 2321.875556]  ? kvm_vcpu_release+0xa0/0xa0
[ 2321.875575]  do_vfs_ioctl+0x75a/0xfe0
[ 2321.875593]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2321.875605]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2321.875637]  ? security_file_ioctl+0x76/0xb0
[ 2321.875650]  ? security_file_ioctl+0x83/0xb0
[ 2321.875666]  SyS_ioctl+0x7f/0xb0
[ 2321.875677]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2321.875694]  do_syscall_64+0x1d5/0x640
[ 2321.875717]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2321.875728] RIP: 0033:0x45cb09
[ 2321.875734] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2321.875746] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2321.875754] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2321.875762] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2321.875769] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2321.875776] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2321.875992] warn_alloc_show_mem: 1 callbacks suppressed
[ 2321.875996] Mem-Info:
[ 2321.876024] active_anon:427982 inactive_anon:21639 isolated_anon:0
[ 2321.876024]  active_file:3405 inactive_file:25560 isolated_file:0
[ 2321.876024]  unevictable:13607 dirty:42 writeback:0 unstable:0
[ 2321.876024]  slab_reclaimable:21425 slab_unreclaimable:313040
[ 2321.876024]  mapped:68065 shmem:24729 pagetables:27458 bounce:0
[ 2321.876024]  free:658044 free_pcp:501 free_cma:0
[ 2321.876047] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:8kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2321.876070] Node 1 active_anon:191084kB inactive_anon:65484kB active_file:13616kB inactive_file:102236kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63344kB dirty:160kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2321.876075] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2321.876102] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2321.876129] Node 0 DMA32 free:32488kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:8kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1328kB local_pcp:692kB free_cma:0kB
[ 2321.876154] lowmem_reserve[]: 0 0 0 0 0
[ 2321.876180] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2321.876203] lowmem_reserve[]: 0 0 0 0 0
[ 2321.876228] Node 1 Normal free:2589340kB min:53592kB low:66988kB high:80384kB active_anon:191084kB inactive_anon:65484kB active_file:13616kB inactive_file:102236kB unevictable:54428kB writepending:164kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28864kB pagetables:74528kB bounce:0kB free_pcp:676kB local_pcp:312kB free_cma:0kB
[ 2321.876254] lowmem_reserve[]: 0 0 0 0 0
[ 2321.876280] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2321.876384] Node 0 DMA32: 2716*4kB (UMEH) 976*8kB (UMEH) 443*16kB (UME) 148*32kB (UME) 30*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 32544kB
[ 2321.876486] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2321.876553] Node 1 Normal: 723*4kB (UME) 188*8kB (UME) 60*16kB (UME) 108*32kB (UME) 117*64kB (UME) 33*128kB (UM) 4*256kB (UE) 19*512kB (UME) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2589228kB
[ 2321.876664] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2321.876674] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2321.876683] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2321.876692] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2321.876698] 47952 total pagecache pages
[ 2321.876713] 0 pages in swap cache
[ 2321.876721] Swap cache stats: add 0, delete 0, find 0/0
01:28:43 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:43 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:43 executing program 1:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:43 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:43 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2321.876727] Free swap  = 0kB
[ 2321.876732] Total swap = 0kB
[ 2321.876740] 1965979 pages RAM
[ 2321.876745] 0 pages HighMem/MovableOnly
[ 2321.876749] 338456 pages reserved
[ 2321.876754] 0 pages cma reserved
01:28:43 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:43 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:43 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:43 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2322.773052] warn_alloc: 1 callbacks suppressed
[ 2322.773059] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2322.773092] syz-executor.1 cpuset=/ mems_allowed=0-1
[ 2322.773121] CPU: 1 PID: 21172 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0
[ 2322.773130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
01:28:43 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:43 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:43 executing program 1:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
r5 = fcntl$dupfd(r4, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:43 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2322.773135] Call Trace:
[ 2322.773159]  dump_stack+0x1b2/0x283
[ 2322.773182]  warn_alloc.cold+0x96/0x1af
[ 2322.773197]  ? zone_watermark_ok_safe+0x250/0x250
[ 2322.773230]  ? wait_for_completion_io+0x10/0x10
[ 2322.773252]  __alloc_pages_nodemask+0x2129/0x2730
[ 2322.773290]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2322.773301]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2322.773332]  ? HARDIRQ_verbose+0x10/0x10
[ 2322.773345]  ? do_raw_spin_unlock+0x164/0x250
[ 2322.773367]  alloc_pages_current+0xe7/0x1e0
[ 2322.773387]  kvm_mmu_create+0xd1/0x1c0
[ 2322.773405]  kvm_arch_vcpu_init+0x282/0x890
[ 2322.773417]  ? alloc_pages_current+0xef/0x1e0
[ 2322.773431]  kvm_vcpu_init+0x26d/0x360
[ 2322.773446]  vmx_create_vcpu+0xf5/0x2950
[ 2322.773468]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2322.773480]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2322.773494]  ? alloc_loaded_vmcs+0x240/0x240
[ 2322.773520]  kvm_vm_ioctl+0x4ae/0x1430
[ 2322.773536]  ? __lock_acquire+0x655/0x42a0
[ 2322.773549]  ? kvm_vcpu_release+0xa0/0xa0
[ 2322.773562]  ? check_preemption_disabled+0x35/0x240
[ 2322.773578]  ? perf_trace_lock+0x109/0x4b0
[ 2322.773593]  ? check_preemption_disabled+0x35/0x240
[ 2322.773608]  ? perf_trace_lock+0x109/0x4b0
[ 2322.773627]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2322.773642]  ? HARDIRQ_verbose+0x10/0x10
[ 2322.773656]  ? kvm_vcpu_release+0xa0/0xa0
[ 2322.773669]  do_vfs_ioctl+0x75a/0xfe0
[ 2322.773686]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2322.773701]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2322.773730]  ? security_file_ioctl+0x76/0xb0
[ 2322.773741]  ? security_file_ioctl+0x83/0xb0
01:28:43 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

[ 2322.773755]  SyS_ioctl+0x7f/0xb0
[ 2322.773766]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2322.773784]  do_syscall_64+0x1d5/0x640
[ 2322.773809]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2322.773819] RIP: 0033:0x45cb09
[ 2322.773826] RSP: 002b:00007f8c8a7f3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2322.773840] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2322.773848] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2322.773855] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
01:28:44 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

[ 2322.773863] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2322.773870] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f8c8a7f46d4
[ 2322.997433] syz-executor.4: 
[ 2323.075313] syz-executor.1: 
[ 2323.145566] page allocation failure: order:0
[ 2323.151309] page allocation failure: order:0
[ 2323.170626] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=
[ 2323.176639] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=
[ 2323.210244] (null)
[ 2323.214689] (null)
[ 2323.227498] syz-executor.4 cpuset=
[ 2323.232563] syz-executor.1 cpuset=
01:28:44 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:44 executing program 1:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:44 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:44 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2323.237688] /
[ 2323.243719] / mems_allowed=0-1
[ 2323.263401] CPU: 0 PID: 21199 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0
[ 2323.263409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2323.263413] Call Trace:
[ 2323.263431]  dump_stack+0x1b2/0x283
[ 2323.263448]  warn_alloc.cold+0x96/0x1af
[ 2323.263461]  ? zone_watermark_ok_safe+0x250/0x250
[ 2323.263485]  ? wait_for_completion_io+0x10/0x10
[ 2323.263504]  __alloc_pages_nodemask+0x2129/0x2730
[ 2323.263542]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2323.263555]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2323.263583]  ? HARDIRQ_verbose+0x10/0x10
[ 2323.263596]  ? do_raw_spin_unlock+0x164/0x250
[ 2323.263613]  alloc_pages_current+0xe7/0x1e0
[ 2323.263630]  kvm_mmu_create+0xd1/0x1c0
[ 2323.263644]  kvm_arch_vcpu_init+0x282/0x890
[ 2323.263655]  ? alloc_pages_current+0xef/0x1e0
[ 2323.263671]  kvm_vcpu_init+0x26d/0x360
[ 2323.263688]  vmx_create_vcpu+0xf5/0x2950
01:28:44 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:44 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2323.263703]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2323.263715]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2323.263729]  ? alloc_loaded_vmcs+0x240/0x240
[ 2323.263749]  kvm_vm_ioctl+0x4ae/0x1430
[ 2323.263762]  ? __lock_acquire+0x655/0x42a0
[ 2323.263772]  ? kvm_vcpu_release+0xa0/0xa0
[ 2323.263783]  ? check_preemption_disabled+0x35/0x240
[ 2323.263797]  ? perf_trace_lock+0x109/0x4b0
[ 2323.263811]  ? check_preemption_disabled+0x35/0x240
[ 2323.263825]  ? perf_trace_lock+0x109/0x4b0
[ 2323.263841]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2323.263854]  ? HARDIRQ_verbose+0x10/0x10
[ 2323.263866]  ? kvm_vcpu_release+0xa0/0xa0
[ 2323.263879]  do_vfs_ioctl+0x75a/0xfe0
[ 2323.263893]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2323.263906]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2323.263940]  ? security_file_ioctl+0x76/0xb0
[ 2323.263951]  ? security_file_ioctl+0x83/0xb0
[ 2323.263964]  SyS_ioctl+0x7f/0xb0
[ 2323.263972]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2323.263987]  do_syscall_64+0x1d5/0x640
[ 2323.264006]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2323.264015] RIP: 0033:0x45cb09
[ 2323.264021] RSP: 002b:00007f8c8a7f3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2323.264034] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2323.264041] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2323.264047] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2323.264055] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2323.264062] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f8c8a7f46d4
[ 2323.266431]  mems_allowed=0-1
[ 2323.266494] CPU: 1 PID: 21193 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2323.266501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2323.266505] Call Trace:
[ 2323.266513] warn_alloc_show_mem: 1 callbacks suppressed
[ 2323.266522]  dump_stack+0x1b2/0x283
[ 2323.266524] Mem-Info:
[ 2323.266549] active_anon:428012 inactive_anon:21638 isolated_anon:0
[ 2323.266549]  active_file:3405 inactive_file:25578 isolated_file:0
[ 2323.266549]  unevictable:13607 dirty:109 writeback:0 unstable:0
[ 2323.266549]  slab_reclaimable:21335 slab_unreclaimable:314390
[ 2323.266549]  mapped:68082 shmem:24729 pagetables:27500 bounce:0
[ 2323.266549]  free:656596 free_pcp:578 free_cma:0
[ 2323.266557]  warn_alloc.cold+0x96/0x1af
[ 2323.266575] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2323.266583]  ? zone_watermark_ok_safe+0x250/0x250
[ 2323.266601] Node 1 active_anon:191204kB inactive_anon:65480kB active_file:13616kB inactive_file:102308kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63412kB dirty:432kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2323.266607]  ? wait_for_completion_io+0x10/0x10
[ 2323.266609] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2323.266639]  __alloc_pages_nodemask+0x2129/0x2730
[ 2323.266640] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2323.266667] Node 0 
[ 2323.266676]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2323.266701] DMA32 free:33164kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1324kB local_pcp:628kB free_cma:0kB
[ 2323.266708]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2323.266735]  ? HARDIRQ_verbose+0x10/0x10
[ 2323.266747]  ? do_raw_spin_unlock+0x164/0x250
[ 2323.266761]  alloc_pages_current+0xe7/0x1e0
[ 2323.266775]  kvm_mmu_create+0xd1/0x1c0
[ 2323.266789]  kvm_arch_vcpu_init+0x282/0x890
[ 2323.266800]  ? alloc_pages_current+0xef/0x1e0
[ 2323.266813]  kvm_vcpu_init+0x26d/0x360
[ 2323.266828]  vmx_create_vcpu+0xf5/0x2950
[ 2323.266843]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2323.266851]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2323.266863]  ? alloc_loaded_vmcs+0x240/0x240
[ 2323.266882]  kvm_vm_ioctl+0x4ae/0x1430
[ 2323.266895]  ? __lock_acquire+0x655/0x42a0
[ 2323.266906]  ? kvm_vcpu_release+0xa0/0xa0
[ 2323.266917]  ? check_preemption_disabled+0x35/0x240
[ 2323.266930]  ? perf_trace_lock+0x109/0x4b0
[ 2323.266944]  ? check_preemption_disabled+0x35/0x240
[ 2323.266958]  ? perf_trace_lock+0x109/0x4b0
[ 2323.266976]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2323.266989]  ? HARDIRQ_verbose+0x10/0x10
[ 2323.267000]  ? kvm_vcpu_release+0xa0/0xa0
[ 2323.267013]  do_vfs_ioctl+0x75a/0xfe0
[ 2323.267025]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2323.267038]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2323.267063]  ? security_file_ioctl+0x76/0xb0
[ 2323.267074]  ? security_file_ioctl+0x83/0xb0
[ 2323.267086]  SyS_ioctl+0x7f/0xb0
[ 2323.267095]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2323.267110]  do_syscall_64+0x1d5/0x640
[ 2323.267129]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2323.267137] RIP: 0033:0x45cb09
[ 2323.267144] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2323.267155] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2323.267162] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2323.267169] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2323.267175] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2323.267182] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2323.267650] lowmem_reserve[]: 0 0 0 0 0
[ 2323.267677] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2323.267699] lowmem_reserve[]: 0 0 0 0 0
[ 2323.267722] Node 1 Normal free:2582864kB min:53592kB low:66988kB high:80384kB active_anon:191204kB inactive_anon:65480kB active_file:13616kB inactive_file:102308kB unevictable:54428kB writepending:432kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:29024kB pagetables:74696kB bounce:0kB free_pcp:996kB local_pcp:460kB free_cma:0kB
[ 2323.267748] lowmem_reserve[]: 0 0 0 0 0
[ 2323.267774] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2323.268840] Node 0 DMA32: 2779*4kB (UMEH) 994*8kB (UMEH) 447*16kB (UME) 147*32kB (UME) 33*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33164kB
[ 2323.268932] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2323.268993] Node 1 Normal: 658*4kB (UE) 136*8kB (UME) 61*16kB (ME) 10*32kB (UE) 104*64kB (UE) 17*128kB (U) 5*256kB (UME) 19*512kB (UME) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2582808kB
[ 2323.270071] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2323.270079] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2323.270087] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2323.270096] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2323.270101] 47970 total pagecache pages
[ 2323.270113] 0 pages in swap cache
[ 2323.270119] Swap cache stats: add 0, delete 0, find 0/0
[ 2323.270124] Free swap  = 0kB
[ 2323.270128] Total swap = 0kB
[ 2323.270318] 1965979 pages RAM
[ 2323.270324] 0 pages HighMem/MovableOnly
[ 2323.270328] 338456 pages reserved
[ 2323.270332] 0 pages cma reserved
[ 2323.462329] syz-executor.1: 
[ 2323.712252] NOHZ: local_softirq_pending 08
[ 2323.715258] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2324.294513] syz-executor.1 cpuset=/ mems_allowed=0-1
[ 2324.294541] CPU: 1 PID: 21222 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0
[ 2324.294547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2324.294552] Call Trace:
[ 2324.294573]  dump_stack+0x1b2/0x283
[ 2324.294592]  warn_alloc.cold+0x96/0x1af
[ 2324.294605]  ? zone_watermark_ok_safe+0x250/0x250
[ 2324.294629]  ? wait_for_completion_io+0x10/0x10
[ 2324.294649]  __alloc_pages_nodemask+0x2129/0x2730
[ 2324.294684]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2324.294698]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2324.294726]  ? HARDIRQ_verbose+0x10/0x10
[ 2324.294739]  ? do_raw_spin_unlock+0x164/0x250
[ 2324.294757]  alloc_pages_current+0xe7/0x1e0
[ 2324.294773]  kvm_mmu_create+0xd1/0x1c0
[ 2324.294788]  kvm_arch_vcpu_init+0x282/0x890
[ 2324.294798]  ? alloc_pages_current+0xef/0x1e0
[ 2324.294814]  kvm_vcpu_init+0x26d/0x360
[ 2324.294829]  vmx_create_vcpu+0xf5/0x2950
[ 2324.294845]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2324.294856]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2324.294881]  ? alloc_loaded_vmcs+0x240/0x240
[ 2324.294901]  kvm_vm_ioctl+0x4ae/0x1430
[ 2324.294914]  ? __lock_acquire+0x655/0x42a0
[ 2324.294926]  ? kvm_vcpu_release+0xa0/0xa0
[ 2324.294938]  ? check_preemption_disabled+0x35/0x240
[ 2324.294952]  ? perf_trace_lock+0x109/0x4b0
[ 2324.294967]  ? check_preemption_disabled+0x35/0x240
[ 2324.294981]  ? perf_trace_lock+0x109/0x4b0
[ 2324.294997]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2324.295011]  ? HARDIRQ_verbose+0x10/0x10
[ 2324.295022]  ? kvm_vcpu_release+0xa0/0xa0
[ 2324.295036]  do_vfs_ioctl+0x75a/0xfe0
[ 2324.295054]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2324.295067]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2324.295094]  ? security_file_ioctl+0x76/0xb0
[ 2324.295105]  ? security_file_ioctl+0x83/0xb0
[ 2324.295118]  SyS_ioctl+0x7f/0xb0
[ 2324.295127]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2324.295143]  do_syscall_64+0x1d5/0x640
[ 2324.295164]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2324.295173] RIP: 0033:0x45cb09
[ 2324.295179] RSP: 002b:00007f8c8a7f3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2324.295192] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2324.295198] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2324.295205] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2324.295212] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2324.295219] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f8c8a7f46d4
[ 2324.295299] warn_alloc_show_mem: 1 callbacks suppressed
[ 2324.295303] Mem-Info:
[ 2324.295330] active_anon:427978 inactive_anon:21639 isolated_anon:0
[ 2324.295330]  active_file:3405 inactive_file:25587 isolated_file:0
[ 2324.295330]  unevictable:13607 dirty:121 writeback:0 unstable:0
[ 2324.295330]  slab_reclaimable:21236 slab_unreclaimable:314303
[ 2324.295330]  mapped:68096 shmem:24729 pagetables:27442 bounce:0
[ 2324.295330]  free:656910 free_pcp:670 free_cma:0
[ 2324.295355] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2324.295603] Node 1 active_anon:191068kB inactive_anon:65484kB active_file:13616kB inactive_file:102344kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63468kB dirty:480kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2324.295608] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2324.295633] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2324.295660] Node 0 DMA32 free:33164kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1364kB local_pcp:700kB free_cma:0kB
[ 2324.295685] lowmem_reserve[]: 0 0 0 0 0
[ 2324.295711] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2324.295735] lowmem_reserve[]: 0 0 0 0 0
[ 2324.295761] Node 1 Normal free:2584120kB min:53592kB low:66988kB high:80384kB active_anon:191068kB inactive_anon:65484kB active_file:13616kB inactive_file:102344kB unevictable:54428kB writepending:480kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28736kB pagetables:74464kB bounce:0kB free_pcp:1316kB local_pcp:672kB free_cma:0kB
[ 2324.295787] lowmem_reserve[]: 0 0 0 0 0
[ 2324.295813] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2324.295925] Node 0 DMA32: 2779*4kB (UMEH) 994*8kB (UMEH) 447*16kB (UME) 147*32kB (UME) 33*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33164kB
[ 2324.296011] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2324.296074] Node 1 Normal: 791*4kB (UME) 299*8kB (UME) 73*16kB (UME) 15*32kB (UME) 73*64kB (UME) 28*128kB (UM) 4*256kB (UE) 19*512kB (UME) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2584164kB
[ 2324.296185] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2324.296193] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2324.296201] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2324.296209] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2324.296213] 47979 total pagecache pages
[ 2324.296225] 0 pages in swap cache
[ 2324.296232] Swap cache stats: add 0, delete 0, find 0/0
[ 2324.296236] Free swap  = 0kB
[ 2324.296241] Total swap = 0kB
[ 2324.296248] 1965979 pages RAM
[ 2324.296253] 0 pages HighMem/MovableOnly
01:28:45 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2324.296257] 338456 pages reserved
[ 2324.296261] 0 pages cma reserved
01:28:45 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:45 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:45 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:45 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:45 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:45 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:45 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:46 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:46 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:46 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:46 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2325.208703] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2325.208734] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2325.208764] CPU: 0 PID: 21255 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2325.208772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2325.208776] Call Trace:
[ 2325.208799]  dump_stack+0x1b2/0x283
[ 2325.208823]  warn_alloc.cold+0x96/0x1af
[ 2325.208838]  ? zone_watermark_ok_safe+0x250/0x250
[ 2325.208874]  ? wait_for_completion_io+0x10/0x10
[ 2325.208897]  __alloc_pages_nodemask+0x2129/0x2730
[ 2325.208935]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2325.208958]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2325.208996]  ? HARDIRQ_verbose+0x10/0x10
[ 2325.209011]  ? do_raw_spin_unlock+0x164/0x250
[ 2325.209037]  alloc_pages_current+0xe7/0x1e0
[ 2325.209058]  kvm_mmu_create+0xd1/0x1c0
[ 2325.209082]  kvm_arch_vcpu_init+0x282/0x890
[ 2325.209097]  ? alloc_pages_current+0xef/0x1e0
[ 2325.209116]  kvm_vcpu_init+0x26d/0x360
[ 2325.209135]  vmx_create_vcpu+0xf5/0x2950
[ 2325.209153]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2325.209163]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2325.209178]  ? alloc_loaded_vmcs+0x240/0x240
[ 2325.209199]  kvm_vm_ioctl+0x4ae/0x1430
[ 2325.209214]  ? __lock_acquire+0x655/0x42a0
[ 2325.209228]  ? kvm_vcpu_release+0xa0/0xa0
[ 2325.209241]  ? check_preemption_disabled+0x35/0x240
[ 2325.209256]  ? perf_trace_lock+0x109/0x4b0
[ 2325.209272]  ? check_preemption_disabled+0x35/0x240
[ 2325.209286]  ? perf_trace_lock+0x109/0x4b0
[ 2325.209302]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2325.209315]  ? HARDIRQ_verbose+0x10/0x10
[ 2325.209327]  ? kvm_vcpu_release+0xa0/0xa0
[ 2325.209340]  do_vfs_ioctl+0x75a/0xfe0
[ 2325.209354]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2325.209366]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2325.209394]  ? security_file_ioctl+0x76/0xb0
[ 2325.209403]  ? security_file_ioctl+0x83/0xb0
[ 2325.209420]  SyS_ioctl+0x7f/0xb0
[ 2325.209429]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2325.209447]  do_syscall_64+0x1d5/0x640
[ 2325.209467]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2325.209477] RIP: 0033:0x45cb09
[ 2325.209484] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2325.209498] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2325.209505] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007
[ 2325.209514] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2325.209521] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2325.209529] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2325.313760] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2325.313791] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2325.313821] CPU: 0 PID: 21263 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2325.313830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2325.313835] Call Trace:
[ 2325.313855]  dump_stack+0x1b2/0x283
[ 2325.313876]  warn_alloc.cold+0x96/0x1af
[ 2325.313892]  ? zone_watermark_ok_safe+0x250/0x250
[ 2325.313928]  ? wait_for_completion_io+0x10/0x10
[ 2325.313950]  __alloc_pages_nodemask+0x2129/0x2730
[ 2325.313987]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2325.314002]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2325.314032]  ? HARDIRQ_verbose+0x10/0x10
[ 2325.314046]  ? do_raw_spin_unlock+0x164/0x250
[ 2325.314065]  alloc_pages_current+0xe7/0x1e0
[ 2325.314082]  kvm_mmu_create+0xd1/0x1c0
[ 2325.314099]  kvm_arch_vcpu_init+0x282/0x890
[ 2325.314112]  ? alloc_pages_current+0xef/0x1e0
[ 2325.314132]  kvm_vcpu_init+0x26d/0x360
[ 2325.314149]  vmx_create_vcpu+0xf5/0x2950
[ 2325.314167]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2325.314180]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2325.314196]  ? alloc_loaded_vmcs+0x240/0x240
[ 2325.314216]  kvm_vm_ioctl+0x4ae/0x1430
[ 2325.314231]  ? __lock_acquire+0x655/0x42a0
[ 2325.314245]  ? kvm_vcpu_release+0xa0/0xa0
[ 2325.314260]  ? check_preemption_disabled+0x35/0x240
[ 2325.314276]  ? perf_trace_lock+0x109/0x4b0
[ 2325.314293]  ? check_preemption_disabled+0x35/0x240
[ 2325.314308]  ? perf_trace_lock+0x109/0x4b0
[ 2325.314329]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2325.314347]  ? HARDIRQ_verbose+0x10/0x10
[ 2325.314370]  ? kvm_vcpu_release+0xa0/0xa0
[ 2325.314388]  do_vfs_ioctl+0x75a/0xfe0
[ 2325.314410]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2325.314427]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2325.314458]  ? security_file_ioctl+0x76/0xb0
[ 2325.314475]  ? security_file_ioctl+0x83/0xb0
[ 2325.314495]  SyS_ioctl+0x7f/0xb0
[ 2325.314506]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2325.314527]  do_syscall_64+0x1d5/0x640
[ 2325.314554]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2325.314566] RIP: 0033:0x45cb09
[ 2325.314572] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2325.314588] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2325.314596] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006
[ 2325.314603] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2325.314610] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2325.314617] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2325.314847] warn_alloc_show_mem: 1 callbacks suppressed
[ 2325.314851] Mem-Info:
[ 2325.314881] active_anon:428056 inactive_anon:21639 isolated_anon:0
[ 2325.314881]  active_file:3405 inactive_file:25596 isolated_file:0
[ 2325.314881]  unevictable:13607 dirty:140 writeback:0 unstable:0
[ 2325.314881]  slab_reclaimable:21182 slab_unreclaimable:314850
[ 2325.314881]  mapped:68284 shmem:24729 pagetables:27526 bounce:0
[ 2325.314881]  free:656226 free_pcp:582 free_cma:0
[ 2325.314904] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2325.314925] Node 1 active_anon:191380kB inactive_anon:65484kB active_file:13616kB inactive_file:102380kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64220kB dirty:556kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2325.314930] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2325.314958] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2325.314985] Node 0 DMA32 free:33164kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1396kB local_pcp:672kB free_cma:0kB
[ 2325.315013] lowmem_reserve[]: 0 0 0 0 0
[ 2325.315038] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2325.315064] lowmem_reserve[]: 0 0 0 0 0
[ 2325.315091] Node 1 Normal free:2581384kB min:53592kB low:66988kB high:80384kB active_anon:191380kB inactive_anon:65484kB active_file:13616kB inactive_file:102380kB unevictable:54428kB writepending:556kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:29024kB pagetables:74800kB bounce:0kB free_pcp:932kB local_pcp:304kB free_cma:0kB
[ 2325.315118] lowmem_reserve[]: 0 0 0 0 0
[ 2325.315144] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2325.315250] Node 0 DMA32: 2779*4kB (UMEH) 994*8kB (UMEH) 447*16kB (UME) 147*32kB (UME) 33*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33164kB
[ 2325.315341] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2325.315415] Node 1 Normal: 746*4kB (UME) 255*8kB (UME) 74*16kB (UE) 14*32kB (UME) 37*64kB (UME) 28*128kB (UM) 4*256kB (UE) 19*512kB (UME) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2581312kB
[ 2325.315523] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2325.315532] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2325.315541] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2325.315550] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2325.315555] 47988 total pagecache pages
[ 2325.315568] 0 pages in swap cache
[ 2325.315576] Swap cache stats: add 0, delete 0, find 0/0
[ 2325.315581] Free swap  = 0kB
[ 2325.315586] Total swap = 0kB
[ 2325.315595] 1965979 pages RAM
[ 2325.315600] 0 pages HighMem/MovableOnly
[ 2325.315604] 338456 pages reserved
[ 2325.315609] 0 pages cma reserved
[ 2325.417667] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2325.417698] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2325.417727] CPU: 0 PID: 21269 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2325.417734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2325.417739] Call Trace:
[ 2325.417760]  dump_stack+0x1b2/0x283
[ 2325.417782]  warn_alloc.cold+0x96/0x1af
[ 2325.417796]  ? zone_watermark_ok_safe+0x250/0x250
[ 2325.417824]  ? wait_for_completion_io+0x10/0x10
[ 2325.417847]  __alloc_pages_nodemask+0x2129/0x2730
[ 2325.417884]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2325.417899]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2325.417929]  ? HARDIRQ_verbose+0x10/0x10
[ 2325.417941]  ? do_raw_spin_unlock+0x164/0x250
[ 2325.417957]  alloc_pages_current+0xe7/0x1e0
[ 2325.417975]  kvm_mmu_create+0xd1/0x1c0
[ 2325.417991]  kvm_arch_vcpu_init+0x282/0x890
[ 2325.418004]  ? alloc_pages_current+0xef/0x1e0
[ 2325.418021]  kvm_vcpu_init+0x26d/0x360
[ 2325.418036]  vmx_create_vcpu+0xf5/0x2950
[ 2325.418053]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2325.418072]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2325.418089]  ? alloc_loaded_vmcs+0x240/0x240
[ 2325.418111]  kvm_vm_ioctl+0x4ae/0x1430
[ 2325.418125]  ? __lock_acquire+0x655/0x42a0
[ 2325.418140]  ? kvm_vcpu_release+0xa0/0xa0
[ 2325.418153]  ? check_preemption_disabled+0x35/0x240
[ 2325.418169]  ? perf_trace_lock+0x109/0x4b0
[ 2325.418184]  ? check_preemption_disabled+0x35/0x240
[ 2325.418200]  ? perf_trace_lock+0x109/0x4b0
[ 2325.418218]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2325.418233]  ? HARDIRQ_verbose+0x10/0x10
[ 2325.418247]  ? kvm_vcpu_release+0xa0/0xa0
[ 2325.418262]  do_vfs_ioctl+0x75a/0xfe0
[ 2325.418278]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2325.418293]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2325.418322]  ? security_file_ioctl+0x76/0xb0
[ 2325.418334]  ? security_file_ioctl+0x83/0xb0
[ 2325.418348]  SyS_ioctl+0x7f/0xb0
[ 2325.418365]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2325.418383]  do_syscall_64+0x1d5/0x640
[ 2325.418406]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2325.418417] RIP: 0033:0x45cb09
[ 2325.418423] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2325.418436] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2325.418444] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005
[ 2325.418451] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2325.418459] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
01:28:47 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:47 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:47 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:47 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2325.418467] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
01:28:47 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:47 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:47 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:47 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2326.701035] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2326.701064] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2326.701092] CPU: 0 PID: 21286 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
01:28:47 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2326.701099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2326.701105] Call Trace:
[ 2326.701126]  dump_stack+0x1b2/0x283
[ 2326.701146]  warn_alloc.cold+0x96/0x1af
[ 2326.701160]  ? zone_watermark_ok_safe+0x250/0x250
[ 2326.701187]  ? wait_for_completion_io+0x10/0x10
01:28:47 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2326.701209]  __alloc_pages_nodemask+0x2129/0x2730
[ 2326.701244]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2326.701258]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2326.701287]  ? HARDIRQ_verbose+0x10/0x10
[ 2326.701298]  ? do_raw_spin_unlock+0x164/0x250
[ 2326.701315]  alloc_pages_current+0xe7/0x1e0
[ 2326.701332]  kvm_mmu_create+0xd1/0x1c0
[ 2326.701348]  kvm_arch_vcpu_init+0x282/0x890
[ 2326.701359]  ? alloc_pages_current+0xef/0x1e0
[ 2326.701378]  kvm_vcpu_init+0x26d/0x360
[ 2326.701396]  vmx_create_vcpu+0xf5/0x2950
[ 2326.701414]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2326.701426]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2326.701440]  ? alloc_loaded_vmcs+0x240/0x240
[ 2326.701461]  kvm_vm_ioctl+0x4ae/0x1430
[ 2326.701476]  ? __lock_acquire+0x655/0x42a0
[ 2326.701490]  ? kvm_vcpu_release+0xa0/0xa0
[ 2326.701502]  ? check_preemption_disabled+0x35/0x240
[ 2326.701516]  ? perf_trace_lock+0x109/0x4b0
[ 2326.701530]  ? check_preemption_disabled+0x35/0x240
[ 2326.701543]  ? perf_trace_lock+0x109/0x4b0
[ 2326.701562]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2326.701577]  ? HARDIRQ_verbose+0x10/0x10
[ 2326.701591]  ? kvm_vcpu_release+0xa0/0xa0
[ 2326.701611]  do_vfs_ioctl+0x75a/0xfe0
[ 2326.701633]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2326.701650]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2326.701683]  ? security_file_ioctl+0x76/0xb0
[ 2326.701698]  ? security_file_ioctl+0x83/0xb0
[ 2326.701715]  SyS_ioctl+0x7f/0xb0
[ 2326.701726]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2326.701745]  do_syscall_64+0x1d5/0x640
[ 2326.701768]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2326.701779] RIP: 0033:0x45cb09
[ 2326.701789] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2326.701805] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2326.701814] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2326.701822] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2326.701829] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2326.701837] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2326.701877] warn_alloc_show_mem: 1 callbacks suppressed
[ 2326.701882] Mem-Info:
[ 2326.701914] active_anon:428027 inactive_anon:21639 isolated_anon:0
[ 2326.701914]  active_file:3406 inactive_file:25595 isolated_file:0
[ 2326.701914]  unevictable:13607 dirty:140 writeback:0 unstable:0
[ 2326.701914]  slab_reclaimable:21180 slab_unreclaimable:315293
[ 2326.701914]  mapped:68109 shmem:24729 pagetables:27501 bounce:0
[ 2326.701914]  free:655904 free_pcp:509 free_cma:0
[ 2326.701946] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2326.701976] Node 1 active_anon:191264kB inactive_anon:65484kB active_file:13616kB inactive_file:102380kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63520kB dirty:556kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2326.701983] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2326.702014] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2326.702043] Node 0 DMA32 free:33288kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1348kB local_pcp:676kB free_cma:0kB
[ 2326.702072] lowmem_reserve[]: 0 0 0 0 0
[ 2326.702100] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2326.702126] lowmem_reserve[]: 0 0 0 0 0
[ 2326.702152] Node 1 Normal free:2579972kB min:53592kB low:66988kB high:80384kB active_anon:191264kB inactive_anon:65484kB active_file:13616kB inactive_file:102380kB unevictable:54428kB writepending:556kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28992kB pagetables:74700kB bounce:0kB free_pcp:688kB local_pcp:268kB free_cma:0kB
[ 2326.702178] lowmem_reserve[]: 0 0 0 0 0
[ 2326.702204] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2326.702315] Node 0 DMA32: 2796*4kB (UMEH) 999*8kB (UMEH) 448*16kB (UME) 147*32kB (UME) 33*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33288kB
[ 2326.702403] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2326.702466] Node 1 Normal: 797*4kB (UME) 164*8kB (ME) 69*16kB (E) 14*32kB (ME) 36*64kB (UE) 22*128kB (UM) 4*256kB (UE) 19*512kB (UME) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2579876kB
[ 2326.702577] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2326.702585] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2326.702594] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2326.702602] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2326.702606] 47988 total pagecache pages
[ 2326.702619] 0 pages in swap cache
[ 2326.702625] Swap cache stats: add 0, delete 0, find 0/0
[ 2326.702630] Free swap  = 0kB
[ 2326.702634] Total swap = 0kB
[ 2326.702641] 1965979 pages RAM
[ 2326.702646] 0 pages HighMem/MovableOnly
[ 2326.702650] 338456 pages reserved
[ 2326.702655] 0 pages cma reserved
01:28:48 executing program 1:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:48 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:48 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:48 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:48 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:48 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:48 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:48 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r1, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:48 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280})

01:28:48 executing program 1:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:48 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:48 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

01:28:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000180)={0x8, 0x1})

[ 2328.027479] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
01:28:48 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280})

01:28:48 executing program 1:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:48 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:48 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2328.027511] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2328.027542] CPU: 0 PID: 21353 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2328.027555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2328.027568] Call Trace:
[ 2328.027591]  dump_stack+0x1b2/0x283
[ 2328.027617]  warn_alloc.cold+0x96/0x1af
[ 2328.027634]  ? zone_watermark_ok_safe+0x250/0x250
01:28:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2328.027664]  ? wait_for_completion_io+0x10/0x10
[ 2328.027689]  __alloc_pages_nodemask+0x2129/0x2730
[ 2328.027738]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2328.027756]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2328.027789]  ? HARDIRQ_verbose+0x10/0x10
[ 2328.027804]  ? do_raw_spin_unlock+0x164/0x250
[ 2328.027824]  alloc_pages_current+0xe7/0x1e0
[ 2328.027845]  kvm_mmu_create+0xd1/0x1c0
[ 2328.027863]  kvm_arch_vcpu_init+0x282/0x890
[ 2328.027875]  ? alloc_pages_current+0xef/0x1e0
[ 2328.027892]  kvm_vcpu_init+0x26d/0x360
[ 2328.027912]  vmx_create_vcpu+0xf5/0x2950
[ 2328.027941]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2328.027955]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2328.027971]  ? alloc_loaded_vmcs+0x240/0x240
[ 2328.027995]  kvm_vm_ioctl+0x4ae/0x1430
[ 2328.028011]  ? __lock_acquire+0x655/0x42a0
[ 2328.028024]  ? kvm_vcpu_release+0xa0/0xa0
[ 2328.028038]  ? check_preemption_disabled+0x35/0x240
[ 2328.028053]  ? perf_trace_lock+0x109/0x4b0
[ 2328.028071]  ? check_preemption_disabled+0x35/0x240
[ 2328.028088]  ? perf_trace_lock+0x109/0x4b0
[ 2328.028107]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2328.028123]  ? HARDIRQ_verbose+0x10/0x10
[ 2328.028137]  ? kvm_vcpu_release+0xa0/0xa0
[ 2328.028151]  do_vfs_ioctl+0x75a/0xfe0
[ 2328.028167]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2328.028181]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2328.028206]  ? security_file_ioctl+0x76/0xb0
[ 2328.028216]  ? security_file_ioctl+0x83/0xb0
[ 2328.028232]  SyS_ioctl+0x7f/0xb0
[ 2328.028241]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2328.028257]  do_syscall_64+0x1d5/0x640
[ 2328.028281]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2328.028291] RIP: 0033:0x45cb09
[ 2328.028298] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2328.028312] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2328.028319] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2328.028327] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2328.028334] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2328.028342] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2328.028608] Mem-Info:
[ 2328.028652] active_anon:428049 inactive_anon:21640 isolated_anon:0
[ 2328.028652]  active_file:3406 inactive_file:25613 isolated_file:0
[ 2328.028652]  unevictable:13607 dirty:167 writeback:0 unstable:0
[ 2328.028652]  slab_reclaimable:21182 slab_unreclaimable:315366
[ 2328.028652]  mapped:68135 shmem:24729 pagetables:27492 bounce:0
[ 2328.028652]  free:655756 free_pcp:516 free_cma:0
[ 2328.028677] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2328.028702] Node 1 active_anon:191352kB inactive_anon:65488kB active_file:13616kB inactive_file:102452kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63624kB dirty:664kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2328.028707] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2328.028744] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2328.028777] Node 0 DMA32 free:33288kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1360kB local_pcp:676kB free_cma:0kB
[ 2328.028807] lowmem_reserve[]: 0 0 0 0 0
[ 2328.028835] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2328.028873] lowmem_reserve[]: 0 0 0 0 0
[ 2328.028905] Node 1 Normal free:2579380kB min:53592kB low:66988kB high:80384kB active_anon:191352kB inactive_anon:65488kB active_file:13616kB inactive_file:102452kB unevictable:54428kB writepending:664kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:29120kB pagetables:74664kB bounce:0kB free_pcp:704kB local_pcp:588kB free_cma:0kB
[ 2328.028947] lowmem_reserve[]: 0 0 0 0 0
[ 2328.028973] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2328.029085] Node 0 DMA32: 2796*4kB (UMEH) 999*8kB (UMEH) 448*16kB (UME) 147*32kB (UME) 33*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33288kB
[ 2328.029172] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2328.029234] Node 1 Normal: 845*4kB (UE) 165*8kB (ME) 163*16kB (UE) 15*32kB (UME) 4*64kB (UME) 20*128kB (U) 4*256kB (UE) 19*512kB (UME) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2579308kB
[ 2328.029345] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2328.029353] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2328.029361] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2328.029369] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2328.029374] 48006 total pagecache pages
[ 2328.029387] 0 pages in swap cache
[ 2328.029393] Swap cache stats: add 0, delete 0, find 0/0
[ 2328.029404] Free swap  = 0kB
[ 2328.035324] Total swap = 0kB
[ 2328.035333] 1965979 pages RAM
[ 2328.035339] 0 pages HighMem/MovableOnly
[ 2328.035343] 338456 pages reserved
[ 2328.035348] 0 pages cma reserved
[ 2328.191967] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2328.191997] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2328.192025] CPU: 1 PID: 21365 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2328.192033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2328.192038] Call Trace:
[ 2328.192058]  dump_stack+0x1b2/0x283
[ 2328.192076]  warn_alloc.cold+0x96/0x1af
[ 2328.192091]  ? zone_watermark_ok_safe+0x250/0x250
[ 2328.192117]  ? wait_for_completion_io+0x10/0x10
[ 2328.192137]  __alloc_pages_nodemask+0x2129/0x2730
[ 2328.192172]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2328.192185]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2328.192213]  ? HARDIRQ_verbose+0x10/0x10
[ 2328.192225]  ? do_raw_spin_unlock+0x164/0x250
[ 2328.192241]  alloc_pages_current+0xe7/0x1e0
[ 2328.192258]  kvm_mmu_create+0xd1/0x1c0
[ 2328.192273]  kvm_arch_vcpu_init+0x282/0x890
[ 2328.192284]  ? alloc_pages_current+0xef/0x1e0
[ 2328.192308]  kvm_vcpu_init+0x26d/0x360
[ 2328.192327]  vmx_create_vcpu+0xf5/0x2950
[ 2328.192344]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2328.192357]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2328.192373]  ? alloc_loaded_vmcs+0x240/0x240
[ 2328.192396]  kvm_vm_ioctl+0x4ae/0x1430
[ 2328.192409]  ? __lock_acquire+0x655/0x42a0
[ 2328.192429]  ? kvm_vcpu_release+0xa0/0xa0
[ 2328.192442]  ? check_preemption_disabled+0x35/0x240
[ 2328.192458]  ? perf_trace_lock+0x109/0x4b0
[ 2328.192474]  ? check_preemption_disabled+0x35/0x240
[ 2328.192488]  ? perf_trace_lock+0x109/0x4b0
[ 2328.192505]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2328.192518]  ? HARDIRQ_verbose+0x10/0x10
[ 2328.192530]  ? kvm_vcpu_release+0xa0/0xa0
[ 2328.192543]  do_vfs_ioctl+0x75a/0xfe0
[ 2328.192556]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2328.192570]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2328.192596]  ? security_file_ioctl+0x76/0xb0
[ 2328.192608]  ? security_file_ioctl+0x83/0xb0
[ 2328.192623]  SyS_ioctl+0x7f/0xb0
[ 2328.192632]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2328.192647]  do_syscall_64+0x1d5/0x640
[ 2328.192667]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2328.192676] RIP: 0033:0x45cb09
[ 2328.192683] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2328.192695] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2328.192702] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2328.192709] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2328.192715] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2328.192722] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2328.288453] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2328.288484] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2328.288515] CPU: 0 PID: 21377 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2328.288523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2328.288529] Call Trace:
[ 2328.288549]  dump_stack+0x1b2/0x283
[ 2328.288572]  warn_alloc.cold+0x96/0x1af
[ 2328.288587]  ? zone_watermark_ok_safe+0x250/0x250
[ 2328.288614]  ? wait_for_completion_io+0x10/0x10
[ 2328.288633]  __alloc_pages_nodemask+0x2129/0x2730
[ 2328.288671]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2328.288687]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2328.288718]  ? HARDIRQ_verbose+0x10/0x10
[ 2328.288733]  ? do_raw_spin_unlock+0x164/0x250
[ 2328.288752]  alloc_pages_current+0xe7/0x1e0
[ 2328.288771]  kvm_mmu_create+0xd1/0x1c0
[ 2328.288788]  kvm_arch_vcpu_init+0x282/0x890
[ 2328.288800]  ? alloc_pages_current+0xef/0x1e0
[ 2328.288825]  kvm_vcpu_init+0x26d/0x360
[ 2328.288843]  vmx_create_vcpu+0xf5/0x2950
[ 2328.288859]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2328.288871]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2328.288889]  ? alloc_loaded_vmcs+0x240/0x240
[ 2328.288909]  kvm_vm_ioctl+0x4ae/0x1430
[ 2328.288931]  ? __lock_acquire+0x655/0x42a0
[ 2328.288946]  ? kvm_vcpu_release+0xa0/0xa0
[ 2328.288959]  ? check_preemption_disabled+0x35/0x240
[ 2328.288975]  ? perf_trace_lock+0x109/0x4b0
[ 2328.288996]  ? check_preemption_disabled+0x35/0x240
[ 2328.289014]  ? perf_trace_lock+0x109/0x4b0
01:28:49 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2328.289034]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2328.289055]  ? HARDIRQ_verbose+0x10/0x10
[ 2328.289070]  ? kvm_vcpu_release+0xa0/0xa0
[ 2328.289087]  do_vfs_ioctl+0x75a/0xfe0
[ 2328.289106]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2328.289125]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2328.289157]  ? security_file_ioctl+0x76/0xb0
[ 2328.289171]  ? security_file_ioctl+0x83/0xb0
01:28:50 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
r2 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r3 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000a80)=@filter={'filter\x00', 0xe, 0x4, 0x13a8, 0x0, 0x0, 0x1208, 0x108, 0x108, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'rose0\x00', 'netdevsim0\x00'}, 0x0, 0x10d8, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030, 'cgroup\x00'}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1408)
r5 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000016c0)=<r6=>0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="340500004b81aee12a8a5d9cb054572009d1b4a816442a04b8ff6d84d1b1e658e8932ab268ca6bfd278e0e8d1c520a3421ecbb655405444491a1ab15dadc23f5dd7cda133cdeda33d54d8878e0e30f50dfd95c78fcb1465b07000000f40c890600ae1de149b9d3ec23c6fd1050da5cb8c02e5ca34717f300cbb22cae340ce633", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32, @ANYRESOCT=0x0, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB, @ANYRES32=r6, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="0000b6cb7e78093b9c73000048633d53f983a1322f7141d36638ce19a1a86b882de6c5aa1bc177dd7295427c755199592eff96b59cf81128dc35e74f00000000000000"], 0x58, 0x4}, 0x4040000)
ptrace$getsig(0x4202, r6, 0xfffffffffffffe00, &(0x7f0000000100))
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r7=>0xffffffffffffffff})
r8 = dup(r7)
r9 = dup(r8)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r9})
ioctl$DMA_BUF_IOCTL_SYNC(r9, 0x40086200, &(0x7f0000000080)=0x5)

01:28:50 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2329.205807]  SyS_ioctl+0x7f/0xb0
[ 2329.205819]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2329.205832]  do_syscall_64+0x1d5/0x640
[ 2329.205853]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2329.205864] RIP: 0033:0x45cb09
[ 2329.205870] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2329.205881] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2329.205888] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
01:28:50 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2329.205894] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2329.205900] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2329.205906] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2329.212833] warn_alloc_show_mem: 1 callbacks suppressed
[ 2329.212838] Mem-Info:
[ 2329.212864] active_anon:428030 inactive_anon:21639 isolated_anon:0
[ 2329.212864]  active_file:3406 inactive_file:25626 isolated_file:0
[ 2329.212864]  unevictable:13607 dirty:180 writeback:0 unstable:0
[ 2329.212864]  slab_reclaimable:21077 slab_unreclaimable:315968
[ 2329.212864]  mapped:68150 shmem:24729 pagetables:27494 bounce:0
[ 2329.212864]  free:655222 free_pcp:665 free_cma:0
[ 2329.212884] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2329.212904] Node 1 active_anon:191276kB inactive_anon:65484kB active_file:13616kB inactive_file:102504kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63684kB dirty:716kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2329.212909] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2329.212933] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2329.212959] Node 0 DMA32 free:33320kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1416kB local_pcp:728kB free_cma:0kB
[ 2329.212985] lowmem_reserve[]: 0 0 0 0 0
[ 2329.213010] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2329.213033] lowmem_reserve[]: 0 0 0 0 0
[ 2329.213058] Node 1 Normal free:2577212kB min:53592kB low:66988kB high:80384kB active_anon:191276kB inactive_anon:65484kB active_file:13616kB inactive_file:102504kB unevictable:54428kB writepending:716kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28864kB pagetables:74672kB bounce:0kB free_pcp:1244kB local_pcp:520kB free_cma:0kB
[ 2329.213084] lowmem_reserve[]: 0 0 0 0 0
[ 2329.213110] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2329.213215] Node 0 DMA32: 2796*4kB (UMEH) 999*8kB (UMEH) 450*16kB (UME) 147*32kB (UME) 33*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33320kB
[ 2329.213301] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2329.213362] Node 1 Normal: 913*4kB (UME) 169*8kB (E) 83*16kB (UME) 18*32kB (UE) 3*64kB (UE) 5*128kB (U) 7*256kB (UE) 19*512kB (UME) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2577212kB
[ 2329.213472] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2329.213480] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2329.213488] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2329.213496] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2329.213501] 48019 total pagecache pages
[ 2329.213513] 0 pages in swap cache
[ 2329.213519] Swap cache stats: add 0, delete 0, find 0/0
[ 2329.213524] Free swap  = 0kB
[ 2329.213536] Total swap = 0kB
[ 2329.213544] 1965979 pages RAM
[ 2329.213548] 0 pages HighMem/MovableOnly
[ 2329.213552] 338456 pages reserved
[ 2329.213557] 0 pages cma reserved
[ 2329.281981] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2329.282011] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2329.282041] CPU: 0 PID: 21385 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2329.282048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2329.282053] Call Trace:
[ 2329.282074]  dump_stack+0x1b2/0x283
[ 2329.282095]  warn_alloc.cold+0x96/0x1af
[ 2329.282110]  ? zone_watermark_ok_safe+0x250/0x250
[ 2329.282137]  ? wait_for_completion_io+0x10/0x10
[ 2329.282159]  __alloc_pages_nodemask+0x2129/0x2730
[ 2329.282194]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2329.282208]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2329.282235]  ? HARDIRQ_verbose+0x10/0x10
[ 2329.282246]  ? do_raw_spin_unlock+0x164/0x250
[ 2329.282263]  alloc_pages_current+0xe7/0x1e0
[ 2329.282280]  kvm_mmu_create+0xd1/0x1c0
[ 2329.282297]  kvm_arch_vcpu_init+0x282/0x890
[ 2329.282307]  ? alloc_pages_current+0xef/0x1e0
[ 2329.282332]  kvm_vcpu_init+0x26d/0x360
[ 2329.282350]  vmx_create_vcpu+0xf5/0x2950
[ 2329.282368]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2329.282382]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2329.282406]  ? alloc_loaded_vmcs+0x240/0x240
[ 2329.282430]  kvm_vm_ioctl+0x4ae/0x1430
[ 2329.282449]  ? __lock_acquire+0x655/0x42a0
[ 2329.282463]  ? kvm_vcpu_release+0xa0/0xa0
[ 2329.282482]  ? check_preemption_disabled+0x35/0x240
[ 2329.282504]  ? perf_trace_lock+0x109/0x4b0
[ 2329.282523]  ? check_preemption_disabled+0x35/0x240
[ 2329.282550]  ? perf_trace_lock+0x109/0x4b0
[ 2329.282569]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2329.282585]  ? HARDIRQ_verbose+0x10/0x10
[ 2329.282598]  ? kvm_vcpu_release+0xa0/0xa0
[ 2329.282614]  do_vfs_ioctl+0x75a/0xfe0
[ 2329.282631]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2329.282648]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2329.282679]  ? security_file_ioctl+0x76/0xb0
[ 2329.282692]  ? security_file_ioctl+0x83/0xb0
[ 2329.282708]  SyS_ioctl+0x7f/0xb0
[ 2329.282720]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2329.282738]  do_syscall_64+0x1d5/0x640
[ 2329.282762]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2329.282773] RIP: 0033:0x45cb09
[ 2329.282779] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2329.282804] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2329.282812] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
01:28:50 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280})

[ 2329.282820] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2329.282828] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2329.282836] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939133c6d4
[ 2329.421381] ip6_tables: ip6tables: counters copy to user failed while replacing table
01:28:50 executing program 4:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
r2 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r3 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000a80)=@filter={'filter\x00', 0xe, 0x4, 0x13a8, 0x0, 0x0, 0x1208, 0x108, 0x108, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'rose0\x00', 'netdevsim0\x00'}, 0x0, 0x10d8, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030, 'cgroup\x00'}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1408)
r5 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000016c0)=<r6=>0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="340500004b81aee12a8a5d9cb054572009d1b4a816442a04b8ff6d84d1b1e658e8932ab268ca6bfd278e0e8d1c520a3421ecbb655405444491a1ab15dadc23f5dd7cda133cdeda33d54d8878e0e30f50dfd95c78fcb1465b07000000f40c890600ae1de149b9d3ec23c6fd1050da5cb8c02e5ca34717f300cbb22cae340ce633", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32, @ANYRESOCT=0x0, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB, @ANYRES32=r6, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="0000b6cb7e78093b9c73000048633d53f983a1322f7141d36638ce19a1a86b882de6c5aa1bc177dd7295427c755199592eff96b59cf81128dc35e74f00000000000000"], 0x58, 0x4}, 0x4040000)
ptrace$getsig(0x4202, r6, 0xfffffffffffffe00, &(0x7f0000000100))
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r7=>0xffffffffffffffff})
r8 = dup(r7)
r9 = dup(r8)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r9})
ioctl$DMA_BUF_IOCTL_SYNC(r9, 0x40086200, &(0x7f0000000080)=0x5)

01:28:51 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:51 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
r2 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r3 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000a80)=@filter={'filter\x00', 0xe, 0x4, 0x13a8, 0x0, 0x0, 0x1208, 0x108, 0x108, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'rose0\x00', 'netdevsim0\x00'}, 0x0, 0x10d8, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030, 'cgroup\x00'}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1408)
r5 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000016c0)=<r6=>0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="340500004b81aee12a8a5d9cb054572009d1b4a816442a04b8ff6d84d1b1e658e8932ab268ca6bfd278e0e8d1c520a3421ecbb655405444491a1ab15dadc23f5dd7cda133cdeda33d54d8878e0e30f50dfd95c78fcb1465b07000000f40c890600ae1de149b9d3ec23c6fd1050da5cb8c02e5ca34717f300cbb22cae340ce633", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32, @ANYRESOCT=0x0, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB, @ANYRES32=r6, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="0000b6cb7e78093b9c73000048633d53f983a1322f7141d36638ce19a1a86b882de6c5aa1bc177dd7295427c755199592eff96b59cf81128dc35e74f00000000000000"], 0x58, 0x4}, 0x4040000)
ptrace$getsig(0x4202, r6, 0xfffffffffffffe00, &(0x7f0000000100))
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r7=>0xffffffffffffffff})
r8 = dup(r7)
r9 = dup(r8)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r9})
ioctl$DMA_BUF_IOCTL_SYNC(r9, 0x40086200, &(0x7f0000000080)=0x5)

01:28:51 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000300)={<r8=>0x0}, &(0x7f0000000340)=0xc)
ptrace$setregset(0x4205, r8, 0x1, &(0x7f0000000440)={&(0x7f0000000380)="f22e93b02be93b7612727f6f3b6fa5755d9e2780b76aec96a29c31badd86c02b66f52b6289e418f614f9194d316065460aa25836fef7d9a2d6d74751fba5cfe2d4b159ef48c525dc832ce4646324bb9026bbd59209ec5c65fb49dcdcbc4b8f5fed46eb35149d743a9cbf14c655d65e689a3bc90ae824de00189e3d2f899edfb7ad4f4d8057922ec574a43f51e968891d514b056e9f023d1d72c8", 0x9a})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)
ioctl$TCSETAW(r4, 0x5407, &(0x7f00000002c0)={0x33, 0x3, 0x8, 0x4, 0x19, "60c3274fa818564d"})
r9 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x400000, 0x0)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180)='devlink\x00')
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r9, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000480)={0x80, r10, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [{{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0xfffffffe}}, {0x8, 0xb, 0x200}, {0x6, 0x11, 0x5}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x800}, {0x6, 0x11, 0xfffb}}]}, 0x80}, 0x1, 0x0, 0x0, 0x44001}, 0x44000)

01:28:51 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:51 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2330.324941] ip6_tables: ip6tables: counters copy to user failed while replacing table
01:28:51 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:51 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000300)={<r8=>0x0}, &(0x7f0000000340)=0xc)
ptrace$setregset(0x4205, r8, 0x1, &(0x7f0000000440)={&(0x7f0000000380)="f22e93b02be93b7612727f6f3b6fa5755d9e2780b76aec96a29c31badd86c02b66f52b6289e418f614f9194d316065460aa25836fef7d9a2d6d74751fba5cfe2d4b159ef48c525dc832ce4646324bb9026bbd59209ec5c65fb49dcdcbc4b8f5fed46eb35149d743a9cbf14c655d65e689a3bc90ae824de00189e3d2f899edfb7ad4f4d8057922ec574a43f51e968891d514b056e9f023d1d72c8", 0x9a})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)
ioctl$TCSETAW(r4, 0x5407, &(0x7f00000002c0)={0x33, 0x3, 0x8, 0x4, 0x19, "60c3274fa818564d"})
r9 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x400000, 0x0)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180)='devlink\x00')
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r9, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000480)={0x80, r10, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [{{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0xfffffffe}}, {0x8, 0xb, 0x200}, {0x6, 0x11, 0x5}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x800}, {0x6, 0x11, 0xfffb}}]}, 0x80}, 0x1, 0x0, 0x0, 0x44001}, 0x44000)

01:28:51 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:51 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000300)={<r8=>0x0}, &(0x7f0000000340)=0xc)
ptrace$setregset(0x4205, r8, 0x1, &(0x7f0000000440)={&(0x7f0000000380)="f22e93b02be93b7612727f6f3b6fa5755d9e2780b76aec96a29c31badd86c02b66f52b6289e418f614f9194d316065460aa25836fef7d9a2d6d74751fba5cfe2d4b159ef48c525dc832ce4646324bb9026bbd59209ec5c65fb49dcdcbc4b8f5fed46eb35149d743a9cbf14c655d65e689a3bc90ae824de00189e3d2f899edfb7ad4f4d8057922ec574a43f51e968891d514b056e9f023d1d72c8", 0x9a})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)
ioctl$TCSETAW(r4, 0x5407, &(0x7f00000002c0)={0x33, 0x3, 0x8, 0x4, 0x19, "60c3274fa818564d"})
r9 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x400000, 0x0)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180)='devlink\x00')
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r9, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000480)={0x80, r10, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [{{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0xfffffffe}}, {0x8, 0xb, 0x200}, {0x6, 0x11, 0x5}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x800}, {0x6, 0x11, 0xfffb}}]}, 0x80}, 0x1, 0x0, 0x0, 0x44001}, 0x44000)

01:28:51 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:51 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000300)={<r8=>0x0}, &(0x7f0000000340)=0xc)
ptrace$setregset(0x4205, r8, 0x1, &(0x7f0000000440)={&(0x7f0000000380)="f22e93b02be93b7612727f6f3b6fa5755d9e2780b76aec96a29c31badd86c02b66f52b6289e418f614f9194d316065460aa25836fef7d9a2d6d74751fba5cfe2d4b159ef48c525dc832ce4646324bb9026bbd59209ec5c65fb49dcdcbc4b8f5fed46eb35149d743a9cbf14c655d65e689a3bc90ae824de00189e3d2f899edfb7ad4f4d8057922ec574a43f51e968891d514b056e9f023d1d72c8", 0x9a})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)
ioctl$TCSETAW(r4, 0x5407, &(0x7f00000002c0)={0x33, 0x3, 0x8, 0x4, 0x19, "60c3274fa818564d"})
openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x400000, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000180)='devlink\x00')

[ 2330.381861] ip6_tables: ip6tables: counters copy to user failed while replacing table
01:28:51 executing program 4:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:51 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000300)={<r8=>0x0}, &(0x7f0000000340)=0xc)
ptrace$setregset(0x4205, r8, 0x1, &(0x7f0000000440)={&(0x7f0000000380)="f22e93b02be93b7612727f6f3b6fa5755d9e2780b76aec96a29c31badd86c02b66f52b6289e418f614f9194d316065460aa25836fef7d9a2d6d74751fba5cfe2d4b159ef48c525dc832ce4646324bb9026bbd59209ec5c65fb49dcdcbc4b8f5fed46eb35149d743a9cbf14c655d65e689a3bc90ae824de00189e3d2f899edfb7ad4f4d8057922ec574a43f51e968891d514b056e9f023d1d72c8", 0x9a})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)
ioctl$TCSETAW(r4, 0x5407, &(0x7f00000002c0)={0x33, 0x3, 0x8, 0x4, 0x19, "60c3274fa818564d"})
openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x400000, 0x0)

01:28:51 executing program 5:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:51 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:51 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:51 executing program 0:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:51 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000300)={<r8=>0x0}, &(0x7f0000000340)=0xc)
ptrace$setregset(0x4205, r8, 0x1, &(0x7f0000000440)={&(0x7f0000000380)="f22e93b02be93b7612727f6f3b6fa5755d9e2780b76aec96a29c31badd86c02b66f52b6289e418f614f9194d316065460aa25836fef7d9a2d6d74751fba5cfe2d4b159ef48c525dc832ce4646324bb9026bbd59209ec5c65fb49dcdcbc4b8f5fed46eb35149d743a9cbf14c655d65e689a3bc90ae824de00189e3d2f899edfb7ad4f4d8057922ec574a43f51e968891d514b056e9f023d1d72c8", 0x9a})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)
ioctl$TCSETAW(r4, 0x5407, &(0x7f00000002c0)={0x33, 0x3, 0x8, 0x4, 0x19, "60c3274fa818564d"})

01:28:51 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:51 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000300)={<r8=>0x0}, &(0x7f0000000340)=0xc)
ptrace$setregset(0x4205, r8, 0x1, &(0x7f0000000440)={&(0x7f0000000380)="f22e93b02be93b7612727f6f3b6fa5755d9e2780b76aec96a29c31badd86c02b66f52b6289e418f614f9194d316065460aa25836fef7d9a2d6d74751fba5cfe2d4b159ef48c525dc832ce4646324bb9026bbd59209ec5c65fb49dcdcbc4b8f5fed46eb35149d743a9cbf14c655d65e689a3bc90ae824de00189e3d2f899edfb7ad4f4d8057922ec574a43f51e968891d514b056e9f023d1d72c8", 0x9a})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:52 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:52 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:52 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:52 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:52 executing program 1:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000300)={<r7=>0x0}, &(0x7f0000000340)=0xc)
ptrace$setregset(0x4205, r7, 0x1, &(0x7f0000000440)={&(0x7f0000000380)="f22e93b02be93b7612727f6f3b6fa5755d9e2780b76aec96a29c31badd86c02b66f52b6289e418f614f9194d316065460aa25836fef7d9a2d6d74751fba5cfe2d4b159ef48c525dc832ce4646324bb9026bbd59209ec5c65fb49dcdcbc4b8f5fed46eb35149d743a9cbf14c655d65e689a3bc90ae824de00189e3d2f899edfb7ad4f4d8057922ec574a43f51e968891d514b056e9f023d1d72c8", 0x9a})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:52 executing program 1:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000300)={<r7=>0x0}, &(0x7f0000000340)=0xc)
ptrace$setregset(0x4205, r7, 0x1, &(0x7f0000000440)={&(0x7f0000000380)="f22e93b02be93b7612727f6f3b6fa5755d9e2780b76aec96a29c31badd86c02b66f52b6289e418f614f9194d316065460aa25836fef7d9a2d6d74751fba5cfe2d4b159ef48c525dc832ce4646324bb9026bbd59209ec5c65fb49dcdcbc4b8f5fed46eb35149d743a9cbf14c655d65e689a3bc90ae824de00189e3d2f899edfb7ad4f4d8057922ec574a43f51e968891d514b056e9f023d1d72c8", 0x9a})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 1:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000300)={<r7=>0x0}, &(0x7f0000000340)=0xc)
ptrace$setregset(0x4205, r7, 0x1, &(0x7f0000000440)={&(0x7f0000000380)="f22e93b02be93b7612727f6f3b6fa5755d9e2780b76aec96a29c31badd86c02b66f52b6289e418f614f9194d316065460aa25836fef7d9a2d6d74751fba5cfe2d4b159ef48c525dc832ce4646324bb9026bbd59209ec5c65fb49dcdcbc4b8f5fed46eb35149d743a9cbf14c655d65e689a3bc90ae824de00189e3d2f899edfb7ad4f4d8057922ec574a43f51e968891d514b056e9f023d1d72c8", 0x9a})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
getsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000000300), &(0x7f0000000340)=0xc)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:52 executing program 5:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:52 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:52 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:52 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:52 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:52 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:52 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 5:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:53 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:53 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:53 executing program 0:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
dup(r2)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0))
ioctl$DMA_BUF_IOCTL_SYNC(0xffffffffffffffff, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
dup(r2)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0))
ioctl$DMA_BUF_IOCTL_SYNC(0xffffffffffffffff, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 5:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:53 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000))

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
dup(r2)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0))
ioctl$DMA_BUF_IOCTL_SYNC(0xffffffffffffffff, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 0:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:53 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:53 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37})
r2 = dup(0xffffffffffffffff)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r2})
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37})
r2 = dup(0xffffffffffffffff)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r2})
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37})
r2 = dup(0xffffffffffffffff)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r2})
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
r2 = dup(r1)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r2})
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
r2 = dup(r1)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r2})
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
r2 = dup(r1)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r2})
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
r1 = dup(0xffffffffffffffff)
r2 = dup(r1)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r2})
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000))

01:28:53 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:53 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:53 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:53 executing program 0:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:54 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:54 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:54 executing program 5:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:54 executing program 1:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:54 executing program 1:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:54 executing program 1:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:54 executing program 1:
r0 = syz_open_dev$dri(0x0, 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:54 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000))

01:28:54 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:54 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:54 executing program 5:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:54 executing program 0:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)

01:28:54 executing program 1:
r0 = syz_open_dev$dri(0x0, 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:54 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:54 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)

01:28:54 executing program 5:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:54 executing program 3:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)

01:28:54 executing program 1:
r0 = syz_open_dev$dri(0x0, 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:54 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:54 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:54 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:55 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:55 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:55 executing program 0:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)

01:28:55 executing program 5:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)

01:28:55 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:55 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)

01:28:55 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:55 executing program 3:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r1)

01:28:55 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:55 executing program 5:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)

01:28:55 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:55 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)

01:28:55 executing program 0:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)

01:28:55 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:55 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:55 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:55 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:55 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, 0x0)
r2 = dup(0xffffffffffffffff)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0x0, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 3:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r1)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0x0, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 5:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)

01:28:56 executing program 0:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)

01:28:56 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)

01:28:56 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0x0, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x0, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x0, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x0, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37})
r2 = dup(0xffffffffffffffff)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37})
r2 = dup(0xffffffffffffffff)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 3:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r1)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37})
r2 = dup(0xffffffffffffffff)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 5:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
dup(r3)

01:28:56 executing program 0:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
dup(r3)

01:28:56 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0)

01:28:56 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
dup(r2)
r3 = dup(0xffffffffffffffff)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
dup(r2)
r3 = dup(0xffffffffffffffff)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
dup(r2)
r3 = dup(0xffffffffffffffff)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:56 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r2=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r2)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r5 = dup(r4)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r5})

01:28:57 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(0x0)
r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r2=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r2)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r5 = dup(r4)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r5})
ioctl$DMA_BUF_IOCTL_SYNC(r5, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:57 executing program 0:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
dup(r3)

01:28:57 executing program 4:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)

01:28:57 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(0x0)
r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(0x0)
r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 3:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r2=>0xffffffffffffffff})
r3 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r4 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000a80)=@filter={'filter\x00', 0xe, 0x4, 0x13a8, 0x0, 0x0, 0x1208, 0x108, 0x108, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'rose0\x00', 'netdevsim0\x00'}, 0x0, 0x10d8, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030, 'cgroup\x00'}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1408)
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000016c0)=<r7=>0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="340500004b81aee12a8a5d9cb054572009d1b4a816442a04b8ff6d84d1b1e658e8932ab268ca6bfd278e0e8d1c520a3421ecbb655405444491a1ab15dadc23f5dd7cda133cdeda33d54d8878e0e30f50dfd95c78fcb1465b07000000f40c890600ae1de149b9d3ec23c6fd1050da5cb8c02e5ca34717f300cbb22cae340ce633", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r3, @ANYRES32, @ANYRES32, @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB, @ANYRES32=r7, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="0000b6cb7e78093b9c73000048633d53f983a1322f7141d36638ce19a1a86b882de6c5aa1bc177dd7295427c755199592eff96b59cf81128dc35e74f00000000000000"], 0x58, 0x4}, 0x4040000)
ptrace$poke(0x5, r7, &(0x7f0000000100), 0x0)
r8 = dup(r2)
r9 = dup(r8)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r9})
ioctl$DMA_BUF_IOCTL_SYNC(r9, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 5:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r2=>0xffffffffffffffff})
r3 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r4 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000a80)=@filter={'filter\x00', 0xe, 0x4, 0x13a8, 0x0, 0x0, 0x1208, 0x108, 0x108, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'rose0\x00', 'netdevsim0\x00'}, 0x0, 0x10d8, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030, 'cgroup\x00'}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1408)
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000016c0)=<r7=>0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="340500004b81aee12a8a5d9cb054572009d1b4a816442a04b8ff6d84d1b1e658e8932ab268ca6bfd278e0e8d1c520a3421ecbb655405444491a1ab15dadc23f5dd7cda133cdeda33d54d8878e0e30f50dfd95c78fcb1465b07000000f40c890600ae1de149b9d3ec23c6fd1050da5cb8c02e5ca34717f300cbb22cae340ce633", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r3, @ANYRES32, @ANYRES32, @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB, @ANYRES32=r7, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="0000b6cb7e78093b9c73000048633d53f983a1322f7141d36638ce19a1a86b882de6c5aa1bc177dd7295427c755199592eff96b59cf81128dc35e74f00000000000000"], 0x58, 0x4}, 0x4040000)
ptrace$poke(0x5, r7, &(0x7f0000000100), 0x0)
r8 = dup(r2)
r9 = dup(r8)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r9})
ioctl$DMA_BUF_IOCTL_SYNC(r9, 0x40086200, &(0x7f0000000080)=0x5)

01:28:57 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:57 executing program 4:
r0 = socket(0x0, 0x803, 0x0)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000a80)=@filter={'filter\x00', 0xe, 0x4, 0x13a8, 0x0, 0x0, 0x1208, 0x108, 0x108, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'rose0\x00', 'netdevsim0\x00'}, 0x0, 0x10d8, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030, 'cgroup\x00'}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1408)
syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0xfffffffeffffffff, 0x101000)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000005c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="68010002ee89d687abf39b74a988572152f326f3c966a5d6fb07a1cc904facceae9c1aaff6826a98522e230a38c58b88e4e13404f4b258dc58871c3bf45073d4dac39ad1d552f445ddb77de36e8d2dfefd88d1413dbc05398593397461dca0011ac02e1e8036797837bc8a4bcf7907c8ff5e6a4d9d19eeeed2846191bb8bbaaed7d0f2b77856fc0fda9c296c202373695d96a7b0c3c82a3691fcf08c294b9c86a0e1aa04abbf7ddee0a64de0c4da7e763d6b23143d3092ab4a1d9811e3", @ANYRES16=0x0, @ANYRES16, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="3400018014000200697036746e6c300000000000000000001400020065727370616e3000000000000000000008000300020000000c0001800800030002000000180001801400020063616966300000000000000000000000680001800800030003000000140002006d616376746170300000000000000000080003008b012fa908000100", @ANYRES32, @ANYRESHEX], 0x168}}, 0x20000081)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x68, 0x0, 0x100, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xffffffff}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x8001}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @local}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x6}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x68}, 0x1, 0x0, 0x0, 0x8}, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000016c0)=<r5=>0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="340500004b81aee12a8a5d9cb054572009d1b4a816442a04b8ff6d84d1b1e658e8932ab268ca6bfd278e0e8d1c520a3421ecbb655405444491a1ab15dadc23f5dd7cda133cdeda33d54d8878e0e30f50dfd95c78fcb1465b07000000f40c890600ae1de149b9d3ec23c6fd1050da5cb8c02e5ca34717f300cbb22cae340ce633", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB, @ANYRES32=r5, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="0000b6cb7e78093b9c73000048633d53f983a1322f7141d36638ce19a1a86b882de6c5aa1bc177dd7295427c755199592eff96b59cf81128dc35e74f00000000000000"], 0x58, 0x4}, 0x4040000)
ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000040)=r5)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
r8 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = fcntl$dupfd(r8, 0x0, r9)
ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200)

01:28:57 executing program 0:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x9, 0x0, <r1=>0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000}, 0x67)
ioctl$NBD_SET_SIZE(0xffffffffffffffff, 0xab02, 0x3)
dup(r1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
dup(r3)

01:28:57 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r6 = fcntl$dupfd(r5, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:58 executing program 3:
r0 = socket(0x0, 0x803, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$dupfd(r3, 0x0, r4)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r6 = syz_open_dev$vim2m(&(0x7f0000000840)='/dev/video#\x00', 0x8, 0x2)
fcntl$dupfd(r6, 0x0, r0)
r7 = fcntl$dupfd(r5, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)

01:28:58 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:58 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:58 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:58 executing program 3 (fault-call:3 fault-nth:0):
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:58 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x0)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:58 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x0)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

[ 2337.206931] ip6_tables: ip6tables: counters copy to user failed while replacing table
[ 2337.252666] ip6_tables: ip6tables: counters copy to user failed while replacing table
[ 2337.276701] ip6_tables: ip6tables: counters copy to user failed while replacing table
[ 2337.458722] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2337.458753] syz-executor.3 cpuset=/ mems_allowed=0-1
[ 2337.458781] CPU: 1 PID: 21818 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0
[ 2337.458789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2337.458794] Call Trace:
[ 2337.458820]  dump_stack+0x1b2/0x283
[ 2337.458841]  warn_alloc.cold+0x96/0x1af
[ 2337.458855]  ? zone_watermark_ok_safe+0x250/0x250
[ 2337.458881]  ? wait_for_completion_io+0x10/0x10
[ 2337.458902]  __alloc_pages_nodemask+0x2129/0x2730
[ 2337.458936]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2337.458949]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2337.458979]  ? HARDIRQ_verbose+0x10/0x10
[ 2337.458991]  ? do_raw_spin_unlock+0x164/0x250
[ 2337.459007]  alloc_pages_current+0xe7/0x1e0
[ 2337.459026]  kvm_mmu_create+0xd1/0x1c0
[ 2337.459041]  kvm_arch_vcpu_init+0x282/0x890
[ 2337.459052]  ? alloc_pages_current+0xef/0x1e0
[ 2337.459068]  kvm_vcpu_init+0x26d/0x360
[ 2337.459084]  vmx_create_vcpu+0xf5/0x2950
[ 2337.459101]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2337.459114]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2337.459129]  ? alloc_loaded_vmcs+0x240/0x240
[ 2337.459149]  kvm_vm_ioctl+0x4ae/0x1430
[ 2337.459165]  ? __lock_acquire+0x655/0x42a0
[ 2337.459178]  ? kvm_vcpu_release+0xa0/0xa0
[ 2337.459191]  ? check_preemption_disabled+0x35/0x240
[ 2337.459206]  ? perf_trace_lock+0x109/0x4b0
[ 2337.459220]  ? check_preemption_disabled+0x35/0x240
[ 2337.459234]  ? perf_trace_lock+0x109/0x4b0
[ 2337.459251]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2337.459264]  ? HARDIRQ_verbose+0x10/0x10
[ 2337.459276]  ? kvm_vcpu_release+0xa0/0xa0
[ 2337.459289]  do_vfs_ioctl+0x75a/0xfe0
[ 2337.459304]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
01:28:58 executing program 5 (fault-call:2 fault-nth:0):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:28:58 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x0)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:58 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2337.459318]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2337.459346]  ? security_file_ioctl+0x76/0xb0
[ 2337.459357]  ? security_file_ioctl+0x83/0xb0
[ 2337.459371]  SyS_ioctl+0x7f/0xb0
[ 2337.459380]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2337.459394]  do_syscall_64+0x1d5/0x640
[ 2337.459414]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2337.459424] RIP: 0033:0x45cb09
[ 2337.459430] RSP: 002b:00007fafd03eec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2337.459452] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2337.459460] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2337.459468] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2337.459475] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2337.459483] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007fafd03ef6d4
[ 2337.462407] warn_alloc_show_mem: 1 callbacks suppressed
[ 2337.462411] Mem-Info:
[ 2337.462446] active_anon:428071 inactive_anon:21639 isolated_anon:0
[ 2337.462446]  active_file:3406 inactive_file:25635 isolated_file:0
[ 2337.462446]  unevictable:13607 dirty:264 writeback:0 unstable:0
[ 2337.462446]  slab_reclaimable:21065 slab_unreclaimable:315023
[ 2337.462446]  mapped:68333 shmem:24729 pagetables:27513 bounce:0
[ 2337.462446]  free:656122 free_pcp:598 free_cma:0
[ 2337.462467] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
01:28:58 executing program 0 (fault-call:2 fault-nth:0):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:28:58 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x101800, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = fcntl$dupfd(r4, 0x406, r0)
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r7)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={r5, 0x1, 0x6, r7})
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:58 executing program 4 (fault-call:2 fault-nth:0):
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:58 executing program 1:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

[ 2337.462485] Node 1 active_anon:191440kB inactive_anon:65484kB active_file:13616kB inactive_file:102540kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64416kB dirty:1052kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2337.462489] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2337.462510] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2337.462534] Node 0 DMA32 free:33592kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1420kB local_pcp:728kB free_cma:0kB
[ 2337.462557] lowmem_reserve[]: 0 0 0 0 0
[ 2337.462581] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2337.462602] lowmem_reserve[]: 0 0 0 0 0
[ 2337.462627] Node 1 Normal free:2580548kB min:53592kB low:66988kB high:80384kB active_anon:191440kB inactive_anon:65484kB active_file:13616kB inactive_file:102540kB unevictable:54428kB writepending:1052kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:29248kB pagetables:74748kB bounce:0kB free_pcp:972kB local_pcp:572kB free_cma:0kB
[ 2337.462652] lowmem_reserve[]: 0 0 0 0 0
[ 2337.462678] Node 0 DMA: 1*4kB (U) 5*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10348kB
[ 2337.462783] Node 0 DMA32: 2820*4kB (UMEH) 1003*8kB (UME) 449*16kB (UME) 146*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33592kB
[ 2337.462878] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2337.462940] Node 1 Normal: 867*4kB (UE) 411*8kB (UE) 188*16kB (UE) 17*32kB (UME) 3*64kB (UE) 2*128kB (E) 10*256kB (UME) 18*512kB (UE) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2580484kB
[ 2337.463049] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2337.463058] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2337.463066] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2337.463074] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2337.465394] 48028 total pagecache pages
[ 2337.465404] 0 pages in swap cache
01:28:59 executing program 1:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:59 executing program 5 (fault-call:2 fault-nth:1):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2337.465410] Swap cache stats: add 0, delete 0, find 0/0
[ 2337.465414] Free swap  = 0kB
[ 2337.465417] Total swap = 0kB
[ 2337.465424] 1965979 pages RAM
[ 2337.465427] 0 pages HighMem/MovableOnly
[ 2337.465431] 338456 pages reserved
[ 2337.465435] 0 pages cma reserved
[ 2338.105719] FAULT_INJECTION: forcing a failure.
[ 2338.105719] name failslab, interval 1, probability 0, space 0, times 0
01:28:59 executing program 1:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:28:59 executing program 5 (fault-call:2 fault-nth:2):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:28:59 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, 0x0)
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:59 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:28:59 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, 0x0)
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:28:59 executing program 5 (fault-call:2 fault-nth:3):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2338.519815] CPU: 0 PID: 21853 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2338.519823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2338.519826] Call Trace:
[ 2338.519846]  dump_stack+0x1b2/0x283
[ 2338.519862]  should_fail.cold+0x10a/0x154
[ 2338.519876]  should_failslab+0xd6/0x130
[ 2338.519888]  kmem_cache_alloc+0x28e/0x3c0
[ 2338.519905]  vmx_create_vcpu+0x86/0x2950
[ 2338.519920]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2338.519934]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.519946]  ? alloc_loaded_vmcs+0x240/0x240
[ 2338.519966]  kvm_vm_ioctl+0x4ae/0x1430
[ 2338.519979]  ? __lock_acquire+0x655/0x42a0
[ 2338.519991]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.520004]  ? check_preemption_disabled+0x35/0x240
[ 2338.520022]  ? check_preemption_disabled+0x35/0x240
[ 2338.520036]  ? perf_trace_lock+0x109/0x4b0
[ 2338.520052]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.520065]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.520077]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.520090]  do_vfs_ioctl+0x75a/0xfe0
[ 2338.520103]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2338.520116]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2338.520143]  ? security_file_ioctl+0x76/0xb0
[ 2338.520154]  ? security_file_ioctl+0x83/0xb0
[ 2338.520167]  SyS_ioctl+0x7f/0xb0
[ 2338.520176]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2338.520190]  do_syscall_64+0x1d5/0x640
[ 2338.520210]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2338.520219] RIP: 0033:0x45cb09
[ 2338.520226] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2338.520238] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2338.520245] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2338.520251] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2338.520258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2338.520265] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2338.627377] FAULT_INJECTION: forcing a failure.
[ 2338.627377] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2338.627391] CPU: 0 PID: 21871 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2338.627398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2338.627403] Call Trace:
[ 2338.627421]  dump_stack+0x1b2/0x283
[ 2338.627440]  should_fail.cold+0x10a/0x154
[ 2338.627459]  __alloc_pages_nodemask+0x22b/0x2730
[ 2338.627470]  ? __lock_acquire+0x655/0x42a0
[ 2338.627489]  ? __lock_acquire+0x655/0x42a0
[ 2338.627506]  ? trace_hardirqs_on+0x10/0x10
[ 2338.627516]  ? check_preemption_disabled+0x35/0x240
[ 2338.627529]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2338.627540]  ? check_preemption_disabled+0x35/0x240
[ 2338.627563]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.627575]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.627584]  ? perf_trace_lock+0x109/0x4b0
[ 2338.627593]  ? lock_acquire+0x170/0x3f0
[ 2338.627610]  cache_grow_begin+0x91/0x410
[ 2338.627625]  cache_alloc_refill+0x28c/0x360
[ 2338.627643]  kmem_cache_alloc+0x333/0x3c0
[ 2338.627661]  vmx_create_vcpu+0x86/0x2950
[ 2338.627677]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2338.627690]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.627701]  ? alloc_loaded_vmcs+0x240/0x240
[ 2338.627721]  kvm_vm_ioctl+0x4ae/0x1430
[ 2338.627734]  ? __lock_acquire+0x655/0x42a0
[ 2338.627746]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.627759]  ? check_preemption_disabled+0x35/0x240
[ 2338.627776]  ? check_preemption_disabled+0x35/0x240
[ 2338.627790]  ? perf_trace_lock+0x109/0x4b0
[ 2338.627806]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.627819]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.627830]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.627842]  do_vfs_ioctl+0x75a/0xfe0
[ 2338.627856]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2338.627868]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2338.627895]  ? security_file_ioctl+0x76/0xb0
[ 2338.627905]  ? security_file_ioctl+0x83/0xb0
[ 2338.627918]  SyS_ioctl+0x7f/0xb0
[ 2338.627926]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2338.627941]  do_syscall_64+0x1d5/0x640
[ 2338.627961]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2338.627971] RIP: 0033:0x45cb09
[ 2338.627977] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2338.627991] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2338.627997] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2338.628004] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2338.628011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2338.628026] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2338.651212] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2338.651243] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2338.651272] CPU: 0 PID: 21871 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2338.651279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2338.651284] Call Trace:
[ 2338.651304]  dump_stack+0x1b2/0x283
[ 2338.651325]  warn_alloc.cold+0x96/0x1af
[ 2338.651339]  ? zone_watermark_ok_safe+0x250/0x250
[ 2338.651366]  ? wait_for_completion_io+0x10/0x10
[ 2338.651386]  __alloc_pages_nodemask+0x2129/0x2730
[ 2338.651426]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2338.651440]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2338.651468]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.651486]  alloc_pages_current+0xe7/0x1e0
[ 2338.651506]  kvm_mmu_create+0xd1/0x1c0
[ 2338.651521]  kvm_arch_vcpu_init+0x282/0x890
[ 2338.651533]  ? alloc_pages_current+0xef/0x1e0
[ 2338.651552]  kvm_vcpu_init+0x26d/0x360
[ 2338.651572]  vmx_create_vcpu+0xf5/0x2950
[ 2338.651588]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2338.651602]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.651616]  ? alloc_loaded_vmcs+0x240/0x240
[ 2338.651638]  kvm_vm_ioctl+0x4ae/0x1430
[ 2338.651651]  ? __lock_acquire+0x655/0x42a0
[ 2338.651663]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.651678]  ? check_preemption_disabled+0x35/0x240
[ 2338.651701]  ? check_preemption_disabled+0x35/0x240
[ 2338.651715]  ? perf_trace_lock+0x109/0x4b0
[ 2338.651731]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.651744]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.651757]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.651771]  do_vfs_ioctl+0x75a/0xfe0
[ 2338.651785]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2338.651799]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2338.651834]  ? security_file_ioctl+0x76/0xb0
[ 2338.651844]  ? security_file_ioctl+0x83/0xb0
[ 2338.651858]  SyS_ioctl+0x7f/0xb0
[ 2338.651868]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2338.651885]  do_syscall_64+0x1d5/0x640
[ 2338.651906]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2338.651915] RIP: 0033:0x45cb09
[ 2338.651921] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2338.651935] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2338.651942] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2338.651950] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2338.651957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2338.651964] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2338.653395] Mem-Info:
[ 2338.653427] active_anon:428021 inactive_anon:21639 isolated_anon:0
[ 2338.653427]  active_file:3406 inactive_file:25645 isolated_file:0
[ 2338.653427]  unevictable:13607 dirty:283 writeback:0 unstable:0
[ 2338.653427]  slab_reclaimable:20992 slab_unreclaimable:315287
[ 2338.653427]  mapped:68363 shmem:24729 pagetables:27484 bounce:0
[ 2338.653427]  free:656038 free_pcp:637 free_cma:0
[ 2338.653457] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2338.653480] Node 1 active_anon:191240kB inactive_anon:65484kB active_file:13616kB inactive_file:102580kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64536kB dirty:1128kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2338.653486] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2338.653515] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2338.653549] Node 0 DMA32 free:33692kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1324kB local_pcp:692kB free_cma:0kB
[ 2338.653584] lowmem_reserve[]: 0 0 0 0 0
[ 2338.653612] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2338.653635] lowmem_reserve[]: 0 0 0 0 0
[ 2338.653661] Node 1 Normal free:2580112kB min:53592kB low:66988kB high:80384kB active_anon:191240kB inactive_anon:65484kB active_file:13616kB inactive_file:102580kB unevictable:54428kB writepending:1128kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28992kB pagetables:74632kB bounce:0kB free_pcp:1224kB local_pcp:500kB free_cma:0kB
[ 2338.653688] lowmem_reserve[]: 0 0 0 0 0
[ 2338.653713] Node 0 DMA: 1*4kB (U) 5*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10348kB
[ 2338.653817] Node 0 DMA32: 2839*4kB (UMEH) 1009*8kB (UME) 449*16kB (UME) 146*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33716kB
[ 2338.653902] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2338.653964] Node 1 Normal: 930*4kB (UME) 433*8kB (UME) 165*16kB (UME) 18*32kB (UME) 4*64kB (UME) 2*128kB (E) 8*256kB (UME) 18*512kB (UE) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2580128kB
[ 2338.654079] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2338.654087] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2338.654095] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2338.654103] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2338.654108] 48038 total pagecache pages
[ 2338.654120] 0 pages in swap cache
[ 2338.654126] Swap cache stats: add 0, delete 0, find 0/0
[ 2338.654131] Free swap  = 0kB
[ 2338.654135] Total swap = 0kB
[ 2338.654142] 1965979 pages RAM
[ 2338.654147] 0 pages HighMem/MovableOnly
[ 2338.654151] 338456 pages reserved
[ 2338.654155] 0 pages cma reserved
[ 2338.757231] FAULT_INJECTION: forcing a failure.
[ 2338.757231] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2338.757246] CPU: 0 PID: 21882 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2338.757253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2338.757258] Call Trace:
[ 2338.757276]  dump_stack+0x1b2/0x283
[ 2338.757295]  should_fail.cold+0x10a/0x154
[ 2338.757315]  __alloc_pages_nodemask+0x22b/0x2730
[ 2338.757342]  ? check_preemption_disabled+0x35/0x240
[ 2338.757369]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2338.757386]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.757399]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.757415]  ? ____cache_alloc_node+0x153/0x1c0
[ 2338.757432]  ? lock_acquire+0x170/0x3f0
[ 2338.757449]  cache_grow_begin+0x91/0x410
[ 2338.757466]  ? do_raw_spin_unlock+0x164/0x250
[ 2338.757480]  ____cache_alloc_node+0x16d/0x1c0
[ 2338.757490]  ? check_preemption_disabled+0x35/0x240
[ 2338.757505]  kmem_cache_alloc+0x1e5/0x3c0
[ 2338.757523]  vmx_create_vcpu+0x86/0x2950
[ 2338.757539]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2338.757551]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.757563]  ? alloc_loaded_vmcs+0x240/0x240
[ 2338.757583]  kvm_vm_ioctl+0x4ae/0x1430
[ 2338.757596]  ? __lock_acquire+0x655/0x42a0
[ 2338.757608]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.757624]  ? check_preemption_disabled+0x35/0x240
[ 2338.757643]  ? check_preemption_disabled+0x35/0x240
[ 2338.757657]  ? perf_trace_lock+0x109/0x4b0
[ 2338.757673]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.757687]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.757698]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.757711]  do_vfs_ioctl+0x75a/0xfe0
[ 2338.757725]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2338.757738]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2338.757765]  ? security_file_ioctl+0x76/0xb0
[ 2338.757776]  ? security_file_ioctl+0x83/0xb0
[ 2338.757790]  SyS_ioctl+0x7f/0xb0
[ 2338.757799]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2338.757814]  do_syscall_64+0x1d5/0x640
[ 2338.757833]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2338.757842] RIP: 0033:0x45cb09
[ 2338.757849] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2338.757861] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2338.757870] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2338.757877] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2338.757884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2338.757891] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2338.791956] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2338.791992] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2338.794995] CPU: 0 PID: 21882 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2338.795006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2338.795013] Call Trace:
[ 2338.795037]  dump_stack+0x1b2/0x283
[ 2338.795059]  warn_alloc.cold+0x96/0x1af
[ 2338.795074]  ? zone_watermark_ok_safe+0x250/0x250
[ 2338.795101]  ? wait_for_completion_io+0x10/0x10
[ 2338.795123]  __alloc_pages_nodemask+0x2129/0x2730
[ 2338.795161]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2338.795176]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2338.795203]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.795221]  alloc_pages_current+0xe7/0x1e0
[ 2338.795239]  kvm_mmu_create+0xd1/0x1c0
[ 2338.795256]  kvm_arch_vcpu_init+0x282/0x890
[ 2338.795268]  ? alloc_pages_current+0xef/0x1e0
[ 2338.795285]  kvm_vcpu_init+0x26d/0x360
[ 2338.795301]  vmx_create_vcpu+0xf5/0x2950
[ 2338.795318]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2338.795332]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.795346]  ? alloc_loaded_vmcs+0x240/0x240
[ 2338.795377]  kvm_vm_ioctl+0x4ae/0x1430
[ 2338.795393]  ? __lock_acquire+0x655/0x42a0
[ 2338.795406]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.795420]  ? check_preemption_disabled+0x35/0x240
[ 2338.795439]  ? check_preemption_disabled+0x35/0x240
[ 2338.795455]  ? perf_trace_lock+0x109/0x4b0
[ 2338.795471]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.795485]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.795496]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.795509]  do_vfs_ioctl+0x75a/0xfe0
[ 2338.795523]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2338.795537]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2338.795565]  ? security_file_ioctl+0x76/0xb0
[ 2338.795575]  ? security_file_ioctl+0x83/0xb0
[ 2338.795589]  SyS_ioctl+0x7f/0xb0
[ 2338.795598]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2338.795612]  do_syscall_64+0x1d5/0x640
[ 2338.795633]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2338.795643] RIP: 0033:0x45cb09
[ 2338.795650] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2338.795663] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2338.795671] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2338.795678] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2338.795685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2338.795694] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2338.802597] FAULT_INJECTION: forcing a failure.
[ 2338.802597] name failslab, interval 1, probability 0, space 0, times 0
[ 2338.802678] CPU: 1 PID: 21860 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0
[ 2338.802685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2338.802689] Call Trace:
[ 2338.802706]  dump_stack+0x1b2/0x283
[ 2338.802724]  should_fail.cold+0x10a/0x154
[ 2338.802740]  should_failslab+0xd6/0x130
[ 2338.802751]  __kmalloc+0x6d/0x400
[ 2338.802763]  ? bit_cursor+0x8f4/0x1660
[ 2338.802777]  bit_cursor+0x8f4/0x1660
[ 2338.802806]  ? bit_update_start+0x1f0/0x1f0
[ 2338.802823]  ? fb_get_color_depth.part.0+0xba/0x1c0
[ 2338.802835]  ? fb_get_color_depth+0x5a/0x70
[ 2338.802845]  ? get_color+0x1b8/0x3a0
[ 2338.802864]  fbcon_cursor+0x4b1/0x690
[ 2338.802874]  ? bit_update_start+0x1f0/0x1f0
[ 2338.802883]  ? add_softcursor+0x14/0x2d0
[ 2338.802897]  set_cursor+0x189/0x1e0
[ 2338.802908]  redraw_screen+0x56f/0x760
[ 2338.802922]  ? set_palette+0x130/0x130
[ 2338.802934]  ? fbcon_set_palette+0x466/0x580
[ 2338.802948]  fbcon_modechanged+0x552/0x800
[ 2338.802964]  fbcon_event_notify+0x11a/0x1750
[ 2338.802975]  ? notifier_call_chain+0xac/0x1a0
[ 2338.802989]  notifier_call_chain+0x107/0x1a0
[ 2338.803006]  blocking_notifier_call_chain+0x79/0x90
[ 2338.803019]  fb_set_var+0xaad/0xc70
[ 2338.803032]  ? fb_set_suspend+0x110/0x110
[ 2338.803044]  ? lock_acquire+0x170/0x3f0
[ 2338.803053]  ? lock_fb_info+0x1a/0x70
[ 2338.803069]  ? lock_fb_info+0x1a/0x70
[ 2338.803078]  ? __mutex_lock+0x2cb/0x1430
[ 2338.803089]  ? trace_hardirqs_on+0x10/0x10
[ 2338.803096]  ? lock_fb_info+0x1a/0x70
[ 2338.803116]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2338.803141]  ? do_fb_ioctl+0x36a/0x840
[ 2338.803159]  do_fb_ioctl+0x3cc/0x840
[ 2338.803168]  ? lock_downgrade+0x6e0/0x6e0
[ 2338.803177]  ? fb_write+0x550/0x550
[ 2338.803192]  ? avc_has_extended_perms+0x6e2/0xbe0
[ 2338.803204]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.803214]  ? avc_ss_reset+0x100/0x100
[ 2338.803222]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.803234]  ? retint_kernel+0x2d/0x2d
[ 2338.803245]  ? trace_hardirqs_on_caller+0x3a8/0x580
[ 2338.803256]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 2338.803270]  ? check_preemption_disabled+0x35/0x240
[ 2338.803281]  ? retint_kernel+0x2d/0x2d
[ 2338.803316]  fb_ioctl+0xda/0x120
[ 2338.803324]  ? do_fb_ioctl+0x840/0x840
[ 2338.803335]  do_vfs_ioctl+0x75a/0xfe0
[ 2338.803347]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2338.803359]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2338.803383]  ? security_file_ioctl+0x76/0xb0
[ 2338.803393]  ? security_file_ioctl+0x83/0xb0
[ 2338.803404]  SyS_ioctl+0x7f/0xb0
[ 2338.803412]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2338.803425]  do_syscall_64+0x1d5/0x640
[ 2338.803444]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2338.803454] RIP: 0033:0x45cb09
[ 2338.803459] RSP: 002b:00007f3fcf59ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2338.803471] RAX: ffffffffffffffda RBX: 00000000004e54a0 RCX: 000000000045cb09
[ 2338.803477] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000004
[ 2338.803483] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2338.803489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2338.803496] R13: 00000000000002fb R14: 00000000004c5857 R15: 00007f3fcf59f6d4
[ 2338.923011] FAULT_INJECTION: forcing a failure.
[ 2338.923011] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2338.923025] CPU: 0 PID: 21893 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2338.923032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2338.923036] Call Trace:
[ 2338.923054]  dump_stack+0x1b2/0x283
[ 2338.923073]  should_fail.cold+0x10a/0x154
[ 2338.923091]  __alloc_pages_nodemask+0x22b/0x2730
[ 2338.923102]  ? rcu_read_lock_sched_held+0x10a/0x130
[ 2338.923136]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2338.923147]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2338.923168]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.923182]  ? ____cache_alloc_node+0x153/0x1c0
[ 2338.923196]  ? cache_grow_begin+0x3f/0x410
[ 2338.923211]  cache_grow_begin+0x91/0x410
[ 2338.923227]  fallback_alloc+0x205/0x2b0
[ 2338.923245]  kmem_cache_alloc+0x1e5/0x3c0
[ 2338.923261]  vmx_create_vcpu+0x86/0x2950
[ 2338.923277]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2338.923289]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.923300]  ? alloc_loaded_vmcs+0x240/0x240
[ 2338.923320]  kvm_vm_ioctl+0x4ae/0x1430
[ 2338.923334]  ? __lock_acquire+0x655/0x42a0
[ 2338.923346]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.923359]  ? check_preemption_disabled+0x35/0x240
[ 2338.923378]  ? check_preemption_disabled+0x35/0x240
[ 2338.923402]  ? perf_trace_lock+0x109/0x4b0
[ 2338.923418]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2338.923432]  ? HARDIRQ_verbose+0x10/0x10
[ 2338.923443]  ? kvm_vcpu_release+0xa0/0xa0
[ 2338.923457]  do_vfs_ioctl+0x75a/0xfe0
[ 2338.923470]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2338.923483]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2338.923514]  ? security_file_ioctl+0x76/0xb0
[ 2338.923525]  ? security_file_ioctl+0x83/0xb0
[ 2338.923539]  SyS_ioctl+0x7f/0xb0
[ 2338.923548]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2338.923563]  do_syscall_64+0x1d5/0x640
[ 2338.923582]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2338.923591] RIP: 0033:0x45cb09
01:29:01 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, 0x0)
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

[ 2338.923597] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2338.923609] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2338.923616] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2338.923623] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2338.923629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2338.923636] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
01:29:01 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$VHOST_RESET_OWNER(r2, 0xaf02, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r6, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$VIDIOC_TRY_EXT_CTRLS(r3, 0xc0205649, &(0x7f0000000100)={0x9f0000, 0x4, 0xfffffc01, r6, 0x0, &(0x7f00000000c0)={0x9a090b, 0xcc4, [], @value64=0x3ff}})
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x800000, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1})

[ 2341.126570] FAULT_INJECTION: forcing a failure.
[ 2341.126570] name failslab, interval 1, probability 0, space 0, times 0
[ 2341.126584] CPU: 1 PID: 21866 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2341.126592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2341.126596] Call Trace:
[ 2341.126616]  dump_stack+0x1b2/0x283
[ 2341.126635]  should_fail.cold+0x10a/0x154
[ 2341.126654]  should_failslab+0xd6/0x130
[ 2341.126666]  __kmalloc+0x2c1/0x400
[ 2341.126678]  ? vc_do_resize+0x1c1/0xde0
[ 2341.126690]  ? __schedule+0x8ae/0x1d70
[ 2341.126703]  vc_do_resize+0x1c1/0xde0
[ 2341.126725]  ? vc_init+0x430/0x430
[ 2341.126751]  fbcon_modechanged+0x361/0x800
[ 2341.126769]  fbcon_event_notify+0x11a/0x1750
[ 2341.126785]  ? lock_acquire+0x170/0x3f0
[ 2341.126800]  notifier_call_chain+0x107/0x1a0
[ 2341.126818]  blocking_notifier_call_chain+0x79/0x90
[ 2341.126831]  fb_set_var+0xaad/0xc70
[ 2341.126845]  ? fb_set_suspend+0x110/0x110
[ 2341.126857]  ? lock_acquire+0x170/0x3f0
[ 2341.126865]  ? lock_fb_info+0x1a/0x70
[ 2341.126881]  ? lock_fb_info+0x1a/0x70
[ 2341.126890]  ? __mutex_lock+0x2cb/0x1430
[ 2341.126900]  ? trace_hardirqs_on+0x10/0x10
[ 2341.126907]  ? lock_fb_info+0x1a/0x70
[ 2341.126934]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2341.126958]  ? do_fb_ioctl+0x36a/0x840
[ 2341.126977]  do_fb_ioctl+0x3cc/0x840
[ 2341.126989]  ? fb_write+0x550/0x550
[ 2341.127004]  ? check_preemption_disabled+0x35/0x240
[ 2341.127017]  ? perf_trace_lock+0x109/0x4b0
[ 2341.127025]  ? check_preemption_disabled+0x35/0x240
[ 2341.127041]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2341.127057]  ? HARDIRQ_verbose+0x10/0x10
[ 2341.127069]  ? finish_task_switch+0x178/0x610
[ 2341.127108]  ? __schedule+0x8ae/0x1d70
[ 2341.127123]  fb_ioctl+0xda/0x120
[ 2341.127132]  ? do_fb_ioctl+0x840/0x840
[ 2341.127144]  do_vfs_ioctl+0x75a/0xfe0
[ 2341.127164]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 2341.127176]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2341.127187]  ? check_preemption_disabled+0x35/0x240
[ 2341.127198]  ? retint_kernel+0x2d/0x2d
[ 2341.127211]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2341.127228]  ? security_file_ioctl+0x83/0xb0
[ 2341.127242]  SyS_ioctl+0x7f/0xb0
[ 2341.127250]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2341.127264]  do_syscall_64+0x1d5/0x640
[ 2341.127282]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2341.127291] RIP: 0033:0x45cb09
[ 2341.127297] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2341.127310] RAX: ffffffffffffffda RBX: 00000000004e54a0 RCX: 000000000045cb09
[ 2341.127318] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000004
[ 2341.127325] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2341.127331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2341.127338] R13: 00000000000002fb R14: 00000000004c5857 R15: 00007f939133c6d4
[ 2341.550380] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
01:29:02 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:02 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x800, 0x0)
ioctl$EVIOCGREP(r3, 0x80084503, &(0x7f0000000140)=""/25)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, &(0x7f00000000c0))
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r4, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:02 executing program 5 (fault-call:2 fault-nth:4):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:29:02 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0))
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

[ 2341.550538] syz-executor.3 cpuset=/ mems_allowed=0-1
[ 2341.550646] CPU: 1 PID: 21903 Comm: syz-executor.3 Not tainted 4.14.184-syzkaller #0
[ 2341.550653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2341.550658] Call Trace:
[ 2341.550681]  dump_stack+0x1b2/0x283
[ 2341.550700]  warn_alloc.cold+0x96/0x1af
[ 2341.550712]  ? zone_watermark_ok_safe+0x250/0x250
[ 2341.550726]  ? __mutex_unlock_slowpath+0xca/0x780
[ 2341.550745]  ? wait_for_completion_io+0x10/0x10
[ 2341.550764]  __alloc_pages_nodemask+0x2129/0x2730
[ 2341.550796]  ? retint_kernel+0x2d/0x2d
[ 2341.550808]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2341.550820]  ? trace_hardirqs_on_caller+0x3a8/0x580
[ 2341.550832]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2341.550842]  ? retint_kernel+0x2d/0x2d
[ 2341.550860]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 2341.550878]  ? retint_kernel+0x2d/0x2d
[ 2341.550898]  alloc_pages_current+0xe7/0x1e0
[ 2341.550921]  kvm_mmu_create+0xd1/0x1c0
[ 2341.550936]  kvm_arch_vcpu_init+0x282/0x890
[ 2341.550946]  ? alloc_pages_current+0xef/0x1e0
[ 2341.550962]  kvm_vcpu_init+0x26d/0x360
[ 2341.550978]  vmx_create_vcpu+0xf5/0x2950
[ 2341.550994]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2341.551005]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2341.551019]  ? alloc_loaded_vmcs+0x240/0x240
[ 2341.551039]  kvm_vm_ioctl+0x4ae/0x1430
[ 2341.551052]  ? __lock_acquire+0x655/0x42a0
[ 2341.551064]  ? kvm_vcpu_release+0xa0/0xa0
[ 2341.551073]  ? retint_kernel+0x2d/0x2d
[ 2341.551083]  ? retint_kernel+0x2d/0x2d
[ 2341.551095]  ? retint_kernel+0x2d/0x2d
[ 2341.551108]  ? trace_hardirqs_on_caller+0x3a8/0x580
[ 2341.551119]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 2341.551136]  ? check_preemption_disabled+0x35/0x240
[ 2341.551147]  ? retint_kernel+0x2d/0x2d
[ 2341.551161]  ? kvm_vcpu_release+0xa0/0xa0
[ 2341.551179]  ? kvm_vcpu_release+0xa0/0xa0
[ 2341.551192]  do_vfs_ioctl+0x75a/0xfe0
[ 2341.551206]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2341.551219]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2341.551246]  ? security_file_ioctl+0x76/0xb0
01:29:02 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0))
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:29:02 executing program 4:
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x157, 0x4}}, 0x0, 0x10c, r2, 0x0)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2341.551257]  ? security_file_ioctl+0x83/0xb0
[ 2341.551270]  SyS_ioctl+0x7f/0xb0
[ 2341.551279]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2341.551293]  do_syscall_64+0x1d5/0x640
[ 2341.551313]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2341.551322] RIP: 0033:0x45cb09
[ 2341.551328] RSP: 002b:00007fafd03eec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2341.551341] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2341.551348] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 000000000000000a
[ 2341.551355] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2341.551362] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2341.551369] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007fafd03ef6d4
[ 2341.551574] warn_alloc_show_mem: 1 callbacks suppressed
[ 2341.551619] Mem-Info:
[ 2341.551737] active_anon:427957 inactive_anon:21639 isolated_anon:0
[ 2341.551737]  active_file:3406 inactive_file:25669 isolated_file:0
[ 2341.551737]  unevictable:13607 dirty:314 writeback:0 unstable:0
[ 2341.551737]  slab_reclaimable:20682 slab_unreclaimable:317047
[ 2341.551737]  mapped:68205 shmem:24729 pagetables:27449 bounce:0
[ 2341.551737]  free:654767 free_pcp:678 free_cma:0
[ 2341.551875] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2341.551928] Node 1 active_anon:190984kB inactive_anon:65484kB active_file:13616kB inactive_file:102676kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:63904kB dirty:1252kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2341.551944] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2341.552169] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2341.552468] Node 0 
[ 2341.696676] FAULT_INJECTION: forcing a failure.
[ 2341.696676] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2341.726682] DMA32 free:33920kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1364kB local_pcp:720kB free_cma:0kB
[ 2341.873836] CPU: 0 PID: 21911 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2341.887837] lowmem_reserve[]:
[ 2341.893094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2341.893099] Call Trace:
[ 2341.893120]  dump_stack+0x1b2/0x283
[ 2341.893140]  should_fail.cold+0x10a/0x154
[ 2341.893158]  __alloc_pages_nodemask+0x22b/0x2730
[ 2341.893169]  ? __lock_acquire+0x655/0x42a0
[ 2341.893182]  ? kasan_kmalloc.part.0+0x4f/0xd0
[ 2341.893191]  ? kmem_cache_alloc+0x124/0x3c0
[ 2341.893210]  ? vmx_create_vcpu+0x86/0x2950
[ 2341.898832]  0
[ 2341.900992]  ? kvm_vm_ioctl+0x4ae/0x1430
[ 2341.901001]  ? do_vfs_ioctl+0x75a/0xfe0
[ 2341.901016]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2341.901027]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2341.901042]  ? check_preemption_disabled+0x35/0x240
[ 2341.901058]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2341.901077]  ? HARDIRQ_verbose+0x10/0x10
[ 2341.901089]  ? do_raw_spin_unlock+0x164/0x250
[ 2341.901103]  ? allocate_vpid.part.0+0x56/0x60
01:29:02 executing program 5 (fault-call:2 fault-nth:5):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2341.901128]  alloc_pages_current+0xe7/0x1e0
[ 2341.901143]  kvm_vcpu_init+0x172/0x360
[ 2341.901172]  vmx_create_vcpu+0xf5/0x2950
[ 2341.950314]  0
[ 2341.963583]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2341.963597]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2341.963611]  ? alloc_loaded_vmcs+0x240/0x240
[ 2341.963631]  kvm_vm_ioctl+0x4ae/0x1430
[ 2341.963643]  ? __lock_acquire+0x655/0x42a0
[ 2341.963654]  ? kvm_vcpu_release+0xa0/0xa0
[ 2341.963667]  ? check_preemption_disabled+0x35/0x240
[ 2341.963684]  ? check_preemption_disabled+0x35/0x240
[ 2341.963697]  ? perf_trace_lock+0x109/0x4b0
[ 2341.963714]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2341.963727]  ? HARDIRQ_verbose+0x10/0x10
[ 2341.963739]  ? kvm_vcpu_release+0xa0/0xa0
[ 2341.963752]  do_vfs_ioctl+0x75a/0xfe0
[ 2341.963766]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2341.963780]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2341.963806]  ? security_file_ioctl+0x76/0xb0
[ 2341.963816]  ? security_file_ioctl+0x83/0xb0
[ 2341.963830]  SyS_ioctl+0x7f/0xb0
[ 2341.992792]  0
[ 2342.018590]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2342.018610]  do_syscall_64+0x1d5/0x640
[ 2342.018628]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2342.018639] RIP: 0033:0x45cb09
[ 2342.018645] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2342.018657] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2342.018663] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2342.018668] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2342.018674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2342.018680] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2342.251716] FAULT_INJECTION: forcing a failure.
[ 2342.251716] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2342.295977]  0
[ 2342.335045] CPU: 0 PID: 21930 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2342.341478]  0
[ 2342.349056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2342.349061] Call Trace:
[ 2342.349083]  dump_stack+0x1b2/0x283
[ 2342.349102]  should_fail.cold+0x10a/0x154
[ 2342.349119]  __alloc_pages_nodemask+0x22b/0x2730
[ 2342.360253]  ? rcu_read_lock_sched_held+0x10a/0x130
[ 2342.360266]  ? __alloc_pages_nodemask+0x1a8a/0x2730
[ 2342.360280]  ? kmem_cache_alloc+0x124/0x3c0
[ 2342.360291]  ? vmx_create_vcpu+0x86/0x2950
[ 2342.360306]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2342.360318]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2342.360331]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2342.369602] Node 0 
[ 2342.370675]  ? HARDIRQ_verbose+0x10/0x10
[ 2342.370689]  ? do_raw_spin_unlock+0x164/0x250
[ 2342.370702]  ? allocate_vpid.part.0+0x56/0x60
[ 2342.378000] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2342.380453]  alloc_pages_current+0xe7/0x1e0
[ 2342.380472]  kvm_arch_vcpu_init+0x210/0x890
[ 2342.380482]  ? alloc_pages_current+0xef/0x1e0
[ 2342.380497]  kvm_vcpu_init+0x26d/0x360
[ 2342.380511]  vmx_create_vcpu+0xf5/0x2950
[ 2342.387828] lowmem_reserve[]:
[ 2342.389825]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2342.389839]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2342.389852]  ? alloc_loaded_vmcs+0x240/0x240
[ 2342.389875]  kvm_vm_ioctl+0x4ae/0x1430
[ 2342.396432]  0
[ 2342.399451]  ? __lock_acquire+0x655/0x42a0
[ 2342.399466]  ? kvm_vcpu_release+0xa0/0xa0
[ 2342.399478]  ? check_preemption_disabled+0x35/0x240
[ 2342.399496]  ? check_preemption_disabled+0x35/0x240
[ 2342.399508]  ? perf_trace_lock+0x109/0x4b0
[ 2342.407892]  0
[ 2342.409256]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2342.409271]  ? HARDIRQ_verbose+0x10/0x10
[ 2342.409287]  ? kvm_vcpu_release+0xa0/0xa0
[ 2342.416354]  0
[ 2342.420031]  do_vfs_ioctl+0x75a/0xfe0
[ 2342.420047]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2342.420059]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2342.420084]  ? security_file_ioctl+0x76/0xb0
[ 2342.429109]  0
[ 2342.449200]  ? security_file_ioctl+0x83/0xb0
[ 2342.449214]  SyS_ioctl+0x7f/0xb0
[ 2342.449224]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2342.449238]  do_syscall_64+0x1d5/0x640
[ 2342.449257]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2342.449267] RIP: 0033:0x45cb09
[ 2342.449273] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2342.460068]  0
[ 2342.462411] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2342.462418] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2342.462424] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2342.462431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2342.462438] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2342.624018] Node 1 Normal free:2572408kB min:53592kB low:66988kB high:80384kB active_anon:191172kB inactive_anon:65484kB active_file:13616kB inactive_file:102744kB unevictable:54428kB writepending:1344kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28768kB pagetables:74548kB bounce:0kB free_pcp:1388kB local_pcp:684kB free_cma:0kB
[ 2342.624047] lowmem_reserve[]: 0 0 0 0 0
[ 2342.624073] Node 0 DMA: 1*4kB (U) 7*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10364kB
[ 2342.624176] Node 0 DMA32: 2850*4kB (UMEH) 1027*8kB (UMEH) 451*16kB (UME) 146*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33936kB
[ 2342.624289] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2342.624349] Node 1 Normal: 1162*4kB (UME) 357*8kB (UME) 116*16kB (UME) 25*32kB (UME) 7*64kB (UME) 2*128kB (E) 2*256kB (ME) 6*512kB (UE) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2572400kB
[ 2342.624467] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2342.624476] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2342.624484] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2342.624491] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2342.624496] 48079 total pagecache pages
[ 2342.624508] 0 pages in swap cache
[ 2342.624515] Swap cache stats: add 0, delete 0, find 0/0
[ 2342.624519] Free swap  = 0kB
[ 2342.624523] Total swap = 0kB
[ 2342.624531] 1965979 pages RAM
[ 2342.624535] 0 pages HighMem/MovableOnly
[ 2342.624539] 338456 pages reserved
[ 2342.624544] 0 pages cma reserved
01:29:03 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:03 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0))
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:29:03 executing program 5 (fault-call:2 fault-nth:6):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:29:03 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000100)={r6, 0x6}, 0x10)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f00000000c0)={r6, 0x5}, 0x8)

01:29:03 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(0xffffffffffffffff, 0x40086200, &(0x7f0000000080)=0x5)

01:29:03 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(0xffffffffffffffff, 0x40086200, &(0x7f0000000080)=0x5)

[ 2343.016043] FAULT_INJECTION: forcing a failure.
[ 2343.016043] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2343.016058] CPU: 1 PID: 21951 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2343.016066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2343.016070] Call Trace:
[ 2343.016089]  dump_stack+0x1b2/0x283
[ 2343.016108]  should_fail.cold+0x10a/0x154
[ 2343.016126]  __alloc_pages_nodemask+0x22b/0x2730
[ 2343.016140]  ? __alloc_pages_nodemask+0x1a8a/0x2730
[ 2343.016155]  ? rcu_read_lock_sched_held+0x10a/0x130
[ 2343.016169]  ? kmem_cache_alloc+0x124/0x3c0
[ 2343.016180]  ? vmx_create_vcpu+0x86/0x2950
[ 2343.016194]  ? entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2343.016206]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2343.016218]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2343.016242]  ? HARDIRQ_verbose+0x10/0x10
[ 2343.016252]  ? do_raw_spin_unlock+0x164/0x250
[ 2343.016267]  alloc_pages_current+0xe7/0x1e0
[ 2343.016281]  kvm_mmu_create+0xd1/0x1c0
[ 2343.016294]  kvm_arch_vcpu_init+0x282/0x890
[ 2343.016303]  ? alloc_pages_current+0xef/0x1e0
[ 2343.016316]  kvm_vcpu_init+0x26d/0x360
[ 2343.016327]  vmx_create_vcpu+0xf5/0x2950
[ 2343.016340]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2343.016350]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2343.016384]  ? alloc_loaded_vmcs+0x240/0x240
[ 2343.016402]  kvm_vm_ioctl+0x4ae/0x1430
[ 2343.016413]  ? __lock_acquire+0x655/0x42a0
[ 2343.016423]  ? kvm_vcpu_release+0xa0/0xa0
[ 2343.016433]  ? check_preemption_disabled+0x35/0x240
[ 2343.016449]  ? check_preemption_disabled+0x35/0x240
[ 2343.016460]  ? perf_trace_lock+0x109/0x4b0
[ 2343.016473]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2343.016484]  ? HARDIRQ_verbose+0x10/0x10
[ 2343.016493]  ? kvm_vcpu_release+0xa0/0xa0
[ 2343.016504]  do_vfs_ioctl+0x75a/0xfe0
[ 2343.016516]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2343.016526]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2343.016546]  ? security_file_ioctl+0x76/0xb0
[ 2343.016555]  ? security_file_ioctl+0x83/0xb0
[ 2343.016565]  SyS_ioctl+0x7f/0xb0
[ 2343.016572]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2343.016584]  do_syscall_64+0x1d5/0x640
[ 2343.016608]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2343.016617] RIP: 0033:0x45cb09
[ 2343.016622] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2343.016633] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2343.016638] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2343.016644] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
01:29:04 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x7f6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:04 executing program 5 (fault-call:2 fault-nth:7):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:29:04 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:04 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(0xffffffffffffffff, 0x40086200, &(0x7f0000000080)=0x5)

[ 2343.016649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2343.016655] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2343.463978] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2343.464009] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2343.464038] CPU: 0 PID: 21971 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2343.464046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2343.464050] Call Trace:
[ 2343.464071]  dump_stack+0x1b2/0x283
[ 2343.464092]  warn_alloc.cold+0x96/0x1af
[ 2343.464107]  ? zone_watermark_ok_safe+0x250/0x250
[ 2343.464133]  ? wait_for_completion_io+0x10/0x10
[ 2343.464155]  __alloc_pages_nodemask+0x2129/0x2730
[ 2343.464191]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2343.464204]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2343.464233]  ? HARDIRQ_verbose+0x10/0x10
[ 2343.464246]  ? do_raw_spin_unlock+0x164/0x250
[ 2343.464265]  alloc_pages_current+0xe7/0x1e0
[ 2343.464283]  kvm_mmu_create+0xd1/0x1c0
[ 2343.464300]  kvm_arch_vcpu_init+0x282/0x890
[ 2343.464310]  ? alloc_pages_current+0xef/0x1e0
[ 2343.464336]  kvm_vcpu_init+0x26d/0x360
[ 2343.464354]  vmx_create_vcpu+0xf5/0x2950
[ 2343.464371]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2343.464385]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2343.464397]  ? alloc_loaded_vmcs+0x240/0x240
[ 2343.464417]  kvm_vm_ioctl+0x4ae/0x1430
[ 2343.464430]  ? __lock_acquire+0x655/0x42a0
[ 2343.464442]  ? kvm_vcpu_release+0xa0/0xa0
[ 2343.464456]  ? check_preemption_disabled+0x35/0x240
[ 2343.464473]  ? check_preemption_disabled+0x35/0x240
[ 2343.464487]  ? perf_trace_lock+0x109/0x4b0
[ 2343.464504]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2343.464517]  ? HARDIRQ_verbose+0x10/0x10
[ 2343.464529]  ? kvm_vcpu_release+0xa0/0xa0
[ 2343.464542]  do_vfs_ioctl+0x75a/0xfe0
[ 2343.464555]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2343.464569]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2343.464598]  ? security_file_ioctl+0x76/0xb0
[ 2343.464610]  ? security_file_ioctl+0x83/0xb0
[ 2343.464623]  SyS_ioctl+0x7f/0xb0
[ 2343.464632]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2343.464646]  do_syscall_64+0x1d5/0x640
[ 2343.464669]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2343.464680] RIP: 0033:0x45cb09
[ 2343.464687] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2343.464701] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2343.464708] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2343.464715] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2343.464723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2343.464730] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2343.467159] Mem-Info:
[ 2343.467191] active_anon:428023 inactive_anon:21639 isolated_anon:0
[ 2343.467191]  active_file:3406 inactive_file:25687 isolated_file:0
[ 2343.467191]  unevictable:13607 dirty:338 writeback:0 unstable:0
[ 2343.467191]  slab_reclaimable:20377 slab_unreclaimable:317468
[ 2343.467191]  mapped:68231 shmem:24729 pagetables:27506 bounce:0
[ 2343.467191]  free:654565 free_pcp:579 free_cma:0
[ 2343.467215] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2343.467245] Node 1 active_anon:191248kB inactive_anon:65484kB active_file:13616kB inactive_file:102748kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64008kB dirty:1348kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2343.467251] Node 0 DMA free:10364kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2343.467292] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2343.467323] Node 0 DMA32 free:34060kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1292kB local_pcp:664kB free_cma:0kB
[ 2343.467353] lowmem_reserve[]: 0 0 0 0 0
[ 2343.467381] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2343.467405] lowmem_reserve[]: 0 0 0 0 0
[ 2343.467431] Node 1 Normal free:2573836kB min:53592kB low:66988kB high:80384kB active_anon:191248kB inactive_anon:65484kB active_file:13616kB inactive_file:102748kB unevictable:54428kB writepending:1348kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28864kB pagetables:74720kB bounce:0kB free_pcp:1024kB local_pcp:672kB free_cma:0kB
[ 2343.467457] lowmem_reserve[]: 0 0 0 0 0
[ 2343.467482] Node 0 DMA: 1*4kB (U) 7*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10364kB
[ 2343.467587] Node 0 DMA32: 2869*4kB (UMEH) 1029*8kB (UMEH) 453*16kB (UME) 146*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34060kB
[ 2343.467674] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2343.467737] Node 1 Normal: 1239*4kB (UME) 438*8kB (UE) 182*16kB (UE) 26*32kB (UE) 9*64kB (UME) 3*128kB (UE) 2*256kB (ME) 4*512kB (UE) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2573676kB
[ 2343.467847] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2343.467857] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2343.467867] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2343.467876] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2343.467881] 48080 total pagecache pages
[ 2343.467895] 0 pages in swap cache
[ 2343.467902] Swap cache stats: add 0, delete 0, find 0/0
[ 2343.467907] Free swap  = 0kB
[ 2343.467912] Total swap = 0kB
[ 2343.467920] 1965979 pages RAM
[ 2343.467925] 0 pages HighMem/MovableOnly
[ 2343.467930] 338456 pages reserved
[ 2343.467935] 0 pages cma reserved
01:29:04 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x780, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.events\x00', 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$SNDCTL_DSP_GETOPTR(r4, 0x800c5012, &(0x7f00000001c0))
ioctl$FBIOGET_FSCREENINFO(r1, 0x4602, &(0x7f0000000100))

01:29:04 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
getsockopt$inet_sctp_SCTP_INITMSG(r4, 0x84, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x8)

01:29:04 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, 0x0)

01:29:04 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x190, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {0x2}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:04 executing program 2 (fault-call:3 fault-nth:0):
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:04 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000100)={r6, 0x6}, 0x10)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r3, 0x84, 0x10, &(0x7f0000000100)=@sack_info={r6, 0x7, 0x1}, 0xc)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$dupfd(r7, 0x0, r8)
fcntl$F_GET_FILE_RW_HINT(r7, 0x40d, &(0x7f00000000c0))

01:29:05 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, 0x0)

01:29:05 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, 0x0)

01:29:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x201, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$KVM_GET_ONE_REG(r4, 0x4010aeab, &(0x7f0000000080)={0x1, 0x9})
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000)='TIPCv2\x00')
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:29:05 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080))

[ 2344.343103] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2344.343138] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2344.343170] CPU: 0 PID: 21990 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2344.343179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
01:29:05 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x2a)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f0000000240)={0x3, 0x2, 0x4, 0x8, 0x7, {}, {0x5, 0xc, 0x7, 0x8, 0x0, 0x60, "2959d40c"}, 0x2, 0xc2d8b040b0647851, @fd=r0, 0x2, 0x0, <r7=>r5})
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r7, 0xc0096616, &(0x7f0000000400)=ANY=[@ANYBLOB="041f00000000000000000000c434b96a64c47999eef344af8e2a344e8af1fefd1d73fcf4ee7f53d07e84e2b34d5c160e143051cbd91ccb28d1f5e34ffbb896e0a5a897607bf49e2707d1062d8be375f0e16a1ebe7a57ea123e1b03"])
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x3})
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040)='nl80211\x00')
sendmsg$NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c170000ec789e3773ca4964dd546fe7a6d98e19d059f83598f0d8cafb9675d5c1d4ce448cbbd48a6e950a61e0c0af760fdfaa55ece9", @ANYRES16=r8, @ANYBLOB="2b0f0000000000000000320000000400190000000000"], 0x1c}}, 0x0)
r9 = openat$full(0xffffffffffffff9c, 0x0, 0x2, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @dev}, 0x0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r9, &(0x7f0000000600)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000005c0)={&(0x7f0000000b00)=ANY=[@ANYRES32, @ANYRES16, @ANYRES64, @ANYBLOB="08720b000100000014000200626f6e64300000000000000000000000080003000300000008000300010000000c00018008454a02b5d75a6f89ee13125cb8fac823a05ffcc83c718e1d58879648fe47d47d3856a84d803e3ebc42f8376ba26074d1b5af4841b810c13ba6f9a852c810ac73811068c51e578c09414842e8bc51030bb9299ef0947ad18007b34ffc49a1c6cf665a33c0fd1fb8a5d1b1d68259f430bbab93914728b0efb9b9fa5ef2dba8723d8f3e54cf52cbc37ff3cc4b6efb7914bd4e65480ad227c233cdf8a5b570bcb927dd48127e6a0d50cb366004626e6bd04bbc09a669dbaaf67b51b60f8cb0e3159084f1f36350c25b4e80747a2119d0adaa1f3dc6ff7866ed4669ef7e684a899fa9b673a1ed227a110e6e9cafe730a5055f6080c70c", @ANYRES32=0x0, @ANYBLOB="3400018014000200697036746e6c300000000000000000001400020065727370616e3000000000000000000008000300020000000c0001800800030002000000180001801400020063616966300000000000000000000000680001800800030003000000140002006d616376746170300000000000000000080003008b012fa908000100", @ANYRES32=r10, @ANYRESHEX], 0x168}, 0x1, 0x0, 0x0, 0x240440c5}, 0x20000081)
sendmsg$NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)={0x74, r8, 0x10, 0x70bd27, 0x25dfdbfb, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x2}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x3}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @dev={[], 0x3e}}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0xffffffffffffffff}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r10}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0xffffffffffffffff}, @NL80211_ATTR_WDEV={0xc, 0x99, {0xffff, 0x2}}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x9, 0x1}}, @NL80211_ATTR_WIPHY={0x8}]}, 0x74}, 0x1, 0x0, 0x0, 0x4004000}, 0x8891)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x2400, 0xfffffffffffffff8)

[ 2344.343184] Call Trace:
[ 2344.343207]  dump_stack+0x1b2/0x283
[ 2344.343227]  warn_alloc.cold+0x96/0x1af
[ 2344.343247]  ? zone_watermark_ok_safe+0x250/0x250
[ 2344.343276]  ? wait_for_completion_io+0x10/0x10
[ 2344.343299]  __alloc_pages_nodemask+0x2129/0x2730
[ 2344.343347]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2344.343364]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2344.343401]  ? HARDIRQ_verbose+0x10/0x10
[ 2344.343417]  ? do_raw_spin_unlock+0x164/0x250
[ 2344.343438]  alloc_pages_current+0xe7/0x1e0
[ 2344.343457]  kvm_mmu_create+0xd1/0x1c0
[ 2344.343473]  kvm_arch_vcpu_init+0x282/0x890
[ 2344.343483]  ? alloc_pages_current+0xef/0x1e0
[ 2344.343498]  kvm_vcpu_init+0x26d/0x360
[ 2344.343514]  vmx_create_vcpu+0xf5/0x2950
[ 2344.343531]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2344.343541]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2344.343557]  ? alloc_loaded_vmcs+0x240/0x240
[ 2344.343576]  kvm_vm_ioctl+0x4ae/0x1430
[ 2344.343589]  ? __lock_acquire+0x655/0x42a0
[ 2344.343601]  ? kvm_vcpu_release+0xa0/0xa0
[ 2344.343611]  ? check_preemption_disabled+0x35/0x240
[ 2344.343623]  ? perf_trace_lock+0x109/0x4b0
[ 2344.343637]  ? check_preemption_disabled+0x35/0x240
[ 2344.343651]  ? perf_trace_lock+0x109/0x4b0
[ 2344.343665]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2344.343676]  ? HARDIRQ_verbose+0x10/0x10
[ 2344.343686]  ? kvm_vcpu_release+0xa0/0xa0
01:29:05 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080))

[ 2344.343697]  do_vfs_ioctl+0x75a/0xfe0
[ 2344.343711]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2344.343722]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2344.343747]  ? security_file_ioctl+0x76/0xb0
[ 2344.343757]  ? security_file_ioctl+0x83/0xb0
[ 2344.343770]  SyS_ioctl+0x7f/0xb0
[ 2344.343778]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2344.343791]  do_syscall_64+0x1d5/0x640
[ 2344.343812]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2344.343823] RIP: 0033:0x45cb09
[ 2344.343830] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2344.343843] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2344.343852] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2344.343860] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2344.343867] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2344.343874] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2344.536883] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2344.536915] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2344.536948] CPU: 1 PID: 22009 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2344.536957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2344.536963] Call Trace:
[ 2344.536986]  dump_stack+0x1b2/0x283
[ 2344.537008]  warn_alloc.cold+0x96/0x1af
[ 2344.537023]  ? zone_watermark_ok_safe+0x250/0x250
[ 2344.537051]  ? wait_for_completion_io+0x10/0x10
[ 2344.537080]  __alloc_pages_nodemask+0x2129/0x2730
[ 2344.537124]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2344.537147]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2344.537182]  ? HARDIRQ_verbose+0x10/0x10
[ 2344.537199]  ? do_raw_spin_unlock+0x164/0x250
[ 2344.537219]  alloc_pages_current+0xe7/0x1e0
[ 2344.537239]  kvm_mmu_create+0xd1/0x1c0
[ 2344.537254]  kvm_arch_vcpu_init+0x282/0x890
[ 2344.537266]  ? alloc_pages_current+0xef/0x1e0
[ 2344.537283]  kvm_vcpu_init+0x26d/0x360
[ 2344.537300]  vmx_create_vcpu+0xf5/0x2950
[ 2344.537317]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2344.537330]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2344.537347]  ? alloc_loaded_vmcs+0x240/0x240
[ 2344.537369]  kvm_vm_ioctl+0x4ae/0x1430
[ 2344.537391]  ? __lock_acquire+0x655/0x42a0
[ 2344.537406]  ? kvm_vcpu_release+0xa0/0xa0
[ 2344.537419]  ? check_preemption_disabled+0x35/0x240
[ 2344.537433]  ? perf_trace_lock+0x109/0x4b0
[ 2344.537448]  ? check_preemption_disabled+0x35/0x240
[ 2344.537462]  ? perf_trace_lock+0x109/0x4b0
[ 2344.537478]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2344.537491]  ? HARDIRQ_verbose+0x10/0x10
[ 2344.537503]  ? kvm_vcpu_release+0xa0/0xa0
[ 2344.537516]  do_vfs_ioctl+0x75a/0xfe0
[ 2344.537531]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2344.537546]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2344.537574]  ? security_file_ioctl+0x76/0xb0
[ 2344.537585]  ? security_file_ioctl+0x83/0xb0
[ 2344.537598]  SyS_ioctl+0x7f/0xb0
[ 2344.537607]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2344.537622]  do_syscall_64+0x1d5/0x640
[ 2344.537642]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2344.537652] RIP: 0033:0x45cb09
[ 2344.537659] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2344.537673] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2344.537680] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2344.537688] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2344.537694] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2344.537701] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2344.543824] warn_alloc_show_mem: 1 callbacks suppressed
[ 2344.543828] Mem-Info:
[ 2344.543861] active_anon:428015 inactive_anon:21639 isolated_anon:0
[ 2344.543861]  active_file:3406 inactive_file:25697 isolated_file:0
[ 2344.543861]  unevictable:13607 dirty:352 writeback:0 unstable:0
[ 2344.543861]  slab_reclaimable:20270 slab_unreclaimable:318004
[ 2344.543861]  mapped:68244 shmem:24729 pagetables:27475 bounce:0
[ 2344.543861]  free:654106 free_pcp:604 free_cma:0
[ 2344.543890] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2344.544187] Node 1 active_anon:191216kB inactive_anon:65484kB active_file:13616kB inactive_file:102788kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64060kB dirty:1404kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2344.544957] Node 0 DMA free:10364kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2344.544985] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2344.545205] Node 0 DMA32 free:34060kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1304kB local_pcp:628kB free_cma:0kB
[ 2344.545234] lowmem_reserve[]: 0 0 0 0 0
[ 2344.545268] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2344.545291] lowmem_reserve[]: 0 0 0 0 0
[ 2344.545319] Node 1 Normal free:2571896kB min:53592kB low:66988kB high:80384kB active_anon:191216kB inactive_anon:65484kB active_file:13616kB inactive_file:102788kB unevictable:54428kB writepending:1404kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28992kB pagetables:74596kB bounce:0kB free_pcp:1104kB local_pcp:588kB free_cma:0kB
[ 2344.545364] lowmem_reserve[]: 0 0 0 0 0
[ 2344.545404] Node 0 DMA: 1*4kB (U) 7*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10364kB
[ 2344.545517] Node 0 DMA32: 2869*4kB (UMEH) 1029*8kB (UMEH) 453*16kB (UME) 146*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34060kB
[ 2344.545606] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2344.545669] Node 1 Normal: 1232*4kB (UME) 415*8kB (UE) 146*16kB (UE) 31*32kB (UME) 11*64kB (UME) 3*128kB (ME) 1*256kB (E) 2*512kB (UE) 10*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2571896kB
[ 2344.545780] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2344.545788] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2344.545796] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2344.545804] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2344.545809] 48090 total pagecache pages
[ 2344.545821] 0 pages in swap cache
[ 2344.545829] Swap cache stats: add 0, delete 0, find 0/0
[ 2344.545834] Free swap  = 0kB
[ 2344.545839] Total swap = 0kB
[ 2344.545846] 1965979 pages RAM
[ 2344.545851] 0 pages HighMem/MovableOnly
[ 2344.545855] 338456 pages reserved
[ 2344.545859] 0 pages cma reserved
[ 2344.588312] syz-executor.5: 
[ 2344.729171] syz-executor.0: 
[ 2344.849165] page allocation failure: order:0
[ 2344.957223] page allocation failure: order:0
[ 2344.958245] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=
[ 2344.964832] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=
[ 2344.971817] (null)
[ 2344.978489] (null)
[ 2344.983559] syz-executor.5 cpuset=
[ 2344.986046] syz-executor.0 cpuset=
[ 2344.988041] /
[ 2345.430726] / mems_allowed=0-1
[ 2345.441210] CPU: 0 PID: 22022 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0
[ 2345.441218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2345.441222] Call Trace:
[ 2345.441243]  dump_stack+0x1b2/0x283
[ 2345.441261]  warn_alloc.cold+0x96/0x1af
[ 2345.441274]  ? zone_watermark_ok_safe+0x250/0x250
[ 2345.441297]  ? wait_for_completion_io+0x10/0x10
[ 2345.441316]  __alloc_pages_nodemask+0x2129/0x2730
[ 2345.441350]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2345.441363]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2345.441391]  ? HARDIRQ_verbose+0x10/0x10
[ 2345.441402]  ? do_raw_spin_unlock+0x164/0x250
[ 2345.441418]  alloc_pages_current+0xe7/0x1e0
[ 2345.441437]  kvm_mmu_create+0xd1/0x1c0
[ 2345.441451]  kvm_arch_vcpu_init+0x282/0x890
[ 2345.441460]  ? alloc_pages_current+0xef/0x1e0
[ 2345.441474]  kvm_vcpu_init+0x26d/0x360
[ 2345.441488]  vmx_create_vcpu+0xf5/0x2950
[ 2345.441502]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2345.441511]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2345.441524]  ? alloc_loaded_vmcs+0x240/0x240
[ 2345.441543]  kvm_vm_ioctl+0x4ae/0x1430
[ 2345.441556]  ? __lock_acquire+0x655/0x42a0
[ 2345.441567]  ? kvm_vcpu_release+0xa0/0xa0
[ 2345.441578]  ? check_preemption_disabled+0x35/0x240
[ 2345.441591]  ? perf_trace_lock+0x109/0x4b0
[ 2345.441605]  ? check_preemption_disabled+0x35/0x240
[ 2345.441618]  ? perf_trace_lock+0x109/0x4b0
[ 2345.441634]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2345.441646]  ? HARDIRQ_verbose+0x10/0x10
[ 2345.441656]  ? kvm_vcpu_release+0xa0/0xa0
[ 2345.441667]  do_vfs_ioctl+0x75a/0xfe0
[ 2345.441681]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2345.441693]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2345.441719]  ? security_file_ioctl+0x76/0xb0
[ 2345.441729]  ? security_file_ioctl+0x83/0xb0
[ 2345.441742]  SyS_ioctl+0x7f/0xb0
[ 2345.441750]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2345.441765]  do_syscall_64+0x1d5/0x640
[ 2345.441785]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2345.441794] RIP: 0033:0x45cb09
[ 2345.441800] RSP: 002b:00007f3fcf57dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2345.441813] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2345.441819] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2345.441826] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000
[ 2345.441832] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2345.441839] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f3fcf57e6d4
[ 2345.466883]  mems_allowed=0-1
[ 2345.466913] CPU: 1 PID: 22009 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2345.466921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2345.466925] Call Trace:
[ 2345.466943]  dump_stack+0x1b2/0x283
[ 2345.466961]  warn_alloc.cold+0x96/0x1af
[ 2345.466973]  ? zone_watermark_ok_safe+0x250/0x250
[ 2345.466995]  ? wait_for_completion_io+0x10/0x10
[ 2345.467013]  __alloc_pages_nodemask+0x2129/0x2730
[ 2345.467044]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2345.467056]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2345.467081]  ? HARDIRQ_verbose+0x10/0x10
[ 2345.467092]  ? do_raw_spin_unlock+0x164/0x250
[ 2345.467107]  alloc_pages_current+0xe7/0x1e0
[ 2345.467123]  kvm_mmu_create+0xd1/0x1c0
[ 2345.467137]  kvm_arch_vcpu_init+0x282/0x890
[ 2345.467146]  ? alloc_pages_current+0xef/0x1e0
[ 2345.467161]  kvm_vcpu_init+0x26d/0x360
[ 2345.467176]  vmx_create_vcpu+0xf5/0x2950
[ 2345.467190]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2345.467200]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2345.467213]  ? alloc_loaded_vmcs+0x240/0x240
[ 2345.467232]  kvm_vm_ioctl+0x4ae/0x1430
[ 2345.467244]  ? __lock_acquire+0x655/0x42a0
[ 2345.467255]  ? kvm_vcpu_release+0xa0/0xa0
[ 2345.467266]  ? check_preemption_disabled+0x35/0x240
[ 2345.467280]  ? perf_trace_lock+0x109/0x4b0
[ 2345.467294]  ? check_preemption_disabled+0x35/0x240
[ 2345.467306]  ? perf_trace_lock+0x109/0x4b0
[ 2345.467321]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2345.467332]  ? HARDIRQ_verbose+0x10/0x10
[ 2345.467343]  ? kvm_vcpu_release+0xa0/0xa0
[ 2345.467356]  do_vfs_ioctl+0x75a/0xfe0
[ 2345.467369]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2345.467380]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2345.467405]  ? security_file_ioctl+0x76/0xb0
[ 2345.467415]  ? security_file_ioctl+0x83/0xb0
[ 2345.467426]  SyS_ioctl+0x7f/0xb0
[ 2345.467434]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2345.467449]  do_syscall_64+0x1d5/0x640
[ 2345.467468]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2345.467476] RIP: 0033:0x45cb09
[ 2345.467482] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2345.467503] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2345.467510] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006
[ 2345.467516] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2345.467522] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2345.467529] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2345.558716] FAULT_INJECTION: forcing a failure.
[ 2345.558716] name failslab, interval 1, probability 0, space 0, times 0
[ 2345.558726] CPU: 1 PID: 21986 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0
[ 2345.558732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2345.558735] Call Trace:
[ 2345.558750]  dump_stack+0x1b2/0x283
[ 2345.558762]  should_fail.cold+0x10a/0x154
[ 2345.558772]  should_failslab+0xd6/0x130
[ 2345.558779]  __kmalloc+0x6d/0x400
[ 2345.558786]  ? bit_cursor+0x8f4/0x1660
[ 2345.558794]  bit_cursor+0x8f4/0x1660
[ 2345.558805]  ? bit_update_start+0x1f0/0x1f0
[ 2345.558814]  ? fb_get_color_depth.part.0+0xba/0x1c0
[ 2345.558821]  ? fb_get_color_depth+0x5a/0x70
[ 2345.558827]  ? get_color+0x1b8/0x3a0
[ 2345.558835]  fbcon_cursor+0x4b1/0x690
[ 2345.558840]  ? bit_update_start+0x1f0/0x1f0
[ 2345.558847]  ? add_softcursor+0x14/0x2d0
[ 2345.558854]  set_cursor+0x189/0x1e0
[ 2345.558860]  redraw_screen+0x56f/0x760
[ 2345.558868]  ? set_palette+0x130/0x130
[ 2345.558874]  ? fbcon_set_palette+0x466/0x580
[ 2345.558882]  fbcon_modechanged+0x552/0x800
[ 2345.558891]  fbcon_event_notify+0x11a/0x1750
[ 2345.558899]  ? lock_acquire+0x170/0x3f0
[ 2345.558907]  notifier_call_chain+0x107/0x1a0
[ 2345.558916]  blocking_notifier_call_chain+0x79/0x90
[ 2345.558923]  fb_set_var+0xaad/0xc70
[ 2345.558933]  ? fb_set_suspend+0x110/0x110
[ 2345.558944]  ? lock_acquire+0x170/0x3f0
[ 2345.558952]  ? lock_fb_info+0x1a/0x70
[ 2345.558968]  ? lock_fb_info+0x1a/0x70
[ 2345.558978]  ? __mutex_lock+0x2cb/0x1430
[ 2345.558989]  ? trace_hardirqs_on+0x10/0x10
[ 2345.558996]  ? lock_fb_info+0x1a/0x70
[ 2345.559014]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2345.559041]  ? do_fb_ioctl+0x36a/0x840
[ 2345.559058]  do_fb_ioctl+0x3cc/0x840
[ 2345.559069]  ? fb_write+0x550/0x550
[ 2345.559084]  ? check_preemption_disabled+0x35/0x240
[ 2345.559098]  ? perf_trace_lock+0x109/0x4b0
[ 2345.559105]  ? check_preemption_disabled+0x35/0x240
[ 2345.559115]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2345.559123]  ? HARDIRQ_verbose+0x10/0x10
[ 2345.559130]  ? finish_task_switch+0x178/0x610
[ 2345.559150]  ? check_preemption_disabled+0x35/0x240
[ 2345.559158]  fb_ioctl+0xda/0x120
[ 2345.559162]  ? do_fb_ioctl+0x840/0x840
[ 2345.559169]  do_vfs_ioctl+0x75a/0xfe0
[ 2345.559177]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 2345.559183]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2345.559191]  ? retint_kernel+0x2d/0x2d
[ 2345.559198]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2345.559207]  ? security_file_ioctl+0x83/0xb0
[ 2345.559214]  SyS_ioctl+0x7f/0xb0
[ 2345.559219]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2345.559226]  do_syscall_64+0x1d5/0x640
[ 2345.559236]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2345.559242] RIP: 0033:0x45cb09
[ 2345.559245] RSP: 002b:00007fb2c9daec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2345.559253] RAX: ffffffffffffffda RBX: 00000000004e54a0 RCX: 000000000045cb09
[ 2345.559256] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000004
01:29:07 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x840, 0x0)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000100)={0x0, 0xfff7}, &(0x7f0000000140)=0x8)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:07 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080))

01:29:07 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
pipe(&(0x7f0000000080))
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
socket$unix(0x1, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x1ff)
setsockopt$TIPC_IMPORTANCE(0xffffffffffffffff, 0x10f, 0x7f, &(0x7f0000000040)=0x9, 0x4)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x1, 0x88000)

[ 2345.559260] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2345.559264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2345.559267] R13: 00000000000002fb R14: 00000000004c5857 R15: 00007fb2c9daf6d4
01:29:07 executing program 1 (fault-call:10 fault-nth:0):
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:29:07 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r5=>r4})
r6 = dup(r5)
r7 = dup(r6)
r8 = socket$unix(0x1, 0x1, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = fcntl$dupfd(r8, 0x0, r9)
ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r7})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f0000000080)=0x5)

01:29:07 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
sendto$l2tp(0xffffffffffffffff, &(0x7f00000001c0)="0e4c64d1a6f877f09a8bfd9450f6c70db499a8d480b8710520b87279860d6381cf44d4655def6aca9bc01a5ba5afcb6225a4a70c94d261a1d3b01fc3f2115adf40962523a22f43d02de3b979b52e1cc9a3fffba2fc81c9331ec005c7119f3dcda545ce86a1aa276f529b64556f4aaa9fd35db8a6a21d3a3122e118e11897a30d4be241418ede4bd2a85b20d76d6b399d2d2ea948bc2af540820d89483711f305411a2085f04a6187931fa3a714ce7267e04452b3ed4cea98e6d92c9d3ea73e505d1f235204c670d8dd68b9a6c0a62037bac6753567ac204146198d1b5ac91ed1c7881cce5b403ea59ea247639cd7fce2bffe9b4bbe46481cad", 0xf9, 0x40, &(0x7f00000000c0)={0x2, 0x0, @local, 0x2}, 0x10)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:07 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0)
ioctl$EVIOCGSND(r5, 0x8040451a, &(0x7f0000000140)=""/14)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$DRM_IOCTL_MODE_GETPROPERTY(r4, 0xc04064aa, &(0x7f00000000c0)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000040)=[{}, {}, {}], 0xfc, 0x0, [], 0x4, 0x3})
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2346.541486] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
01:29:07 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)
r8 = openat$mice(0xffffffffffffff9c, &(0x7f0000000100)='/dev/input/mice\x00', 0x100)
ioctl$EXT4_IOC_GROUP_ADD(r8, 0x40286608, &(0x7f0000000140)={0x2, 0x0, 0x2, 0x4, 0x101, 0x4})

[ 2346.541519] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2346.541548] CPU: 0 PID: 22047 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2346.541557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2346.541562] Call Trace:
[ 2346.541582]  dump_stack+0x1b2/0x283
01:29:07 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
r8 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = fcntl$dupfd(r8, 0x0, r9)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
fcntl$dupfd(0xffffffffffffffff, 0x0, r11)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r11, 0x84, 0x6b, &(0x7f0000000280)=[@in={0x2, 0x4e23, @multicast2}, @in6={0xa, 0x4e22, 0x7, @private1={0xfc, 0x1, [], 0x1}, 0x7}, @in6={0xa, 0x4e24, 0x7, @mcast2, 0x10001}, @in6={0xa, 0x4e22, 0xc24, @mcast2, 0x7}, @in={0x2, 0x4e24, @loopback}, @in6={0xa, 0x4e23, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @in={0x2, 0x4e22, @private=0xa010100}], 0xa0)
getsockopt$CAN_RAW_RECV_OWN_MSGS(r9, 0x65, 0x4, &(0x7f0000000100), &(0x7f0000000140)=0x4)
lsetxattr$trusted_overlay_redirect(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='trusted.overlay.redirect\x00', &(0x7f0000000240)='./file0\x00', 0x8, 0x3)
ioctl$KDGETKEYCODE(r10, 0x4b4c, &(0x7f0000000180)={0x62, 0x200})
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

[ 2346.541604]  warn_alloc.cold+0x96/0x1af
[ 2346.541619]  ? zone_watermark_ok_safe+0x250/0x250
[ 2346.541645]  ? wait_for_completion_io+0x10/0x10
[ 2346.541668]  __alloc_pages_nodemask+0x2129/0x2730
01:29:07 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz1\x00', {0x23, 0x7, 0x200, 0x401}, 0x1b, [0x0, 0x0, 0x7, 0x9, 0x9, 0xcd5, 0x9708, 0x4000000, 0x4, 0x0, 0x7abd176e, 0x400, 0xff, 0x8, 0xff, 0x8, 0xb072, 0x8000, 0x1, 0xffff, 0x101, 0x5, 0x7, 0x6, 0x8, 0x80, 0x2, 0x7, 0x4, 0x4, 0x20, 0xa2f5, 0x75bd, 0xdb, 0x2, 0xff, 0x400, 0x3, 0x10000, 0x8, 0x9, 0x0, 0xfffffeff, 0x9f800000, 0x8e, 0x4, 0x0, 0x8, 0x4e70, 0x8, 0x73e1, 0x200, 0xe92d, 0x1, 0xeecf, 0x80000000, 0x8, 0xfff, 0x1, 0x8, 0x6, 0x100, 0x5, 0x9], [0x4, 0x6058, 0x101, 0x81, 0xb6, 0x8, 0x1, 0x5, 0xfffeffff, 0x5, 0x4, 0x3, 0xfe0, 0x4, 0x1e4, 0x7f, 0xdd5, 0x9, 0x9, 0x4, 0x6, 0x2, 0x2, 0xf9d, 0xfffff800, 0xfffffffe, 0xfffffffe, 0x2, 0x55, 0x81, 0x100, 0x4, 0x3, 0x3ff, 0x939, 0x3, 0x8, 0x7fff, 0x8, 0xff, 0x100, 0x3f, 0x6, 0x0, 0xffffffaa, 0x9, 0x80, 0x4, 0xff, 0x3, 0x0, 0x3, 0x8001, 0x40, 0x9, 0x7, 0x8, 0xba, 0x800, 0x4, 0x3cb6, 0x9, 0x4, 0xa0], [0x1, 0xff, 0x5, 0x6, 0x1f, 0x40000, 0x8, 0xfffffff7, 0x194a3ec9, 0x800, 0x1, 0x101, 0xe80, 0x0, 0x9, 0x2ced0e0f, 0x1, 0x0, 0x4, 0x28, 0x8477, 0xffffffff, 0x5, 0x9, 0xffffffff, 0x1e24f890, 0xa311, 0x7fffffff, 0x4, 0x8, 0x1, 0x7fffffff, 0x8000, 0x3f, 0x8000, 0x9, 0x0, 0x4, 0x7fffffff, 0x33ef1f8e, 0x4, 0x5, 0x3, 0xfffffffb, 0x401, 0x8001, 0x6, 0x5, 0x1f, 0x5, 0xa5, 0x8, 0x81, 0x8, 0xffff, 0x10000, 0x1fc00000, 0x4, 0x2, 0x8, 0x6, 0x7f, 0x7, 0x2], [0x4d4, 0x6, 0x3, 0x87a, 0x800, 0x577, 0x3, 0x8, 0x562d, 0x927, 0x0, 0x6c3, 0x1, 0x8, 0x3, 0x20, 0x54b, 0x3f, 0x7f, 0x7ff, 0x8, 0x10000, 0xc1, 0xff, 0xd7, 0x3, 0x20, 0x0, 0x3, 0x22, 0x8, 0x5, 0x7fffffff, 0x8000, 0x2, 0x3, 0x6, 0x0, 0x6, 0x3ff, 0x5, 0x1, 0x9, 0xe4d9, 0x3, 0x2, 0x1ff, 0x9, 0x101, 0x26, 0x8, 0x5, 0xfffffffa, 0x4, 0x4, 0xeb, 0x9, 0xffffff81, 0x80000001, 0x80000001, 0x6, 0x7, 0x3, 0x6]}, 0x45c)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x3)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2346.541708]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2346.541724]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2346.541757]  ? HARDIRQ_verbose+0x10/0x10
[ 2346.541771]  ? do_raw_spin_unlock+0x164/0x250
[ 2346.541793]  alloc_pages_current+0xe7/0x1e0
[ 2346.541814]  kvm_mmu_create+0xd1/0x1c0
[ 2346.541831]  kvm_arch_vcpu_init+0x282/0x890
[ 2346.541842]  ? alloc_pages_current+0xef/0x1e0
[ 2346.541859]  kvm_vcpu_init+0x26d/0x360
[ 2346.541875]  vmx_create_vcpu+0xf5/0x2950
[ 2346.541905]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2346.541918]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2346.541935]  ? alloc_loaded_vmcs+0x240/0x240
[ 2346.541955]  kvm_vm_ioctl+0x4ae/0x1430
[ 2346.541973]  ? __lock_acquire+0x655/0x42a0
[ 2346.541987]  ? kvm_vcpu_release+0xa0/0xa0
[ 2346.542001]  ? check_preemption_disabled+0x35/0x240
[ 2346.542018]  ? perf_trace_lock+0x109/0x4b0
[ 2346.542034]  ? check_preemption_disabled+0x35/0x240
[ 2346.542050]  ? perf_trace_lock+0x109/0x4b0
[ 2346.542069]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2346.542084]  ? HARDIRQ_verbose+0x10/0x10
[ 2346.542099]  ? kvm_vcpu_release+0xa0/0xa0
[ 2346.542121]  do_vfs_ioctl+0x75a/0xfe0
[ 2346.542139]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2346.542153]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2346.542184]  ? security_file_ioctl+0x76/0xb0
[ 2346.542195]  ? security_file_ioctl+0x83/0xb0
[ 2346.542211]  SyS_ioctl+0x7f/0xb0
[ 2346.542222]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2346.542239]  do_syscall_64+0x1d5/0x640
[ 2346.542263]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2346.542273] RIP: 0033:0x45cb09
[ 2346.542280] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2346.542295] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2346.542303] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2346.542311] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2346.542319] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2346.542327] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2346.544952] warn_alloc_show_mem: 2 callbacks suppressed
[ 2346.544957] Mem-Info:
[ 2346.544987] active_anon:428032 inactive_anon:21639 isolated_anon:0
[ 2346.544987]  active_file:3406 inactive_file:25708 isolated_file:0
[ 2346.544987]  unevictable:13607 dirty:61 writeback:0 unstable:0
[ 2346.544987]  slab_reclaimable:20245 slab_unreclaimable:318409
[ 2346.544987]  mapped:68284 shmem:24729 pagetables:27443 bounce:0
[ 2346.544987]  free:653891 free_pcp:549 free_cma:0
[ 2346.545011] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2346.545035] Node 1 active_anon:191284kB inactive_anon:65484kB active_file:13616kB inactive_file:102832kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64220kB dirty:240kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2346.545040] Node 0 DMA free:10364kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2346.545068] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2346.545097] Node 0 DMA32 free:34060kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1404kB local_pcp:716kB free_cma:0kB
[ 2346.545126] lowmem_reserve[]: 0 0 0 0 0
[ 2346.545153] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2346.545179] lowmem_reserve[]: 0 0 0 0 0
[ 2346.545208] Node 1 Normal free:2571140kB min:53592kB low:66988kB high:80384kB active_anon:191284kB inactive_anon:65484kB active_file:13616kB inactive_file:102832kB unevictable:54428kB writepending:288kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28832kB pagetables:74468kB bounce:0kB free_pcp:792kB local_pcp:224kB free_cma:0kB
[ 2346.545242] lowmem_reserve[]: 0 0 0 0 0
[ 2346.545269] Node 0 DMA: 1*4kB (U) 7*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10364kB
[ 2346.545387] Node 0 DMA32: 2869*4kB (UMEH) 1029*8kB (UMEH) 453*16kB (UME) 146*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34060kB
[ 2346.545478] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2346.545544] Node 1 Normal: 1323*4kB (UME) 363*8kB (UME) 263*16kB (UME) 38*32kB (UME) 9*64kB (UE) 3*128kB (ME) 2*256kB (UE) 2*512kB (UE) 7*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2570996kB
[ 2346.545662] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2346.545672] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2346.545682] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2346.545690] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2346.545695] 48101 total pagecache pages
[ 2346.545707] 0 pages in swap cache
[ 2346.545715] Swap cache stats: add 0, delete 0, find 0/0
[ 2346.545721] Free swap  = 0kB
[ 2346.545725] Total swap = 0kB
[ 2346.545734] 1965979 pages RAM
[ 2346.545739] 0 pages HighMem/MovableOnly
[ 2346.545745] 338456 pages reserved
[ 2346.545749] 0 pages cma reserved
[ 2346.720193] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2346.720222] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2346.720251] CPU: 1 PID: 22062 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2346.720258] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2346.720263] Call Trace:
[ 2346.720283]  dump_stack+0x1b2/0x283
[ 2346.720303]  warn_alloc.cold+0x96/0x1af
[ 2346.720317]  ? zone_watermark_ok_safe+0x250/0x250
[ 2346.720344]  ? wait_for_completion_io+0x10/0x10
[ 2346.720366]  __alloc_pages_nodemask+0x2129/0x2730
[ 2346.720415]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2346.720430]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2346.720460]  ? HARDIRQ_verbose+0x10/0x10
[ 2346.720473]  ? do_raw_spin_unlock+0x164/0x250
[ 2346.720493]  alloc_pages_current+0xe7/0x1e0
[ 2346.720510]  kvm_mmu_create+0xd1/0x1c0
[ 2346.720525]  kvm_arch_vcpu_init+0x282/0x890
[ 2346.720535]  ? alloc_pages_current+0xef/0x1e0
[ 2346.720552]  kvm_vcpu_init+0x26d/0x360
[ 2346.720568]  vmx_create_vcpu+0xf5/0x2950
[ 2346.720584]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2346.720595]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2346.720609]  ? alloc_loaded_vmcs+0x240/0x240
[ 2346.720629]  kvm_vm_ioctl+0x4ae/0x1430
[ 2346.720642]  ? __lock_acquire+0x655/0x42a0
[ 2346.720654]  ? kvm_vcpu_release+0xa0/0xa0
[ 2346.720667]  ? check_preemption_disabled+0x35/0x240
[ 2346.720681]  ? perf_trace_lock+0x109/0x4b0
[ 2346.720695]  ? check_preemption_disabled+0x35/0x240
[ 2346.720710]  ? perf_trace_lock+0x109/0x4b0
[ 2346.720729]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2346.720743]  ? HARDIRQ_verbose+0x10/0x10
[ 2346.720770]  ? kvm_vcpu_release+0xa0/0xa0
[ 2346.720788]  do_vfs_ioctl+0x75a/0xfe0
[ 2346.720805]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2346.720821]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2346.720854]  ? security_file_ioctl+0x76/0xb0
[ 2346.720872]  ? security_file_ioctl+0x83/0xb0
[ 2346.720890]  SyS_ioctl+0x7f/0xb0
[ 2346.720904]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2346.720922]  do_syscall_64+0x1d5/0x640
[ 2346.720952]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2346.720964] RIP: 0033:0x45cb09
[ 2346.720972] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2346.720988] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2346.720996] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2346.721003] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2346.721011] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2346.721018] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2346.796239] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2346.796269] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2346.796298] CPU: 0 PID: 22071 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2346.796307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2346.796311] Call Trace:
[ 2346.796335]  dump_stack+0x1b2/0x283
[ 2346.796361]  warn_alloc.cold+0x96/0x1af
[ 2346.796378]  ? zone_watermark_ok_safe+0x250/0x250
[ 2346.796406]  ? wait_for_completion_io+0x10/0x10
[ 2346.796428]  __alloc_pages_nodemask+0x2129/0x2730
[ 2346.796464]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2346.796478]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2346.796507]  ? HARDIRQ_verbose+0x10/0x10
[ 2346.796521]  ? do_raw_spin_unlock+0x164/0x250
[ 2346.796538]  alloc_pages_current+0xe7/0x1e0
[ 2346.796554]  kvm_mmu_create+0xd1/0x1c0
[ 2346.796579]  kvm_arch_vcpu_init+0x282/0x890
[ 2346.796591]  ? alloc_pages_current+0xef/0x1e0
[ 2346.796609]  kvm_vcpu_init+0x26d/0x360
[ 2346.796626]  vmx_create_vcpu+0xf5/0x2950
[ 2346.796641]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2346.796658]  ? alloc_loaded_vmcs+0x240/0x240
[ 2346.796682]  kvm_vm_ioctl+0x4ae/0x1430
[ 2346.796698]  ? __lock_acquire+0x655/0x42a0
[ 2346.796711]  ? kvm_vcpu_release+0xa0/0xa0
[ 2346.796722]  ? check_preemption_disabled+0x35/0x240
[ 2346.796737]  ? perf_trace_lock+0x109/0x4b0
[ 2346.796752]  ? check_preemption_disabled+0x35/0x240
[ 2346.796764]  ? perf_trace_lock+0x109/0x4b0
[ 2346.796779]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2346.796795]  ? HARDIRQ_verbose+0x10/0x10
[ 2346.796809]  ? kvm_vcpu_release+0xa0/0xa0
[ 2346.796824]  do_vfs_ioctl+0x75a/0xfe0
[ 2346.796839]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2346.796851]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2346.796890]  ? security_file_ioctl+0x76/0xb0
[ 2346.796903]  ? security_file_ioctl+0x83/0xb0
[ 2346.796917]  SyS_ioctl+0x7f/0xb0
[ 2346.796927]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2346.796942]  do_syscall_64+0x1d5/0x640
[ 2346.796964]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2346.796974] RIP: 0033:0x45cb09
[ 2346.796981] RSP: 002b:00007f014affbc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2346.796994] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2346.797001] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2346.797008] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000
[ 2346.797016] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2346.797024] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014affc6d4
01:29:09 executing program 4:
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:09 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10412}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000005c0)={0x0, 0x8000, 0x30}, 0xc)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
openat$binder_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x40, 0x8)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e24, @multicast1}}, 0x18, 0x7ff, 0x560cbdc0, 0x80000000, 0x3}, &(0x7f00000004c0)=0x98)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
fcntl$dupfd(r3, 0x0, 0xffffffffffffffff)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f0000000140)={<r4=>0x0})
ioctl$DRM_IOCTL_LOCK(0xffffffffffffffff, 0x4008642a, &(0x7f00000001c0)={r4, 0x8})
fallocate(r2, 0x10, 0x7, 0x0)
r5 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000240)='/dev/cachefiles\x00', 0x20a980, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000100)='SEG6\x00')
sendmsg$SEG6_CMD_SETHMAC(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="30000000b12e3e8231b15b3bbdcda0229b57a45d35a1bcef454377b984c16be408e79f9ad6e08322216aaedec2ff6a9686c8b1d4c55d874dccd2f2b7c8c3afa40328abd20effad20409f35c45b2861b6c17e4b17bc34d18d839cdb6a1d74bf6d67e1c433", @ANYRES16=r7, @ANYBLOB="050000000000000000000100000008000300000800000500060000000000050005000400000004000400"], 0x30}, 0x1, 0x6c}, 0x0)
sendmsg$SEG6_CMD_SETHMAC(r5, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8100400}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="fca538000000", @ANYRES16=r7, @ANYBLOB="000428bd7000fedbdf2501000000050005000000000004000400080002003c37ef0e08000300350000000500060086000000"], 0x38}, 0x1, 0x0, 0x0, 0x50}, 0x0)

01:29:09 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = openat$cgroup_ro(r4, &(0x7f0000000100)='memory.current\x00', 0x0, 0x0)
ioctl$RNDADDTOENTCNT(r5, 0x40045201, &(0x7f0000000140)=0xff)
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = fcntl$dupfd(r6, 0x0, r7)
ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:29:09 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
getsockopt$IP_SET_OP_GET_BYINDEX(r4, 0x1, 0x53, &(0x7f0000000000)={0x7, 0x7, 0xffffffffffffffff}, &(0x7f0000000040)=0x28)

01:29:09 executing program 0:
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000100)={0x0, <r0=>0x0})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7f, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, @perf_bp={0x0}}, r0, 0xffffffffffff7fff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x341240, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000000)='TIPCv2\x00')
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x14, r5, 0xb03, 0x0, 0x0, {0x6}}, 0x14}}, 0x0)
sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000300)={0x170, r5, 0x8, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x110, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_NODE_ID={0x101, 0x3, "09cdf43555012a9f8e4abfbb2b93b9cdf2b7d7718d69a6737baa6209f42f2c5497a532fcdbb8efe35c87709c8d64d85d5e95ede9b76d1b0c6104cf7de98446769a947e42ec3fde2e35162cd268ee889507c3cf428be1fcbd2c6cf3f8d4a935b647104447080bc4f853a69369900db852c2205f2787c8da22b13ac6e44fa490e5af6ea766586e8bcd96876a60033e81c1d4ef0d37692ca38a1536356c6a253fefa95be652c3c4d71813f6b0f8cafc9c4e49fe72d80f24e32bb75297c3ba9f9d6998f24a6fda4022f325275a811dfb30380d3e6d016ea381a36c037b6c363e32405e4b584384ef2b37ddbcf7430c7d8b726d8a9f1462f6bd3020ea8a9d55"}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7fff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x9}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x80}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfb}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}]}]}, 0x170}, 0x1, 0x0, 0x0, 0x4000000}, 0x8005)
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = fcntl$dupfd(r6, 0x0, r7)
ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000280)={r8, &(0x7f00000001c0)="ed03809a91e34c65040805d7712ab64d0c586253439a9cc9", &(0x7f0000000200)=""/105, 0x4}, 0x20)
r9 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
ioctl$VIDIOC_S_PRIORITY(r9, 0x40045644, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:09 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37})
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r4 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = socket$unix(0x1, 0x2, 0x0)
r6 = dup(r5)
r7 = dup(r6)
r8 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = fcntl$dupfd(r8, 0x0, r9)
ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r7})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f0000000080)=0x5)

01:29:09 executing program 4:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
splice(r0, &(0x7f00000000c0)=0xffffffff, 0xffffffffffffffff, &(0x7f0000000100)=0x800, 0x4, 0x9)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x356, 0x0, 0x0, 0x759, 0x4, 0x0, {}, {}, {0x0, 0x3}})

[ 2348.412705] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2348.412736] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2348.412764] CPU: 1 PID: 22098 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2348.412772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2348.412776] Call Trace:
[ 2348.412806]  dump_stack+0x1b2/0x283
[ 2348.412826]  warn_alloc.cold+0x96/0x1af
[ 2348.412840]  ? zone_watermark_ok_safe+0x250/0x250
[ 2348.412866]  ? wait_for_completion_io+0x10/0x10
[ 2348.412888]  __alloc_pages_nodemask+0x2129/0x2730
[ 2348.412924]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2348.412937]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2348.412965]  ? HARDIRQ_verbose+0x10/0x10
[ 2348.412976]  ? do_raw_spin_unlock+0x164/0x250
[ 2348.412993]  alloc_pages_current+0xe7/0x1e0
[ 2348.413009]  kvm_mmu_create+0xd1/0x1c0
[ 2348.413024]  kvm_arch_vcpu_init+0x282/0x890
[ 2348.413035]  ? alloc_pages_current+0xef/0x1e0
[ 2348.413049]  kvm_vcpu_init+0x26d/0x360
[ 2348.413064]  vmx_create_vcpu+0xf5/0x2950
[ 2348.413082]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2348.413094]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2348.413111]  ? alloc_loaded_vmcs+0x240/0x240
[ 2348.413133]  kvm_vm_ioctl+0x4ae/0x1430
[ 2348.413147]  ? __lock_acquire+0x655/0x42a0
[ 2348.413158]  ? kvm_vcpu_release+0xa0/0xa0
[ 2348.413170]  ? check_preemption_disabled+0x35/0x240
[ 2348.413184]  ? perf_trace_lock+0x109/0x4b0
[ 2348.413198]  ? check_preemption_disabled+0x35/0x240
[ 2348.413213]  ? perf_trace_lock+0x109/0x4b0
[ 2348.413229]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2348.413242]  ? HARDIRQ_verbose+0x10/0x10
[ 2348.413254]  ? kvm_vcpu_release+0xa0/0xa0
[ 2348.413271]  do_vfs_ioctl+0x75a/0xfe0
[ 2348.413288]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2348.413303]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2348.413337]  ? security_file_ioctl+0x76/0xb0
[ 2348.413350]  ? security_file_ioctl+0x83/0xb0
[ 2348.413370]  SyS_ioctl+0x7f/0xb0
[ 2348.413381]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2348.413398]  do_syscall_64+0x1d5/0x640
[ 2348.413420]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2348.413430] RIP: 0033:0x45cb09
[ 2348.413437] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2348.413450] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2348.413457] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2348.413463] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2348.413470] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2348.413477] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2348.413504] warn_alloc_show_mem: 2 callbacks suppressed
[ 2348.413509] Mem-Info:
[ 2348.413538] active_anon:427991 inactive_anon:21639 isolated_anon:0
[ 2348.413538]  active_file:3406 inactive_file:25718 isolated_file:0
[ 2348.413538]  unevictable:13607 dirty:98 writeback:0 unstable:0
[ 2348.413538]  slab_reclaimable:20193 slab_unreclaimable:317934
[ 2348.413538]  mapped:68312 shmem:24729 pagetables:27501 bounce:0
[ 2348.413538]  free:654362 free_pcp:510 free_cma:0
[ 2348.413577] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2348.413608] Node 1 active_anon:191120kB inactive_anon:65484kB active_file:13616kB inactive_file:102872kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64332kB dirty:388kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2348.416306] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2348.416333] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2348.416360] Node 0 DMA32 free:34092kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1404kB local_pcp:688kB free_cma:0kB
[ 2348.416383] lowmem_reserve[]: 0 0 0 0 0
[ 2348.416406] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2348.416427] lowmem_reserve[]: 0 0 0 0 0
[ 2348.416450] Node 1 Normal free:2573416kB min:53592kB low:66988kB high:80384kB active_anon:191120kB inactive_anon:65484kB active_file:13616kB inactive_file:102872kB unevictable:54428kB writepending:388kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28896kB pagetables:74700kB bounce:0kB free_pcp:620kB local_pcp:460kB free_cma:0kB
[ 2348.416474] lowmem_reserve[]: 0 0 0 0 0
[ 2348.416499] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2348.416614] Node 0 DMA32: 2869*4kB (UMEH) 1029*8kB (UMEH) 453*16kB (UME) 147*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34092kB
[ 2348.416705] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2348.416783] Node 1 Normal: 1286*4kB (UME) 463*8kB (UME) 311*16kB (UME) 88*32kB (UME) 11*64kB (UME) 10*128kB (UE) 2*256kB (UE) 1*512kB (E) 6*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2573504kB
[ 2348.416902] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2348.416910] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2348.416920] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2348.416929] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2348.416934] 48111 total pagecache pages
[ 2348.416949] 0 pages in swap cache
[ 2348.416959] Swap cache stats: add 0, delete 0, find 0/0
[ 2348.416965] Free swap  = 0kB
[ 2348.416971] Total swap = 0kB
[ 2348.416980] 1965979 pages RAM
[ 2348.416986] 0 pages HighMem/MovableOnly
[ 2348.416992] 338456 pages reserved
[ 2348.416996] 0 pages cma reserved
01:29:10 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0xe1421d2f3466f67c, 0x0)
r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:29:10 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
r11 = fcntl$dupfd(r7, 0x406, r10)
ioctl$PERF_EVENT_IOC_ENABLE(r11, 0x8912, 0x400200)
ioctl$sock_TIOCOUTQ(r11, 0x5411, &(0x7f0000000100))
r12 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000180), &(0x7f00000001c0)=0x2)
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:29:10 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
ioctl$KVM_GET_PIT2(0xffffffffffffffff, 0x8070ae9f, &(0x7f00000000c0))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0}, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:10 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r1, 0x0, r2)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$dupfd(r3, 0x0, r4)
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r4, &(0x7f00000000c0)={0xb0000002})

01:29:10 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r0, 0x0, r2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x20000000003ab, 0xffffffff}, 0x0, 0xfffffffffffffffe, r2, 0x0)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x200002, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
ioctl$vim2m_VIDIOC_TRY_FMT(r1, 0xc0d05640, &(0x7f00000001c0)={0x3, @vbi={0x0, 0x7, 0x2, 0x41564e57, [0x272, 0x1000], [0xff, 0x5], 0x108}})

01:29:10 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r5 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000a80)=@filter={'filter\x00', 0xe, 0x4, 0x13a8, 0x0, 0x0, 0x1208, 0x108, 0x108, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'rose0\x00', 'netdevsim0\x00'}, 0x0, 0x10d8, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030, 'cgroup\x00'}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1408)
r7 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000016c0)=<r8=>0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="340500004b81aee12a8a5d9cb054572009d1b4a816442a04b8ff6d84d1b1e658e8932ab268ca6bfd278e0e8d1c520a3421ecbb655405444491a1ab15dadc23f5dd7cda133cdeda33d54d8878e0e30f50dfd95c78fcb1465b07000000f40c890600ae1de149b9d3ec23c6fd1050da5cb8c02e5ca34717f300cbb22cae340ce633", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r5, @ANYRES32=r6, @ANYRES32=r7, @ANYBLOB="72c5c78defd2fd8cdee083ee4f3b15befb5b55a89c61", @ANYRES32=r8, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="0000b6cb7e78093b9c73000048633d53f983a1322f7141d36638ce19a1a86b882de6c5aa1bc177dd7295427c755199592eff96b59cf81128dc35e74f00000000000000"], 0x58, 0x4}, 0x4040000)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f00000001c0)={0x0, 0x1, {<r9=>r8}, {0xee01}, 0x5, 0x5})
perf_event_open(&(0x7f0000000140)={0x4, 0x70, 0x80, 0x4, 0xff, 0x4f, 0x0, 0x758a, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x4a1, 0x2, @perf_bp={&(0x7f0000000100), 0x1}, 0x4800, 0x1, 0x2, 0x3, 0x4, 0x20, 0x7}, r9, 0x6, 0xffffffffffffffff, 0x8)
r10 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
r12 = fcntl$dupfd(r10, 0x0, r11)
ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

[ 2349.372256] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2349.372287] syz-executor.1 cpuset=/ mems_allowed=0-1
[ 2349.372316] CPU: 0 PID: 22134 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0
[ 2349.372324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2349.372329] Call Trace:
[ 2349.372350]  dump_stack+0x1b2/0x283
[ 2349.372370]  warn_alloc.cold+0x96/0x1af
[ 2349.372385]  ? zone_watermark_ok_safe+0x250/0x250
[ 2349.372420]  ? wait_for_completion_io+0x10/0x10
[ 2349.372443]  __alloc_pages_nodemask+0x2129/0x2730
[ 2349.372481]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2349.372495]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2349.372526]  ? HARDIRQ_verbose+0x10/0x10
[ 2349.372542]  ? do_raw_spin_unlock+0x164/0x250
[ 2349.372562]  alloc_pages_current+0xe7/0x1e0
[ 2349.372588]  kvm_mmu_create+0xd1/0x1c0
[ 2349.372607]  kvm_arch_vcpu_init+0x282/0x890
[ 2349.372623]  ? alloc_pages_current+0xef/0x1e0
[ 2349.372645]  kvm_vcpu_init+0x26d/0x360
[ 2349.372665]  vmx_create_vcpu+0xf5/0x2950
[ 2349.372684]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2349.372698]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2349.372716]  ? alloc_loaded_vmcs+0x240/0x240
[ 2349.372739]  kvm_vm_ioctl+0x4ae/0x1430
[ 2349.372756]  ? __lock_acquire+0x655/0x42a0
[ 2349.372771]  ? kvm_vcpu_release+0xa0/0xa0
[ 2349.372791]  ? check_preemption_disabled+0x35/0x240
[ 2349.372810]  ? perf_trace_lock+0x109/0x4b0
[ 2349.372827]  ? check_preemption_disabled+0x35/0x240
[ 2349.372844]  ? perf_trace_lock+0x109/0x4b0
[ 2349.372862]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2349.372878]  ? HARDIRQ_verbose+0x10/0x10
[ 2349.372890]  ? kvm_vcpu_release+0xa0/0xa0
[ 2349.372905]  do_vfs_ioctl+0x75a/0xfe0
[ 2349.372923]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2349.372938]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2349.372975]  ? security_file_ioctl+0x76/0xb0
[ 2349.372986]  ? security_file_ioctl+0x83/0xb0
[ 2349.373001]  SyS_ioctl+0x7f/0xb0
[ 2349.373011]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2349.373027]  do_syscall_64+0x1d5/0x640
[ 2349.373048]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2349.373058] RIP: 0033:0x45cb09
[ 2349.373065] RSP: 002b:00007f8c8a7f3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2349.373078] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2349.373085] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 000000000000000f
01:29:10 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x550, 0x78, 0x0, 0x0, 0x4, 0x80, 0x4, 0x0, {0x1}, {0x0, 0xfffffffd}, {}, {}, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r1, 0x0, r2)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r2, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="380000001114000226bd7000fcdbdf2508004a000100000018003e0005000080080003000100000008004a000100000008004b0000000000"], 0x38}, 0x1, 0x0, 0x0, 0x24040080}, 0x8c0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, r0)

01:29:10 executing program 0:
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
write(0xffffffffffffffff, &(0x7f00000001c0)="0ae3a1d3df06d8a71c101c3c597a00eb26ecdfbc84d77478b88ab6ab98cc90bf05abe050808b560e1a909f0f925fcb59b384bbfcfec2c20d11db9c2424c8bef21ddee89b24bdaded067efdef430783569d059b6af33a58335fe4404c86", 0x5d)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
recvmmsg(0xffffffffffffffff, &(0x7f00000074c0)=[{{&(0x7f00000002c0)=@x25, 0x80, &(0x7f0000001880)=[{&(0x7f0000004640)=""/86, 0x56}, {&(0x7f00000003c0)=""/125, 0x7d}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000001440)}, {&(0x7f0000001480)=""/249, 0xf9}, {&(0x7f0000007840)=""/212, 0xd4}, {&(0x7f0000001680)=""/217, 0xd9}, {&(0x7f0000001780)=""/191, 0xbf}, {&(0x7f0000001840)=""/45, 0x2d}], 0x9, &(0x7f0000001940)=""/179, 0xb3}, 0x9}, {{&(0x7f0000001a00)=@ethernet, 0x80, &(0x7f0000002040)=[{&(0x7f0000001a80)=""/160, 0xa0}, {&(0x7f0000001b40)=""/231, 0xe7}, {&(0x7f0000001c40)=""/215, 0xd7}, {&(0x7f0000001d40)=""/169, 0xa9}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/237, 0xed}, {&(0x7f0000001f40)=""/204, 0xcc}], 0x7}, 0x7}, {{&(0x7f00000020c0)=@rc={0x1f, @none}, 0x80, &(0x7f00000022c0)=[{&(0x7f0000002140)=""/29, 0x1d}, {&(0x7f0000002180)=""/193, 0xc1}, {&(0x7f0000000100)=""/10, 0xa}], 0x3, &(0x7f0000002300)=""/43, 0x2b}, 0x6}, {{&(0x7f0000002340)=@in={0x2, 0x0, @multicast1}, 0x80, &(0x7f0000004740)=[{&(0x7f00000023c0)=""/4096, 0x1000}, {&(0x7f0000007940)=""/4098, 0x1002}, {&(0x7f00000043c0)=""/66, 0x42}, {&(0x7f0000004440)=""/89, 0x59}, {&(0x7f00000044c0)=""/76, 0x4c}, {&(0x7f0000004540)=""/237, 0xed}, {&(0x7f0000005c00)=""/128, 0x80}, {&(0x7f0000004700)=""/43, 0x2b}], 0x8, &(0x7f00000047c0)=""/119, 0x77}, 0x7fff}, {{0x0, 0x0, &(0x7f0000004ac0)=[{&(0x7f0000004840)=""/254, 0xfe}, {&(0x7f0000004940)=""/228, 0xe4}, {&(0x7f0000004a40)=""/38, 0x26}, {&(0x7f0000004a80)=""/7, 0x7}], 0x4}, 0x3}, {{&(0x7f0000004b00)=@phonet, 0x80, &(0x7f0000005bc0)=[{&(0x7f0000004b80)=""/19, 0x13}, {&(0x7f0000004bc0)=""/4096, 0x1000}], 0x2, &(0x7f0000007740)=""/247, 0xf7}, 0x8}, {{&(0x7f0000005d00)=@can, 0x80, &(0x7f0000005e00)=[{&(0x7f0000005d80)=""/63, 0x3f}, {&(0x7f0000005dc0)=""/53, 0x35}], 0x2, &(0x7f0000005e40)=""/4, 0x4}, 0xfff}, {{&(0x7f0000005e80)=@can, 0x80, &(0x7f0000006140)=[{&(0x7f0000005f00)=""/157, 0x9d}, {&(0x7f0000005fc0)=""/227, 0xe3}, {&(0x7f00000060c0)=""/92, 0x5c}], 0x3, &(0x7f0000006180)=""/18, 0x12}, 0x400}, {{&(0x7f00000061c0)=@ipx, 0x80, &(0x7f00000073c0)=[{&(0x7f0000006240)=""/145, 0x91}, {&(0x7f0000006300)=""/4096, 0x1000}, {&(0x7f0000007300)=""/140, 0x8c}], 0x3, &(0x7f0000007400)=""/176, 0xb0}, 0x6}], 0x9, 0x1, &(0x7f0000007700)={0x77359400})
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000280)={0x6, 0x4, 0x2})
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r7)
socket$unix(0x1, 0x2, 0x0)
getsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, &(0x7f0000000140), &(0x7f00000000c0)=0xffffffffffffffe6)
r8 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r8, 0x4601, &(0x7f0000000000)={0x800, 0x0, 0x0, 0x0, 0x0, 0x87c, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1})

[ 2349.373092] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2349.373098] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2349.373105] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f8c8a7f46d4
[ 2349.524484] ip6_tables: ip6tables: counters copy to user failed while replacing table
01:29:10 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ion\x00', 0x1c9c03, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
chmod(&(0x7f0000000140)='./file0\x00', 0x80)
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:29:10 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$RTC_WKALM_SET(r2, 0x4028700f, &(0x7f0000000000)={0x1, 0x1, {0x25, 0x1f, 0x1, 0x14, 0xb, 0x4, 0x4, 0x94, 0x1}})

01:29:10 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000100))
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:29:11 executing program 2:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/adsp1\x00', 0xd03c2, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000100)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:11 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r3, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x98, 0x2, 0x8, 0x101, 0x0, 0x0, {0xc, 0x0, 0x1}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x6}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_DATA={0x3c, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x81}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x1569}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x72a8964}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x16}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}]}, 0x98}, 0x1, 0x0, 0x0, 0x20000040}, 0x24000045)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
sendmsg$nl_route(r3, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=@newlink={0x54, 0x10, 0x8, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x8040, 0x6020}, [@IFLA_GROUP={0x8, 0x1b, 0x3f}, @IFLA_PORT_SELF={0x2c, 0x19, 0x0, 0x1, [@IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "8292e8b0c4a66c4223df983d8e518557"}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "286a152ed088faa331196486513e7851"}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4008080}, 0x800)

01:29:11 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})
r1 = openat$full(0xffffffffffffff9c, 0x0, 0x2, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, 0x0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r1, &(0x7f0000000600)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000005c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="68010002ee89d687abf39b74a988572152f326f3c966a5d6fb07a1cc904facceae9c1aaff6826a98522e230a38c58b88e4e13404f4b258dc58871c3bf45073d4dac39ad1d552f445ddb77de36e8d2dfefd88d1413dbc05398593397461dca0011ac02e1e8036797837bc8a4bcf7907c8ff5e6a4d9d19eeeed2846191bb8bbaaed7d0f2b77856fc0fda9c296c202373695d96a7b0c3c82a3691fcf08c294b9c86a0e1aa04abbf7ddee0a64de0c4da7e763d6b23143d3092ab4a1d9811e3", @ANYRES16=0x0, @ANYRES16, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="3400018014000200697036746e6c300000000000000000001400020065727370616e3000000000000000000008000300020000000c0001800800030002000000180001801400020063616966300000000000000000000000680001800800030003000000140002006d616376746170300000000000000000080003008b012fa908000100", @ANYRES32=r2, @ANYRESHEX], 0x168}}, 0x20000081)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$dupfd(r3, 0x0, r4)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x12, 0x9, 0x3, 0x76b8, 0x5d5, 0xffffffffffffffff, 0x80000001, [], r2, r4, 0x3, 0x1, 0x5}, 0x40)

01:29:11 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:11 executing program 0:
r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$search(0xa, r0, &(0x7f0000000300)='keyring\x00', &(0x7f0000000340)={'syz', 0x0}, r0)
keyctl$describe(0x6, r0, &(0x7f00000001c0)=""/129, 0x81)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
r6 = dup2(r1, r5)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r6, 0x6, 0x14, &(0x7f00000000c0)=0x2, 0x4)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {0x0, 0x0, 0x80000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x3})

01:29:11 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {0x0, 0x7}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x2, 0x0, 0x0, 0x3})
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r1, 0x0, r2)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4, 0x0, @loopback}, r3}}, 0x30)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000640)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x444d, @mcast1, 0x6e75}, {0xa, 0x4e22, 0x0, @ipv4={[], [], @loopback}, 0xfffffe01}, r3, 0x1000}}, 0x48)
write$RDMA_USER_CM_CMD_NOTIFY(r2, &(0x7f00000000c0)={0xf, 0x8, 0xfa00, {r3, 0xa}}, 0x10)

01:29:12 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0)
write$vhost_msg_v2(r0, &(0x7f00000002c0)={0x2, 0x0, {&(0x7f0000000100)=""/24, 0x18, &(0x7f00000001c0)=""/207, 0x0, 0x4}}, 0x48)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$sock_inet_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000340))
ioctl$TIOCL_GETSHIFTSTATE(0xffffffffffffffff, 0x541c, &(0x7f0000000480)={0x6, 0xe8})
r5 = socket$unix(0x1, 0x2, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r0, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x1c, 0x2, 0x8, 0x801, 0x0, 0x0, {0x7, 0x0, 0x5}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8914}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2405c0c5}, 0x10)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
mount(&(0x7f00000004c0)=ANY=[@ANYBLOB='RL/d'], &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='virtiofs\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$SNDRV_TIMER_IOCTL_STOP(r7, 0x54a1)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {0x4}, {0x0, 0x8001}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200})
pipe(&(0x7f0000000140)={<r8=>0xffffffffffffffff})
ioctl$MON_IOCT_RING_SIZE(r8, 0x9204, 0x10fafa)

01:29:12 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r1, 0x0, r2)
bind$unix(r2, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e)

01:29:12 executing program 0:
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r2, 0xc0045540, &(0x7f0000000280)=0x3)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
r7 = accept4$netrom(r6, &(0x7f00000000c0)={{0x3, @default}, [@null, @netrom, @netrom, @rose, @null, @bcast, @default, @rose]}, &(0x7f0000000140)=0x48, 0x80000)
sendto$netrom(r7, &(0x7f0000000440)="625e90800cf51ccb118e0fb4134adc36d41d5fbc15c11800dc489c962ef5536ab2b6af8572cd5ffbac4c8ade386641134675be66da5cbd437c024dada3894ce0cb175602177e9c96d79ce0ec7de2aaff7f7b5475e839f9c072fe2d58fba572029b31639e015ea3b36a5fb6720d190f5239acd1c0a15dd16bfde6e3539e5b5d1b4f4bf11782123912274441a6db906092020e613e5b9d0552798f897aa6e1d5c39606747e801e8362b770e090a0fc7fa0eb7382ef4a6bfb00000000000000000000000000b15af01c90ab252ccbcfc2361ac93e53e75dd751e6260be6f8f4e3c8eec16258274280469f3752175d2c556d0e5ef0a440a22e108f1d5b0ef416db5c16b50475d63d93555309eaf8a6fc776476317d2ac4d353aa7563aeaa5dbcd5fb33734b3710b7c3e71387f4d1f82c8d7cc32ff8d3a4910a08ad07cf9df5cfda100ed7d3be", 0x144, 0x4050, &(0x7f0000000200)={{0x3, @default, 0x7}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @null]}, 0x48)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
getsockopt$CAN_RAW_JOIN_FILTERS(r1, 0x65, 0x6, &(0x7f00000002c0), &(0x7f0000000300)=0x4)

01:29:12 executing program 4:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r1, 0x0, r2)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f0000000100)={r5, 0x6}, 0x10)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f00000000c0)={r5, 0x7}, &(0x7f0000000100)=0x8)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x800, 0x0, 0x280, 0x0, 0x0, 0x8, 0x2, {0x4f, 0x3, 0x10000000}, {0x9, 0xfffffffe}, {0x8000000}, {0xfffffffc}, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0xcd5, 0x0, 0x0, 0x0, 0x1, 0x1000000, 0x8, 0x100})

01:29:12 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:12 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
r1 = syz_open_dev$tty1(0xc, 0x4, 0x3)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100))
ioctl$TCSETXW(r1, 0x5435, &(0x7f00000000c0)={0x101, 0x3, [0x9, 0x57b2, 0x52c7, 0x2, 0x4], 0x4})

01:29:12 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x22740, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:13 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:13 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0xbee3, 0x141800)
ioctl$BLKSECTGET(r0, 0x1267, &(0x7f0000000100))
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:13 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f00000000c0)={0x0, 0x280, 0x0, 0x0, 0x0, 0x1, 0x4, 0x0, {}, {}, {}, {0x2}, 0x0, 0x100, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2})

01:29:13 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {0x0, 0x8001}, {}, {0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c, 0x0, 0x0, 0xa})

01:29:13 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$dupfd(r0, 0x0, r1)
syz_open_dev$mouse(&(0x7f00000001c0)='/dev/input/mouse#\x00', 0x28a, 0x4201)
getsockopt$IP6T_SO_GET_INFO(r1, 0x29, 0x40, &(0x7f00000000c0)={'security\x00'}, &(0x7f0000000140)=0x54)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:13 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$search(0xa, r1, &(0x7f0000000300)='keyring\x00', &(0x7f0000000340)={'syz', 0x0}, r1)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
fsetxattr$trusted_overlay_redirect(r2, &(0x7f00000000c0)='trusted.overlay.redirect\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$dupfd(r4, 0x0, r5)
ioctl$EVIOCGSND(r5, 0x8040451a, &(0x7f0000000380)=""/4096)
r6 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$search(0xa, r6, &(0x7f0000000300)='keyring\x00', &(0x7f0000000340)={'syz', 0x0}, r6)
keyctl$link(0x8, r1, r6)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:13 executing program 4:
perf_event_open(&(0x7f000001d000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = openat(r3, &(0x7f0000000000)='./file0\x00', 0x10000, 0x22)
getsockopt$bt_sco_SCO_CONNINFO(r4, 0x11, 0x2, &(0x7f00000001c0)=""/4096, &(0x7f0000000040)=0x1000)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f00000000c0)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2})

01:29:13 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r0, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r3, 0x8983, &(0x7f00000000c0)={0x1, 'veth0_to_bridge\x00', {}, 0x8001})
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$sock_ifreq(r1, 0x8913, &(0x7f0000000100)={'\x00', @ifru_map={0x2, 0x180000000, 0xffc0, 0xc5, 0xf0, 0x7}})
ioctl$FBIOPUT_VSCREENINFO(r4, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:14 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x81, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$dupfd(r0, 0x0, r1)
ioctl$BLKZEROOUT(r1, 0x127f, &(0x7f00000000c0)={0x800, 0x100000000})
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x1, 0x57f})

01:29:14 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0xffffffffffffff08, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7c, 0x581, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, @perf_config_ext={0x80, 0x8}}, 0x0, 0xffffffffffeffffe, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$dupfd(r4, 0x0, r5)
getsockopt$inet_mreqn(r5, 0x0, 0x3, &(0x7f0000000240)={@loopback, @dev, <r6=>0x0}, &(0x7f0000000280)=0xc)
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, 0x0, 0x800, 0x70bd2c, 0x25dfdbfe, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008000}, 0x4)
ioctl$KDADDIO(r3, 0x4b34, 0x7f)
getgid()
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = fcntl$dupfd(r7, 0x0, r8)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
ioctl$RNDCLEARPOOL(r9, 0x5206, &(0x7f0000000040)=0x4)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, {}, {0x4, 0xfffffffa}, {0x401}, {0x1, 0x0, 0xfffffffe}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff})

01:29:14 executing program 4:
r0 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r1 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000a80)=@filter={'filter\x00', 0xe, 0x4, 0x13a8, 0x0, 0x0, 0x1208, 0x108, 0x108, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'rose0\x00', 'netdevsim0\x00'}, 0x0, 0x10d8, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030, 'cgroup\x00'}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1408)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000016c0)=<r4=>0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="340500004b81aee12a8a5d9cb054572009d1b4a816442a04b8ff6d84d1b1e658e8932ab268ca6bfd278e0e8d1c520a3421ecbb655405444491a1ab15dadc23f5dd7cda133cdeda33d54d8878e0e30f50dfd95c78fcb1465b07000000f40c890600ae1de149b9d3ec23c6fd1050da5cb8c02e5ca34717f300cbb22cae340ce633", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB, @ANYRES32=r4, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="0000b6cb7e78093b9c73000048633d53f983a1322f7141d36638ce19a1a86b882de6c5aa1bc177dd7295427c755199592eff96b59cf81128dc35e74f00000000000000"], 0x58, 0x4}, 0x4040000)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r5, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2353.775733] ip6_tables: ip6tables: counters copy to user failed while replacing table
01:29:14 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x400682, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7})
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
recvmmsg(r7, &(0x7f0000004180)=[{{&(0x7f0000000300)=@xdp, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000380)=""/84, 0x54}, {&(0x7f0000000400)=""/147, 0x93}], 0x2, &(0x7f0000000500)=""/90, 0x5a}, 0xd89}, {{&(0x7f0000000580)=@caif=@rfm, 0x80, &(0x7f0000000800)=[{&(0x7f0000000600)=""/143, 0x8f}, {&(0x7f00000006c0)=""/173, 0xad}, {&(0x7f0000000780)=""/68, 0x44}], 0x3, &(0x7f0000000840)=""/12, 0xc}, 0x1}, {{&(0x7f0000000880)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000900)=""/219, 0xdb}, {&(0x7f0000000a00)=""/70, 0x46}], 0x2, &(0x7f0000000ac0)=""/200, 0xc8}, 0x5}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000bc0)=""/48, 0x30}, {&(0x7f0000000c00)=""/102, 0x66}], 0x2, &(0x7f0000000cc0)=""/247, 0xf7}, 0x58b7}, {{0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000dc0)=""/78, 0x4e}, {&(0x7f0000000e40)=""/155, 0x9b}, {&(0x7f0000000f00)=""/4096, 0x1000}, {&(0x7f0000001f00)=""/230, 0xe6}], 0x4, &(0x7f0000002040)=""/4096, 0x1000}}, {{&(0x7f0000003040)=@nl=@unspec, 0x80, &(0x7f0000004100)=[{&(0x7f00000030c0)=""/4096, 0x1000}, {&(0x7f00000040c0)=""/52, 0x34}], 0x2, &(0x7f0000004140)=""/40, 0x28}, 0xffffff65}], 0x6, 0x2, &(0x7f0000004300))
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10)
r8 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r8, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r9=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000100)={r9, 0x6}, 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r3, 0x84, 0x70, &(0x7f00000001c0)={r9, @in={{0x2, 0x4e21, @loopback}}, [0x1f, 0x6, 0x10001, 0x7, 0xf600000000000000, 0x8000, 0x5, 0x4, 0x2c6d, 0x3f, 0x80000001, 0xffffffff, 0x401, 0xe1e, 0xffffffff]}, &(0x7f00000002c0)=0x100)

01:29:14 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(0xffffffffffffffff, 0xc01064c7, &(0x7f0000000440)={0x8, 0x0, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, <r6=>0x0, 0x0, 0x0, 0x0]})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000480)={&(0x7f0000000200)=[0x6, 0x1f, 0x8df], 0x3, 0x81000, r6, r5})
r7 = socket$unix(0x1, 0x1, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$dupfd(r7, 0x0, r8)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r4, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000000)=[0x1f, 0x7, 0x4210e522, 0x0], 0x4, 0x0, r6, r8})

[ 2354.071854] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2354.071884] syz-executor.5 cpuset=/ mems_allowed=0-1
01:29:15 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_GET_NR_MMU_PAGES(r3, 0xae45, 0x621bd702)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000016c0)=<r4=>0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="340500004b81aee12a8a5d9cb054572009d1b4a816442a04b8ff6d84d1b1e658e8932ab268ca6bfd278e0e8d1c520a3421ecbb655405444491a1ab15dadc23f5dd7cda133cdeda33d54d8878e0e30f50dfd95c78fcb1465b07000000f40c890600ae1de149b9d3ec23c6fd1050da5cb8c02e5ca34717f300cbb22cae340ce633", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB, @ANYRES32=r4, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="0000b6cb7e78093b9c73000048633d53f983a1322f7141d36638ce19a1a86b882de6c5aa1bc177dd7295427c755199592eff96b59cf81128dc35e74f00000000000000"], 0x58, 0x4}, 0x4040000)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = fcntl$dupfd(r7, 0x0, r8)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
r10 = openat$cgroup_ro(r9, &(0x7f0000000100)='memory.current\x00', 0x0, 0x0)
kcmp(0x0, r4, 0x6, r6, r10)

01:29:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2354.071911] CPU: 0 PID: 22264 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2354.071918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2354.071923] Call Trace:
[ 2354.071943]  dump_stack+0x1b2/0x283
[ 2354.071961]  warn_alloc.cold+0x96/0x1af
[ 2354.071973]  ? zone_watermark_ok_safe+0x250/0x250
[ 2354.071999]  ? wait_for_completion_io+0x10/0x10
[ 2354.072021]  __alloc_pages_nodemask+0x2129/0x2730
[ 2354.072066]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.072085]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.072118]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.072135]  ? do_raw_spin_unlock+0x164/0x250
[ 2354.072157]  alloc_pages_current+0xe7/0x1e0
[ 2354.072176]  kvm_mmu_create+0xd1/0x1c0
[ 2354.072195]  kvm_arch_vcpu_init+0x282/0x890
[ 2354.072208]  ? alloc_pages_current+0xef/0x1e0
[ 2354.072226]  kvm_vcpu_init+0x26d/0x360
[ 2354.072242]  vmx_create_vcpu+0xf5/0x2950
[ 2354.072257]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2354.072268]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2354.072284]  ? alloc_loaded_vmcs+0x240/0x240
01:29:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = socket$bt_bnep(0x1f, 0x3, 0x4)
setsockopt$SO_BINDTODEVICE_wg(r2, 0x1, 0x19, &(0x7f0000000000)='wg0\x00', 0x4)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
sendto$l2tp6(r5, &(0x7f0000000100)="fdd0c19ff0a00937a40b2caa461883d90b9f9f12aec6ec3c72d8318019d16bda6677815b8ffe9bc2c97e9820b845991169d5e71439acf259b74b0357e58f2119a8380a61e086b3944c4581d9d4c58b737be9e6bc0036e2eb6459d97224b80a100acfc58d6e83b1af9e69c9538c5d284cf62276de562695d690850fd50e8752c092ddde1167e83615fda3f2db36d57fa8957c88a0b0354870d2a126343b770e84f85b113b76669726f0780b07", 0xac, 0x400001c, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000700)='devlink\x00')
sendmsg$DEVLINK_CMD_GET(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)=ANY=[@ANYBLOB="1400007d", @ANYRES16=r7, @ANYBLOB="dd0700000000000000000b000000"], 0x14}}, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)={0x1c8, r7, 0x400, 0x70bd29, 0x25dfdbfd, {}, [{{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x2e8}, {0x6, 0x11, 0x2}, {0x8, 0x15, 0x8}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x1}, {0x6, 0x11, 0x8000}, {0x8, 0x15, 0x10000}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0xc7}, {0x8, 0x15, 0xb80}}, {{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x10000}, {0x6, 0x11, 0x84}, {0x8}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8}}, {0x8, 0xb, 0xfffffffe}, {0x6, 0x11, 0x7ff}, {0x8}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8, 0x3, 0x4}}, {0x8, 0xb, 0x7457}, {0x6, 0x11, 0x80}, {0x8, 0x15, 0x5}}, {{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0x8}}, {0x8, 0xb, 0x80000001}, {0x6, 0x11, 0x9}, {0x8, 0x15, 0x9}}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x20000044}, 0x80)

[ 2354.072303]  kvm_vm_ioctl+0x4ae/0x1430
[ 2354.072317]  ? __lock_acquire+0x655/0x42a0
[ 2354.072329]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.072340]  ? check_preemption_disabled+0x35/0x240
[ 2354.072355]  ? perf_trace_lock+0x109/0x4b0
[ 2354.072371]  ? check_preemption_disabled+0x35/0x240
[ 2354.072383]  ? perf_trace_lock+0x109/0x4b0
[ 2354.072417]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2354.072431]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.072444]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.072456]  do_vfs_ioctl+0x75a/0xfe0
[ 2354.072471]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2354.072485]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2354.072508]  ? security_file_ioctl+0x76/0xb0
01:29:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffc)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2354.072517]  ? security_file_ioctl+0x83/0xb0
[ 2354.072529]  SyS_ioctl+0x7f/0xb0
[ 2354.072538]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2354.072551]  do_syscall_64+0x1d5/0x640
[ 2354.072570]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2354.072580] RIP: 0033:0x45cb09
[ 2354.072587] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2354.072600] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2354.072607] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2354.072614] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2354.072621] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2354.072628] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2354.078854] warn_alloc_show_mem: 1 callbacks suppressed
[ 2354.078859] Mem-Info:
[ 2354.078889] active_anon:427994 inactive_anon:21639 isolated_anon:0
[ 2354.078889]  active_file:3406 inactive_file:25741 isolated_file:0
[ 2354.078889]  unevictable:13607 dirty:190 writeback:0 unstable:0
[ 2354.078889]  slab_reclaimable:20263 slab_unreclaimable:316926
[ 2354.078889]  mapped:68474 shmem:24729 pagetables:27442 bounce:0
[ 2354.078889]  free:655310 free_pcp:504 free_cma:0
[ 2354.078918] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2354.078940] Node 1 active_anon:191132kB inactive_anon:65484kB active_file:13616kB inactive_file:102964kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64980kB dirty:756kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
01:29:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = fcntl$dupfd(r7, 0x0, r8)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
r10 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
r12 = fcntl$dupfd(r10, 0x0, r11)
ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2354.078945] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2354.078970] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2354.078997] Node 0 DMA32 free:34076kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1412kB local_pcp:720kB free_cma:0kB
[ 2354.079022] lowmem_reserve[]: 0 0 0 0 0
[ 2354.079048] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
01:29:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0xc6a599546f6fa509, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2354.079071] lowmem_reserve[]: 0 0 0 0 0
[ 2354.079098] Node 1 Normal free:2576816kB min:53592kB low:66988kB high:80384kB active_anon:191132kB inactive_anon:65484kB active_file:13616kB inactive_file:102964kB unevictable:54428kB writepending:756kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28992kB pagetables:74464kB bounce:0kB free_pcp:604kB local_pcp:308kB free_cma:0kB
[ 2354.079124] lowmem_reserve[]: 0 0 0 0 0
[ 2354.079150] Node 0 DMA: 1*4kB (U) 5*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10348kB
[ 2354.082021] Node 0 DMA32: 2869*4kB (UMEH) 1027*8kB (UME) 453*16kB (UME) 147*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34076kB
[ 2354.082108] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2354.082177] Node 1 Normal: 1092*4kB (UE) 498*8kB (UME) 342*16kB (UME) 191*32kB (UME) 16*64kB (UME) 13*128kB (UE) 1*256kB (E) 2*512kB (UE) 5*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2576736kB
01:29:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080)='batadv\x00')
sendmsg$BATADV_CMD_GET_MESH(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
sendmsg$BATADV_CMD_TP_METER(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)={0x14, r5, 0x7, 0x0, 0x0, {0x2, 0x3}}, 0x14}}, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="7b8a03d80e92b0e5c41e11e09ca0", @ANYRES16=r5, @ANYBLOB="100026bd7000fbdbdf250800000005003300000000000600280000000000050037000000000005002d000100000008003b000080000008003900000001000a000900bbbbbbbbbbbb0000"], 0x50}, 0x1, 0x0, 0x0, 0x8885}, 0x44001)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x2c, r5, 0x20, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x3ff}]}, 0x2c}}, 0x800)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r5, 0x8, 0x5, 0x25dfdbff, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x9}]}, 0x1c}}, 0x20008041)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2354.082304] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2354.082313] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2354.082322] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2354.082332] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2354.082337] 48134 total pagecache pages
[ 2354.082351] 0 pages in swap cache
[ 2354.082358] Swap cache stats: add 0, delete 0, find 0/0
[ 2354.082363] Free swap  = 0kB
[ 2354.082368] Total swap = 0kB
[ 2354.082376] 1965979 pages RAM
[ 2354.082381] 0 pages HighMem/MovableOnly
[ 2354.082385] 338456 pages reserved
[ 2354.082414] 0 pages cma reserved
[ 2354.304769] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2354.304798] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2354.304823] CPU: 1 PID: 22281 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2354.304831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2354.304836] Call Trace:
[ 2354.304866]  dump_stack+0x1b2/0x283
[ 2354.304887]  warn_alloc.cold+0x96/0x1af
[ 2354.304910]  ? zone_watermark_ok_safe+0x250/0x250
01:29:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000180)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r4, 0x84, 0x16, &(0x7f0000000000), 0x4)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
write(r4, &(0x7f0000000040)="251ad327ba4769d9c4e92cbb7edf9b58273191846d69dc6573e9af0ce6f3a2d5a688f678d18f91c91fda8a6de6e2deb30195e458f6747fd05bd899b936299739163e5445fd1cdf1c3c57d123563af952240a7f264a300bc44c8a4c52dd21e85fac79f2bc7e62ad79b934ea0c194d554bcdf5555050e14671e9f7da9778c777edbcb513d32646fc34ccc23b78fca9f02efd2a5a5889879fc1dbf15216d90c333ba50845e34c951f27b061182af95044815b8fe6a2bf3f99aebb61de5257630eb7fb0c346cc657e730308f6e7821258991537afc5b404dd04368f59b5e736959f22912027289df41dcd21c6952eb572456a178", 0xf2)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2354.304939]  ? wait_for_completion_io+0x10/0x10
[ 2354.304966]  __alloc_pages_nodemask+0x2129/0x2730
[ 2354.305008]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.305027]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.305059]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.305076]  ? do_raw_spin_unlock+0x164/0x250
[ 2354.305100]  alloc_pages_current+0xe7/0x1e0
[ 2354.305123]  kvm_mmu_create+0xd1/0x1c0
[ 2354.305146]  kvm_arch_vcpu_init+0x282/0x890
[ 2354.305160]  ? alloc_pages_current+0xef/0x1e0
[ 2354.305179]  kvm_vcpu_init+0x26d/0x360
[ 2354.305199]  vmx_create_vcpu+0xf5/0x2950
[ 2354.305219]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2354.305232]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2354.305247]  ? alloc_loaded_vmcs+0x240/0x240
01:29:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x102, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(r2, 0xc008561c, &(0x7f0000000040)={0x7, 0xffffffff})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2354.305268]  kvm_vm_ioctl+0x4ae/0x1430
[ 2354.305281]  ? __lock_acquire+0x655/0x42a0
[ 2354.305294]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.305307]  ? check_preemption_disabled+0x35/0x240
[ 2354.305323]  ? perf_trace_lock+0x109/0x4b0
[ 2354.305338]  ? check_preemption_disabled+0x35/0x240
[ 2354.305353]  ? perf_trace_lock+0x109/0x4b0
[ 2354.305368]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2354.305379]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.305392]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.305406]  do_vfs_ioctl+0x75a/0xfe0
[ 2354.305421]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2354.305435]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2354.305460]  ? security_file_ioctl+0x76/0xb0
[ 2354.305472]  ? security_file_ioctl+0x83/0xb0
[ 2354.305485]  SyS_ioctl+0x7f/0xb0
[ 2354.305495]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2354.305510]  do_syscall_64+0x1d5/0x640
[ 2354.305529]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2354.305539] RIP: 0033:0x45cb09
[ 2354.305544] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2354.305558] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2354.305566] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2354.305574] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2354.305581] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2354.305588] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2354.353577] syz-executor.2: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2354.353606] syz-executor.2 cpuset=/ mems_allowed=0-1
[ 2354.353633] CPU: 0 PID: 22285 Comm: syz-executor.2 Not tainted 4.14.184-syzkaller #0
[ 2354.353641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2354.353646] Call Trace:
[ 2354.353665]  dump_stack+0x1b2/0x283
[ 2354.353686]  warn_alloc.cold+0x96/0x1af
[ 2354.353700]  ? zone_watermark_ok_safe+0x250/0x250
[ 2354.353726]  ? wait_for_completion_io+0x10/0x10
[ 2354.353748]  __alloc_pages_nodemask+0x2129/0x2730
[ 2354.353783]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.353796]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.353830]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.353850]  ? do_raw_spin_unlock+0x164/0x250
[ 2354.353873]  alloc_pages_current+0xe7/0x1e0
[ 2354.353900]  kvm_mmu_create+0xd1/0x1c0
[ 2354.353921]  kvm_arch_vcpu_init+0x282/0x890
[ 2354.353935]  ? alloc_pages_current+0xef/0x1e0
[ 2354.353952]  kvm_vcpu_init+0x26d/0x360
[ 2354.353969]  vmx_create_vcpu+0xf5/0x2950
[ 2354.353986]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2354.353999]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2354.354015]  ? alloc_loaded_vmcs+0x240/0x240
[ 2354.354034]  kvm_vm_ioctl+0x4ae/0x1430
[ 2354.354048]  ? __lock_acquire+0x655/0x42a0
[ 2354.354061]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.354073]  ? check_preemption_disabled+0x35/0x240
[ 2354.354088]  ? perf_trace_lock+0x109/0x4b0
[ 2354.354103]  ? check_preemption_disabled+0x35/0x240
[ 2354.354117]  ? perf_trace_lock+0x109/0x4b0
[ 2354.354133]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2354.354148]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.354162]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.354175]  do_vfs_ioctl+0x75a/0xfe0
[ 2354.354192]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2354.354205]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2354.354233]  ? security_file_ioctl+0x76/0xb0
[ 2354.354244]  ? security_file_ioctl+0x83/0xb0
[ 2354.354257]  SyS_ioctl+0x7f/0xb0
[ 2354.354266]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2354.354280]  do_syscall_64+0x1d5/0x640
[ 2354.354302]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2354.354312] RIP: 0033:0x45cb09
[ 2354.354319] RSP: 002b:00007fb2c9d8dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2354.354332] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2354.354339] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 000000000000000a
[ 2354.354346] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000
[ 2354.354354] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2354.354360] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007fb2c9d8e6d4
[ 2354.363695] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2354.363720] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2354.363746] CPU: 1 PID: 22281 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2354.363753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2354.363758] Call Trace:
[ 2354.363778]  dump_stack+0x1b2/0x283
[ 2354.363801]  warn_alloc.cold+0x96/0x1af
[ 2354.363816]  ? zone_watermark_ok_safe+0x250/0x250
[ 2354.363845]  ? wait_for_completion_io+0x10/0x10
[ 2354.363875]  __alloc_pages_nodemask+0x2129/0x2730
[ 2354.363926]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.363943]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.363975]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.363988]  ? do_raw_spin_unlock+0x164/0x250
[ 2354.364006]  alloc_pages_current+0xe7/0x1e0
[ 2354.364024]  kvm_mmu_create+0xd1/0x1c0
[ 2354.364041]  kvm_arch_vcpu_init+0x282/0x890
[ 2354.364054]  ? alloc_pages_current+0xef/0x1e0
[ 2354.364072]  kvm_vcpu_init+0x26d/0x360
[ 2354.364087]  vmx_create_vcpu+0xf5/0x2950
[ 2354.364106]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2354.364118]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2354.364135]  ? alloc_loaded_vmcs+0x240/0x240
[ 2354.364159]  kvm_vm_ioctl+0x4ae/0x1430
[ 2354.364182]  ? __lock_acquire+0x655/0x42a0
[ 2354.364197]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.364212]  ? check_preemption_disabled+0x35/0x240
[ 2354.364228]  ? perf_trace_lock+0x109/0x4b0
[ 2354.364244]  ? check_preemption_disabled+0x35/0x240
[ 2354.364260]  ? perf_trace_lock+0x109/0x4b0
[ 2354.364276]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2354.364289]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.364302]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.364315]  do_vfs_ioctl+0x75a/0xfe0
[ 2354.364330]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2354.364344]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2354.364371]  ? security_file_ioctl+0x76/0xb0
[ 2354.364383]  ? security_file_ioctl+0x83/0xb0
[ 2354.364399]  SyS_ioctl+0x7f/0xb0
[ 2354.364411]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2354.364428]  do_syscall_64+0x1d5/0x640
[ 2354.364450]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2354.364459] RIP: 0033:0x45cb09
[ 2354.364466] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2354.364481] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2354.364489] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006
[ 2354.364496] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2354.364504] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2354.364512] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2354.521165] ip6_tables: ip6tables: counters copy to user failed while replacing table
[ 2354.603745] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2354.603774] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2354.603803] CPU: 1 PID: 22301 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2354.603811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2354.603816] Call Trace:
[ 2354.603838]  dump_stack+0x1b2/0x283
[ 2354.603860]  warn_alloc.cold+0x96/0x1af
[ 2354.603874]  ? zone_watermark_ok_safe+0x250/0x250
[ 2354.603897]  ? wait_for_completion_io+0x10/0x10
[ 2354.603918]  __alloc_pages_nodemask+0x2129/0x2730
[ 2354.603957]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.603972]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.604001]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.604015]  ? do_raw_spin_unlock+0x164/0x250
[ 2354.604035]  alloc_pages_current+0xe7/0x1e0
[ 2354.604055]  kvm_mmu_create+0xd1/0x1c0
[ 2354.604070]  kvm_arch_vcpu_init+0x282/0x890
[ 2354.604083]  ? alloc_pages_current+0xef/0x1e0
[ 2354.604100]  kvm_vcpu_init+0x26d/0x360
[ 2354.604119]  vmx_create_vcpu+0xf5/0x2950
[ 2354.604137]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2354.604149]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2354.604166]  ? alloc_loaded_vmcs+0x240/0x240
[ 2354.604188]  kvm_vm_ioctl+0x4ae/0x1430
[ 2354.604203]  ? __lock_acquire+0x655/0x42a0
[ 2354.604217]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.604228]  ? check_preemption_disabled+0x35/0x240
[ 2354.604243]  ? perf_trace_lock+0x109/0x4b0
[ 2354.604260]  ? check_preemption_disabled+0x35/0x240
[ 2354.604286]  ? perf_trace_lock+0x109/0x4b0
[ 2354.604305]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2354.604319]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.604332]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.604346]  do_vfs_ioctl+0x75a/0xfe0
[ 2354.604362]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2354.604377]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2354.604401]  ? security_file_ioctl+0x76/0xb0
[ 2354.604414]  ? security_file_ioctl+0x83/0xb0
[ 2354.604439]  SyS_ioctl+0x7f/0xb0
[ 2354.604449]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2354.604467]  do_syscall_64+0x1d5/0x640
[ 2354.604488]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2354.604499] RIP: 0033:0x45cb09
[ 2354.604507] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2354.604522] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2354.604529] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2354.604537] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2354.604545] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2354.604551] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2354.681485] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2354.681515] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2354.681675] CPU: 0 PID: 22301 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2354.681685] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2354.681691] Call Trace:
[ 2354.681716]  dump_stack+0x1b2/0x283
[ 2354.681739]  warn_alloc.cold+0x96/0x1af
[ 2354.681755]  ? zone_watermark_ok_safe+0x250/0x250
[ 2354.681784]  ? wait_for_completion_io+0x10/0x10
[ 2354.681813]  __alloc_pages_nodemask+0x2129/0x2730
[ 2354.681858]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.681874]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2354.681903]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.681915]  ? do_raw_spin_unlock+0x164/0x250
[ 2354.681944]  alloc_pages_current+0xe7/0x1e0
[ 2354.681962]  kvm_mmu_create+0xd1/0x1c0
[ 2354.681979]  kvm_arch_vcpu_init+0x282/0x890
[ 2354.681992]  ? alloc_pages_current+0xef/0x1e0
[ 2354.682009]  kvm_vcpu_init+0x26d/0x360
[ 2354.682024]  vmx_create_vcpu+0xf5/0x2950
[ 2354.682040]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2354.682050]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2354.682065]  ? alloc_loaded_vmcs+0x240/0x240
[ 2354.682085]  kvm_vm_ioctl+0x4ae/0x1430
[ 2354.682099]  ? __lock_acquire+0x655/0x42a0
[ 2354.682113]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.682125]  ? check_preemption_disabled+0x35/0x240
[ 2354.682139]  ? perf_trace_lock+0x109/0x4b0
[ 2354.682154]  ? check_preemption_disabled+0x35/0x240
[ 2354.682168]  ? perf_trace_lock+0x109/0x4b0
[ 2354.682185]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2354.682198]  ? HARDIRQ_verbose+0x10/0x10
[ 2354.682210]  ? kvm_vcpu_release+0xa0/0xa0
[ 2354.682223]  do_vfs_ioctl+0x75a/0xfe0
[ 2354.682237]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2354.682250]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2354.682276]  ? security_file_ioctl+0x76/0xb0
[ 2354.682287]  ? security_file_ioctl+0x83/0xb0
[ 2354.682300]  SyS_ioctl+0x7f/0xb0
[ 2354.682309]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2354.682324]  do_syscall_64+0x1d5/0x640
[ 2354.682343]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2354.682353] RIP: 0033:0x45cb09
[ 2354.682360] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2354.682374] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2354.682381] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2354.682387] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2354.682394] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2354.682401] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2355.192898] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2355.192933] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2355.192962] CPU: 1 PID: 22335 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2355.192971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2355.192976] Call Trace:
[ 2355.192994]  dump_stack+0x1b2/0x283
[ 2355.193015]  warn_alloc.cold+0x96/0x1af
[ 2355.193030]  ? zone_watermark_ok_safe+0x250/0x250
[ 2355.193056]  ? wait_for_completion_io+0x10/0x10
[ 2355.193076]  __alloc_pages_nodemask+0x2129/0x2730
[ 2355.193112]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2355.193126]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2355.193154]  ? HARDIRQ_verbose+0x10/0x10
[ 2355.193164]  ? do_raw_spin_unlock+0x164/0x250
[ 2355.193181]  alloc_pages_current+0xe7/0x1e0
[ 2355.193203]  kvm_mmu_create+0xd1/0x1c0
[ 2355.193220]  kvm_arch_vcpu_init+0x282/0x890
[ 2355.193232]  ? alloc_pages_current+0xef/0x1e0
[ 2355.193248]  kvm_vcpu_init+0x26d/0x360
[ 2355.193263]  vmx_create_vcpu+0xf5/0x2950
[ 2355.193279]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2355.193291]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2355.193316]  ? alloc_loaded_vmcs+0x240/0x240
[ 2355.193338]  kvm_vm_ioctl+0x4ae/0x1430
[ 2355.193352]  ? __lock_acquire+0x655/0x42a0
[ 2355.193364]  ? kvm_vcpu_release+0xa0/0xa0
[ 2355.193376]  ? check_preemption_disabled+0x35/0x240
[ 2355.193391]  ? perf_trace_lock+0x109/0x4b0
[ 2355.193412]  ? check_preemption_disabled+0x35/0x240
[ 2355.193427]  ? perf_trace_lock+0x109/0x4b0
[ 2355.193443]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2355.193456]  ? HARDIRQ_verbose+0x10/0x10
[ 2355.193469]  ? kvm_vcpu_release+0xa0/0xa0
[ 2355.193482]  do_vfs_ioctl+0x75a/0xfe0
[ 2355.193496]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2355.193508]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2355.193532]  ? security_file_ioctl+0x76/0xb0
[ 2355.193542]  ? security_file_ioctl+0x83/0xb0
[ 2355.193554]  SyS_ioctl+0x7f/0xb0
[ 2355.193562]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2355.193575]  do_syscall_64+0x1d5/0x640
[ 2355.193593]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2355.193602] RIP: 0033:0x45cb09
[ 2355.193609] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2355.193622] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2355.193629] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2355.193635] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2355.193642] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2355.193648] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2355.194889] warn_alloc_show_mem: 5 callbacks suppressed
[ 2355.194894] Mem-Info:
[ 2355.194924] active_anon:428039 inactive_anon:21639 isolated_anon:0
[ 2355.194924]  active_file:3405 inactive_file:25742 isolated_file:0
[ 2355.194924]  unevictable:13607 dirty:32 writeback:0 unstable:0
[ 2355.194924]  slab_reclaimable:20316 slab_unreclaimable:317062
[ 2355.194924]  mapped:68493 shmem:24729 pagetables:27475 bounce:0
[ 2355.194924]  free:655037 free_pcp:546 free_cma:0
[ 2355.194949] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2355.194981] Node 1 active_anon:191312kB inactive_anon:65484kB active_file:13616kB inactive_file:102964kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:65056kB dirty:124kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2355.194986] Node 0 DMA free:10348kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2355.195015] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2355.195043] Node 0 DMA32 free:34068kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1412kB local_pcp:692kB free_cma:0kB
[ 2355.195076] lowmem_reserve[]: 0 0 0 0 0
[ 2355.195105] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2355.195142] lowmem_reserve[]: 0 0 0 0 0
[ 2355.195173] Node 1 Normal free:2575732kB min:53592kB low:66988kB high:80384kB active_anon:191312kB inactive_anon:65484kB active_file:13616kB inactive_file:102964kB unevictable:54428kB writepending:124kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28864kB pagetables:74596kB bounce:0kB free_pcp:772kB local_pcp:132kB free_cma:0kB
[ 2355.195209] lowmem_reserve[]: 0 0 0 0 0
[ 2355.195235] Node 0 DMA: 1*4kB (U) 5*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10348kB
[ 2355.195338] Node 0 DMA32: 2869*4kB (UMEH) 1026*8kB (UME) 453*16kB (UME) 147*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34068kB
[ 2355.195431] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2355.195492] Node 1 Normal: 973*4kB (UME) 316*8kB (UME) 346*16kB (UE) 340*32kB (UE) 15*64kB (UE) 3*128kB (E) 1*256kB (E) 1*512kB (E) 3*1024kB (UME) 6*2048kB (UM) 619*4096kB (UM) = 2575732kB
[ 2355.195594] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2355.195603] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2355.195611] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2355.195620] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2355.195624] 48134 total pagecache pages
[ 2355.195638] 0 pages in swap cache
[ 2355.195644] Swap cache stats: add 0, delete 0, find 0/0
[ 2355.195648] Free swap  = 0kB
[ 2355.195652] Total swap = 0kB
[ 2355.195660] 1965979 pages RAM
[ 2355.195665] 0 pages HighMem/MovableOnly
[ 2355.195669] 338456 pages reserved
[ 2355.195673] 0 pages cma reserved
[ 2355.582852] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2355.582883] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2355.582913] CPU: 0 PID: 22352 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2355.582921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2355.582926] Call Trace:
[ 2355.582947]  dump_stack+0x1b2/0x283
[ 2355.582967]  warn_alloc.cold+0x96/0x1af
[ 2355.582982]  ? zone_watermark_ok_safe+0x250/0x250
[ 2355.583010]  ? wait_for_completion_io+0x10/0x10
[ 2355.583032]  __alloc_pages_nodemask+0x2129/0x2730
[ 2355.583071]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2355.583085]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2355.583116]  ? HARDIRQ_verbose+0x10/0x10
[ 2355.583130]  ? do_raw_spin_unlock+0x164/0x250
[ 2355.583148]  alloc_pages_current+0xe7/0x1e0
[ 2355.583168]  kvm_mmu_create+0xd1/0x1c0
[ 2355.583184]  kvm_arch_vcpu_init+0x282/0x890
[ 2355.583194]  ? alloc_pages_current+0xef/0x1e0
[ 2355.583210]  kvm_vcpu_init+0x26d/0x360
[ 2355.583227]  vmx_create_vcpu+0xf5/0x2950
[ 2355.583243]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2355.583255]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2355.583270]  ? alloc_loaded_vmcs+0x240/0x240
[ 2355.583288]  kvm_vm_ioctl+0x4ae/0x1430
[ 2355.583300]  ? __lock_acquire+0x655/0x42a0
[ 2355.583313]  ? kvm_vcpu_release+0xa0/0xa0
[ 2355.583328]  ? check_preemption_disabled+0x35/0x240
[ 2355.583343]  ? perf_trace_lock+0x109/0x4b0
[ 2355.583358]  ? check_preemption_disabled+0x35/0x240
[ 2355.583373]  ? perf_trace_lock+0x109/0x4b0
[ 2355.583399]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2355.583415]  ? HARDIRQ_verbose+0x10/0x10
[ 2355.583437]  ? kvm_vcpu_release+0xa0/0xa0
[ 2355.583454]  do_vfs_ioctl+0x75a/0xfe0
[ 2355.583470]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2355.583484]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2355.583510]  ? security_file_ioctl+0x76/0xb0
[ 2355.583521]  ? security_file_ioctl+0x83/0xb0
[ 2355.583534]  SyS_ioctl+0x7f/0xb0
[ 2355.583543]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2355.583561]  do_syscall_64+0x1d5/0x640
[ 2355.583584]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2355.583594] RIP: 0033:0x45cb09
[ 2355.583602] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2355.583617] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2355.583624] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2355.583632] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2355.583640] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2355.583648] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2355.652927] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2355.652954] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2355.652982] CPU: 1 PID: 22352 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2355.652989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2355.652994] Call Trace:
[ 2355.653014]  dump_stack+0x1b2/0x283
[ 2355.653033]  warn_alloc.cold+0x96/0x1af
[ 2355.653049]  ? zone_watermark_ok_safe+0x250/0x250
[ 2355.653078]  ? wait_for_completion_io+0x10/0x10
[ 2355.653100]  __alloc_pages_nodemask+0x2129/0x2730
[ 2355.653135]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2355.653149]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2355.653175]  ? HARDIRQ_verbose+0x10/0x10
[ 2355.653191]  ? do_raw_spin_unlock+0x164/0x250
[ 2355.653213]  alloc_pages_current+0xe7/0x1e0
[ 2355.653236]  kvm_mmu_create+0xd1/0x1c0
[ 2355.653254]  kvm_arch_vcpu_init+0x282/0x890
[ 2355.653269]  ? alloc_pages_current+0xef/0x1e0
[ 2355.653287]  kvm_vcpu_init+0x26d/0x360
[ 2355.653313]  vmx_create_vcpu+0xf5/0x2950
[ 2355.653337]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2355.653352]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2355.653379]  ? alloc_loaded_vmcs+0x240/0x240
[ 2355.653401]  kvm_vm_ioctl+0x4ae/0x1430
[ 2355.653415]  ? __lock_acquire+0x655/0x42a0
[ 2355.653427]  ? kvm_vcpu_release+0xa0/0xa0
[ 2355.653438]  ? check_preemption_disabled+0x35/0x240
[ 2355.653453]  ? perf_trace_lock+0x109/0x4b0
[ 2355.653470]  ? check_preemption_disabled+0x35/0x240
[ 2355.653487]  ? perf_trace_lock+0x109/0x4b0
[ 2355.653504]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2355.653519]  ? HARDIRQ_verbose+0x10/0x10
[ 2355.653531]  ? kvm_vcpu_release+0xa0/0xa0
[ 2355.653544]  do_vfs_ioctl+0x75a/0xfe0
[ 2355.653558]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2355.653572]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2355.653602]  ? security_file_ioctl+0x76/0xb0
[ 2355.653612]  ? security_file_ioctl+0x83/0xb0
[ 2355.653624]  SyS_ioctl+0x7f/0xb0
[ 2355.653632]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2355.653646]  do_syscall_64+0x1d5/0x640
[ 2355.653664]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2355.653674] RIP: 0033:0x45cb09
[ 2355.653681] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2355.653694] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2355.653701] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2355.653708] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2355.653713] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2355.653719] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2355.845639] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2355.845669] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2355.845697] CPU: 1 PID: 22362 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2355.845705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2355.845710] Call Trace:
[ 2355.845729]  dump_stack+0x1b2/0x283
[ 2355.845751]  warn_alloc.cold+0x96/0x1af
[ 2355.845765]  ? zone_watermark_ok_safe+0x250/0x250
[ 2355.845790]  ? wait_for_completion_io+0x10/0x10
[ 2355.845809]  __alloc_pages_nodemask+0x2129/0x2730
[ 2355.845854]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2355.845873]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2355.845907]  ? HARDIRQ_verbose+0x10/0x10
[ 2355.845928]  ? do_raw_spin_unlock+0x164/0x250
[ 2355.845951]  alloc_pages_current+0xe7/0x1e0
[ 2355.845973]  kvm_mmu_create+0xd1/0x1c0
[ 2355.845991]  kvm_arch_vcpu_init+0x282/0x890
[ 2355.846002]  ? alloc_pages_current+0xef/0x1e0
[ 2355.846020]  kvm_vcpu_init+0x26d/0x360
[ 2355.846038]  vmx_create_vcpu+0xf5/0x2950
[ 2355.846055]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2355.846068]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2355.846084]  ? alloc_loaded_vmcs+0x240/0x240
[ 2355.846106]  kvm_vm_ioctl+0x4ae/0x1430
[ 2355.846120]  ? __lock_acquire+0x655/0x42a0
[ 2355.846133]  ? kvm_vcpu_release+0xa0/0xa0
[ 2355.846145]  ? check_preemption_disabled+0x35/0x240
[ 2355.846159]  ? perf_trace_lock+0x109/0x4b0
[ 2355.846176]  ? check_preemption_disabled+0x35/0x240
[ 2355.846191]  ? perf_trace_lock+0x109/0x4b0
[ 2355.846209]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2355.846225]  ? HARDIRQ_verbose+0x10/0x10
[ 2355.846237]  ? kvm_vcpu_release+0xa0/0xa0
[ 2355.846249]  do_vfs_ioctl+0x75a/0xfe0
[ 2355.846266]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2355.846283]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2355.846312]  ? security_file_ioctl+0x76/0xb0
[ 2355.846324]  ? security_file_ioctl+0x83/0xb0
[ 2355.846340]  SyS_ioctl+0x7f/0xb0
[ 2355.846378]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2355.846395]  do_syscall_64+0x1d5/0x640
[ 2355.846416]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2355.846427] RIP: 0033:0x45cb09
[ 2355.846434] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2355.846450] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2355.846458] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2355.846466] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2355.846474] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2355.846482] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2355.986198] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2355.986227] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2355.986255] CPU: 1 PID: 22374 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2355.986263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2355.986267] Call Trace:
[ 2355.986288]  dump_stack+0x1b2/0x283
[ 2355.986308]  warn_alloc.cold+0x96/0x1af
[ 2355.986322]  ? zone_watermark_ok_safe+0x250/0x250
[ 2355.986367]  ? wait_for_completion_io+0x10/0x10
[ 2355.986398]  __alloc_pages_nodemask+0x2129/0x2730
[ 2355.986439]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2355.986455]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2355.986481]  ? HARDIRQ_verbose+0x10/0x10
[ 2355.986495]  ? do_raw_spin_unlock+0x164/0x250
[ 2355.986518]  alloc_pages_current+0xe7/0x1e0
[ 2355.986538]  kvm_mmu_create+0xd1/0x1c0
[ 2355.986556]  kvm_arch_vcpu_init+0x282/0x890
[ 2355.986569]  ? alloc_pages_current+0xef/0x1e0
[ 2355.986590]  kvm_vcpu_init+0x26d/0x360
[ 2355.986612]  vmx_create_vcpu+0xf5/0x2950
[ 2355.986632]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2355.986646]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2355.986665]  ? alloc_loaded_vmcs+0x240/0x240
[ 2355.986695]  kvm_vm_ioctl+0x4ae/0x1430
[ 2355.986712]  ? __lock_acquire+0x655/0x42a0
[ 2355.986727]  ? kvm_vcpu_release+0xa0/0xa0
[ 2355.986741]  ? check_preemption_disabled+0x35/0x240
[ 2355.986757]  ? perf_trace_lock+0x109/0x4b0
[ 2355.986772]  ? check_preemption_disabled+0x35/0x240
[ 2355.986785]  ? perf_trace_lock+0x109/0x4b0
[ 2355.986804]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2355.986817]  ? HARDIRQ_verbose+0x10/0x10
[ 2355.986830]  ? kvm_vcpu_release+0xa0/0xa0
[ 2355.986843]  do_vfs_ioctl+0x75a/0xfe0
[ 2355.986861]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2355.986873]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2355.986899]  ? security_file_ioctl+0x76/0xb0
[ 2355.986911]  ? security_file_ioctl+0x83/0xb0
[ 2355.986924]  SyS_ioctl+0x7f/0xb0
[ 2355.986934]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2355.986951]  do_syscall_64+0x1d5/0x640
[ 2355.986973]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2355.986983] RIP: 0033:0x45cb09
[ 2355.986990] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2355.987015] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2355.987023] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2355.987030] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2355.987037] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2355.987045] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
01:29:20 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x0, 0x200000)
getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000100), &(0x7f0000000140)=0x4)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = epoll_create(0x9)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = fcntl$dupfd(r4, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$VHOST_GET_VRING_ENDIAN(r5, 0x4008af14, &(0x7f0000000000)={0x1, 0x6})
ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000040)=0x100000000)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:29:20 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$dupfd(r3, 0x0, r4)
ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000140)={'macvlan1\x00', 0x400})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r2, 0x800443d3, &(0x7f00000000c0)={@none, 0x7f, 0x80, 0x4b})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$dupfd(0xffffffffffffffff, 0x0, r5)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r5, 0xc00c642e, &(0x7f00000001c0)={0x0, 0x80000})
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0xf00, 0x0, 0x7ff, 0x0, 0x8, 0x0, {0x0, 0x4}, {0x20, 0x0, 0x1}, {}, {0x0, 0x7f}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xd})
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r7)
ioctl$ASHMEM_GET_PROT_MASK(r7, 0x7706, &(0x7f0000000100))

01:29:20 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ion\x00', 0x402000, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0x8, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x1, 0x0)
pipe(&(0x7f0000000000))
r6 = socket$unix(0x1, 0x2, 0x0)
r7 = fcntl$dupfd(r5, 0x406, r6)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = fcntl$dupfd(0xffffffffffffffff, 0x406, r8)
getsockopt$SO_BINDTODEVICE(r9, 0x1, 0x19, &(0x7f0000000100), 0x10)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
r10 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
fcntl$dupfd(r10, 0x0, r11)
ioctl$sock_inet_SIOCSIFADDR(r11, 0x8916, &(0x7f0000000140)={'veth0_to_batadv\x00', {0x2, 0x4e21, @multicast2}})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000180)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:29:20 executing program 2:
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$dupfd(r0, 0x0, r1)
ioctl$TCXONC(r1, 0x540a, 0x2)
ioctl$VIDIOC_SUBDEV_G_EDID(r1, 0xc0285628, &(0x7f0000000100)={0x0, 0x5462625e, 0x1, [], &(0x7f00000000c0)=0x80})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:20 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fb0\x00', 0x80, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$VIDIOC_S_EXT_CTRLS(r3, 0xc0205648, &(0x7f0000000140)={0xa20000, 0x12, 0x5, <r7=>r6, 0x0, &(0x7f0000000100)={0x990a78, 0x1, [], @value64=0x400}})
ioctl$BINDER_THREAD_EXIT(r7, 0x40046208, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})
r8 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
fcntl$dupfd(r8, 0x0, r9)
ioctl$sock_FIOGETOWN(r9, 0x8903, &(0x7f0000000180))

01:29:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000140)={<r2=>0xffffffffffffffff})
ioctl$SCSI_IOCTL_GET_IDLUN(r2, 0x5382, &(0x7f0000000180))
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r5, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
ioctl$KVM_SET_SREGS(r5, 0x4138ae84, &(0x7f0000000000)={{0x4, 0x4, 0x10, 0x5, 0xc, 0x2, 0x0, 0x4, 0x20, 0x10, 0x6, 0x5}, {0x3000, 0x6000, 0x0, 0x3, 0x3f, 0xc4, 0xff, 0x9, 0x9, 0x4, 0x0, 0x8}, {0x5000, 0x2000, 0x3, 0x8, 0x3f, 0x8a, 0x6, 0xf7, 0x3, 0x6e, 0x3f, 0xe8}, {0x5000, 0x6000, 0x0, 0x0, 0xff, 0x2, 0xc7, 0x80, 0x1, 0xdd, 0x0, 0x6}, {0x10000, 0xd000, 0xd, 0x80, 0x7, 0xb, 0x1f, 0x9f, 0x2, 0x0, 0x6}, {0xf000, 0xf000, 0x9, 0xff, 0xbf, 0x2, 0x2, 0x10, 0x14, 0x4, 0x5, 0x24}, {0x5000, 0x5000, 0x3, 0x5, 0x3, 0x7f, 0x80, 0x40, 0xb7, 0x5, 0x3, 0x4}, {0xf000, 0x6000, 0x8, 0x6, 0x1, 0x4, 0x6, 0x9d, 0x4, 0x1, 0x2, 0x36}, {0x1000, 0x6}, {0x10000, 0xd15e}, 0x80000004, 0x0, 0x4, 0x8001, 0x5, 0x100, 0x5000, [0x6, 0x8, 0x1, 0x3f]})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(0xffffffffffffffff, 0x0, r6)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000000240))
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = fcntl$dupfd(r7, 0x0, r8)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
ioctl$RTC_AIE_ON(r9, 0x7001)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:29:20 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400204)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

[ 2359.307398] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2359.307429] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2359.307464] CPU: 0 PID: 22387 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2359.307472] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2359.307478] Call Trace:
[ 2359.307498]  dump_stack+0x1b2/0x283
[ 2359.307518]  warn_alloc.cold+0x96/0x1af
[ 2359.307532]  ? zone_watermark_ok_safe+0x250/0x250
[ 2359.307559]  ? wait_for_completion_io+0x10/0x10
[ 2359.307579]  __alloc_pages_nodemask+0x2129/0x2730
[ 2359.307617]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2359.307632]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2359.307659]  ? HARDIRQ_verbose+0x10/0x10
[ 2359.307672]  ? do_raw_spin_unlock+0x164/0x250
[ 2359.307689]  alloc_pages_current+0xe7/0x1e0
[ 2359.307706]  kvm_mmu_create+0xd1/0x1c0
[ 2359.307727]  kvm_arch_vcpu_init+0x282/0x890
[ 2359.307740]  ? alloc_pages_current+0xef/0x1e0
[ 2359.307757]  kvm_vcpu_init+0x26d/0x360
[ 2359.307772]  vmx_create_vcpu+0xf5/0x2950
[ 2359.307789]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2359.307802]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2359.307817]  ? alloc_loaded_vmcs+0x240/0x240
[ 2359.307844]  kvm_vm_ioctl+0x4ae/0x1430
[ 2359.307859]  ? __lock_acquire+0x655/0x42a0
[ 2359.307873]  ? kvm_vcpu_release+0xa0/0xa0
[ 2359.307886]  ? check_preemption_disabled+0x35/0x240
[ 2359.307902]  ? perf_trace_lock+0x109/0x4b0
[ 2359.307917]  ? check_preemption_disabled+0x35/0x240
[ 2359.307932]  ? perf_trace_lock+0x109/0x4b0
[ 2359.307949]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2359.307964]  ? HARDIRQ_verbose+0x10/0x10
[ 2359.307978]  ? kvm_vcpu_release+0xa0/0xa0
[ 2359.307992]  do_vfs_ioctl+0x75a/0xfe0
[ 2359.308006]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2359.308020]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2359.308046]  ? security_file_ioctl+0x76/0xb0
[ 2359.308057]  ? security_file_ioctl+0x83/0xb0
[ 2359.308070]  SyS_ioctl+0x7f/0xb0
[ 2359.308079]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2359.308094]  do_syscall_64+0x1d5/0x640
[ 2359.308116]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2359.308125] RIP: 0033:0x45cb09
[ 2359.308132] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2359.308146] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2359.308154] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2359.308162] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2359.308169] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2359.308177] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2359.309557] warn_alloc_show_mem: 4 callbacks suppressed
[ 2359.309562] Mem-Info:
[ 2359.309590] active_anon:428041 inactive_anon:21641 isolated_anon:0
[ 2359.309590]  active_file:3405 inactive_file:25780 isolated_file:0
[ 2359.309590]  unevictable:13607 dirty:70 writeback:0 unstable:0
[ 2359.309590]  slab_reclaimable:20332 slab_unreclaimable:317808
[ 2359.309590]  mapped:68363 shmem:24729 pagetables:27458 bounce:0
[ 2359.309590]  free:653432 free_pcp:634 free_cma:0
01:29:20 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:20 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)
clone(0x40008000, &(0x7f0000000100)="ec2b6fd6ff244d30d892211f0e63b0dfb8fc2f33c3ae954904cb08cd5871b6115c758c505b98dec8922f07c680098888f42f45bbaaefd1a6c49d071ea0a18a24117d90224e67aecac5075f07fb0c659bb95ab925e1f37c9d3a5b0c684dd31839981e96db780e03b8d81f831f9f41bd2369bdf2dcae75c50bad0f9e6b354aee7cb1e546d076f66583ce9063a550d143eb38c64f118a778580092a", &(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000240)="52a2704532a278f14fb579710800d8129e1e1cb451180c4fd863818dc0d2c2da6739af63676768baaebb7df9820a0b146e60023677c938d2b405d6dfc96531645319926b39f8329f952b93c793249f9fb7c99ac4c329b65fb98702db90a7826d94b6b9b1dcbec50ded30d8440c5e10f934c60e37d0325532f0fba95a40aab2295bd3d11d2ff0c7f87f88dc8cad604d8e96c5cca5a7b7eab2f0c42fa321286b4877d840a5446c72fa691d3817a53d55cc46a85026b40e36ff1f721928daca3567697801")

[ 2359.309613] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2359.309634] Node 1 active_anon:191320kB inactive_anon:65492kB active_file:13616kB inactive_file:103116kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64536kB dirty:276kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2359.309639] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2359.309663] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2359.309689] Node 0 DMA32 free:34396kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1432kB local_pcp:740kB free_cma:0kB
[ 2359.309714] lowmem_reserve[]: 0 0 0 0 0
[ 2359.309739] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2359.309762] lowmem_reserve[]: 0 0 0 0 0
01:29:20 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x14})
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2359.309787] Node 1 Normal free:2568976kB min:53592kB low:66988kB high:80384kB active_anon:191320kB inactive_anon:65492kB active_file:13616kB inactive_file:103116kB unevictable:54428kB writepending:276kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28832kB pagetables:74528kB bounce:0kB free_pcp:1104kB local_pcp:504kB free_cma:0kB
[ 2359.309814] lowmem_reserve[]: 0 0 0 0 0
[ 2359.309840] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2359.309944] Node 0 DMA32: 2869*4kB (UMEH) 1063*8kB (UMEH) 455*16kB (UME) 147*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34396kB
[ 2359.310033] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2359.310095] Node 1 Normal: 904*4kB (UE) 414*8kB (UME) 139*16kB (UME) 198*32kB (UME) 22*64kB (UME) 16*128kB (UE) 3*256kB (UME) 3*512kB (UME) 2*1024kB (UE) 5*2048kB (UM) 619*4096kB (UM) = 2568960kB
[ 2359.310205] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2359.310213] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2359.310221] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2359.310230] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2359.310236] 48179 total pagecache pages
[ 2359.310247] 0 pages in swap cache
[ 2359.310254] Swap cache stats: add 0, delete 0, find 0/0
[ 2359.310258] Free swap  = 0kB
[ 2359.310262] Total swap = 0kB
[ 2359.310270] 1965979 pages RAM
[ 2359.310275] 0 pages HighMem/MovableOnly
[ 2359.310279] 338456 pages reserved
[ 2359.310284] 0 pages cma reserved
[ 2359.521128] syz-executor.5: 
[ 2359.612436] syz-executor.5: 
[ 2359.848357] page allocation failure: order:0
[ 2359.905757] page allocation failure: order:0
[ 2359.981742] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=
[ 2360.046780] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=
[ 2360.065078] (null)
[ 2360.076360] (null)
[ 2360.088399] syz-executor.5 cpuset=
[ 2360.090015] syz-executor.5 cpuset=
01:29:21 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
prctl$PR_SET_TSC(0x1a, 0x1)

[ 2360.095394] /
[ 2360.152415] / mems_allowed=0-1
[ 2360.154093] CPU: 1 PID: 22410 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2360.154101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2360.154106] Call Trace:
[ 2360.154124]  dump_stack+0x1b2/0x283
[ 2360.154143]  warn_alloc.cold+0x96/0x1af
[ 2360.154155]  ? zone_watermark_ok_safe+0x250/0x250
01:29:21 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
connect$nfc_raw(r6, &(0x7f0000000000)={0x27, 0x1, 0x1, 0x6}, 0x10)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r4, 0x8982, &(0x7f0000000040)={0x2, 'veth0_macvtap\x00', {0x7}, 0x6})

[ 2360.154179]  ? wait_for_completion_io+0x10/0x10
[ 2360.154198]  __alloc_pages_nodemask+0x2129/0x2730
[ 2360.154233]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2360.154247]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2360.154274]  ? HARDIRQ_verbose+0x10/0x10
[ 2360.154287]  ? do_raw_spin_unlock+0x164/0x250
[ 2360.154304]  alloc_pages_current+0xe7/0x1e0
[ 2360.154322]  kvm_mmu_create+0xd1/0x1c0
[ 2360.154337]  kvm_arch_vcpu_init+0x282/0x890
[ 2360.154347]  ? alloc_pages_current+0xef/0x1e0
[ 2360.154362]  kvm_vcpu_init+0x26d/0x360
[ 2360.154378]  vmx_create_vcpu+0xf5/0x2950
[ 2360.154393]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2360.154404]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2360.154418]  ? alloc_loaded_vmcs+0x240/0x240
[ 2360.154437]  kvm_vm_ioctl+0x4ae/0x1430
[ 2360.154450]  ? __lock_acquire+0x655/0x42a0
[ 2360.154461]  ? kvm_vcpu_release+0xa0/0xa0
[ 2360.154473]  ? check_preemption_disabled+0x35/0x240
[ 2360.154487]  ? perf_trace_lock+0x109/0x4b0
[ 2360.154501]  ? check_preemption_disabled+0x35/0x240
[ 2360.154515]  ? perf_trace_lock+0x109/0x4b0
[ 2360.154532]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2360.154545]  ? HARDIRQ_verbose+0x10/0x10
[ 2360.154556]  ? kvm_vcpu_release+0xa0/0xa0
[ 2360.154570]  do_vfs_ioctl+0x75a/0xfe0
[ 2360.154584]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2360.154597]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2360.154624]  ? security_file_ioctl+0x76/0xb0
[ 2360.154634]  ? security_file_ioctl+0x83/0xb0
[ 2360.154648]  SyS_ioctl+0x7f/0xb0
[ 2360.154656]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2360.154683]  do_syscall_64+0x1d5/0x640
[ 2360.154702]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2360.154712] RIP: 0033:0x45cb09
[ 2360.154724] RSP: 002b:00007f014affbc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2360.154736] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2360.154744] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000008
[ 2360.154750] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000
[ 2360.154762] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2360.154769] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014affc6d4
[ 2360.169799]  mems_allowed=0-1
[ 2360.170086] CPU: 1 PID: 22403 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2360.170094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2360.170098] Call Trace:
[ 2360.170118]  dump_stack+0x1b2/0x283
[ 2360.170137]  warn_alloc.cold+0x96/0x1af
[ 2360.170149]  ? zone_watermark_ok_safe+0x250/0x250
[ 2360.170173]  ? wait_for_completion_io+0x10/0x10
[ 2360.170192]  __alloc_pages_nodemask+0x2129/0x2730
[ 2360.170227]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2360.170240]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2360.170273]  ? HARDIRQ_verbose+0x10/0x10
[ 2360.170292]  alloc_pages_current+0xe7/0x1e0
[ 2360.170309]  kvm_mmu_create+0xd1/0x1c0
[ 2360.170324]  kvm_arch_vcpu_init+0x282/0x890
[ 2360.170334]  ? alloc_pages_current+0xef/0x1e0
[ 2360.170350]  kvm_vcpu_init+0x26d/0x360
[ 2360.170365]  vmx_create_vcpu+0xf5/0x2950
[ 2360.170381]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2360.170392]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2360.170407]  ? alloc_loaded_vmcs+0x240/0x240
[ 2360.170425]  kvm_vm_ioctl+0x4ae/0x1430
[ 2360.170438]  ? __lock_acquire+0x655/0x42a0
[ 2360.170450]  ? kvm_vcpu_release+0xa0/0xa0
[ 2360.170462]  ? check_preemption_disabled+0x35/0x240
[ 2360.170476]  ? perf_trace_lock+0x109/0x4b0
[ 2360.170490]  ? check_preemption_disabled+0x35/0x240
[ 2360.170504]  ? perf_trace_lock+0x109/0x4b0
[ 2360.170520]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2360.170533]  ? HARDIRQ_verbose+0x10/0x10
[ 2360.170545]  ? kvm_vcpu_release+0xa0/0xa0
[ 2360.170558]  do_vfs_ioctl+0x75a/0xfe0
[ 2360.170572]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2360.170585]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2360.170614]  ? security_file_ioctl+0x76/0xb0
[ 2360.170625]  ? security_file_ioctl+0x83/0xb0
[ 2360.170638]  SyS_ioctl+0x7f/0xb0
[ 2360.170647]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2360.170662]  do_syscall_64+0x1d5/0x640
[ 2360.170683]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2360.170692] RIP: 0033:0x45cb09
[ 2360.170699] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2360.170711] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2360.170718] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2360.170724] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2360.170731] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2360.170738] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2360.281111] IPVS: ftp: loaded support on port[0] = 21
[ 2360.350220] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2360.350251] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2360.350278] CPU: 0 PID: 22436 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2360.350286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2360.350291] Call Trace:
[ 2360.350310]  dump_stack+0x1b2/0x283
[ 2360.350333]  warn_alloc.cold+0x96/0x1af
[ 2360.350348]  ? zone_watermark_ok_safe+0x250/0x250
[ 2360.350375]  ? wait_for_completion_io+0x10/0x10
[ 2360.350395]  __alloc_pages_nodemask+0x2129/0x2730
[ 2360.350445]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2360.350462]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2360.350492]  ? HARDIRQ_verbose+0x10/0x10
[ 2360.350504]  ? do_raw_spin_unlock+0x164/0x250
[ 2360.350521]  alloc_pages_current+0xe7/0x1e0
[ 2360.350538]  kvm_mmu_create+0xd1/0x1c0
[ 2360.350552]  kvm_arch_vcpu_init+0x282/0x890
[ 2360.350562]  ? alloc_pages_current+0xef/0x1e0
[ 2360.350581]  kvm_vcpu_init+0x26d/0x360
[ 2360.350600]  vmx_create_vcpu+0xf5/0x2950
[ 2360.350625]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2360.350640]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2360.350658]  ? alloc_loaded_vmcs+0x240/0x240
[ 2360.350682]  kvm_vm_ioctl+0x4ae/0x1430
[ 2360.350697]  ? __lock_acquire+0x655/0x42a0
[ 2360.350711]  ? kvm_vcpu_release+0xa0/0xa0
[ 2360.350728]  ? check_preemption_disabled+0x35/0x240
[ 2360.350745]  ? perf_trace_lock+0x109/0x4b0
[ 2360.350762]  ? check_preemption_disabled+0x35/0x240
[ 2360.350783]  ? perf_trace_lock+0x109/0x4b0
[ 2360.350803]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2360.350819]  ? HARDIRQ_verbose+0x10/0x10
[ 2360.350832]  ? kvm_vcpu_release+0xa0/0xa0
[ 2360.350847]  do_vfs_ioctl+0x75a/0xfe0
[ 2360.350866]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2360.350882]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2360.350914]  ? security_file_ioctl+0x76/0xb0
[ 2360.350931]  ? security_file_ioctl+0x83/0xb0
[ 2360.350948]  SyS_ioctl+0x7f/0xb0
[ 2360.350961]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2360.350981]  do_syscall_64+0x1d5/0x640
[ 2360.351014]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2360.351026] RIP: 0033:0x45cb09
[ 2360.351034] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2360.351050] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2360.351057] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2360.351065] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2360.351073] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2360.351080] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2360.351168] warn_alloc_show_mem: 2 callbacks suppressed
[ 2360.351172] Mem-Info:
[ 2360.351200] active_anon:428149 inactive_anon:21639 isolated_anon:0
[ 2360.351200]  active_file:3406 inactive_file:25792 isolated_file:0
[ 2360.351200]  unevictable:13607 dirty:148 writeback:0 unstable:0
[ 2360.351200]  slab_reclaimable:20333 slab_unreclaimable:317633
[ 2360.351200]  mapped:68393 shmem:24729 pagetables:27522 bounce:0
[ 2360.351200]  free:653383 free_pcp:590 free_cma:0
[ 2360.351220] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2360.351240] Node 1 active_anon:191752kB inactive_anon:65484kB active_file:13616kB inactive_file:103168kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64656kB dirty:588kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2360.351245] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2360.351271] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2360.351300] Node 0 DMA32 free:34496kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1336kB local_pcp:644kB free_cma:0kB
[ 2360.351329] lowmem_reserve[]: 0 0 0 0 0
[ 2360.351355] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2360.351379] lowmem_reserve[]: 0 0 0 0 0
[ 2360.351406] Node 1 Normal free:2568680kB min:53592kB low:66988kB high:80384kB active_anon:191752kB inactive_anon:65484kB active_file:13616kB inactive_file:103168kB unevictable:54428kB writepending:588kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:29024kB pagetables:74784kB bounce:0kB free_pcp:1024kB local_pcp:684kB free_cma:0kB
[ 2360.351446] lowmem_reserve[]: 0 0 0 0 0
[ 2360.351476] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2360.351593] Node 0 DMA32: 2884*4kB (UMEH) 1065*8kB (UMEH) 454*16kB (UME) 149*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34520kB
[ 2360.351692] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2360.351768] Node 1 Normal: 780*4kB (UME) 300*8kB (UE) 145*16kB (UME) 190*32kB (UE) 56*64kB (UE) 11*128kB (UE) 2*256kB (UE) 3*512kB (UME) 2*1024kB (UE) 5*2048kB (UM) 619*4096kB (UM) = 2568672kB
[ 2360.351888] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2360.351901] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2360.351914] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2360.351927] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2360.351933] 48185 total pagecache pages
[ 2360.351946] 0 pages in swap cache
[ 2360.351954] Swap cache stats: add 0, delete 0, find 0/0
[ 2360.351958] Free swap  = 0kB
[ 2360.351963] Total swap = 0kB
[ 2360.351972] 1965979 pages RAM
[ 2360.351978] 0 pages HighMem/MovableOnly
[ 2360.351983] 338456 pages reserved
[ 2360.351987] 0 pages cma reserved
01:29:22 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$VIDIOC_G_EXT_CTRLS(r4, 0xc0205647, &(0x7f00000000c0)={0x7800000, 0x9, 0x0, <r5=>r1, 0x0, &(0x7f0000000080)={0xa00905, 0x8000, [], @p_u16=&(0x7f0000000040)=0xb3}})
ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f0000000100))
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
r8 = dup(r7)
ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f0000000000)={0x3, 0x0, [{0x180, 0x0, 0x8}, {0x392, 0x0, 0x3}, {0x183, 0x0, 0x5}]})

[ 2360.506503] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2361.473116] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2361.473142] CPU: 0 PID: 22449 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2361.473150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2361.473154] Call Trace:
[ 2361.473173]  dump_stack+0x1b2/0x283
[ 2361.473192]  warn_alloc.cold+0x96/0x1af
[ 2361.473204]  ? zone_watermark_ok_safe+0x250/0x250
[ 2361.473228]  ? wait_for_completion_io+0x10/0x10
[ 2361.473248]  __alloc_pages_nodemask+0x2129/0x2730
[ 2361.473283]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2361.473296]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2361.473325]  ? HARDIRQ_verbose+0x10/0x10
[ 2361.473337]  ? do_raw_spin_unlock+0x164/0x250
[ 2361.473354]  alloc_pages_current+0xe7/0x1e0
[ 2361.473372]  kvm_mmu_create+0xd1/0x1c0
[ 2361.473386]  kvm_arch_vcpu_init+0x282/0x890
[ 2361.473397]  ? alloc_pages_current+0xef/0x1e0
[ 2361.473413]  kvm_vcpu_init+0x26d/0x360
[ 2361.473428]  vmx_create_vcpu+0xf5/0x2950
[ 2361.473444]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2361.473455]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2361.473470]  ? alloc_loaded_vmcs+0x240/0x240
[ 2361.473489]  kvm_vm_ioctl+0x4ae/0x1430
[ 2361.473511]  ? __lock_acquire+0x655/0x42a0
[ 2361.473524]  ? kvm_vcpu_release+0xa0/0xa0
[ 2361.473536]  ? check_preemption_disabled+0x35/0x240
[ 2361.473550]  ? perf_trace_lock+0x109/0x4b0
[ 2361.473564]  ? check_preemption_disabled+0x35/0x240
[ 2361.473578]  ? perf_trace_lock+0x109/0x4b0
[ 2361.473594]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2361.473608]  ? HARDIRQ_verbose+0x10/0x10
[ 2361.473619]  ? kvm_vcpu_release+0xa0/0xa0
[ 2361.473633]  do_vfs_ioctl+0x75a/0xfe0
[ 2361.473646]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2361.473659]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2361.473686]  ? security_file_ioctl+0x76/0xb0
[ 2361.473697]  ? security_file_ioctl+0x83/0xb0
[ 2361.473710]  SyS_ioctl+0x7f/0xb0
[ 2361.473719]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2361.473734]  do_syscall_64+0x1d5/0x640
[ 2361.473755]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2361.473764] RIP: 0033:0x45cb09
[ 2361.473770] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2361.473783] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2361.473790] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2361.473796] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2361.473803] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2361.473810] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2361.473836] Mem-Info:
[ 2361.473862] active_anon:428128 inactive_anon:21639 isolated_anon:0
[ 2361.473862]  active_file:3405 inactive_file:25806 isolated_file:0
[ 2361.473862]  unevictable:13607 dirty:33 writeback:0 unstable:0
[ 2361.473862]  slab_reclaimable:20305 slab_unreclaimable:317812
[ 2361.473862]  mapped:68391 shmem:24729 pagetables:27520 bounce:0
[ 2361.473862]  free:653314 free_pcp:585 free_cma:0
[ 2361.473880] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2361.473900] Node 1 active_anon:191668kB inactive_anon:65484kB active_file:13616kB inactive_file:103220kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64648kB dirty:128kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2361.473906] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2361.473929] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2361.473952] Node 0 DMA32 free:34520kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1336kB local_pcp:644kB free_cma:0kB
[ 2361.473976] lowmem_reserve[]: 0 0 0 0 0
[ 2361.474000] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2361.474020] lowmem_reserve[]: 0 0 0 0 0
[ 2361.474045] Node 1 Normal free:2568380kB min:53592kB low:66988kB high:80384kB active_anon:191668kB inactive_anon:65484kB active_file:13616kB inactive_file:103220kB unevictable:54428kB writepending:128kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28896kB pagetables:74776kB bounce:0kB free_pcp:1004kB local_pcp:396kB free_cma:0kB
[ 2361.474068] lowmem_reserve[]: 0 0 0 0 0
[ 2361.474092] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2361.474203] Node 0 DMA32: 2884*4kB (UMEH) 1065*8kB (UMEH) 454*16kB (UME) 149*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34520kB
[ 2361.474280] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2361.474343] Node 1 Normal: 793*4kB (UE) 419*8kB (UE) 178*16kB (UE) 165*32kB (UE) 58*64kB (UME) 4*128kB (UE) 1*256kB (E) 3*512kB (UME) 2*1024kB (UE) 5*2048kB (UM) 619*4096kB (UM) = 2568380kB
[ 2361.474452] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2361.474461] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2361.474469] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2361.474477] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2361.474481] 48198 total pagecache pages
[ 2361.474493] 0 pages in swap cache
[ 2361.474500] Swap cache stats: add 0, delete 0, find 0/0
[ 2361.474512] Free swap  = 0kB
[ 2361.474516] Total swap = 0kB
[ 2361.474524] 1965979 pages RAM
[ 2361.474528] 0 pages HighMem/MovableOnly
[ 2361.474533] 338456 pages reserved
[ 2361.474537] 0 pages cma reserved
[ 2361.561902] syz-executor.5: 
[ 2361.694969] syz-executor.5: 
[ 2361.720279] page allocation failure: order:0
[ 2361.739789] page allocation failure: order:0
[ 2361.745840] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=
[ 2361.762957] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=
[ 2361.771764] (null)
[ 2361.775854] (null)
[ 2361.779151] syz-executor.5 cpuset=
[ 2361.812830] syz-executor.5 cpuset=
01:29:23 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prctl$PR_GET_KEEPCAPS(0x7)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2361.842555] /
[ 2362.161193] / mems_allowed=0-1
[ 2362.174511] CPU: 1 PID: 22471 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2362.174518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
01:29:23 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
ioctl$NS_GET_OWNER_UID(r3, 0xb704, &(0x7f0000000180)=<r4=>0x0)
syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f0000000040)='./file0\x00', 0x4, 0x1, &(0x7f0000000140)=[{&(0x7f0000000080)="c5e1f4d38bfa973626931ed18aff6ee293a835a84293637645342f3915317111cec298d5d47bdc6806a782f07f13acbae67b013a168d2c3e57b27972d4f984d1f4e366da3045391b6b65d6203efc1ddf86bb9609bb437892ba2522c423e4eaf613bc6f7e618e668ef95a80a02b802a12afd7b16e2c89190220370f194a3b41e2a59418abd96ef7c823a588e30ef8a84fd2", 0x91, 0x2}], 0x100000, &(0x7f00000001c0)={[{@nodots='nodots'}, {@nodots='nodots'}], [{@fowner_eq={'fowner', 0x3d, r4}}]})
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2362.174523] Call Trace:
[ 2362.174543]  dump_stack+0x1b2/0x283
[ 2362.174561]  warn_alloc.cold+0x96/0x1af
[ 2362.174574]  ? zone_watermark_ok_safe+0x250/0x250
[ 2362.174598]  ? wait_for_completion_io+0x10/0x10
[ 2362.174618]  __alloc_pages_nodemask+0x2129/0x2730
[ 2362.174653]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2362.174667]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2362.174695]  ? HARDIRQ_verbose+0x10/0x10
[ 2362.174707]  ? do_raw_spin_unlock+0x164/0x250
[ 2362.174724]  alloc_pages_current+0xe7/0x1e0
[ 2362.174742]  kvm_mmu_create+0xd1/0x1c0
[ 2362.174757]  kvm_arch_vcpu_init+0x282/0x890
[ 2362.174767]  ? alloc_pages_current+0xef/0x1e0
[ 2362.174783]  kvm_vcpu_init+0x26d/0x360
[ 2362.174799]  vmx_create_vcpu+0xf5/0x2950
[ 2362.174815]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2362.174826]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2362.174841]  ? alloc_loaded_vmcs+0x240/0x240
[ 2362.174869]  kvm_vm_ioctl+0x4ae/0x1430
[ 2362.174887]  ? __lock_acquire+0x655/0x42a0
[ 2362.174898]  ? kvm_vcpu_release+0xa0/0xa0
[ 2362.174910]  ? check_preemption_disabled+0x35/0x240
[ 2362.174924]  ? perf_trace_lock+0x109/0x4b0
[ 2362.174939]  ? check_preemption_disabled+0x35/0x240
[ 2362.174952]  ? perf_trace_lock+0x109/0x4b0
[ 2362.174969]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2362.174982]  ? HARDIRQ_verbose+0x10/0x10
[ 2362.174994]  ? kvm_vcpu_release+0xa0/0xa0
[ 2362.175007]  do_vfs_ioctl+0x75a/0xfe0
[ 2362.175021]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2362.175034]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2362.175061]  ? security_file_ioctl+0x76/0xb0
[ 2362.175072]  ? security_file_ioctl+0x83/0xb0
[ 2362.175085]  SyS_ioctl+0x7f/0xb0
[ 2362.175094]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2362.175109]  do_syscall_64+0x1d5/0x640
[ 2362.175129]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2362.175139] RIP: 0033:0x45cb09
[ 2362.175145] RSP: 002b:00007f014afdac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2362.175158] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2362.175165] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000008
[ 2362.175172] RBP: 000000000078c040 R08: 0000000000000000 R09: 0000000000000000
[ 2362.175178] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2362.175185] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014afdb6d4
[ 2362.178439]  mems_allowed=0-1
[ 2362.178466] CPU: 0 PID: 22466 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2362.178473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2362.178477] Call Trace:
[ 2362.178492]  dump_stack+0x1b2/0x283
[ 2362.178508]  warn_alloc.cold+0x96/0x1af
[ 2362.178520]  ? zone_watermark_ok_safe+0x250/0x250
[ 2362.178543]  ? wait_for_completion_io+0x10/0x10
[ 2362.178562]  __alloc_pages_nodemask+0x2129/0x2730
[ 2362.178596]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2362.178609]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2362.178635]  ? HARDIRQ_verbose+0x10/0x10
[ 2362.178646]  ? do_raw_spin_unlock+0x164/0x250
[ 2362.178662]  alloc_pages_current+0xe7/0x1e0
[ 2362.178677]  kvm_mmu_create+0xd1/0x1c0
[ 2362.178690]  kvm_arch_vcpu_init+0x282/0x890
[ 2362.178701]  ? alloc_pages_current+0xef/0x1e0
[ 2362.178715]  kvm_vcpu_init+0x26d/0x360
[ 2362.178728]  vmx_create_vcpu+0xf5/0x2950
[ 2362.178744]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2362.178753]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2362.178765]  ? alloc_loaded_vmcs+0x240/0x240
[ 2362.178784]  kvm_vm_ioctl+0x4ae/0x1430
[ 2362.178797]  ? __lock_acquire+0x655/0x42a0
[ 2362.178808]  ? kvm_vcpu_release+0xa0/0xa0
[ 2362.178818]  ? check_preemption_disabled+0x35/0x240
[ 2362.178832]  ? perf_trace_lock+0x109/0x4b0
[ 2362.178843]  ? check_preemption_disabled+0x35/0x240
[ 2362.178856]  ? perf_trace_lock+0x109/0x4b0
[ 2362.178872]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2362.178884]  ? HARDIRQ_verbose+0x10/0x10
[ 2362.178894]  ? kvm_vcpu_release+0xa0/0xa0
[ 2362.178907]  do_vfs_ioctl+0x75a/0xfe0
[ 2362.178920]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2362.178932]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2362.178955]  ? security_file_ioctl+0x76/0xb0
[ 2362.178964]  ? security_file_ioctl+0x83/0xb0
[ 2362.178976]  SyS_ioctl+0x7f/0xb0
[ 2362.178984]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2362.178998]  do_syscall_64+0x1d5/0x640
[ 2362.179015]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2362.179023] RIP: 0033:0x45cb09
[ 2362.179028] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2362.179039] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2362.179046] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2362.179052] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2362.179059] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2362.179066] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2362.290409] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2362.290439] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2362.290471] CPU: 1 PID: 22483 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2362.290482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2362.290487] Call Trace:
[ 2362.290512]  dump_stack+0x1b2/0x283
[ 2362.290537]  warn_alloc.cold+0x96/0x1af
[ 2362.290565]  ? zone_watermark_ok_safe+0x250/0x250
[ 2362.290598]  ? wait_for_completion_io+0x10/0x10
[ 2362.290626]  __alloc_pages_nodemask+0x2129/0x2730
[ 2362.290672]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2362.290693]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2362.290729]  ? HARDIRQ_verbose+0x10/0x10
[ 2362.290749]  ? do_raw_spin_unlock+0x164/0x250
[ 2362.290774]  alloc_pages_current+0xe7/0x1e0
[ 2362.290798]  kvm_mmu_create+0xd1/0x1c0
[ 2362.290820]  kvm_arch_vcpu_init+0x282/0x890
[ 2362.290838]  ? alloc_pages_current+0xef/0x1e0
[ 2362.290869]  kvm_vcpu_init+0x26d/0x360
[ 2362.290894]  vmx_create_vcpu+0xf5/0x2950
[ 2362.290917]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2362.290931]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2362.290952]  ? alloc_loaded_vmcs+0x240/0x240
[ 2362.290979]  kvm_vm_ioctl+0x4ae/0x1430
[ 2362.290998]  ? __lock_acquire+0x655/0x42a0
[ 2362.291016]  ? kvm_vcpu_release+0xa0/0xa0
[ 2362.291032]  ? check_preemption_disabled+0x35/0x240
[ 2362.291049]  ? perf_trace_lock+0x109/0x4b0
[ 2362.291065]  ? check_preemption_disabled+0x35/0x240
[ 2362.291081]  ? perf_trace_lock+0x109/0x4b0
[ 2362.291100]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2362.291115]  ? HARDIRQ_verbose+0x10/0x10
[ 2362.291127]  ? kvm_vcpu_release+0xa0/0xa0
[ 2362.291140]  do_vfs_ioctl+0x75a/0xfe0
[ 2362.291156]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2362.291171]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2362.291196]  ? security_file_ioctl+0x76/0xb0
[ 2362.291207]  ? security_file_ioctl+0x83/0xb0
[ 2362.291220]  SyS_ioctl+0x7f/0xb0
[ 2362.291229]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2362.291246]  do_syscall_64+0x1d5/0x640
[ 2362.291268]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2362.291277] RIP: 0033:0x45cb09
[ 2362.291283] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2362.291296] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2362.291304] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2362.291312] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2362.291319] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2362.291328] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2362.343278] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2362.343377] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2362.343406] CPU: 1 PID: 22483 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2362.343413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2362.343419] Call Trace:
[ 2362.343441]  dump_stack+0x1b2/0x283
[ 2362.343464]  warn_alloc.cold+0x96/0x1af
[ 2362.343479]  ? zone_watermark_ok_safe+0x250/0x250
[ 2362.343508]  ? wait_for_completion_io+0x10/0x10
[ 2362.343529]  __alloc_pages_nodemask+0x2129/0x2730
[ 2362.343565]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2362.343588]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2362.343620]  ? HARDIRQ_verbose+0x10/0x10
[ 2362.343635]  ? do_raw_spin_unlock+0x164/0x250
[ 2362.343655]  alloc_pages_current+0xe7/0x1e0
[ 2362.343675]  kvm_mmu_create+0xd1/0x1c0
[ 2362.343693]  kvm_arch_vcpu_init+0x282/0x890
[ 2362.343706]  ? alloc_pages_current+0xef/0x1e0
[ 2362.343723]  kvm_vcpu_init+0x26d/0x360
[ 2362.343742]  vmx_create_vcpu+0xf5/0x2950
[ 2362.343760]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2362.343772]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2362.343789]  ? alloc_loaded_vmcs+0x240/0x240
[ 2362.343812]  kvm_vm_ioctl+0x4ae/0x1430
[ 2362.343826]  ? __lock_acquire+0x655/0x42a0
[ 2362.343841]  ? kvm_vcpu_release+0xa0/0xa0
[ 2362.343863]  ? check_preemption_disabled+0x35/0x240
[ 2362.343882]  ? perf_trace_lock+0x109/0x4b0
[ 2362.343899]  ? check_preemption_disabled+0x35/0x240
[ 2362.343915]  ? perf_trace_lock+0x109/0x4b0
[ 2362.343932]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2362.343945]  ? HARDIRQ_verbose+0x10/0x10
[ 2362.343957]  ? kvm_vcpu_release+0xa0/0xa0
[ 2362.343970]  do_vfs_ioctl+0x75a/0xfe0
[ 2362.343987]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2362.344003]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2362.344031]  ? security_file_ioctl+0x76/0xb0
[ 2362.344042]  ? security_file_ioctl+0x83/0xb0
[ 2362.344057]  SyS_ioctl+0x7f/0xb0
[ 2362.344067]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2362.344084]  do_syscall_64+0x1d5/0x640
[ 2362.344109]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2362.344119] RIP: 0033:0x45cb09
[ 2362.344125] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2362.344139] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2362.344147] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2362.344154] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2362.344163] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2362.344171] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2362.486420] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2362.486452] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2362.486487] CPU: 0 PID: 22511 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2362.486495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2362.486501] Call Trace:
[ 2362.486520]  dump_stack+0x1b2/0x283
[ 2362.486541]  warn_alloc.cold+0x96/0x1af
[ 2362.486555]  ? zone_watermark_ok_safe+0x250/0x250
[ 2362.486577]  ? wait_for_completion_io+0x10/0x10
[ 2362.486615]  __alloc_pages_nodemask+0x2129/0x2730
[ 2362.486656]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2362.486671]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2362.486701]  ? HARDIRQ_verbose+0x10/0x10
[ 2362.486716]  ? do_raw_spin_unlock+0x164/0x250
[ 2362.486734]  alloc_pages_current+0xe7/0x1e0
[ 2362.486768]  kvm_mmu_create+0xd1/0x1c0
[ 2362.486787]  kvm_arch_vcpu_init+0x282/0x890
[ 2362.486800]  ? alloc_pages_current+0xef/0x1e0
[ 2362.486816]  kvm_vcpu_init+0x26d/0x360
[ 2362.486834]  vmx_create_vcpu+0xf5/0x2950
[ 2362.486859]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2362.486874]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2362.486891]  ? alloc_loaded_vmcs+0x240/0x240
[ 2362.486914]  kvm_vm_ioctl+0x4ae/0x1430
[ 2362.486937]  ? __lock_acquire+0x655/0x42a0
[ 2362.486953]  ? kvm_vcpu_release+0xa0/0xa0
[ 2362.486967]  ? check_preemption_disabled+0x35/0x240
[ 2362.486982]  ? perf_trace_lock+0x109/0x4b0
[ 2362.486995]  ? check_preemption_disabled+0x35/0x240
[ 2362.487016]  ? perf_trace_lock+0x109/0x4b0
[ 2362.487034]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2362.487048]  ? HARDIRQ_verbose+0x10/0x10
[ 2362.487061]  ? kvm_vcpu_release+0xa0/0xa0
[ 2362.487073]  do_vfs_ioctl+0x75a/0xfe0
[ 2362.487095]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2362.487113]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2362.487144]  ? security_file_ioctl+0x76/0xb0
[ 2362.487157]  ? security_file_ioctl+0x83/0xb0
[ 2362.487172]  SyS_ioctl+0x7f/0xb0
[ 2362.487182]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2362.487202]  do_syscall_64+0x1d5/0x640
[ 2362.487224]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2362.487234] RIP: 0033:0x45cb09
[ 2362.487243] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2362.487269] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2362.487277] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2362.487285] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2362.487294] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2362.487302] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2362.490052] warn_alloc_show_mem: 4 callbacks suppressed
[ 2362.490057] Mem-Info:
[ 2362.490083] active_anon:428092 inactive_anon:21640 isolated_anon:0
[ 2362.490083]  active_file:3405 inactive_file:25814 isolated_file:0
[ 2362.490083]  unevictable:13607 dirty:19 writeback:0 unstable:0
[ 2362.490083]  slab_reclaimable:20305 slab_unreclaimable:317568
[ 2362.490083]  mapped:68428 shmem:24729 pagetables:27478 bounce:0
[ 2362.490083]  free:653517 free_pcp:638 free_cma:0
[ 2362.490102] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:0kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2362.490125] Node 1 active_anon:191524kB inactive_anon:65488kB active_file:13616kB inactive_file:103252kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64796kB dirty:76kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2362.490130] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2362.490156] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2362.490180] Node 0 DMA32 free:34396kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1484kB local_pcp:760kB free_cma:0kB
[ 2362.490211] lowmem_reserve[]: 0 0 0 0 0
[ 2362.490234] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2362.490257] lowmem_reserve[]: 0 0 0 0 0
[ 2362.490283] Node 1 Normal free:2569316kB min:53592kB low:66988kB high:80384kB active_anon:191524kB inactive_anon:65488kB active_file:13616kB inactive_file:103252kB unevictable:54428kB writepending:32kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28864kB pagetables:74608kB bounce:0kB free_pcp:1068kB local_pcp:692kB free_cma:0kB
[ 2362.490308] lowmem_reserve[]: 0 0 0 0 0
[ 2362.490326] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2362.490431] Node 0 DMA32: 2853*4kB (UMEH) 1065*8kB (UMEH) 454*16kB (UME) 148*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34364kB
[ 2362.490509] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2362.490578] Node 1 Normal: 833*4kB (UME) 332*8kB (UME) 242*16kB (UE) 183*32kB (UME) 65*64kB (UE) 4*128kB (E) 3*256kB (UME) 1*512kB (E) 2*1024kB (UE) 5*2048kB (UM) 619*4096kB (UM) = 2569380kB
[ 2362.490679] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2362.490688] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2362.490696] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2362.490704] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2362.490709] 48206 total pagecache pages
[ 2362.490721] 0 pages in swap cache
[ 2362.490728] Swap cache stats: add 0, delete 0, find 0/0
[ 2362.490732] Free swap  = 0kB
[ 2362.490737] Total swap = 0kB
[ 2362.490745] 1965979 pages RAM
[ 2362.490751] 0 pages HighMem/MovableOnly
[ 2362.490755] 338456 pages reserved
[ 2362.490760] 0 pages cma reserved
01:29:25 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setsockopt$CAN_RAW_JOIN_FILTERS(0xffffffffffffffff, 0x65, 0x6, &(0x7f0000000100), 0x4)
write$USERIO_CMD_SEND_INTERRUPT(r2, &(0x7f00000000c0), 0x2)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {0xaf}, {0xfff}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
lsetxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.redirect\x00', &(0x7f0000000080)='./file0\x00', 0x8, 0x1)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r3, 0x4020565b, &(0x7f00000000c0)={0x6, 0x3f})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$KVM_SET_DEBUGREGS(r4, 0x4080aea2, &(0x7f0000000100)={[0x1000, 0x1, 0x5000, 0xa000], 0xfffffffffffff001, 0x0, 0x9})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:29:25 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$VIDIOC_G_JPEGCOMP(r5, 0x808c563d, &(0x7f0000000180))
r7 = fcntl$dupfd(r4, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000140)={0x401, 0x3a, 0x0, <r8=>r7})
r9 = dup(r8)
r10 = dup(r9)
r11 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={<r12=>0xffffffffffffffff, <r13=>0xffffffffffffffff})
r14 = fcntl$dupfd(r11, 0x0, r13)
ioctl$PERF_EVENT_IOC_ENABLE(r14, 0x8912, 0x400200)
ioctl$ASHMEM_SET_NAME(r12, 0x41007701, &(0x7f0000000100)='/dev/dri/card#\x00')
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r10})
ioctl$DMA_BUF_IOCTL_SYNC(r10, 0x40086200, &(0x7f0000000080)=0x5)

01:29:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
ioctl$VIDIOC_G_EXT_CTRLS(0xffffffffffffffff, 0xc0205647, &(0x7f0000000080)={0xa00000, 0x6, 0x9, <r4=>r2, 0x0, &(0x7f0000000040)={0xfa5442f37e5505d8, 0x7fffffff, [], @p_u8}})
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$TIOCL_SELLOADLUT(r6, 0x541c, &(0x7f0000000380)={0x5, 0x40, 0x101, 0x0, 0x7})
fcntl$dupfd(r5, 0x0, r6)
setsockopt$TIPC_CONN_TIMEOUT(r6, 0x10f, 0x82, &(0x7f0000000340)=0xd0d9, 0x4)
sendmsg$nl_crypto(r4, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0xe0}, 0x1, 0x0, 0x0, 0x4800}, 0x48080)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
readlink(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)=""/61, 0x3d)

[ 2364.419657] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2364.421033] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2364.421073] CPU: 1 PID: 22524 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2364.421081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2364.421085] Call Trace:
[ 2364.421105]  dump_stack+0x1b2/0x283
[ 2364.421132]  warn_alloc.cold+0x96/0x1af
[ 2364.421145]  ? zone_watermark_ok_safe+0x250/0x250
[ 2364.421168]  ? wait_for_completion_io+0x10/0x10
[ 2364.421187]  __alloc_pages_nodemask+0x2129/0x2730
[ 2364.421220]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2364.421234]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2364.421260]  ? HARDIRQ_verbose+0x10/0x10
[ 2364.421272]  ? do_raw_spin_unlock+0x164/0x250
[ 2364.421291]  alloc_pages_current+0xe7/0x1e0
[ 2364.421307]  kvm_mmu_create+0xd1/0x1c0
[ 2364.421322]  kvm_arch_vcpu_init+0x282/0x890
[ 2364.421332]  ? alloc_pages_current+0xef/0x1e0
[ 2364.421346]  kvm_vcpu_init+0x26d/0x360
[ 2364.421363]  vmx_create_vcpu+0xf5/0x2950
[ 2364.421387]  ? alloc_loaded_vmcs+0x240/0x240
[ 2364.421401]  ? kvm_arch_vcpu_create+0x79/0xb0
[ 2364.421419]  kvm_vm_ioctl+0x4ae/0x1430
[ 2364.421432]  ? __lock_acquire+0x655/0x42a0
[ 2364.421445]  ? kvm_vcpu_release+0xa0/0xa0
[ 2364.421456]  ? check_preemption_disabled+0x35/0x240
[ 2364.421471]  ? perf_trace_lock+0x109/0x4b0
[ 2364.421487]  ? check_preemption_disabled+0x35/0x240
[ 2364.421503]  ? perf_trace_lock+0x109/0x4b0
[ 2364.421520]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2364.421533]  ? HARDIRQ_verbose+0x10/0x10
[ 2364.421543]  ? kvm_vcpu_release+0xa0/0xa0
[ 2364.421559]  do_vfs_ioctl+0x75a/0xfe0
[ 2364.421574]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2364.421589]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2364.421619]  ? security_file_ioctl+0x76/0xb0
[ 2364.421632]  ? security_file_ioctl+0x83/0xb0
[ 2364.421649]  SyS_ioctl+0x7f/0xb0
[ 2364.421659]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2364.421678]  do_syscall_64+0x1d5/0x640
[ 2364.421703]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2364.421715] RIP: 0033:0x45cb09
[ 2364.421721] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2364.421736] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2364.421744] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2364.421751] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2364.421758] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2364.421766] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2364.422138] Mem-Info:
[ 2364.422171] active_anon:428061 inactive_anon:21639 isolated_anon:0
[ 2364.422171]  active_file:3405 inactive_file:25814 isolated_file:0
[ 2364.422171]  unevictable:13607 dirty:51 writeback:0 unstable:0
[ 2364.422171]  slab_reclaimable:20252 slab_unreclaimable:317675
[ 2364.422171]  mapped:68423 shmem:24729 pagetables:27480 bounce:0
[ 2364.422171]  free:653560 free_pcp:636 free_cma:0
[ 2364.422194] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:0kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2364.422218] Node 1 active_anon:191400kB inactive_anon:65484kB active_file:13616kB inactive_file:103252kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64776kB dirty:204kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2364.422225] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2364.422253] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2364.422282] Node 0 DMA32 free:34364kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1484kB local_pcp:724kB free_cma:0kB
[ 2364.422311] lowmem_reserve[]: 0 0 0 0 0
[ 2364.422340] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2364.422367] lowmem_reserve[]: 0 0 0 0 0
[ 2364.422395] Node 1 Normal free:2569520kB min:53592kB low:66988kB high:80384kB active_anon:191400kB inactive_anon:65484kB active_file:13616kB inactive_file:103252kB unevictable:54428kB writepending:252kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28864kB pagetables:74616kB bounce:0kB free_pcp:1052kB local_pcp:432kB free_cma:0kB
[ 2364.422426] lowmem_reserve[]: 0 0 0 0 0
[ 2364.422453] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2364.422565] Node 0 DMA32: 2853*4kB (UMEH) 1068*8kB (UMEH) 454*16kB (UME) 148*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34388kB
[ 2364.422660] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2364.422733] Node 1 Normal: 928*4kB (UME) 442*8kB (UME) 169*16kB (UME) 100*32kB (UME) 67*64kB (UME) 28*128kB (UE) 3*256kB (UME) 2*512kB (UE) 1*1024kB (E) 5*2048kB (UM) 619*4096kB (UM) = 2569504kB
[ 2364.422867] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2364.422877] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2364.422886] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2364.422896] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2364.422902] 48206 total pagecache pages
[ 2364.422915] 0 pages in swap cache
[ 2364.422923] Swap cache stats: add 0, delete 0, find 0/0
[ 2364.422927] Free swap  = 0kB
[ 2364.422933] Total swap = 0kB
[ 2364.424278] 1965979 pages RAM
[ 2364.424285] 0 pages HighMem/MovableOnly
[ 2364.424290] 338456 pages reserved
[ 2364.424373] 0 pages cma reserved
[ 2364.668929] warn_alloc: 1 callbacks suppressed
[ 2364.668935] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2364.668963] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2364.668991] CPU: 0 PID: 22540 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2364.668998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2364.669003] Call Trace:
[ 2364.669023]  dump_stack+0x1b2/0x283
[ 2364.669043]  warn_alloc.cold+0x96/0x1af
[ 2364.669058]  ? zone_watermark_ok_safe+0x250/0x250
[ 2364.669083]  ? wait_for_completion_io+0x10/0x10
[ 2364.669104]  __alloc_pages_nodemask+0x2129/0x2730
[ 2364.669142]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2364.669157]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2364.669186]  ? HARDIRQ_verbose+0x10/0x10
[ 2364.669200]  ? do_raw_spin_unlock+0x164/0x250
[ 2364.669216]  alloc_pages_current+0xe7/0x1e0
[ 2364.669232]  kvm_mmu_create+0xd1/0x1c0
[ 2364.669248]  kvm_arch_vcpu_init+0x282/0x890
[ 2364.669259]  ? alloc_pages_current+0xef/0x1e0
[ 2364.669276]  kvm_vcpu_init+0x26d/0x360
[ 2364.669292]  vmx_create_vcpu+0xf5/0x2950
[ 2364.669308]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2364.669319]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2364.669335]  ? alloc_loaded_vmcs+0x240/0x240
[ 2364.669355]  kvm_vm_ioctl+0x4ae/0x1430
[ 2364.669373]  ? __lock_acquire+0x655/0x42a0
[ 2364.669387]  ? kvm_vcpu_release+0xa0/0xa0
[ 2364.669406]  ? check_preemption_disabled+0x35/0x240
[ 2364.669426]  ? perf_trace_lock+0x109/0x4b0
[ 2364.669444]  ? check_preemption_disabled+0x35/0x240
[ 2364.669460]  ? perf_trace_lock+0x109/0x4b0
[ 2364.669478]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2364.669493]  ? HARDIRQ_verbose+0x10/0x10
[ 2364.669507]  ? kvm_vcpu_release+0xa0/0xa0
[ 2364.669520]  do_vfs_ioctl+0x75a/0xfe0
[ 2364.669534]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2364.669559]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2364.669587]  ? security_file_ioctl+0x76/0xb0
[ 2364.669600]  ? security_file_ioctl+0x83/0xb0
[ 2364.669615]  SyS_ioctl+0x7f/0xb0
[ 2364.669624]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2364.669638]  do_syscall_64+0x1d5/0x640
[ 2364.669658]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2364.669668] RIP: 0033:0x45cb09
[ 2364.669675] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2364.669688] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2364.669696] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2364.669703] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2364.669710] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2364.669717] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
01:29:26 executing program 3:
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ubi_ctrl\x00', 0x8100, 0x0)
ioctl$SIOCX25CALLACCPTAPPRV(r0, 0x89e8)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r2 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000a80)=@filter={'filter\x00', 0xe, 0x4, 0x13a8, 0x0, 0x0, 0x1208, 0x108, 0x108, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'rose0\x00', 'netdevsim0\x00'}, 0x0, 0x10d8, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030, 'cgroup\x00'}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1408)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000016c0)=<r5=>0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="340500004b81aee12a8a5d9cb054572009d1b4a816442a04b8ff6d84d1b1e658e8932ab268ca6bfd278e0e8d1c520a3421ecbb655405444491a1ab15dadc23f5dd7cda133cdeda33d54d8878e0e30f50dfd95c78fcb1465b07000000f40c890600ae1de149b9d3ec23c6fd1050da5cb8c02e5ca34717f300cbb22cae340ce633", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYRES32, @ANYRES32, @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB, @ANYRES32=r5, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="0000b6cb7e78093b9c73000048633d53f983a1322f7141d36638ce19a1a86b882de6c5aa1bc177dd7295427c755199592eff96b59cf81128dc35e74f00000000000000"], 0x58, 0x4}, 0x4040000)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10, 0x0, 0x0, 0x1, 0x0, 0xa0}, r5, 0x1, 0xffffffffffffffff, 0x8)
r6 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FS_IOC_SETVERSION(r6, 0x40087602, &(0x7f00000000c0)=0x5)
ioctl$FBIOPUT_VSCREENINFO(r6, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:26 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x4, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r5, 0x6, 0x1d, &(0x7f0000000140), &(0x7f0000000180)=0x14)
r6 = dup(r2)
r7 = dup(r6)
r8 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = fcntl$dupfd(r8, 0x0, r9)
ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r7})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f0000000080)=0x5)

01:29:27 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x2})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
pwritev(r2, &(0x7f0000002380)=[{&(0x7f00000001c0)="455ac3d6759288c74212e2a25dd441d0b0bb466cf5492fc383d8a21eb249b2364f4f3d07ad10860bd0384e553cc9ffeda2dc65c25b309647abb6e7f4edd9089bea4a7169effc1713c85e68e889fd780efd25dbfc3f9bb0cce498e48e2dd388daf78db5aae2042cecb0f8100e56240c34973f16cc8f653c14415d28e03c3b9aadf3482a5c5513da035005ecad95ad08fea129a6b39f43789cb10eafb8c59afe9111f98303b7a336d4a1896f4d47c95510276e0e1d8b6c5e123b741277641873544d3faad099580c3e79c89f1d633232910ebedcb8af239cfd39e373f67778e2", 0xdf}, {&(0x7f00000000c0)="0da50d2ae5c56541ec6b5c8db6bf9376b70fee7f5798a5ab86c4daee457b4a13bd69afe4253d20b4fb355b691139e9e81953cbc5159140e1f50fbdcabd4e9e5bb91e5c5a496686769186a65a3e777fad86d4b1838de2f56d0dfd1315768e02f3b69be9599718615ee3573c32", 0x6c}, {&(0x7f00000002c0)="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", 0x1000}, {&(0x7f00000012c0)="d7cbb7e98f74156bdcd98e24f2cd60d6483dd748bf849fa5334e7d172658a628e50243938ae077839fc33eadf1446eba6e051cba2eac909ce25cae8e1f2ded6d8de71cdf41727c1b7141e677645ecc72276dd335c08083fdca62c6e29ed26a872568c3dd6d7431bb773db6ce4af6a2c2e6e3e461564deb8406a19b0dee6e40c2c1614ce9f1d6d5580bffbf59d29e4e3e14da17c4b801f9d3480fd30c70c656f32185114e2438446f56b6cac41cd5f7eebc8e12f88a1902f65d5a582dc7ce3c30ea3a8d185ca554c36c14c0b1670462a60c6876338a9531b2cbd159995ad97b179ab45c1688a8792b5c33a3b8182bda79f6f0fcbbc532d5f7367f1f6357c57331f0eae6f30ce34bf9c1656748182ef3a1ae80b4cb7b1f36ac2d9223532e0dd6434604caf8d7bb7a89d21f7f346dbb4c817754dd38cfe2db6a4bd2bdba9751822d0da49ce127ada920191e1453e3418cb51a023edfbb7de55400a6522478381515c8014f3684c2197f4cff91174cd9428c84976afbd88c5896aa05ad04977e665a379d8c0673b290c826d45ddd7647c9e5ddc5dd1bca9c1bdc86240cf4eb290115b8ced8da81e03af305185acaea8c80c7623c607096a332f98ec64db75df650af0e534caa4dbd1d423f975dce5bd3f065733ef8d5f3d9c83c89b6bb3966d82f272c96cfd53c71d793ac014885d67c82bdf4122e3ba51a94f2fc01b7fc706a13adb6dbc4fb60a882e7ebd92c6e1831a92d5c1bdcf846944377086819f199d4a6cd0c8bc4586464046bac8c6370701200be7b83ecb8840ef4a10015be5a5bf4ec014e8160e71e620e582417ef09daac763a807a09d76fadf958e847aa9f66d0236481d2ebcd54d0e9c22d8fcb45f1d80f5d53a04a0fba24674ccdc916b770f302278fc72af5dc4f10f759e8b39e490638d45f5358bab2034e7324d4637c0a63b456ccfaa41f8d47b88c1e6c9c7152b89c29828b04995b05de0455ccfbf89c5513a630251acee5c75faa37449597ad00b93693f3b5a3f8384223e3dba54c3d9c95b2c7c028eaacc832d43b490f8ed8b4174301445a87d735451fa27f0db84b2c6fa44205615274ea8aeba9c7c6d4d16858d03cc8d44f15629ee0414306f43d54629368e933399d9b57b08cc81981f5fb7ab33583be4fee9517cf3d0625be49eb2a9a73d79a7560fe3950d5a4ced786366ee2f14a3c2519f35944d8447a47ce4dde6724666e15babaa7babe4f90c2cd5972d1e4359d67ec8a7c175551e2f952c81c56611d9821ca35ad396b4dfd8473bd74797c6d00fad7b7ba5bc917a34aefcb334678fc357f685c246791392746bd9619cf580ad9609d739cb833709014aa68cd642bd2c1895b74842a03e6e447d2dee2983d9b21f25b3d5d0ab0e4492c16135af0d41ffa2855880168f740b81b9306817278a5dbf386c7a5b8f8483dfab8dac9cf12d91edc6812284b38fc49f845ccf4d1e1a375f7f6a6e419b2f77e23ca211767248873210c32a4dd789f1262c72ebad5d260bf261266d7e16648027f5a2422a7490559fac1c629c3d0858bfb3acca81eada1134090f5f035528ca13f4299e324beb6469dcd9cda451d05b29278777b3a82015eb4a9fe32af22d7402a9674267f5ca98e02cbf0f528a3b8c2520c528798da4ed51d2fbfd6ae4f2aa7597860bec3fadc541e5ce610de72b8217df66606b4c181d3a52d61b50caf3bd88d17e1fb9aa143d72d308736ca47feb582edb9c6210575e17cadc2c151f41a9e543bd406715f6890fd426b34b7f2638392334ee8b9442cdaad2ca3fc253d5bbdc27f485c4d6c1dc4693a3f53c32495b990b254034c5b16727ae147177e1833f5e64d597324f7fb725bbf55511b5e478e2c238458ab5bd92c6b5a4f5688b81eec4ffe5de08296fb4a6bef453a122a76d6da33716823eba48d313007e6cc42de3ed728a970eb230ff3872a1ae09afd196072a79b6a20ed92055cff6c7d1c8824faf0e7da0be423b63afc4f01afbf773b59362511275c021bf87d97e2c0322fc8770b3d36edfa7074c3361b690fac531e022e8fe743b00d37026e11b62ae823edfff0cbd4ce2a1a2f978e60d41c735c40fea6e789b2dfd03faac3b7ac9e8b1c2af8074a0a0f273e9e96acb15bfb2d9ef19e1211b04e82de606368b4fdc7fdce96ae735e679561b579ac4209510b8d5f65a17b599918b557467d62dcd6f78733b5aa63f880b92f1f1d9fceef65721b65fd7bc7c52ff1b1bf18eecd981d5f0100a774a5407d752cca550281f45bb84dc871397f557fd0582771eed13295fd335b68708fb5fd417bfd0a81f64359521ec98cd684a41d7b528f9906e92d0e3392917b3c2b94bf038ea960b4118ea44af6bc9a86c21ea2b0de44e2dd4d6327e216077abbb35b48b870615c16ba43c1a691b8bbc4b1d8e6549b9b83b5532b0b9f6238f45e44c7730b016654d4d00aecfb48eed6807867470e512b79e4408d92833e4b9d6a951a0e080f895e4176b4add54144de7c045ad1a2e97614bbc66b880a4b57464a1773d073495f337fc04ec5dc3ab6f014a4da641b56e3891ed9a4be5ebbc938f3b95c5434baf92e73ade912a03f86e937971dbea1bea4019a4d90b0b766360352b79ccba1511950153139ccd45265833aa7f42937b959a4032f25f081f5a98633b9c8b2cd3d76ecda2910865822c915f823e3b9499d917084623e5bd76b52be7324dd1742734d01f4c63f7f2991da20a860b0ec6a5e68d5cb0f61e42c0314a8ea851fff2446da8f4ecd929e3a0d8cde55ef24c36ca415ef8d46c1298de96ff793ed5b48d277aa8f0adf6d0ca59c7b996705df3293f9946bb0d43c8809846de8c66852732b3208667534413d52fb7aa4d390a6416b0b2a82dcd95975e0040abceaba3a48cb125e394ad62f7b345d695974daffb680818061a1917778adff28b6e0e079a98f35857a177eadc032bafbc7deda420e3404f9a4f22b59879ebc697ef181a12ce6e05c3bae4ca98cdd5558d5166467ea4e80b17db8ca2e00c9a3e913f7990e898aed3305e70c81317ee15a4b018c52e0682483f34eb7ff080d8cd77379f0a39ce869ba313e73c8b0763c68ce863854cec8028b3ccf8ce39f8029394ec5e8de251935b46b57c06b1932f5744e283f05ef574cb8c86180628fd19575fd6d0aec663f69ae96e5d1a013485775467b370bd69b6111b17938eea19f3718b8c5fbc5e3c03c59497d3e78877ec51ff4aae50a03527015e6b3d95b24535a7535572ed85fb2cd68403c1f9aff0698bfcf6dc2a18fe46795138d75e1cfde6d51c89e3c4d0bb8e7d55532ac7e73c19cd5a82e482788fabaae6abaa51131ff7d57665cf9e94b1ebd633b1aa7d92fc9e39be6824b5344165cf4170119d4b3d7359ca2ec8a34da33adb4313e068f0a3b7f93fdb8d2fe2adf6d7752de8ccbdfec48194d045ee1879b6153f7a038caa04893750e0a96ae455b8c6a547ecf248017ac40bb852204f51fe252a16d0858b7f1e5ad74f6b91116df73dab79a7cb1ed0edc7ba707f0f2d22dcd3993f17106bab29aaa6d2051c33603d0da33f9232c787f9b15e96a584f4d4ae8630677b9b717337957c01875e8304129112558de23a58a926e0979cae42f492c0063b345779531e038ca247cf24403c8bcf686fd4928e8769052bdc80b73068ff79ff3fb82876b5907b9ce7e6ee0044d52852a6f3587f82f849c1081bb52bb0320249efce2642c7a212bf6033b545748403f14741cb933d49f85a0bd941f5675963fed31950910418e107cec40b55bb40f55c2b57f3d0a633573dd317b8d5f65e88fd18c4dfe9ae80ff828476d158b94064623fabf685db2126690acc39526b7c718a0285b01d56f81571fec0c5375d1600a6c9b09225bdaf8a50d05429c041378c2c41bae2fce69277d345ad15af7b0c1884af17a1446890e235ec3edac9fbe0219a6c1d4a2b5e8699b22be27184fd52533925b5837416dc81ca9f79b0165f69469e6c3f7569afee096497eb93b7c02f561e416d5482ba6dda6d511e232aeb25ea2c82711917f5ebd0c8ac89fa6d5184070d7e29d21be8311cdb493612f1d5d96d0c4a2f6b34d17232e811b840ec3d0e9d3fefa2036bea2b0795acf63ed21c0887c5eaf742352f3a40d47424c7887ec8923b5cf007377620a2d4dc9f7f99c31094202402840d9df0b64bb05ba76480ecfa334e3bd4d7bf24f6cf111938bd3eecf20edfc2a894cf89894b2e4f0daf11acfc93275db333771126ee154c73f0029029e10fca644a2eed8b0770c2f220a7b65574e90fb9a77e7b72bdc15e16cbc4aa862c01492c2a8bc9819ba0c094939091381e8cb42eb4ff6a3efbd26b446faa276923ceb12491defe1bed5ba0d7a7440ae2fe697b0063216a5e8873c51e609b595e7d2ead087e3d514fdf79947e60289e557c5f49f902c95482864d915e98f391eb8298ef9d09a15432a429dc4a2592f83eeaee8478145bb219cf8654bce3ac3349c19758f5116f76dd5f64d1467b5ddb60f79a7d85c9ae24561d653b553087e8c7d1f37576ccd7e1bd8abbbaafb46efb633b137c8216f5e7c1ce57758757968336e9f1747eac79d1d46702c66ead3132de4950ab65d5deb7e39524603474f885abcfac77feb75c5828f5a220923f4107fc5538f39b0a7d861b6e2f2998e87f20a37e49c8e958387e0df73492a6d01c291cb5d807df074ba2228c57da22f000121b3a944cd175bd04dc2dcca792a175bace32e460e6d241694efc31857128ded02734a94c67f6f5994d94358964897cb3ee0d84dff1711f1f972c1e545e6a405a28c199a97547996316ae68bf165bfb46cb11481c63b3e6232ec22de9f2999ed9869b2a63ee27f26526a1bb2a1c7d02f2418b2eebebaf8f49d42e6d97fc319147f7e368b3958bb57efcf2976f98a6c49ee645fbc5816efde4bd06b0cebc759dcc07bd6a8eb1538938dfd386a851b46623c3168c04d068c77177815d31a87aa5c8f8c94092d085001f8c67b9fbf8a34d9ac0f8cfb3bf64e7ff2cf59511ba654fd5282057cd01390b33c1dbb9c69e19d57953f1aa1e90987d2f4d1f106d5fd5bd1e37ec88709c9e90d4fd40cb658944acfca5329847704896e3f2f16a30a7a531af9bddfd58ab05cfdc70cfcf23a618df3455003452f3d66278570ef24c553933f2dfef46b0fa7d3a90ab37fcb2e7fefb7868b575b86e74a1c86ef919bd2ec073647a99d27cbe42b202008a73058146a471c7e0062ad71f8250edaa76c99ab7d6516f7038376a1900cf295dc2dbf824cfe6c4573d61b66ed037f53a93f5f89c38a0218f3598df22c33098e6e30af44f6dccb6f631e2931d15a3086638339c0de7bff56a6f81164fdf94c0dc62a3bd065616b09346c66c7eb9662cf1931f2c708c056cb46e36708746a579e8b034c62960a3104bace9d40710cd022941312e24ad0c53556628bb0a7a51864fe58f0a91189b578887ee566b56746a11b10fea71ca48cc51ba870edca0cfd995120c7fe8bd3df4d4d18853288beb3aafe9581c154982a29ed91dbb2c54706f8ba1991c615240b8b7e725b8462f6d1d03121fa2f80116b2fcf2473e1b798df62b90bc5ea47b41975efab95f0fabf10e420ff42e6016cbb6712c7e21dcb8cff51333db53176bb46ef44039b87938a7fb47b22146387ef8b86df0a2b95fd1e6e66df9aa51f3d303c169ab994cb555e202b6c0d5a48328f467d15a200a95724c54b38044b09f00394b14564b30a589b3c32e645ed54e5e5dfa2946ec4211eda658c4513bc5f10f724b5879ff957e7c03bc3aa76cba63f56", 0x1000}, {&(0x7f00000022c0)="a5e3d6d3fe0a088d1a2e584586022ef5a4681827be1d2e3819e09b05a1164a82b5863667ae2ec241da9a3280c8b418c1579ebe6cbddc56eb6dc71bfcde56e5c91e2c16e5c5db6e4768761f19ead745cbd69b6284b918f8fe8f17ed97f9a3d312873b4591b1cade8789b545ff4a6594b34729fd4ff7c7f606c38519054171f84a795cf1edc2cb0cd75a61cfda47bdbead4104484451fdee76f8914870a4ba3a5b54ab6f309e3efe7faaa1041a0d", 0xad}], 0x5, 0xb0f)

01:29:27 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000140)={<r4=>0x0, 0x9, 0x2, [0x186, 0x100]}, &(0x7f0000001280)=0xc)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f00000001c0)={r4, 0xff, 0x3, [0x7ff, 0x1f, 0xe801]}, &(0x7f0000001240)=0xe)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
r5 = socket$unix(0x1, 0x2, 0x0)
r6 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvme-fabrics\x00', 0x280080, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000100)={r6, &(0x7f0000000240)="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", &(0x7f00000000c0)=""/12}, 0x20)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = fcntl$dupfd(r5, 0x0, r7)
ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200)
ioctl$sock_inet_SIOCDELRT(r8, 0x890c, &(0x7f0000000000)={0x0, {0x2, 0x4e20, @empty}, {0x2, 0x4e20, @multicast2}, {0x2, 0x4e21, @multicast1}, 0x180, 0x0, 0x0, 0x0, 0x8, 0x0, 0x9, 0x9, 0x1})
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:29:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
r8 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
fcntl$dupfd(r8, 0x0, r9)
setsockopt$ARPT_SO_SET_REPLACE(r9, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x7, 0x4, 0x3f0, 0x0, 0x220, 0x220, 0x308, 0x308, 0x308, 0x4, &(0x7f0000000100), {[{{@arp={@remote, @dev={0xac, 0x14, 0x14, 0x27}, 0x0, 0xffffff00, 0xe, 0x6, {@empty, {[0x0, 0xff, 0x0, 0xff, 0xff, 0xff]}}, {@empty, {[0x0, 0x0, 0xff, 0xff, 0x0, 0xff]}}, 0x4, 0x1ff, 0x2, 0x5c, 0x0, 0x3, 'veth0_to_bond\x00', 'vcan0\x00', {}, {}, 0x0, 0x9}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac, @multicast2, @multicast2, 0x2, 0xffffffff}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@link_local, @empty, @local, @multicast2, 0xf, 0xffffffff}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x9}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x440)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
r10 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
r12 = fcntl$dupfd(r10, 0x0, r11)
ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200)
fcntl$dupfd(r2, 0x406, r12)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

[ 2366.151044] ip6_tables: ip6tables: counters copy to user failed while replacing table
01:29:27 executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x20000, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000100)={r3, 0x6}, 0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000140)={r3, @in6={{0xa, 0x4e21, 0x1, @dev={0xfe, 0x80, [], 0x19}, 0x7}}, [0x4, 0x9, 0xffffffffffffffff, 0x3, 0x7, 0xe55, 0x4, 0x8000, 0xfffffffffffffeff, 0x3, 0x9, 0x400, 0x1, 0x1, 0x3]}, &(0x7f0000000240)=0x100)
r4 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r5 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r5, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r6=>0xffffffffffffffff})
keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000002740)=[{&(0x7f0000000280)="57659b5846ba2d66d572329410293b1c", 0x10}, {&(0x7f00000002c0)="6922876be5bb974e570920da0c89b19f24a85eb9b5a56aa368733e133e1de886796f64963122c63de4ad1ee1b1b183d27d208445b43b8f5dd585711f4060d60b3e94aa1883cdadab5c229b9204a31244a8450696b0b2d4a64af39b52d42d387cdc7a318faaa5e8c9c244ca2ac434b25ee2bba2af4b57eb6aab4c4256a573938b28de9f7fd8703112", 0x88}, {&(0x7f0000000380)="060d0f5e9ea6a393f456c3badf84df4255b121c36e9748dcbffbc77d24c607da20dca34cb6610c29e488617cac5e20d008d21d7e4daa774b23ec6e1acc913b253b565f3484ff084b2fc352b561405a463ad2f22db9a7e828ad7c2e9010", 0x5d}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)="22f07bbef857ff0a8644908d0498e059ab6acb701d5c055423281cf1c2457a344512c662ea4703a85d7bde654fad", 0x2e}, {&(0x7f0000001440)="7c2dc677343b757faa4b0cc74528fa2eb0d3737d239abe4da12591b506213278da7f0e7ad9365dfe9118", 0x2a}, {&(0x7f0000001540)="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", 0x1000}, {&(0x7f0000002540)="242c427d496b438fa8ccb607369930bff1cba9db144cbad9db6ff9c75bb2509a53aa7aff342b8e13f3b0d54a8697be3a98ec4b8d712efc45be453e98ac874359971eaa9468140a2741ec066135aba641f6c39e5792d150419e950f99fc4803851f44452be812df665cce9ec6e5de8c98b7eabb96af560cabcd998cf56b76d87fbc32869b588ec9ef9a10069e71b1bce4c7878b0020946a3246475470834d0b6211c6ba88d5b30b88e420115e891dc142f77a2861b20a51642fbd2075d6b32ea8f61e228e65269dbcbe65b2bad195cd355969feb41ae45d50c47e06ee212b374ccfd381b31e1445bea6f29e1ee0", 0xed}, {&(0x7f0000002640)="b22431c11c0dd6de7341c845fcd65c89cae554eba511323e343c461d480d57b35b7f3bb0f82c96afde7e72856b7d8a00920d6e4e8bd5ed34ed8df575f8254d242080d012b40c950827fa1fc4def1433b7c9ec8ea0d1c90c3268959796f9b53326b33435c44d2490ed57ac95dbafb4cfe2c854b214a2cd18fa7cfe54c9421cccb95a773547567052aa6049eb52d04907e0398bfa4246dd391f0825f49ba6e5e899e2b3bba3a409a1773181349e8af3db99b682c58aef675e2496754656f233f881e0797b26a91d354849e2b77abc4b3ca9914c9", 0xd3}], 0x9, 0x0)
r7 = dup(r6)
r8 = dup(r7)
r9 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = fcntl$dupfd(r9, 0x0, r10)
ioctl$PERF_EVENT_IOC_ENABLE(r11, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r4, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r8})
ioctl$DMA_BUF_IOCTL_SYNC(r8, 0x40086200, &(0x7f0000000080)=0x5)

01:29:27 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {0x89200000}, {}, {}, {0x0, 0x6}, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x8})

01:29:27 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff})
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
connect$tipc(r6, &(0x7f0000000080)=@name={0x1e, 0x2, 0x2, {{0x0, 0x2}, 0x1}}, 0x10)
r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r7, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564d02], [0xc1]})
fcntl$setlease(r7, 0x400, 0x2)
r8 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000100)={0xd000, 0x8000})
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r8, 0x800448d2, &(0x7f00000000c0)={0x0, &(0x7f0000000240)})
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2366.444345] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2366.444375] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2366.444413] CPU: 1 PID: 22561 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2366.444421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2366.444426] Call Trace:
01:29:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
bind$nfc_llcp(r1, &(0x7f0000000100)={0x27, 0x1, 0x2, 0x6, 0x3, 0x5, "c1962f47adc6473507a3e9cff99c30503b8f6d47892468cd218e102f7d357ec6861aef3f024f1114222c8a67c20146751f2fa4cef840cfe67efb1e09571eb4", 0x2f}, 0x60)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
r8 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = fcntl$dupfd(r8, 0x0, r9)
ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200)
ioctl$SNDRV_PCM_IOCTL_READI_FRAMES(r10, 0x80184151, &(0x7f0000000280)={0x0, &(0x7f0000000180)="56a32d158b10f4196fdb6fd38c1ccf8184c978b8b082a1bd59f4ce912258449856375a0e2a74f708e6b5126f5fa361613739116b22853d80e2ff9c80f4ff5ff2b20c20b98b6d249a6f8340b94d1d4567512e9ddb3ca19ccd2cb439dc9a635bcbc571fda751a7609512614f35f49cbc76019267f7add16f157a9aacff57d6874e0bbe4d23a9b2cc2d77d96b57ad2f6b4c2ad8f1e63a537983f459c0ac7c245a72d4ca6cf8d231a604754d13e48ff770648695e01ccb3abde1179f596c4ce9e79a59e54016d485f8d94d870a76d9d5e276fbc26c9b0735b6e87ffdc9c790b07eeb9058439355181d33b92b4993f6400f130e8758d836891667cd4a", 0xfa})
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

[ 2366.444446]  dump_stack+0x1b2/0x283
[ 2366.444466]  warn_alloc.cold+0x96/0x1af
[ 2366.444480]  ? zone_watermark_ok_safe+0x250/0x250
[ 2366.444506]  ? wait_for_completion_io+0x10/0x10
[ 2366.444528]  __alloc_pages_nodemask+0x2129/0x2730
[ 2366.444561]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2366.444577]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2366.444607]  ? HARDIRQ_verbose+0x10/0x10
[ 2366.444618]  ? do_raw_spin_unlock+0x164/0x250
[ 2366.444635]  alloc_pages_current+0xe7/0x1e0
[ 2366.444652]  kvm_mmu_create+0xd1/0x1c0
[ 2366.444669]  kvm_arch_vcpu_init+0x282/0x890
[ 2366.444681]  ? alloc_pages_current+0xef/0x1e0
[ 2366.444697]  kvm_vcpu_init+0x26d/0x360
[ 2366.444714]  vmx_create_vcpu+0xf5/0x2950
[ 2366.444732]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2366.444745]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2366.444762]  ? alloc_loaded_vmcs+0x240/0x240
[ 2366.444786]  kvm_vm_ioctl+0x4ae/0x1430
[ 2366.444800]  ? __lock_acquire+0x655/0x42a0
[ 2366.444816]  ? kvm_vcpu_release+0xa0/0xa0
[ 2366.444830]  ? check_preemption_disabled+0x35/0x240
[ 2366.444847]  ? perf_trace_lock+0x109/0x4b0
[ 2366.444862]  ? check_preemption_disabled+0x35/0x240
[ 2366.444879]  ? perf_trace_lock+0x109/0x4b0
[ 2366.444898]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2366.444913]  ? HARDIRQ_verbose+0x10/0x10
[ 2366.444928]  ? kvm_vcpu_release+0xa0/0xa0
[ 2366.444943]  do_vfs_ioctl+0x75a/0xfe0
[ 2366.444959]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2366.444973]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2366.445002]  ? security_file_ioctl+0x76/0xb0
01:29:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0x1000000000, 0x22, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

[ 2366.445017]  ? security_file_ioctl+0x83/0xb0
[ 2366.445032]  SyS_ioctl+0x7f/0xb0
[ 2366.445043]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2366.445064]  do_syscall_64+0x1d5/0x640
[ 2366.445087]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2366.445099] RIP: 0033:0x45cb09
[ 2366.445105] RSP: 002b:00007f939131ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2366.445119] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2366.445127] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006
[ 2366.445135] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000
[ 2366.445143] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2366.445150] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939131b6d4
[ 2366.448851] warn_alloc_show_mem: 1 callbacks suppressed
[ 2366.448856] Mem-Info:
[ 2366.448886] active_anon:428054 inactive_anon:21639 isolated_anon:0
[ 2366.448886]  active_file:3405 inactive_file:25833 isolated_file:0
[ 2366.448886]  unevictable:13607 dirty:111 writeback:0 unstable:0
[ 2366.448886]  slab_reclaimable:20229 slab_unreclaimable:318067
[ 2366.448886]  mapped:68427 shmem:24729 pagetables:27454 bounce:0
[ 2366.448886]  free:653220 free_pcp:561 free_cma:0
[ 2366.448907] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2366.448927] Node 1 active_anon:191372kB inactive_anon:65484kB active_file:13616kB inactive_file:103328kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64792kB dirty:440kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2366.448932] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2366.448957] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2366.448983] Node 0 DMA32 free:34388kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1492kB local_pcp:732kB free_cma:0kB
[ 2366.449008] lowmem_reserve[]: 0 0 0 0 0
[ 2366.449033] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2366.449055] lowmem_reserve[]: 0 0 0 0 0
[ 2366.449077] Node 1 Normal free:2568136kB min:53592kB low:66988kB high:80384kB active_anon:191372kB inactive_anon:65484kB active_file:13616kB inactive_file:103328kB unevictable:54428kB writepending:436kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28960kB pagetables:74512kB bounce:0kB free_pcp:752kB local_pcp:208kB free_cma:0kB
[ 2366.449102] lowmem_reserve[]: 0 0 0 0 0
01:29:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x3, 0x400)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
pipe(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_PPC_GET_PVINFO(r4, 0x4080aea1, &(0x7f0000000100)=""/202)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37})
r5 = socket$unix(0x1, 0x5, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
r8 = inotify_init1(0x0)
r9 = dup(r8)
r10 = dup(r9)
r11 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r12 = fcntl$dupfd(r2, 0x0, r11)
ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r10})
ioctl$DMA_BUF_IOCTL_SYNC(r10, 0x40086200, &(0x7f0000000080)=0x5)

[ 2366.449128] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2366.450062] Node 0 DMA32: 2853*4kB (UMEH) 1071*8kB (UMEH) 454*16kB (UME) 148*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34412kB
[ 2366.450150] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2366.450213] Node 1 Normal: 992*4kB (UME) 343*8kB (UME) 144*16kB (ME) 76*32kB (UME) 74*64kB (UME) 26*128kB (UE) 4*256kB (UME) 2*512kB (UE) 1*1024kB (E) 5*2048kB (UM) 619*4096kB (UM) = 2568248kB
[ 2366.451555] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2366.451563] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2366.451572] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2366.451582] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2366.451587] 48225 total pagecache pages
[ 2366.451598] 0 pages in swap cache
01:29:27 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
dup(r2)
r3 = dup(r0)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

[ 2366.451605] Swap cache stats: add 0, delete 0, find 0/0
[ 2366.451610] Free swap  = 0kB
[ 2366.451614] Total swap = 0kB
[ 2366.451622] 1965979 pages RAM
[ 2366.451627] 0 pages HighMem/MovableOnly
[ 2366.451631] 338456 pages reserved
[ 2366.451635] 0 pages cma reserved
[ 2366.551596] ip6_tables: ip6tables: counters copy to user failed while replacing table
[ 2366.564623] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2366.564654] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2366.564682] CPU: 1 PID: 22572 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2366.564690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2366.564695] Call Trace:
[ 2366.564715]  dump_stack+0x1b2/0x283
[ 2366.564735]  warn_alloc.cold+0x96/0x1af
[ 2366.564748]  ? zone_watermark_ok_safe+0x250/0x250
[ 2366.564778]  ? wait_for_completion_io+0x10/0x10
[ 2366.564800]  __alloc_pages_nodemask+0x2129/0x2730
[ 2366.564836]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2366.564851]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2366.564886]  ? HARDIRQ_verbose+0x10/0x10
[ 2366.564905]  ? do_raw_spin_unlock+0x164/0x250
[ 2366.564925]  alloc_pages_current+0xe7/0x1e0
[ 2366.564945]  kvm_mmu_create+0xd1/0x1c0
[ 2366.564962]  kvm_arch_vcpu_init+0x282/0x890
[ 2366.564973]  ? alloc_pages_current+0xef/0x1e0
[ 2366.564988]  kvm_vcpu_init+0x26d/0x360
[ 2366.565004]  vmx_create_vcpu+0xf5/0x2950
[ 2366.565020]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2366.565031]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2366.565045]  ? alloc_loaded_vmcs+0x240/0x240
[ 2366.565067]  kvm_vm_ioctl+0x4ae/0x1430
[ 2366.565079]  ? __lock_acquire+0x655/0x42a0
[ 2366.565090]  ? kvm_vcpu_release+0xa0/0xa0
[ 2366.565102]  ? check_preemption_disabled+0x35/0x240
[ 2366.565115]  ? perf_trace_lock+0x109/0x4b0
[ 2366.565139]  ? check_preemption_disabled+0x35/0x240
[ 2366.565155]  ? perf_trace_lock+0x109/0x4b0
[ 2366.565174]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2366.565188]  ? HARDIRQ_verbose+0x10/0x10
[ 2366.565201]  ? kvm_vcpu_release+0xa0/0xa0
[ 2366.565215]  do_vfs_ioctl+0x75a/0xfe0
[ 2366.565230]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2366.565244]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2366.565272]  ? security_file_ioctl+0x76/0xb0
[ 2366.565285]  ? security_file_ioctl+0x83/0xb0
[ 2366.565299]  SyS_ioctl+0x7f/0xb0
[ 2366.565308]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2366.565323]  do_syscall_64+0x1d5/0x640
[ 2366.565343]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2366.565353] RIP: 0033:0x45cb09
[ 2366.565359] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2366.565373] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2366.565390] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2366.565398] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2366.565405] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2366.565412] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2366.622100] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2367.426062] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2367.426090] CPU: 1 PID: 22572 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2367.426096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2367.426101] Call Trace:
[ 2367.426118]  dump_stack+0x1b2/0x283
[ 2367.426137]  warn_alloc.cold+0x96/0x1af
[ 2367.426150]  ? zone_watermark_ok_safe+0x250/0x250
[ 2367.426174]  ? wait_for_completion_io+0x10/0x10
[ 2367.426194]  __alloc_pages_nodemask+0x2129/0x2730
[ 2367.426229]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2367.426242]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2367.426271]  ? HARDIRQ_verbose+0x10/0x10
[ 2367.426283]  ? do_raw_spin_unlock+0x164/0x250
[ 2367.426301]  alloc_pages_current+0xe7/0x1e0
[ 2367.426318]  kvm_mmu_create+0xd1/0x1c0
[ 2367.426333]  kvm_arch_vcpu_init+0x282/0x890
[ 2367.426454]  ? alloc_pages_current+0xef/0x1e0
[ 2367.426471]  kvm_vcpu_init+0x26d/0x360
[ 2367.426487]  vmx_create_vcpu+0xf5/0x2950
[ 2367.426502]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2367.426512]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2367.426527]  ? alloc_loaded_vmcs+0x240/0x240
[ 2367.426546]  kvm_vm_ioctl+0x4ae/0x1430
[ 2367.426557]  ? __lock_acquire+0x655/0x42a0
[ 2367.426569]  ? kvm_vcpu_release+0xa0/0xa0
[ 2367.426581]  ? check_preemption_disabled+0x35/0x240
[ 2367.426594]  ? perf_trace_lock+0x109/0x4b0
[ 2367.426608]  ? check_preemption_disabled+0x35/0x240
[ 2367.426621]  ? perf_trace_lock+0x109/0x4b0
[ 2367.426637]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2367.426648]  ? HARDIRQ_verbose+0x10/0x10
[ 2367.426658]  ? kvm_vcpu_release+0xa0/0xa0
[ 2367.426669]  do_vfs_ioctl+0x75a/0xfe0
[ 2367.426682]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2367.426695]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2367.426721]  ? security_file_ioctl+0x76/0xb0
[ 2367.426730]  ? security_file_ioctl+0x83/0xb0
[ 2367.426742]  SyS_ioctl+0x7f/0xb0
[ 2367.426751]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2367.426767]  do_syscall_64+0x1d5/0x640
[ 2367.426787]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2367.426797] RIP: 0033:0x45cb09
[ 2367.426803] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2367.426816] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2367.426822] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000008
[ 2367.426829] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2367.426836] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2367.426843] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2367.578743] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2367.578769] syz-executor.4 cpuset=/ mems_allowed=0-1
[ 2367.578796] CPU: 0 PID: 22561 Comm: syz-executor.4 Not tainted 4.14.184-syzkaller #0
[ 2367.578804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2367.578809] Call Trace:
[ 2367.578828]  dump_stack+0x1b2/0x283
[ 2367.578849]  warn_alloc.cold+0x96/0x1af
[ 2367.578864]  ? zone_watermark_ok_safe+0x250/0x250
[ 2367.578887]  ? wait_for_completion_io+0x10/0x10
[ 2367.578910]  __alloc_pages_nodemask+0x2129/0x2730
[ 2367.578948]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2367.578963]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2367.578998]  ? HARDIRQ_verbose+0x10/0x10
[ 2367.579012]  ? do_raw_spin_unlock+0x164/0x250
[ 2367.579032]  alloc_pages_current+0xe7/0x1e0
[ 2367.579052]  kvm_mmu_create+0xd1/0x1c0
[ 2367.579070]  kvm_arch_vcpu_init+0x282/0x890
[ 2367.579083]  ? alloc_pages_current+0xef/0x1e0
[ 2367.579099]  kvm_vcpu_init+0x26d/0x360
[ 2367.579119]  vmx_create_vcpu+0xf5/0x2950
[ 2367.579136]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2367.579149]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2367.579168]  ? alloc_loaded_vmcs+0x240/0x240
[ 2367.579192]  kvm_vm_ioctl+0x4ae/0x1430
[ 2367.579206]  ? __lock_acquire+0x655/0x42a0
[ 2367.579219]  ? kvm_vcpu_release+0xa0/0xa0
[ 2367.579232]  ? check_preemption_disabled+0x35/0x240
[ 2367.579248]  ? perf_trace_lock+0x109/0x4b0
[ 2367.579264]  ? check_preemption_disabled+0x35/0x240
[ 2367.579279]  ? perf_trace_lock+0x109/0x4b0
[ 2367.579299]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2367.579314]  ? HARDIRQ_verbose+0x10/0x10
[ 2367.579329]  ? kvm_vcpu_release+0xa0/0xa0
[ 2367.579345]  do_vfs_ioctl+0x75a/0xfe0
[ 2367.579363]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2367.579375]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2367.579404]  ? security_file_ioctl+0x76/0xb0
[ 2367.579415]  ? security_file_ioctl+0x83/0xb0
[ 2367.579429]  SyS_ioctl+0x7f/0xb0
[ 2367.579438]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2367.579456]  do_syscall_64+0x1d5/0x640
[ 2367.579491]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2367.579502] RIP: 0033:0x45cb09
[ 2367.579509] RSP: 002b:00007f939131ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2367.579524] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2367.579531] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000006
[ 2367.579539] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000
[ 2367.579546] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2367.579555] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f939131b6d4
[ 2367.579585] warn_alloc_show_mem: 2 callbacks suppressed
[ 2367.579589] Mem-Info:
[ 2367.579625] active_anon:428051 inactive_anon:21639 isolated_anon:0
[ 2367.579625]  active_file:3405 inactive_file:25853 isolated_file:0
[ 2367.579625]  unevictable:13607 dirty:128 writeback:0 unstable:0
[ 2367.579625]  slab_reclaimable:20085 slab_unreclaimable:318577
[ 2367.579625]  mapped:68625 shmem:24729 pagetables:27417 bounce:0
[ 2367.579625]  free:652899 free_pcp:639 free_cma:0
[ 2367.579649] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2367.579671] Node 1 active_anon:191360kB inactive_anon:65484kB active_file:13616kB inactive_file:103408kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:65584kB dirty:508kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2367.579676] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2367.579709] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2367.579741] Node 0 DMA32 free:34536kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12960kB pagetables:35300kB bounce:0kB free_pcp:1408kB local_pcp:676kB free_cma:0kB
[ 2367.579771] lowmem_reserve[]: 0 0 0 0 0
[ 2367.579799] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2367.579826] lowmem_reserve[]: 0 0 0 0 0
[ 2367.579854] Node 1 Normal free:2566704kB min:53592kB low:66988kB high:80384kB active_anon:191360kB inactive_anon:65484kB active_file:13616kB inactive_file:103408kB unevictable:54428kB writepending:508kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28768kB pagetables:74364kB bounce:0kB free_pcp:1148kB local_pcp:728kB free_cma:0kB
[ 2367.579881] lowmem_reserve[]: 0 0 0 0 0
[ 2367.579906] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2367.579990] Node 0 DMA32: 2884*4kB (UMEH) 1071*8kB (UMEH) 454*16kB (UME) 148*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34536kB
[ 2367.580079] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2367.580147] Node 1 Normal: 1038*4kB (UME) 463*8kB (UME) 153*16kB (UME) 49*32kB (UME) 63*64kB (UME) 16*128kB (UE) 4*256kB (UME) 2*512kB (UE) 1*1024kB (E) 5*2048kB (UM) 619*4096kB (UM) = 2566688kB
[ 2367.580264] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2367.580273] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2367.580282] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2367.580290] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2367.580295] 48245 total pagecache pages
[ 2367.580308] 0 pages in swap cache
[ 2367.580315] Swap cache stats: add 0, delete 0, find 0/0
[ 2367.580320] Free swap  = 0kB
[ 2367.580324] Total swap = 0kB
[ 2367.580332] 1965979 pages RAM
[ 2367.580336] 0 pages HighMem/MovableOnly
[ 2367.580341] 338456 pages reserved
[ 2367.580345] 0 pages cma reserved
01:29:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x10800, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffd)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:29:29 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
r7 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x8, 0x900)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x100000001)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:29:29 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {0x2}})

01:29:29 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0xa0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, {0x204e}, {0x0, 0x0, 0xfffffffd}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x3, 0x100000, 0x8, 0x4})
r1 = accept4(0xffffffffffffffff, &(0x7f00000000c0)=@qipcrtr, &(0x7f0000000140)=0x80, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$netlbl_mgmt(0x0)
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)={0x14, 0x0, 0x7, 0x0, 0x0, {0x2, 0x3}}, 0x14}}, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x50, 0x0, 0x10, 0x70bd26, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8000}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x10000}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}]}, 0x50}, 0x1, 0x0, 0x0, 0x8885}, 0x44001)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x2c, 0x0, 0x20, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x3ff}]}, 0x2c}}, 0x800)
r4 = openat$full(0xffffffffffffff9c, 0x0, 0x2, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, 0x0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r4, &(0x7f0000000600)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000005c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="68010002ee89d687abf39b74a988572152f326f3c966a5d6fb07a1cc904facceae9c1aaff6826a98522e230a38c58b88e4e13404f4b258dc58871c3bf45073d4dac39ad1d552f445ddb77de36e8d2dfefd88d1413dbc05398593397461dca0011ac02e1e8036797837bc8a4bcf7907c8ff5e6a4d9d19eeeed2846191bb8bbaaed7d0f2b77856fc0fda9c296c202373695d96a7b0c3c82a3691fcf08c294b9c86a0e1aa04abbf7ddee0a64de0c4da7e763d6b23143d3092ab4a1d9811e3", @ANYRES16=0x0, @ANYRES16, @ANYBLOB="08720b000100000014000200626f6e64300000000000000000000000080003000300000008000300010000000c00018008454a02b5d75a6f89ee13125cb8fac823a05ffcc83c718e1d58879648fe47d47d3856a84d803e3ebc42f8376ba26074d1b5af4841b810c13ba6f9a852c810ac73811068c51e578c09414842e8bc51030bb9299ef0947ad18007b34ffc49a1c6cf665a33c0fd1fb8a5d1b1d68259f430bbab93914728b0efb9b9fa5ef2dba8723d8f3e54cf52cbc37ff3cc4b6efb7914bd4e65480ad227c233cdf8a5b570bcb927dd48127e6a0d50cb366004626e6bd04bbc09a669dbaaf67b51b60f8cb0e3159084f1f36350c25b4e80747a2119d0adaa1f3dc6ff7866ed4669ef7e684a899fa9b673a1ed227a110e6e9cafe730a5055f6080c70c", @ANYRES32=0x0, @ANYBLOB="3400018014000200697036746e6c300000000000000000001400020065727370616e3000000000000000000008000300020000000c0001800800030002000000180001801400020063616966300000000000000000000000680001800800030003000000140002006d616376746170300000000000000000080003008b012fa908000100", @ANYRES32=r5, @ANYRESHEX], 0x168}}, 0x20000081)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x48, 0x0, 0x500, 0x70bd2b, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x80000000}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x401}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x678f}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x810}, 0x8085)
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, 0xffffffffffffffff)
sendmsg$RDMA_NLDEV_CMD_GET(r7, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x40, 0x1401, 0x800, 0x70bd29, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
sendmsg$NLBL_MGMT_C_VERSION(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000580)=ANY=[@ANYBLOB="04000000e3a7cd4800000000913342b32974f3a21cbdd452c77a", @ANYRES16=r3, @ANYBLOB], 0x44}, 0x1, 0x0, 0x0, 0x60045}, 0x20004080)
sendmsg$NLBL_MGMT_C_PROTOCOLS(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x24, r3, 0x0, 0x70bd27, 0x25dfdbff, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x23}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x200480c0)

01:29:29 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setreuid(0x0, r2)
syz_mount_image$iso9660(&(0x7f00000000c0)='iso9660\x00', &(0x7f0000000100)='./file0\x00', 0x6, 0x4, &(0x7f0000001400)=[{&(0x7f00000001c0)="f0e6b1676405b14da1f68b16a86f4d71a1aa277a6d8967ffa3e64b8f07856eff6f9d89754cf75abe800fd626c5fb3ad9a3fbd91d52d21d909c93c33f605c6d8da8c77b400ed48b8f1389cf5546c74a980eafd3ddd0c04d0fc036f8fdfcae6ac5818c8104688bab28ceb203ffca5f4a9bb4e5fbe2f059fdd88859e5b17b1aee4f5f236664e7990c1fb3d4a482abaaa00fe0db0f81e72b5033f9f517d99034acd6389a4ac4441f6fe7159e8d5d3162708491b951796bf36b579d035f3d01c040d2ececb4015676", 0xc6, 0x4}, {&(0x7f00000002c0)="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", 0x1000, 0x20}, {&(0x7f00000012c0)="b35588712dc8cbc6c88d1a24c1a5c203ef58706ac4bf6f572b16bfb902c038434691b49578ac9778e313ee0ef29a12480352a24ac69065ae77ea2d45bc384e068c82acedbace5ca64f09958207519aff56d19f47045203acdc8a6f34eb9bbaaf6caf145b8c73119f1db43e00054a80946fb344914f27d48d3881988242f6480ccdd7d498c9bf4fb6dfe2323b1ccedde6bba580e4848a45aeea", 0x99, 0x4}, {&(0x7f0000001380)="71f0e224b05ef4a8dd99ca42d03e372b18bdae70b4670d0224616edb28febc5f54a6907c7f7180b5793889d4c5b8665cd14fb588d322e1119566b4e9e4788c0dff791ef40b084a3fd7d1fda8061d620bb2a7a86174c4aab4", 0x58}], 0x1200012, &(0x7f0000001480)={[{@map_off='map=off'}, {@uid={'uid', 0x3d, r2}}], [{@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@fsname={'fsname', 0x3d, '/dev/fb0\x00'}}, {@appraise_type='appraise_type=imasig'}, {@smackfshat={'smackfshat'}}]})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000140)={0x0, 'dummy0\x00', {0x4}, 0x2b11})
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:29 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {0x0, 0x80}})
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r1, 0x0, r2)
connect$l2tp(r2, &(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x3}, 0x10)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$dupfd(r3, 0x0, r4)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video2\x00', 0x2, 0x0)
write$P9_RATTACH(r4, &(0x7f0000000100)={0x14, 0x69, 0x1, {0xa0, 0x1, 0x6}}, 0x14)

01:29:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x401, 0x0)
pipe2(&(0x7f0000000080), 0x84000)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
fcntl$dupfd(r5, 0x0, r6)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = fcntl$dupfd(r7, 0x0, r8)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
ioctl$ION_IOC_ALLOC(r4, 0xc0184900, 0x0)

[ 2368.797668] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2368.797699] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2368.797729] CPU: 1 PID: 22630 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2368.797738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2368.797743] Call Trace:
[ 2368.797764]  dump_stack+0x1b2/0x283
[ 2368.797787]  warn_alloc.cold+0x96/0x1af
[ 2368.797803]  ? zone_watermark_ok_safe+0x250/0x250
[ 2368.797832]  ? wait_for_completion_io+0x10/0x10
[ 2368.797852]  __alloc_pages_nodemask+0x2129/0x2730
[ 2368.797897]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2368.797914]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2368.797945]  ? HARDIRQ_verbose+0x10/0x10
[ 2368.797960]  ? do_raw_spin_unlock+0x164/0x250
[ 2368.797980]  alloc_pages_current+0xe7/0x1e0
[ 2368.798000]  kvm_mmu_create+0xd1/0x1c0
[ 2368.798017]  kvm_arch_vcpu_init+0x282/0x890
[ 2368.798028]  ? alloc_pages_current+0xef/0x1e0
[ 2368.798046]  kvm_vcpu_init+0x26d/0x360
[ 2368.798071]  vmx_create_vcpu+0xf5/0x2950
[ 2368.798090]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2368.798101]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2368.798116]  ? alloc_loaded_vmcs+0x240/0x240
[ 2368.798134]  kvm_vm_ioctl+0x4ae/0x1430
[ 2368.798151]  ? __lock_acquire+0x655/0x42a0
[ 2368.798165]  ? kvm_vcpu_release+0xa0/0xa0
[ 2368.798178]  ? check_preemption_disabled+0x35/0x240
[ 2368.798195]  ? perf_trace_lock+0x109/0x4b0
[ 2368.798213]  ? check_preemption_disabled+0x35/0x240
[ 2368.798229]  ? perf_trace_lock+0x109/0x4b0
[ 2368.798253]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2368.798269]  ? HARDIRQ_verbose+0x10/0x10
[ 2368.798284]  ? kvm_vcpu_release+0xa0/0xa0
[ 2368.798300]  do_vfs_ioctl+0x75a/0xfe0
[ 2368.798317]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2368.798336]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2368.798370]  ? security_file_ioctl+0x76/0xb0
[ 2368.798394]  ? security_file_ioctl+0x83/0xb0
[ 2368.798412]  SyS_ioctl+0x7f/0xb0
[ 2368.798423]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2368.798441]  do_syscall_64+0x1d5/0x640
[ 2368.798465]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2368.798477] RIP: 0033:0x45cb09
[ 2368.798484] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2368.798498] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2368.798506] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2368.798514] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2368.798522] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2368.798530] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2368.807161] Mem-Info:
01:29:30 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r1 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000a80)=@filter={'filter\x00', 0xe, 0x4, 0x13a8, 0x0, 0x0, 0x1208, 0x108, 0x108, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x12d8, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1, [], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}}, {{@ipv6={@initdev={0xfe, 0x88, [], 0x0, 0x0}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'rose0\x00', 'netdevsim0\x00'}, 0x0, 0x10d8, 0x1100, 0x0, {}, [@common=@unspec=@cgroup1={{0x1030, 'cgroup\x00'}, {0x0, 0x1, 0x0, 0x0, './cgroup/syz0\x00'}}]}, @REJECT={0x28, 'REJECT\x00'}}, {{@uncond, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1408)
r3 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000016c0)=<r4=>0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="340500004b81aee12a8a5d9cb054572009d1b4a816442a04b8ff6d84d1b1e658e8932ab268ca6bfd278e0e8d1c520a3421ecbb655405444491a1ab15dadc23f5dd7cda133cdeda33d54d8878e0e30f50dfd95c78fcb1465b07000000f40c890600ae1de149b9d3ec23c6fd1050da5cb8c02e5ca34717f300cbb22cae340ce633", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB, @ANYRES32=r4, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="0000b6cb7e78093b9c73000048633d53f983a1322f7141d36638ce19a1a86b882de6c5aa1bc177dd7295427c755199592eff96b59cf81128dc35e74f00000000000000"], 0x58, 0x4}, 0x4040000)
sched_getscheduler(r4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r6 = socket$unix(0x1, 0x2, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/seq\x00', 0x200040)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r7)
ioctl$UI_SET_MSCBIT(r7, 0x40045568, 0xd3)
ioctl$FBIOPUT_VSCREENINFO(r5, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:30 executing program 0:
perf_event_open(&(0x7f000001d000)={0x4, 0x70, 0x0, 0xf9, 0x0, 0xfd, 0x0, 0x7f, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendmsg$AUDIT_GET(r2, &(0x7f00000001c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x10, 0x3e8, 0x300, 0x70bd29, 0x25dfdbfc, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x20008800}, 0x20000000)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2369.371889] ip6_tables: ip6tables: counters copy to user failed while replacing table
[ 2369.380377] active_anon:428057 inactive_anon:21639 isolated_anon:0
[ 2369.380377]  active_file:3406 inactive_file:25867 isolated_file:0
[ 2369.380377]  unevictable:13607 dirty:161 writeback:0 unstable:0
[ 2369.380377]  slab_reclaimable:19986 slab_unreclaimable:319229
01:29:30 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x58000, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xffffffffffffffff)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r1, 0x40485404, &(0x7f0000000040)={{0x80e3c48fb6c2973a, 0x0, 0x7, 0x0, 0xfffffff8}, 0x3, 0x80})

01:29:30 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

[ 2369.380377]  mapped:68489 shmem:24729 pagetables:27471 bounce:0
[ 2369.380377]  free:652420 free_pcp:556 free_cma:0
[ 2369.380400] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
01:29:30 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x88080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2369.380419] Node 1 active_anon:191384kB inactive_anon:65484kB active_file:13616kB inactive_file:103468kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:65040kB dirty:640kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
01:29:30 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
mknod(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(0xffffffffffffffff, 0xc00464b4, &(0x7f0000000440))
dup(0xffffffffffffffff)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_REINJECT_CONTROL(r4, 0xae71, &(0x7f0000000000))
clone(0x180000105, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f000000a000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c444, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x8000000200004d1e, 0x800007c, 0x0, 0x0, 0x100000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000))

[ 2369.380423] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2369.380447] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2369.380472] Node 0 DMA32 free:34692kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12928kB pagetables:35300kB bounce:0kB free_pcp:1340kB local_pcp:716kB free_cma:0kB
[ 2369.380493] lowmem_reserve[]: 0 0 0 0 0
[ 2369.380517] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
01:29:30 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x38}}, 0x10)

[ 2369.380539] lowmem_reserve[]: 0 0 0 0 0
[ 2369.380563] Node 1 Normal free:2564632kB min:53592kB low:66988kB high:80384kB active_anon:191384kB inactive_anon:65484kB active_file:13616kB inactive_file:103468kB unevictable:54428kB writepending:640kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28864kB pagetables:74580kB bounce:0kB free_pcp:884kB local_pcp:508kB free_cma:0kB
[ 2369.380587] lowmem_reserve[]: 0 0 0 0 0
[ 2369.380612] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2369.380711] Node 0 DMA32: 2887*4kB (UMEH) 1081*8kB (UMEH) 456*16kB (UME) 149*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34692kB
[ 2369.380791] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2369.380852] Node 1 Normal: 1144*4kB (UME) 460*8kB (UME) 163*16kB (UME) 40*32kB (ME) 44*64kB (UME) 7*128kB (UE) 4*256kB (UME) 2*512kB (UE) 1*1024kB (E) 5*2048kB (UM) 619*4096kB (UM) = 2564592kB
[ 2369.380963] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2369.380970] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2369.380977] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2369.380983] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2369.380987] 48260 total pagecache pages
[ 2369.380998] 0 pages in swap cache
[ 2369.381004] Swap cache stats: add 0, delete 0, find 0/0
[ 2369.381009] Free swap  = 0kB
[ 2369.381013] Total swap = 0kB
[ 2369.381021] 1965979 pages RAM
[ 2369.381025] 0 pages HighMem/MovableOnly
[ 2369.381029] 338456 pages reserved
[ 2369.381033] 0 pages cma reserved
[ 2369.734758] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2369.734896] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2369.734930] CPU: 1 PID: 22667 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2369.734939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2369.734944] Call Trace:
[ 2369.734969]  dump_stack+0x1b2/0x283
[ 2369.734991]  warn_alloc.cold+0x96/0x1af
[ 2369.735009]  ? zone_watermark_ok_safe+0x250/0x250
[ 2369.735041]  ? wait_for_completion_io+0x10/0x10
[ 2369.735064]  __alloc_pages_nodemask+0x2129/0x2730
[ 2369.735103]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2369.735119]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2369.735150]  ? HARDIRQ_verbose+0x10/0x10
[ 2369.735162]  ? do_raw_spin_unlock+0x164/0x250
[ 2369.735178]  alloc_pages_current+0xe7/0x1e0
[ 2369.735194]  kvm_mmu_create+0xd1/0x1c0
[ 2369.735219]  kvm_arch_vcpu_init+0x282/0x890
[ 2369.735231]  ? alloc_pages_current+0xef/0x1e0
[ 2369.735249]  kvm_vcpu_init+0x26d/0x360
[ 2369.735266]  vmx_create_vcpu+0xf5/0x2950
[ 2369.735282]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2369.735293]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2369.735307]  ? alloc_loaded_vmcs+0x240/0x240
[ 2369.735327]  kvm_vm_ioctl+0x4ae/0x1430
[ 2369.735353]  ? __lock_acquire+0x655/0x42a0
[ 2369.735368]  ? kvm_vcpu_release+0xa0/0xa0
[ 2369.735381]  ? check_preemption_disabled+0x35/0x240
[ 2369.735397]  ? perf_trace_lock+0x109/0x4b0
[ 2369.735413]  ? check_preemption_disabled+0x35/0x240
[ 2369.735429]  ? perf_trace_lock+0x109/0x4b0
[ 2369.735447]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2369.735462]  ? HARDIRQ_verbose+0x10/0x10
[ 2369.735475]  ? kvm_vcpu_release+0xa0/0xa0
[ 2369.735490]  do_vfs_ioctl+0x75a/0xfe0
[ 2369.735503]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2369.735517]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2369.735545]  ? security_file_ioctl+0x76/0xb0
[ 2369.735556]  ? security_file_ioctl+0x83/0xb0
[ 2369.735570]  SyS_ioctl+0x7f/0xb0
[ 2369.735579]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2369.735594]  do_syscall_64+0x1d5/0x640
[ 2369.735613]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2369.735623] RIP: 0033:0x45cb09
[ 2369.735630] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2369.735643] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2369.735651] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2369.735658] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2369.735666] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2369.735674] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2369.901376] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2369.901409] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2369.901439] CPU: 0 PID: 22678 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2369.901447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2369.901452] Call Trace:
[ 2369.901473]  dump_stack+0x1b2/0x283
[ 2369.901495]  warn_alloc.cold+0x96/0x1af
[ 2369.901512]  ? zone_watermark_ok_safe+0x250/0x250
[ 2369.901538]  ? wait_for_completion_io+0x10/0x10
[ 2369.901558]  __alloc_pages_nodemask+0x2129/0x2730
[ 2369.901607]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2369.901622]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2369.901656]  ? HARDIRQ_verbose+0x10/0x10
[ 2369.901673]  ? do_raw_spin_unlock+0x164/0x250
[ 2369.901695]  alloc_pages_current+0xe7/0x1e0
[ 2369.901715]  kvm_mmu_create+0xd1/0x1c0
[ 2369.901731]  kvm_arch_vcpu_init+0x282/0x890
[ 2369.901745]  ? alloc_pages_current+0xef/0x1e0
[ 2369.901764]  kvm_vcpu_init+0x26d/0x360
[ 2369.901780]  vmx_create_vcpu+0xf5/0x2950
[ 2369.901797]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2369.901809]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2369.901826]  ? alloc_loaded_vmcs+0x240/0x240
[ 2369.901845]  kvm_vm_ioctl+0x4ae/0x1430
[ 2369.901859]  ? __lock_acquire+0x655/0x42a0
[ 2369.901873]  ? kvm_vcpu_release+0xa0/0xa0
[ 2369.901899]  ? check_preemption_disabled+0x35/0x240
[ 2369.901915]  ? perf_trace_lock+0x109/0x4b0
[ 2369.901932]  ? check_preemption_disabled+0x35/0x240
[ 2369.901946]  ? perf_trace_lock+0x109/0x4b0
[ 2369.901963]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2369.901977]  ? HARDIRQ_verbose+0x10/0x10
[ 2369.901990]  ? kvm_vcpu_release+0xa0/0xa0
[ 2369.902005]  do_vfs_ioctl+0x75a/0xfe0
[ 2369.902020]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2369.902032]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2369.902061]  ? security_file_ioctl+0x76/0xb0
[ 2369.902074]  ? security_file_ioctl+0x83/0xb0
[ 2369.902088]  SyS_ioctl+0x7f/0xb0
[ 2369.902098]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2369.902115]  do_syscall_64+0x1d5/0x640
[ 2369.902136]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2369.902147] RIP: 0033:0x45cb09
[ 2369.902153] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2369.902168] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2369.902176] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2369.902185] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2369.902192] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2369.902200] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2369.926157] warn_alloc_show_mem: 1 callbacks suppressed
[ 2369.926162] Mem-Info:
[ 2369.926197] active_anon:428082 inactive_anon:21639 isolated_anon:0
[ 2369.926197]  active_file:3406 inactive_file:25867 isolated_file:0
[ 2369.926197]  unevictable:13607 dirty:111 writeback:25 unstable:0
[ 2369.926197]  slab_reclaimable:19961 slab_unreclaimable:319396
[ 2369.926197]  mapped:68639 shmem:24729 pagetables:27508 bounce:0
[ 2369.926197]  free:652130 free_pcp:594 free_cma:0
[ 2369.926221] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2369.926243] Node 1 active_anon:191484kB inactive_anon:65484kB active_file:13616kB inactive_file:103468kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:65640kB dirty:440kB writeback:100kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2369.926249] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2369.926275] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2369.926302] Node 0 DMA32 free:34692kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12928kB pagetables:35300kB bounce:0kB free_pcp:1352kB local_pcp:716kB free_cma:0kB
[ 2369.926327] lowmem_reserve[]: 0 0 0 0 0
[ 2369.926459] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2369.926485] lowmem_reserve[]: 0 0 0 0 0
[ 2369.926512] Node 1 Normal free:2563472kB min:53592kB low:66988kB high:80384kB active_anon:191484kB inactive_anon:65484kB active_file:13616kB inactive_file:103468kB unevictable:54428kB writepending:492kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:28896kB pagetables:74728kB bounce:0kB free_pcp:1024kB local_pcp:520kB free_cma:0kB
[ 2369.926543] lowmem_reserve[]: 0 0 0 0 0
[ 2369.926576] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2369.926699] Node 0 DMA32: 2887*4kB (UMEH) 1081*8kB (UMEH) 456*16kB (UME) 149*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34692kB
[ 2369.926791] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2369.926852] Node 1 Normal: 1108*4kB (UME) 528*8kB (UE) 193*16kB (UE) 42*32kB (UME) 43*64kB (UME) 5*128kB (ME) 1*256kB (E) 2*512kB (UE) 2*1024kB (UE) 4*2048kB (UM) 619*4096kB (UM) = 2563424kB
[ 2369.926969] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2369.926977] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2369.926987] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2369.926996] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2369.927001] 48260 total pagecache pages
[ 2369.927015] 0 pages in swap cache
[ 2369.927021] Swap cache stats: add 0, delete 0, find 0/0
[ 2369.927026] Free swap  = 0kB
[ 2369.927031] Total swap = 0kB
[ 2369.927038] 1965979 pages RAM
[ 2369.927043] 0 pages HighMem/MovableOnly
[ 2369.927048] 338456 pages reserved
[ 2369.927052] 0 pages cma reserved
[ 2370.190616] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2370.190648] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2370.190679] CPU: 1 PID: 22692 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2370.190688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2370.190693] Call Trace:
[ 2370.190716]  dump_stack+0x1b2/0x283
[ 2370.190737]  warn_alloc.cold+0x96/0x1af
[ 2370.190752]  ? zone_watermark_ok_safe+0x250/0x250
[ 2370.190779]  ? wait_for_completion_io+0x10/0x10
[ 2370.190801]  __alloc_pages_nodemask+0x2129/0x2730
[ 2370.190843]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2370.190859]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2370.190892]  ? HARDIRQ_verbose+0x10/0x10
[ 2370.190906]  ? do_raw_spin_unlock+0x164/0x250
[ 2370.190925]  alloc_pages_current+0xe7/0x1e0
[ 2370.190944]  kvm_mmu_create+0xd1/0x1c0
[ 2370.190960]  kvm_arch_vcpu_init+0x282/0x890
[ 2370.190981]  ? alloc_pages_current+0xef/0x1e0
[ 2370.191004]  kvm_vcpu_init+0x26d/0x360
[ 2370.191023]  vmx_create_vcpu+0xf5/0x2950
[ 2370.191038]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2370.191051]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2370.191071]  ? alloc_loaded_vmcs+0x240/0x240
[ 2370.191093]  kvm_vm_ioctl+0x4ae/0x1430
[ 2370.191111]  ? __lock_acquire+0x655/0x42a0
[ 2370.191125]  ? kvm_vcpu_release+0xa0/0xa0
[ 2370.191141]  ? check_preemption_disabled+0x35/0x240
[ 2370.191158]  ? perf_trace_lock+0x109/0x4b0
[ 2370.191177]  ? check_preemption_disabled+0x35/0x240
[ 2370.191195]  ? perf_trace_lock+0x109/0x4b0
[ 2370.191215]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2370.191231]  ? HARDIRQ_verbose+0x10/0x10
[ 2370.191244]  ? kvm_vcpu_release+0xa0/0xa0
[ 2370.191258]  do_vfs_ioctl+0x75a/0xfe0
[ 2370.191279]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2370.191299]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2370.191330]  ? security_file_ioctl+0x76/0xb0
[ 2370.191346]  ? security_file_ioctl+0x83/0xb0
[ 2370.191365]  SyS_ioctl+0x7f/0xb0
[ 2370.191376]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2370.191395]  do_syscall_64+0x1d5/0x640
[ 2370.191419]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2370.191430] RIP: 0033:0x45cb09
[ 2370.191437] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2370.191453] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2370.191460] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2370.191468] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2370.191475] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2370.191484] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2370.211552] ip6_tables: ip6tables: counters copy to user failed while replacing table
01:29:32 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000100)={&(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f00000000c0)="856d8c", 0x3, r1}, 0x68)

01:29:32 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0x16c, 0x7, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x3}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}, @NFTA_RULE_USERDATA={0xf8, 0x7, 0x1, 0x0, "61809e98d08368819a5841fe4bd6b99e8441f9c952eb27bcb0873af3845f591394b72ede439e642ddb9e0ff38c306d74afcaab1cbfa86b4a5710a96a2891e4b026dbe404a12459d95b5efdb80af1b562d48932b472556f3b4da518c4cb1b24cbae3ddd2322cada7b76860ec442f3aba6d8e096d88b9a4e4deab204cca796d40f164b210f0b36cc583d4ef1860d57ab21fd721683446b9a7c13216e0d655abbf88f98fc6573e26f6a079f26797bb41c6237890309bf1e9af7e8cc7d7d61a1d9d0cdf8d0cdf25b5354640e50698d0d47dae135c6e6e209ad85e745eef7798e9c649e6eb212b23bb107b9b4b07191a8d92123363331"}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x2}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x1}]}, 0x16c}, 0x1, 0x0, 0x0, 0x40000}, 0x40810)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x9, 0x9, 0x0, 0x2, 0x18, 0x14, "914b26213dac14d958a46cd060c57ca8c050b7790316ceacdab1cfb6fe194691d74e6ccf35279410f6f203c0711bb9bee6bdbceafb5f7b8987456de11226018a", "b662a1631490f570c1ceae9f40382f062c6caa860f70b87097678e6633f098ae3c49c851442cdf4eb059889c4dbf87db284da545ae0d7960bd8e570d65573d67", "3b9360665b612fd632e534c643d2d28f6c07a610269ea07dc1fbe5803a88200d", [0x8, 0x20]})
syz_open_dev$swradio(&(0x7f0000000100)='/dev/swradio#\x00', 0x1, 0x2)

01:29:32 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x7, 0x4, 0x8, 0xf1a}, 0x2c)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r8, 0x28, &(0x7f0000000400)={0x0, <r9=>0x0}}, 0x10)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000040)={r9}, 0xc)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000100)={r9, 0x4}, 0xc)
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:29:32 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:32 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$KVM_S390_VCPU_FAULT(r4, 0x4008ae52, &(0x7f0000000100)=0x9)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r5=>0xffffffffffffffff})
r6 = dup(r5)
r7 = dup(r6)
r8 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = fcntl$dupfd(r8, 0x0, r9)
ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r7})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f0000000080)=0x5)

[ 2371.615589] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2371.615619] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2371.615649] CPU: 1 PID: 22714 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2371.615657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2371.615662] Call Trace:
[ 2371.615687]  dump_stack+0x1b2/0x283
[ 2371.615710]  warn_alloc.cold+0x96/0x1af
[ 2371.615726]  ? zone_watermark_ok_safe+0x250/0x250
[ 2371.615758]  ? wait_for_completion_io+0x10/0x10
[ 2371.615781]  __alloc_pages_nodemask+0x2129/0x2730
[ 2371.615831]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2371.615850]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2371.615886]  ? HARDIRQ_verbose+0x10/0x10
[ 2371.615904]  ? do_raw_spin_unlock+0x164/0x250
[ 2371.615928]  alloc_pages_current+0xe7/0x1e0
[ 2371.615950]  kvm_mmu_create+0xd1/0x1c0
[ 2371.615968]  kvm_arch_vcpu_init+0x282/0x890
[ 2371.615981]  ? alloc_pages_current+0xef/0x1e0
[ 2371.615998]  kvm_vcpu_init+0x26d/0x360
[ 2371.616016]  vmx_create_vcpu+0xf5/0x2950
[ 2371.616033]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2371.616043]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2371.616059]  ? alloc_loaded_vmcs+0x240/0x240
[ 2371.616081]  kvm_vm_ioctl+0x4ae/0x1430
[ 2371.616094]  ? __lock_acquire+0x655/0x42a0
[ 2371.616106]  ? kvm_vcpu_release+0xa0/0xa0
[ 2371.616118]  ? check_preemption_disabled+0x35/0x240
[ 2371.616132]  ? perf_trace_lock+0x109/0x4b0
[ 2371.616146]  ? check_preemption_disabled+0x35/0x240
[ 2371.616160]  ? perf_trace_lock+0x109/0x4b0
[ 2371.616177]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2371.616190]  ? HARDIRQ_verbose+0x10/0x10
[ 2371.616202]  ? kvm_vcpu_release+0xa0/0xa0
[ 2371.616215]  do_vfs_ioctl+0x75a/0xfe0
[ 2371.616229]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2371.616242]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2371.616268]  ? security_file_ioctl+0x76/0xb0
[ 2371.616280]  ? security_file_ioctl+0x83/0xb0
[ 2371.616295]  SyS_ioctl+0x7f/0xb0
[ 2371.616305]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2371.616320]  do_syscall_64+0x1d5/0x640
[ 2371.616340]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2371.616349] RIP: 0033:0x45cb09
[ 2371.616356] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2371.616368] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2371.616375] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2371.616382] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2371.616390] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2371.616397] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2371.618904] warn_alloc_show_mem: 1 callbacks suppressed
[ 2371.618908] Mem-Info:
[ 2371.618939] active_anon:428169 inactive_anon:21639 isolated_anon:0
[ 2371.618939]  active_file:3406 inactive_file:25868 isolated_file:0
[ 2371.618939]  unevictable:13607 dirty:64 writeback:0 unstable:0
[ 2371.618939]  slab_reclaimable:19956 slab_unreclaimable:319737
[ 2371.618939]  mapped:68468 shmem:24729 pagetables:27545 bounce:0
[ 2371.618939]  free:651654 free_pcp:457 free_cma:0
[ 2371.618960] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2371.618982] Node 1 active_anon:191832kB inactive_anon:65484kB active_file:13620kB inactive_file:103468kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:64956kB dirty:252kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2371.618987] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2371.619015] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2371.619040] Node 0 DMA32 free:34792kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12928kB pagetables:35300kB bounce:0kB free_pcp:1264kB local_pcp:636kB free_cma:0kB
[ 2371.619067] lowmem_reserve[]: 0 0 0 0 0
[ 2371.619094] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2371.619117] lowmem_reserve[]: 0 0 0 0 0
[ 2371.619147] Node 1 Normal free:2561572kB min:53592kB low:66988kB high:80384kB active_anon:191832kB inactive_anon:65484kB active_file:13620kB inactive_file:103468kB unevictable:54428kB writepending:300kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:29056kB pagetables:74876kB bounce:0kB free_pcp:568kB local_pcp:296kB free_cma:0kB
[ 2371.619180] lowmem_reserve[]: 0 0 0 0 0
[ 2371.619208] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2371.619328] Node 0 DMA32: 2910*4kB (UMEH) 1083*8kB (UMEH) 457*16kB (UME) 149*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34816kB
[ 2371.619429] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2371.619506] Node 1 Normal: 1055*4kB (UE) 464*8kB (UME) 162*16kB (E) 39*32kB (E) 42*64kB (UME) 8*128kB (UME) 2*256kB (UE) 2*512kB (UE) 1*1024kB (E) 4*2048kB (UM) 619*4096kB (UM) = 2561660kB
[ 2371.619624] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2371.619632] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2371.619640] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
01:29:33 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
getpeername(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, <r4=>0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000100)=0x80)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f00000000c0)={0x0, @local, 0x4e22, 0x1, 'rr\x00', 0x5d, 0x6}, 0x2c)

01:29:33 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xf)
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

[ 2371.619648] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2371.619652] 48261 total pagecache pages
[ 2371.619665] 0 pages in swap cache
[ 2371.619672] Swap cache stats: add 0, delete 0, find 0/0
[ 2371.619677] Free swap  = 0kB
[ 2371.619681] Total swap = 0kB
[ 2371.619689] 1965979 pages RAM
[ 2371.619693] 0 pages HighMem/MovableOnly
[ 2371.619697] 338456 pages reserved
[ 2371.619702] 0 pages cma reserved
01:29:33 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x7f, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {0x200000}, {}, {0xfffffffc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x4})
r1 = socket$unix(0x1, 0x2, 0x0)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r4)
ioctl$VIDIOC_G_EXT_CTRLS(0xffffffffffffffff, 0xc0205647, &(0x7f0000000140)={0x990000, 0x6db, 0x6, <r5=>r4, 0x0, &(0x7f0000000100)={0x9b0001, 0x7f, [], @p_u8=&(0x7f00000000c0)=0x6}})
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r6, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x2)
ioctl$SNDRV_PCM_IOCTL_REWIND(0xffffffffffffffff, 0x40084146, &(0x7f0000002000)=0x8000)
sendmmsg$inet(r3, &(0x7f0000001f80)=[{{0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000200)="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", 0x1000}, {&(0x7f0000001200)="5fb7993ed6b6c7d7822cfbd13296abe52d46369cbaa70c55acac", 0x1a}, {&(0x7f0000001240)="cd6220215f6352ee82e9dfa1b66b8b65c68e16ec4c935ee0c78be55419040f87392b4e8fa0814950a17c076d138a232025a6915c892e1025aae78f8e0220a0dea6c0d9848176637826627fe29ccf86207a04a0508e069c02de96bd4f28cbd657aab92f1bb7eb5c47f06a56b325e65cbac1578e5549fc7cde380f2f4cf90b3b3781027ebf5307561e4e724c6d30dd1d55d28f3c4f620b8838cb02f45483271b1fbab5ad624fbe7f30d548e29602c9e489134f9a1fb3cdca5c50ef6d57aabbc256a56431f95fe0fefee256ebf37699a4345f", 0xd1}, {&(0x7f0000001340)="f427c08cf268799f06d1159bc77549cd8922c566e3b7f834c270d9640dcc8e0ada00943977a742e66a7ea22f8fbc82bb150a63c73f5c8a31b28755d6784a2956a51026d8b874b225a29f1c73afab4dfc5af5f1b43b830aa03d54eb7b42b9abab6cccb933812131ec312ae51e4732bd7fd59ee6ba093c02a2ca46d51520c431e144721cd368ada8ffbff18c6344bb8727420996b06ffc8d41c2780e62ecfdc83931de8fe9f1dd7bdbcaae83e000a9c52b955a3ba1932e5f507a3270b69170107795f2f4486d45dec396d9b436356610f453594d204d0ff43c5f", 0xd9}, {&(0x7f0000001440)="a72d7bfac503d882adcd3fe9d5203bafee5ddb09c232726b6121bcf21767baae8a4244fd8c10a43b7b2ac4563a3ef42daa004b9fd4679127bfd0892eb363b4b3a702f91e59dd8fbba6f46bcbe50c7359b756275c2d11c2535715f65c313fc40ac7c407497480dd27ba8263c01a5fba9e9d40f0586f2fe1310773a5dddc8f120bb3411903cca6d9902428148efc84092f6f5c196244aba36ffa59a45de7025c7bca2d5f04b572598dc75fe9ae495517a27741e6904497619ebc474f5f6b4b5753f25ba7d4bba0ea5e3c5551a645d100478e3b8c69ba7b2e3166f84b8f65edcfa98692054f5aa580e68822bd61701b1016766bf491eef96b1babec287b921df9", 0xff}, {&(0x7f0000001540)="b79efaef5c2cb60b5e1c0836342db9d64932e5214bc8ec038064d032dafd077db325053f10ab7a916db6fe539e3bb008019705e22ff2adc797f5345793c6bde650aeaa5c9f5c2ab4250d56cf826f69556548ddd80d6404898a6d94c99587a95176da2af86d1243c56da118f495696ff9be672a737fbf7da675d95abf9419e22119e57f2fbcd3998112acaff22bd981fd0fa226910dbc481d5dd7ffd5e917fbfd67f362d9e41b173c3f0edc8932eb374ce8750e193998ea51909b369e2b90eda0988ba16b6f1a136f6df1fe87bf06fe3f5802c9ac55", 0xd5}], 0x6, &(0x7f00000016c0)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x2}}, @ip_ttl={{0x14, 0x0, 0x2, 0x101}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x3064933c}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x9}}], 0x60}}, {{&(0x7f0000001740)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000001dc0)=[{&(0x7f0000001780)="1f803eeac2fdf9a891a0cb29444c20951698212a82107a10750b3ca668de4b135412dba6cca9488041e0a3dadae1e7e96e0930abc180978af92b9c388c8b2dcee88ec82dcedba307f87cec6b1ef084e9d8cf299de4502b4cb55abb324373608dd07984e4855a380d9d63cf3300", 0x6d}, {&(0x7f0000001800)="d2a220abb3f74b77cf", 0x9}, {&(0x7f0000001840)="42fcaf184eec3e1a2ec0ed4c10577ca323b0c60f64a6d2dc7a1b6880b54cb3b0b3e842e3722fa16d225a9504252d3c300e99714da094f9b03e965cf5ec40f41a4e12aafbf03dc8d0ddf907bb829c778db84d4a8011927348174224a9a23d7a4ef6d4f1130560bc9e199c2ba4d9e3a809f6f5cc7f16c5d6443b48c74d47cf27e80c390eddbfe8a872c13891d065a98a1b17b35733c47272999296b89a92f0dc207aeb92f2955e275cb7ebcaf63fa67135f2f74338e3fd996dac1c04ed002769c6973c5203f984809b9f536e91f514d78861081d4ac718c99ee56cd693642533f7ca3bf9bb1e068800e6", 0xe9}, {&(0x7f0000001940)="977d46beb2a8439268cd810297aa60771d48de61a0b7b6d7a80e5328ad4bfc2da6c25cc280373106ac15aa256adc6b4aeb6d8130c930069591d40f2741c2f8408e19503d3b217d0c79fad8f2", 0x4c}, {&(0x7f00000019c0)="8d723870029eb0b165e30a03f36fa6c1d074abbe9a90276d6a8f0a20eae9c27837775536f8a064fd3cabea137057ba68b6b65f8597acced4c7fd1c5cba060dff0588f4fbe54905d255b102fc232cb157e086dfb97979a870ad084fd5490a4cdafd3f7fbdf98808b2def2cb71b2f2956065f0b8d2221609e7c240d75f6042b0213fa4eff8", 0x84}, {&(0x7f0000001a80)="b18e44fad9de7f8709454d8a4bf48b1fe498342a5f28e8d857795ec8dd2b7449763cca06028c9bdf1567332f4e7844ead110533f300b106128ab58d424ae9dfdbc97a544744dacdf2aa158c022b84288a025e1d9ba15a944d5f65942fae84dae051a95754378000ee464c7d7d8a021", 0x6f}, {&(0x7f0000001b00)="65bb71f3786c0fae9a494b94b09bae4e86fede5d4d1c0a21f0416c70ba22b9840803b6b7eaba1d907e6f9500973f40bc56ce244eabd70f898ef4f959a8667462e37ec78d8bc03a1d036a0f3980eeb147f69f8a7f159b122432c525097eba5273eaabb23bba89a643217afa078b24a460ead11fb34312075c99b70d7547d289c370651489f4163e03a36a07c9f7071dec23fc7678fd6e54fa224cf9efffe6eec7531a3e152747d451147572572e9afca481dd9c20617aa9bd23e9e4f5decb7c3aae3d9f9523547aa8580f50c963d6dd666e7a9be8f6db576751ca0916a6e1", 0xde}, {&(0x7f0000001c00)="3eb1206ab0cd2bc8c187baf4958c9aa961755a6817d5cb0b30cb5bf16bf8cd325e1329e5d6a24889facfa2db1b0938e4edbb570baeb9a62be108fe3cf42e171b07007608ad94286acea20d2871fa62935b2c6402e6e8c452da311637c846ecd201f38f2b1721faf61024c28aaefc0536f2a608508400c83754a74a5afefa2b41ce916d7d9928845ca2c7c3ba301f367dee9e22e27b", 0x95}, {&(0x7f0000001cc0)="df158b2ff98e346a0abc0976bb497fb2d0afadda440f34ad84d66b435dcdf4622802b397cbce1b0880b77c86fc74ddef1e3142f4d13ca0ca503d6ac67e285b31ceeeec009e4705f35727a76d3b77e93de0e26cfe90aa6f0620f0912a83b96a602a3266d34a991d3ecddbde98181afb5749d42386576f7a9a6f1d31a873f51bb514b513d9d92dc0c409895e33c0913493e85b40a567a7c3d335eaaf08fa3ed578d872138dac2b5d7815f8ccb93359127a508fa5fcf88bd35b8f55ad55334eece98c87e595c896db3b4d71d5a9d8dd41064dc37fc43de2db611679f39e0f7be8d2cfb04610a58d61c0a7e61e755f329b", 0xef}], 0x9, &(0x7f0000002040)=ANY=[@ANYBLOB="d4000000000000000000000700640001442c91a30000000000000008640102000000df9400000000fffffff8ac1401880e223b2e6d8fd1030b50e181e3860da6a21428b0fc4744264b7d867700000000060431d7010aa04b562a3e87531b02105cd568f4296ef137bc1ab446d94d001009741fc395d88544787dc50a9028070f612aebd8dc7eb41d78de3a0c22011282a297e5c9a1d6e96b139ad813fdefa8020721120db0bf01067c7a2262020f405804e3a1728c6119dd714f7c04068c1eb0250000000000000014000000000000000000000001000000030000000000000014000000000000000000000002000000080000000000000000"], 0x108}}], 0x2, 0x48001)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_RTOINFO(r6, 0x84, 0x0, &(0x7f0000000100)={r8, 0x6}, 0x10)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r5, 0x84, 0x79, &(0x7f00000001c0)={r8, 0x3, 0x4}, 0x8)

01:29:33 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$SOUND_MIXER_READ_RECMASK(r6, 0x80044dfd, &(0x7f0000000100))
r7 = dup(r3)
r8 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = fcntl$dupfd(r8, 0x0, r9)
ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r7})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f0000000080)=0x5)

01:29:33 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})

01:29:33 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-monitor\x00', 0x800, 0x0)
getsockopt$inet_sctp_SCTP_RECVNXTINFO(r5, 0x84, 0x21, &(0x7f0000000140), &(0x7f0000000180)=0x4)
sendmsg$AUDIT_TTY_GET(r4, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x3f8, 0x4, 0x70bd27, 0x25dfdbff, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x240088c1}, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2372.474176] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2372.474207] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2372.474239] CPU: 0 PID: 22737 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2372.474250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2372.474256] Call Trace:
[ 2372.474279]  dump_stack+0x1b2/0x283
[ 2372.474302]  warn_alloc.cold+0x96/0x1af
[ 2372.474320]  ? zone_watermark_ok_safe+0x250/0x250
01:29:33 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000100)={0x1, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

[ 2372.474350]  ? wait_for_completion_io+0x10/0x10
[ 2372.474375]  __alloc_pages_nodemask+0x2129/0x2730
[ 2372.474422]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2372.474444]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2372.474478]  ? HARDIRQ_verbose+0x10/0x10
[ 2372.474491]  ? do_raw_spin_unlock+0x164/0x250
[ 2372.474510]  alloc_pages_current+0xe7/0x1e0
[ 2372.474540]  kvm_mmu_create+0xd1/0x1c0
[ 2372.474556]  kvm_arch_vcpu_init+0x282/0x890
[ 2372.474567]  ? alloc_pages_current+0xef/0x1e0
[ 2372.474581]  kvm_vcpu_init+0x26d/0x360
[ 2372.474597]  vmx_create_vcpu+0xf5/0x2950
[ 2372.474614]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2372.474624]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2372.474639]  ? alloc_loaded_vmcs+0x240/0x240
[ 2372.474661]  kvm_vm_ioctl+0x4ae/0x1430
[ 2372.474676]  ? __lock_acquire+0x655/0x42a0
[ 2372.474689]  ? kvm_vcpu_release+0xa0/0xa0
[ 2372.474702]  ? check_preemption_disabled+0x35/0x240
[ 2372.474716]  ? perf_trace_lock+0x109/0x4b0
[ 2372.474731]  ? check_preemption_disabled+0x35/0x240
[ 2372.474745]  ? perf_trace_lock+0x109/0x4b0
[ 2372.474762]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2372.474776]  ? HARDIRQ_verbose+0x10/0x10
[ 2372.474787]  ? kvm_vcpu_release+0xa0/0xa0
[ 2372.474801]  do_vfs_ioctl+0x75a/0xfe0
[ 2372.474814]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2372.474827]  ? ioctl_preallocate+0x1a0/0x1a0
01:29:33 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f0000000100)={0x3, &(0x7f00000000c0)=[{0x2, 0x7, 0x81, 0x101}, {0x1, 0x7f, 0xff, 0x2}, {0x1, 0x20, 0x3, 0x6}]})
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r1, 0x0, r2)
ioctl$sock_SIOCGIFBR(r1, 0x8940, &(0x7f0000000140)=@get={0x1, &(0x7f00000001c0)=""/250, 0x5})

[ 2372.474853]  ? security_file_ioctl+0x76/0xb0
[ 2372.474864]  ? security_file_ioctl+0x83/0xb0
[ 2372.474878]  SyS_ioctl+0x7f/0xb0
[ 2372.474887]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2372.474901]  do_syscall_64+0x1d5/0x640
[ 2372.474921]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2372.474931] RIP: 0033:0x45cb09
[ 2372.474938] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2372.474951] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2372.474959] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2372.474967] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2372.474974] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2372.474981] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2372.671179] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2372.671209] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2372.671238] CPU: 1 PID: 22761 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2372.671247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2372.671252] Call Trace:
[ 2372.671273]  dump_stack+0x1b2/0x283
[ 2372.671292]  warn_alloc.cold+0x96/0x1af
[ 2372.671307]  ? zone_watermark_ok_safe+0x250/0x250
[ 2372.671331]  ? wait_for_completion_io+0x10/0x10
[ 2372.671352]  __alloc_pages_nodemask+0x2129/0x2730
[ 2372.671388]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2372.671402]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2372.671436]  ? HARDIRQ_verbose+0x10/0x10
[ 2372.671450]  ? do_raw_spin_unlock+0x164/0x250
[ 2372.671469]  alloc_pages_current+0xe7/0x1e0
[ 2372.671487]  kvm_mmu_create+0xd1/0x1c0
[ 2372.671504]  kvm_arch_vcpu_init+0x282/0x890
[ 2372.671514]  ? alloc_pages_current+0xef/0x1e0
[ 2372.671529]  kvm_vcpu_init+0x26d/0x360
[ 2372.671544]  vmx_create_vcpu+0xf5/0x2950
[ 2372.671560]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2372.671572]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2372.671598]  ? alloc_loaded_vmcs+0x240/0x240
[ 2372.671622]  kvm_vm_ioctl+0x4ae/0x1430
[ 2372.671640]  ? __lock_acquire+0x655/0x42a0
[ 2372.671659]  ? kvm_vcpu_release+0xa0/0xa0
[ 2372.671674]  ? check_preemption_disabled+0x35/0x240
[ 2372.671692]  ? perf_trace_lock+0x109/0x4b0
[ 2372.671710]  ? check_preemption_disabled+0x35/0x240
[ 2372.671731]  ? perf_trace_lock+0x109/0x4b0
[ 2372.671756]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2372.671773]  ? HARDIRQ_verbose+0x10/0x10
[ 2372.671792]  ? kvm_vcpu_release+0xa0/0xa0
[ 2372.671810]  do_vfs_ioctl+0x75a/0xfe0
[ 2372.671828]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2372.671843]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2372.671872]  ? security_file_ioctl+0x76/0xb0
[ 2372.671884]  ? security_file_ioctl+0x83/0xb0
[ 2372.671908]  SyS_ioctl+0x7f/0xb0
[ 2372.671918]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2372.671934]  do_syscall_64+0x1d5/0x640
[ 2372.671955]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2372.671964] RIP: 0033:0x45cb09
[ 2372.671971] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2372.671983] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2372.671991] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2372.671998] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2372.672006] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2372.672013] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2372.677290] warn_alloc_show_mem: 1 callbacks suppressed
[ 2372.677294] Mem-Info:
[ 2372.677325] active_anon:428134 inactive_anon:21639 isolated_anon:0
[ 2372.677325]  active_file:3407 inactive_file:25891 isolated_file:0
[ 2372.677325]  unevictable:13607 dirty:117 writeback:0 unstable:0
[ 2372.677325]  slab_reclaimable:19834 slab_unreclaimable:320507
[ 2372.677325]  mapped:68496 shmem:24729 pagetables:27554 bounce:0
[ 2372.677325]  free:650985 free_pcp:578 free_cma:0
[ 2372.677349] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2372.677373] Node 1 active_anon:191692kB inactive_anon:65484kB active_file:13620kB inactive_file:103564kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:65068kB dirty:464kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2372.677378] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2372.677402] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2372.677432] Node 0 DMA32 free:34816kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12928kB pagetables:35300kB bounce:0kB free_pcp:1316kB local_pcp:636kB free_cma:0kB
[ 2372.677461] lowmem_reserve[]: 0 0 0 0 0
[ 2372.677489] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2372.677516] lowmem_reserve[]: 0 0 0 0 0
[ 2372.677543] Node 1 Normal free:2558768kB min:53592kB low:66988kB high:80384kB active_anon:191692kB inactive_anon:65484kB active_file:13620kB inactive_file:103564kB unevictable:54428kB writepending:464kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:29024kB pagetables:74912kB bounce:0kB free_pcp:992kB local_pcp:516kB free_cma:0kB
[ 2372.677569] lowmem_reserve[]: 0 0 0 0 0
[ 2372.677595] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2372.677708] Node 0 DMA32: 2910*4kB (UMEH) 1090*8kB (UMEH) 457*16kB (UME) 149*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34872kB
[ 2372.677796] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2372.677864] Node 1 Normal: 1132*4kB (UME) 656*8kB (UME) 203*16kB (UME) 43*32kB (UE) 15*64kB (UE) 4*128kB (E) 1*256kB (E) 2*512kB (UE) 2*1024kB (UE) 2*2048kB (UM) 619*4096kB (UM) = 2558720kB
[ 2372.678003] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2372.678016] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2372.678027] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2372.678037] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2372.678043] 48285 total pagecache pages
[ 2372.678058] 0 pages in swap cache
[ 2372.678065] Swap cache stats: add 0, delete 0, find 0/0
01:29:34 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
setsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x3, &(0x7f0000000180)=0x8, 0x4)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$dupfd(r3, 0x0, r4)
getdents(r4, &(0x7f0000000000)=""/240, 0xf0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000100)=0x1000)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
setsockopt$inet6_dccp_int(r7, 0x21, 0xa, &(0x7f0000000140)=0x6, 0x4)

[ 2372.678070] Free swap  = 0kB
[ 2372.678075] Total swap = 0kB
[ 2372.678083] 1965979 pages RAM
[ 2372.678087] 0 pages HighMem/MovableOnly
[ 2372.678093] 338456 pages reserved
[ 2372.678097] 0 pages cma reserved
[ 2372.734106] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2373.514012] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2373.514037] CPU: 0 PID: 22769 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2373.514044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2373.514049] Call Trace:
[ 2373.514068]  dump_stack+0x1b2/0x283
[ 2373.514086]  warn_alloc.cold+0x96/0x1af
[ 2373.514099]  ? zone_watermark_ok_safe+0x250/0x250
[ 2373.514122]  ? wait_for_completion_io+0x10/0x10
[ 2373.514141]  __alloc_pages_nodemask+0x2129/0x2730
[ 2373.514174]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2373.514187]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2373.514214]  ? HARDIRQ_verbose+0x10/0x10
[ 2373.514226]  ? do_raw_spin_unlock+0x164/0x250
[ 2373.514243]  alloc_pages_current+0xe7/0x1e0
[ 2373.514261]  kvm_mmu_create+0xd1/0x1c0
[ 2373.514275]  kvm_arch_vcpu_init+0x282/0x890
[ 2373.514286]  ? alloc_pages_current+0xef/0x1e0
[ 2373.514301]  kvm_vcpu_init+0x26d/0x360
[ 2373.514317]  vmx_create_vcpu+0xf5/0x2950
[ 2373.514332]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2373.514343]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2373.514358]  ? alloc_loaded_vmcs+0x240/0x240
[ 2373.514377]  kvm_vm_ioctl+0x4ae/0x1430
[ 2373.514391]  ? __lock_acquire+0x655/0x42a0
[ 2373.514402]  ? kvm_vcpu_release+0xa0/0xa0
[ 2373.514414]  ? check_preemption_disabled+0x35/0x240
[ 2373.514427]  ? perf_trace_lock+0x109/0x4b0
[ 2373.514442]  ? check_preemption_disabled+0x35/0x240
[ 2373.514455]  ? perf_trace_lock+0x109/0x4b0
[ 2373.514471]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2373.514484]  ? HARDIRQ_verbose+0x10/0x10
[ 2373.514495]  ? kvm_vcpu_release+0xa0/0xa0
[ 2373.514509]  do_vfs_ioctl+0x75a/0xfe0
[ 2373.514522]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2373.514535]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2373.514561]  ? security_file_ioctl+0x76/0xb0
[ 2373.514571]  ? security_file_ioctl+0x83/0xb0
[ 2373.514584]  SyS_ioctl+0x7f/0xb0
[ 2373.514593]  ? do_vfs_ioctl+0xfe0/0xfe0
01:29:34 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x10000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$ttys(0xc, 0x2, 0x1)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$dupfd(r4, 0x0, r5)
r6 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
sendmsg$AUDIT_SIGNAL_INFO(r6, &(0x7f0000000100)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000040)={&(0x7f0000000080)={0x2, 0x3f2, 0x4, 0x70bd28, 0x25dfdbfd, "", ["", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x91}, 0xc040800)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video2\x00', 0x2, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
r7 = socket$unix(0x1, 0x5, 0x0)
setsockopt$PNPIPE_HANDLE(r6, 0x113, 0x3, &(0x7f00000001c0)=0x5, 0x4)
r8 = fcntl$dupfd(r7, 0x0, 0xffffffffffffffff)
ioctl$NS_GET_PARENT(r8, 0xb702, 0x0)
setsockopt$inet_sctp_SCTP_HMAC_IDENT(r3, 0x84, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="fbff000411c622c0210500"], 0x14)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2373.514608]  do_syscall_64+0x1d5/0x640
[ 2373.514628]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2373.514637] RIP: 0033:0x45cb09
[ 2373.514643] RSP: 002b:00007f014affbc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2373.514656] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2373.514663] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2373.514670] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000
[ 2373.514676] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2373.514683] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014affc6d4
[ 2373.596572] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2373.596606] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2373.596641] CPU: 0 PID: 22783 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2373.596650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2373.596657] Call Trace:
[ 2373.596680]  dump_stack+0x1b2/0x283
[ 2373.596700]  warn_alloc.cold+0x96/0x1af
[ 2373.596713]  ? zone_watermark_ok_safe+0x250/0x250
[ 2373.596741]  ? wait_for_completion_io+0x10/0x10
[ 2373.596770]  __alloc_pages_nodemask+0x2129/0x2730
[ 2373.596809]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2373.596823]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2373.596848]  ? HARDIRQ_verbose+0x10/0x10
[ 2373.596860]  ? do_raw_spin_unlock+0x164/0x250
[ 2373.596877]  alloc_pages_current+0xe7/0x1e0
[ 2373.596897]  kvm_mmu_create+0xd1/0x1c0
[ 2373.596914]  kvm_arch_vcpu_init+0x282/0x890
[ 2373.596936]  ? alloc_pages_current+0xef/0x1e0
[ 2373.596954]  kvm_vcpu_init+0x26d/0x360
[ 2373.596972]  vmx_create_vcpu+0xf5/0x2950
[ 2373.596990]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2373.597003]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2373.597018]  ? alloc_loaded_vmcs+0x240/0x240
[ 2373.597039]  kvm_vm_ioctl+0x4ae/0x1430
[ 2373.597055]  ? __lock_acquire+0x655/0x42a0
[ 2373.597068]  ? kvm_vcpu_release+0xa0/0xa0
[ 2373.597081]  ? check_preemption_disabled+0x35/0x240
[ 2373.597094]  ? perf_trace_lock+0x109/0x4b0
[ 2373.597109]  ? check_preemption_disabled+0x35/0x240
[ 2373.597124]  ? perf_trace_lock+0x109/0x4b0
[ 2373.597141]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2373.597153]  ? HARDIRQ_verbose+0x10/0x10
[ 2373.597167]  ? kvm_vcpu_release+0xa0/0xa0
[ 2373.597181]  do_vfs_ioctl+0x75a/0xfe0
[ 2373.597198]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2373.597212]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2373.597241]  ? security_file_ioctl+0x76/0xb0
[ 2373.597254]  ? security_file_ioctl+0x83/0xb0
[ 2373.597268]  SyS_ioctl+0x7f/0xb0
[ 2373.597278]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2373.597294]  do_syscall_64+0x1d5/0x640
[ 2373.597316]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2373.597327] RIP: 0033:0x45cb09
[ 2373.597334] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2373.597347] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2373.597354] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2373.597361] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2373.597368] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2373.597374] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
01:29:35 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nvram\x00', 0x184580, 0x0)
ioctl$RTC_UIE_OFF(r0, 0x7004)
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000100)={0x4, 0x7, 0x3, 0x0, 0x4, 0x2, 0x1, 0x20, 0x1f, 0x3f, 0x3c, 0x80, 0x0, 0x3f, 0x81, 0x8, 0xbe, 0x3, 0x4, [], 0x8, 0x100000001})
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

01:29:35 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x400000, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x2, 0x2, 0x401, 0x0, 0x0, {0x1, 0x0, 0x9}, [@CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x40}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000040}, 0x48001)

01:29:35 executing program 2:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vim2m\x00', 0x2, 0x0)
ioctl$vim2m_VIDIOC_STREAMON(r1, 0x40045612, &(0x7f0000000300)=0x2)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
ioctl$IMGETVERSION(r3, 0x80044942, &(0x7f00000000c0))
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb})

[ 2374.966181] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
01:29:35 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x4, 0x0, {}, {}, {0x0, 0x0, 0x1}, {0x6}, 0x3, 0x0, 0x0, 0x0, 0x0, 0xffffdffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19})

[ 2374.966210] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2374.966238] CPU: 1 PID: 22802 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
01:29:36 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$dupfd(r2, 0x0, r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000700)='devlink\x00')
sendmsg$DEVLINK_CMD_GET(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)={0x14, r5, 0xc91add0bf88807dd, 0x0, 0x0, {0xb}}, 0x14}}, 0x0)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0xc8, r5, 0x400, 0x70bd29, 0x25dfdbfc, {}, [{@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0xd, 0x87, 'l2_drops\x00'}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0xd, 0x87, 'l2_drops\x00'}}, {@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd, 0x87, 'l2_drops\x00'}}, {@pci={{0x8, 0x1, 'pci\x00'}, {0x11, 0x2, '0000:00:10.0\x00'}}, {0xd, 0x87, 'l2_drops\x00'}}]}, 0xc8}, 0x1, 0x0, 0x0, 0x8011}, 0x0)

[ 2374.966245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2374.966249] Call Trace:
[ 2374.966270]  dump_stack+0x1b2/0x283
[ 2374.966289]  warn_alloc.cold+0x96/0x1af
[ 2374.966303]  ? zone_watermark_ok_safe+0x250/0x250
[ 2374.966326]  ? wait_for_completion_io+0x10/0x10
[ 2374.966363]  __alloc_pages_nodemask+0x2129/0x2730
[ 2374.966400]  ? gfp_pfmemalloc_allowed+0x150/0x150
01:29:36 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

[ 2374.966413]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2374.966442]  ? HARDIRQ_verbose+0x10/0x10
[ 2374.966455]  ? do_raw_spin_unlock+0x164/0x250
[ 2374.966471]  alloc_pages_current+0xe7/0x1e0
[ 2374.966488]  kvm_mmu_create+0xd1/0x1c0
[ 2374.966506]  kvm_arch_vcpu_init+0x282/0x890
[ 2374.966518]  ? alloc_pages_current+0xef/0x1e0
[ 2374.966534]  kvm_vcpu_init+0x26d/0x360
[ 2374.966549]  vmx_create_vcpu+0xf5/0x2950
[ 2374.966567]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2374.966578]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2374.966596]  ? alloc_loaded_vmcs+0x240/0x240
[ 2374.966619]  kvm_vm_ioctl+0x4ae/0x1430
[ 2374.966637]  ? __lock_acquire+0x655/0x42a0
[ 2374.966656]  ? kvm_vcpu_release+0xa0/0xa0
[ 2374.966671]  ? check_preemption_disabled+0x35/0x240
[ 2374.966686]  ? perf_trace_lock+0x109/0x4b0
[ 2374.966704]  ? check_preemption_disabled+0x35/0x240
[ 2374.966727]  ? perf_trace_lock+0x109/0x4b0
[ 2374.966748]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2374.966773]  ? HARDIRQ_verbose+0x10/0x10
[ 2374.966791]  ? kvm_vcpu_release+0xa0/0xa0
[ 2374.966815]  do_vfs_ioctl+0x75a/0xfe0
[ 2374.966835]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2374.966851]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2374.966880]  ? security_file_ioctl+0x76/0xb0
[ 2374.966893]  ? security_file_ioctl+0x83/0xb0
[ 2374.966910]  SyS_ioctl+0x7f/0xb0
[ 2374.966923]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2374.966945]  do_syscall_64+0x1d5/0x640
[ 2374.966968]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2374.966979] RIP: 0033:0x45cb09
[ 2374.966986] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2374.967009] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2374.967017] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2374.967024] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2374.967031] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2374.967038] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2374.969476] warn_alloc_show_mem: 2 callbacks suppressed
[ 2374.969481] Mem-Info:
[ 2374.969514] active_anon:428146 inactive_anon:21639 isolated_anon:0
[ 2374.969514]  active_file:3406 inactive_file:25901 isolated_file:0
[ 2374.969514]  unevictable:13607 dirty:59 writeback:0 unstable:0
[ 2374.969514]  slab_reclaimable:19742 slab_unreclaimable:319892
[ 2374.969514]  mapped:68685 shmem:24729 pagetables:27509 bounce:0
[ 2374.969514]  free:651684 free_pcp:570 free_cma:0
[ 2374.969538] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2374.969562] Node 1 active_anon:191740kB inactive_anon:65484kB active_file:13620kB inactive_file:103600kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:65824kB dirty:232kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2374.969568] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2374.969597] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2374.969622] Node 0 DMA32 free:34872kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12928kB pagetables:35300kB bounce:0kB free_pcp:1332kB local_pcp:652kB free_cma:0kB
[ 2374.969651] lowmem_reserve[]: 0 0 0 0 0
[ 2374.969679] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2374.969706] lowmem_reserve[]: 0 0 0 0 0
[ 2374.969733] Node 1 Normal free:2561508kB min:53592kB low:66988kB high:80384kB active_anon:191740kB inactive_anon:65484kB active_file:13620kB inactive_file:103600kB unevictable:54428kB writepending:280kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:29024kB pagetables:74732kB bounce:0kB free_pcp:948kB local_pcp:396kB free_cma:0kB
[ 2374.969760] lowmem_reserve[]: 0 0 0 0 0
[ 2374.969786] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2374.969890] Node 0 DMA32: 2910*4kB (UMEH) 1090*8kB (UMEH) 457*16kB (UME) 149*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34872kB
[ 2374.969977] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2374.970055] Node 1 Normal: 1155*4kB (UME) 652*8kB (UME) 274*16kB (UME) 60*32kB (UE) 21*64kB (UE) 11*128kB (UE) 2*256kB (UE) 1*512kB (E) 2*1024kB (UE) 2*2048kB (UM) 619*4096kB (UM) = 2561484kB
[ 2374.970167] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2374.970179] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2374.970189] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2374.970199] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2374.970204] 48294 total pagecache pages
[ 2374.970218] 0 pages in swap cache
[ 2374.970225] Swap cache stats: add 0, delete 0, find 0/0
[ 2374.970231] Free swap  = 0kB
[ 2374.970236] Total swap = 0kB
[ 2374.970244] 1965979 pages RAM
[ 2374.970250] 0 pages HighMem/MovableOnly
[ 2374.970255] 338456 pages reserved
[ 2374.970259] 0 pages cma reserved
[ 2375.216148] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2375.216178] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2375.216207] CPU: 1 PID: 22820 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2375.216215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2375.216220] Call Trace:
[ 2375.216242]  dump_stack+0x1b2/0x283
[ 2375.216271]  warn_alloc.cold+0x96/0x1af
[ 2375.216286]  ? zone_watermark_ok_safe+0x250/0x250
[ 2375.216316]  ? wait_for_completion_io+0x10/0x10
[ 2375.216341]  __alloc_pages_nodemask+0x2129/0x2730
[ 2375.216384]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2375.216402]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2375.216433]  ? HARDIRQ_verbose+0x10/0x10
[ 2375.216446]  ? do_raw_spin_unlock+0x164/0x250
[ 2375.216466]  alloc_pages_current+0xe7/0x1e0
[ 2375.216486]  kvm_mmu_create+0xd1/0x1c0
[ 2375.216504]  kvm_arch_vcpu_init+0x282/0x890
[ 2375.216515]  ? alloc_pages_current+0xef/0x1e0
[ 2375.216533]  kvm_vcpu_init+0x26d/0x360
[ 2375.216552]  vmx_create_vcpu+0xf5/0x2950
[ 2375.216570]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2375.216582]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2375.216599]  ? alloc_loaded_vmcs+0x240/0x240
[ 2375.216622]  kvm_vm_ioctl+0x4ae/0x1430
[ 2375.216638]  ? __lock_acquire+0x655/0x42a0
[ 2375.216650]  ? kvm_vcpu_release+0xa0/0xa0
[ 2375.216662]  ? check_preemption_disabled+0x35/0x240
[ 2375.216680]  ? perf_trace_lock+0x109/0x4b0
[ 2375.216696]  ? check_preemption_disabled+0x35/0x240
[ 2375.216712]  ? perf_trace_lock+0x109/0x4b0
[ 2375.216729]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2375.216744]  ? HARDIRQ_verbose+0x10/0x10
[ 2375.216759]  ? kvm_vcpu_release+0xa0/0xa0
[ 2375.216777]  do_vfs_ioctl+0x75a/0xfe0
[ 2375.216793]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2375.216807]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2375.216840]  ? security_file_ioctl+0x76/0xb0
[ 2375.216862]  ? security_file_ioctl+0x83/0xb0
[ 2375.216881]  SyS_ioctl+0x7f/0xb0
[ 2375.216891]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2375.216915]  do_syscall_64+0x1d5/0x640
[ 2375.216939]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2375.216952] RIP: 0033:0x45cb09
[ 2375.216960] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2375.216976] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2375.216985] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2375.216993] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2375.217000] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2375.217006] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
[ 2375.413084] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2375.413116] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2375.413208] CPU: 1 PID: 22833 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2375.413216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2375.413221] Call Trace:
[ 2375.413243]  dump_stack+0x1b2/0x283
[ 2375.413267]  warn_alloc.cold+0x96/0x1af
[ 2375.413284]  ? zone_watermark_ok_safe+0x250/0x250
[ 2375.413313]  ? wait_for_completion_io+0x10/0x10
[ 2375.413338]  __alloc_pages_nodemask+0x2129/0x2730
[ 2375.413380]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2375.413400]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2375.413436]  ? HARDIRQ_verbose+0x10/0x10
[ 2375.413452]  ? do_raw_spin_unlock+0x164/0x250
[ 2375.413473]  alloc_pages_current+0xe7/0x1e0
[ 2375.413495]  kvm_mmu_create+0xd1/0x1c0
[ 2375.413511]  kvm_arch_vcpu_init+0x282/0x890
[ 2375.413522]  ? alloc_pages_current+0xef/0x1e0
[ 2375.413538]  kvm_vcpu_init+0x26d/0x360
[ 2375.413556]  vmx_create_vcpu+0xf5/0x2950
[ 2375.413572]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2375.413584]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2375.413599]  ? alloc_loaded_vmcs+0x240/0x240
[ 2375.413622]  kvm_vm_ioctl+0x4ae/0x1430
[ 2375.413635]  ? __lock_acquire+0x655/0x42a0
[ 2375.413649]  ? kvm_vcpu_release+0xa0/0xa0
[ 2375.413660]  ? check_preemption_disabled+0x35/0x240
[ 2375.413675]  ? perf_trace_lock+0x109/0x4b0
[ 2375.413690]  ? check_preemption_disabled+0x35/0x240
[ 2375.413716]  ? perf_trace_lock+0x109/0x4b0
[ 2375.413734]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2375.413747]  ? HARDIRQ_verbose+0x10/0x10
[ 2375.413760]  ? kvm_vcpu_release+0xa0/0xa0
[ 2375.413774]  do_vfs_ioctl+0x75a/0xfe0
[ 2375.413788]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2375.413803]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2375.413831]  ? security_file_ioctl+0x76/0xb0
[ 2375.413843]  ? security_file_ioctl+0x83/0xb0
[ 2375.413866]  SyS_ioctl+0x7f/0xb0
[ 2375.413877]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2375.413894]  do_syscall_64+0x1d5/0x640
[ 2375.413916]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2375.413926] RIP: 0033:0x45cb09
[ 2375.413933] RSP: 002b:00007f014b01cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2375.413947] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2375.413954] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004
[ 2375.413962] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2375.413969] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2375.413976] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014b01d6d4
01:29:37 executing program 3:
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$sock_inet_SIOCDELRT(r3, 0x890c, &(0x7f0000000100)={0x0, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e23, @rand_addr=0x64010102}, {0x2, 0x4e24, @empty}, 0x80, 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)='syzkaller0\x00', 0x7, 0x0, 0x1})
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4})
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$dupfd(r4, 0x0, r5)
r6 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r7)
setsockopt$inet6_MRT6_DEL_MFC_PROXY(r7, 0x29, 0xd3, &(0x7f0000000240)={{0xa, 0x4e20, 0x7fff, @remote, 0xfffffff9}, {0xa, 0x4e20, 0x9, @ipv4={[], [], @private=0xa010101}, 0x10001}, 0x2, [0x30, 0xe9, 0x3ff, 0x101, 0x1f, 0xdd, 0x4, 0x1]}, 0x5c)
ioctl$ION_IOC_HEAP_QUERY(r5, 0xc0184908, &(0x7f0000000200)={0x34, 0x0, &(0x7f00000001c0)})
getegid()

01:29:37 executing program 5:
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000140)=ANY=[], 0x25)
fcntl$setpipe(r0, 0x407, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r2 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0xc, 0x4002)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000100)={0x0, 0x1, 0x8000}, 0x10)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2c}}}, 0x9, 0x3, 0xb43, 0x1, 0xe0ab}, &(0x7f00000000c0)=0x98)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r2, 0x40a85321, &(0x7f0000000240)={{0x80, 0x81}, 'port1\x00', 0x89, 0x100400, 0x5, 0xffffff36, 0x7, 0x10004, 0x401, 0x0, 0x0, 0x8})
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f0000000100)={r5, 0x6}, 0x10)
personality(0x100000)
getsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000040)={r5, 0xfff, 0x92b, 0x20d}, &(0x7f0000000080)=0x9)
r6 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(0xffffffffffffffff, 0xc008ae88, 0x0)
ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0)

01:29:38 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x280, 0x0, 0x0, 0x0, 0x0, 0x4})
r1 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$dupfd(r1, 0x0, r2)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000800)={<r3=>0xffffffffffffffff})
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000000)='TIPCv2\x00')
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x14, r5, 0xb03, 0x0, 0x0, {0x6}}, 0x14}}, 0x0)
sendmsg$TIPC_NL_NET_GET(r3, &(0x7f0000000bc0)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000880)={0x2c4, r5, 0x20, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0x54, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @broadcast}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x5, @mcast1, 0x698}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xb5}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xe010}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8000}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7f}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xd0}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x84}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xfffffffe}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xe7}]}, @TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80000000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2d3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5b}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}]}, @TIPC_NLA_NET={0x50, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x105}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x800}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xb}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xfffffffb}]}, @TIPC_NLA_MEDIA={0x50, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x68}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x4}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1ff}]}, @TIPC_NLA_NODE={0xb8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xb4, 0x3, "f2b83cadeed2acf3385e3fc628a6c776f2dae73411b6df16ebd1203b4a3a7ef9ecc94455549f5be8d8a7667ca8c869600fa6da0a35a7d079ffcaf33f23e8d36fd4585a928de77bb96706c21bbdd8e1123e84dcac14be3145a98249c0b84081a93dedd9d49e2afafa12d0780532fff4e9fc2a3d89e028639696fdb22c1dfbc7e9370703b75b9bb31f4d79f7aeb14ad212609f03f0cb17d8d82e421b6c5313c46912d472d01ba765c08481e20cd5ebea59"}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10000}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7f}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7ff}]}]}, 0x2c4}}, 0x40000)

[ 2377.201303] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2377.201332] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2377.201359] CPU: 0 PID: 22853 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2377.201366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2377.201372] Call Trace:
[ 2377.201392]  dump_stack+0x1b2/0x283
[ 2377.201412]  warn_alloc.cold+0x96/0x1af
[ 2377.201426]  ? zone_watermark_ok_safe+0x250/0x250
[ 2377.201452]  ? wait_for_completion_io+0x10/0x10
[ 2377.201474]  __alloc_pages_nodemask+0x2129/0x2730
[ 2377.201511]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2377.201524]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2377.201552]  ? HARDIRQ_verbose+0x10/0x10
[ 2377.201567]  ? do_raw_spin_unlock+0x164/0x250
[ 2377.201585]  alloc_pages_current+0xe7/0x1e0
[ 2377.201604]  kvm_mmu_create+0xd1/0x1c0
[ 2377.201618]  kvm_arch_vcpu_init+0x282/0x890
[ 2377.201630]  ? alloc_pages_current+0xef/0x1e0
[ 2377.201647]  kvm_vcpu_init+0x26d/0x360
[ 2377.201662]  vmx_create_vcpu+0xf5/0x2950
[ 2377.201678]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2377.201689]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2377.201704]  ? alloc_loaded_vmcs+0x240/0x240
[ 2377.201724]  kvm_vm_ioctl+0x4ae/0x1430
[ 2377.201738]  ? __lock_acquire+0x655/0x42a0
[ 2377.201751]  ? kvm_vcpu_release+0xa0/0xa0
[ 2377.201764]  ? check_preemption_disabled+0x35/0x240
[ 2377.201779]  ? perf_trace_lock+0x109/0x4b0
[ 2377.201793]  ? check_preemption_disabled+0x35/0x240
[ 2377.201807]  ? perf_trace_lock+0x109/0x4b0
[ 2377.201824]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2377.201837]  ? HARDIRQ_verbose+0x10/0x10
[ 2377.201849]  ? kvm_vcpu_release+0xa0/0xa0
[ 2377.201863]  do_vfs_ioctl+0x75a/0xfe0
[ 2377.201876]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2377.201889]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2377.201915]  ? security_file_ioctl+0x76/0xb0
[ 2377.201926]  ? security_file_ioctl+0x83/0xb0
[ 2377.201940]  SyS_ioctl+0x7f/0xb0
[ 2377.201949]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2377.201967]  do_syscall_64+0x1d5/0x640
[ 2377.201987]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2377.201996] RIP: 0033:0x45cb09
[ 2377.202002] RSP: 002b:00007f014affbc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2377.202016] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2377.202024] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2377.202036] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000
[ 2377.202044] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2377.202058] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014affc6d4
[ 2377.204626] warn_alloc_show_mem: 2 callbacks suppressed
[ 2377.204630] Mem-Info:
[ 2377.204658] active_anon:428124 inactive_anon:21639 isolated_anon:0
[ 2377.204658]  active_file:3406 inactive_file:25911 isolated_file:0
[ 2377.204658]  unevictable:13607 dirty:45 writeback:0 unstable:0
[ 2377.204658]  slab_reclaimable:19862 slab_unreclaimable:320118
[ 2377.204658]  mapped:68704 shmem:24729 pagetables:27508 bounce:0
[ 2377.204658]  free:651335 free_pcp:540 free_cma:0
[ 2377.204679] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2377.204700] Node 1 active_anon:191652kB inactive_anon:65484kB active_file:13620kB inactive_file:103640kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:65900kB dirty:176kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2377.204705] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2377.204729] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2377.204758] Node 0 DMA32 free:34872kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12928kB pagetables:35300kB bounce:0kB free_pcp:1336kB local_pcp:684kB free_cma:0kB
[ 2377.204782] lowmem_reserve[]: 0 0 0 0 0
[ 2377.204808] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2377.204831] lowmem_reserve[]: 0 0 0 0 0
[ 2377.204856] Node 1 Normal free:2560112kB min:53592kB low:66988kB high:80384kB active_anon:191652kB inactive_anon:65484kB active_file:13620kB inactive_file:103640kB unevictable:54428kB writepending:176kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:29088kB pagetables:74728kB bounce:0kB free_pcp:824kB local_pcp:244kB free_cma:0kB
[ 2377.204881] lowmem_reserve[]: 0 0 0 0 0
[ 2377.204907] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2377.205011] Node 0 DMA32: 2910*4kB (UMEH) 1090*8kB (UMEH) 457*16kB (UME) 149*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34872kB
[ 2377.205109] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2377.205176] Node 1 Normal: 1144*4kB (UME) 331*8kB (E) 284*16kB (UE) 86*32kB (UE) 32*64kB (UE) 5*128kB (ME) 5*256kB (UME) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (U) 619*4096kB (UM) = 2560056kB
[ 2377.205286] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2377.205294] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2377.205302] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2377.205310] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2377.205316] 48315 total pagecache pages
[ 2377.205328] 0 pages in swap cache
[ 2377.205335] Swap cache stats: add 0, delete 0, find 0/0
[ 2377.205339] Free swap  = 0kB
[ 2377.205344] Total swap = 0kB
[ 2377.205351] 1965979 pages RAM
[ 2377.205357] 0 pages HighMem/MovableOnly
[ 2377.205361] 338456 pages reserved
[ 2377.205365] 0 pages cma reserved
[ 2378.053839] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2378.053872] syz-executor.5 cpuset=/ mems_allowed=0-1
[ 2378.053901] CPU: 1 PID: 22864 Comm: syz-executor.5 Not tainted 4.14.184-syzkaller #0
[ 2378.053908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2378.053913] Call Trace:
[ 2378.053934]  dump_stack+0x1b2/0x283
[ 2378.053955]  warn_alloc.cold+0x96/0x1af
[ 2378.053969]  ? zone_watermark_ok_safe+0x250/0x250
[ 2378.053996]  ? wait_for_completion_io+0x10/0x10
[ 2378.054015]  __alloc_pages_nodemask+0x2129/0x2730
[ 2378.054052]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2378.054068]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2378.054108]  ? HARDIRQ_verbose+0x10/0x10
[ 2378.054123]  ? do_raw_spin_unlock+0x164/0x250
[ 2378.054142]  alloc_pages_current+0xe7/0x1e0
[ 2378.054161]  kvm_mmu_create+0xd1/0x1c0
[ 2378.054179]  kvm_arch_vcpu_init+0x282/0x890
[ 2378.054191]  ? alloc_pages_current+0xef/0x1e0
[ 2378.054207]  kvm_vcpu_init+0x26d/0x360
[ 2378.054225]  vmx_create_vcpu+0xf5/0x2950
[ 2378.054241]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2378.054255]  ? drop_futex_key_refs.isra.0+0x17/0x80
[ 2378.054270]  ? alloc_loaded_vmcs+0x240/0x240
[ 2378.054289]  kvm_vm_ioctl+0x4ae/0x1430
[ 2378.054303]  ? __lock_acquire+0x655/0x42a0
[ 2378.054315]  ? kvm_vcpu_release+0xa0/0xa0
[ 2378.054327]  ? check_preemption_disabled+0x35/0x240
[ 2378.054343]  ? perf_trace_lock+0x109/0x4b0
[ 2378.054357]  ? check_preemption_disabled+0x35/0x240
[ 2378.054370]  ? perf_trace_lock+0x109/0x4b0
[ 2378.054386]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2378.054399]  ? HARDIRQ_verbose+0x10/0x10
[ 2378.054412]  ? kvm_vcpu_release+0xa0/0xa0
[ 2378.054426]  do_vfs_ioctl+0x75a/0xfe0
[ 2378.054442]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2378.054456]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2378.054484]  ? security_file_ioctl+0x76/0xb0
[ 2378.054496]  ? security_file_ioctl+0x83/0xb0
[ 2378.054510]  SyS_ioctl+0x7f/0xb0
[ 2378.054519]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2378.054536]  do_syscall_64+0x1d5/0x640
[ 2378.054557]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2378.054567] RIP: 0033:0x45cb09
[ 2378.054575] RSP: 002b:00007f014afdac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2378.054591] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2378.054599] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 000000000000000a
[ 2378.054606] RBP: 000000000078c040 R08: 0000000000000000 R09: 0000000000000000
[ 2378.054614] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2378.054621] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f014afdb6d4
01:29:40 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
r7 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/btrfs-control\x00', 0x8000, 0x0)
ioctl$DRM_IOCTL_GEM_OPEN(r3, 0xc010640b, &(0x7f0000000180)={0x0, <r8=>0x0, 0x20})
r9 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = fcntl$dupfd(r9, 0x0, r10)
ioctl$PERF_EVENT_IOC_ENABLE(r11, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r7, 0xc00c642e, &(0x7f00000001c0)={r8, 0x0, r11})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r2, 0x40106614, &(0x7f0000000100))

01:29:40 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37})
r2 = dup(0xffffffffffffffff)
r3 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
fcntl$dupfd(r3, 0x0, r4)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f00000001c0)={0x0, 0x4, 0x5, 0x0, 0x6})
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r3, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$VIDIOC_S_EXT_CTRLS(r4, 0xc0205648, &(0x7f0000000180)={0xa10000, 0x7ff, 0x1, r6, 0x0, &(0x7f0000000140)={0x990a92, 0x6, [], @p_u32=&(0x7f0000000100)=0x9}})
r7 = dup(r2)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000))
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r7})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f0000000080)=0x5)

01:29:40 executing program 1:
r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0xfffffffffffffffb, 0x10f0c1)
r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r2=>0xffffffffffffffff})
r3 = dup(r2)
r4 = dup(r3)
r5 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = fcntl$dupfd(r5, 0x0, r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r4})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000080)=0x5)

01:29:40 executing program 1:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x400000)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ion\x00', 0x125001, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000180))
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$dupfd(r4, 0x0, r5)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={@multicast1, @loopback}, &(0x7f0000000140)=0xc)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r8, 0xc008ae88, &(0x7f00000013c0)={0x7e, 0x0, [0x4b564cff, 0x76, 0x100000], [0xc1]})
r9 = fcntl$dupfd(0xffffffffffffffff, 0x40b, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r5, 0xc00c642e, &(0x7f00000000c0)={0x0, 0x0, r3})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)

01:29:42 executing program 1:
syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000001500)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0xa925, 0x37, 0x0, <r1=>0xffffffffffffffff})
r2 = dup(r1)
r3 = dup(r2)
r4 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
r7 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = fcntl$dupfd(r7, 0x0, r8)
ioctl$DRM_IOCTL_GEM_OPEN(r9, 0xc010640b, &(0x7f0000000140)={0x0, <r10=>0x0, 0x2})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f00000000c0)={r10})
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000080)=0x5)
r11 = socket$unix(0x1, 0x2, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r12=>0xffffffffffffffff})
r13 = fcntl$dupfd(r11, 0x0, r12)
ioctl$PERF_EVENT_IOC_ENABLE(r13, 0x8912, 0x400200)
ioctl$TIOCSETD(r13, 0x5423, &(0x7f0000000100))

[ 2379.699569] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null)
[ 2379.699598] syz-executor.1 cpuset=/ mems_allowed=0-1
[ 2379.701044] CPU: 0 PID: 22882 Comm: syz-executor.1 Not tainted 4.14.184-syzkaller #0
[ 2379.701052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2379.701058] Call Trace:
[ 2379.701078]  dump_stack+0x1b2/0x283
[ 2379.701099]  warn_alloc.cold+0x96/0x1af
[ 2379.701111]  ? zone_watermark_ok_safe+0x250/0x250
[ 2379.701136]  ? wait_for_completion_io+0x10/0x10
[ 2379.701158]  __alloc_pages_nodemask+0x2129/0x2730
[ 2379.701194]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2379.701207]  ? gfp_pfmemalloc_allowed+0x150/0x150
[ 2379.701236]  ? HARDIRQ_verbose+0x10/0x10
[ 2379.701247]  ? do_raw_spin_unlock+0x164/0x250
[ 2379.701264]  alloc_pages_current+0xe7/0x1e0
[ 2379.701281]  kvm_mmu_create+0xd1/0x1c0
[ 2379.701295]  kvm_arch_vcpu_init+0x282/0x890
[ 2379.701306]  ? alloc_pages_current+0xef/0x1e0
[ 2379.701322]  kvm_vcpu_init+0x26d/0x360
[ 2379.701336]  vmx_create_vcpu+0xf5/0x2950
[ 2379.701352]  ? __mutex_unlock_slowpath+0x75/0x780
[ 2379.701366]  ? _raw_spin_unlock_irq+0x24/0x90
[ 2379.701380]  ? alloc_loaded_vmcs+0x240/0x240
[ 2379.701403]  kvm_vm_ioctl+0x4ae/0x1430
[ 2379.701418]  ? __lock_acquire+0x655/0x42a0
[ 2379.701431]  ? kvm_vcpu_release+0xa0/0xa0
[ 2379.701444]  ? check_preemption_disabled+0x35/0x240
[ 2379.701458]  ? perf_trace_lock+0x109/0x4b0
[ 2379.701473]  ? check_preemption_disabled+0x35/0x240
[ 2379.701487]  ? perf_trace_lock+0x109/0x4b0
[ 2379.701504]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2379.701517]  ? HARDIRQ_verbose+0x10/0x10
[ 2379.701529]  ? kvm_vcpu_release+0xa0/0xa0
[ 2379.701543]  do_vfs_ioctl+0x75a/0xfe0
[ 2379.701556]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2379.701569]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2379.701595]  ? security_file_ioctl+0x76/0xb0
[ 2379.701606]  ? security_file_ioctl+0x83/0xb0
[ 2379.701620]  SyS_ioctl+0x7f/0xb0
[ 2379.701629]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2379.701643]  do_syscall_64+0x1d5/0x640
[ 2379.701663]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2379.701672] RIP: 0033:0x45cb09
[ 2379.701678] RSP: 002b:00007f8c8a7f3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2379.701693] RAX: ffffffffffffffda RBX: 00000000004e7de0 RCX: 000000000045cb09
[ 2379.701700] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 000000000000000b
[ 2379.701708] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2379.701716] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2379.701724] R13: 00000000000003a0 R14: 00000000004c6455 R15: 00007f8c8a7f46d4
[ 2379.701753] warn_alloc_show_mem: 1 callbacks suppressed
[ 2379.701757] Mem-Info:
[ 2379.701786] active_anon:428173 inactive_anon:21639 isolated_anon:0
[ 2379.701786]  active_file:3406 inactive_file:25931 isolated_file:0
[ 2379.701786]  unevictable:13607 dirty:94 writeback:0 unstable:0
[ 2379.701786]  slab_reclaimable:19862 slab_unreclaimable:320163
[ 2379.701786]  mapped:68546 shmem:24729 pagetables:27524 bounce:0
[ 2379.701786]  free:651257 free_pcp:526 free_cma:0
[ 2379.701811] Node 0 active_anon:1520844kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208916kB dirty:4kB writeback:0kB shmem:25108kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1269760kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes
[ 2379.701834] Node 1 active_anon:191848kB inactive_anon:65484kB active_file:13620kB inactive_file:103720kB unevictable:54428kB isolated(anon):0kB isolated(file):0kB mapped:65268kB dirty:372kB writeback:0kB shmem:73808kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[ 2379.701839] Node 0 DMA free:10356kB min:220kB low:272kB high:324kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:32kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2379.701879] lowmem_reserve[]: 0 2559 2559 2559 2559
[ 2379.701908] Node 0 DMA32 free:34872kB min:36296kB low:45368kB high:54440kB active_anon:1520836kB inactive_anon:21072kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2623992kB mlocked:0kB kernel_stack:12928kB pagetables:35300kB bounce:0kB free_pcp:1336kB local_pcp:684kB free_cma:0kB
[ 2379.701937] lowmem_reserve[]: 0 0 0 0 0
[ 2379.701966] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2379.701994] lowmem_reserve[]: 0 0 0 0 0
[ 2379.703400] Node 1 Normal free:2559696kB min:53592kB low:66988kB high:80384kB active_anon:191848kB inactive_anon:65484kB active_file:13620kB inactive_file:103720kB unevictable:54428kB writepending:372kB present:3932160kB managed:3870192kB mlocked:54428kB kernel_stack:29152kB pagetables:74792kB bounce:0kB free_pcp:764kB local_pcp:344kB free_cma:0kB
[ 2379.703430] lowmem_reserve[]: 0 0 0 0 0
[ 2379.703459] Node 0 DMA: 1*4kB (U) 6*8kB (UM) 2*16kB (UM) 3*32kB (UM) 3*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 1*4096kB (M) = 10356kB
[ 2379.703571] Node 0 DMA32: 2910*4kB (UMEH) 1090*8kB (UMEH) 457*16kB (UME) 149*32kB (UME) 36*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34872kB
[ 2379.703657] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2379.703721] Node 1 Normal: 1076*4kB (UE) 453*8kB (UME) 181*16kB (UME) 89*32kB (UME) 35*64kB (UE) 5*128kB (UE) 6*256kB (UME) 2*512kB (ME) 3*1024kB (UME) 1*2048kB (U) 619*4096kB (UM) = 2559656kB
[ 2379.703831] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2379.703840] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2379.703848] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2379.703865] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2379.703871] 48324 total pagecache pages
[ 2379.703884] 0 pages in swap cache
[ 2379.703892] Swap cache stats: add 0, delete 0, find 0/0
[ 2379.703896] Free swap  = 0kB
[ 2379.703902] Total swap = 0kB
[ 2379.703909] 1965979 pages RAM
[ 2379.703914] 0 pages HighMem/MovableOnly
[ 2379.703919] 338456 pages reserved
[ 2379.703924] 0 pages cma reserved
[ 2405.449716] NOHZ: local_softirq_pending 08
[ 2492.480040] NOHZ: local_softirq_pending 08
[ 2553.917139] NOHZ: local_softirq_pending 08
[ 2578.229339] INFO: task syz-executor.2:22816 blocked for more than 140 seconds.
[ 2578.229350]       Not tainted 4.14.184-syzkaller #0
[ 2578.229355] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2578.229361] syz-executor.2  D27952 22816   6349 0x00000006
[ 2578.229383] Call Trace:
[ 2578.229410]  __schedule+0x8a6/0x1d70
[ 2578.229430]  ? firmware_map_remove+0x18f/0x18f
[ 2578.229441]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.229455]  schedule+0x8d/0x1b0
[ 2578.229465]  schedule_preempt_disabled+0xf/0x20
[ 2578.229473]  __mutex_lock+0x5f0/0x1430
[ 2578.229483]  ? lock_acquire+0x170/0x3f0
[ 2578.229491]  ? fb_release+0x4e/0x140
[ 2578.229506]  ? check_preemption_disabled+0x30/0x240
[ 2578.229517]  ? fsnotify+0x897/0x1110
[ 2578.229526]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2578.229550]  ? locks_remove_file+0x2d3/0x420
[ 2578.229562]  ? unregister_framebuffer+0x40/0x40
[ 2578.229571]  ? fb_release+0x4e/0x140
[ 2578.229578]  fb_release+0x4e/0x140
[ 2578.229589]  ? unregister_framebuffer+0x40/0x40
[ 2578.229599]  __fput+0x25f/0x7a0
[ 2578.229618]  task_work_run+0x113/0x190
[ 2578.229634]  get_signal+0x1887/0x1c90
[ 2578.229661]  do_signal+0x7c/0x15d0
[ 2578.229677]  ? setup_sigcontext+0x820/0x820
[ 2578.229686]  ? fb_ioctl+0xe2/0x120
[ 2578.229693]  ? do_fb_ioctl+0x840/0x840
[ 2578.229704]  ? do_vfs_ioctl+0xe2/0xfe0
[ 2578.229715]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2578.229726]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2578.229737]  ? check_preemption_disabled+0x35/0x240
[ 2578.229752]  ? kick_process+0xe4/0x170
[ 2578.229762]  ? task_work_add+0x87/0xe0
[ 2578.229773]  ? exit_to_usermode_loop+0x41/0x200
[ 2578.229786]  exit_to_usermode_loop+0x160/0x200
[ 2578.229794]  ? SyS_ioctl+0x5c/0xb0
[ 2578.229806]  do_syscall_64+0x4a3/0x640
[ 2578.229823]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2578.229832] RIP: 0033:0x45cb09
[ 2578.229845] RSP: 002b:00007fb2c9daec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2578.229857] RAX: 0000000000000000 RBX: 00000000004e54a0 RCX: 000000000045cb09
[ 2578.229863] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000004
[ 2578.229868] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2578.229875] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2578.229881] R13: 00000000000002fb R14: 00000000004c5857 R15: 00007fb2c9daf6d4
[ 2578.229905] INFO: task syz-executor.0:22847 blocked for more than 140 seconds.
[ 2578.229910]       Not tainted 4.14.184-syzkaller #0
[ 2578.229915] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2578.229919] syz-executor.0  D29728 22847   6342 0x00000004
[ 2578.229939] Call Trace:
[ 2578.229954]  __schedule+0x8a6/0x1d70
[ 2578.229972]  ? firmware_map_remove+0x18f/0x18f
[ 2578.229986]  ? __down+0x133/0x280
[ 2578.229993]  schedule+0x8d/0x1b0
[ 2578.230002]  schedule_timeout+0x86c/0xe50
[ 2578.230011]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2578.230024]  ? usleep_range+0x130/0x130
[ 2578.230033]  ? __down+0x177/0x280
[ 2578.230048]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.230058]  ? _raw_spin_unlock_irq+0x24/0x90
[ 2578.230071]  ? __down+0x133/0x280
[ 2578.230078]  __down+0x17f/0x280
[ 2578.230092]  ? ww_mutex_lock+0x180/0x180
[ 2578.230100]  ? down+0xd/0x80
[ 2578.230118]  down+0x57/0x80
[ 2578.230129]  console_lock+0x24/0x70
[ 2578.230137]  do_fb_ioctl+0x36a/0x840
[ 2578.230145]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.230155]  ? fb_write+0x550/0x550
[ 2578.230168]  ? avc_has_extended_perms+0x6e2/0xbe0
[ 2578.230184]  ? avc_ss_reset+0x100/0x100
[ 2578.230192]  ? __lock_acquire+0x655/0x42a0
[ 2578.230209]  ? __lock_acquire+0x655/0x42a0
[ 2578.230221]  ? check_preemption_disabled+0x35/0x240
[ 2578.230257]  fb_ioctl+0xda/0x120
[ 2578.230265]  ? do_fb_ioctl+0x840/0x840
[ 2578.230275]  do_vfs_ioctl+0x75a/0xfe0
[ 2578.230286]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2578.230297]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2578.230320]  ? security_file_ioctl+0x76/0xb0
[ 2578.230329]  ? security_file_ioctl+0x83/0xb0
[ 2578.230339]  SyS_ioctl+0x7f/0xb0
[ 2578.230347]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2578.230359]  do_syscall_64+0x1d5/0x640
[ 2578.230376]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2578.230383] RIP: 0033:0x45cb09
[ 2578.230388] RSP: 002b:00007f3fcf55cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2578.230399] RAX: ffffffffffffffda RBX: 00000000004e54a0 RCX: 000000000045cb09
[ 2578.230405] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000004
[ 2578.230411] RBP: 000000000078c040 R08: 0000000000000000 R09: 0000000000000000
[ 2578.230417] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2578.230423] R13: 00000000000002fb R14: 00000000004c5857 R15: 00007f3fcf55d6d4
[ 2578.230446] INFO: task syz-executor.5:22851 blocked for more than 140 seconds.
[ 2578.230452]       Not tainted 4.14.184-syzkaller #0
[ 2578.230456] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2578.230461] syz-executor.5  D29584 22851   6348 0x00000004
[ 2578.230482] Call Trace:
[ 2578.230497]  __schedule+0x8a6/0x1d70
[ 2578.230505]  ? HARDIRQ_verbose+0x10/0x10
[ 2578.230521]  ? firmware_map_remove+0x18f/0x18f
[ 2578.230535]  ? __down+0x133/0x280
[ 2578.230542]  schedule+0x8d/0x1b0
[ 2578.230552]  schedule_timeout+0x86c/0xe50
[ 2578.230560]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2578.230569]  ? kobj_lookup+0x25c/0x410
[ 2578.230581]  ? usleep_range+0x130/0x130
[ 2578.230590]  ? __down+0x177/0x280
[ 2578.230603]  ? perf_trace_lock_acquire+0x10d/0x4b0
[ 2578.230612]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.230623]  ? _raw_spin_unlock_irq+0x24/0x90
[ 2578.230635]  ? __down+0x133/0x280
[ 2578.230642]  __down+0x17f/0x280
[ 2578.230656]  ? ww_mutex_lock+0x180/0x180
[ 2578.230675]  ? vcs_release+0x60/0x60
[ 2578.230683]  down+0x57/0x80
[ 2578.230693]  console_lock+0x24/0x70
[ 2578.230701]  vcs_open+0x3d/0x80
[ 2578.230712]  chrdev_open+0x1fc/0x540
[ 2578.230723]  ? cdev_put.part.0+0x50/0x50
[ 2578.230741]  do_dentry_open+0x44b/0xec0
[ 2578.230750]  ? cdev_put.part.0+0x50/0x50
[ 2578.230763]  ? __inode_permission+0xcd/0x2f0
[ 2578.230774]  vfs_open+0x105/0x220
[ 2578.230788]  path_openat+0xb68/0x2aa0
[ 2578.230810]  ? path_mountpoint+0x960/0x960
[ 2578.230824]  ? perf_trace_lock+0x109/0x4b0
[ 2578.230846]  do_filp_open+0x18e/0x250
[ 2578.230858]  ? may_open_dev+0xe0/0xe0
[ 2578.230875]  ? lock_acquire+0x170/0x3f0
[ 2578.230884]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.230899]  ? do_raw_spin_unlock+0x164/0x250
[ 2578.230910]  ? __alloc_fd+0x1bf/0x490
[ 2578.230928]  do_sys_open+0x292/0x3e0
[ 2578.230940]  ? filp_open+0x60/0x60
[ 2578.230952]  ? SyS_clock_settime+0x1a0/0x1a0
[ 2578.230960]  ? fput+0xb/0x140
[ 2578.230969]  ? do_syscall_64+0x4c/0x640
[ 2578.230977]  ? do_sys_open+0x3e0/0x3e0
[ 2578.230989]  do_syscall_64+0x1d5/0x640
[ 2578.231006]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2578.231012] RIP: 0033:0x416901
[ 2578.231017] RSP: 002b:00007f014b01c7a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 2578.231028] RAX: ffffffffffffffda RBX: 6666666666666667 RCX: 0000000000416901
[ 2578.231034] RDX: 0000000000000000 RSI: 0000000000004002 RDI: 00007f014b01c850
[ 2578.231040] RBP: 000000000078bf00 R08: 000000000000000f R09: 0000000000000000
[ 2578.231045] R10: 0000000000000005 R11: 0000000000000293 R12: 00000000ffffffff
[ 2578.231051] R13: 0000000000000c5e R14: 00000000004ceb7f R15: 00007f014b01d6d4
[ 2578.231074] INFO: task syz-executor.5:22853 blocked for more than 140 seconds.
[ 2578.231080]       Not tainted 4.14.184-syzkaller #0
[ 2578.231084] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2578.231088] syz-executor.5  D27328 22853   6348 0x00000004
[ 2578.231107] Call Trace:
[ 2578.231121]  __schedule+0x8a6/0x1d70
[ 2578.231130]  ? perf_trace_lock+0x109/0x4b0
[ 2578.231145]  ? firmware_map_remove+0x18f/0x18f
[ 2578.231159]  ? __down+0x133/0x280
[ 2578.231167]  schedule+0x8d/0x1b0
[ 2578.231176]  schedule_timeout+0x86c/0xe50
[ 2578.231184]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2578.231197]  ? usleep_range+0x130/0x130
[ 2578.231207]  ? __down+0x177/0x280
[ 2578.231220]  ? perf_trace_lock_acquire+0x10d/0x4b0
[ 2578.231230]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.231240]  ? _raw_spin_unlock_irq+0x24/0x90
[ 2578.231253]  ? __down+0x133/0x280
[ 2578.231261]  __down+0x17f/0x280
[ 2578.231275]  ? ww_mutex_lock+0x180/0x180
[ 2578.231292]  ? vcs_release+0x60/0x60
[ 2578.231300]  down+0x57/0x80
[ 2578.231310]  console_lock+0x24/0x70
[ 2578.231318]  vcs_open+0x3d/0x80
[ 2578.231328]  chrdev_open+0x1fc/0x540
[ 2578.231338]  ? cdev_put.part.0+0x50/0x50
[ 2578.231355]  do_dentry_open+0x44b/0xec0
[ 2578.231365]  ? cdev_put.part.0+0x50/0x50
[ 2578.231377]  ? __inode_permission+0xcd/0x2f0
[ 2578.231389]  vfs_open+0x105/0x220
[ 2578.231402]  path_openat+0xb68/0x2aa0
[ 2578.231424]  ? path_mountpoint+0x960/0x960
[ 2578.231437]  ? perf_trace_lock+0x109/0x4b0
[ 2578.231453]  do_filp_open+0x18e/0x250
[ 2578.231464]  ? may_open_dev+0xe0/0xe0
[ 2578.231481]  ? lock_acquire+0x170/0x3f0
[ 2578.231490]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.231504]  ? do_raw_spin_unlock+0x164/0x250
[ 2578.231515]  ? __alloc_fd+0x1bf/0x490
[ 2578.231533]  do_sys_open+0x292/0x3e0
[ 2578.231544]  ? filp_open+0x60/0x60
[ 2578.231556]  ? SyS_clock_settime+0x1a0/0x1a0
[ 2578.231563]  ? fput+0xb/0x140
[ 2578.231572]  ? do_syscall_64+0x4c/0x640
[ 2578.231580]  ? do_sys_open+0x3e0/0x3e0
[ 2578.231592]  do_syscall_64+0x1d5/0x640
[ 2578.231609]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2578.231615] RIP: 0033:0x416901
[ 2578.231621] RSP: 002b:00007f014affb7a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000002
[ 2578.231631] RAX: ffffffffffffffda RBX: 6666666666666667 RCX: 0000000000416901
[ 2578.231637] RDX: 0000000000000000 RSI: 0000000000004002 RDI: 00007f014affb850
[ 2578.231643] RBP: 000000000078bfa0 R08: 000000000000000f R09: 0000000000000000
[ 2578.231648] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000ffffffff
[ 2578.231654] R13: 0000000000000c5e R14: 00000000004ceb7f R15: 00007f014affc6d4
[ 2578.231677] INFO: task syz-executor.3:22857 blocked for more than 140 seconds.
[ 2578.231683]       Not tainted 4.14.184-syzkaller #0
[ 2578.231687] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2578.231691] syz-executor.3  D29728 22857   6346 0x00000004
[ 2578.231711] Call Trace:
[ 2578.231725]  __schedule+0x8a6/0x1d70
[ 2578.231743]  ? firmware_map_remove+0x18f/0x18f
[ 2578.231757]  ? __down+0x133/0x280
[ 2578.231764]  schedule+0x8d/0x1b0
[ 2578.231773]  schedule_timeout+0x86c/0xe50
[ 2578.231781]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2578.231794]  ? usleep_range+0x130/0x130
[ 2578.231804]  ? __down+0x177/0x280
[ 2578.231819]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.231829]  ? _raw_spin_unlock_irq+0x24/0x90
[ 2578.231847]  ? __down+0x133/0x280
[ 2578.231854]  __down+0x17f/0x280
[ 2578.231868]  ? ww_mutex_lock+0x180/0x180
[ 2578.231875]  ? down+0xd/0x80
[ 2578.231893]  down+0x57/0x80
[ 2578.231903]  console_lock+0x24/0x70
[ 2578.231911]  do_fb_ioctl+0x36a/0x840
[ 2578.231919]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.231928]  ? fb_write+0x550/0x550
[ 2578.231943]  ? avc_has_extended_perms+0x6e2/0xbe0
[ 2578.231958]  ? avc_ss_reset+0x100/0x100
[ 2578.231966]  ? __lock_acquire+0x655/0x42a0
[ 2578.231983]  ? __lock_acquire+0x655/0x42a0
[ 2578.231995]  ? check_preemption_disabled+0x35/0x240
[ 2578.232031]  fb_ioctl+0xda/0x120
[ 2578.232039]  ? do_fb_ioctl+0x840/0x840
[ 2578.232049]  do_vfs_ioctl+0x75a/0xfe0
[ 2578.232060]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2578.232071]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2578.232094]  ? security_file_ioctl+0x76/0xb0
[ 2578.232103]  ? security_file_ioctl+0x83/0xb0
[ 2578.232115]  SyS_ioctl+0x7f/0xb0
[ 2578.232122]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2578.232134]  do_syscall_64+0x1d5/0x640
[ 2578.232151]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2578.232157] RIP: 0033:0x45cb09
[ 2578.232163] RSP: 002b:00007fafd03cdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2578.232173] RAX: ffffffffffffffda RBX: 00000000004e54a0 RCX: 000000000045cb09
[ 2578.232179] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000004
[ 2578.232185] RBP: 000000000078bfa0 R08: 0000000000000000 R09: 0000000000000000
[ 2578.232191] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2578.232197] R13: 00000000000002fb R14: 00000000004c5857 R15: 00007fafd03ce6d4
[ 2578.232219] INFO: task syz-executor.3:22862 blocked for more than 140 seconds.
[ 2578.232225]       Not tainted 4.14.184-syzkaller #0
[ 2578.232229] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2578.232233] syz-executor.3  D29728 22862   6346 0x00000004
[ 2578.232254] Call Trace:
[ 2578.232268]  __schedule+0x8a6/0x1d70
[ 2578.232286]  ? firmware_map_remove+0x18f/0x18f
[ 2578.232300]  ? __down+0x133/0x280
[ 2578.232308]  schedule+0x8d/0x1b0
[ 2578.232317]  schedule_timeout+0x86c/0xe50
[ 2578.232325]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2578.232337]  ? usleep_range+0x130/0x130
[ 2578.232347]  ? __down+0x177/0x280
[ 2578.232362]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.232373]  ? _raw_spin_unlock_irq+0x24/0x90
[ 2578.232385]  ? __down+0x133/0x280
[ 2578.232393]  __down+0x17f/0x280
[ 2578.232406]  ? ww_mutex_lock+0x180/0x180
[ 2578.232413]  ? down+0xd/0x80
[ 2578.232431]  down+0x57/0x80
[ 2578.232441]  console_lock+0x24/0x70
[ 2578.232448]  do_fb_ioctl+0x36a/0x840
[ 2578.232456]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.232465]  ? fb_write+0x550/0x550
[ 2578.232479]  ? avc_has_extended_perms+0x6e2/0xbe0
[ 2578.232495]  ? avc_ss_reset+0x100/0x100
[ 2578.232502]  ? __lock_acquire+0x655/0x42a0
[ 2578.232520]  ? __lock_acquire+0x655/0x42a0
[ 2578.232531]  ? check_preemption_disabled+0x35/0x240
[ 2578.232567]  fb_ioctl+0xda/0x120
[ 2578.232575]  ? do_fb_ioctl+0x840/0x840
[ 2578.232585]  do_vfs_ioctl+0x75a/0xfe0
[ 2578.232595]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2578.232606]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2578.232628]  ? security_file_ioctl+0x76/0xb0
[ 2578.232637]  ? security_file_ioctl+0x83/0xb0
[ 2578.232649]  SyS_ioctl+0x7f/0xb0
[ 2578.232656]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2578.232668]  do_syscall_64+0x1d5/0x640
[ 2578.232689]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2578.232696] RIP: 0033:0x45cb09
[ 2578.232701] RSP: 002b:00007fafd03acc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2578.232711] RAX: ffffffffffffffda RBX: 00000000004e54a0 RCX: 000000000045cb09
[ 2578.232717] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000004
[ 2578.232723] RBP: 000000000078c040 R08: 0000000000000000 R09: 0000000000000000
[ 2578.232729] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2578.232735] R13: 00000000000002fb R14: 00000000004c5857 R15: 00007fafd03ad6d4
[ 2578.232759] INFO: task syz-executor.4:22859 blocked for more than 140 seconds.
[ 2578.232764]       Not tainted 4.14.184-syzkaller #0
[ 2578.232768] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2578.232772] syz-executor.4  D28624 22859   6345 0x00000004
[ 2578.232792] Call Trace:
[ 2578.232806]  __schedule+0x8a6/0x1d70
[ 2578.232824]  ? firmware_map_remove+0x18f/0x18f
[ 2578.232842]  ? __down+0x133/0x280
[ 2578.232850]  schedule+0x8d/0x1b0
[ 2578.232859]  schedule_timeout+0x86c/0xe50
[ 2578.232868]  ? trace_hardirqs_on_caller+0x3a8/0x580
[ 2578.232878]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 2578.232888]  ? usleep_range+0x130/0x130
[ 2578.232897]  ? check_preemption_disabled+0x35/0x240
[ 2578.232907]  ? retint_kernel+0x2d/0x2d
[ 2578.232914]  ? __down+0x133/0x280
[ 2578.232935]  ? __down+0x133/0x280
[ 2578.232943]  __down+0x17f/0x280
[ 2578.232957]  ? ww_mutex_lock+0x180/0x180
[ 2578.232963]  ? down+0xd/0x80
[ 2578.232982]  down+0x57/0x80
[ 2578.232991]  console_lock+0x24/0x70
[ 2578.232999]  do_fb_ioctl+0x36a/0x840
[ 2578.233009]  ? fb_write+0x550/0x550
[ 2578.233019]  ? avc_has_extended_perms+0x5e7/0xbe0
[ 2578.233029]  ? avc_has_extended_perms+0x6e2/0xbe0
[ 2578.233045]  ? avc_ss_reset+0x100/0x100
[ 2578.233053]  ? __lock_acquire+0x655/0x42a0
[ 2578.233070]  ? __lock_acquire+0x655/0x42a0
[ 2578.233080]  ? trace_hardirqs_on_caller+0x3a8/0x580
[ 2578.233090]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[ 2578.233126]  fb_ioctl+0xda/0x120
[ 2578.233134]  ? do_fb_ioctl+0x840/0x840
[ 2578.233144]  do_vfs_ioctl+0x75a/0xfe0
[ 2578.233154]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2578.233165]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2578.233187]  ? security_file_ioctl+0x76/0xb0
[ 2578.233196]  ? security_file_ioctl+0x83/0xb0
[ 2578.233207]  SyS_ioctl+0x7f/0xb0
[ 2578.233214]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2578.233226]  do_syscall_64+0x1d5/0x640
[ 2578.233243]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2578.233249] RIP: 0033:0x45cb09
[ 2578.233254] RSP: 002b:00007f939133bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2578.233265] RAX: ffffffffffffffda RBX: 00000000004e54a0 RCX: 000000000045cb09
[ 2578.233270] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000004
[ 2578.233276] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2578.233282] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2578.233288] R13: 00000000000002fb R14: 00000000004c5857 R15: 00007f939133c6d4
[ 2578.233311] INFO: task syz-executor.4:22872 blocked for more than 140 seconds.
[ 2578.233316]       Not tainted 4.14.184-syzkaller #0
[ 2578.233321] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 2578.233325] syz-executor.4  D29728 22872   6345 0x00000004
[ 2578.233344] Call Trace:
[ 2578.233358]  __schedule+0x8a6/0x1d70
[ 2578.233376]  ? firmware_map_remove+0x18f/0x18f
[ 2578.233390]  ? __down+0x133/0x280
[ 2578.233397]  schedule+0x8d/0x1b0
[ 2578.233407]  schedule_timeout+0x86c/0xe50
[ 2578.233415]  ? perf_trace_lock_acquire+0x4b0/0x4b0
[ 2578.233428]  ? usleep_range+0x130/0x130
[ 2578.233437]  ? __down+0x177/0x280
[ 2578.233452]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.233462]  ? _raw_spin_unlock_irq+0x24/0x90
[ 2578.233475]  ? __down+0x133/0x280
[ 2578.233482]  __down+0x17f/0x280
[ 2578.233496]  ? ww_mutex_lock+0x180/0x180
[ 2578.233503]  ? down+0xd/0x80
[ 2578.233521]  down+0x57/0x80
[ 2578.233530]  console_lock+0x24/0x70
[ 2578.233538]  do_fb_ioctl+0x36a/0x840
[ 2578.233545]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.233554]  ? fb_write+0x550/0x550
[ 2578.233567]  ? avc_has_extended_perms+0x6e2/0xbe0
[ 2578.233583]  ? avc_ss_reset+0x100/0x100
[ 2578.233591]  ? __lock_acquire+0x655/0x42a0
[ 2578.233608]  ? __lock_acquire+0x655/0x42a0
[ 2578.233620]  ? check_preemption_disabled+0x35/0x240
[ 2578.233655]  fb_ioctl+0xda/0x120
[ 2578.233663]  ? do_fb_ioctl+0x840/0x840
[ 2578.233673]  do_vfs_ioctl+0x75a/0xfe0
[ 2578.233683]  ? selinux_parse_skb.constprop.0+0x16c0/0x16c0
[ 2578.233694]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2578.233716]  ? security_file_ioctl+0x76/0xb0
[ 2578.233725]  ? security_file_ioctl+0x83/0xb0
[ 2578.233737]  SyS_ioctl+0x7f/0xb0
[ 2578.233744]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2578.233756]  do_syscall_64+0x1d5/0x640
[ 2578.233772]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2578.233779] RIP: 0033:0x45cb09
[ 2578.233784] RSP: 002b:00007f93912f9c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2578.233794] RAX: ffffffffffffffda RBX: 00000000004e54a0 RCX: 000000000045cb09
[ 2578.233800] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000004
[ 2578.233806] RBP: 000000000078c040 R08: 0000000000000000 R09: 0000000000000000
[ 2578.233812] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2578.233818] R13: 00000000000002fb R14: 00000000004c5857 R15: 00007f93912fa6d4
[ 2578.233876] 
[ 2578.233876] Showing all locks held in the system:
[ 2578.233891] 1 lock held by khungtaskd/1057:
[ 2578.233896]  #0:  (tasklist_lock){.+.+}, at: [<ffffffff8146c8d0>] debug_show_all_locks+0x7c/0x21a
[ 2578.233946] 1 lock held by in:imklog/5995:
[ 2578.233949]  #0:  (&f->f_pos_lock){+.+.}, at: [<ffffffff8191e4e6>] __fdget_pos+0xa6/0xc0
[ 2578.233975] 2 locks held by agetty/6056:
[ 2578.233979]  #0:  (&tty->ldisc_sem){++++}, at: [<ffffffff833bd922>] tty_ldisc_ref_wait+0x22/0x80
[ 2578.234003]  #1:  (&ldata->atomic_read_lock){+.+.}, at: [<ffffffff833b8f04>] n_tty_read+0x1e4/0x16e0
[ 2578.234035] 1 lock held by syz-executor.0/20940:
[ 2578.234039]  #0:  (tty_mutex){+.+.}, at: [<ffffffff833a529c>] tty_release_struct+0x2c/0x50
[ 2578.234064] 1 lock held by syz-executor.3/20970:
[ 2578.234067]  #0:  (tty_mutex){+.+.}, at: [<ffffffff833a529c>] tty_release_struct+0x2c/0x50
[ 2578.234108] 1 lock held by syz-executor.5/7332:
[ 2578.234112]  #0:  (tty_mutex){+.+.}, at: [<ffffffff833a529c>] tty_release_struct+0x2c/0x50
[ 2578.234136] 1 lock held by syz-executor.4/7941:
[ 2578.234139]  #0:  (tty_mutex){+.+.}, at: [<ffffffff833a529c>] tty_release_struct+0x2c/0x50
[ 2578.234164] 1 lock held by syz-executor.2/22816:
[ 2578.234167]  #0:  (&fb_info->lock){+.+.}, at: [<ffffffff8318192e>] fb_release+0x4e/0x140
[ 2578.234192] 
[ 2578.234196] =============================================
[ 2578.234196] 
[ 2578.234202] NMI backtrace for cpu 0
[ 2578.234210] CPU: 0 PID: 1057 Comm: khungtaskd Not tainted 4.14.184-syzkaller #0
[ 2578.234216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2578.234220] Call Trace:
[ 2578.234233]  dump_stack+0x1b2/0x283
[ 2578.234247]  nmi_cpu_backtrace.cold+0x57/0x93
[ 2578.234259]  ? irq_force_complete_move.cold+0x7b/0x7b
[ 2578.234269]  nmi_trigger_cpumask_backtrace+0x13a/0x17f
[ 2578.234283]  watchdog+0x5e2/0xb80
[ 2578.234294]  ? kthread_flush_work_fn+0x20/0x20
[ 2578.234306]  ? hungtask_pm_notify+0x50/0x50
[ 2578.234317]  kthread+0x30d/0x420
[ 2578.234327]  ? kthread_create_on_node+0xd0/0xd0
[ 2578.234337]  ret_from_fork+0x24/0x30
[ 2578.234361] Sending NMI from CPU 0 to CPUs 1:
[ 2578.234927] NMI backtrace for cpu 1
[ 2578.234932] CPU: 1 PID: 22818 Comm: syz-executor.0 Not tainted 4.14.184-syzkaller #0
[ 2578.234937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2578.234940] task: ffff8881f9eb40c0 task.stack: ffff8881da7f8000
[ 2578.234943] RIP: 0010:__sanitizer_cov_trace_pc+0x29/0x50
[ 2578.234946] RSP: 0000:ffff8881da7ff320 EFLAGS: 00000246
[ 2578.234952] RAX: ffff8881f9eb40c0 RBX: ffff8880000a0000 RCX: ffffc90005b04000
[ 2578.234955] RDX: 0000000000000001 RSI: ffffffff831bff7b RDI: 0000000000000a00
[ 2578.234959] RBP: 0000000000000028 R08: 0000000000000a00 R09: 0000000000000040
[ 2578.234962] R10: ffffed1014bafa83 R11: ffff8880a5d7d41f R12: ffff8880000a0140
[ 2578.234966] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2578.234969] FS:  00007f3fcf59f700(0000) GS:ffff8880aed00000(0000) knlGS:0000000000000000
[ 2578.234973] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2578.234976] CR2: 00007f5e6ce03740 CR3: 00000001e010d000 CR4: 00000000001426e0
[ 2578.234980] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 2578.234983] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600
[ 2578.234985] Call Trace:
[ 2578.234988]  bitfill_aligned+0xd4/0x190
[ 2578.234990]  cfb_fillrect+0x3d5/0x720
[ 2578.234993]  ? cfb_fillrect+0x720/0x720
[ 2578.234996]  vga16fb_fillrect+0x61e/0x1880
[ 2578.234998]  ? fb_copy_cmap+0x28e/0x350
[ 2578.235001]  ? vga16fb_setcolreg+0xfe/0x360
[ 2578.235003]  bit_clear_margins+0x2a4/0x480
[ 2578.235006]  ? bit_clear+0x460/0x460
[ 2578.235009]  fbcon_clear_margins+0x274/0x300
[ 2578.235011]  fbcon_switch+0xc4e/0x1700
[ 2578.235014]  ? fbcon_set_font+0x7c0/0x7c0
[ 2578.235017]  ? bit_update_start+0x1f0/0x1f0
[ 2578.235019]  ? fbcon_set_origin+0x1c/0x40
[ 2578.235022]  ? fbcon_scrolldelta+0x1080/0x1080
[ 2578.235025]  redraw_screen+0x332/0x760
[ 2578.235027]  ? set_palette+0x130/0x130
[ 2578.235030]  ? fbcon_set_palette+0x466/0x580
[ 2578.235033]  fbcon_modechanged+0x552/0x800
[ 2578.235036]  fbcon_event_notify+0x11a/0x1750
[ 2578.235038]  ? lock_acquire+0x170/0x3f0
[ 2578.235041]  notifier_call_chain+0x107/0x1a0
[ 2578.235044]  blocking_notifier_call_chain+0x79/0x90
[ 2578.235046]  fb_set_var+0xaad/0xc70
[ 2578.235049]  ? fb_set_suspend+0x110/0x110
[ 2578.235051]  ? lock_acquire+0x170/0x3f0
[ 2578.235054]  ? lock_fb_info+0x1a/0x70
[ 2578.235057]  ? lock_fb_info+0x1a/0x70
[ 2578.235059]  ? __mutex_lock+0x2cb/0x1430
[ 2578.235062]  ? trace_hardirqs_on+0x10/0x10
[ 2578.235065]  ? lock_fb_info+0x1a/0x70
[ 2578.235068]  ? __ww_mutex_wakeup_for_backoff+0x210/0x210
[ 2578.235070]  ? do_fb_ioctl+0x36a/0x840
[ 2578.235073]  do_fb_ioctl+0x3cc/0x840
[ 2578.235075]  ? lock_downgrade+0x6e0/0x6e0
[ 2578.235078]  ? fb_write+0x550/0x550
[ 2578.235081]  ? avc_has_extended_perms+0x6e2/0xbe0
[ 2578.235083]  ? avc_ss_reset+0x100/0x100
[ 2578.235086]  ? __lock_acquire+0x655/0x42a0
[ 2578.235089]  ? __lock_acquire+0x655/0x42a0
[ 2578.235092]  ? check_preemption_disabled+0x35/0x240
[ 2578.235094]  ? retint_kernel+0x2d/0x2d
[ 2578.235097]  ? retint_kernel+0x2d/0x2d
[ 2578.235099]  fb_ioctl+0xda/0x120
[ 2578.235102]  ? do_fb_ioctl+0x840/0x840
[ 2578.235104]  do_vfs_ioctl+0x75a/0xfe0
[ 2578.235107]  ? check_preemption_disabled+0x35/0x240
[ 2578.235110]  ? ioctl_preallocate+0x1a0/0x1a0
[ 2578.235113]  ? selinux_file_ioctl+0x103/0x560
[ 2578.235116]  ? audit_add_tree_rule.cold+0x2f/0x2f
[ 2578.235118]  ? security_file_ioctl+0x83/0xb0
[ 2578.235121]  SyS_ioctl+0x7f/0xb0
[ 2578.235123]  ? do_vfs_ioctl+0xfe0/0xfe0
[ 2578.235126]  do_syscall_64+0x1d5/0x640
[ 2578.235129]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[ 2578.235132] RIP: 0033:0x45cb09
[ 2578.235134] RSP: 002b:00007f3fcf59ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2578.235141] RAX: ffffffffffffffda RBX: 00000000004e54a0 RCX: 000000000045cb09
[ 2578.235144] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000004
[ 2578.235148] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000
[ 2578.235152] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[ 2578.235155] R13: 00000000000002fb R14: 00000000004c5857 R15: 00007f3fcf59f6d4
[ 2578.235157] Code: ff 90 65 48 8b 04 25 40 ee 01 00 48 85 c0 74 1a 65 8b 15 db 47 a7 7e 81 e2 00 01 1f 00 75 0b 8b 90 58 13 00 00 83 fa 01 74 01 c3 <48> 8b 34 24 48 8b 88 60 13 00 00 8b 80 5c 13 00 00 48 8b 11 48 
[ 2578.235381] Kernel panic - not syncing: hung_task: blocked tasks
[ 2578.235390] CPU: 0 PID: 1057 Comm: khungtaskd Not tainted 4.14.184-syzkaller #0
[ 2578.235395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 2578.235399] Call Trace:
[ 2578.235411]  dump_stack+0x1b2/0x283
[ 2578.235425]  panic+0x1f9/0x42d
[ 2578.235435]  ? add_taint.cold+0x16/0x16
[ 2578.235448]  ? printk_safe_flush+0xac/0x110
[ 2578.235466]  watchdog+0x5f3/0xb80
[ 2578.235476]  ? kthread_flush_work_fn+0x20/0x20
[ 2578.235488]  ? hungtask_pm_notify+0x50/0x50
[ 2578.235499]  kthread+0x30d/0x420
[ 2578.235509]  ? kthread_create_on_node+0xd0/0xd0
[ 2578.235520]  ret_from_fork+0x24/0x30
[ 2578.236735] Kernel Offset: disabled