thp: 0kB shmem_pmdmapped: 0kB anon_thp: 186368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3262.900145][T12788] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3262.959987][T12788] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:32:39 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:32:39 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a00000100007ffffff9000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:32:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc0010141]}) [ 3263.074369][T12788] lowmem_reserve[]: 0 2535 2537 2537 [ 3263.083160][T12788] Node 0 DMA32 free:913340kB min:36080kB low:45100kB high:54120kB active_anon:585820kB inactive_anon:796kB active_file:50344kB inactive_file:234856kB unevictable:0kB writepending:1772kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8096kB pagetables:7272kB bounce:0kB free_pcp:2208kB local_pcp:1196kB free_cma:0kB [ 3263.116071][T12788] lowmem_reserve[]: 0 0 2 2 [ 3263.121540][T12788] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:32:39 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}], [], 0xfcfdffff00000000}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3263.182212][T12788] lowmem_reserve[]: 0 0 0 0 [ 3263.187195][T12788] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:32:39 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3263.289672][T12788] lowmem_reserve[]: 0 0 0 0 [ 3263.305351][T12788] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3263.327851][T12788] Node 0 DMA32: 577*4kB (UM) 161*8kB (UM) 911*16kB (UE) 1390*32kB (UE) 629*64kB (UM) 104*128kB (UME) 52*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 34*2048kB (U) 155*4096kB (UM) = 905212kB [ 3263.351128][T12788] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3263.366784][T12788] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3263.385849][T12788] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3263.426208][T12788] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3263.454392][T12788] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3263.489007][T12788] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3263.510214][T12788] 71579 total pagecache pages [ 3263.515157][T12788] 0 pages in swap cache [ 3263.523210][T12788] Swap cache stats: add 0, delete 0, find 0/0 [ 3263.532446][T12788] Free swap = 0kB [ 3263.545962][T12788] Total swap = 0kB [ 3263.550156][T12788] 1965979 pages RAM [ 3263.554100][T12788] 0 pages HighMem/MovableOnly [ 3263.560089][T12788] 343989 pages reserved [ 3263.574122][T12788] 0 pages cma reserved [ 3263.578365][T12794] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3263.602836][T12826] XFS (loop2): Invalid superblock magic number [ 3263.607078][T12794] CPU: 1 PID: 12794 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3263.617983][T12794] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3263.628056][T12794] Call Trace: [ 3263.631348][T12794] dump_stack+0x1db/0x2d0 [ 3263.635676][T12794] ? dump_stack_print_info.cold+0x20/0x20 [ 3263.641389][T12794] ? idr_get_free+0xee0/0xee0 [ 3263.646047][T12794] ? kasan_kmalloc+0x9/0x10 [ 3263.650547][T12794] ? kmem_cache_alloc_trace+0x151/0x760 [ 3263.656087][T12794] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3263.661095][T12794] ? vb2_core_create_bufs+0x378/0x8e0 [ 3263.666448][T12794] warn_alloc.cold+0xc3/0x1c9 [ 3263.671121][T12794] ? zone_watermark_ok_safe+0x420/0x420 [ 3263.676648][T12794] ? print_usage_bug+0xd0/0xd0 [ 3263.681404][T12794] ? kasan_kmalloc+0x9/0x10 [ 3263.685992][T12794] ? __lock_is_held+0xb6/0x140 [ 3263.690738][T12794] ? add_lock_to_list.isra.0+0x450/0x450 [ 3263.696352][T12794] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3263.702593][T12794] ? check_preemption_disabled+0x48/0x290 [ 3263.708296][T12794] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3263.713404][T12794] __vmalloc_node_range+0x57a/0x910 [ 3263.718591][T12794] ? __lock_is_held+0xb6/0x140 [ 3263.723333][T12794] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3263.728427][T12794] ? vfree_atomic+0xe0/0xe0 [ 3263.732911][T12794] ? rcu_read_lock_sched_held+0x110/0x130 [ 3263.738611][T12794] ? kmem_cache_alloc_trace+0x354/0x760 [ 3263.744134][T12794] ? __lock_is_held+0xb6/0x140 [ 3263.748877][T12794] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3263.753972][T12794] vmalloc_user+0x6b/0x90 [ 3263.758296][T12794] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3263.763389][T12794] vb2_vmalloc_alloc+0x134/0x3a0 [ 3263.768313][T12794] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3263.774096][T12794] ? lock_acquire+0x1db/0x570 [ 3263.778754][T12794] ? __vb2_queue_alloc+0xf5/0xf40 [ 3263.783759][T12794] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3263.789596][T12794] __vb2_queue_alloc+0x5a6/0xf40 [ 3263.794522][T12794] ? vimc_cap_get_format+0x120/0x120 [ 3263.799787][T12794] vb2_core_create_bufs+0x378/0x8e0 [ 3263.804965][T12794] ? __vb2_queue_alloc+0xf40/0xf40 [ 3263.810055][T12794] ? mutex_trylock+0x2d0/0x2d0 [ 3263.814808][T12794] ? save_stack+0xa9/0xd0 [ 3263.819137][T12794] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3263.825374][T12794] vb2_create_bufs+0x4b5/0x8e0 [ 3263.830122][T12794] ? vb2_request_queue+0x120/0x120 [ 3263.835213][T12794] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3263.841433][T12794] ? v4l2_prio_max+0x266/0x310 [ 3263.846198][T12794] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3263.852420][T12794] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3263.857689][T12794] v4l_create_bufs+0x152/0x230 [ 3263.862437][T12794] __video_do_ioctl+0x805/0xd80 [ 3263.867270][T12794] ? v4l_s_fmt+0xb20/0xb20 [ 3263.871672][T12794] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3263.877894][T12794] ? _copy_from_user+0xdd/0x150 [ 3263.882730][T12794] video_usercopy+0x460/0x16b0 [ 3263.887476][T12794] ? v4l_s_fmt+0xb20/0xb20 [ 3263.891876][T12794] ? v4l_enumstd+0x70/0x70 [ 3263.896271][T12794] ? __fget+0x473/0x710 [ 3263.900409][T12794] ? find_held_lock+0x35/0x120 [ 3263.905167][T12794] ? __fget+0x473/0x710 [ 3263.909304][T12794] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3263.915528][T12794] ? lock_downgrade+0xbe0/0xbe0 [ 3263.920358][T12794] ? kasan_check_read+0x11/0x20 [ 3263.925189][T12794] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3263.931147][T12794] ? rcu_read_unlock_special+0x380/0x380 [ 3263.936764][T12794] ? __fget+0x49a/0x710 [ 3263.940903][T12794] ? video_usercopy+0x16b0/0x16b0 [ 3263.945906][T12794] video_ioctl2+0x2d/0x35 [ 3263.950216][T12794] v4l2_ioctl+0x156/0x1b0 [ 3263.954524][T12794] ? video_devdata+0xa0/0xa0 [ 3263.959119][T12794] do_vfs_ioctl+0x107b/0x17d0 [ 3263.963794][T12794] ? ioctl_preallocate+0x2f0/0x2f0 [ 3263.968886][T12794] ? __fget_light+0x2db/0x420 [ 3263.973570][T12794] ? fget_raw+0x20/0x20 [ 3263.977706][T12794] ? put_timespec64+0x115/0x1b0 [ 3263.982534][T12794] ? nsecs_to_jiffies+0x30/0x30 [ 3263.987373][T12794] ? do_syscall_64+0x8c/0x800 [ 3263.992038][T12794] ? do_syscall_64+0x8c/0x800 [ 3263.996703][T12794] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3264.001972][T12794] ? security_file_ioctl+0x93/0xc0 [ 3264.007163][T12794] ksys_ioctl+0xab/0xd0 [ 3264.011301][T12794] __x64_sys_ioctl+0x73/0xb0 [ 3264.015873][T12794] do_syscall_64+0x1a3/0x800 [ 3264.020449][T12794] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3264.026064][T12794] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3264.031772][T12794] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3264.037304][T12794] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3264.043176][T12794] RIP: 0033:0x457ec9 [ 3264.047054][T12794] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3264.067081][T12794] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3264.075470][T12794] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3264.083440][T12794] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3264.091395][T12794] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3264.099343][T12794] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 [ 3264.107294][T12794] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3264.117577][T12794] Mem-Info: [ 3264.120872][T12794] active_anon:146449 inactive_anon:199 isolated_anon:0 [ 3264.120872][T12794] active_file:12621 inactive_file:58714 isolated_file:0 [ 3264.120872][T12794] unevictable:0 dirty:443 writeback:0 unstable:0 [ 3264.120872][T12794] slab_reclaimable:15579 slab_unreclaimable:115161 [ 3264.120872][T12794] mapped:55558 shmem:245 pagetables:1818 bounce:0 [ 3264.120872][T12794] free:1178512 free_pcp:639 free_cma:0 [ 3264.159227][T12794] Node 0 active_anon:585796kB inactive_anon:796kB active_file:50344kB inactive_file:234856kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222232kB dirty:1772kB writeback:0kB shmem:980kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 186368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3264.188416][T12794] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3264.214958][T12794] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3264.214999][T12794] lowmem_reserve[]: 0 2535 2537 2537 [ 3264.215019][T12794] Node 0 DMA32 free:911776kB min:36080kB low:45100kB high:54120kB active_anon:585796kB inactive_anon:796kB active_file:50344kB inactive_file:234856kB unevictable:0kB writepending:1772kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8096kB pagetables:7272kB bounce:0kB free_pcp:2532kB local_pcp:1244kB free_cma:0kB [ 3264.215067][T12794] lowmem_reserve[]: 0 0 2 2 [ 3264.284604][T12794] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3264.314885][T12794] lowmem_reserve[]: 0 0 0 0 [ 3264.319860][T12794] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3264.348299][T12794] lowmem_reserve[]: 0 0 0 0 [ 3264.352879][T12794] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3264.367218][T12794] Node 0 DMA32: 514*4kB (UM) 259*8kB (UM) 926*16kB (UE) 1401*32kB (UE) 629*64kB (UM) 107*128kB (UME) 49*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 38*2048kB (UM) 155*4096kB (UM) = 914144kB [ 3264.385720][T12794] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3264.401183][T12794] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3264.418888][T12794] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3264.428642][T12794] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3264.437982][T12794] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3264.447568][T12794] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3264.456890][T12794] 71579 total pagecache pages [ 3264.461634][T12794] 0 pages in swap cache [ 3264.465774][T12794] Swap cache stats: add 0, delete 0, find 0/0 [ 3264.471904][T12794] Free swap = 0kB [ 3264.475632][T12794] Total swap = 0kB [ 3264.479441][T12794] 1965979 pages RAM [ 3264.483251][T12794] 0 pages HighMem/MovableOnly [ 3264.487915][T12794] 343989 pages reserved [ 3264.492203][T12794] 0 pages cma reserved [ 3264.496499][T12812] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3264.510868][T12812] CPU: 1 PID: 12812 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3264.519812][T12812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3264.529863][T12812] Call Trace: [ 3264.533152][T12812] dump_stack+0x1db/0x2d0 [ 3264.537481][T12812] ? dump_stack_print_info.cold+0x20/0x20 [ 3264.543195][T12812] ? idr_get_free+0xee0/0xee0 [ 3264.547860][T12812] ? kasan_kmalloc+0x9/0x10 [ 3264.552352][T12812] ? kmem_cache_alloc_trace+0x151/0x760 [ 3264.557879][T12812] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3264.562884][T12812] ? vb2_core_create_bufs+0x378/0x8e0 [ 3264.568239][T12812] warn_alloc.cold+0xc3/0x1c9 [ 3264.572913][T12812] ? zone_watermark_ok_safe+0x420/0x420 [ 3264.578439][T12812] ? print_usage_bug+0xd0/0xd0 [ 3264.583184][T12812] ? kasan_kmalloc+0x9/0x10 [ 3264.587670][T12812] ? __lock_is_held+0xb6/0x140 [ 3264.592419][T12812] ? add_lock_to_list.isra.0+0x450/0x450 [ 3264.598035][T12812] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3264.604259][T12812] ? check_preemption_disabled+0x48/0x290 [ 3264.609961][T12812] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3264.615065][T12812] __vmalloc_node_range+0x57a/0x910 [ 3264.620275][T12812] ? __lock_is_held+0xb6/0x140 [ 3264.625034][T12812] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3264.630129][T12812] ? vfree_atomic+0xe0/0xe0 [ 3264.634614][T12812] ? rcu_read_lock_sched_held+0x110/0x130 [ 3264.640315][T12812] ? kmem_cache_alloc_trace+0x354/0x760 [ 3264.645841][T12812] ? __lock_is_held+0xb6/0x140 [ 3264.650601][T12812] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3264.655702][T12812] vmalloc_user+0x6b/0x90 [ 3264.660022][T12812] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3264.665142][T12812] vb2_vmalloc_alloc+0x134/0x3a0 [ 3264.670110][T12812] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3264.675902][T12812] ? lock_acquire+0x1db/0x570 [ 3264.680572][T12812] ? __vb2_queue_alloc+0xf5/0xf40 [ 3264.685592][T12812] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3264.691378][T12812] __vb2_queue_alloc+0x5a6/0xf40 [ 3264.696326][T12812] ? vimc_cap_get_format+0x120/0x120 [ 3264.701619][T12812] vb2_core_create_bufs+0x378/0x8e0 [ 3264.706816][T12812] ? __vb2_queue_alloc+0xf40/0xf40 [ 3264.711913][T12812] ? mutex_trylock+0x2d0/0x2d0 [ 3264.716664][T12812] ? save_stack+0xa9/0xd0 [ 3264.720984][T12812] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3264.727209][T12812] vb2_create_bufs+0x4b5/0x8e0 [ 3264.731969][T12812] ? vb2_request_queue+0x120/0x120 [ 3264.737067][T12812] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3264.743297][T12812] ? v4l2_prio_max+0x266/0x310 [ 3264.748066][T12812] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3264.754306][T12812] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3264.759595][T12812] v4l_create_bufs+0x152/0x230 [ 3264.764345][T12812] __video_do_ioctl+0x805/0xd80 [ 3264.769190][T12812] ? v4l_s_fmt+0xb20/0xb20 [ 3264.773606][T12812] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3264.779845][T12812] ? _copy_from_user+0xdd/0x150 [ 3264.784701][T12812] video_usercopy+0x460/0x16b0 [ 3264.789460][T12812] ? v4l_s_fmt+0xb20/0xb20 [ 3264.793876][T12812] ? v4l_enumstd+0x70/0x70 [ 3264.798277][T12812] ? __fget+0x473/0x710 [ 3264.802416][T12812] ? find_held_lock+0x35/0x120 [ 3264.807165][T12812] ? __fget+0x473/0x710 [ 3264.811308][T12812] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3264.817533][T12812] ? lock_downgrade+0xbe0/0xbe0 [ 3264.822380][T12812] ? kasan_check_read+0x11/0x20 [ 3264.827227][T12812] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3264.833207][T12812] ? rcu_read_unlock_special+0x380/0x380 [ 3264.838829][T12812] ? __fget+0x49a/0x710 [ 3264.842972][T12812] ? video_usercopy+0x16b0/0x16b0 [ 3264.847979][T12812] video_ioctl2+0x2d/0x35 [ 3264.852295][T12812] v4l2_ioctl+0x156/0x1b0 [ 3264.856609][T12812] ? video_devdata+0xa0/0xa0 [ 3264.861181][T12812] do_vfs_ioctl+0x107b/0x17d0 [ 3264.865845][T12812] ? ioctl_preallocate+0x2f0/0x2f0 [ 3264.870938][T12812] ? __fget_light+0x2db/0x420 [ 3264.875604][T12812] ? fget_raw+0x20/0x20 [ 3264.879755][T12812] ? put_timespec64+0x115/0x1b0 [ 3264.884593][T12812] ? _raw_spin_unlock_irq+0x28/0x90 [ 3264.889794][T12812] ? nsecs_to_jiffies+0x30/0x30 [ 3264.894632][T12812] ? do_syscall_64+0x8c/0x800 [ 3264.899290][T12812] ? do_syscall_64+0x8c/0x800 [ 3264.903980][T12812] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3264.909264][T12812] ? security_file_ioctl+0x93/0xc0 [ 3264.914360][T12812] ksys_ioctl+0xab/0xd0 [ 3264.918515][T12812] __x64_sys_ioctl+0x73/0xb0 [ 3264.923122][T12812] do_syscall_64+0x1a3/0x800 [ 3264.927699][T12812] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3264.933331][T12812] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3264.939026][T12812] ? __switch_to_asm+0x34/0x70 [ 3264.943783][T12812] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3264.949329][T12812] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3264.955203][T12812] RIP: 0033:0x457ec9 [ 3264.959095][T12812] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3264.979307][T12812] RSP: 002b:00007fed9220ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3264.987698][T12812] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3264.995648][T12812] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 20:32:41 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x2000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3265.003602][T12812] RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000 [ 3265.011578][T12812] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed9220f6d4 [ 3265.019531][T12812] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff 20:32:41 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x4800000000000000, 0xffffffffffffffff]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:32:41 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:32:41 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a00000100007fffffff000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:32:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc0011022]}) 20:32:41 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}], [], 0xfdfdffff00000000}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3265.064399][T12851] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3265.078793][T12851] CPU: 1 PID: 12851 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3265.087731][T12851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3265.097786][T12851] Call Trace: [ 3265.101094][T12851] dump_stack+0x1db/0x2d0 [ 3265.101120][T12851] ? dump_stack_print_info.cold+0x20/0x20 [ 3265.101142][T12851] ? idr_get_free+0xee0/0xee0 [ 3265.115836][T12851] ? kasan_kmalloc+0x9/0x10 [ 3265.115853][T12851] ? kmem_cache_alloc_trace+0x151/0x760 [ 3265.115870][T12851] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3265.115884][T12851] ? vb2_core_create_bufs+0x378/0x8e0 [ 3265.115906][T12851] warn_alloc.cold+0xc3/0x1c9 [ 3265.140973][T12851] ? zone_watermark_ok_safe+0x420/0x420 [ 3265.146525][T12851] ? print_usage_bug+0xd0/0xd0 [ 3265.146541][T12851] ? kasan_kmalloc+0x9/0x10 [ 3265.146573][T12851] ? __lock_is_held+0xb6/0x140 [ 3265.146591][T12851] ? add_lock_to_list.isra.0+0x450/0x450 [ 3265.146609][T12851] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3265.146631][T12851] ? check_preemption_disabled+0x48/0x290 [ 3265.160628][T12851] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3265.160650][T12851] __vmalloc_node_range+0x57a/0x910 [ 3265.160666][T12851] ? __lock_is_held+0xb6/0x140 [ 3265.160684][T12851] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3265.160716][T12851] ? vfree_atomic+0xe0/0xe0 [ 3265.160734][T12851] ? rcu_read_lock_sched_held+0x110/0x130 [ 3265.160755][T12851] ? kmem_cache_alloc_trace+0x354/0x760 20:32:41 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3265.214198][T12851] ? __lock_is_held+0xb6/0x140 [ 3265.218971][T12851] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3265.224100][T12851] vmalloc_user+0x6b/0x90 [ 3265.228476][T12851] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3265.233625][T12851] vb2_vmalloc_alloc+0x134/0x3a0 [ 3265.238580][T12851] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3265.244437][T12851] ? lock_acquire+0x1db/0x570 [ 3265.249133][T12851] ? __video_do_ioctl+0x3b1/0xd80 [ 3265.254195][T12851] ? __vb2_queue_alloc+0xf5/0xf40 [ 3265.259230][T12851] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3265.265046][T12851] __vb2_queue_alloc+0x5a6/0xf40 [ 3265.270014][T12851] ? vimc_cap_get_format+0x120/0x120 [ 3265.275306][T12851] vb2_core_create_bufs+0x378/0x8e0 [ 3265.280569][T12851] ? __vb2_queue_alloc+0xf40/0xf40 [ 3265.280590][T12851] ? mutex_trylock+0x2d0/0x2d0 [ 3265.280614][T12851] ? save_stack+0xa9/0xd0 [ 3265.280632][T12851] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3265.280652][T12851] vb2_create_bufs+0x4b5/0x8e0 [ 3265.280673][T12851] ? vb2_request_queue+0x120/0x120 [ 3265.280691][T12851] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3265.280707][T12851] ? v4l2_prio_max+0x266/0x310 [ 3265.280728][T12851] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3265.290601][T12851] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3265.290626][T12851] v4l_create_bufs+0x152/0x230 [ 3265.290648][T12851] __video_do_ioctl+0x805/0xd80 [ 3265.290675][T12851] ? v4l_s_fmt+0xb20/0xb20 [ 3265.290697][T12851] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3265.290715][T12851] ? _copy_from_user+0xdd/0x150 [ 3265.290737][T12851] video_usercopy+0x460/0x16b0 [ 3265.290757][T12851] ? v4l_s_fmt+0xb20/0xb20 [ 3265.367805][T12851] ? v4l_enumstd+0x70/0x70 [ 3265.372228][T12851] ? __fget+0x473/0x710 [ 3265.376382][T12851] ? find_held_lock+0x35/0x120 [ 3265.381144][T12851] ? __fget+0x473/0x710 [ 3265.385305][T12851] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3265.391547][T12851] ? lock_downgrade+0xbe0/0xbe0 [ 3265.396403][T12851] ? kasan_check_read+0x11/0x20 [ 3265.401258][T12851] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3265.407242][T12851] ? rcu_read_unlock_special+0x380/0x380 [ 3265.412882][T12851] ? __fget+0x49a/0x710 [ 3265.417044][T12851] ? video_usercopy+0x16b0/0x16b0 [ 3265.422074][T12851] video_ioctl2+0x2d/0x35 [ 3265.426403][T12851] v4l2_ioctl+0x156/0x1b0 [ 3265.430734][T12851] ? video_devdata+0xa0/0xa0 [ 3265.435327][T12851] do_vfs_ioctl+0x107b/0x17d0 [ 3265.440012][T12851] ? ioctl_preallocate+0x2f0/0x2f0 [ 3265.445137][T12851] ? __fget_light+0x2db/0x420 [ 3265.449811][T12851] ? fget_raw+0x20/0x20 [ 3265.453965][T12851] ? put_timespec64+0x115/0x1b0 [ 3265.459009][T12851] ? nsecs_to_jiffies+0x30/0x30 [ 3265.463865][T12851] ? do_syscall_64+0x8c/0x800 [ 3265.468546][T12851] ? do_syscall_64+0x8c/0x800 [ 3265.473232][T12851] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3265.478516][T12851] ? security_file_ioctl+0x93/0xc0 [ 3265.483629][T12851] ksys_ioctl+0xab/0xd0 [ 3265.487791][T12851] __x64_sys_ioctl+0x73/0xb0 [ 3265.492381][T12851] do_syscall_64+0x1a3/0x800 [ 3265.496978][T12851] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3265.502614][T12851] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3265.508341][T12851] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3265.513916][T12851] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3265.519805][T12851] RIP: 0033:0x457ec9 [ 3265.523699][T12851] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3265.543299][T12851] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3265.551706][T12851] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3265.559675][T12851] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3265.567642][T12851] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3265.575624][T12851] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3265.583594][T12851] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3265.600885][T12851] warn_alloc_show_mem: 1 callbacks suppressed [ 3265.600894][T12851] Mem-Info: 20:32:42 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000020001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3265.696577][T12851] active_anon:148058 inactive_anon:203 isolated_anon:0 [ 3265.696577][T12851] active_file:12621 inactive_file:58730 isolated_file:0 [ 3265.696577][T12851] unevictable:0 dirty:119 writeback:0 unstable:0 [ 3265.696577][T12851] slab_reclaimable:15578 slab_unreclaimable:115213 [ 3265.696577][T12851] mapped:55593 shmem:244 pagetables:1889 bounce:0 [ 3265.696577][T12851] free:1176785 free_pcp:452 free_cma:0 20:32:42 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3265.814032][T12863] XFS (loop2): Invalid superblock magic number 20:32:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc001102a]}) [ 3265.865227][T12851] Node 0 active_anon:588064kB inactive_anon:812kB active_file:50344kB inactive_file:234920kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222372kB dirty:576kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 176128kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:32:42 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3265.908235][T12851] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3265.935372][T12851] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3265.965554][T12851] lowmem_reserve[]: 0 2535 2537 2537 [ 3265.971157][T12851] Node 0 DMA32 free:910380kB min:36080kB low:45100kB high:54120kB active_anon:588036kB inactive_anon:812kB active_file:50344kB inactive_file:234920kB unevictable:0kB writepending:544kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8256kB pagetables:7408kB bounce:0kB free_pcp:2184kB local_pcp:1028kB free_cma:0kB 20:32:42 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}], [], 0xfdffffff00000000}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3266.215225][T12851] lowmem_reserve[]: 0 0 2 2 [ 3266.223417][T12851] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3266.279639][T12851] lowmem_reserve[]: 0 0 0 0 [ 3266.279812][T12903] XFS (loop2): Invalid superblock magic number [ 3266.284445][T12851] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3266.325394][T12851] lowmem_reserve[]: 0 0 0 0 [ 3266.336260][T12851] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3266.353060][T12851] Node 0 DMA32: 639*4kB (UME) 260*8kB (UM) 983*16kB (UM) 1394*32kB (U) 627*64kB (UME) 99*128kB (M) 48*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 37*2048kB (UM) 155*4096kB (UM) = 911884kB [ 3266.371881][T12851] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3266.387331][T12851] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3266.405102][T12851] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3266.414722][T12851] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3266.424042][T12851] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3266.433664][T12851] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3266.442994][T12851] 71603 total pagecache pages [ 3266.447684][T12851] 0 pages in swap cache [ 3266.451915][T12851] Swap cache stats: add 0, delete 0, find 0/0 [ 3266.457992][T12851] Free swap = 0kB [ 3266.461771][T12851] Total swap = 0kB [ 3266.465489][T12851] 1965979 pages RAM [ 3266.469355][T12851] 0 pages HighMem/MovableOnly [ 3266.474030][T12851] 343989 pages reserved [ 3266.478161][T12851] 0 pages cma reserved [ 3266.482600][T12859] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3266.496823][T12859] CPU: 1 PID: 12859 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3266.505745][T12859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3266.505753][T12859] Call Trace: [ 3266.505777][T12859] dump_stack+0x1db/0x2d0 [ 3266.505803][T12859] ? dump_stack_print_info.cold+0x20/0x20 [ 3266.523442][T12859] ? idr_get_free+0xee0/0xee0 [ 3266.523461][T12859] ? kasan_kmalloc+0x9/0x10 [ 3266.523476][T12859] ? kmem_cache_alloc_trace+0x151/0x760 [ 3266.523493][T12859] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3266.523512][T12859] ? vb2_core_create_bufs+0x378/0x8e0 [ 3266.554273][T12859] warn_alloc.cold+0xc3/0x1c9 [ 3266.558957][T12859] ? zone_watermark_ok_safe+0x420/0x420 [ 3266.564511][T12859] ? print_usage_bug+0xd0/0xd0 [ 3266.569279][T12859] ? kasan_kmalloc+0x9/0x10 [ 3266.573782][T12859] ? __lock_is_held+0xb6/0x140 [ 3266.578629][T12859] ? add_lock_to_list.isra.0+0x450/0x450 [ 3266.584275][T12859] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3266.590513][T12859] ? check_preemption_disabled+0x48/0x290 [ 3266.596215][T12859] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3266.601311][T12859] __vmalloc_node_range+0x57a/0x910 [ 3266.606489][T12859] ? __lock_is_held+0xb6/0x140 [ 3266.611238][T12859] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3266.616349][T12859] ? vfree_atomic+0xe0/0xe0 [ 3266.620837][T12859] ? rcu_read_lock_sched_held+0x110/0x130 [ 3266.626539][T12859] ? kmem_cache_alloc_trace+0x354/0x760 [ 3266.632080][T12859] ? __lock_is_held+0xb6/0x140 [ 3266.636825][T12859] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3266.641922][T12859] vmalloc_user+0x6b/0x90 [ 3266.646238][T12859] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3266.651330][T12859] vb2_vmalloc_alloc+0x134/0x3a0 [ 3266.656248][T12859] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3266.662060][T12859] ? lock_acquire+0x1db/0x570 [ 3266.666726][T12859] ? __vb2_queue_alloc+0xf5/0xf40 [ 3266.671738][T12859] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3266.677521][T12859] __vb2_queue_alloc+0x5a6/0xf40 [ 3266.682447][T12859] ? vimc_cap_get_format+0x120/0x120 [ 3266.687723][T12859] vb2_core_create_bufs+0x378/0x8e0 [ 3266.692920][T12859] ? __vb2_queue_alloc+0xf40/0xf40 [ 3266.698015][T12859] ? mutex_trylock+0x2d0/0x2d0 [ 3266.702784][T12859] ? save_stack+0xa9/0xd0 [ 3266.707100][T12859] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3266.713321][T12859] vb2_create_bufs+0x4b5/0x8e0 [ 3266.718076][T12859] ? vb2_request_queue+0x120/0x120 [ 3266.723172][T12859] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3266.729394][T12859] ? v4l2_prio_max+0x266/0x310 [ 3266.734140][T12859] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3266.740369][T12859] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3266.745640][T12859] v4l_create_bufs+0x152/0x230 [ 3266.750403][T12859] __video_do_ioctl+0x805/0xd80 [ 3266.755257][T12859] ? v4l_s_fmt+0xb20/0xb20 [ 3266.759657][T12859] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3266.765879][T12859] ? _copy_from_user+0xdd/0x150 [ 3266.770731][T12859] video_usercopy+0x460/0x16b0 [ 3266.775477][T12859] ? v4l_s_fmt+0xb20/0xb20 [ 3266.779883][T12859] ? v4l_enumstd+0x70/0x70 [ 3266.784299][T12859] ? __fget+0x473/0x710 [ 3266.788436][T12859] ? find_held_lock+0x35/0x120 [ 3266.793180][T12859] ? __fget+0x473/0x710 [ 3266.797316][T12859] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3266.803539][T12859] ? lock_downgrade+0xbe0/0xbe0 [ 3266.808398][T12859] ? kasan_check_read+0x11/0x20 [ 3266.813240][T12859] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3266.819205][T12859] ? rcu_read_unlock_special+0x380/0x380 [ 3266.824825][T12859] ? __fget+0x49a/0x710 [ 3266.828965][T12859] ? video_usercopy+0x16b0/0x16b0 [ 3266.833971][T12859] video_ioctl2+0x2d/0x35 [ 3266.838310][T12859] v4l2_ioctl+0x156/0x1b0 [ 3266.843362][T12859] ? video_devdata+0xa0/0xa0 [ 3266.847944][T12859] do_vfs_ioctl+0x107b/0x17d0 [ 3266.852621][T12859] ? ioctl_preallocate+0x2f0/0x2f0 [ 3266.857715][T12859] ? __fget_light+0x2db/0x420 [ 3266.862385][T12859] ? fget_raw+0x20/0x20 [ 3266.866538][T12859] ? put_timespec64+0x115/0x1b0 [ 3266.871409][T12859] ? nsecs_to_jiffies+0x30/0x30 [ 3266.876257][T12859] ? do_syscall_64+0x8c/0x800 [ 3266.880913][T12859] ? do_syscall_64+0x8c/0x800 [ 3266.885581][T12859] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3266.890850][T12859] ? security_file_ioctl+0x93/0xc0 [ 3266.895945][T12859] ksys_ioctl+0xab/0xd0 [ 3266.900087][T12859] __x64_sys_ioctl+0x73/0xb0 [ 3266.904664][T12859] do_syscall_64+0x1a3/0x800 [ 3266.909235][T12859] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3266.914847][T12859] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3266.920550][T12859] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3266.926114][T12859] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3266.931996][T12859] RIP: 0033:0x457ec9 [ 3266.935884][T12859] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3266.955473][T12859] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3266.963874][T12859] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3266.972019][T12859] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3266.979970][T12859] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3266.987930][T12859] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 [ 3266.995887][T12859] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3267.004891][T12859] Mem-Info: [ 3267.008051][T12859] active_anon:145916 inactive_anon:203 isolated_anon:0 [ 3267.008051][T12859] active_file:12621 inactive_file:58734 isolated_file:0 [ 3267.008051][T12859] unevictable:0 dirty:142 writeback:0 unstable:0 [ 3267.008051][T12859] slab_reclaimable:15578 slab_unreclaimable:115480 [ 3267.008051][T12859] mapped:55543 shmem:243 pagetables:1792 bounce:0 [ 3267.008051][T12859] free:1178760 free_pcp:661 free_cma:0 [ 3267.046274][T12859] Node 0 active_anon:583608kB inactive_anon:812kB active_file:50344kB inactive_file:235028kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222148kB dirty:608kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3267.075444][T12859] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3267.101967][T12859] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3267.128846][T12859] lowmem_reserve[]: 0 2535 2537 2537 [ 3267.134198][T12859] Node 0 DMA32 free:913792kB min:36080kB low:45100kB high:54120kB active_anon:583608kB inactive_anon:812kB active_file:50344kB inactive_file:235028kB unevictable:0kB writepending:608kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8032kB pagetables:7144kB bounce:0kB free_pcp:2620kB local_pcp:1344kB free_cma:0kB [ 3267.164847][T12859] lowmem_reserve[]: 0 0 2 2 [ 3267.169445][T12859] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3267.196904][T12859] lowmem_reserve[]: 0 0 0 0 [ 3267.201488][T12859] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3267.229879][T12859] lowmem_reserve[]: 0 0 0 0 [ 3267.234372][T12859] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3267.248672][T12859] Node 0 DMA32: 576*4kB (UME) 218*8kB (UM) 1003*16kB (UM) 1400*32kB (U) 627*64kB (UME) 99*128kB (M) 48*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 36*2048kB (UM) 156*4096kB (UM) = 913856kB [ 3267.267124][T12859] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3267.282597][T12859] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3267.300332][T12859] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3267.309957][T12859] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3267.319303][T12859] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3267.328825][T12859] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3267.338161][T12859] 71627 total pagecache pages [ 3267.342949][T12859] 0 pages in swap cache [ 3267.347123][T12859] Swap cache stats: add 0, delete 0, find 0/0 [ 3267.353256][T12859] Free swap = 0kB [ 3267.356969][T12859] Total swap = 0kB [ 3267.360751][T12859] 1965979 pages RAM [ 3267.364552][T12859] 0 pages HighMem/MovableOnly [ 3267.369292][T12859] 343989 pages reserved [ 3267.373447][T12859] 0 pages cma reserved 20:32:43 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x4000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3267.378843][T12862] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3267.405227][T12862] CPU: 0 PID: 12862 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3267.414179][T12862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3267.424235][T12862] Call Trace: [ 3267.427528][T12862] dump_stack+0x1db/0x2d0 [ 3267.431853][T12862] ? dump_stack_print_info.cold+0x20/0x20 [ 3267.437554][T12862] ? idr_get_free+0xee0/0xee0 [ 3267.442254][T12862] ? kasan_kmalloc+0x9/0x10 [ 3267.446740][T12862] ? kmem_cache_alloc_trace+0x151/0x760 [ 3267.452269][T12862] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3267.457272][T12862] ? vb2_core_create_bufs+0x378/0x8e0 [ 3267.462630][T12862] warn_alloc.cold+0xc3/0x1c9 [ 3267.467302][T12862] ? zone_watermark_ok_safe+0x420/0x420 [ 3267.472829][T12862] ? print_usage_bug+0xd0/0xd0 [ 3267.477585][T12862] ? kasan_kmalloc+0x9/0x10 [ 3267.482076][T12862] ? __lock_is_held+0xb6/0x140 [ 3267.486823][T12862] ? add_lock_to_list.isra.0+0x450/0x450 [ 3267.492438][T12862] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3267.498661][T12862] ? check_preemption_disabled+0x48/0x290 [ 3267.504394][T12862] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3267.509491][T12862] __vmalloc_node_range+0x57a/0x910 [ 3267.514685][T12862] ? __lock_is_held+0xb6/0x140 [ 3267.519445][T12862] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3267.524539][T12862] ? vfree_atomic+0xe0/0xe0 [ 3267.529035][T12862] ? rcu_read_lock_sched_held+0x110/0x130 [ 3267.534779][T12862] ? kmem_cache_alloc_trace+0x354/0x760 [ 3267.540315][T12862] ? __lock_is_held+0xb6/0x140 [ 3267.545108][T12862] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3267.550204][T12862] vmalloc_user+0x6b/0x90 [ 3267.554516][T12862] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3267.559614][T12862] vb2_vmalloc_alloc+0x134/0x3a0 [ 3267.564573][T12862] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3267.570366][T12862] ? lock_acquire+0x1db/0x570 [ 3267.575031][T12862] ? __vb2_queue_alloc+0xf5/0xf40 [ 3267.580041][T12862] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3267.585832][T12862] __vb2_queue_alloc+0x5a6/0xf40 [ 3267.590768][T12862] ? vimc_cap_get_format+0x120/0x120 [ 3267.596034][T12862] vb2_core_create_bufs+0x378/0x8e0 [ 3267.601225][T12862] ? __vb2_queue_alloc+0xf40/0xf40 [ 3267.606332][T12862] ? mutex_trylock+0x2d0/0x2d0 [ 3267.611086][T12862] ? save_stack+0xa9/0xd0 [ 3267.615413][T12862] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3267.621639][T12862] vb2_create_bufs+0x4b5/0x8e0 [ 3267.626388][T12862] ? vb2_request_queue+0x120/0x120 [ 3267.631482][T12862] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3267.637704][T12862] ? v4l2_prio_max+0x266/0x310 [ 3267.642449][T12862] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3267.648683][T12862] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3267.653971][T12862] v4l_create_bufs+0x152/0x230 [ 3267.658719][T12862] __video_do_ioctl+0x805/0xd80 [ 3267.663589][T12862] ? v4l_s_fmt+0xb20/0xb20 [ 3267.668012][T12862] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3267.674269][T12862] ? _copy_from_user+0xdd/0x150 [ 3267.679120][T12862] video_usercopy+0x460/0x16b0 [ 3267.683889][T12862] ? v4l_s_fmt+0xb20/0xb20 [ 3267.688310][T12862] ? v4l_enumstd+0x70/0x70 [ 3267.692709][T12862] ? __fget+0x473/0x710 [ 3267.696847][T12862] ? find_held_lock+0x35/0x120 [ 3267.701609][T12862] ? __fget+0x473/0x710 [ 3267.705751][T12862] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3267.711976][T12862] ? lock_downgrade+0xbe0/0xbe0 [ 3267.716818][T12862] ? kasan_check_read+0x11/0x20 [ 3267.721668][T12862] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3267.727631][T12862] ? rcu_read_unlock_special+0x380/0x380 [ 3267.733256][T12862] ? __fget+0x49a/0x710 [ 3267.737406][T12862] ? video_usercopy+0x16b0/0x16b0 [ 3267.742426][T12862] video_ioctl2+0x2d/0x35 [ 3267.746741][T12862] v4l2_ioctl+0x156/0x1b0 [ 3267.751055][T12862] ? video_devdata+0xa0/0xa0 [ 3267.755634][T12862] do_vfs_ioctl+0x107b/0x17d0 [ 3267.760312][T12862] ? ioctl_preallocate+0x2f0/0x2f0 [ 3267.765422][T12862] ? __fget_light+0x2db/0x420 [ 3267.770111][T12862] ? fget_raw+0x20/0x20 [ 3267.774254][T12862] ? put_timespec64+0x115/0x1b0 [ 3267.779140][T12862] ? nsecs_to_jiffies+0x30/0x30 [ 3267.784039][T12862] ? do_syscall_64+0x8c/0x800 [ 3267.788704][T12862] ? do_syscall_64+0x8c/0x800 [ 3267.793386][T12862] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3267.798673][T12862] ? security_file_ioctl+0x93/0xc0 [ 3267.803774][T12862] ksys_ioctl+0xab/0xd0 [ 3267.807926][T12862] __x64_sys_ioctl+0x73/0xb0 [ 3267.812525][T12862] do_syscall_64+0x1a3/0x800 [ 3267.817223][T12862] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3267.822871][T12862] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3267.828605][T12862] ? __switch_to_asm+0x34/0x70 [ 3267.833371][T12862] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3267.838923][T12862] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3267.844804][T12862] RIP: 0033:0x457ec9 [ 3267.848697][T12862] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3267.868289][T12862] RSP: 002b:00007fed9222fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3267.876683][T12862] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3267.884635][T12862] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 20:32:44 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x4c00000000000000, 0xffffffffffffffff]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:32:44 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000030001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:32:44 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:32:44 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc001102c]}) 20:32:44 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}], [], 0xff0f000000000000}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3267.892599][T12862] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 3267.900589][T12862] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922306d4 [ 3267.908577][T12862] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3267.925333][T12923] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3267.979016][T12923] CPU: 1 PID: 12923 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3267.987995][T12923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3267.998079][T12923] Call Trace: [ 3268.001384][T12923] dump_stack+0x1db/0x2d0 [ 3268.005727][T12923] ? dump_stack_print_info.cold+0x20/0x20 [ 3268.005743][T12923] ? idr_get_free+0xee0/0xee0 [ 3268.005760][T12923] ? kasan_kmalloc+0x9/0x10 [ 3268.005784][T12923] ? kmem_cache_alloc_trace+0x151/0x760 [ 3268.020647][T12923] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3268.020663][T12923] ? vb2_core_create_bufs+0x378/0x8e0 [ 3268.020685][T12923] warn_alloc.cold+0xc3/0x1c9 [ 3268.020703][T12923] ? zone_watermark_ok_safe+0x420/0x420 [ 3268.020719][T12923] ? print_usage_bug+0xd0/0xd0 [ 3268.020734][T12923] ? kasan_kmalloc+0x9/0x10 [ 3268.020759][T12923] ? __lock_is_held+0xb6/0x140 [ 3268.061020][T12923] ? add_lock_to_list.isra.0+0x450/0x450 [ 3268.066666][T12923] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3268.072919][T12923] ? check_preemption_disabled+0x48/0x290 [ 3268.078646][T12923] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3268.078669][T12923] __vmalloc_node_range+0x57a/0x910 [ 3268.078689][T12923] ? __lock_is_held+0xb6/0x140 [ 3268.088979][T12923] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3268.089000][T12923] ? vfree_atomic+0xe0/0xe0 [ 3268.089018][T12923] ? rcu_read_lock_sched_held+0x110/0x130 [ 3268.089065][T12923] ? kmem_cache_alloc_trace+0x354/0x760 [ 3268.089085][T12923] ? __lock_is_held+0xb6/0x140 [ 3268.089100][T12923] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3268.089121][T12923] vmalloc_user+0x6b/0x90 [ 3268.128847][T12923] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3268.133958][T12923] vb2_vmalloc_alloc+0x134/0x3a0 [ 3268.138896][T12923] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3268.144702][T12923] ? lock_acquire+0x1db/0x570 [ 3268.149384][T12923] ? __vb2_queue_alloc+0xf5/0xf40 [ 3268.154415][T12923] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3268.160215][T12923] __vb2_queue_alloc+0x5a6/0xf40 [ 3268.165166][T12923] ? vimc_cap_get_format+0x120/0x120 [ 3268.170447][T12923] vb2_core_create_bufs+0x378/0x8e0 [ 3268.175652][T12923] ? __vb2_queue_alloc+0xf40/0xf40 [ 3268.180760][T12923] ? mutex_trylock+0x2d0/0x2d0 [ 3268.185526][T12923] ? save_stack+0xa9/0xd0 [ 3268.189863][T12923] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3268.196110][T12923] vb2_create_bufs+0x4b5/0x8e0 [ 3268.200882][T12923] ? vb2_request_queue+0x120/0x120 [ 3268.205996][T12923] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3268.212246][T12923] ? v4l2_prio_max+0x266/0x310 [ 3268.217008][T12923] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3268.223253][T12923] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3268.228542][T12923] v4l_create_bufs+0x152/0x230 [ 3268.233343][T12923] __video_do_ioctl+0x805/0xd80 [ 3268.238207][T12923] ? v4l_s_fmt+0xb20/0xb20 [ 3268.242633][T12923] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3268.248870][T12923] ? _copy_from_user+0xdd/0x150 [ 3268.253725][T12923] video_usercopy+0x460/0x16b0 [ 3268.258488][T12923] ? v4l_s_fmt+0xb20/0xb20 [ 3268.262912][T12923] ? v4l_enumstd+0x70/0x70 [ 3268.267331][T12923] ? __fget+0x473/0x710 [ 3268.271486][T12923] ? find_held_lock+0x35/0x120 [ 3268.276249][T12923] ? __fget+0x473/0x710 [ 3268.280408][T12923] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3268.286650][T12923] ? lock_downgrade+0xbe0/0xbe0 [ 3268.291500][T12923] ? kasan_check_read+0x11/0x20 [ 3268.296453][T12923] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3268.302436][T12923] ? rcu_read_unlock_special+0x380/0x380 [ 3268.308079][T12923] ? __fget+0x49a/0x710 [ 3268.312238][T12923] ? video_usercopy+0x16b0/0x16b0 [ 3268.317260][T12923] video_ioctl2+0x2d/0x35 [ 3268.321601][T12923] v4l2_ioctl+0x156/0x1b0 [ 3268.325953][T12923] ? video_devdata+0xa0/0xa0 [ 3268.330545][T12923] do_vfs_ioctl+0x107b/0x17d0 [ 3268.335240][T12923] ? ioctl_preallocate+0x2f0/0x2f0 [ 3268.340356][T12923] ? __fget_light+0x2db/0x420 [ 3268.345044][T12923] ? fget_raw+0x20/0x20 [ 3268.349291][T12923] ? put_timespec64+0x115/0x1b0 [ 3268.354139][T12923] ? nsecs_to_jiffies+0x30/0x30 [ 3268.358993][T12923] ? do_syscall_64+0x8c/0x800 [ 3268.363668][T12923] ? do_syscall_64+0x8c/0x800 [ 3268.368341][T12923] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3268.373628][T12923] ? security_file_ioctl+0x93/0xc0 [ 3268.378742][T12923] ksys_ioctl+0xab/0xd0 [ 3268.382901][T12923] __x64_sys_ioctl+0x73/0xb0 [ 3268.387499][T12923] do_syscall_64+0x1a3/0x800 [ 3268.392094][T12923] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3268.397730][T12923] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3268.403455][T12923] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3268.409017][T12923] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3268.414904][T12923] RIP: 0033:0x457ec9 [ 3268.418822][T12923] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3268.438421][T12923] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3268.446845][T12923] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3268.454813][T12923] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3268.462778][T12923] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3268.470772][T12923] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 20:32:45 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3268.478739][T12923] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3268.521825][T12923] warn_alloc_show_mem: 1 callbacks suppressed [ 3268.521830][T12923] Mem-Info: [ 3268.531927][T12923] active_anon:147498 inactive_anon:204 isolated_anon:0 [ 3268.531927][T12923] active_file:12621 inactive_file:58760 isolated_file:0 [ 3268.531927][T12923] unevictable:0 dirty:161 writeback:0 unstable:0 [ 3268.531927][T12923] slab_reclaimable:15577 slab_unreclaimable:115168 [ 3268.531927][T12923] mapped:55537 shmem:244 pagetables:1875 bounce:0 [ 3268.531927][T12923] free:1177471 free_pcp:382 free_cma:0 [ 3268.587326][T12923] Node 0 active_anon:590084kB inactive_anon:800kB active_file:50344kB inactive_file:235100kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222248kB dirty:688kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 182272kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3268.588041][T12930] XFS (loop2): Invalid superblock magic number [ 3268.628679][T12923] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3268.659514][T12923] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:32:45 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3268.687952][T12923] lowmem_reserve[]: 0 2535 2537 2537 [ 3268.693826][T12923] Node 0 DMA32 free:904944kB min:36080kB low:45100kB high:54120kB active_anon:592248kB inactive_anon:800kB active_file:50344kB inactive_file:235100kB unevictable:0kB writepending:688kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8480kB pagetables:7616kB bounce:0kB free_pcp:1312kB local_pcp:472kB free_cma:0kB [ 3268.743152][T12923] lowmem_reserve[]: 0 0 2 2 [ 3268.753195][T12923] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3268.794356][T12923] lowmem_reserve[]: 0 0 0 0 [ 3268.807970][T12923] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3268.845438][T12923] lowmem_reserve[]: 0 0 0 0 [ 3268.857109][T12923] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB 20:32:45 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}], [], 0xffffff3f00000000}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3268.921649][T12923] Node 0 DMA32: 534*4kB (UM) 243*8kB (UM) 982*16kB (UME) 1389*32kB (UE) 622*64kB (UM) 100*128kB (UM) 49*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 35*2048kB (UM) 155*4096kB (UM) = 907120kB [ 3268.955467][T12923] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB 20:32:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x2]}) 20:32:45 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000040001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3268.989042][T12923] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB 20:32:45 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3269.110829][T12923] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3269.144303][T12923] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3269.158473][T12923] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3269.193624][T12923] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3269.207188][T12923] 71643 total pagecache pages [ 3269.221854][T12923] 0 pages in swap cache [ 3269.226415][T12923] Swap cache stats: add 0, delete 0, find 0/0 [ 3269.249983][T12967] XFS (loop2): Invalid superblock magic number [ 3269.254947][T12923] Free swap = 0kB [ 3269.272089][T12923] Total swap = 0kB [ 3269.275822][T12923] 1965979 pages RAM [ 3269.285984][T12923] 0 pages HighMem/MovableOnly [ 3269.293612][T12923] 343989 pages reserved [ 3269.304658][T12923] 0 pages cma reserved [ 3269.308921][T12935] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3269.326234][T12935] CPU: 0 PID: 12935 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3269.335180][T12935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3269.345233][T12935] Call Trace: [ 3269.345259][T12935] dump_stack+0x1db/0x2d0 [ 3269.345280][T12935] ? dump_stack_print_info.cold+0x20/0x20 [ 3269.345293][T12935] ? idr_get_free+0xee0/0xee0 [ 3269.345311][T12935] ? kasan_kmalloc+0x9/0x10 [ 3269.345331][T12935] ? kmem_cache_alloc_trace+0x151/0x760 [ 3269.373328][T12935] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3269.373344][T12935] ? vb2_core_create_bufs+0x378/0x8e0 [ 3269.373366][T12935] warn_alloc.cold+0xc3/0x1c9 [ 3269.388396][T12935] ? zone_watermark_ok_safe+0x420/0x420 [ 3269.393948][T12935] ? print_usage_bug+0xd0/0xd0 [ 3269.398764][T12935] ? kasan_kmalloc+0x9/0x10 [ 3269.403279][T12935] ? __lock_is_held+0xb6/0x140 [ 3269.408048][T12935] ? add_lock_to_list.isra.0+0x450/0x450 [ 3269.413695][T12935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3269.419942][T12935] ? check_preemption_disabled+0x48/0x290 [ 3269.425668][T12935] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3269.430795][T12935] __vmalloc_node_range+0x57a/0x910 [ 3269.435999][T12935] ? __lock_is_held+0xb6/0x140 [ 3269.440788][T12935] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3269.445905][T12935] ? vfree_atomic+0xe0/0xe0 [ 3269.450413][T12935] ? rcu_read_lock_sched_held+0x110/0x130 [ 3269.456132][T12935] ? kmem_cache_alloc_trace+0x354/0x760 [ 3269.461678][T12935] ? __lock_is_held+0xb6/0x140 [ 3269.466464][T12935] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3269.471592][T12935] vmalloc_user+0x6b/0x90 [ 3269.475922][T12935] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3269.481033][T12935] vb2_vmalloc_alloc+0x134/0x3a0 [ 3269.485973][T12935] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3269.491776][T12935] ? lock_acquire+0x1db/0x570 [ 3269.496460][T12935] ? __vb2_queue_alloc+0xf5/0xf40 [ 3269.501485][T12935] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3269.507304][T12935] __vb2_queue_alloc+0x5a6/0xf40 [ 3269.512261][T12935] ? vimc_cap_get_format+0x120/0x120 [ 3269.517544][T12935] vb2_core_create_bufs+0x378/0x8e0 [ 3269.522775][T12935] ? __vb2_queue_alloc+0xf40/0xf40 [ 3269.527899][T12935] ? mutex_trylock+0x2d0/0x2d0 [ 3269.532668][T12935] ? save_stack+0xa9/0xd0 [ 3269.537001][T12935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3269.543256][T12935] vb2_create_bufs+0x4b5/0x8e0 [ 3269.548030][T12935] ? vb2_request_queue+0x120/0x120 [ 3269.553155][T12935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3269.559395][T12935] ? v4l2_prio_max+0x266/0x310 [ 3269.564160][T12935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3269.570414][T12935] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3269.575706][T12935] v4l_create_bufs+0x152/0x230 [ 3269.580474][T12935] __video_do_ioctl+0x805/0xd80 [ 3269.585335][T12935] ? v4l_s_fmt+0xb20/0xb20 [ 3269.589761][T12935] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3269.596000][T12935] ? _copy_from_user+0xdd/0x150 [ 3269.600855][T12935] video_usercopy+0x460/0x16b0 [ 3269.605625][T12935] ? v4l_s_fmt+0xb20/0xb20 [ 3269.610066][T12935] ? v4l_enumstd+0x70/0x70 [ 3269.614486][T12935] ? __fget+0x473/0x710 [ 3269.618641][T12935] ? find_held_lock+0x35/0x120 [ 3269.623405][T12935] ? __fget+0x473/0x710 [ 3269.627580][T12935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3269.633828][T12935] ? lock_downgrade+0xbe0/0xbe0 [ 3269.638679][T12935] ? kasan_check_read+0x11/0x20 [ 3269.643534][T12935] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3269.649530][T12935] ? rcu_read_unlock_special+0x380/0x380 [ 3269.655184][T12935] ? __fget+0x49a/0x710 [ 3269.659347][T12935] ? video_usercopy+0x16b0/0x16b0 [ 3269.664371][T12935] video_ioctl2+0x2d/0x35 [ 3269.668706][T12935] v4l2_ioctl+0x156/0x1b0 [ 3269.673035][T12935] ? video_devdata+0xa0/0xa0 [ 3269.677624][T12935] do_vfs_ioctl+0x107b/0x17d0 [ 3269.682307][T12935] ? ioctl_preallocate+0x2f0/0x2f0 [ 3269.687693][T12935] ? __fget_light+0x2db/0x420 [ 3269.692371][T12935] ? fget_raw+0x20/0x20 [ 3269.696526][T12935] ? put_timespec64+0x115/0x1b0 [ 3269.701408][T12935] ? nsecs_to_jiffies+0x30/0x30 [ 3269.706265][T12935] ? do_syscall_64+0x8c/0x800 [ 3269.710941][T12935] ? do_syscall_64+0x8c/0x800 [ 3269.715620][T12935] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3269.720912][T12935] ? security_file_ioctl+0x93/0xc0 [ 3269.726025][T12935] ksys_ioctl+0xab/0xd0 [ 3269.730186][T12935] __x64_sys_ioctl+0x73/0xb0 [ 3269.734780][T12935] do_syscall_64+0x1a3/0x800 [ 3269.739373][T12935] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3269.745003][T12935] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3269.750731][T12935] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3269.756285][T12935] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3269.762173][T12935] RIP: 0033:0x457ec9 [ 3269.766066][T12935] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3269.785840][T12935] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3269.794250][T12935] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3269.802220][T12935] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3269.810189][T12935] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3269.818337][T12935] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 [ 3269.826304][T12935] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3269.860099][T12935] Mem-Info: [ 3269.863409][T12935] active_anon:145913 inactive_anon:198 isolated_anon:0 [ 3269.863409][T12935] active_file:12621 inactive_file:58790 isolated_file:0 [ 3269.863409][T12935] unevictable:0 dirty:185 writeback:0 unstable:0 [ 3269.863409][T12935] slab_reclaimable:15580 slab_unreclaimable:115318 [ 3269.863409][T12935] mapped:55537 shmem:244 pagetables:1799 bounce:0 [ 3269.863409][T12935] free:1178819 free_pcp:623 free_cma:0 [ 3269.914284][T12935] Node 0 active_anon:583652kB inactive_anon:792kB active_file:50344kB inactive_file:235160kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222148kB dirty:740kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3269.953413][T12935] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3269.981062][T12935] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3270.008336][T12935] lowmem_reserve[]: 0 2535 2537 2537 [ 3270.013737][T12935] Node 0 DMA32 free:913620kB min:36080kB low:45100kB high:54120kB active_anon:583552kB inactive_anon:792kB active_file:50344kB inactive_file:235160kB unevictable:0kB writepending:740kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8032kB pagetables:7196kB bounce:0kB free_pcp:2268kB local_pcp:916kB free_cma:0kB [ 3270.044404][T12935] lowmem_reserve[]: 0 0 2 2 [ 3270.048952][T12935] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3270.076421][T12935] lowmem_reserve[]: 0 0 0 0 [ 3270.081334][T12935] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3270.110455][T12935] lowmem_reserve[]: 0 0 0 0 [ 3270.115083][T12935] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3270.130582][T12935] Node 0 DMA32: 661*4kB (UME) 23*8kB (U) 947*16kB (U) 1400*32kB (U) 627*64kB (UME) 111*128kB (UM) 49*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 36*2048kB (UM) 156*4096kB (UM) = 913532kB [ 3270.149017][T12935] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3270.164591][T12935] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3270.182360][T12935] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3270.191937][T12935] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3270.201271][T12935] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3270.210841][T12935] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3270.220182][T12935] 71661 total pagecache pages 20:32:46 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x8000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3270.224857][T12935] 0 pages in swap cache [ 3270.228989][T12935] Swap cache stats: add 0, delete 0, find 0/0 [ 3270.235080][T12935] Free swap = 0kB [ 3270.238802][T12935] Total swap = 0kB [ 3270.243148][T12935] 1965979 pages RAM [ 3270.246939][T12935] 0 pages HighMem/MovableOnly [ 3270.251688][T12935] 343989 pages reserved [ 3270.255841][T12935] 0 pages cma reserved [ 3270.260630][T12958] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3270.284653][T12958] CPU: 1 PID: 12958 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3270.293602][T12958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3270.303660][T12958] Call Trace: [ 3270.306995][T12958] dump_stack+0x1db/0x2d0 [ 3270.311343][T12958] ? dump_stack_print_info.cold+0x20/0x20 [ 3270.317124][T12958] ? idr_get_free+0xee0/0xee0 [ 3270.321814][T12958] ? kasan_kmalloc+0x9/0x10 [ 3270.326300][T12958] ? kmem_cache_alloc_trace+0x151/0x760 [ 3270.331846][T12958] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3270.336863][T12958] ? vb2_core_create_bufs+0x378/0x8e0 [ 3270.342237][T12958] warn_alloc.cold+0xc3/0x1c9 [ 3270.346896][T12958] ? zone_watermark_ok_safe+0x420/0x420 [ 3270.352463][T12958] ? print_usage_bug+0xd0/0xd0 [ 3270.357236][T12958] ? kasan_kmalloc+0x9/0x10 [ 3270.361727][T12958] ? __lock_is_held+0xb6/0x140 [ 3270.366504][T12958] ? add_lock_to_list.isra.0+0x450/0x450 [ 3270.372196][T12958] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3270.378420][T12958] ? check_preemption_disabled+0x48/0x290 [ 3270.384137][T12958] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3270.389234][T12958] __vmalloc_node_range+0x57a/0x910 [ 3270.394413][T12958] ? __lock_is_held+0xb6/0x140 [ 3270.399169][T12958] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3270.404267][T12958] ? vfree_atomic+0xe0/0xe0 [ 3270.408775][T12958] ? rcu_read_lock_sched_held+0x110/0x130 [ 3270.414485][T12958] ? kmem_cache_alloc_trace+0x354/0x760 [ 3270.420023][T12958] ? __lock_is_held+0xb6/0x140 [ 3270.424782][T12958] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3270.429877][T12958] vmalloc_user+0x6b/0x90 [ 3270.434209][T12958] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3270.439358][T12958] vb2_vmalloc_alloc+0x134/0x3a0 [ 3270.444291][T12958] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3270.450083][T12958] ? lock_acquire+0x1db/0x570 [ 3270.454752][T12958] ? __vb2_queue_alloc+0xf5/0xf40 [ 3270.459767][T12958] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3270.465551][T12958] __vb2_queue_alloc+0x5a6/0xf40 [ 3270.470491][T12958] ? vimc_cap_get_format+0x120/0x120 [ 3270.475757][T12958] vb2_core_create_bufs+0x378/0x8e0 [ 3270.480937][T12958] ? __vb2_queue_alloc+0xf40/0xf40 [ 3270.486032][T12958] ? mutex_trylock+0x2d0/0x2d0 [ 3270.490781][T12958] ? save_stack+0xa9/0xd0 [ 3270.495098][T12958] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3270.501324][T12958] vb2_create_bufs+0x4b5/0x8e0 [ 3270.506076][T12958] ? vb2_request_queue+0x120/0x120 [ 3270.511172][T12958] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3270.517394][T12958] ? v4l2_prio_max+0x266/0x310 [ 3270.522139][T12958] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3270.528382][T12958] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3270.533674][T12958] v4l_create_bufs+0x152/0x230 [ 3270.538423][T12958] __video_do_ioctl+0x805/0xd80 [ 3270.543277][T12958] ? v4l_s_fmt+0xb20/0xb20 [ 3270.547729][T12958] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3270.553970][T12958] ? _copy_from_user+0xdd/0x150 [ 3270.558806][T12958] video_usercopy+0x460/0x16b0 [ 3270.563578][T12958] ? v4l_s_fmt+0xb20/0xb20 [ 3270.568001][T12958] ? v4l_enumstd+0x70/0x70 [ 3270.572406][T12958] ? __fget+0x473/0x710 [ 3270.576569][T12958] ? find_held_lock+0x35/0x120 [ 3270.581320][T12958] ? __fget+0x473/0x710 [ 3270.585459][T12958] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3270.591686][T12958] ? lock_downgrade+0xbe0/0xbe0 [ 3270.596516][T12958] ? kasan_check_read+0x11/0x20 [ 3270.601350][T12958] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3270.607323][T12958] ? rcu_read_unlock_special+0x380/0x380 [ 3270.612962][T12958] ? __fget+0x49a/0x710 [ 3270.617116][T12958] ? video_usercopy+0x16b0/0x16b0 [ 3270.622126][T12958] video_ioctl2+0x2d/0x35 [ 3270.626451][T12958] v4l2_ioctl+0x156/0x1b0 [ 3270.630779][T12958] ? video_devdata+0xa0/0xa0 [ 3270.635349][T12958] do_vfs_ioctl+0x107b/0x17d0 [ 3270.640009][T12958] ? ioctl_preallocate+0x2f0/0x2f0 [ 3270.645106][T12958] ? __fget_light+0x2db/0x420 [ 3270.649766][T12958] ? fget_raw+0x20/0x20 [ 3270.653905][T12958] ? put_timespec64+0x115/0x1b0 [ 3270.658747][T12958] ? _raw_spin_unlock_irq+0x28/0x90 [ 3270.663935][T12958] ? nsecs_to_jiffies+0x30/0x30 [ 3270.668772][T12958] ? do_syscall_64+0x8c/0x800 [ 3270.673456][T12958] ? do_syscall_64+0x8c/0x800 [ 3270.678128][T12958] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3270.683424][T12958] ? security_file_ioctl+0x93/0xc0 [ 3270.688527][T12958] ksys_ioctl+0xab/0xd0 [ 3270.692668][T12958] __x64_sys_ioctl+0x73/0xb0 [ 3270.697241][T12958] do_syscall_64+0x1a3/0x800 [ 3270.701841][T12958] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3270.707458][T12958] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3270.713160][T12958] ? __switch_to_asm+0x34/0x70 [ 3270.717919][T12958] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3270.723493][T12958] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3270.729375][T12958] RIP: 0033:0x457ec9 [ 3270.733268][T12958] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3270.752849][T12958] RSP: 002b:00007fed9220ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3270.761246][T12958] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3270.769218][T12958] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3270.777192][T12958] RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000 [ 3270.785157][T12958] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed9220f6d4 [ 3270.793109][T12958] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3270.802829][T13000] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3270.818070][T13000] CPU: 0 PID: 13000 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3270.827037][T13000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3270.837118][T13000] Call Trace: [ 3270.840415][T13000] dump_stack+0x1db/0x2d0 [ 3270.844753][T13000] ? dump_stack_print_info.cold+0x20/0x20 [ 3270.850473][T13000] ? idr_get_free+0xee0/0xee0 [ 3270.855149][T13000] ? kasan_kmalloc+0x9/0x10 [ 3270.859651][T13000] ? kmem_cache_alloc_trace+0x151/0x760 [ 3270.865195][T13000] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3270.870216][T13000] ? vb2_core_create_bufs+0x378/0x8e0 [ 3270.875604][T13000] warn_alloc.cold+0xc3/0x1c9 [ 3270.880284][T13000] ? zone_watermark_ok_safe+0x420/0x420 [ 3270.885828][T13000] ? print_usage_bug+0xd0/0xd0 [ 3270.890601][T13000] ? kasan_kmalloc+0x9/0x10 [ 3270.895108][T13000] ? __lock_is_held+0xb6/0x140 [ 3270.899871][T13000] ? add_lock_to_list.isra.0+0x450/0x450 [ 3270.905503][T13000] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3270.911743][T13000] ? check_preemption_disabled+0x48/0x290 [ 3270.917466][T13000] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3270.922623][T13000] __vmalloc_node_range+0x57a/0x910 [ 3270.927835][T13000] ? __lock_is_held+0xb6/0x140 [ 3270.932608][T13000] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3270.937726][T13000] ? vfree_atomic+0xe0/0xe0 [ 3270.942236][T13000] ? rcu_read_lock_sched_held+0x110/0x130 [ 3270.947960][T13000] ? kmem_cache_alloc_trace+0x354/0x760 [ 3270.953503][T13000] ? __lock_is_held+0xb6/0x140 [ 3270.958266][T13000] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3270.963379][T13000] vmalloc_user+0x6b/0x90 [ 3270.967713][T13000] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3270.972822][T13000] vb2_vmalloc_alloc+0x134/0x3a0 [ 3270.977762][T13000] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3270.983599][T13000] ? lock_acquire+0x1db/0x570 [ 3270.988279][T13000] ? __vb2_queue_alloc+0xf5/0xf40 [ 3270.993304][T13000] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3270.999109][T13000] __vb2_queue_alloc+0x5a6/0xf40 [ 3271.004065][T13000] ? vimc_cap_get_format+0x120/0x120 [ 3271.009351][T13000] vb2_core_create_bufs+0x378/0x8e0 [ 3271.014552][T13000] ? __vb2_queue_alloc+0xf40/0xf40 [ 3271.019680][T13000] ? mutex_trylock+0x2d0/0x2d0 [ 3271.024448][T13000] ? save_stack+0xa9/0xd0 [ 3271.028774][T13000] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3271.035016][T13000] vb2_create_bufs+0x4b5/0x8e0 [ 3271.039786][T13000] ? vb2_request_queue+0x120/0x120 [ 3271.044900][T13000] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3271.051140][T13000] ? v4l2_prio_max+0x266/0x310 [ 3271.055918][T13000] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3271.062164][T13000] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3271.067455][T13000] v4l_create_bufs+0x152/0x230 [ 3271.072221][T13000] __video_do_ioctl+0x805/0xd80 [ 3271.077083][T13000] ? v4l_s_fmt+0xb20/0xb20 [ 3271.081504][T13000] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3271.087744][T13000] ? _copy_from_user+0xdd/0x150 [ 3271.092609][T13000] video_usercopy+0x460/0x16b0 [ 3271.097373][T13000] ? v4l_s_fmt+0xb20/0xb20 [ 3271.101796][T13000] ? v4l_enumstd+0x70/0x70 [ 3271.106212][T13000] ? __fget+0x473/0x710 [ 3271.110382][T13000] ? find_held_lock+0x35/0x120 [ 3271.115143][T13000] ? __fget+0x473/0x710 [ 3271.119302][T13000] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3271.125549][T13000] ? lock_downgrade+0xbe0/0xbe0 [ 3271.130414][T13000] ? kasan_check_read+0x11/0x20 [ 3271.135263][T13000] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3271.141243][T13000] ? rcu_read_unlock_special+0x380/0x380 [ 3271.146883][T13000] ? __fget+0x49a/0x710 [ 3271.151044][T13000] ? video_usercopy+0x16b0/0x16b0 [ 3271.156066][T13000] video_ioctl2+0x2d/0x35 [ 3271.160396][T13000] v4l2_ioctl+0x156/0x1b0 [ 3271.164727][T13000] ? video_devdata+0xa0/0xa0 [ 3271.169318][T13000] do_vfs_ioctl+0x107b/0x17d0 [ 3271.174005][T13000] ? ioctl_preallocate+0x2f0/0x2f0 [ 3271.179119][T13000] ? __fget_light+0x2db/0x420 [ 3271.183799][T13000] ? fget_raw+0x20/0x20 [ 3271.187962][T13000] ? put_timespec64+0x115/0x1b0 [ 3271.192811][T13000] ? nsecs_to_jiffies+0x30/0x30 [ 3271.197665][T13000] ? do_syscall_64+0x8c/0x800 [ 3271.202340][T13000] ? do_syscall_64+0x8c/0x800 [ 3271.207020][T13000] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3271.212310][T13000] ? security_file_ioctl+0x93/0xc0 [ 3271.217427][T13000] ksys_ioctl+0xab/0xd0 [ 3271.221603][T13000] __x64_sys_ioctl+0x73/0xb0 [ 3271.226196][T13000] do_syscall_64+0x1a3/0x800 [ 3271.230793][T13000] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3271.236424][T13000] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3271.242150][T13000] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3271.247726][T13000] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3271.253614][T13000] RIP: 0033:0x457ec9 [ 3271.257508][T13000] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3271.277117][T13000] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3271.285578][T13000] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3271.293548][T13000] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3271.301567][T13000] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3271.309574][T13000] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3271.317548][T13000] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3271.329909][T13000] warn_alloc_show_mem: 1 callbacks suppressed [ 3271.329913][T13000] Mem-Info: 20:32:47 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x6000000000000000, 0xffffffffffffffff]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:32:47 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000050001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:32:47 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:32:47 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}], [], 0xffffff7f00000000}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:32:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x3]}) [ 3271.349185][T13000] active_anon:145386 inactive_anon:201 isolated_anon:0 [ 3271.349185][T13000] active_file:12621 inactive_file:58796 isolated_file:0 [ 3271.349185][T13000] unevictable:0 dirty:167 writeback:0 unstable:0 [ 3271.349185][T13000] slab_reclaimable:15580 slab_unreclaimable:115050 [ 3271.349185][T13000] mapped:55537 shmem:244 pagetables:1779 bounce:0 [ 3271.349185][T13000] free:1179761 free_pcp:562 free_cma:0 [ 3271.399230][T13000] Node 0 active_anon:581544kB inactive_anon:804kB active_file:50344kB inactive_file:235184kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222148kB dirty:668kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:32:48 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3271.487793][T13000] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3271.516456][T13005] kvm [13004]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x3 [ 3271.535831][T13000] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3271.566959][T13026] kvm [13004]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x3 [ 3271.578758][T13000] lowmem_reserve[]: 0 2535 2537 2537 [ 3271.588852][T13000] Node 0 DMA32 free:905564kB min:36080kB low:45100kB high:54120kB active_anon:592372kB inactive_anon:796kB active_file:50344kB inactive_file:235256kB unevictable:0kB writepending:788kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8672kB pagetables:7556kB bounce:0kB free_pcp:1360kB local_pcp:688kB free_cma:0kB [ 3271.619859][T13007] XFS (loop2): Invalid superblock magic number [ 3271.626393][T13000] lowmem_reserve[]: 0 0 2 2 [ 3271.634854][T13000] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3271.663405][T13000] lowmem_reserve[]: 0 0 0 0 [ 3271.691957][T13000] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:32:48 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:32:48 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000060001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:32:48 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}], [], 0xffffffff00000000}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3271.805668][T13000] lowmem_reserve[]: 0 0 0 0 [ 3271.836028][T13000] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB 20:32:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x4]}) [ 3271.892155][T13000] Node 0 DMA32: 593*4kB (UME) 69*8kB (UM) 866*16kB (UM) 1397*32kB (UM) 622*64kB (UME) 121*128kB (UM) 49*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 34*2048kB (U) 156*4096kB (UM) = 909100kB [ 3271.914916][T13000] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB 20:32:48 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3271.950007][T13000] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3271.969692][T13000] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3271.979513][T13000] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3272.018197][T13000] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3272.062876][T13000] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3272.096079][T13038] XFS (loop2): Invalid superblock magic number [ 3272.112864][T13047] kvm [13043]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x4 [ 3272.116890][T13000] 71679 total pagecache pages [ 3272.136518][T13000] 0 pages in swap cache [ 3272.147887][T13000] Swap cache stats: add 0, delete 0, find 0/0 [ 3272.160199][T13062] kvm [13043]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x4 [ 3272.163496][T13000] Free swap = 0kB [ 3272.176954][T13000] Total swap = 0kB [ 3272.200005][T13000] 1965979 pages RAM [ 3272.204246][T13000] 0 pages HighMem/MovableOnly [ 3272.209045][T13000] 343989 pages reserved [ 3272.213504][T13000] 0 pages cma reserved [ 3272.222795][T13018] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3272.269515][T13018] CPU: 1 PID: 13018 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3272.278512][T13018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3272.288575][T13018] Call Trace: [ 3272.291880][T13018] dump_stack+0x1db/0x2d0 [ 3272.296251][T13018] ? dump_stack_print_info.cold+0x20/0x20 [ 3272.301975][T13018] ? idr_get_free+0xee0/0xee0 [ 3272.306658][T13018] ? kasan_kmalloc+0x9/0x10 [ 3272.311167][T13018] ? kmem_cache_alloc_trace+0x151/0x760 [ 3272.316719][T13018] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3272.321746][T13018] ? vb2_core_create_bufs+0x378/0x8e0 [ 3272.327121][T13018] warn_alloc.cold+0xc3/0x1c9 [ 3272.331802][T13018] ? zone_watermark_ok_safe+0x420/0x420 [ 3272.337369][T13018] ? print_usage_bug+0xd0/0xd0 [ 3272.342163][T13018] ? kasan_kmalloc+0x9/0x10 [ 3272.346674][T13018] ? __lock_is_held+0xb6/0x140 [ 3272.351450][T13018] ? add_lock_to_list.isra.0+0x450/0x450 [ 3272.357095][T13018] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3272.363357][T13018] ? check_preemption_disabled+0x48/0x290 20:32:48 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x10000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3272.369088][T13018] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3272.374248][T13018] __vmalloc_node_range+0x57a/0x910 [ 3272.379538][T13018] ? __lock_is_held+0xb6/0x140 [ 3272.384318][T13018] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3272.389444][T13018] ? vfree_atomic+0xe0/0xe0 [ 3272.393954][T13018] ? rcu_read_lock_sched_held+0x110/0x130 [ 3272.399682][T13018] ? kmem_cache_alloc_trace+0x354/0x760 [ 3272.405232][T13018] ? __lock_is_held+0xb6/0x140 [ 3272.410000][T13018] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3272.410021][T13018] vmalloc_user+0x6b/0x90 [ 3272.410037][T13018] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3272.410054][T13018] vb2_vmalloc_alloc+0x134/0x3a0 [ 3272.410082][T13018] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3272.410104][T13018] ? lock_acquire+0x1db/0x570 [ 3272.419528][T13018] ? __vb2_queue_alloc+0xf5/0xf40 [ 3272.419547][T13018] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3272.419571][T13018] __vb2_queue_alloc+0x5a6/0xf40 [ 3272.419606][T13018] ? vimc_cap_get_format+0x120/0x120 [ 3272.419621][T13018] vb2_core_create_bufs+0x378/0x8e0 [ 3272.419641][T13018] ? __vb2_queue_alloc+0xf40/0xf40 [ 3272.419658][T13018] ? mutex_trylock+0x2d0/0x2d0 [ 3272.419680][T13018] ? save_stack+0xa9/0xd0 [ 3272.419697][T13018] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3272.419717][T13018] vb2_create_bufs+0x4b5/0x8e0 [ 3272.419738][T13018] ? vb2_request_queue+0x120/0x120 [ 3272.419758][T13018] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3272.429780][T13018] ? v4l2_prio_max+0x266/0x310 [ 3272.429798][T13018] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3272.429818][T13018] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3272.429841][T13018] v4l_create_bufs+0x152/0x230 [ 3272.429862][T13018] __video_do_ioctl+0x805/0xd80 [ 3272.429889][T13018] ? v4l_s_fmt+0xb20/0xb20 [ 3272.429910][T13018] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3272.445375][T13018] ? _copy_from_user+0xdd/0x150 [ 3272.445398][T13018] video_usercopy+0x460/0x16b0 [ 3272.445416][T13018] ? v4l_s_fmt+0xb20/0xb20 [ 3272.445440][T13018] ? v4l_enumstd+0x70/0x70 [ 3272.557952][T13018] ? __fget+0x473/0x710 [ 3272.562118][T13018] ? find_held_lock+0x35/0x120 [ 3272.566876][T13018] ? __fget+0x473/0x710 [ 3272.571028][T13018] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3272.577278][T13018] ? lock_downgrade+0xbe0/0xbe0 [ 3272.582162][T13018] ? kasan_check_read+0x11/0x20 [ 3272.587039][T13018] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3272.593036][T13018] ? rcu_read_unlock_special+0x380/0x380 [ 3272.598688][T13018] ? __fget+0x49a/0x710 [ 3272.602847][T13018] ? video_usercopy+0x16b0/0x16b0 [ 3272.607865][T13018] video_ioctl2+0x2d/0x35 [ 3272.612205][T13018] v4l2_ioctl+0x156/0x1b0 [ 3272.616530][T13018] ? video_devdata+0xa0/0xa0 [ 3272.621125][T13018] do_vfs_ioctl+0x107b/0x17d0 [ 3272.625799][T13018] ? ioctl_preallocate+0x2f0/0x2f0 [ 3272.630908][T13018] ? __fget_light+0x2db/0x420 [ 3272.635590][T13018] ? fget_raw+0x20/0x20 [ 3272.639742][T13018] ? put_timespec64+0x115/0x1b0 [ 3272.644763][T13018] ? nsecs_to_jiffies+0x30/0x30 [ 3272.649615][T13018] ? do_syscall_64+0x8c/0x800 [ 3272.654285][T13018] ? do_syscall_64+0x8c/0x800 [ 3272.658946][T13018] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3272.664217][T13018] ? security_file_ioctl+0x93/0xc0 [ 3272.669323][T13018] ksys_ioctl+0xab/0xd0 [ 3272.673475][T13018] __x64_sys_ioctl+0x73/0xb0 [ 3272.678052][T13018] do_syscall_64+0x1a3/0x800 [ 3272.682643][T13018] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3272.688269][T13018] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3272.693977][T13018] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3272.699529][T13018] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3272.705438][T13018] RIP: 0033:0x457ec9 [ 3272.709324][T13018] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3272.728917][T13018] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3272.737306][T13018] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3272.745257][T13018] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3272.753214][T13018] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3272.761188][T13018] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 [ 3272.769164][T13018] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3272.779043][T13018] Mem-Info: [ 3272.782665][T13018] active_anon:145897 inactive_anon:203 isolated_anon:0 [ 3272.782665][T13018] active_file:12621 inactive_file:58825 isolated_file:0 [ 3272.782665][T13018] unevictable:0 dirty:218 writeback:0 unstable:0 [ 3272.782665][T13018] slab_reclaimable:15594 slab_unreclaimable:115400 [ 3272.782665][T13018] mapped:55537 shmem:244 pagetables:1786 bounce:0 [ 3272.782665][T13018] free:1178797 free_pcp:652 free_cma:0 [ 3272.820877][T13018] Node 0 active_anon:583588kB inactive_anon:812kB active_file:50344kB inactive_file:235300kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222148kB dirty:872kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3272.849842][T13018] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3272.876357][T13018] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3272.903721][T13018] lowmem_reserve[]: 0 2535 2537 2537 [ 3272.909015][T13018] Node 0 DMA32 free:912916kB min:36080kB low:45100kB high:54120kB active_anon:583588kB inactive_anon:812kB active_file:50344kB inactive_file:235300kB unevictable:0kB writepending:872kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8000kB pagetables:7144kB bounce:0kB free_pcp:2596kB local_pcp:1404kB free_cma:0kB [ 3272.939691][T13018] lowmem_reserve[]: 0 0 2 2 [ 3272.944228][T13018] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3272.971871][T13018] lowmem_reserve[]: 0 0 0 0 [ 3272.976390][T13018] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3273.004778][T13018] lowmem_reserve[]: 0 0 0 0 [ 3273.009352][T13018] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3273.023724][T13018] Node 0 DMA32: 631*4kB (UME) 135*8kB (UM) 813*16kB (UM) 1407*32kB (UM) 620*64kB (UME) 119*128kB (UM) 49*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 36*2048kB (UM) 156*4096kB (UM) = 912964kB [ 3273.042354][T13018] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3273.057832][T13018] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3273.075592][T13018] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3273.085204][T13018] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3273.094543][T13018] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3273.104170][T13018] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3273.113485][T13018] 71689 total pagecache pages [ 3273.118160][T13018] 0 pages in swap cache [ 3273.122381][T13018] Swap cache stats: add 0, delete 0, find 0/0 [ 3273.128449][T13018] Free swap = 0kB [ 3273.132227][T13018] Total swap = 0kB [ 3273.135965][T13018] 1965979 pages RAM [ 3273.139824][T13018] 0 pages HighMem/MovableOnly [ 3273.144502][T13018] 343989 pages reserved [ 3273.148647][T13018] 0 pages cma reserved [ 3273.152943][T13068] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3273.167102][T13068] CPU: 1 PID: 13068 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3273.176030][T13068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3273.186079][T13068] Call Trace: [ 3273.189377][T13068] dump_stack+0x1db/0x2d0 [ 3273.193706][T13068] ? dump_stack_print_info.cold+0x20/0x20 [ 3273.199414][T13068] ? idr_get_free+0xee0/0xee0 [ 3273.204099][T13068] ? kasan_kmalloc+0x9/0x10 [ 3273.208597][T13068] ? kmem_cache_alloc_trace+0x151/0x760 [ 3273.214127][T13068] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3273.219143][T13068] ? vb2_core_create_bufs+0x378/0x8e0 [ 3273.224526][T13068] warn_alloc.cold+0xc3/0x1c9 [ 3273.229222][T13068] ? zone_watermark_ok_safe+0x420/0x420 [ 3273.234771][T13068] ? print_usage_bug+0xd0/0xd0 [ 3273.239537][T13068] ? kasan_kmalloc+0x9/0x10 [ 3273.244061][T13068] ? __lock_is_held+0xb6/0x140 [ 3273.248825][T13068] ? add_lock_to_list.isra.0+0x450/0x450 [ 3273.254438][T13068] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3273.260668][T13068] ? check_preemption_disabled+0x48/0x290 [ 3273.266381][T13068] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3273.271475][T13068] __vmalloc_node_range+0x57a/0x910 [ 3273.276674][T13068] ? __lock_is_held+0xb6/0x140 [ 3273.281451][T13068] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3273.286608][T13068] ? vfree_atomic+0xe0/0xe0 [ 3273.291098][T13068] ? rcu_read_lock_sched_held+0x110/0x130 [ 3273.296799][T13068] ? kmem_cache_alloc_trace+0x354/0x760 [ 3273.302335][T13068] ? __lock_is_held+0xb6/0x140 [ 3273.307100][T13068] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3273.312194][T13068] vmalloc_user+0x6b/0x90 [ 3273.316513][T13068] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3273.321620][T13068] vb2_vmalloc_alloc+0x134/0x3a0 [ 3273.326555][T13068] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3273.332352][T13068] ? lock_acquire+0x1db/0x570 [ 3273.337010][T13068] ? __vb2_queue_alloc+0xf5/0xf40 [ 3273.342028][T13068] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3273.347833][T13068] __vb2_queue_alloc+0x5a6/0xf40 [ 3273.352763][T13068] ? vimc_cap_get_format+0x120/0x120 [ 3273.358031][T13068] vb2_core_create_bufs+0x378/0x8e0 [ 3273.363226][T13068] ? __vb2_queue_alloc+0xf40/0xf40 [ 3273.368332][T13068] ? mutex_trylock+0x2d0/0x2d0 [ 3273.373086][T13068] ? save_stack+0xa9/0xd0 [ 3273.377397][T13068] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3273.383633][T13068] vb2_create_bufs+0x4b5/0x8e0 [ 3273.388392][T13068] ? vb2_request_queue+0x120/0x120 [ 3273.393501][T13068] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3273.399748][T13068] ? v4l2_prio_max+0x266/0x310 [ 3273.404505][T13068] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3273.410728][T13068] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3273.415997][T13068] v4l_create_bufs+0x152/0x230 [ 3273.420758][T13068] __video_do_ioctl+0x805/0xd80 [ 3273.425609][T13068] ? v4l_s_fmt+0xb20/0xb20 [ 3273.430023][T13068] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3273.436261][T13068] ? _copy_from_user+0xdd/0x150 [ 3273.441114][T13068] video_usercopy+0x460/0x16b0 [ 3273.445874][T13068] ? v4l_s_fmt+0xb20/0xb20 [ 3273.450281][T13068] ? v4l_enumstd+0x70/0x70 [ 3273.454683][T13068] ? __fget+0x473/0x710 [ 3273.458825][T13068] ? find_held_lock+0x35/0x120 [ 3273.463597][T13068] ? __fget+0x473/0x710 [ 3273.467763][T13068] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3273.474000][T13068] ? lock_downgrade+0xbe0/0xbe0 [ 3273.478842][T13068] ? kasan_check_read+0x11/0x20 [ 3273.483703][T13068] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3273.489678][T13068] ? rcu_read_unlock_special+0x380/0x380 [ 3273.495328][T13068] ? __fget+0x49a/0x710 [ 3273.499483][T13068] ? video_usercopy+0x16b0/0x16b0 [ 3273.504500][T13068] video_ioctl2+0x2d/0x35 [ 3273.508812][T13068] v4l2_ioctl+0x156/0x1b0 [ 3273.513124][T13068] ? video_devdata+0xa0/0xa0 [ 3273.517696][T13068] do_vfs_ioctl+0x107b/0x17d0 [ 3273.522372][T13068] ? ioctl_preallocate+0x2f0/0x2f0 [ 3273.527492][T13068] ? __fget_light+0x2db/0x420 [ 3273.532176][T13068] ? fget_raw+0x20/0x20 [ 3273.536326][T13068] ? put_timespec64+0x115/0x1b0 [ 3273.541170][T13068] ? nsecs_to_jiffies+0x30/0x30 [ 3273.546019][T13068] ? do_syscall_64+0x8c/0x800 [ 3273.550691][T13068] ? do_syscall_64+0x8c/0x800 [ 3273.555389][T13068] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3273.560670][T13068] ? security_file_ioctl+0x93/0xc0 [ 3273.565788][T13068] ksys_ioctl+0xab/0xd0 [ 3273.569959][T13068] __x64_sys_ioctl+0x73/0xb0 [ 3273.574546][T13068] do_syscall_64+0x1a3/0x800 [ 3273.579144][T13068] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3273.584772][T13068] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3273.590489][T13068] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3273.596049][T13068] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3273.601935][T13068] RIP: 0033:0x457ec9 [ 3273.605824][T13068] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3273.625411][T13068] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3273.633813][T13068] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3273.641782][T13068] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3273.649754][T13068] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3273.657717][T13068] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3273.665670][T13068] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3273.674307][T13023] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3273.688669][T13023] CPU: 1 PID: 13023 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3273.697716][T13023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3273.707751][T13023] Call Trace: [ 3273.711039][T13023] dump_stack+0x1db/0x2d0 [ 3273.715370][T13023] ? dump_stack_print_info.cold+0x20/0x20 [ 3273.721084][T13023] ? idr_get_free+0xee0/0xee0 [ 3273.725756][T13023] ? kasan_kmalloc+0x9/0x10 [ 3273.730252][T13023] ? kmem_cache_alloc_trace+0x151/0x760 [ 3273.735793][T13023] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3273.740809][T13023] ? vb2_core_create_bufs+0x378/0x8e0 [ 3273.746205][T13023] warn_alloc.cold+0xc3/0x1c9 [ 3273.750877][T13023] ? zone_watermark_ok_safe+0x420/0x420 [ 3273.756418][T13023] ? print_usage_bug+0xd0/0xd0 [ 3273.761183][T13023] ? kasan_kmalloc+0x9/0x10 [ 3273.765684][T13023] ? __lock_is_held+0xb6/0x140 [ 3273.770465][T13023] ? add_lock_to_list.isra.0+0x450/0x450 [ 3273.776098][T13023] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3273.782331][T13023] ? check_preemption_disabled+0x48/0x290 [ 3273.788045][T13023] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3273.793146][T13023] __vmalloc_node_range+0x57a/0x910 [ 3273.798331][T13023] ? __lock_is_held+0xb6/0x140 [ 3273.803094][T13023] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3273.808223][T13023] ? vfree_atomic+0xe0/0xe0 [ 3273.812710][T13023] ? rcu_read_lock_sched_held+0x110/0x130 [ 3273.818412][T13023] ? kmem_cache_alloc_trace+0x354/0x760 [ 3273.823955][T13023] ? __lock_is_held+0xb6/0x140 [ 3273.828701][T13023] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3273.833797][T13023] vmalloc_user+0x6b/0x90 [ 3273.838111][T13023] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3273.843237][T13023] vb2_vmalloc_alloc+0x134/0x3a0 [ 3273.848160][T13023] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3273.853945][T13023] ? lock_acquire+0x1db/0x570 [ 3273.858629][T13023] ? __vb2_queue_alloc+0xf5/0xf40 [ 3273.863651][T13023] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3273.869450][T13023] __vb2_queue_alloc+0x5a6/0xf40 [ 3273.874392][T13023] ? vimc_cap_get_format+0x120/0x120 [ 3273.879670][T13023] vb2_core_create_bufs+0x378/0x8e0 [ 3273.884864][T13023] ? __vb2_queue_alloc+0xf40/0xf40 [ 3273.889968][T13023] ? mutex_trylock+0x2d0/0x2d0 [ 3273.894728][T13023] ? save_stack+0xa9/0xd0 [ 3273.899040][T13023] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3273.905275][T13023] vb2_create_bufs+0x4b5/0x8e0 [ 3273.910035][T13023] ? vb2_request_queue+0x120/0x120 [ 3273.915149][T13023] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3273.921389][T13023] ? v4l2_prio_max+0x266/0x310 [ 3273.926145][T13023] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3273.932391][T13023] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3273.937672][T13023] v4l_create_bufs+0x152/0x230 [ 3273.942433][T13023] __video_do_ioctl+0x805/0xd80 [ 3273.947281][T13023] ? v4l_s_fmt+0xb20/0xb20 [ 3273.951697][T13023] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3273.957941][T13023] ? _copy_from_user+0xdd/0x150 [ 3273.962793][T13023] video_usercopy+0x460/0x16b0 [ 3273.967543][T13023] ? v4l_s_fmt+0xb20/0xb20 [ 3273.971970][T13023] ? v4l_enumstd+0x70/0x70 [ 3273.976381][T13023] ? __fget+0x473/0x710 [ 3273.980528][T13023] ? find_held_lock+0x35/0x120 [ 3273.985297][T13023] ? __fget+0x473/0x710 [ 3273.989446][T13023] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3273.995704][T13023] ? lock_downgrade+0xbe0/0xbe0 [ 3274.000547][T13023] ? kasan_check_read+0x11/0x20 [ 3274.005412][T13023] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3274.011402][T13023] ? rcu_read_unlock_special+0x380/0x380 [ 3274.017034][T13023] ? __fget+0x49a/0x710 [ 3274.021187][T13023] ? video_usercopy+0x16b0/0x16b0 [ 3274.026207][T13023] video_ioctl2+0x2d/0x35 [ 3274.030530][T13023] v4l2_ioctl+0x156/0x1b0 [ 3274.034870][T13023] ? video_devdata+0xa0/0xa0 [ 3274.039467][T13023] do_vfs_ioctl+0x107b/0x17d0 [ 3274.044144][T13023] ? ioctl_preallocate+0x2f0/0x2f0 [ 3274.049254][T13023] ? __fget_light+0x2db/0x420 [ 3274.053926][T13023] ? fget_raw+0x20/0x20 [ 3274.058064][T13023] ? put_timespec64+0x115/0x1b0 [ 3274.062901][T13023] ? nsecs_to_jiffies+0x30/0x30 [ 3274.067748][T13023] ? do_syscall_64+0x8c/0x800 [ 3274.072430][T13023] ? do_syscall_64+0x8c/0x800 [ 3274.077127][T13023] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3274.082406][T13023] ? security_file_ioctl+0x93/0xc0 [ 3274.087524][T13023] ksys_ioctl+0xab/0xd0 [ 3274.091716][T13023] __x64_sys_ioctl+0x73/0xb0 [ 3274.096301][T13023] do_syscall_64+0x1a3/0x800 [ 3274.100887][T13023] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3274.106861][T13023] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3274.112579][T13023] ? __switch_to_asm+0x34/0x70 [ 3274.117341][T13023] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3274.122871][T13023] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3274.128759][T13023] RIP: 0033:0x457ec9 [ 3274.132646][T13023] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3274.152261][T13023] RSP: 002b:00007fed9222fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3274.160672][T13023] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3274.168637][T13023] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3274.176611][T13023] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 3274.184594][T13023] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922306d4 [ 3274.192576][T13023] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3274.202274][T13023] warn_alloc_show_mem: 1 callbacks suppressed [ 3274.202280][T13023] Mem-Info: [ 3274.211684][T13023] active_anon:145907 inactive_anon:203 isolated_anon:0 [ 3274.211684][T13023] active_file:12621 inactive_file:58830 isolated_file:0 [ 3274.211684][T13023] unevictable:0 dirty:225 writeback:0 unstable:0 [ 3274.211684][T13023] slab_reclaimable:15594 slab_unreclaimable:115396 [ 3274.211684][T13023] mapped:55537 shmem:244 pagetables:1786 bounce:0 [ 3274.211684][T13023] free:1178801 free_pcp:614 free_cma:0 [ 3274.250086][T13023] Node 0 active_anon:583628kB inactive_anon:812kB active_file:50344kB inactive_file:235320kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222148kB dirty:900kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3274.279167][T13023] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3274.305679][T13023] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3274.332590][T13023] lowmem_reserve[]: 0 2535 2537 2537 [ 3274.337880][T13023] Node 0 DMA32 free:912932kB min:36080kB low:45100kB high:54120kB active_anon:583628kB inactive_anon:812kB active_file:50344kB inactive_file:235320kB unevictable:0kB writepending:900kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8032kB pagetables:7144kB bounce:0kB free_pcp:2448kB local_pcp:1404kB free_cma:0kB [ 3274.368495][T13023] lowmem_reserve[]: 0 0 2 2 [ 3274.373034][T13023] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3274.400479][T13023] lowmem_reserve[]: 0 0 0 0 [ 3274.404990][T13023] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3274.433430][T13023] lowmem_reserve[]: 0 0 0 0 [ 3274.437952][T13023] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3274.452441][T13023] Node 0 DMA32: 631*4kB (UME) 135*8kB (UM) 813*16kB (UM) 1408*32kB (UM) 620*64kB (UME) 119*128kB (UM) 49*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 36*2048kB (UM) 156*4096kB (UM) = 912996kB [ 3274.471142][T13023] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3274.486608][T13023] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3274.504435][T13023] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3274.514048][T13023] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3274.523413][T13023] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3274.533015][T13023] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3274.542323][T13023] 71695 total pagecache pages [ 3274.546986][T13023] 0 pages in swap cache [ 3274.551193][T13023] Swap cache stats: add 0, delete 0, find 0/0 [ 3274.557256][T13023] Free swap = 0kB [ 3274.561017][T13023] Total swap = 0kB [ 3274.564737][T13023] 1965979 pages RAM [ 3274.568521][T13023] 0 pages HighMem/MovableOnly [ 3274.573231][T13023] 343989 pages reserved 20:32:51 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:32:51 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000070001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:32:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x5]}) 20:32:51 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x6800000000000000, 0xffffffffffffffff]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:32:51 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}], [], 0xffffffffc0000001}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:32:51 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x40000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3274.577388][T13023] 0 pages cma reserved 20:32:51 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3274.722174][T13088] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3274.742650][T13081] kvm [13077]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x5 [ 3274.755755][T13088] CPU: 1 PID: 13088 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3274.764703][T13088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3274.764710][T13088] Call Trace: [ 3274.764736][T13088] dump_stack+0x1db/0x2d0 [ 3274.764762][T13088] ? dump_stack_print_info.cold+0x20/0x20 [ 3274.764780][T13088] ? idr_get_free+0xee0/0xee0 [ 3274.764800][T13088] ? kasan_kmalloc+0x9/0x10 [ 3274.764817][T13088] ? kmem_cache_alloc_trace+0x151/0x760 [ 3274.764840][T13088] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3274.778175][T13088] ? vb2_core_create_bufs+0x378/0x8e0 [ 3274.778198][T13088] warn_alloc.cold+0xc3/0x1c9 [ 3274.778215][T13088] ? zone_watermark_ok_safe+0x420/0x420 [ 3274.778236][T13088] ? print_usage_bug+0xd0/0xd0 [ 3274.788262][T13088] ? kasan_kmalloc+0x9/0x10 [ 3274.788285][T13088] ? __lock_is_held+0xb6/0x140 [ 3274.788302][T13088] ? add_lock_to_list.isra.0+0x450/0x450 [ 3274.788322][T13088] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3274.813359][T13088] ? check_preemption_disabled+0x48/0x290 [ 3274.813378][T13088] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3274.813408][T13088] __vmalloc_node_range+0x57a/0x910 [ 3274.823619][T13088] ? __lock_is_held+0xb6/0x140 [ 3274.823636][T13088] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3274.823655][T13088] ? vfree_atomic+0xe0/0xe0 [ 3274.823673][T13088] ? rcu_read_lock_sched_held+0x110/0x130 [ 3274.823690][T13088] ? kmem_cache_alloc_trace+0x354/0x760 [ 3274.823703][T13088] ? __lock_is_held+0xb6/0x140 [ 3274.823723][T13088] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3274.830296][T13083] XFS (loop2): unknown mount option []. [ 3274.832962][T13088] vmalloc_user+0x6b/0x90 [ 3274.832980][T13088] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3274.832995][T13088] vb2_vmalloc_alloc+0x134/0x3a0 [ 3274.833012][T13088] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3274.833028][T13088] ? lock_acquire+0x1db/0x570 [ 3274.833045][T13088] ? __video_do_ioctl+0x3b1/0xd80 [ 3274.833076][T13088] ? __vb2_queue_alloc+0xf5/0xf40 [ 3274.840662][T13096] kvm [13077]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x5 [ 3274.843451][T13088] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3274.843466][T13088] __vb2_queue_alloc+0x5a6/0xf40 [ 3274.843501][T13088] ? vimc_cap_get_format+0x120/0x120 [ 3274.843516][T13088] vb2_core_create_bufs+0x378/0x8e0 [ 3274.843536][T13088] ? __vb2_queue_alloc+0xf40/0xf40 [ 3274.870544][T13088] ? mutex_trylock+0x2d0/0x2d0 [ 3274.870578][T13088] ? save_stack+0xa9/0xd0 [ 3274.870596][T13088] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3274.870615][T13088] vb2_create_bufs+0x4b5/0x8e0 [ 3274.870636][T13088] ? vb2_request_queue+0x120/0x120 [ 3274.870655][T13088] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3274.870676][T13088] ? v4l2_prio_max+0x266/0x310 [ 3274.880263][T13088] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3274.880284][T13088] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3274.880308][T13088] v4l_create_bufs+0x152/0x230 [ 3274.880329][T13088] __video_do_ioctl+0x805/0xd80 [ 3274.880354][T13088] ? v4l_s_fmt+0xb20/0xb20 [ 3274.880375][T13088] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3274.891620][T13088] ? _copy_from_user+0xdd/0x150 [ 3274.891643][T13088] video_usercopy+0x460/0x16b0 [ 3274.891661][T13088] ? v4l_s_fmt+0xb20/0xb20 [ 3274.891685][T13088] ? v4l_enumstd+0x70/0x70 [ 3274.891702][T13088] ? __fget+0x473/0x710 [ 3274.891721][T13088] ? find_held_lock+0x35/0x120 [ 3275.072100][T13088] ? __fget+0x473/0x710 [ 3275.076273][T13088] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3275.082532][T13088] ? lock_downgrade+0xbe0/0xbe0 [ 3275.087388][T13088] ? kasan_check_read+0x11/0x20 [ 3275.092257][T13088] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3275.098238][T13088] ? rcu_read_unlock_special+0x380/0x380 [ 3275.103895][T13088] ? __fget+0x49a/0x710 [ 3275.108080][T13088] ? video_usercopy+0x16b0/0x16b0 [ 3275.113107][T13088] video_ioctl2+0x2d/0x35 [ 3275.117459][T13088] v4l2_ioctl+0x156/0x1b0 [ 3275.121790][T13088] ? video_devdata+0xa0/0xa0 [ 3275.126403][T13088] do_vfs_ioctl+0x107b/0x17d0 [ 3275.131089][T13088] ? ioctl_preallocate+0x2f0/0x2f0 [ 3275.136201][T13088] ? __fget_light+0x2db/0x420 [ 3275.140876][T13088] ? fget_raw+0x20/0x20 [ 3275.145026][T13088] ? put_timespec64+0x115/0x1b0 [ 3275.149873][T13088] ? nsecs_to_jiffies+0x30/0x30 [ 3275.154724][T13088] ? do_syscall_64+0x8c/0x800 [ 3275.159421][T13088] ? do_syscall_64+0x8c/0x800 [ 3275.164130][T13088] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3275.169444][T13088] ? security_file_ioctl+0x93/0xc0 [ 3275.174584][T13088] ksys_ioctl+0xab/0xd0 [ 3275.178760][T13088] __x64_sys_ioctl+0x73/0xb0 [ 3275.183351][T13088] do_syscall_64+0x1a3/0x800 [ 3275.187944][T13088] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3275.193587][T13088] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3275.199312][T13088] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3275.204865][T13088] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3275.210752][T13088] RIP: 0033:0x457ec9 [ 3275.214643][T13088] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3275.234241][T13088] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3275.242648][T13088] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3275.250618][T13088] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3275.258588][T13088] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3275.266554][T13088] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 20:32:51 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000080001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3275.274533][T13088] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff 20:32:51 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}], [], 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:32:52 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3275.369800][T13088] Mem-Info: [ 3275.375304][T13088] active_anon:147008 inactive_anon:203 isolated_anon:0 [ 3275.375304][T13088] active_file:12621 inactive_file:58849 isolated_file:0 [ 3275.375304][T13088] unevictable:0 dirty:243 writeback:0 unstable:0 [ 3275.375304][T13088] slab_reclaimable:15595 slab_unreclaimable:115225 [ 3275.375304][T13088] mapped:55587 shmem:244 pagetables:1897 bounce:0 [ 3275.375304][T13088] free:1177754 free_pcp:449 free_cma:0 [ 3275.444930][T13088] Node 0 active_anon:587988kB inactive_anon:812kB active_file:50344kB inactive_file:235396kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222348kB dirty:972kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:32:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x6]}) [ 3275.475245][T13088] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:32:52 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000090001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3275.528082][T13088] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3275.565941][T13106] XFS (loop2): unknown mount option [ÿ]. [ 3275.583840][T13088] lowmem_reserve[]: 0 2535 2537 2537 20:32:52 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64010000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3275.609056][T13088] Node 0 DMA32 free:911036kB min:36080kB low:45100kB high:54120kB active_anon:585888kB inactive_anon:828kB active_file:50344kB inactive_file:235436kB unevictable:0kB writepending:1016kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8352kB pagetables:7608kB bounce:0kB free_pcp:1844kB local_pcp:1192kB free_cma:0kB [ 3275.643389][T13088] lowmem_reserve[]: 0 0 2 2 [ 3275.648046][T13088] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3275.675825][T13088] lowmem_reserve[]: 0 0 0 0 [ 3275.682700][T13088] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3275.711839][T13088] lowmem_reserve[]: 0 0 0 0 [ 3275.711861][T13088] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3275.730885][T13088] Node 0 DMA32: 543*4kB (UME) 184*8kB (UME) 825*16kB (UME) 1395*32kB (UM) 619*64kB (UM) 120*128kB (UME) 48*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 35*2048kB (UM) 155*4096kB (UM) = 906476kB 20:32:52 executing program 2: socketpair$unix(0x1, 0x3ff, 0x0, &(0x7f00000000c0)) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="6e2c00924b7da51722d074c7e818ae4dc74c7522b305cb55831aabe70ec7ae5ae2a59a523235a62a627f7963d3315e7a0e5eb070738e78beaba186c396b4290241f5ca2f27b1ff9e3a3b9bef2c4c8f99e68e9a5b6b72c6e3c61c2633fda68f9be73200000000000000000000000000000000"]) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e23, 0x8001, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0xde}}, 0x10000, 0xfffffffffffffff9}, &(0x7f00000001c0)=0x90) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000200)={0x101, 0x1, 0x2, 0xfffffffffffffff0, 0x7, 0x0, 0x400, 0x3ff, r1}, &(0x7f0000000240)=0x20) 20:32:52 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3275.831380][T13088] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3275.847730][T13124] kvm [13117]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x6 [ 3275.858236][T13088] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3275.877389][T13088] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3275.887606][T13130] kvm [13117]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x6 [ 3275.894624][T13088] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3275.938270][T13088] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3275.962229][T13088] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3275.987180][T13088] 71732 total pagecache pages [ 3275.992604][T13088] 0 pages in swap cache [ 3275.996937][T13088] Swap cache stats: add 0, delete 0, find 0/0 [ 3276.029848][T13088] Free swap = 0kB [ 3276.039267][T13088] Total swap = 0kB [ 3276.043292][T13088] 1965979 pages RAM [ 3276.052776][T13088] 0 pages HighMem/MovableOnly [ 3276.057959][T13088] 343989 pages reserved [ 3276.062253][T13088] 0 pages cma reserved [ 3276.066464][T13089] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3276.081941][T13089] CPU: 1 PID: 13089 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3276.090883][T13089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3276.100942][T13089] Call Trace: [ 3276.104244][T13089] dump_stack+0x1db/0x2d0 [ 3276.108592][T13089] ? dump_stack_print_info.cold+0x20/0x20 [ 3276.114314][T13089] ? idr_get_free+0xee0/0xee0 [ 3276.118996][T13089] ? kasan_kmalloc+0x9/0x10 [ 3276.123506][T13089] ? kmem_cache_alloc_trace+0x151/0x760 [ 3276.129057][T13089] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3276.134099][T13089] ? vb2_core_create_bufs+0x378/0x8e0 [ 3276.139469][T13089] warn_alloc.cold+0xc3/0x1c9 [ 3276.144127][T13089] ? zone_watermark_ok_safe+0x420/0x420 [ 3276.149663][T13089] ? print_usage_bug+0xd0/0xd0 [ 3276.154427][T13089] ? kasan_kmalloc+0x9/0x10 [ 3276.158942][T13089] ? __lock_is_held+0xb6/0x140 [ 3276.163707][T13089] ? add_lock_to_list.isra.0+0x450/0x450 [ 3276.169339][T13089] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3276.175590][T13089] ? check_preemption_disabled+0x48/0x290 [ 3276.181318][T13089] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3276.186448][T13089] __vmalloc_node_range+0x57a/0x910 [ 3276.191637][T13089] ? __lock_is_held+0xb6/0x140 [ 3276.196409][T13089] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3276.201522][T13089] ? vfree_atomic+0xe0/0xe0 [ 3276.206017][T13089] ? rcu_read_lock_sched_held+0x110/0x130 [ 3276.211743][T13089] ? kmem_cache_alloc_trace+0x354/0x760 [ 3276.217282][T13089] ? __lock_is_held+0xb6/0x140 [ 3276.222026][T13089] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3276.227120][T13089] vmalloc_user+0x6b/0x90 [ 3276.231443][T13089] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3276.236550][T13089] vb2_vmalloc_alloc+0x134/0x3a0 [ 3276.241492][T13089] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3276.247301][T13089] ? lock_acquire+0x1db/0x570 [ 3276.251985][T13089] ? __vb2_queue_alloc+0xf5/0xf40 [ 3276.257017][T13089] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3276.262815][T13089] __vb2_queue_alloc+0x5a6/0xf40 [ 3276.267764][T13089] ? vimc_cap_get_format+0x120/0x120 [ 3276.273055][T13089] vb2_core_create_bufs+0x378/0x8e0 [ 3276.278256][T13089] ? __vb2_queue_alloc+0xf40/0xf40 [ 3276.283380][T13089] ? mutex_trylock+0x2d0/0x2d0 [ 3276.288160][T13089] ? save_stack+0xa9/0xd0 [ 3276.292498][T13089] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3276.298737][T13089] vb2_create_bufs+0x4b5/0x8e0 [ 3276.303484][T13089] ? vb2_request_queue+0x120/0x120 [ 3276.308590][T13089] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3276.314826][T13089] ? v4l2_prio_max+0x266/0x310 [ 3276.319591][T13089] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3276.325816][T13089] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3276.331109][T13089] v4l_create_bufs+0x152/0x230 [ 3276.335884][T13089] __video_do_ioctl+0x805/0xd80 [ 3276.340749][T13089] ? v4l_s_fmt+0xb20/0xb20 [ 3276.345180][T13089] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3276.351433][T13089] ? _copy_from_user+0xdd/0x150 [ 3276.356280][T13089] video_usercopy+0x460/0x16b0 [ 3276.361026][T13089] ? v4l_s_fmt+0xb20/0xb20 [ 3276.365430][T13089] ? v4l_enumstd+0x70/0x70 [ 3276.370187][T13089] ? __fget+0x473/0x710 [ 3276.374345][T13089] ? find_held_lock+0x35/0x120 [ 3276.379117][T13089] ? __fget+0x473/0x710 [ 3276.383276][T13089] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3276.389516][T13089] ? lock_downgrade+0xbe0/0xbe0 [ 3276.394383][T13089] ? kasan_check_read+0x11/0x20 [ 3276.399240][T13089] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3276.405220][T13089] ? rcu_read_unlock_special+0x380/0x380 [ 3276.410853][T13089] ? __fget+0x49a/0x710 [ 3276.415018][T13089] ? video_usercopy+0x16b0/0x16b0 [ 3276.420038][T13089] video_ioctl2+0x2d/0x35 [ 3276.424356][T13089] v4l2_ioctl+0x156/0x1b0 [ 3276.428676][T13089] ? video_devdata+0xa0/0xa0 [ 3276.433259][T13089] do_vfs_ioctl+0x107b/0x17d0 [ 3276.437933][T13089] ? retint_kernel+0x2d/0x2d [ 3276.442505][T13089] ? ioctl_preallocate+0x2f0/0x2f0 [ 3276.447607][T13089] ? __fget_light+0x2db/0x420 [ 3276.452293][T13089] ? fget_raw+0x20/0x20 [ 3276.456455][T13089] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3276.461916][T13089] ? security_file_ioctl+0x93/0xc0 [ 3276.467021][T13089] ksys_ioctl+0xab/0xd0 [ 3276.471187][T13089] __x64_sys_ioctl+0x73/0xb0 [ 3276.475783][T13089] do_syscall_64+0x1a3/0x800 [ 3276.480370][T13089] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3276.485983][T13089] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3276.491698][T13089] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3276.497249][T13089] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3276.503121][T13089] RIP: 0033:0x457ec9 [ 3276.506997][T13089] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3276.526593][T13089] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3276.535024][T13089] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3276.543007][T13089] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3276.550966][T13089] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3276.558929][T13089] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3276.566882][T13089] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3276.575287][T13089] Mem-Info: [ 3276.578439][T13089] active_anon:146506 inactive_anon:207 isolated_anon:0 [ 3276.578439][T13089] active_file:12621 inactive_file:58865 isolated_file:0 [ 3276.578439][T13089] unevictable:0 dirty:260 writeback:0 unstable:0 [ 3276.578439][T13089] slab_reclaimable:15610 slab_unreclaimable:115485 [ 3276.578439][T13089] mapped:55587 shmem:253 pagetables:1824 bounce:0 [ 3276.578439][T13089] free:1177974 free_pcp:600 free_cma:0 [ 3276.617005][T13089] Node 0 active_anon:586084kB inactive_anon:832kB active_file:50344kB inactive_file:235460kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222332kB dirty:1064kB writeback:0kB shmem:1012kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 180224kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3276.646172][T13089] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3276.672697][T13089] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3276.699642][T13089] lowmem_reserve[]: 0 2535 2537 2537 [ 3276.704935][T13089] Node 0 DMA32 free:909536kB min:36080kB low:45100kB high:54120kB active_anon:586084kB inactive_anon:832kB active_file:50344kB inactive_file:235460kB unevictable:0kB writepending:1064kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8256kB pagetables:7324kB bounce:0kB free_pcp:2420kB local_pcp:1432kB free_cma:0kB [ 3276.735673][T13089] lowmem_reserve[]: 0 0 2 2 [ 3276.740323][T13089] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3276.746911][T13136] XFS (loop2): unknown mount option [n]. [ 3276.775039][T13089] lowmem_reserve[]: 0 0 0 0 [ 3276.779665][T13089] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3276.779713][T13089] lowmem_reserve[]: 0 0 0 0 [ 3276.812593][T13089] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3276.827909][T13089] Node 0 DMA32: 529*4kB (UE) 86*8kB (U) 826*16kB (U) 1401*32kB (UM) 619*64kB (UME) 114*128kB (UM) 49*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 37*2048kB (UM) 155*4096kB (UM) = 909428kB [ 3276.846386][T13089] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3276.862337][T13089] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3276.881923][T13089] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3276.900214][T13089] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3276.920450][T13089] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3276.934064][T13089] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3276.944016][T13089] 71744 total pagecache pages [ 3276.957234][T13089] 0 pages in swap cache [ 3276.963063][T13089] Swap cache stats: add 0, delete 0, find 0/0 [ 3276.969586][T13089] Free swap = 0kB [ 3276.973392][T13089] Total swap = 0kB [ 3276.977203][T13089] 1965979 pages RAM [ 3276.981512][T13089] 0 pages HighMem/MovableOnly [ 3276.993820][T13089] 343989 pages reserved [ 3276.998230][T13089] 0 pages cma reserved [ 3277.002857][T13113] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3277.020907][T13113] CPU: 1 PID: 13113 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3277.029849][T13113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3277.039901][T13113] Call Trace: [ 3277.043191][T13113] dump_stack+0x1db/0x2d0 [ 3277.047515][T13113] ? dump_stack_print_info.cold+0x20/0x20 [ 3277.053218][T13113] ? idr_get_free+0xee0/0xee0 [ 3277.057881][T13113] ? kasan_kmalloc+0x9/0x10 [ 3277.062365][T13113] ? kmem_cache_alloc_trace+0x151/0x760 [ 3277.067891][T13113] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3277.072894][T13113] ? vb2_core_create_bufs+0x378/0x8e0 [ 3277.078255][T13113] warn_alloc.cold+0xc3/0x1c9 [ 3277.082912][T13113] ? zone_watermark_ok_safe+0x420/0x420 [ 3277.088438][T13113] ? print_usage_bug+0xd0/0xd0 [ 3277.093180][T13113] ? kasan_kmalloc+0x9/0x10 [ 3277.097672][T13113] ? __lock_is_held+0xb6/0x140 [ 3277.102428][T13113] ? add_lock_to_list.isra.0+0x450/0x450 [ 3277.108047][T13113] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3277.114300][T13113] ? check_preemption_disabled+0x48/0x290 [ 3277.120021][T13113] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3277.125157][T13113] __vmalloc_node_range+0x57a/0x910 [ 3277.130347][T13113] ? __lock_is_held+0xb6/0x140 [ 3277.135105][T13113] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3277.140256][T13113] ? vfree_atomic+0xe0/0xe0 [ 3277.144769][T13113] ? rcu_read_lock_sched_held+0x110/0x130 [ 3277.150483][T13113] ? kmem_cache_alloc_trace+0x354/0x760 [ 3277.156018][T13113] ? __lock_is_held+0xb6/0x140 [ 3277.160770][T13113] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3277.165877][T13113] vmalloc_user+0x6b/0x90 [ 3277.170197][T13113] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3277.175301][T13113] vb2_vmalloc_alloc+0x134/0x3a0 [ 3277.180233][T13113] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3277.186030][T13113] ? lock_acquire+0x1db/0x570 [ 3277.190703][T13113] ? __vb2_queue_alloc+0xf5/0xf40 [ 3277.195721][T13113] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3277.201517][T13113] __vb2_queue_alloc+0x5a6/0xf40 [ 3277.206477][T13113] ? vimc_cap_get_format+0x120/0x120 [ 3277.211763][T13113] vb2_core_create_bufs+0x378/0x8e0 [ 3277.216956][T13113] ? __vb2_queue_alloc+0xf40/0xf40 [ 3277.222059][T13113] ? mutex_trylock+0x2d0/0x2d0 [ 3277.226829][T13113] ? save_stack+0xa9/0xd0 [ 3277.231157][T13113] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3277.237392][T13113] vb2_create_bufs+0x4b5/0x8e0 [ 3277.242154][T13113] ? vb2_request_queue+0x120/0x120 [ 3277.247259][T13113] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3277.253539][T13113] ? v4l2_prio_max+0x266/0x310 [ 3277.258293][T13113] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3277.264550][T13113] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3277.269861][T13113] v4l_create_bufs+0x152/0x230 [ 3277.274637][T13113] __video_do_ioctl+0x805/0xd80 [ 3277.279489][T13113] ? v4l_s_fmt+0xb20/0xb20 [ 3277.283960][T13113] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3277.290206][T13113] ? _copy_from_user+0xdd/0x150 [ 3277.295051][T13113] video_usercopy+0x460/0x16b0 [ 3277.299817][T13113] ? v4l_s_fmt+0xb20/0xb20 [ 3277.304232][T13113] ? v4l_enumstd+0x70/0x70 [ 3277.308642][T13113] ? __fget+0x473/0x710 [ 3277.312794][T13113] ? find_held_lock+0x35/0x120 [ 3277.317553][T13113] ? __fget+0x473/0x710 [ 3277.321728][T13113] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3277.327964][T13113] ? lock_downgrade+0xbe0/0xbe0 [ 3277.332794][T13113] ? kasan_check_read+0x11/0x20 [ 3277.337631][T13113] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3277.343596][T13113] ? rcu_read_unlock_special+0x380/0x380 [ 3277.349230][T13113] ? __fget+0x49a/0x710 [ 3277.353386][T13113] ? video_usercopy+0x16b0/0x16b0 [ 3277.358406][T13113] video_ioctl2+0x2d/0x35 [ 3277.362721][T13113] v4l2_ioctl+0x156/0x1b0 [ 3277.367035][T13113] ? video_devdata+0xa0/0xa0 [ 3277.371617][T13113] do_vfs_ioctl+0x107b/0x17d0 [ 3277.376291][T13113] ? ioctl_preallocate+0x2f0/0x2f0 [ 3277.381402][T13113] ? __fget_light+0x2db/0x420 [ 3277.386078][T13113] ? fget_raw+0x20/0x20 [ 3277.390224][T13113] ? put_timespec64+0x115/0x1b0 [ 3277.395076][T13113] ? nsecs_to_jiffies+0x30/0x30 [ 3277.400102][T13113] ? do_syscall_64+0x8c/0x800 [ 3277.404774][T13113] ? do_syscall_64+0x8c/0x800 [ 3277.409443][T13113] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3277.414720][T13113] ? security_file_ioctl+0x93/0xc0 [ 3277.419827][T13113] ksys_ioctl+0xab/0xd0 [ 3277.423976][T13113] __x64_sys_ioctl+0x73/0xb0 [ 3277.428549][T13113] do_syscall_64+0x1a3/0x800 [ 3277.433133][T13113] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3277.438746][T13113] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3277.444472][T13113] ? __switch_to_asm+0x34/0x70 [ 3277.449233][T13113] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3277.454773][T13113] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3277.460655][T13113] RIP: 0033:0x457ec9 [ 3277.464567][T13113] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 20:32:54 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x6c00000000000000, 0xffffffffffffffff]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:32:54 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:32:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x7]}) 20:32:54 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a0000010000000a0001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:32:54 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000000640)={{{@in6=@initdev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@empty}}, &(0x7f0000000740)=0xe8) r2 = getuid() fstat(r0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000800)={{{@in6=@dev, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@local}}, &(0x7f0000000900)=0xe8) syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f00000000c0)='./file0\x00', 0xa3c, 0x8, &(0x7f0000000580)=[{&(0x7f0000000180)="a0303ea85ef0d8da6aa6fe4da4132c1127daa713ffa2d20bb2d99f0ad687f23038b09284076450662d3eedf803b4ee56cc1b37161c9603d602a6d2264f9c6166b51c294ef5bc8d7138076f7e20a0cfcbcea35dee2e5e7d5a86a3ffbcd4cc109bf78c52aa7a0a4c7641eda701fbd1029ba2f39e3ea3a82f53ae529a243bc70aa7b585af763edebfb9225595d879ece5767b9e27d00e9d29a306ea58aef5f0040ee38d", 0xa2, 0x7}, {&(0x7f0000000240)="0f83589d17d090ccaaa36119162d99d5f237592427e39aaf8489a1feb4dce42e59f35aa3bd218440313d450239df6afb52f293e8cb3e3c8e6f81d9b8f274d8fe6a13f4fedf6078f1b6912496875992fa8784ca30d6e61a1db5c44eae2ce9a9112836bf0fd2b184a32edaa3cc01288802631afe26fc3d7fd77b124d90f246a96ecb56abd284cc563f5a64319e219a784dce179854b29c1657551d86568a9c8b5a957c8cd406d1c14c4e66b4297d7fbbd5a439be50769f3cfffa93", 0xba, 0x6}, {&(0x7f0000000300)="7b5bd93dcac517143346b3d281f1a98de953525bfae5490339c15d950b32b670cc33457e3c6d11ef49535e3eebc02f72126a699c3dfcd27e14e357f7807d9bdcd3d67aa7556b4f22", 0x48, 0xb4}, {&(0x7f0000000f00)="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", 0x1000, 0x3}, {&(0x7f0000000100)}, {&(0x7f0000000380)="8fda3690ac11e64aaf70ae2164fb17dc469823b8a34d9a39cd51f9eef17a02de1dbed8bf6e2bc302385b7c12ec8a4f0fea36aeeaef59703a343b5dd9ec9ddca0edb0ade235ec627c8d2a4c22429c276a9236092260e7490b4abc353ae46702554201b7f399d092e759ef374e8c19fc67921a136ad1e3163d6e", 0x79, 0x5894}, {&(0x7f0000000400)="c68f1d62fa1385eb346ae3282feaabb79f452ce691388aab4057f395346b51955cf7afef5bbed3161eeca80a782fca54d596cae825417ca48ae67dc1b00293b09410a8c6bbd7f4f61a2e91e5dc773c578330", 0x52, 0x4}, {&(0x7f0000000480)="e30fa82d9b733cf8fdc66dcbbbadd0e450cefc41ce83d16ed6ab01434518c17112cf6027be954c58cd267aa063b9fdd1711f2a818bf82225f5af4c6877944bc228fbf8c54b191840b6459b8b9cf47cc9dddca280dc8bdc0cb584ff80e5a57e2171538717749d68b682c4e200a9cfeee7af630d26f947d8e3df16325e7b34c06bb8e5949fb3f3f51c10dfbfcef78074fef37cb3d1f0d7c763d3103a28e2f25036fa253be180bbffb4275d35cad354bb99ae03611a872cbb1e7288c5d79f16157636c2737df47476ba0abdcc984b94f2308fd4", 0xd2, 0x78}], 0x0, &(0x7f0000000940)={[{@dots='dots'}, {@dots='dots'}, {@fat=@nfs='nfs'}, {@fat=@nfs_nostale_ro='nfs=nostale_ro'}], [{@fowner_lt={'fowner<', r1}}, {@euid_eq={'euid', 0x3d, r2}}, {@euid_eq={'euid', 0x3d, r3}}, {@euid_lt={'euid<', r4}}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:32:54 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x100000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3277.484170][T13113] RSP: 002b:00007fed9220ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3277.492568][T13113] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3277.500531][T13113] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3277.508599][T13113] RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000 [ 3277.516549][T13113] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed9220f6d4 [ 3277.524515][T13113] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3277.646680][T13159] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 20:32:54 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8c000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3277.704001][T13157] kvm [13150]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x7 [ 3277.717693][T13159] CPU: 1 PID: 13159 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3277.726736][T13159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3277.736788][T13159] Call Trace: [ 3277.740114][T13159] dump_stack+0x1db/0x2d0 [ 3277.744459][T13159] ? dump_stack_print_info.cold+0x20/0x20 [ 3277.750178][T13159] ? idr_get_free+0xee0/0xee0 [ 3277.750197][T13159] ? kasan_kmalloc+0x9/0x10 [ 3277.750212][T13159] ? kmem_cache_alloc_trace+0x151/0x760 [ 3277.750229][T13159] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3277.750243][T13159] ? vb2_core_create_bufs+0x378/0x8e0 [ 3277.750265][T13159] warn_alloc.cold+0xc3/0x1c9 [ 3277.750283][T13159] ? zone_watermark_ok_safe+0x420/0x420 [ 3277.750298][T13159] ? print_usage_bug+0xd0/0xd0 [ 3277.750318][T13159] ? kasan_kmalloc+0x9/0x10 [ 3277.794838][T13159] ? __lock_is_held+0xb6/0x140 [ 3277.799615][T13159] ? add_lock_to_list.isra.0+0x450/0x450 [ 3277.805259][T13159] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3277.811508][T13159] ? check_preemption_disabled+0x48/0x290 [ 3277.817234][T13159] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3277.817258][T13159] __vmalloc_node_range+0x57a/0x910 [ 3277.817274][T13159] ? __lock_is_held+0xb6/0x140 [ 3277.817290][T13159] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3277.817310][T13159] ? vfree_atomic+0xe0/0xe0 [ 3277.841926][T13159] ? rcu_read_lock_sched_held+0x110/0x130 [ 3277.847654][T13159] ? kmem_cache_alloc_trace+0x354/0x760 [ 3277.853204][T13159] ? __lock_is_held+0xb6/0x140 [ 3277.857972][T13159] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3277.857993][T13159] vmalloc_user+0x6b/0x90 [ 3277.858010][T13159] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3277.858026][T13159] vb2_vmalloc_alloc+0x134/0x3a0 [ 3277.858048][T13159] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3277.883277][T13159] ? lock_acquire+0x1db/0x570 [ 3277.887960][T13159] ? __video_do_ioctl+0x3b1/0xd80 [ 3277.892980][T13159] ? __vb2_queue_alloc+0xf5/0xf40 [ 3277.898008][T13159] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3277.903810][T13159] __vb2_queue_alloc+0x5a6/0xf40 [ 3277.908762][T13159] ? vimc_cap_get_format+0x120/0x120 [ 3277.914048][T13159] vb2_core_create_bufs+0x378/0x8e0 [ 3277.919258][T13159] ? __vb2_queue_alloc+0xf40/0xf40 [ 3277.924372][T13159] ? mutex_trylock+0x2d0/0x2d0 [ 3277.929138][T13159] ? save_stack+0xa9/0xd0 [ 3277.933469][T13159] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3277.939710][T13159] vb2_create_bufs+0x4b5/0x8e0 [ 3277.944476][T13159] ? vb2_request_queue+0x120/0x120 [ 3277.949595][T13159] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3277.955835][T13159] ? v4l2_prio_max+0x266/0x310 [ 3277.960601][T13159] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3277.966844][T13159] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3277.972135][T13159] v4l_create_bufs+0x152/0x230 [ 3277.976902][T13159] __video_do_ioctl+0x805/0xd80 [ 3277.981762][T13159] ? v4l_s_fmt+0xb20/0xb20 [ 3277.986184][T13159] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3277.992424][T13159] ? _copy_from_user+0xdd/0x150 [ 3277.997285][T13159] video_usercopy+0x460/0x16b0 [ 3278.002051][T13159] ? v4l_s_fmt+0xb20/0xb20 [ 3278.006479][T13159] ? v4l_enumstd+0x70/0x70 [ 3278.010897][T13159] ? __fget+0x473/0x710 [ 3278.015056][T13159] ? find_held_lock+0x35/0x120 [ 3278.019824][T13159] ? __fget+0x473/0x710 [ 3278.023982][T13159] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3278.030225][T13159] ? lock_downgrade+0xbe0/0xbe0 [ 3278.035079][T13159] ? kasan_check_read+0x11/0x20 [ 3278.039932][T13159] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3278.045912][T13159] ? rcu_read_unlock_special+0x380/0x380 [ 3278.051551][T13159] ? __fget+0x49a/0x710 [ 3278.055722][T13159] ? video_usercopy+0x16b0/0x16b0 [ 3278.060745][T13159] video_ioctl2+0x2d/0x35 [ 3278.065082][T13159] v4l2_ioctl+0x156/0x1b0 [ 3278.069411][T13159] ? video_devdata+0xa0/0xa0 [ 3278.073999][T13159] do_vfs_ioctl+0x107b/0x17d0 [ 3278.078690][T13159] ? ioctl_preallocate+0x2f0/0x2f0 [ 3278.083804][T13159] ? __fget_light+0x2db/0x420 [ 3278.088483][T13159] ? fget_raw+0x20/0x20 [ 3278.092639][T13159] ? put_timespec64+0x115/0x1b0 [ 3278.097486][T13159] ? nsecs_to_jiffies+0x30/0x30 [ 3278.102337][T13159] ? do_syscall_64+0x8c/0x800 [ 3278.107012][T13159] ? do_syscall_64+0x8c/0x800 [ 3278.111692][T13159] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3278.116976][T13159] ? security_file_ioctl+0x93/0xc0 [ 3278.122093][T13159] ksys_ioctl+0xab/0xd0 [ 3278.126258][T13159] __x64_sys_ioctl+0x73/0xb0 [ 3278.130851][T13159] do_syscall_64+0x1a3/0x800 [ 3278.135442][T13159] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3278.141082][T13159] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3278.146804][T13159] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3278.152360][T13159] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3278.158251][T13159] RIP: 0033:0x457ec9 [ 3278.162143][T13159] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3278.181741][T13159] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3278.190150][T13159] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3278.198121][T13159] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3278.206091][T13159] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3278.214061][T13159] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3278.222034][T13159] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3278.243169][T13172] kvm [13150]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x7 [ 3278.252606][T13159] warn_alloc_show_mem: 1 callbacks suppressed [ 3278.252611][T13159] Mem-Info: [ 3278.258977][T13159] active_anon:148106 inactive_anon:203 isolated_anon:0 [ 3278.258977][T13159] active_file:12621 inactive_file:58882 isolated_file:0 [ 3278.258977][T13159] unevictable:0 dirty:277 writeback:0 unstable:0 [ 3278.258977][T13159] slab_reclaimable:15606 slab_unreclaimable:115790 [ 3278.258977][T13159] mapped:55581 shmem:244 pagetables:1895 bounce:0 [ 3278.258977][T13159] free:1176062 free_pcp:442 free_cma:0 [ 3278.301439][T13159] Node 0 active_anon:592424kB inactive_anon:812kB active_file:50344kB inactive_file:235528kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222324kB dirty:1108kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 174080kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3278.331421][T13159] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3278.369299][T13152] XFS (loop2): Invalid superblock magic number 20:32:55 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8cffffff, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:32:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x8]}) [ 3278.442836][T13159] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3278.472356][T13159] lowmem_reserve[]: 0 2535 2537 2537 [ 3278.478384][T13159] Node 0 DMA32 free:907220kB min:36080kB low:45100kB high:54120kB active_anon:588360kB inactive_anon:812kB active_file:50344kB inactive_file:235528kB unevictable:0kB writepending:1108kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8288kB pagetables:7432kB bounce:0kB free_pcp:2144kB local_pcp:1012kB free_cma:0kB [ 3278.510492][T13159] lowmem_reserve[]: 0 0 2 2 [ 3278.515106][T13159] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3278.543314][T13159] lowmem_reserve[]: 0 0 0 0 [ 3278.547946][T13159] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3278.576407][T13159] lowmem_reserve[]: 0 0 0 0 20:32:55 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000100001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3278.668358][T13159] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB 20:32:55 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x9, 0x20000) ioctl$VIDIOC_SUBDEV_G_FMT(r1, 0xc0585604, &(0x7f00000000c0)={0x1, 0x0, {0x0, 0x6, 0x301e, 0x5, 0xd, 0x7, 0x2, 0x5}}) [ 3278.739710][T13159] Node 0 DMA32: 534*4kB (UE) 573*8kB (UME) 859*16kB (UME) 1403*32kB (UM) 616*64kB (UME) 109*128kB (UME) 43*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 36*2048kB (UM) 155*4096kB (UM) = 909520kB [ 3278.762864][T13197] kvm [13189]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x8 20:32:55 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcc000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3278.785099][T13159] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3278.827707][T13159] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3278.860153][T13159] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3278.870430][T13159] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3278.871702][T13197] kvm [13189]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x8 [ 3278.889161][T13159] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3278.898907][T13159] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3278.925202][T13159] 71759 total pagecache pages [ 3278.930770][T13159] 0 pages in swap cache [ 3278.938533][T13159] Swap cache stats: add 0, delete 0, find 0/0 [ 3278.945372][T13159] Free swap = 0kB [ 3278.954268][T13159] Total swap = 0kB [ 3278.962815][T13159] 1965979 pages RAM [ 3278.973669][T13159] 0 pages HighMem/MovableOnly [ 3278.988889][T13159] 343989 pages reserved [ 3279.014889][T13159] 0 pages cma reserved [ 3279.029036][T13170] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3279.062546][T13170] CPU: 1 PID: 13170 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3279.071509][T13170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3279.081575][T13170] Call Trace: [ 3279.084868][T13170] dump_stack+0x1db/0x2d0 [ 3279.089195][T13170] ? dump_stack_print_info.cold+0x20/0x20 [ 3279.094925][T13170] ? idr_get_free+0xee0/0xee0 [ 3279.099605][T13170] ? kasan_kmalloc+0x9/0x10 [ 3279.104102][T13170] ? kmem_cache_alloc_trace+0x151/0x760 [ 3279.109639][T13170] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3279.114653][T13170] ? vb2_core_create_bufs+0x378/0x8e0 [ 3279.120022][T13170] warn_alloc.cold+0xc3/0x1c9 [ 3279.124695][T13170] ? zone_watermark_ok_safe+0x420/0x420 [ 3279.130255][T13170] ? print_usage_bug+0xd0/0xd0 [ 3279.134997][T13170] ? kasan_kmalloc+0x9/0x10 [ 3279.139496][T13170] ? __lock_is_held+0xb6/0x140 [ 3279.144253][T13170] ? add_lock_to_list.isra.0+0x450/0x450 [ 3279.149880][T13170] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3279.156112][T13170] ? check_preemption_disabled+0x48/0x290 [ 3279.161821][T13170] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3279.166928][T13170] __vmalloc_node_range+0x57a/0x910 [ 3279.172122][T13170] ? __lock_is_held+0xb6/0x140 [ 3279.176866][T13170] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3279.181977][T13170] ? vfree_atomic+0xe0/0xe0 [ 3279.186474][T13170] ? rcu_read_lock_sched_held+0x110/0x130 [ 3279.192176][T13170] ? kmem_cache_alloc_trace+0x354/0x760 [ 3279.197697][T13170] ? __lock_is_held+0xb6/0x140 [ 3279.202474][T13170] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3279.207584][T13170] vmalloc_user+0x6b/0x90 [ 3279.211898][T13170] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3279.216988][T13170] vb2_vmalloc_alloc+0x134/0x3a0 [ 3279.221923][T13170] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3279.227721][T13170] ? lock_acquire+0x1db/0x570 [ 3279.232382][T13170] ? __vb2_queue_alloc+0xf5/0xf40 [ 3279.237389][T13170] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3279.243187][T13170] __vb2_queue_alloc+0x5a6/0xf40 [ 3279.248138][T13170] ? vimc_cap_get_format+0x120/0x120 [ 3279.253423][T13170] vb2_core_create_bufs+0x378/0x8e0 [ 3279.258612][T13170] ? __vb2_queue_alloc+0xf40/0xf40 [ 3279.263720][T13170] ? mutex_trylock+0x2d0/0x2d0 [ 3279.268476][T13170] ? save_stack+0xa9/0xd0 [ 3279.272807][T13170] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3279.279041][T13170] vb2_create_bufs+0x4b5/0x8e0 [ 3279.283816][T13170] ? vb2_request_queue+0x120/0x120 [ 3279.288921][T13170] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3279.295156][T13170] ? v4l2_prio_max+0x266/0x310 [ 3279.299912][T13170] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3279.306144][T13170] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3279.311415][T13170] v4l_create_bufs+0x152/0x230 [ 3279.316169][T13170] __video_do_ioctl+0x805/0xd80 [ 3279.321033][T13170] ? v4l_s_fmt+0xb20/0xb20 [ 3279.325448][T13170] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3279.331672][T13170] ? _copy_from_user+0xdd/0x150 [ 3279.336506][T13170] video_usercopy+0x460/0x16b0 [ 3279.341278][T13170] ? v4l_s_fmt+0xb20/0xb20 [ 3279.345688][T13170] ? v4l_enumstd+0x70/0x70 [ 3279.350096][T13170] ? __fget+0x473/0x710 [ 3279.354238][T13170] ? find_held_lock+0x35/0x120 [ 3279.358977][T13170] ? __fget+0x473/0x710 [ 3279.363129][T13170] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3279.369374][T13170] ? lock_downgrade+0xbe0/0xbe0 [ 3279.374218][T13170] ? kasan_check_read+0x11/0x20 [ 3279.379051][T13170] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3279.385031][T13170] ? rcu_read_unlock_special+0x380/0x380 [ 3279.390652][T13170] ? __fget+0x49a/0x710 [ 3279.394793][T13170] ? video_usercopy+0x16b0/0x16b0 [ 3279.399831][T13170] video_ioctl2+0x2d/0x35 [ 3279.404166][T13170] v4l2_ioctl+0x156/0x1b0 [ 3279.408480][T13170] ? video_devdata+0xa0/0xa0 [ 3279.413059][T13170] do_vfs_ioctl+0x107b/0x17d0 [ 3279.417729][T13170] ? ioctl_preallocate+0x2f0/0x2f0 [ 3279.422834][T13170] ? __fget_light+0x2db/0x420 [ 3279.427504][T13170] ? fget_raw+0x20/0x20 [ 3279.431662][T13170] ? put_timespec64+0x115/0x1b0 [ 3279.436514][T13170] ? nsecs_to_jiffies+0x30/0x30 [ 3279.441361][T13170] ? do_syscall_64+0x8c/0x800 [ 3279.446027][T13170] ? do_syscall_64+0x8c/0x800 [ 3279.450686][T13170] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3279.455956][T13170] ? security_file_ioctl+0x93/0xc0 [ 3279.461064][T13170] ksys_ioctl+0xab/0xd0 [ 3279.465220][T13170] __x64_sys_ioctl+0x73/0xb0 [ 3279.469807][T13170] do_syscall_64+0x1a3/0x800 [ 3279.474406][T13170] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3279.480033][T13170] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3279.485754][T13170] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3279.491303][T13170] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3279.497172][T13170] RIP: 0033:0x457ec9 [ 3279.501055][T13170] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3279.520668][T13170] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3279.529084][T13170] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3279.537050][T13170] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3279.545005][T13170] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3279.552956][T13170] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 [ 3279.560915][T13170] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3279.570396][T13170] Mem-Info: [ 3279.576049][T13170] active_anon:145964 inactive_anon:201 isolated_anon:0 [ 3279.576049][T13170] active_file:12621 inactive_file:58898 isolated_file:0 [ 3279.576049][T13170] unevictable:0 dirty:298 writeback:0 unstable:0 [ 3279.576049][T13170] slab_reclaimable:15618 slab_unreclaimable:115092 [ 3279.576049][T13170] mapped:55583 shmem:244 pagetables:1796 bounce:0 [ 3279.576049][T13170] free:1179083 free_pcp:471 free_cma:0 [ 3279.614827][T13170] Node 0 active_anon:583856kB inactive_anon:804kB active_file:50344kB inactive_file:235592kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222332kB dirty:1192kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3279.644283][T13170] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3279.671997][T13170] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3279.709038][T13170] lowmem_reserve[]: 0 2535 2537 2537 [ 3279.715114][T13170] Node 0 DMA32 free:914128kB min:36080kB low:45100kB high:54120kB active_anon:583856kB inactive_anon:804kB active_file:50344kB inactive_file:235592kB unevictable:0kB writepending:1192kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8128kB pagetables:7184kB bounce:0kB free_pcp:2120kB local_pcp:1224kB free_cma:0kB [ 3279.746394][T13170] lowmem_reserve[]: 0 0 2 2 [ 3279.751343][T13170] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3279.783753][T13170] lowmem_reserve[]: 0 0 0 0 [ 3279.788806][T13170] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3279.817216][T13170] lowmem_reserve[]: 0 0 0 0 [ 3279.821814][T13170] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3279.836190][T13170] Node 0 DMA32: 610*4kB (UME) 423*8kB (UM) 864*16kB (UM) 1406*32kB (UM) 619*64kB (UME) 108*128kB (UM) 44*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 38*2048kB (UM) 155*4096kB (UM) = 913216kB [ 3279.854786][T13170] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3279.870260][T13170] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3279.887985][T13170] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3279.897597][T13170] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3279.906906][T13170] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3279.916500][T13170] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3279.925806][T13170] 71762 total pagecache pages [ 3279.930534][T13170] 0 pages in swap cache [ 3279.934696][T13170] Swap cache stats: add 0, delete 0, find 0/0 [ 3279.940812][T13170] Free swap = 0kB [ 3279.944527][T13170] Total swap = 0kB [ 3279.948230][T13170] 1965979 pages RAM [ 3279.952130][T13170] 0 pages HighMem/MovableOnly [ 3279.956808][T13170] 343989 pages reserved [ 3279.961341][T13170] 0 pages cma reserved [ 3279.965583][T13186] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3279.979774][T13186] CPU: 1 PID: 13186 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3279.988710][T13186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3279.998767][T13186] Call Trace: [ 3280.002076][T13186] dump_stack+0x1db/0x2d0 [ 3280.002104][T13186] ? dump_stack_print_info.cold+0x20/0x20 [ 3280.002120][T13186] ? idr_get_free+0xee0/0xee0 [ 3280.002140][T13186] ? kasan_kmalloc+0x9/0x10 [ 3280.002157][T13186] ? kmem_cache_alloc_trace+0x151/0x760 [ 3280.002176][T13186] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3280.002192][T13186] ? vb2_core_create_bufs+0x378/0x8e0 [ 3280.002214][T13186] warn_alloc.cold+0xc3/0x1c9 [ 3280.041960][T13186] ? zone_watermark_ok_safe+0x420/0x420 [ 3280.047516][T13186] ? print_usage_bug+0xd0/0xd0 [ 3280.052299][T13186] ? kasan_kmalloc+0x9/0x10 [ 3280.056818][T13186] ? __lock_is_held+0xb6/0x140 [ 3280.061589][T13186] ? add_lock_to_list.isra.0+0x450/0x450 [ 3280.067232][T13186] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3280.073467][T13186] ? check_preemption_disabled+0x48/0x290 [ 3280.079192][T13186] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3280.084319][T13186] __vmalloc_node_range+0x57a/0x910 [ 3280.089510][T13186] ? __lock_is_held+0xb6/0x140 [ 3280.094278][T13186] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3280.099385][T13186] ? vfree_atomic+0xe0/0xe0 [ 3280.103873][T13186] ? rcu_read_lock_sched_held+0x110/0x130 [ 3280.109595][T13186] ? kmem_cache_alloc_trace+0x354/0x760 [ 3280.115140][T13186] ? __lock_is_held+0xb6/0x140 [ 3280.119894][T13186] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3280.124991][T13186] vmalloc_user+0x6b/0x90 [ 3280.129316][T13186] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3280.134431][T13186] vb2_vmalloc_alloc+0x134/0x3a0 [ 3280.139361][T13186] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3280.145165][T13186] ? lock_acquire+0x1db/0x570 [ 3280.149838][T13186] ? __vb2_queue_alloc+0xf5/0xf40 [ 3280.154870][T13186] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3280.160670][T13186] __vb2_queue_alloc+0x5a6/0xf40 [ 3280.165603][T13186] ? vimc_cap_get_format+0x120/0x120 [ 3280.170881][T13186] vb2_core_create_bufs+0x378/0x8e0 [ 3280.176090][T13186] ? __vb2_queue_alloc+0xf40/0xf40 [ 3280.181199][T13186] ? mutex_trylock+0x2d0/0x2d0 [ 3280.185948][T13186] ? save_stack+0xa9/0xd0 [ 3280.190274][T13186] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3280.196507][T13186] vb2_create_bufs+0x4b5/0x8e0 [ 3280.201255][T13186] ? vb2_request_queue+0x120/0x120 [ 3280.206363][T13186] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3280.212607][T13186] ? v4l2_prio_max+0x266/0x310 [ 3280.217366][T13186] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3280.223613][T13186] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3280.228907][T13186] v4l_create_bufs+0x152/0x230 [ 3280.233670][T13186] __video_do_ioctl+0x805/0xd80 [ 3280.238520][T13186] ? v4l_s_fmt+0xb20/0xb20 [ 3280.242921][T13186] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3280.249157][T13186] ? _copy_from_user+0xdd/0x150 [ 3280.254018][T13186] video_usercopy+0x460/0x16b0 [ 3280.258795][T13186] ? v4l_s_fmt+0xb20/0xb20 [ 3280.263199][T13186] ? v4l_enumstd+0x70/0x70 [ 3280.267603][T13186] ? __fget+0x473/0x710 [ 3280.271757][T13186] ? find_held_lock+0x35/0x120 [ 3280.276536][T13186] ? __fget+0x473/0x710 [ 3280.280698][T13186] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3280.286929][T13186] ? lock_downgrade+0xbe0/0xbe0 [ 3280.291777][T13186] ? kasan_check_read+0x11/0x20 [ 3280.296881][T13186] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3280.302857][T13186] ? rcu_read_unlock_special+0x380/0x380 [ 3280.308510][T13186] ? __fget+0x49a/0x710 [ 3280.312675][T13186] ? video_usercopy+0x16b0/0x16b0 [ 3280.317698][T13186] video_ioctl2+0x2d/0x35 [ 3280.322021][T13186] v4l2_ioctl+0x156/0x1b0 [ 3280.326340][T13186] ? video_devdata+0xa0/0xa0 [ 3280.330928][T13186] do_vfs_ioctl+0x107b/0x17d0 [ 3280.335618][T13186] ? ioctl_preallocate+0x2f0/0x2f0 [ 3280.340739][T13186] ? __fget_light+0x2db/0x420 [ 3280.345408][T13186] ? fget_raw+0x20/0x20 [ 3280.349661][T13186] ? put_timespec64+0x115/0x1b0 [ 3280.354514][T13186] ? _raw_spin_unlock_irq+0x28/0x90 [ 3280.359703][T13186] ? nsecs_to_jiffies+0x30/0x30 [ 3280.364537][T13186] ? do_syscall_64+0x8c/0x800 [ 3280.369215][T13186] ? do_syscall_64+0x8c/0x800 [ 3280.373894][T13186] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3280.379184][T13186] ? security_file_ioctl+0x93/0xc0 [ 3280.384283][T13186] ksys_ioctl+0xab/0xd0 [ 3280.388425][T13186] __x64_sys_ioctl+0x73/0xb0 [ 3280.393012][T13186] do_syscall_64+0x1a3/0x800 [ 3280.397605][T13186] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3280.403223][T13186] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3280.408923][T13186] ? __switch_to_asm+0x34/0x70 [ 3280.413685][T13186] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3280.419228][T13186] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3280.425101][T13186] RIP: 0033:0x457ec9 [ 3280.428976][T13186] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3280.448567][T13186] RSP: 002b:00007fed9220ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3280.456966][T13186] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 20:32:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x7400000000000000, 0xffffffffffffffff]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:32:57 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000230001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:32:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0xa]}) 20:32:57 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:32:57 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000200)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x6c, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f6c61726765696f08000000636172642c66736d616769633d30303034302c08006f74636f6e746578743d726f6f742c6d6561737572652c000000000000000000000000000007f5184416b71b2181f3bf4a4e27e2d58ed019c9e7732bb7db96c7eefd3bfbe9d890151f2cd3edab82a1"]) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socket$vsock_stream(0x28, 0x1, 0x0) 20:32:57 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x200000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3280.464920][T13186] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3280.472884][T13186] RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000 [ 3280.480846][T13186] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed9220f6d4 [ 3280.488799][T13186] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3280.570668][T13226] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3280.630072][T13229] XFS (loop2): unknown mount option [nolargeio]. [ 3280.653663][T13226] CPU: 1 PID: 13226 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3280.662620][T13226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3280.672673][T13226] Call Trace: [ 3280.675969][T13226] dump_stack+0x1db/0x2d0 [ 3280.680301][T13226] ? dump_stack_print_info.cold+0x20/0x20 [ 3280.686019][T13226] ? idr_get_free+0xee0/0xee0 [ 3280.690714][T13226] ? kasan_kmalloc+0x9/0x10 [ 3280.695217][T13226] ? kmem_cache_alloc_trace+0x151/0x760 [ 3280.700762][T13226] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3280.705788][T13226] ? vb2_core_create_bufs+0x378/0x8e0 [ 3280.711168][T13226] warn_alloc.cold+0xc3/0x1c9 [ 3280.715844][T13226] ? zone_watermark_ok_safe+0x420/0x420 [ 3280.721387][T13226] ? print_usage_bug+0xd0/0xd0 [ 3280.726147][T13226] ? kasan_kmalloc+0x9/0x10 [ 3280.730653][T13226] ? __lock_is_held+0xb6/0x140 [ 3280.735421][T13226] ? add_lock_to_list.isra.0+0x450/0x450 [ 3280.741059][T13226] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3280.747305][T13226] ? check_preemption_disabled+0x48/0x290 [ 3280.753024][T13226] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3280.758136][T13226] __vmalloc_node_range+0x57a/0x910 [ 3280.763332][T13226] ? __lock_is_held+0xb6/0x140 [ 3280.768097][T13226] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3280.773211][T13226] ? vfree_atomic+0xe0/0xe0 [ 3280.777714][T13226] ? rcu_read_lock_sched_held+0x110/0x130 [ 3280.783435][T13226] ? kmem_cache_alloc_trace+0x354/0x760 [ 3280.788978][T13226] ? __lock_is_held+0xb6/0x140 [ 3280.793740][T13226] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3280.798855][T13226] vmalloc_user+0x6b/0x90 [ 3280.803185][T13226] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3280.808299][T13226] vb2_vmalloc_alloc+0x134/0x3a0 [ 3280.813238][T13226] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3280.819574][T13226] ? lock_acquire+0x1db/0x570 [ 3280.824255][T13226] ? __video_do_ioctl+0x3b1/0xd80 [ 3280.829275][T13226] ? __vb2_queue_alloc+0xf5/0xf40 [ 3280.834301][T13226] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3280.840105][T13226] __vb2_queue_alloc+0x5a6/0xf40 [ 3280.845062][T13226] ? vimc_cap_get_format+0x120/0x120 [ 3280.850351][T13226] vb2_core_create_bufs+0x378/0x8e0 [ 3280.855551][T13226] ? __vb2_queue_alloc+0xf40/0xf40 [ 3280.860672][T13226] ? mutex_trylock+0x2d0/0x2d0 [ 3280.865439][T13226] ? save_stack+0xa9/0xd0 [ 3280.869771][T13226] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3280.876012][T13226] vb2_create_bufs+0x4b5/0x8e0 [ 3280.880778][T13226] ? vb2_request_queue+0x120/0x120 [ 3280.885890][T13226] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3280.892128][T13226] ? v4l2_prio_max+0x266/0x310 [ 3280.896897][T13226] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3280.903169][T13226] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3280.908459][T13226] v4l_create_bufs+0x152/0x230 [ 3280.913231][T13226] __video_do_ioctl+0x805/0xd80 [ 3280.918101][T13226] ? v4l_s_fmt+0xb20/0xb20 [ 3280.922524][T13226] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3280.928773][T13226] ? _copy_from_user+0xdd/0x150 [ 3280.933630][T13226] video_usercopy+0x460/0x16b0 [ 3280.938393][T13226] ? v4l_s_fmt+0xb20/0xb20 [ 3280.942815][T13226] ? v4l_enumstd+0x70/0x70 [ 3280.947236][T13226] ? __fget+0x473/0x710 [ 3280.951780][T13226] ? find_held_lock+0x35/0x120 [ 3280.956543][T13226] ? __fget+0x473/0x710 [ 3280.960709][T13226] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3280.966954][T13226] ? lock_downgrade+0xbe0/0xbe0 [ 3280.971803][T13226] ? kasan_check_read+0x11/0x20 [ 3280.976659][T13226] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3280.982643][T13226] ? rcu_read_unlock_special+0x380/0x380 [ 3280.988283][T13226] ? __fget+0x49a/0x710 [ 3280.992445][T13226] ? video_usercopy+0x16b0/0x16b0 [ 3280.997486][T13226] video_ioctl2+0x2d/0x35 [ 3281.001818][T13226] v4l2_ioctl+0x156/0x1b0 [ 3281.006149][T13226] ? video_devdata+0xa0/0xa0 [ 3281.010739][T13226] do_vfs_ioctl+0x107b/0x17d0 [ 3281.015420][T13226] ? ioctl_preallocate+0x2f0/0x2f0 [ 3281.020530][T13226] ? __fget_light+0x2db/0x420 [ 3281.025217][T13226] ? fget_raw+0x20/0x20 [ 3281.029368][T13226] ? put_timespec64+0x115/0x1b0 [ 3281.034218][T13226] ? nsecs_to_jiffies+0x30/0x30 [ 3281.039094][T13226] ? do_syscall_64+0x8c/0x800 [ 3281.043794][T13226] ? do_syscall_64+0x8c/0x800 [ 3281.048472][T13226] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3281.053758][T13226] ? security_file_ioctl+0x93/0xc0 [ 3281.058873][T13226] ksys_ioctl+0xab/0xd0 [ 3281.063034][T13226] __x64_sys_ioctl+0x73/0xb0 [ 3281.067629][T13226] do_syscall_64+0x1a3/0x800 [ 3281.072222][T13226] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3281.077855][T13226] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3281.083589][T13226] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3281.089148][T13226] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3281.095043][T13226] RIP: 0033:0x457ec9 [ 3281.098941][T13226] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3281.118546][T13226] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:32:57 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xda030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3281.126990][T13226] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3281.134956][T13226] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3281.142926][T13226] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3281.150890][T13226] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3281.158855][T13226] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3281.173649][T13236] kvm [13218]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0xa [ 3281.215112][T13239] kvm [13218]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0xa [ 3281.223620][T13226] warn_alloc_show_mem: 1 callbacks suppressed [ 3281.223626][T13226] Mem-Info: [ 3281.262955][T13226] active_anon:148618 inactive_anon:202 isolated_anon:0 [ 3281.262955][T13226] active_file:12621 inactive_file:58918 isolated_file:0 [ 3281.262955][T13226] unevictable:0 dirty:319 writeback:0 unstable:0 [ 3281.262955][T13226] slab_reclaimable:15619 slab_unreclaimable:115555 [ 3281.262955][T13226] mapped:55589 shmem:245 pagetables:1915 bounce:0 [ 3281.262955][T13226] free:1175822 free_pcp:363 free_cma:0 20:32:57 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="6e6f6c00726765696f2c6469eb20ad3ddf7a55d2a749397c05d361297ccdc712bd74ea52eb99e26c6fe119727ddd772e29db5539985e53f38f5e3bc0545fd7b8076f965fc187c4b853bcb031584f9a400d44a298b761eb011a7009752943e3f40baa7ee07fafe99916913d37575fc1b77b5a7746dbab4c8852d5490543af4ecaa35276fe86bcfc7726562e3b231650"]) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:32:57 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe0010000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:32:57 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000480001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3281.360615][T13226] Node 0 active_anon:588044kB inactive_anon:808kB active_file:50344kB inactive_file:235672kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222156kB dirty:1276kB writeback:0kB shmem:980kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3281.408890][T13248] XFS (loop2): unknown mount option [nol]. [ 3281.448198][T13226] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3281.477344][T13226] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3281.508341][T13226] lowmem_reserve[]: 0 2535 2537 2537 [ 3281.514394][T13226] Node 0 DMA32 free:902316kB min:36080kB low:45100kB high:54120kB active_anon:592460kB inactive_anon:808kB active_file:50344kB inactive_file:235672kB unevictable:0kB writepending:1276kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8448kB pagetables:7512kB bounce:0kB free_pcp:1668kB local_pcp:460kB free_cma:0kB 20:32:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0xc]}) 20:32:58 executing program 2: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x20) setsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f00000000c0)=0x40, 0x4) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) [ 3281.567768][T13226] lowmem_reserve[]: 0 0 2 2 [ 3281.572535][T13226] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3281.625667][T13226] lowmem_reserve[]: 0 0 0 0 [ 3281.630362][T13226] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3281.660015][T13226] lowmem_reserve[]: 0 0 0 0 [ 3281.670054][T13226] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3281.693044][T13226] Node 0 DMA32: 501*4kB (UM) 61*8kB (UE) 879*16kB (UE) 1405*32kB (UME) 616*64kB (UM) 115*128kB (UME) 43*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 38*2048kB (UM) 155*4096kB (UM) = 910540kB [ 3281.800397][T13226] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3281.820745][T13271] kvm [13263]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0xc [ 3281.829233][T13226] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3281.858235][T13226] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3281.868445][T13226] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3281.878859][T13226] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3281.892090][T13273] kvm [13263]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0xc [ 3281.902673][T13226] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3281.919272][T13226] 71792 total pagecache pages [ 3281.924060][T13226] 0 pages in swap cache [ 3281.935334][T13226] Swap cache stats: add 0, delete 0, find 0/0 [ 3281.941610][T13226] Free swap = 0kB [ 3281.945415][T13226] Total swap = 0kB [ 3281.955271][T13226] 1965979 pages RAM [ 3281.959858][T13226] 0 pages HighMem/MovableOnly [ 3281.969937][T13226] 343989 pages reserved [ 3281.974295][T13226] 0 pages cma reserved [ 3281.978741][T13232] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3281.994151][T13232] CPU: 0 PID: 13232 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3282.003092][T13232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3282.013144][T13232] Call Trace: [ 3282.016437][T13232] dump_stack+0x1db/0x2d0 [ 3282.020756][T13232] ? dump_stack_print_info.cold+0x20/0x20 [ 3282.026453][T13232] ? idr_get_free+0xee0/0xee0 [ 3282.031115][T13232] ? kasan_kmalloc+0x9/0x10 [ 3282.035614][T13232] ? kmem_cache_alloc_trace+0x151/0x760 [ 3282.041155][T13232] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3282.046158][T13270] XFS (loop2): Invalid superblock magic number [ 3282.052301][T13232] ? vb2_core_create_bufs+0x378/0x8e0 [ 3282.057653][T13232] warn_alloc.cold+0xc3/0x1c9 [ 3282.062394][T13232] ? zone_watermark_ok_safe+0x420/0x420 [ 3282.067921][T13232] ? print_usage_bug+0xd0/0xd0 [ 3282.072666][T13232] ? kasan_kmalloc+0x9/0x10 [ 3282.077148][T13232] ? __lock_is_held+0xb6/0x140 [ 3282.081907][T13232] ? add_lock_to_list.isra.0+0x450/0x450 [ 3282.087522][T13232] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3282.093741][T13232] ? check_preemption_disabled+0x48/0x290 [ 3282.099439][T13232] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3282.104530][T13232] __vmalloc_node_range+0x57a/0x910 [ 3282.109710][T13232] ? __lock_is_held+0xb6/0x140 [ 3282.114471][T13232] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3282.119576][T13232] ? vfree_atomic+0xe0/0xe0 [ 3282.124061][T13232] ? rcu_read_lock_sched_held+0x110/0x130 [ 3282.129761][T13232] ? kmem_cache_alloc_trace+0x354/0x760 [ 3282.135280][T13232] ? __lock_is_held+0xb6/0x140 [ 3282.140022][T13232] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3282.145115][T13232] vmalloc_user+0x6b/0x90 [ 3282.149441][T13232] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3282.154530][T13232] vb2_vmalloc_alloc+0x134/0x3a0 [ 3282.159445][T13232] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3282.165241][T13232] ? lock_acquire+0x1db/0x570 [ 3282.169898][T13232] ? __vb2_queue_alloc+0xf5/0xf40 [ 3282.174904][T13232] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3282.180686][T13232] __vb2_queue_alloc+0x5a6/0xf40 [ 3282.185611][T13232] ? vimc_cap_get_format+0x120/0x120 [ 3282.190873][T13232] vb2_core_create_bufs+0x378/0x8e0 [ 3282.196052][T13232] ? __vb2_queue_alloc+0xf40/0xf40 [ 3282.201145][T13232] ? mutex_trylock+0x2d0/0x2d0 [ 3282.205890][T13232] ? save_stack+0xa9/0xd0 [ 3282.210202][T13232] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3282.216421][T13232] vb2_create_bufs+0x4b5/0x8e0 [ 3282.221164][T13232] ? vb2_request_queue+0x120/0x120 [ 3282.226274][T13232] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3282.232493][T13232] ? v4l2_prio_max+0x266/0x310 [ 3282.237233][T13232] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3282.243452][T13232] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3282.248719][T13232] v4l_create_bufs+0x152/0x230 [ 3282.253479][T13232] __video_do_ioctl+0x805/0xd80 [ 3282.258314][T13232] ? v4l_s_fmt+0xb20/0xb20 [ 3282.262712][T13232] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3282.268933][T13232] ? _copy_from_user+0xdd/0x150 [ 3282.273768][T13232] video_usercopy+0x460/0x16b0 [ 3282.278525][T13232] ? v4l_s_fmt+0xb20/0xb20 [ 3282.282924][T13232] ? v4l_enumstd+0x70/0x70 [ 3282.287322][T13232] ? __fget+0x473/0x710 [ 3282.291459][T13232] ? find_held_lock+0x35/0x120 [ 3282.296203][T13232] ? __fget+0x473/0x710 [ 3282.300342][T13232] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3282.306567][T13232] ? lock_downgrade+0xbe0/0xbe0 [ 3282.311763][T13232] ? kasan_check_read+0x11/0x20 [ 3282.316597][T13232] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3282.322562][T13232] ? rcu_read_unlock_special+0x380/0x380 [ 3282.328185][T13232] ? __fget+0x49a/0x710 [ 3282.332323][T13232] ? video_usercopy+0x16b0/0x16b0 [ 3282.337324][T13232] video_ioctl2+0x2d/0x35 [ 3282.341633][T13232] v4l2_ioctl+0x156/0x1b0 [ 3282.345944][T13232] ? video_devdata+0xa0/0xa0 [ 3282.350514][T13232] do_vfs_ioctl+0x107b/0x17d0 [ 3282.355174][T13232] ? ioctl_preallocate+0x2f0/0x2f0 [ 3282.360280][T13232] ? __fget_light+0x2db/0x420 [ 3282.364937][T13232] ? fget_raw+0x20/0x20 [ 3282.369082][T13232] ? put_timespec64+0x115/0x1b0 [ 3282.373922][T13232] ? nsecs_to_jiffies+0x30/0x30 [ 3282.378753][T13232] ? do_syscall_64+0x8c/0x800 [ 3282.383411][T13232] ? do_syscall_64+0x8c/0x800 [ 3282.388068][T13232] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3282.393353][T13232] ? security_file_ioctl+0x93/0xc0 [ 3282.398445][T13232] ksys_ioctl+0xab/0xd0 [ 3282.402591][T13232] __x64_sys_ioctl+0x73/0xb0 [ 3282.407164][T13232] do_syscall_64+0x1a3/0x800 [ 3282.411749][T13232] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3282.417364][T13232] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3282.423083][T13232] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3282.428617][T13232] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3282.434485][T13232] RIP: 0033:0x457ec9 [ 3282.438361][T13232] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3282.457970][T13232] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3282.466358][T13232] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3282.474308][T13232] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3282.482261][T13232] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3282.490207][T13232] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 [ 3282.498169][T13232] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3282.511055][T13232] Mem-Info: [ 3282.514319][T13232] active_anon:146487 inactive_anon:200 isolated_anon:0 [ 3282.514319][T13232] active_file:12621 inactive_file:58927 isolated_file:0 [ 3282.514319][T13232] unevictable:0 dirty:330 writeback:0 unstable:0 [ 3282.514319][T13232] slab_reclaimable:15628 slab_unreclaimable:115489 [ 3282.514319][T13232] mapped:55558 shmem:245 pagetables:1845 bounce:0 [ 3282.514319][T13232] free:1177901 free_pcp:672 free_cma:0 [ 3282.552579][T13232] Node 0 active_anon:585900kB inactive_anon:828kB active_file:50344kB inactive_file:235708kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222232kB dirty:1320kB writeback:0kB shmem:1012kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 186368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3282.582312][T13232] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3282.608854][T13232] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3282.637038][T13232] lowmem_reserve[]: 0 2535 2537 2537 [ 3282.642505][T13232] Node 0 DMA32 free:910500kB min:36080kB low:45100kB high:54120kB active_anon:585900kB inactive_anon:812kB active_file:50344kB inactive_file:235728kB unevictable:0kB writepending:1348kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8096kB pagetables:7244kB bounce:0kB free_pcp:2648kB local_pcp:1264kB free_cma:0kB [ 3282.679683][T13232] lowmem_reserve[]: 0 0 2 2 [ 3282.684238][T13232] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3282.714755][T13232] lowmem_reserve[]: 0 0 0 0 [ 3282.719346][T13232] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3282.719387][T13232] lowmem_reserve[]: 0 0 0 0 [ 3282.719406][T13232] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3282.719489][T13232] Node 0 DMA32: 530*4kB (UM) 385*8kB (U) 876*16kB (U) 1409*32kB (UM) 617*64kB (UME) 107*128kB (UM) 44*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 38*2048kB (UM) 155*4096kB (UM) = 912624kB [ 3282.773483][T13232] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3282.809345][T13232] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3282.827662][T13232] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3282.837335][T13232] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3282.846671][T13232] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3282.856304][T13232] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3282.865618][T13232] 71797 total pagecache pages [ 3282.870385][T13232] 0 pages in swap cache [ 3282.874549][T13232] Swap cache stats: add 0, delete 0, find 0/0 [ 3282.880672][T13232] Free swap = 0kB [ 3282.884386][T13232] Total swap = 0kB [ 3282.888103][T13232] 1965979 pages RAM [ 3282.891940][T13232] 0 pages HighMem/MovableOnly [ 3282.896608][T13232] 343989 pages reserved [ 3282.901689][T13232] 0 pages cma reserved [ 3282.905888][T13235] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3282.920068][T13235] CPU: 0 PID: 13235 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3282.929003][T13235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3282.939048][T13235] Call Trace: [ 3282.942358][T13235] dump_stack+0x1db/0x2d0 [ 3282.946674][T13235] ? dump_stack_print_info.cold+0x20/0x20 [ 3282.952458][T13235] ? idr_get_free+0xee0/0xee0 [ 3282.957121][T13235] ? kasan_kmalloc+0x9/0x10 [ 3282.961607][T13235] ? kmem_cache_alloc_trace+0x151/0x760 [ 3282.967153][T13235] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3282.972157][T13235] ? vb2_core_create_bufs+0x378/0x8e0 [ 3282.977530][T13235] warn_alloc.cold+0xc3/0x1c9 [ 3282.982243][T13235] ? zone_watermark_ok_safe+0x420/0x420 [ 3282.987782][T13235] ? print_usage_bug+0xd0/0xd0 [ 3282.992539][T13235] ? kasan_kmalloc+0x9/0x10 [ 3282.997039][T13235] ? __lock_is_held+0xb6/0x140 [ 3283.001785][T13235] ? add_lock_to_list.isra.0+0x450/0x450 [ 3283.007399][T13235] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3283.013620][T13235] ? check_preemption_disabled+0x48/0x290 [ 3283.019320][T13235] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3283.024415][T13235] __vmalloc_node_range+0x57a/0x910 [ 3283.029609][T13235] ? __lock_is_held+0xb6/0x140 [ 3283.034367][T13235] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3283.039461][T13235] ? vfree_atomic+0xe0/0xe0 [ 3283.043946][T13235] ? rcu_read_lock_sched_held+0x110/0x130 [ 3283.049657][T13235] ? kmem_cache_alloc_trace+0x354/0x760 [ 3283.055194][T13235] ? __lock_is_held+0xb6/0x140 [ 3283.059939][T13235] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3283.065036][T13235] vmalloc_user+0x6b/0x90 [ 3283.069346][T13235] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3283.074437][T13235] vb2_vmalloc_alloc+0x134/0x3a0 [ 3283.079376][T13235] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3283.085168][T13235] ? lock_acquire+0x1db/0x570 [ 3283.089825][T13235] ? __vb2_queue_alloc+0xf5/0xf40 [ 3283.094830][T13235] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3283.100613][T13235] __vb2_queue_alloc+0x5a6/0xf40 [ 3283.105540][T13235] ? vimc_cap_get_format+0x120/0x120 [ 3283.110841][T13235] vb2_core_create_bufs+0x378/0x8e0 [ 3283.116037][T13235] ? __vb2_queue_alloc+0xf40/0xf40 [ 3283.121141][T13235] ? mutex_trylock+0x2d0/0x2d0 [ 3283.125893][T13235] ? save_stack+0xa9/0xd0 [ 3283.130205][T13235] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3283.136428][T13235] vb2_create_bufs+0x4b5/0x8e0 [ 3283.141177][T13235] ? vb2_request_queue+0x120/0x120 [ 3283.146283][T13235] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3283.152524][T13235] ? v4l2_prio_max+0x266/0x310 [ 3283.157288][T13235] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3283.163511][T13235] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3283.168784][T13235] v4l_create_bufs+0x152/0x230 [ 3283.173533][T13235] __video_do_ioctl+0x805/0xd80 [ 3283.178388][T13235] ? v4l_s_fmt+0xb20/0xb20 [ 3283.182810][T13235] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3283.189035][T13235] ? _copy_from_user+0xdd/0x150 [ 3283.193874][T13235] video_usercopy+0x460/0x16b0 [ 3283.198621][T13235] ? v4l_s_fmt+0xb20/0xb20 [ 3283.203022][T13235] ? v4l_enumstd+0x70/0x70 [ 3283.207420][T13235] ? __fget+0x473/0x710 [ 3283.211590][T13235] ? find_held_lock+0x35/0x120 [ 3283.216335][T13235] ? __fget+0x473/0x710 [ 3283.220486][T13235] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3283.226720][T13235] ? lock_downgrade+0xbe0/0xbe0 [ 3283.231551][T13235] ? kasan_check_read+0x11/0x20 [ 3283.236407][T13235] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3283.242392][T13235] ? rcu_read_unlock_special+0x380/0x380 [ 3283.248011][T13235] ? __fget+0x49a/0x710 [ 3283.252167][T13235] ? video_usercopy+0x16b0/0x16b0 [ 3283.257188][T13235] video_ioctl2+0x2d/0x35 [ 3283.261503][T13235] v4l2_ioctl+0x156/0x1b0 [ 3283.265819][T13235] ? video_devdata+0xa0/0xa0 [ 3283.270393][T13235] do_vfs_ioctl+0x107b/0x17d0 [ 3283.275052][T13235] ? ioctl_preallocate+0x2f0/0x2f0 [ 3283.280146][T13235] ? __fget_light+0x2db/0x420 [ 3283.284805][T13235] ? fget_raw+0x20/0x20 [ 3283.288956][T13235] ? put_timespec64+0x115/0x1b0 [ 3283.293788][T13235] ? nsecs_to_jiffies+0x30/0x30 [ 3283.298624][T13235] ? do_syscall_64+0x8c/0x800 [ 3283.303283][T13235] ? do_syscall_64+0x8c/0x800 [ 3283.307944][T13235] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3283.313239][T13235] ? security_file_ioctl+0x93/0xc0 [ 3283.318347][T13235] ksys_ioctl+0xab/0xd0 [ 3283.322486][T13235] __x64_sys_ioctl+0x73/0xb0 [ 3283.327057][T13235] do_syscall_64+0x1a3/0x800 [ 3283.331630][T13235] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3283.337244][T13235] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3283.342944][T13235] ? __switch_to_asm+0x34/0x70 [ 3283.347694][T13235] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3283.353225][T13235] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3283.359103][T13235] RIP: 0033:0x457ec9 [ 3283.362993][T13235] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3283.382590][T13235] RSP: 002b:00007fed9222fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3283.390978][T13235] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3283.398928][T13235] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3283.406878][T13235] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 20:33:00 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x7a00000000000000, 0xffffffffffffffff]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:00 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:00 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a0000010000004c0001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x10]}) 20:33:00 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="4e576c617267791b61f93cbbc4beee27642c00"]) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:00 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x300000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3283.414845][T13235] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922306d4 [ 3283.422795][T13235] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3283.540380][T13294] XFS (loop2): unknown mount option [NWlargyaù<»Ä¾î'd]. 20:33:00 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xed010000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3283.586914][T13303] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3283.618829][T13303] CPU: 0 PID: 13303 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3283.627783][T13303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3283.637834][T13303] Call Trace: [ 3283.638653][T13306] kvm [13290]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x10 [ 3283.641140][T13303] dump_stack+0x1db/0x2d0 [ 3283.641165][T13303] ? dump_stack_print_info.cold+0x20/0x20 [ 3283.641180][T13303] ? idr_get_free+0xee0/0xee0 [ 3283.641199][T13303] ? kasan_kmalloc+0x9/0x10 [ 3283.641223][T13303] ? kmem_cache_alloc_trace+0x151/0x760 [ 3283.660174][T13303] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3283.660191][T13303] ? vb2_core_create_bufs+0x378/0x8e0 [ 3283.660214][T13303] warn_alloc.cold+0xc3/0x1c9 [ 3283.660232][T13303] ? zone_watermark_ok_safe+0x420/0x420 [ 3283.660248][T13303] ? print_usage_bug+0xd0/0xd0 [ 3283.660263][T13303] ? kasan_kmalloc+0x9/0x10 [ 3283.660283][T13303] ? __lock_is_held+0xb6/0x140 [ 3283.660305][T13303] ? add_lock_to_list.isra.0+0x450/0x450 [ 3283.669470][T13303] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3283.669487][T13303] ? check_preemption_disabled+0x48/0x290 [ 3283.669505][T13303] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3283.669527][T13303] __vmalloc_node_range+0x57a/0x910 [ 3283.669543][T13303] ? __lock_is_held+0xb6/0x140 [ 3283.669574][T13303] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3283.669595][T13303] ? vfree_atomic+0xe0/0xe0 [ 3283.676982][T13306] kvm [13290]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x10 [ 3283.680139][T13303] ? rcu_read_lock_sched_held+0x110/0x130 [ 3283.680158][T13303] ? kmem_cache_alloc_trace+0x354/0x760 [ 3283.680172][T13303] ? __lock_is_held+0xb6/0x140 [ 3283.680188][T13303] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3283.680206][T13303] vmalloc_user+0x6b/0x90 [ 3283.680223][T13303] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3283.680240][T13303] vb2_vmalloc_alloc+0x134/0x3a0 [ 3283.680262][T13303] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3283.700791][T13303] ? lock_acquire+0x1db/0x570 [ 3283.700810][T13303] ? __video_do_ioctl+0x3b1/0xd80 [ 3283.700825][T13303] ? __vb2_queue_alloc+0xf5/0xf40 [ 3283.700845][T13303] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3283.700858][T13303] __vb2_queue_alloc+0x5a6/0xf40 [ 3283.700890][T13303] ? vimc_cap_get_format+0x120/0x120 [ 3283.710111][T13303] vb2_core_create_bufs+0x378/0x8e0 [ 3283.710133][T13303] ? __vb2_queue_alloc+0xf40/0xf40 [ 3283.710151][T13303] ? mutex_trylock+0x2d0/0x2d0 [ 3283.710175][T13303] ? save_stack+0xa9/0xd0 [ 3283.710192][T13303] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3283.710211][T13303] vb2_create_bufs+0x4b5/0x8e0 [ 3283.710231][T13303] ? vb2_request_queue+0x120/0x120 [ 3283.869300][T13303] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3283.875546][T13303] ? v4l2_prio_max+0x266/0x310 [ 3283.880351][T13303] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3283.886603][T13303] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3283.891897][T13303] v4l_create_bufs+0x152/0x230 [ 3283.896669][T13303] __video_do_ioctl+0x805/0xd80 [ 3283.901533][T13303] ? v4l_s_fmt+0xb20/0xb20 [ 3283.905970][T13303] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3283.912215][T13303] ? _copy_from_user+0xdd/0x150 [ 3283.917069][T13303] video_usercopy+0x460/0x16b0 [ 3283.921840][T13303] ? v4l_s_fmt+0xb20/0xb20 [ 3283.926265][T13303] ? v4l_enumstd+0x70/0x70 [ 3283.930684][T13303] ? __fget+0x473/0x710 [ 3283.934843][T13303] ? find_held_lock+0x35/0x120 [ 3283.939611][T13303] ? __fget+0x473/0x710 [ 3283.943772][T13303] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3283.950625][T13303] ? lock_downgrade+0xbe0/0xbe0 [ 3283.956779][T13303] ? kasan_check_read+0x11/0x20 [ 3283.961632][T13303] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3283.967613][T13303] ? rcu_read_unlock_special+0x380/0x380 [ 3283.973252][T13303] ? __fget+0x49a/0x710 [ 3283.977413][T13303] ? video_usercopy+0x16b0/0x16b0 [ 3283.982438][T13303] video_ioctl2+0x2d/0x35 [ 3283.986774][T13303] v4l2_ioctl+0x156/0x1b0 [ 3283.991107][T13303] ? video_devdata+0xa0/0xa0 [ 3283.995695][T13303] do_vfs_ioctl+0x107b/0x17d0 [ 3284.000377][T13303] ? ioctl_preallocate+0x2f0/0x2f0 [ 3284.005487][T13303] ? __fget_light+0x2db/0x420 [ 3284.010164][T13303] ? fget_raw+0x20/0x20 [ 3284.014316][T13303] ? put_timespec64+0x115/0x1b0 [ 3284.019166][T13303] ? nsecs_to_jiffies+0x30/0x30 [ 3284.024019][T13303] ? do_syscall_64+0x8c/0x800 [ 3284.028694][T13303] ? do_syscall_64+0x8c/0x800 [ 3284.033374][T13303] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3284.038659][T13303] ? security_file_ioctl+0x93/0xc0 [ 3284.043775][T13303] ksys_ioctl+0xab/0xd0 [ 3284.047935][T13303] __x64_sys_ioctl+0x73/0xb0 [ 3284.052525][T13303] do_syscall_64+0x1a3/0x800 [ 3284.057128][T13303] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3284.062763][T13303] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3284.068486][T13303] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3284.074041][T13303] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3284.079927][T13303] RIP: 0033:0x457ec9 [ 3284.083823][T13303] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3284.103423][T13303] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3284.111832][T13303] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3284.119818][T13303] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3284.127787][T13303] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3284.135755][T13303] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3284.143723][T13303] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3284.168036][T13303] warn_alloc_show_mem: 1 callbacks suppressed [ 3284.168041][T13303] Mem-Info: 20:33:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x11]}) [ 3284.184837][T13303] active_anon:148087 inactive_anon:201 isolated_anon:0 [ 3284.184837][T13303] active_file:12621 inactive_file:58951 isolated_file:0 [ 3284.184837][T13303] unevictable:0 dirty:359 writeback:0 unstable:0 [ 3284.184837][T13303] slab_reclaimable:15631 slab_unreclaimable:115207 [ 3284.184837][T13303] mapped:55581 shmem:244 pagetables:1885 bounce:0 [ 3284.184837][T13303] free:1176779 free_pcp:361 free_cma:0 [ 3284.223275][T13303] Node 0 active_anon:588184kB inactive_anon:804kB active_file:50344kB inactive_file:235804kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222324kB dirty:1436kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 180224kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3284.252773][T13303] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:33:00 executing program 2: r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000100)={0xffffffffffffffff}, 0x113, 0x1009}}, 0x20) write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000000300)={0x1, 0x10, 0xfa00, {&(0x7f00000000c0), r1}}, 0x18) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) write$FUSE_INIT(r0, &(0x7f0000000340)={0x50, 0x0, 0x3, {0x7, 0x1c, 0x0, 0x0, 0x3, 0x3}}, 0x50) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"]) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) [ 3284.324415][T13303] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:33:01 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:01 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000680001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3284.439600][T13303] lowmem_reserve[]: 0 2535 2537 2537 [ 3284.455942][T13323] kvm [13313]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x11 [ 3284.482145][T13303] Node 0 DMA32 free:907788kB min:36080kB low:45100kB high:54120kB active_anon:588060kB inactive_anon:804kB active_file:50344kB inactive_file:235804kB unevictable:0kB writepending:1436kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8224kB pagetables:7540kB bounce:0kB free_pcp:1708kB local_pcp:448kB free_cma:0kB [ 3284.555551][T13323] kvm [13313]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x11 20:33:01 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf4020000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3284.602066][T13332] XFS (loop2): unknown mount option [n]. [ 3284.602219][T13303] lowmem_reserve[]: 0 0 2 2 [ 3284.619285][T13303] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3284.686402][T13303] lowmem_reserve[]: 0 0 0 0 [ 3284.698868][T13303] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3284.763538][T13303] lowmem_reserve[]: 0 0 0 0 [ 3284.768207][T13303] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3284.792284][T13303] Node 0 DMA32: 472*4kB (UM) 670*8kB (UME) 910*16kB (UME) 1401*32kB (UM) 620*64kB (UM) 100*128kB (ME) 34*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 37*2048kB (UM) 155*4096kB (UM) = 909648kB [ 3284.837681][T13303] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3284.860823][T13303] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3284.884723][T13303] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3284.894363][T13303] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3284.894382][T13303] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3284.923909][T13303] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3284.933263][T13303] 71827 total pagecache pages [ 3284.933281][T13303] 0 pages in swap cache [ 3284.933291][T13303] Swap cache stats: add 0, delete 0, find 0/0 [ 3284.933304][T13303] Free swap = 0kB [ 3284.952130][T13303] Total swap = 0kB [ 3284.963374][T13303] 1965979 pages RAM [ 3284.967217][T13303] 0 pages HighMem/MovableOnly [ 3284.973661][T13303] 343989 pages reserved [ 3284.977829][T13303] 0 pages cma reserved [ 3285.004121][T13305] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3285.019154][T13305] CPU: 1 PID: 13305 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3285.028086][T13305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3285.038121][T13305] Call Trace: [ 3285.041395][T13305] dump_stack+0x1db/0x2d0 [ 3285.045709][T13305] ? dump_stack_print_info.cold+0x20/0x20 [ 3285.051406][T13305] ? idr_get_free+0xee0/0xee0 [ 3285.056072][T13305] ? kasan_kmalloc+0x9/0x10 [ 3285.060566][T13305] ? kmem_cache_alloc_trace+0x151/0x760 [ 3285.066097][T13305] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3285.071104][T13305] ? vb2_core_create_bufs+0x378/0x8e0 [ 3285.076498][T13305] warn_alloc.cold+0xc3/0x1c9 [ 3285.081224][T13305] ? zone_watermark_ok_safe+0x420/0x420 [ 3285.086769][T13305] ? print_usage_bug+0xd0/0xd0 [ 3285.091530][T13305] ? kasan_kmalloc+0x9/0x10 [ 3285.096092][T13305] ? __lock_is_held+0xb6/0x140 [ 3285.100873][T13305] ? add_lock_to_list.isra.0+0x450/0x450 [ 3285.106510][T13305] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3285.112749][T13305] ? check_preemption_disabled+0x48/0x290 [ 3285.118450][T13305] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3285.123575][T13305] __vmalloc_node_range+0x57a/0x910 [ 3285.128773][T13305] ? __lock_is_held+0xb6/0x140 [ 3285.133516][T13305] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3285.138610][T13305] ? vfree_atomic+0xe0/0xe0 [ 3285.143100][T13305] ? rcu_read_lock_sched_held+0x110/0x130 [ 3285.148810][T13305] ? kmem_cache_alloc_trace+0x354/0x760 [ 3285.154352][T13305] ? __lock_is_held+0xb6/0x140 [ 3285.159120][T13305] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3285.164271][T13305] vmalloc_user+0x6b/0x90 [ 3285.168616][T13305] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3285.173711][T13305] vb2_vmalloc_alloc+0x134/0x3a0 [ 3285.178633][T13305] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3285.184414][T13305] ? lock_acquire+0x1db/0x570 [ 3285.189084][T13305] ? __vb2_queue_alloc+0xf5/0xf40 [ 3285.194133][T13305] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3285.199936][T13305] __vb2_queue_alloc+0x5a6/0xf40 [ 3285.204877][T13305] ? vimc_cap_get_format+0x120/0x120 [ 3285.210147][T13305] vb2_core_create_bufs+0x378/0x8e0 [ 3285.215327][T13305] ? __vb2_queue_alloc+0xf40/0xf40 [ 3285.220423][T13305] ? mutex_trylock+0x2d0/0x2d0 [ 3285.225196][T13305] ? save_stack+0xa9/0xd0 [ 3285.229508][T13305] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3285.235753][T13305] vb2_create_bufs+0x4b5/0x8e0 [ 3285.240526][T13305] ? vb2_request_queue+0x120/0x120 [ 3285.245667][T13305] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3285.251899][T13305] ? v4l2_prio_max+0x266/0x310 [ 3285.256647][T13305] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3285.262892][T13305] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3285.268192][T13305] v4l_create_bufs+0x152/0x230 [ 3285.272953][T13305] __video_do_ioctl+0x805/0xd80 [ 3285.277808][T13305] ? v4l_s_fmt+0xb20/0xb20 [ 3285.282231][T13305] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3285.288455][T13305] ? _copy_from_user+0xdd/0x150 [ 3285.293292][T13305] video_usercopy+0x460/0x16b0 [ 3285.298036][T13305] ? v4l_s_fmt+0xb20/0xb20 [ 3285.302437][T13305] ? v4l_enumstd+0x70/0x70 [ 3285.306842][T13305] ? __fget+0x473/0x710 [ 3285.310998][T13305] ? find_held_lock+0x35/0x120 [ 3285.315781][T13305] ? __fget+0x473/0x710 [ 3285.319926][T13305] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3285.326155][T13305] ? lock_downgrade+0xbe0/0xbe0 [ 3285.330988][T13305] ? kasan_check_read+0x11/0x20 [ 3285.335867][T13305] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3285.341831][T13305] ? rcu_read_unlock_special+0x380/0x380 [ 3285.347449][T13305] ? __fget+0x49a/0x710 [ 3285.351606][T13305] ? video_usercopy+0x16b0/0x16b0 [ 3285.356633][T13305] video_ioctl2+0x2d/0x35 [ 3285.360946][T13305] v4l2_ioctl+0x156/0x1b0 [ 3285.365258][T13305] ? video_devdata+0xa0/0xa0 [ 3285.369832][T13305] do_vfs_ioctl+0x107b/0x17d0 [ 3285.374495][T13305] ? ioctl_preallocate+0x2f0/0x2f0 [ 3285.379604][T13305] ? __fget_light+0x2db/0x420 [ 3285.384285][T13305] ? fget_raw+0x20/0x20 [ 3285.388438][T13305] ? put_timespec64+0x115/0x1b0 [ 3285.393281][T13305] ? nsecs_to_jiffies+0x30/0x30 [ 3285.398130][T13305] ? do_syscall_64+0x8c/0x800 [ 3285.402789][T13305] ? do_syscall_64+0x8c/0x800 [ 3285.407445][T13305] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3285.412712][T13305] ? security_file_ioctl+0x93/0xc0 [ 3285.417805][T13305] ksys_ioctl+0xab/0xd0 [ 3285.421944][T13305] __x64_sys_ioctl+0x73/0xb0 [ 3285.426516][T13305] do_syscall_64+0x1a3/0x800 [ 3285.431089][T13305] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3285.436701][T13305] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3285.442403][T13305] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3285.447947][T13305] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3285.453835][T13305] RIP: 0033:0x457ec9 [ 3285.457727][T13305] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3285.477339][T13305] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3285.485760][T13305] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3285.493712][T13305] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3285.501666][T13305] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3285.509619][T13305] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 [ 3285.517579][T13305] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3285.525901][T13305] Mem-Info: [ 3285.529067][T13305] active_anon:145971 inactive_anon:200 isolated_anon:0 [ 3285.529067][T13305] active_file:12621 inactive_file:58961 isolated_file:0 [ 3285.529067][T13305] unevictable:0 dirty:377 writeback:0 unstable:0 [ 3285.529067][T13305] slab_reclaimable:15633 slab_unreclaimable:115729 [ 3285.529067][T13305] mapped:55549 shmem:245 pagetables:1771 bounce:0 [ 3285.529067][T13305] free:1178229 free_pcp:685 free_cma:0 [ 3285.568217][T13305] Node 0 active_anon:583756kB inactive_anon:812kB active_file:50344kB inactive_file:235864kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222148kB dirty:1560kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3285.597304][T13305] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3285.624786][T13305] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3285.651743][T13305] lowmem_reserve[]: 0 2535 2537 2537 [ 3285.657093][T13305] Node 0 DMA32 free:910748kB min:36080kB low:45100kB high:54120kB active_anon:583756kB inactive_anon:812kB active_file:50344kB inactive_file:235864kB unevictable:0kB writepending:1560kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7968kB pagetables:7144kB bounce:0kB free_pcp:2744kB local_pcp:1416kB free_cma:0kB [ 3285.687959][T13305] lowmem_reserve[]: 0 0 2 2 [ 3285.692501][T13305] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3285.719913][T13305] lowmem_reserve[]: 0 0 0 0 [ 3285.724421][T13305] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3285.752787][T13305] lowmem_reserve[]: 0 0 0 0 [ 3285.757295][T13305] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3285.771614][T13305] Node 0 DMA32: 509*4kB (UM) 431*8kB (UME) 917*16kB (UME) 1411*32kB (UME) 620*64kB (UME) 103*128kB (UME) 34*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 36*2048kB (UM) 156*4096kB (UM) = 910748kB [ 3285.790412][T13305] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3285.805889][T13305] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3285.823676][T13305] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3285.833285][T13305] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3285.842615][T13305] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3285.852218][T13305] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3285.861567][T13305] 71839 total pagecache pages [ 3285.866266][T13305] 0 pages in swap cache [ 3285.870483][T13305] Swap cache stats: add 0, delete 0, find 0/0 [ 3285.876573][T13305] Free swap = 0kB [ 3285.880358][T13305] Total swap = 0kB [ 3285.884082][T13305] 1965979 pages RAM [ 3285.887867][T13305] 0 pages HighMem/MovableOnly [ 3285.892582][T13305] 343989 pages reserved [ 3285.896730][T13305] 0 pages cma reserved [ 3285.900954][T13308] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3285.915065][T13308] CPU: 1 PID: 13308 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3285.923988][T13308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3285.934031][T13308] Call Trace: [ 3285.937326][T13308] dump_stack+0x1db/0x2d0 [ 3285.941640][T13308] ? dump_stack_print_info.cold+0x20/0x20 [ 3285.947341][T13308] ? idr_get_free+0xee0/0xee0 [ 3285.952000][T13308] ? kasan_kmalloc+0x9/0x10 [ 3285.956494][T13308] ? kmem_cache_alloc_trace+0x151/0x760 [ 3285.962024][T13308] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3285.967049][T13308] ? vb2_core_create_bufs+0x378/0x8e0 [ 3285.972425][T13308] warn_alloc.cold+0xc3/0x1c9 [ 3285.977103][T13308] ? zone_watermark_ok_safe+0x420/0x420 [ 3285.982645][T13308] ? print_usage_bug+0xd0/0xd0 [ 3285.987405][T13308] ? kasan_kmalloc+0x9/0x10 [ 3285.991892][T13308] ? __lock_is_held+0xb6/0x140 [ 3285.996639][T13308] ? add_lock_to_list.isra.0+0x450/0x450 [ 3286.002273][T13308] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3286.008493][T13308] ? check_preemption_disabled+0x48/0x290 [ 3286.014225][T13308] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3286.019338][T13308] __vmalloc_node_range+0x57a/0x910 [ 3286.024528][T13308] ? __lock_is_held+0xb6/0x140 [ 3286.029294][T13308] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3286.034400][T13308] ? vfree_atomic+0xe0/0xe0 [ 3286.038885][T13308] ? rcu_read_lock_sched_held+0x110/0x130 [ 3286.044595][T13308] ? kmem_cache_alloc_trace+0x354/0x760 [ 3286.050122][T13308] ? __lock_is_held+0xb6/0x140 [ 3286.054869][T13308] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3286.059965][T13308] vmalloc_user+0x6b/0x90 [ 3286.064290][T13308] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3286.069392][T13308] vb2_vmalloc_alloc+0x134/0x3a0 [ 3286.074314][T13308] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3286.080111][T13308] ? lock_acquire+0x1db/0x570 [ 3286.084799][T13308] ? __vb2_queue_alloc+0xf5/0xf40 [ 3286.089806][T13308] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3286.095593][T13308] __vb2_queue_alloc+0x5a6/0xf40 [ 3286.100524][T13308] ? vimc_cap_get_format+0x120/0x120 [ 3286.105790][T13308] vb2_core_create_bufs+0x378/0x8e0 [ 3286.110972][T13308] ? __vb2_queue_alloc+0xf40/0xf40 [ 3286.116063][T13308] ? mutex_trylock+0x2d0/0x2d0 [ 3286.120829][T13308] ? save_stack+0xa9/0xd0 [ 3286.125146][T13308] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3286.131369][T13308] vb2_create_bufs+0x4b5/0x8e0 [ 3286.136118][T13308] ? vb2_request_queue+0x120/0x120 [ 3286.141236][T13308] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3286.147459][T13308] ? v4l2_prio_max+0x266/0x310 [ 3286.152203][T13308] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3286.158425][T13308] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3286.163698][T13308] v4l_create_bufs+0x152/0x230 [ 3286.168449][T13308] __video_do_ioctl+0x805/0xd80 [ 3286.173299][T13308] ? v4l_s_fmt+0xb20/0xb20 [ 3286.177702][T13308] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3286.183922][T13308] ? _copy_from_user+0xdd/0x150 [ 3286.188769][T13308] video_usercopy+0x460/0x16b0 [ 3286.193528][T13308] ? v4l_s_fmt+0xb20/0xb20 [ 3286.197932][T13308] ? v4l_enumstd+0x70/0x70 [ 3286.202342][T13308] ? __fget+0x473/0x710 [ 3286.206488][T13308] ? find_held_lock+0x35/0x120 [ 3286.211229][T13308] ? __fget+0x473/0x710 [ 3286.215362][T13308] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3286.221605][T13308] ? lock_downgrade+0xbe0/0xbe0 [ 3286.226452][T13308] ? kasan_check_read+0x11/0x20 [ 3286.231286][T13308] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3286.237249][T13308] ? rcu_read_unlock_special+0x380/0x380 [ 3286.242881][T13308] ? __fget+0x49a/0x710 [ 3286.247022][T13308] ? video_usercopy+0x16b0/0x16b0 [ 3286.252027][T13308] video_ioctl2+0x2d/0x35 [ 3286.256351][T13308] v4l2_ioctl+0x156/0x1b0 [ 3286.260668][T13308] ? video_devdata+0xa0/0xa0 [ 3286.265248][T13308] do_vfs_ioctl+0x107b/0x17d0 [ 3286.269910][T13308] ? ioctl_preallocate+0x2f0/0x2f0 [ 3286.275006][T13308] ? __fget_light+0x2db/0x420 [ 3286.279670][T13308] ? fget_raw+0x20/0x20 [ 3286.283810][T13308] ? put_timespec64+0x115/0x1b0 [ 3286.288665][T13308] ? nsecs_to_jiffies+0x30/0x30 [ 3286.293503][T13308] ? do_syscall_64+0x8c/0x800 [ 3286.298161][T13308] ? do_syscall_64+0x8c/0x800 [ 3286.302838][T13308] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3286.308109][T13308] ? security_file_ioctl+0x93/0xc0 [ 3286.313208][T13308] ksys_ioctl+0xab/0xd0 [ 3286.317348][T13308] __x64_sys_ioctl+0x73/0xb0 [ 3286.321922][T13308] do_syscall_64+0x1a3/0x800 [ 3286.326498][T13308] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3286.332115][T13308] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3286.337817][T13308] ? __switch_to_asm+0x34/0x70 [ 3286.342575][T13308] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3286.348124][T13308] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3286.354001][T13308] RIP: 0033:0x457ec9 [ 3286.357879][T13308] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3286.377463][T13308] RSP: 002b:00007fed9222fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3286.385863][T13308] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3286.393847][T13308] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3286.401820][T13308] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 20:33:03 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x8000000000000000, 0xffffffffffffffff]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:03 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) r2 = dup2(r1, r0) ioctl$DRM_IOCTL_RES_CTX(r2, 0xc0106426, &(0x7f0000000100)={0x2000000000000010, &(0x7f00000001c0)=[{0x0}]}) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$DRM_IOCTL_SWITCH_CTX(r2, 0x40086424, &(0x7f0000000180)={r3, 0x2}) r4 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0xfff, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x4) 20:33:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x12]}) 20:33:03 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf6ffffff, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:03 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a0000010000006c0001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3286.409776][T13308] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922306d4 [ 3286.417729][T13308] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff 20:33:03 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x400000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3286.540009][T13363] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3286.569638][T13363] CPU: 0 PID: 13363 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3286.578598][T13363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 20:33:03 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf8030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3286.588657][T13363] Call Trace: [ 3286.591957][T13363] dump_stack+0x1db/0x2d0 [ 3286.596296][T13363] ? dump_stack_print_info.cold+0x20/0x20 [ 3286.602021][T13363] ? idr_get_free+0xee0/0xee0 [ 3286.606704][T13363] ? kasan_kmalloc+0x9/0x10 [ 3286.611210][T13363] ? kmem_cache_alloc_trace+0x151/0x760 [ 3286.616777][T13363] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3286.621808][T13363] ? vb2_core_create_bufs+0x378/0x8e0 [ 3286.627192][T13363] warn_alloc.cold+0xc3/0x1c9 [ 3286.631881][T13363] ? zone_watermark_ok_safe+0x420/0x420 [ 3286.637430][T13363] ? print_usage_bug+0xd0/0xd0 [ 3286.642198][T13363] ? kasan_kmalloc+0x9/0x10 [ 3286.646708][T13363] ? __lock_is_held+0xb6/0x140 [ 3286.651472][T13363] ? add_lock_to_list.isra.0+0x450/0x450 [ 3286.657107][T13363] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3286.663351][T13363] ? check_preemption_disabled+0x48/0x290 [ 3286.669094][T13363] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3286.674217][T13363] __vmalloc_node_range+0x57a/0x910 [ 3286.679413][T13363] ? __lock_is_held+0xb6/0x140 [ 3286.684177][T13363] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3286.689292][T13363] ? vfree_atomic+0xe0/0xe0 [ 3286.693814][T13363] ? rcu_read_lock_sched_held+0x110/0x130 [ 3286.699535][T13363] ? kmem_cache_alloc_trace+0x354/0x760 [ 3286.705089][T13363] ? __lock_is_held+0xb6/0x140 [ 3286.709854][T13363] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3286.714966][T13363] vmalloc_user+0x6b/0x90 [ 3286.719318][T13363] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3286.724443][T13363] vb2_vmalloc_alloc+0x134/0x3a0 [ 3286.729382][T13363] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3286.735189][T13363] ? lock_acquire+0x1db/0x570 [ 3286.739868][T13363] ? __video_do_ioctl+0x3b1/0xd80 [ 3286.744892][T13363] ? __vb2_queue_alloc+0xf5/0xf40 [ 3286.749918][T13363] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3286.755740][T13363] __vb2_queue_alloc+0x5a6/0xf40 [ 3286.760696][T13363] ? vimc_cap_get_format+0x120/0x120 [ 3286.765981][T13363] vb2_core_create_bufs+0x378/0x8e0 [ 3286.771186][T13363] ? __vb2_queue_alloc+0xf40/0xf40 [ 3286.776298][T13363] ? mutex_trylock+0x2d0/0x2d0 [ 3286.781066][T13363] ? save_stack+0xa9/0xd0 [ 3286.785396][T13363] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3286.791644][T13363] vb2_create_bufs+0x4b5/0x8e0 [ 3286.796411][T13363] ? vb2_request_queue+0x120/0x120 [ 3286.801529][T13363] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3286.807781][T13363] ? v4l2_prio_max+0x266/0x310 [ 3286.812574][T13363] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3286.818976][T13363] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3286.824280][T13363] v4l_create_bufs+0x152/0x230 [ 3286.829059][T13363] __video_do_ioctl+0x805/0xd80 [ 3286.833920][T13363] ? v4l_s_fmt+0xb20/0xb20 [ 3286.838355][T13363] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3286.844599][T13363] ? _copy_from_user+0xdd/0x150 [ 3286.849455][T13363] video_usercopy+0x460/0x16b0 [ 3286.854220][T13363] ? v4l_s_fmt+0xb20/0xb20 [ 3286.858648][T13363] ? v4l_enumstd+0x70/0x70 [ 3286.863064][T13363] ? __fget+0x473/0x710 [ 3286.867219][T13363] ? find_held_lock+0x35/0x120 [ 3286.871983][T13363] ? __fget+0x473/0x710 [ 3286.876146][T13363] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3286.882419][T13363] ? lock_downgrade+0xbe0/0xbe0 [ 3286.887284][T13363] ? kasan_check_read+0x11/0x20 [ 3286.892138][T13363] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3286.898144][T13363] ? rcu_read_unlock_special+0x380/0x380 [ 3286.903786][T13363] ? __fget+0x49a/0x710 [ 3286.907951][T13363] ? video_usercopy+0x16b0/0x16b0 [ 3286.912975][T13363] video_ioctl2+0x2d/0x35 [ 3286.917307][T13363] v4l2_ioctl+0x156/0x1b0 [ 3286.921641][T13363] ? video_devdata+0xa0/0xa0 [ 3286.926230][T13363] do_vfs_ioctl+0x107b/0x17d0 [ 3286.930917][T13363] ? ioctl_preallocate+0x2f0/0x2f0 [ 3286.936049][T13363] ? __fget_light+0x2db/0x420 [ 3286.940763][T13363] ? fget_raw+0x20/0x20 [ 3286.944918][T13363] ? put_timespec64+0x115/0x1b0 [ 3286.949772][T13363] ? nsecs_to_jiffies+0x30/0x30 [ 3286.954626][T13363] ? do_syscall_64+0x8c/0x800 [ 3286.959304][T13363] ? do_syscall_64+0x8c/0x800 [ 3286.963979][T13363] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3286.969266][T13363] ? security_file_ioctl+0x93/0xc0 [ 3286.974384][T13363] ksys_ioctl+0xab/0xd0 [ 3286.978546][T13363] __x64_sys_ioctl+0x73/0xb0 [ 3286.983152][T13363] do_syscall_64+0x1a3/0x800 [ 3286.987745][T13363] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3286.993379][T13363] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3286.999105][T13363] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3287.004661][T13363] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3287.010550][T13363] RIP: 0033:0x457ec9 [ 3287.014458][T13363] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3287.034054][T13363] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3287.042477][T13363] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3287.050443][T13363] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3287.058408][T13363] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3287.066374][T13363] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 [ 3287.074347][T13363] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3287.088543][T13363] warn_alloc_show_mem: 1 callbacks suppressed [ 3287.088548][T13363] Mem-Info: [ 3287.098206][T13363] active_anon:147570 inactive_anon:199 isolated_anon:0 [ 3287.098206][T13363] active_file:12621 inactive_file:58984 isolated_file:0 [ 3287.098206][T13363] unevictable:0 dirty:407 writeback:0 unstable:0 [ 3287.098206][T13363] slab_reclaimable:15633 slab_unreclaimable:115218 [ 3287.098206][T13363] mapped:55605 shmem:244 pagetables:1880 bounce:0 [ 3287.098206][T13363] free:1176718 free_pcp:362 free_cma:0 [ 3287.098895][T13362] kvm [13352]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x12 [ 3287.136534][T13363] Node 0 active_anon:592348kB inactive_anon:796kB active_file:50344kB inactive_file:235936kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222420kB dirty:1628kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 182272kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3287.178319][T13368] kvm [13352]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x12 [ 3287.187741][T13363] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3287.215859][T13363] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3287.252122][T13363] lowmem_reserve[]: 0 2535 2537 2537 [ 3287.261713][T13363] Node 0 DMA32 free:904096kB min:36080kB low:45100kB high:54120kB active_anon:592348kB inactive_anon:796kB active_file:50344kB inactive_file:235936kB unevictable:0kB writepending:1628kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8352kB pagetables:7520kB bounce:0kB free_pcp:1372kB local_pcp:428kB free_cma:0kB 20:33:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x18]}) [ 3287.337046][T13363] lowmem_reserve[]: 0 0 2 2 [ 3287.342144][T13363] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3287.371325][T13354] XFS (loop2): Invalid superblock magic number [ 3287.371356][T13363] lowmem_reserve[]: 0 0 0 0 [ 3287.382294][T13363] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3287.410755][T13363] lowmem_reserve[]: 0 0 0 0 [ 3287.415625][T13363] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB 20:33:04 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfa000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3287.434274][T13363] Node 0 DMA32: 468*4kB (UME) 679*8kB (UE) 946*16kB (UME) 1398*32kB (UE) 619*64kB (UME) 102*128kB (UME) 34*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 35*2048kB (UM) 155*4096kB (UM) = 906280kB [ 3287.457588][T13363] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB 20:33:04 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000740001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3287.486925][T13363] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3287.525835][T13363] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3287.589287][T13363] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3287.598626][T13363] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3287.618827][T13388] kvm [13387]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x18 20:33:04 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000180)={{{@in6=@empty, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@local}}, &(0x7f00000000c0)=0xe8) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x2, 0x0, 0x0, 0x800000, &(0x7f0000000280)={[], [{@subj_user={'subj_user', 0x3d, '\',cgroupGPL'}}, {@audit='audit'}, {@obj_role={'obj_role', 0x3d, 'xfs\x00'}}, {@euid_lt={'euid<', r1}}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3287.660881][T13363] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3287.670472][T13363] 71857 total pagecache pages [ 3287.675836][T13363] 0 pages in swap cache [ 3287.680390][T13363] Swap cache stats: add 0, delete 0, find 0/0 [ 3287.687651][T13363] Free swap = 0kB [ 3287.701629][T13400] kvm [13387]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x18 20:33:04 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfc030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3287.711200][T13363] Total swap = 0kB [ 3287.716526][T13363] 1965979 pages RAM [ 3287.731591][T13363] 0 pages HighMem/MovableOnly [ 3287.736288][T13363] 343989 pages reserved [ 3287.758200][T13363] 0 pages cma reserved [ 3287.764118][T13364] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3287.778671][T13364] CPU: 0 PID: 13364 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3287.787621][T13364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3287.787634][T13364] Call Trace: [ 3287.800978][T13364] dump_stack+0x1db/0x2d0 [ 3287.805317][T13364] ? dump_stack_print_info.cold+0x20/0x20 [ 3287.811036][T13364] ? idr_get_free+0xee0/0xee0 [ 3287.815713][T13364] ? kasan_kmalloc+0x9/0x10 [ 3287.820214][T13364] ? kmem_cache_alloc_trace+0x151/0x760 [ 3287.825763][T13364] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3287.830784][T13364] ? vb2_core_create_bufs+0x378/0x8e0 [ 3287.836159][T13364] warn_alloc.cold+0xc3/0x1c9 [ 3287.840839][T13364] ? zone_watermark_ok_safe+0x420/0x420 [ 3287.846380][T13364] ? print_usage_bug+0xd0/0xd0 [ 3287.851142][T13364] ? kasan_kmalloc+0x9/0x10 [ 3287.855650][T13364] ? __lock_is_held+0xb6/0x140 [ 3287.860413][T13364] ? add_lock_to_list.isra.0+0x450/0x450 [ 3287.866046][T13364] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3287.872284][T13364] ? check_preemption_disabled+0x48/0x290 [ 3287.878013][T13364] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3287.883143][T13364] __vmalloc_node_range+0x57a/0x910 [ 3287.888342][T13364] ? __lock_is_held+0xb6/0x140 [ 3287.893111][T13364] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3287.898223][T13364] ? vfree_atomic+0xe0/0xe0 [ 3287.902731][T13364] ? rcu_read_lock_sched_held+0x110/0x130 [ 3287.908451][T13364] ? kmem_cache_alloc_trace+0x354/0x760 [ 3287.913993][T13364] ? __lock_is_held+0xb6/0x140 [ 3287.918756][T13364] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3287.923867][T13364] vmalloc_user+0x6b/0x90 [ 3287.928195][T13364] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3287.933306][T13364] vb2_vmalloc_alloc+0x134/0x3a0 [ 3287.938242][T13364] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3287.944046][T13364] ? lock_acquire+0x1db/0x570 [ 3287.948722][T13364] ? __vb2_queue_alloc+0xf5/0xf40 [ 3287.953747][T13364] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3287.959554][T13364] __vb2_queue_alloc+0x5a6/0xf40 [ 3287.964526][T13364] ? vimc_cap_get_format+0x120/0x120 [ 3287.969824][T13364] vb2_core_create_bufs+0x378/0x8e0 [ 3287.975024][T13364] ? __vb2_queue_alloc+0xf40/0xf40 [ 3287.980133][T13364] ? mutex_trylock+0x2d0/0x2d0 [ 3287.984904][T13364] ? save_stack+0xa9/0xd0 [ 3287.989239][T13364] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3287.995479][T13364] vb2_create_bufs+0x4b5/0x8e0 [ 3288.000246][T13364] ? vb2_request_queue+0x120/0x120 [ 3288.005379][T13364] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3288.011626][T13364] ? v4l2_prio_max+0x266/0x310 [ 3288.016421][T13364] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3288.022666][T13364] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3288.027977][T13364] v4l_create_bufs+0x152/0x230 [ 3288.032747][T13364] __video_do_ioctl+0x805/0xd80 [ 3288.037615][T13364] ? v4l_s_fmt+0xb20/0xb20 [ 3288.042035][T13364] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3288.048287][T13364] ? _copy_from_user+0xdd/0x150 [ 3288.053154][T13364] video_usercopy+0x460/0x16b0 [ 3288.057916][T13364] ? v4l_s_fmt+0xb20/0xb20 [ 3288.062338][T13364] ? v4l_enumstd+0x70/0x70 [ 3288.066756][T13364] ? __fget+0x473/0x710 [ 3288.070914][T13364] ? find_held_lock+0x35/0x120 [ 3288.075676][T13364] ? __fget+0x473/0x710 [ 3288.079836][T13364] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3288.086081][T13364] ? lock_downgrade+0xbe0/0xbe0 [ 3288.090932][T13364] ? kasan_check_read+0x11/0x20 [ 3288.095785][T13364] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3288.101766][T13364] ? rcu_read_unlock_special+0x380/0x380 [ 3288.107404][T13364] ? __fget+0x49a/0x710 [ 3288.111576][T13364] ? video_usercopy+0x16b0/0x16b0 [ 3288.116610][T13364] video_ioctl2+0x2d/0x35 [ 3288.120941][T13364] v4l2_ioctl+0x156/0x1b0 [ 3288.125286][T13364] ? video_devdata+0xa0/0xa0 [ 3288.129882][T13364] do_vfs_ioctl+0x107b/0x17d0 [ 3288.134588][T13364] ? ioctl_preallocate+0x2f0/0x2f0 [ 3288.139708][T13364] ? __fget_light+0x2db/0x420 [ 3288.144391][T13364] ? fget_raw+0x20/0x20 [ 3288.148546][T13364] ? put_timespec64+0x115/0x1b0 [ 3288.153413][T13364] ? nsecs_to_jiffies+0x30/0x30 [ 3288.158268][T13364] ? do_syscall_64+0x8c/0x800 [ 3288.162952][T13364] ? do_syscall_64+0x8c/0x800 [ 3288.167637][T13364] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3288.172930][T13364] ? security_file_ioctl+0x93/0xc0 [ 3288.178046][T13364] ksys_ioctl+0xab/0xd0 [ 3288.182213][T13364] __x64_sys_ioctl+0x73/0xb0 [ 3288.186810][T13364] do_syscall_64+0x1a3/0x800 [ 3288.191408][T13364] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3288.197045][T13364] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3288.202767][T13364] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3288.208321][T13364] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3288.214213][T13364] RIP: 0033:0x457ec9 [ 3288.218105][T13364] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3288.237708][T13364] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3288.246118][T13364] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3288.254087][T13364] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3288.262061][T13364] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3288.270037][T13364] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3288.278007][T13364] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3288.304232][T13364] Mem-Info: [ 3288.329239][T13364] active_anon:146505 inactive_anon:201 isolated_anon:0 [ 3288.329239][T13364] active_file:12621 inactive_file:58987 isolated_file:0 [ 3288.329239][T13364] unevictable:0 dirty:412 writeback:0 unstable:0 [ 3288.329239][T13364] slab_reclaimable:15632 slab_unreclaimable:115518 [ 3288.329239][T13364] mapped:55573 shmem:244 pagetables:1886 bounce:0 [ 3288.329239][T13364] free:1177883 free_pcp:468 free_cma:0 [ 3288.384773][T13403] XFS (loop2): unknown mount option [subj_user=']. [ 3288.449538][T13364] Node 0 active_anon:586144kB inactive_anon:804kB active_file:50344kB inactive_file:235948kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222392kB dirty:1648kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 188416kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3288.482553][T13364] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3288.518142][T13364] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3288.554867][T13364] lowmem_reserve[]: 0 2535 2537 2537 [ 3288.560742][T13364] Node 0 DMA32 free:909256kB min:36080kB low:45100kB high:54120kB active_anon:585964kB inactive_anon:772kB active_file:50344kB inactive_file:235960kB unevictable:0kB writepending:1216kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8224kB pagetables:7280kB bounce:0kB free_pcp:1856kB local_pcp:672kB free_cma:0kB [ 3288.593325][T13364] lowmem_reserve[]: 0 0 2 2 [ 3288.603061][T13364] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3288.631719][T13364] lowmem_reserve[]: 0 0 0 0 [ 3288.636376][T13364] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3288.664939][T13364] lowmem_reserve[]: 0 0 0 0 [ 3288.670475][T13364] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3288.686213][T13364] Node 0 DMA32: 586*4kB (UME) 473*8kB (UME) 966*16kB (UME) 1409*32kB (UE) 617*64kB (UME) 100*128kB (UM) 32*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 38*2048kB (UM) 155*4096kB (UM) = 911024kB [ 3288.705458][T13364] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3288.723798][T13364] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3288.748943][T13364] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3288.758647][T13364] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3288.768851][T13364] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3288.786919][T13364] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3288.796367][T13364] 71872 total pagecache pages [ 3288.801446][T13364] 0 pages in swap cache [ 3288.805611][T13364] Swap cache stats: add 0, delete 0, find 0/0 [ 3288.811784][T13364] Free swap = 0kB [ 3288.815502][T13364] Total swap = 0kB [ 3288.819282][T13364] 1965979 pages RAM [ 3288.823088][T13364] 0 pages HighMem/MovableOnly [ 3288.827739][T13364] 343989 pages reserved [ 3288.831958][T13364] 0 pages cma reserved [ 3288.836147][T13365] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3288.851087][T13365] CPU: 0 PID: 13365 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3288.860039][T13365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3288.870080][T13365] Call Trace: [ 3288.873381][T13365] dump_stack+0x1db/0x2d0 [ 3288.877731][T13365] ? dump_stack_print_info.cold+0x20/0x20 [ 3288.883434][T13365] ? idr_get_free+0xee0/0xee0 [ 3288.888096][T13365] ? kasan_kmalloc+0x9/0x10 [ 3288.892622][T13365] ? kmem_cache_alloc_trace+0x151/0x760 [ 3288.898159][T13365] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3288.903165][T13365] ? vb2_core_create_bufs+0x378/0x8e0 [ 3288.908521][T13365] warn_alloc.cold+0xc3/0x1c9 [ 3288.913198][T13365] ? zone_watermark_ok_safe+0x420/0x420 [ 3288.918739][T13365] ? print_usage_bug+0xd0/0xd0 [ 3288.923483][T13365] ? kasan_kmalloc+0x9/0x10 [ 3288.927969][T13365] ? __lock_is_held+0xb6/0x140 [ 3288.932728][T13365] ? add_lock_to_list.isra.0+0x450/0x450 [ 3288.938355][T13365] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3288.944594][T13365] ? check_preemption_disabled+0x48/0x290 [ 3288.950313][T13365] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3288.955433][T13365] __vmalloc_node_range+0x57a/0x910 [ 3288.960626][T13365] ? __lock_is_held+0xb6/0x140 [ 3288.965376][T13365] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3288.970489][T13365] ? vfree_atomic+0xe0/0xe0 [ 3288.974996][T13365] ? rcu_read_lock_sched_held+0x110/0x130 [ 3288.980709][T13365] ? kmem_cache_alloc_trace+0x354/0x760 [ 3288.986246][T13365] ? __lock_is_held+0xb6/0x140 [ 3288.991016][T13365] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3288.996127][T13365] vmalloc_user+0x6b/0x90 [ 3289.000441][T13365] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3289.005536][T13365] vb2_vmalloc_alloc+0x134/0x3a0 [ 3289.010480][T13365] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3289.016378][T13365] ? lock_acquire+0x1db/0x570 [ 3289.021044][T13365] ? __vb2_queue_alloc+0xf5/0xf40 [ 3289.026058][T13365] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3289.031862][T13365] __vb2_queue_alloc+0x5a6/0xf40 [ 3289.036802][T13365] ? vimc_cap_get_format+0x120/0x120 [ 3289.042066][T13365] vb2_core_create_bufs+0x378/0x8e0 [ 3289.047253][T13365] ? __vb2_queue_alloc+0xf40/0xf40 [ 3289.052358][T13365] ? mutex_trylock+0x2d0/0x2d0 [ 3289.057118][T13365] ? save_stack+0xa9/0xd0 [ 3289.061429][T13365] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3289.067652][T13365] vb2_create_bufs+0x4b5/0x8e0 [ 3289.072413][T13365] ? vb2_request_queue+0x120/0x120 [ 3289.077521][T13365] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3289.083745][T13365] ? v4l2_prio_max+0x266/0x310 [ 3289.088492][T13365] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3289.094726][T13365] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3289.100009][T13365] v4l_create_bufs+0x152/0x230 [ 3289.104757][T13365] __video_do_ioctl+0x805/0xd80 [ 3289.109615][T13365] ? v4l_s_fmt+0xb20/0xb20 [ 3289.114046][T13365] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3289.120282][T13365] ? _copy_from_user+0xdd/0x150 [ 3289.125117][T13365] video_usercopy+0x460/0x16b0 [ 3289.129876][T13365] ? v4l_s_fmt+0xb20/0xb20 [ 3289.134303][T13365] ? v4l_enumstd+0x70/0x70 [ 3289.138716][T13365] ? __fget+0x473/0x710 [ 3289.142863][T13365] ? find_held_lock+0x35/0x120 [ 3289.147619][T13365] ? __fget+0x473/0x710 [ 3289.151773][T13365] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3289.158006][T13365] ? lock_downgrade+0xbe0/0xbe0 [ 3289.162849][T13365] ? kasan_check_read+0x11/0x20 [ 3289.167695][T13365] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3289.173669][T13365] ? rcu_read_unlock_special+0x380/0x380 [ 3289.179301][T13365] ? __fget+0x49a/0x710 [ 3289.183443][T13365] ? video_usercopy+0x16b0/0x16b0 [ 3289.188448][T13365] video_ioctl2+0x2d/0x35 [ 3289.192772][T13365] v4l2_ioctl+0x156/0x1b0 [ 3289.197095][T13365] ? video_devdata+0xa0/0xa0 [ 3289.201668][T13365] do_vfs_ioctl+0x107b/0x17d0 [ 3289.206329][T13365] ? ioctl_preallocate+0x2f0/0x2f0 [ 3289.211438][T13365] ? __fget_light+0x2db/0x420 [ 3289.216122][T13365] ? fget_raw+0x20/0x20 [ 3289.220268][T13365] ? put_timespec64+0x115/0x1b0 [ 3289.225111][T13365] ? nsecs_to_jiffies+0x30/0x30 [ 3289.229968][T13365] ? do_syscall_64+0x8c/0x800 [ 3289.234651][T13365] ? do_syscall_64+0x8c/0x800 [ 3289.239321][T13365] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3289.244593][T13365] ? security_file_ioctl+0x93/0xc0 [ 3289.249705][T13365] ksys_ioctl+0xab/0xd0 [ 3289.253871][T13365] __x64_sys_ioctl+0x73/0xb0 [ 3289.258455][T13365] do_syscall_64+0x1a3/0x800 [ 3289.263028][T13365] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3289.268646][T13365] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3289.274357][T13365] ? __switch_to_asm+0x34/0x70 [ 3289.279130][T13365] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3289.284678][T13365] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3289.290566][T13365] RIP: 0033:0x457ec9 [ 3289.294469][T13365] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3289.314069][T13365] RSP: 002b:00007fed9222fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3289.322488][T13365] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3289.330450][T13365] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3289.338411][T13365] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 3289.346361][T13365] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922306d4 [ 3289.354321][T13365] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3289.363397][T13365] Mem-Info: [ 3289.366574][T13365] active_anon:145949 inactive_anon:201 isolated_anon:0 [ 3289.366574][T13365] active_file:12621 inactive_file:59008 isolated_file:0 [ 3289.366574][T13365] unevictable:0 dirty:328 writeback:0 unstable:0 [ 3289.366574][T13365] slab_reclaimable:15633 slab_unreclaimable:115794 [ 3289.366574][T13365] mapped:55558 shmem:244 pagetables:1799 bounce:0 [ 3289.366574][T13365] free:1178194 free_pcp:576 free_cma:0 [ 3289.404787][T13365] Node 0 active_anon:583796kB inactive_anon:804kB active_file:50344kB inactive_file:236032kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222232kB dirty:1312kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 180224kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3289.433883][T13365] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3289.460424][T13365] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3289.487328][T13365] lowmem_reserve[]: 0 2535 2537 2537 [ 3289.493518][T13365] Node 0 DMA32 free:910504kB min:36080kB low:45100kB high:54120kB active_anon:583796kB inactive_anon:804kB active_file:50344kB inactive_file:236032kB unevictable:0kB writepending:1268kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8032kB pagetables:7196kB bounce:0kB free_pcp:2300kB local_pcp:764kB free_cma:0kB [ 3289.524206][T13365] lowmem_reserve[]: 0 0 2 2 [ 3289.528715][T13365] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3289.556744][T13365] lowmem_reserve[]: 0 0 0 0 [ 3289.561320][T13365] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3289.589696][T13365] lowmem_reserve[]: 0 0 0 0 [ 3289.594217][T13365] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3289.608590][T13365] Node 0 DMA32: 644*4kB (UME) 397*8kB (UME) 965*16kB (UM) 1414*32kB (UE) 617*64kB (UME) 101*128kB (UME) 31*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 38*2048kB (UM) 155*4096kB (UM) = 910664kB [ 3289.627787][T13365] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3289.643253][T13365] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3289.660983][T13365] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3289.670625][T13365] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3289.679932][T13365] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3289.689535][T13365] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3289.698836][T13365] 71882 total pagecache pages [ 3289.703635][T13365] 0 pages in swap cache 20:33:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0xfecaedfe00000000, 0xffffffffffffffff]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:06 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a0000010000007a0001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:06 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe030000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x1b]}) 20:33:06 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:06 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x500000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3289.707803][T13365] Swap cache stats: add 0, delete 0, find 0/0 [ 3289.713934][T13365] Free swap = 0kB [ 3289.717646][T13365] Total swap = 0kB [ 3289.721399][T13365] 1965979 pages RAM [ 3289.725206][T13365] 0 pages HighMem/MovableOnly [ 3289.729931][T13365] 343989 pages reserved [ 3289.734089][T13365] 0 pages cma reserved 20:33:06 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:06 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6e6f6c6172676569f1826c396f2c646973636172642c00"]) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ipx\x00') getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f00000000c0), &(0x7f0000000180)=0xfe0a) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3289.846270][T13429] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3289.875341][T13433] kvm [13423]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x1b [ 3289.915324][T13429] CPU: 1 PID: 13429 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3289.924296][T13429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3289.934355][T13429] Call Trace: [ 3289.937660][T13429] dump_stack+0x1db/0x2d0 [ 3289.941999][T13429] ? dump_stack_print_info.cold+0x20/0x20 [ 3289.947717][T13429] ? idr_get_free+0xee0/0xee0 [ 3289.952396][T13429] ? kasan_kmalloc+0x9/0x10 [ 3289.956899][T13429] ? kmem_cache_alloc_trace+0x151/0x760 [ 3289.962449][T13429] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3289.967475][T13429] ? vb2_core_create_bufs+0x378/0x8e0 [ 3289.972851][T13429] warn_alloc.cold+0xc3/0x1c9 [ 3289.977529][T13429] ? zone_watermark_ok_safe+0x420/0x420 [ 3289.983089][T13429] ? print_usage_bug+0xd0/0xd0 [ 3289.987852][T13429] ? kasan_kmalloc+0x9/0x10 [ 3289.992360][T13429] ? __lock_is_held+0xb6/0x140 [ 3289.997129][T13429] ? add_lock_to_list.isra.0+0x450/0x450 [ 3290.002763][T13429] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3290.009001][T13429] ? check_preemption_disabled+0x48/0x290 [ 3290.014728][T13429] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3290.019847][T13429] __vmalloc_node_range+0x57a/0x910 [ 3290.025045][T13429] ? __lock_is_held+0xb6/0x140 [ 3290.029814][T13429] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3290.034930][T13429] ? vfree_atomic+0xe0/0xe0 [ 3290.039436][T13429] ? rcu_read_lock_sched_held+0x110/0x130 [ 3290.045159][T13429] ? kmem_cache_alloc_trace+0x354/0x760 [ 3290.050708][T13429] ? __lock_is_held+0xb6/0x140 [ 3290.055472][T13429] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3290.060602][T13429] vmalloc_user+0x6b/0x90 [ 3290.064935][T13429] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3290.070048][T13429] vb2_vmalloc_alloc+0x134/0x3a0 [ 3290.075017][T13429] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3290.080826][T13429] ? lock_acquire+0x1db/0x570 [ 3290.085503][T13429] ? __video_do_ioctl+0x3b1/0xd80 [ 3290.090529][T13429] ? __vb2_queue_alloc+0xf5/0xf40 [ 3290.095571][T13429] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3290.101377][T13429] __vb2_queue_alloc+0x5a6/0xf40 [ 3290.106332][T13429] ? vimc_cap_get_format+0x120/0x120 [ 3290.111616][T13429] vb2_core_create_bufs+0x378/0x8e0 [ 3290.116822][T13429] ? __vb2_queue_alloc+0xf40/0xf40 [ 3290.121934][T13429] ? mutex_trylock+0x2d0/0x2d0 [ 3290.126707][T13429] ? save_stack+0xa9/0xd0 [ 3290.131042][T13429] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3290.137290][T13429] vb2_create_bufs+0x4b5/0x8e0 [ 3290.142064][T13429] ? vb2_request_queue+0x120/0x120 [ 3290.147185][T13429] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3290.153426][T13429] ? v4l2_prio_max+0x266/0x310 [ 3290.158193][T13429] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3290.164439][T13429] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3290.169736][T13429] v4l_create_bufs+0x152/0x230 [ 3290.174506][T13429] __video_do_ioctl+0x805/0xd80 [ 3290.179371][T13429] ? v4l_s_fmt+0xb20/0xb20 [ 3290.183797][T13429] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3290.190041][T13429] ? _copy_from_user+0xdd/0x150 [ 3290.194905][T13429] video_usercopy+0x460/0x16b0 [ 3290.199672][T13429] ? v4l_s_fmt+0xb20/0xb20 [ 3290.204100][T13429] ? v4l_enumstd+0x70/0x70 [ 3290.208517][T13429] ? __fget+0x473/0x710 [ 3290.212673][T13429] ? find_held_lock+0x35/0x120 [ 3290.217440][T13429] ? __fget+0x473/0x710 [ 3290.221604][T13429] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3290.227851][T13429] ? lock_downgrade+0xbe0/0xbe0 [ 3290.232704][T13429] ? kasan_check_read+0x11/0x20 [ 3290.237555][T13429] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3290.243550][T13429] ? rcu_read_unlock_special+0x380/0x380 [ 3290.249202][T13429] ? __fget+0x49a/0x710 [ 3290.253368][T13429] ? video_usercopy+0x16b0/0x16b0 [ 3290.258390][T13429] video_ioctl2+0x2d/0x35 [ 3290.262722][T13429] v4l2_ioctl+0x156/0x1b0 [ 3290.267059][T13429] ? video_devdata+0xa0/0xa0 [ 3290.271655][T13429] do_vfs_ioctl+0x107b/0x17d0 [ 3290.276348][T13429] ? ioctl_preallocate+0x2f0/0x2f0 [ 3290.281466][T13429] ? __fget_light+0x2db/0x420 [ 3290.286147][T13429] ? fget_raw+0x20/0x20 [ 3290.290305][T13429] ? put_timespec64+0x115/0x1b0 [ 3290.295161][T13429] ? nsecs_to_jiffies+0x30/0x30 [ 3290.300017][T13429] ? do_syscall_64+0x8c/0x800 [ 3290.304696][T13429] ? do_syscall_64+0x8c/0x800 [ 3290.309376][T13429] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3290.314670][T13429] ? security_file_ioctl+0x93/0xc0 [ 3290.319786][T13429] ksys_ioctl+0xab/0xd0 [ 3290.323946][T13429] __x64_sys_ioctl+0x73/0xb0 [ 3290.328545][T13429] do_syscall_64+0x1a3/0x800 [ 3290.333153][T13429] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3290.338791][T13429] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3290.344517][T13429] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3290.350082][T13429] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3290.355972][T13429] RIP: 0033:0x457ec9 [ 3290.359864][T13429] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3290.379486][T13429] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3290.387907][T13429] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3290.395875][T13429] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3290.403843][T13429] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3290.411812][T13429] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 [ 3290.419782][T13429] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3290.440686][T13429] Mem-Info: [ 3290.443856][T13429] active_anon:147514 inactive_anon:203 isolated_anon:0 [ 3290.443856][T13429] active_file:12621 inactive_file:59010 isolated_file:0 [ 3290.443856][T13429] unevictable:0 dirty:350 writeback:0 unstable:0 [ 3290.443856][T13429] slab_reclaimable:15634 slab_unreclaimable:115171 [ 3290.443856][T13429] mapped:55562 shmem:244 pagetables:1860 bounce:0 [ 3290.443856][T13429] free:1177308 free_pcp:391 free_cma:0 [ 3290.492631][T13437] kvm [13423]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x1b [ 3290.509742][T13429] Node 0 active_anon:587980kB inactive_anon:812kB active_file:50344kB inactive_file:236080kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222148kB dirty:1492kB writeback:0kB shmem:980kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 182272kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:33:07 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000301000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x34]}) 20:33:07 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff8c, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3290.583143][T13440] XFS (loop2): unknown mount option [nolargeiñ‚l9o]. [ 3290.642475][T13429] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:33:07 executing program 2: socketpair$unix(0x1, 0x20000000003, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3290.703766][T13429] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3290.788143][T13459] kvm [13458]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x34 [ 3290.792461][T13429] lowmem_reserve[]: 0 2535 2537 2537 [ 3290.810967][T13429] Node 0 DMA32 free:904884kB min:36080kB low:45100kB high:54120kB active_anon:590272kB inactive_anon:796kB active_file:50344kB inactive_file:236116kB unevictable:0kB writepending:1492kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8256kB pagetables:7408kB bounce:0kB free_pcp:1568kB local_pcp:856kB free_cma:0kB [ 3290.859214][T13462] kvm [13458]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x34 [ 3290.863187][T13429] lowmem_reserve[]: 0 0 2 2 [ 3290.873639][T13429] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3290.901997][T13429] lowmem_reserve[]: 0 0 0 0 [ 3290.906793][T13429] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3290.946444][T13429] lowmem_reserve[]: 0 0 0 0 [ 3290.962064][T13429] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3290.982449][T13429] Node 0 DMA32: 613*4kB (U) 387*8kB (UM) 1015*16kB (UM) 1402*32kB (U) 615*64kB (UME) 99*128kB (M) 30*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 35*2048kB (UM) 155*4096kB (UM) = 904092kB [ 3291.045490][T13429] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3291.079834][T13429] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3291.130796][T13429] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3291.141493][T13465] XFS (loop2): Invalid superblock magic number [ 3291.148050][T13429] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3291.171412][T13429] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3291.181413][T13429] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3291.190878][T13429] 71893 total pagecache pages [ 3291.190895][T13429] 0 pages in swap cache [ 3291.218607][T13429] Swap cache stats: add 0, delete 0, find 0/0 [ 3291.233338][T13429] Free swap = 0kB [ 3291.238936][T13429] Total swap = 0kB [ 3291.245946][T13429] 1965979 pages RAM [ 3291.255528][T13429] 0 pages HighMem/MovableOnly [ 3291.260716][T13429] 343989 pages reserved [ 3291.264870][T13429] 0 pages cma reserved [ 3291.269015][T13432] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3291.285526][T13432] CPU: 0 PID: 13432 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3291.294491][T13432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3291.304547][T13432] Call Trace: [ 3291.307861][T13432] dump_stack+0x1db/0x2d0 [ 3291.312199][T13432] ? dump_stack_print_info.cold+0x20/0x20 [ 3291.317924][T13432] ? idr_get_free+0xee0/0xee0 [ 3291.322597][T13432] ? kasan_kmalloc+0x9/0x10 [ 3291.327083][T13432] ? kmem_cache_alloc_trace+0x151/0x760 [ 3291.332612][T13432] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3291.337616][T13432] ? vb2_core_create_bufs+0x378/0x8e0 [ 3291.342971][T13432] warn_alloc.cold+0xc3/0x1c9 [ 3291.347628][T13432] ? zone_watermark_ok_safe+0x420/0x420 [ 3291.353153][T13432] ? print_usage_bug+0xd0/0xd0 [ 3291.357895][T13432] ? kasan_kmalloc+0x9/0x10 [ 3291.362380][T13432] ? __lock_is_held+0xb6/0x140 [ 3291.367123][T13432] ? add_lock_to_list.isra.0+0x450/0x450 [ 3291.372738][T13432] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3291.378958][T13432] ? check_preemption_disabled+0x48/0x290 [ 3291.384676][T13432] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3291.389778][T13432] __vmalloc_node_range+0x57a/0x910 [ 3291.394956][T13432] ? __lock_is_held+0xb6/0x140 [ 3291.399714][T13432] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3291.404807][T13432] ? vfree_atomic+0xe0/0xe0 [ 3291.409294][T13432] ? rcu_read_lock_sched_held+0x110/0x130 [ 3291.414994][T13432] ? kmem_cache_alloc_trace+0x354/0x760 [ 3291.420518][T13432] ? __lock_is_held+0xb6/0x140 [ 3291.425275][T13432] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3291.430383][T13432] vmalloc_user+0x6b/0x90 [ 3291.434695][T13432] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3291.439789][T13432] vb2_vmalloc_alloc+0x134/0x3a0 [ 3291.444709][T13432] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3291.450494][T13432] ? lock_acquire+0x1db/0x570 [ 3291.455152][T13432] ? __vb2_queue_alloc+0xf5/0xf40 [ 3291.460169][T13432] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3291.465974][T13432] __vb2_queue_alloc+0x5a6/0xf40 [ 3291.470914][T13432] ? vimc_cap_get_format+0x120/0x120 [ 3291.476191][T13432] vb2_core_create_bufs+0x378/0x8e0 [ 3291.481374][T13432] ? __vb2_queue_alloc+0xf40/0xf40 [ 3291.486464][T13432] ? mutex_trylock+0x2d0/0x2d0 [ 3291.491210][T13432] ? save_stack+0xa9/0xd0 [ 3291.495521][T13432] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3291.501741][T13432] vb2_create_bufs+0x4b5/0x8e0 [ 3291.506486][T13432] ? vb2_request_queue+0x120/0x120 [ 3291.511603][T13432] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3291.517824][T13432] ? v4l2_prio_max+0x266/0x310 [ 3291.522596][T13432] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3291.528820][T13432] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3291.534106][T13432] v4l_create_bufs+0x152/0x230 [ 3291.538857][T13432] __video_do_ioctl+0x805/0xd80 [ 3291.543698][T13432] ? v4l_s_fmt+0xb20/0xb20 [ 3291.548103][T13432] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3291.554325][T13432] ? _copy_from_user+0xdd/0x150 [ 3291.559172][T13432] video_usercopy+0x460/0x16b0 [ 3291.563950][T13432] ? v4l_s_fmt+0xb20/0xb20 [ 3291.568351][T13432] ? v4l_enumstd+0x70/0x70 [ 3291.572749][T13432] ? __fget+0x473/0x710 [ 3291.576884][T13432] ? find_held_lock+0x35/0x120 [ 3291.581629][T13432] ? __fget+0x473/0x710 [ 3291.585765][T13432] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3291.591988][T13432] ? lock_downgrade+0xbe0/0xbe0 [ 3291.596838][T13432] ? kasan_check_read+0x11/0x20 [ 3291.601671][T13432] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3291.607634][T13432] ? rcu_read_unlock_special+0x380/0x380 [ 3291.613253][T13432] ? __fget+0x49a/0x710 [ 3291.617392][T13432] ? video_usercopy+0x16b0/0x16b0 [ 3291.622395][T13432] video_ioctl2+0x2d/0x35 [ 3291.626747][T13432] v4l2_ioctl+0x156/0x1b0 [ 3291.631057][T13432] ? video_devdata+0xa0/0xa0 [ 3291.635661][T13432] do_vfs_ioctl+0x107b/0x17d0 [ 3291.640323][T13432] ? ioctl_preallocate+0x2f0/0x2f0 [ 3291.645417][T13432] ? __fget_light+0x2db/0x420 [ 3291.650075][T13432] ? fget_raw+0x20/0x20 [ 3291.654212][T13432] ? put_timespec64+0x115/0x1b0 [ 3291.659042][T13432] ? nsecs_to_jiffies+0x30/0x30 [ 3291.663884][T13432] ? do_syscall_64+0x8c/0x800 [ 3291.668543][T13432] ? do_syscall_64+0x8c/0x800 [ 3291.673214][T13432] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3291.678481][T13432] ? security_file_ioctl+0x93/0xc0 [ 3291.683583][T13432] ksys_ioctl+0xab/0xd0 [ 3291.687892][T13432] __x64_sys_ioctl+0x73/0xb0 [ 3291.692468][T13432] do_syscall_64+0x1a3/0x800 [ 3291.697039][T13432] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3291.702672][T13432] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3291.708398][T13432] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3291.713957][T13432] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3291.719849][T13432] RIP: 0033:0x457ec9 [ 3291.723726][T13432] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3291.743314][T13432] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3291.751706][T13432] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3291.759659][T13432] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3291.767612][T13432] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3291.775573][T13432] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3291.783527][T13432] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3291.796848][T13432] Mem-Info: [ 3291.800184][T13432] active_anon:146033 inactive_anon:199 isolated_anon:0 [ 3291.800184][T13432] active_file:12621 inactive_file:59037 isolated_file:0 [ 3291.800184][T13432] unevictable:0 dirty:394 writeback:0 unstable:0 [ 3291.800184][T13432] slab_reclaimable:15638 slab_unreclaimable:115403 [ 3291.800184][T13432] mapped:55583 shmem:244 pagetables:1815 bounce:0 [ 3291.800184][T13432] free:1178533 free_pcp:471 free_cma:0 [ 3291.838624][T13432] Node 0 active_anon:584132kB inactive_anon:796kB active_file:50344kB inactive_file:236148kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222332kB dirty:1576kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3291.867738][T13432] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3291.894299][T13432] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3291.921919][T13432] lowmem_reserve[]: 0 2535 2537 2537 [ 3291.927210][T13432] Node 0 DMA32 free:911980kB min:36080kB low:45100kB high:54120kB active_anon:583932kB inactive_anon:796kB active_file:50344kB inactive_file:236148kB unevictable:0kB writepending:1576kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8128kB pagetables:7260kB bounce:0kB free_pcp:2044kB local_pcp:1132kB free_cma:0kB [ 3291.957929][T13432] lowmem_reserve[]: 0 0 2 2 [ 3291.962481][T13432] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3291.989908][T13432] lowmem_reserve[]: 0 0 0 0 [ 3291.994415][T13432] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3292.022775][T13432] lowmem_reserve[]: 0 0 0 0 [ 3292.027300][T13432] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3292.041615][T13432] Node 0 DMA32: 613*4kB (U) 391*8kB (UM) 1054*16kB (UM) 1408*32kB (U) 615*64kB (UME) 106*128kB (UM) 30*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 36*2048kB (UM) 156*4096kB (UM) = 911980kB [ 3292.060969][T13432] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3292.076606][T13432] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3292.094371][T13432] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3292.094384][T13432] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3292.094397][T13432] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3292.094408][T13432] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3292.094415][T13432] 71902 total pagecache pages [ 3292.094431][T13432] 0 pages in swap cache [ 3292.113398][T13432] Swap cache stats: add 0, delete 0, find 0/0 [ 3292.147212][T13432] Free swap = 0kB [ 3292.151021][T13432] Total swap = 0kB [ 3292.154761][T13432] 1965979 pages RAM [ 3292.158590][T13432] 0 pages HighMem/MovableOnly [ 3292.163340][T13432] 343989 pages reserved [ 3292.167499][T13432] 0 pages cma reserved [ 3292.171746][T13449] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3292.185971][T13449] CPU: 0 PID: 13449 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3292.194908][T13449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3292.204956][T13449] Call Trace: [ 3292.208236][T13449] dump_stack+0x1db/0x2d0 [ 3292.212572][T13449] ? dump_stack_print_info.cold+0x20/0x20 [ 3292.218274][T13449] ? idr_get_free+0xee0/0xee0 [ 3292.222964][T13449] ? kasan_kmalloc+0x9/0x10 [ 3292.227478][T13449] ? kmem_cache_alloc_trace+0x151/0x760 [ 3292.233009][T13449] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3292.238015][T13449] ? vb2_core_create_bufs+0x378/0x8e0 [ 3292.243372][T13449] warn_alloc.cold+0xc3/0x1c9 [ 3292.248039][T13449] ? zone_watermark_ok_safe+0x420/0x420 [ 3292.253577][T13449] ? print_usage_bug+0xd0/0xd0 [ 3292.258325][T13449] ? kasan_kmalloc+0x9/0x10 [ 3292.262813][T13449] ? __lock_is_held+0xb6/0x140 [ 3292.267573][T13449] ? add_lock_to_list.isra.0+0x450/0x450 [ 3292.273211][T13449] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3292.279445][T13449] ? check_preemption_disabled+0x48/0x290 [ 3292.285163][T13449] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3292.290536][T13449] __vmalloc_node_range+0x57a/0x910 [ 3292.295772][T13449] ? __lock_is_held+0xb6/0x140 [ 3292.300536][T13449] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3292.305662][T13449] ? vfree_atomic+0xe0/0xe0 [ 3292.310166][T13449] ? rcu_read_lock_sched_held+0x110/0x130 [ 3292.315882][T13449] ? kmem_cache_alloc_trace+0x354/0x760 [ 3292.321419][T13449] ? __lock_is_held+0xb6/0x140 [ 3292.326175][T13449] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3292.331282][T13449] vmalloc_user+0x6b/0x90 [ 3292.335608][T13449] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3292.340714][T13449] vb2_vmalloc_alloc+0x134/0x3a0 [ 3292.345649][T13449] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3292.351445][T13449] ? lock_acquire+0x1db/0x570 [ 3292.356117][T13449] ? __vb2_queue_alloc+0xf5/0xf40 [ 3292.361141][T13449] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3292.366940][T13449] __vb2_queue_alloc+0x5a6/0xf40 [ 3292.371888][T13449] ? vimc_cap_get_format+0x120/0x120 [ 3292.377165][T13449] vb2_core_create_bufs+0x378/0x8e0 [ 3292.382359][T13449] ? __vb2_queue_alloc+0xf40/0xf40 [ 3292.387469][T13449] ? mutex_trylock+0x2d0/0x2d0 [ 3292.392233][T13449] ? save_stack+0xa9/0xd0 [ 3292.396591][T13449] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3292.402830][T13449] vb2_create_bufs+0x4b5/0x8e0 [ 3292.407598][T13449] ? vb2_request_queue+0x120/0x120 [ 3292.412694][T13449] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3292.418914][T13449] ? v4l2_prio_max+0x266/0x310 [ 3292.423660][T13449] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3292.429896][T13449] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3292.435179][T13449] v4l_create_bufs+0x152/0x230 [ 3292.439947][T13449] __video_do_ioctl+0x805/0xd80 [ 3292.444810][T13449] ? v4l_s_fmt+0xb20/0xb20 [ 3292.449227][T13449] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3292.455464][T13449] ? _copy_from_user+0xdd/0x150 [ 3292.460313][T13449] video_usercopy+0x460/0x16b0 [ 3292.465089][T13449] ? v4l_s_fmt+0xb20/0xb20 [ 3292.469516][T13449] ? v4l_enumstd+0x70/0x70 [ 3292.473940][T13449] ? __fget+0x473/0x710 [ 3292.478081][T13449] ? find_held_lock+0x35/0x120 [ 3292.482830][T13449] ? __fget+0x473/0x710 [ 3292.486968][T13449] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3292.493191][T13449] ? lock_downgrade+0xbe0/0xbe0 [ 3292.498024][T13449] ? kasan_check_read+0x11/0x20 [ 3292.502867][T13449] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3292.508838][T13449] ? rcu_read_unlock_special+0x380/0x380 [ 3292.514457][T13449] ? __fget+0x49a/0x710 [ 3292.518599][T13449] ? video_usercopy+0x16b0/0x16b0 [ 3292.523607][T13449] video_ioctl2+0x2d/0x35 [ 3292.527918][T13449] v4l2_ioctl+0x156/0x1b0 [ 3292.532243][T13449] ? video_devdata+0xa0/0xa0 [ 3292.536827][T13449] do_vfs_ioctl+0x107b/0x17d0 [ 3292.541506][T13449] ? ioctl_preallocate+0x2f0/0x2f0 [ 3292.546613][T13449] ? __fget_light+0x2db/0x420 [ 3292.551285][T13449] ? fget_raw+0x20/0x20 [ 3292.555448][T13449] ? put_timespec64+0x115/0x1b0 [ 3292.560304][T13449] ? _raw_spin_unlock_irq+0x28/0x90 [ 3292.565493][T13449] ? nsecs_to_jiffies+0x30/0x30 [ 3292.570339][T13449] ? do_syscall_64+0x8c/0x800 [ 3292.575008][T13449] ? do_syscall_64+0x8c/0x800 [ 3292.579680][T13449] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3292.585009][T13449] ? security_file_ioctl+0x93/0xc0 [ 3292.590128][T13449] ksys_ioctl+0xab/0xd0 [ 3292.594289][T13449] __x64_sys_ioctl+0x73/0xb0 [ 3292.598866][T13449] do_syscall_64+0x1a3/0x800 [ 3292.603441][T13449] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3292.609061][T13449] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3292.614774][T13449] ? __switch_to_asm+0x34/0x70 [ 3292.619536][T13449] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3292.625097][T13449] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3292.630977][T13449] RIP: 0033:0x457ec9 [ 3292.634876][T13449] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3292.654473][T13449] RSP: 002b:00007fed9220ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3292.662873][T13449] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3292.670841][T13449] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3292.678805][T13449] RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000 20:33:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0xffffffff00000000, 0xffffffffffffffff]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:09 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff6, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:09 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000501000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x3a]}) 20:33:09 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="6e6f6c61726765696f2c646973636172642c003447d8deff3114e2c916649c59578e12621896b3cf1483854cbb02311f1e6a7762cfe6d7fe0119c50d2dc0d6c9721ced0d69cf911d5f29648848640d1145a101c1dddbdf2a6aa2380b592970edcb6ab91842e7ee6051a25df7651b514690a8d477437b84a301f1fe4e45b989dbed2c04e78747f99cbbbb8e35b53db52a69063b6b60220e53c829fb1fe3d2640ef636eeaeb9299e87b4334572c8d915b67c7d1bc15facd11e2fd6841e6749e09e2763fb44d20dd7d8"]) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0) r0 = syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x1) 20:33:09 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x600000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3292.686756][T13449] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed9220f6d4 [ 3292.694709][T13449] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3292.805996][T13503] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3292.841049][T13503] CPU: 0 PID: 13503 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3292.850011][T13503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3292.860068][T13503] Call Trace: [ 3292.863369][T13503] dump_stack+0x1db/0x2d0 [ 3292.867724][T13503] ? dump_stack_print_info.cold+0x20/0x20 [ 3292.873449][T13503] ? idr_get_free+0xee0/0xee0 [ 3292.878130][T13503] ? kasan_kmalloc+0x9/0x10 [ 3292.882639][T13503] ? kmem_cache_alloc_trace+0x151/0x760 [ 3292.888190][T13503] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3292.893215][T13503] ? vb2_core_create_bufs+0x378/0x8e0 [ 3292.898610][T13503] warn_alloc.cold+0xc3/0x1c9 [ 3292.903301][T13503] ? zone_watermark_ok_safe+0x420/0x420 [ 3292.908851][T13503] ? print_usage_bug+0xd0/0xd0 [ 3292.913617][T13503] ? kasan_kmalloc+0x9/0x10 [ 3292.918127][T13503] ? __lock_is_held+0xb6/0x140 [ 3292.922890][T13503] ? add_lock_to_list.isra.0+0x450/0x450 [ 3292.928523][T13503] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3292.934777][T13503] ? check_preemption_disabled+0x48/0x290 [ 3292.940496][T13503] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3292.945616][T13503] __vmalloc_node_range+0x57a/0x910 [ 3292.950835][T13503] ? __lock_is_held+0xb6/0x140 [ 3292.955606][T13503] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3292.960726][T13503] ? vfree_atomic+0xe0/0xe0 [ 3292.965237][T13503] ? rcu_read_lock_sched_held+0x110/0x130 [ 3292.970967][T13503] ? kmem_cache_alloc_trace+0x354/0x760 [ 3292.976509][T13503] ? __lock_is_held+0xb6/0x140 [ 3292.981276][T13503] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3292.986387][T13503] vmalloc_user+0x6b/0x90 [ 3292.990723][T13503] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3292.995834][T13503] vb2_vmalloc_alloc+0x134/0x3a0 [ 3293.000773][T13503] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3293.006589][T13503] ? lock_acquire+0x1db/0x570 [ 3293.011275][T13503] ? __video_do_ioctl+0x3b1/0xd80 [ 3293.016296][T13503] ? __vb2_queue_alloc+0xf5/0xf40 [ 3293.021321][T13503] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3293.027123][T13503] __vb2_queue_alloc+0x5a6/0xf40 [ 3293.032076][T13503] ? vimc_cap_get_format+0x120/0x120 [ 3293.037359][T13503] vb2_core_create_bufs+0x378/0x8e0 [ 3293.042574][T13503] ? __vb2_queue_alloc+0xf40/0xf40 [ 3293.047690][T13503] ? mutex_trylock+0x2d0/0x2d0 [ 3293.052464][T13503] ? save_stack+0xa9/0xd0 [ 3293.056799][T13503] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3293.063044][T13503] vb2_create_bufs+0x4b5/0x8e0 [ 3293.067821][T13503] ? vb2_request_queue+0x120/0x120 [ 3293.072937][T13503] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3293.079177][T13503] ? v4l2_prio_max+0x266/0x310 [ 3293.083945][T13503] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3293.090191][T13503] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3293.095482][T13503] v4l_create_bufs+0x152/0x230 [ 3293.100251][T13503] __video_do_ioctl+0x805/0xd80 [ 3293.105115][T13503] ? v4l_s_fmt+0xb20/0xb20 [ 3293.109537][T13503] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3293.115796][T13503] ? _copy_from_user+0xdd/0x150 [ 3293.120653][T13503] video_usercopy+0x460/0x16b0 [ 3293.125420][T13503] ? v4l_s_fmt+0xb20/0xb20 [ 3293.129844][T13503] ? v4l_enumstd+0x70/0x70 [ 3293.134291][T13503] ? __fget+0x473/0x710 [ 3293.138446][T13503] ? find_held_lock+0x35/0x120 [ 3293.143220][T13503] ? __fget+0x473/0x710 [ 3293.147378][T13503] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3293.153642][T13503] ? lock_downgrade+0xbe0/0xbe0 [ 3293.158500][T13503] ? kasan_check_read+0x11/0x20 [ 3293.163354][T13503] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3293.169334][T13503] ? rcu_read_unlock_special+0x380/0x380 [ 3293.174972][T13503] ? __fget+0x49a/0x710 [ 3293.179136][T13503] ? video_usercopy+0x16b0/0x16b0 [ 3293.184179][T13503] video_ioctl2+0x2d/0x35 [ 3293.188509][T13503] v4l2_ioctl+0x156/0x1b0 [ 3293.192840][T13503] ? video_devdata+0xa0/0xa0 [ 3293.197448][T13503] do_vfs_ioctl+0x107b/0x17d0 [ 3293.202130][T13503] ? ioctl_preallocate+0x2f0/0x2f0 [ 3293.207241][T13503] ? __fget_light+0x2db/0x420 [ 3293.211920][T13503] ? fget_raw+0x20/0x20 [ 3293.216072][T13503] ? put_timespec64+0x115/0x1b0 [ 3293.220922][T13503] ? nsecs_to_jiffies+0x30/0x30 [ 3293.225772][T13503] ? do_syscall_64+0x8c/0x800 [ 3293.230447][T13503] ? do_syscall_64+0x8c/0x800 [ 3293.235123][T13503] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3293.240409][T13503] ? security_file_ioctl+0x93/0xc0 [ 3293.245525][T13503] ksys_ioctl+0xab/0xd0 [ 3293.249702][T13503] __x64_sys_ioctl+0x73/0xb0 [ 3293.254296][T13503] do_syscall_64+0x1a3/0x800 [ 3293.258890][T13503] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3293.264523][T13503] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3293.270264][T13503] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3293.275819][T13503] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3293.281709][T13503] RIP: 0033:0x457ec9 [ 3293.285602][T13503] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 20:33:09 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3293.305207][T13503] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3293.313623][T13503] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3293.321600][T13503] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3293.329578][T13503] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3293.337545][T13503] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 [ 3293.345524][T13503] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3293.363640][T13498] kvm [13492]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x3a [ 3293.375828][T13503] warn_alloc_show_mem: 1 callbacks suppressed [ 3293.375833][T13503] Mem-Info: [ 3293.400860][T13514] kvm [13492]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x3a [ 3293.418760][T13503] active_anon:148066 inactive_anon:203 isolated_anon:0 [ 3293.418760][T13503] active_file:12621 inactive_file:59041 isolated_file:0 [ 3293.418760][T13503] unevictable:0 dirty:398 writeback:0 unstable:0 [ 3293.418760][T13503] slab_reclaimable:15632 slab_unreclaimable:115522 [ 3293.418760][T13503] mapped:55537 shmem:244 pagetables:1897 bounce:0 [ 3293.418760][T13503] free:1176287 free_pcp:306 free_cma:0 20:33:10 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000601000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:10 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3293.516066][T13503] Node 0 active_anon:586172kB inactive_anon:812kB active_file:50344kB inactive_file:236164kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222248kB dirty:1592kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3293.546811][T13494] XFS (loop2): Invalid superblock magic number [ 3293.561586][T13503] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:33:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x3b]}) 20:33:10 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0x7f, 0x400000) ioctl$SNDRV_TIMER_IOCTL_PVERSION(r1, 0x80045400, &(0x7f0000000200)) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) pipe(&(0x7f0000000000)={0xffffffffffffffff}) ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000400)=0x100001d) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:10 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3293.661962][T13503] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3293.693649][T13503] lowmem_reserve[]: 0 2535 2537 2537 [ 3293.699279][T13503] Node 0 DMA32 free:909464kB min:36080kB low:45100kB high:54120kB active_anon:586280kB inactive_anon:804kB active_file:50344kB inactive_file:236256kB unevictable:0kB writepending:1740kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8224kB pagetables:7400kB bounce:0kB free_pcp:1760kB local_pcp:688kB free_cma:0kB [ 3293.732800][T13503] lowmem_reserve[]: 0 0 2 2 [ 3293.738963][T13503] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3293.824669][T13503] lowmem_reserve[]: 0 0 0 0 [ 3293.830044][T13503] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3293.861446][T13540] XFS (loop2): unknown mount option [dis\ïcard?b$ý¬âu‹Æ\ÌÉÃ\.=Bõ¾]=3™Î?]. [ 3293.868868][T13541] kvm [13536]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x3b [ 3293.933880][T13547] kvm [13536]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x3b [ 3293.940620][T13503] lowmem_reserve[]: 0 0 0 0 [ 3293.953160][T13503] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3293.989258][T13503] Node 0 DMA32: 552*4kB (UME) 421*8kB (U) 1083*16kB (UE) 1407*32kB (UE) 614*64kB (UME) 99*128kB (M) 29*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 35*2048kB (UM) 155*4096kB (UM) = 905048kB [ 3294.053425][T13503] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3294.076140][T13503] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3294.096015][T13503] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3294.105779][T13503] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3294.115567][T13503] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3294.129541][T13503] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3294.138879][T13503] 71928 total pagecache pages [ 3294.143670][T13503] 0 pages in swap cache [ 3294.147822][T13503] Swap cache stats: add 0, delete 0, find 0/0 [ 3294.153914][T13503] Free swap = 0kB [ 3294.157648][T13503] Total swap = 0kB [ 3294.161436][T13503] 1965979 pages RAM [ 3294.165256][T13503] 0 pages HighMem/MovableOnly [ 3294.170851][T13503] 343989 pages reserved [ 3294.175006][T13503] 0 pages cma reserved [ 3294.179740][T13509] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3294.194037][T13509] CPU: 1 PID: 13509 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3294.202981][T13509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3294.213016][T13509] Call Trace: [ 3294.216294][T13509] dump_stack+0x1db/0x2d0 [ 3294.220612][T13509] ? dump_stack_print_info.cold+0x20/0x20 [ 3294.226317][T13509] ? idr_get_free+0xee0/0xee0 [ 3294.230991][T13509] ? kasan_kmalloc+0x9/0x10 [ 3294.235474][T13509] ? kmem_cache_alloc_trace+0x151/0x760 [ 3294.241001][T13509] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3294.246008][T13509] ? vb2_core_create_bufs+0x378/0x8e0 [ 3294.251377][T13509] warn_alloc.cold+0xc3/0x1c9 [ 3294.256044][T13509] ? zone_watermark_ok_safe+0x420/0x420 [ 3294.261581][T13509] ? print_usage_bug+0xd0/0xd0 [ 3294.266354][T13509] ? kasan_kmalloc+0x9/0x10 [ 3294.270840][T13509] ? __lock_is_held+0xb6/0x140 [ 3294.275603][T13509] ? add_lock_to_list.isra.0+0x450/0x450 [ 3294.281244][T13509] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3294.287475][T13509] ? check_preemption_disabled+0x48/0x290 [ 3294.293178][T13509] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3294.298276][T13509] __vmalloc_node_range+0x57a/0x910 [ 3294.303458][T13509] ? __lock_is_held+0xb6/0x140 [ 3294.308207][T13509] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3294.313301][T13509] ? vfree_atomic+0xe0/0xe0 [ 3294.317791][T13509] ? rcu_read_lock_sched_held+0x110/0x130 [ 3294.323491][T13509] ? kmem_cache_alloc_trace+0x354/0x760 [ 3294.329016][T13509] ? __lock_is_held+0xb6/0x140 [ 3294.333764][T13509] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3294.338872][T13509] vmalloc_user+0x6b/0x90 [ 3294.343197][T13509] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3294.348303][T13509] vb2_vmalloc_alloc+0x134/0x3a0 [ 3294.353225][T13509] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3294.359015][T13509] ? lock_acquire+0x1db/0x570 [ 3294.363704][T13509] ? __vb2_queue_alloc+0xf5/0xf40 [ 3294.368727][T13509] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3294.374514][T13509] __vb2_queue_alloc+0x5a6/0xf40 [ 3294.379447][T13509] ? vimc_cap_get_format+0x120/0x120 [ 3294.384718][T13509] vb2_core_create_bufs+0x378/0x8e0 [ 3294.389913][T13509] ? __vb2_queue_alloc+0xf40/0xf40 [ 3294.395021][T13509] ? mutex_trylock+0x2d0/0x2d0 [ 3294.399772][T13509] ? save_stack+0xa9/0xd0 [ 3294.404089][T13509] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3294.410327][T13509] vb2_create_bufs+0x4b5/0x8e0 [ 3294.415099][T13509] ? vb2_request_queue+0x120/0x120 [ 3294.420194][T13509] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3294.426437][T13509] ? v4l2_prio_max+0x266/0x310 [ 3294.431182][T13509] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3294.437420][T13509] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3294.442706][T13509] v4l_create_bufs+0x152/0x230 [ 3294.447454][T13509] __video_do_ioctl+0x805/0xd80 [ 3294.452309][T13509] ? v4l_s_fmt+0xb20/0xb20 [ 3294.456720][T13509] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3294.462945][T13509] ? _copy_from_user+0xdd/0x150 [ 3294.467784][T13509] video_usercopy+0x460/0x16b0 [ 3294.472554][T13509] ? v4l_s_fmt+0xb20/0xb20 [ 3294.477013][T13509] ? v4l_enumstd+0x70/0x70 [ 3294.481427][T13509] ? __fget+0x473/0x710 [ 3294.485575][T13509] ? find_held_lock+0x35/0x120 [ 3294.490324][T13509] ? __fget+0x473/0x710 [ 3294.494464][T13509] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3294.500689][T13509] ? lock_downgrade+0xbe0/0xbe0 [ 3294.505524][T13509] ? kasan_check_read+0x11/0x20 [ 3294.510362][T13509] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3294.516325][T13509] ? rcu_read_unlock_special+0x380/0x380 [ 3294.521945][T13509] ? __fget+0x49a/0x710 [ 3294.526110][T13509] ? video_usercopy+0x16b0/0x16b0 [ 3294.531116][T13509] video_ioctl2+0x2d/0x35 [ 3294.535447][T13509] v4l2_ioctl+0x156/0x1b0 [ 3294.539760][T13509] ? video_devdata+0xa0/0xa0 [ 3294.544333][T13509] do_vfs_ioctl+0x107b/0x17d0 [ 3294.549002][T13509] ? ioctl_preallocate+0x2f0/0x2f0 [ 3294.554110][T13509] ? __fget_light+0x2db/0x420 [ 3294.558783][T13509] ? fget_raw+0x20/0x20 [ 3294.562921][T13509] ? put_timespec64+0x115/0x1b0 [ 3294.567764][T13509] ? nsecs_to_jiffies+0x30/0x30 [ 3294.572632][T13509] ? do_syscall_64+0x8c/0x800 [ 3294.577292][T13509] ? do_syscall_64+0x8c/0x800 [ 3294.581957][T13509] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3294.587226][T13509] ? security_file_ioctl+0x93/0xc0 [ 3294.592324][T13509] ksys_ioctl+0xab/0xd0 [ 3294.596463][T13509] __x64_sys_ioctl+0x73/0xb0 [ 3294.601035][T13509] do_syscall_64+0x1a3/0x800 [ 3294.605608][T13509] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3294.611222][T13509] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3294.616924][T13509] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3294.622456][T13509] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3294.628330][T13509] RIP: 0033:0x457ec9 [ 3294.632210][T13509] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3294.651816][T13509] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3294.660233][T13509] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3294.668188][T13509] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3294.676140][T13509] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3294.684096][T13509] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3294.692049][T13509] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3294.700661][T13509] Mem-Info: [ 3294.703824][T13509] active_anon:145991 inactive_anon:203 isolated_anon:0 [ 3294.703824][T13509] active_file:12621 inactive_file:59066 isolated_file:0 [ 3294.703824][T13509] unevictable:0 dirty:438 writeback:0 unstable:0 [ 3294.703824][T13509] slab_reclaimable:15635 slab_unreclaimable:115386 [ 3294.703824][T13509] mapped:55550 shmem:245 pagetables:1789 bounce:0 [ 3294.703824][T13509] free:1178520 free_pcp:604 free_cma:0 [ 3294.742186][T13509] Node 0 active_anon:583916kB inactive_anon:812kB active_file:50344kB inactive_file:236280kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222148kB dirty:1792kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3294.771341][T13509] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3294.797872][T13509] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3294.824836][T13509] lowmem_reserve[]: 0 2535 2537 2537 [ 3294.830217][T13509] Node 0 DMA32 free:911556kB min:36080kB low:45100kB high:54120kB active_anon:583916kB inactive_anon:812kB active_file:50344kB inactive_file:236280kB unevictable:0kB writepending:1796kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8032kB pagetables:7144kB bounce:0kB free_pcp:2632kB local_pcp:1424kB free_cma:0kB [ 3294.861451][T13509] lowmem_reserve[]: 0 0 2 2 [ 3294.865962][T13509] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3294.893394][T13509] lowmem_reserve[]: 0 0 0 0 [ 3294.897904][T13509] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3294.926290][T13509] lowmem_reserve[]: 0 0 0 0 [ 3294.930854][T13509] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3294.945247][T13509] Node 0 DMA32: 551*4kB (UM) 357*8kB (UE) 1086*16kB (UE) 1411*32kB (U) 613*64kB (UM) 107*128kB (UME) 28*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 38*2048kB (UM) 155*4096kB (UM) = 911556kB [ 3294.963715][T13509] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3294.979441][T13509] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3294.997213][T13509] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3295.006799][T13509] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3295.016131][T13509] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3295.025715][T13509] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3295.035181][T13509] 71944 total pagecache pages [ 3295.039969][T13509] 0 pages in swap cache [ 3295.044124][T13509] Swap cache stats: add 0, delete 0, find 0/0 [ 3295.050249][T13509] Free swap = 0kB [ 3295.053972][T13509] Total swap = 0kB [ 3295.057685][T13509] 1965979 pages RAM [ 3295.061534][T13509] 0 pages HighMem/MovableOnly [ 3295.066212][T13509] 343989 pages reserved [ 3295.070413][T13509] 0 pages cma reserved [ 3295.074625][T13533] syz-executor1: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3295.090036][T13533] CPU: 1 PID: 13533 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3295.098983][T13533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3295.109017][T13533] Call Trace: [ 3295.112302][T13533] dump_stack+0x1db/0x2d0 [ 3295.116620][T13533] ? dump_stack_print_info.cold+0x20/0x20 [ 3295.122328][T13533] ? idr_get_free+0xee0/0xee0 [ 3295.127001][T13533] ? kasan_kmalloc+0x9/0x10 [ 3295.131486][T13533] ? kmem_cache_alloc_trace+0x151/0x760 [ 3295.137014][T13533] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3295.142019][T13533] ? vb2_core_create_bufs+0x378/0x8e0 [ 3295.147377][T13533] warn_alloc.cold+0xc3/0x1c9 [ 3295.152039][T13533] ? zone_watermark_ok_safe+0x420/0x420 [ 3295.157576][T13533] ? print_usage_bug+0xd0/0xd0 [ 3295.162328][T13533] ? kasan_kmalloc+0x9/0x10 [ 3295.166814][T13533] ? __lock_is_held+0xb6/0x140 [ 3295.171568][T13533] ? add_lock_to_list.isra.0+0x450/0x450 [ 3295.177190][T13533] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3295.183419][T13533] ? check_preemption_disabled+0x48/0x290 [ 3295.189129][T13533] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3295.194247][T13533] __vmalloc_node_range+0x57a/0x910 [ 3295.199445][T13533] ? __lock_is_held+0xb6/0x140 [ 3295.204198][T13533] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3295.209300][T13533] ? vfree_atomic+0xe0/0xe0 [ 3295.213792][T13533] ? rcu_read_lock_sched_held+0x110/0x130 [ 3295.219493][T13533] ? kmem_cache_alloc_trace+0x354/0x760 [ 3295.225018][T13533] ? __lock_is_held+0xb6/0x140 [ 3295.229766][T13533] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3295.234862][T13533] vmalloc_user+0x6b/0x90 [ 3295.239179][T13533] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3295.244273][T13533] vb2_vmalloc_alloc+0x134/0x3a0 [ 3295.249202][T13533] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3295.255011][T13533] ? lock_acquire+0x1db/0x570 [ 3295.259672][T13533] ? __vb2_queue_alloc+0xf5/0xf40 [ 3295.264680][T13533] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3295.270475][T13533] __vb2_queue_alloc+0x5a6/0xf40 [ 3295.275412][T13533] ? vimc_cap_get_format+0x120/0x120 [ 3295.280677][T13533] vb2_core_create_bufs+0x378/0x8e0 [ 3295.285863][T13533] ? __vb2_queue_alloc+0xf40/0xf40 [ 3295.290957][T13533] ? mutex_trylock+0x2d0/0x2d0 [ 3295.295794][T13533] ? save_stack+0xa9/0xd0 [ 3295.300110][T13533] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3295.306344][T13533] vb2_create_bufs+0x4b5/0x8e0 [ 3295.311098][T13533] ? vb2_request_queue+0x120/0x120 [ 3295.316208][T13533] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3295.322431][T13533] ? v4l2_prio_max+0x266/0x310 [ 3295.327176][T13533] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3295.333400][T13533] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3295.338673][T13533] v4l_create_bufs+0x152/0x230 [ 3295.343423][T13533] __video_do_ioctl+0x805/0xd80 [ 3295.348371][T13533] ? v4l_s_fmt+0xb20/0xb20 [ 3295.352792][T13533] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3295.359014][T13533] ? _copy_from_user+0xdd/0x150 [ 3295.363851][T13533] video_usercopy+0x460/0x16b0 [ 3295.368600][T13533] ? v4l_s_fmt+0xb20/0xb20 [ 3295.373004][T13533] ? v4l_enumstd+0x70/0x70 [ 3295.377402][T13533] ? __fget+0x473/0x710 [ 3295.381554][T13533] ? find_held_lock+0x35/0x120 [ 3295.386312][T13533] ? __fget+0x473/0x710 [ 3295.390451][T13533] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3295.396676][T13533] ? lock_downgrade+0xbe0/0xbe0 [ 3295.401507][T13533] ? kasan_check_read+0x11/0x20 [ 3295.406364][T13533] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3295.412329][T13533] ? rcu_read_unlock_special+0x380/0x380 [ 3295.417946][T13533] ? __fget+0x49a/0x710 [ 3295.422091][T13533] ? video_usercopy+0x16b0/0x16b0 [ 3295.427099][T13533] video_ioctl2+0x2d/0x35 [ 3295.431425][T13533] v4l2_ioctl+0x156/0x1b0 [ 3295.435757][T13533] ? video_devdata+0xa0/0xa0 [ 3295.440331][T13533] do_vfs_ioctl+0x107b/0x17d0 [ 3295.444995][T13533] ? ioctl_preallocate+0x2f0/0x2f0 [ 3295.450100][T13533] ? __fget_light+0x2db/0x420 [ 3295.454767][T13533] ? fget_raw+0x20/0x20 [ 3295.458916][T13533] ? put_timespec64+0x115/0x1b0 [ 3295.463750][T13533] ? _raw_spin_unlock_irq+0x28/0x90 [ 3295.468931][T13533] ? nsecs_to_jiffies+0x30/0x30 [ 3295.473784][T13533] ? do_syscall_64+0x8c/0x800 [ 3295.478442][T13533] ? do_syscall_64+0x8c/0x800 [ 3295.483114][T13533] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3295.488405][T13533] ? security_file_ioctl+0x93/0xc0 [ 3295.493499][T13533] ksys_ioctl+0xab/0xd0 [ 3295.497653][T13533] __x64_sys_ioctl+0x73/0xb0 [ 3295.502244][T13533] do_syscall_64+0x1a3/0x800 [ 3295.506816][T13533] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3295.512430][T13533] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 3295.518131][T13533] ? __switch_to_asm+0x34/0x70 [ 3295.522879][T13533] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3295.528409][T13533] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3295.534294][T13533] RIP: 0033:0x457ec9 [ 3295.538169][T13533] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 20:33:12 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000701000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:12 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff00000002]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:12 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x101000, 0x0) ioctl$UI_SET_KEYBIT(r1, 0x40045565, 0x2a2) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$sock_SIOCGSKNS(r0, 0x894c, &(0x7f00000000c0)=0x20) 20:33:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x48]}) 20:33:12 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x700000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3295.557760][T13533] RSP: 002b:00007fed9220ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3295.566153][T13533] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3295.574106][T13533] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3295.582058][T13533] RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000 [ 3295.590017][T13533] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed9220f6d4 [ 3295.597969][T13533] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3295.701322][T13566] Unknown ioctl 1074025829 [ 3295.724143][T13573] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3295.772857][T13573] CPU: 0 PID: 13573 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3295.781311][T13570] kvm [13563]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x48 [ 3295.781846][T13573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3295.781854][T13573] Call Trace: [ 3295.781880][T13573] dump_stack+0x1db/0x2d0 [ 3295.781905][T13573] ? dump_stack_print_info.cold+0x20/0x20 [ 3295.781921][T13573] ? idr_get_free+0xee0/0xee0 20:33:12 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3295.781945][T13573] ? kasan_kmalloc+0x9/0x10 [ 3295.800933][T13573] ? kmem_cache_alloc_trace+0x151/0x760 [ 3295.800950][T13573] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3295.800965][T13573] ? vb2_core_create_bufs+0x378/0x8e0 [ 3295.800986][T13573] warn_alloc.cold+0xc3/0x1c9 [ 3295.801005][T13573] ? zone_watermark_ok_safe+0x420/0x420 [ 3295.801019][T13573] ? print_usage_bug+0xd0/0xd0 [ 3295.801033][T13573] ? kasan_kmalloc+0x9/0x10 [ 3295.801053][T13573] ? __lock_is_held+0xb6/0x140 [ 3295.801068][T13573] ? add_lock_to_list.isra.0+0x450/0x450 [ 3295.801084][T13573] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3295.801099][T13573] ? check_preemption_disabled+0x48/0x290 [ 3295.801112][T13573] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3295.801139][T13573] __vmalloc_node_range+0x57a/0x910 [ 3295.814447][T13573] ? __lock_is_held+0xb6/0x140 [ 3295.814466][T13573] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3295.814486][T13573] ? vfree_atomic+0xe0/0xe0 [ 3295.814504][T13573] ? rcu_read_lock_sched_held+0x110/0x130 [ 3295.814522][T13573] ? kmem_cache_alloc_trace+0x354/0x760 [ 3295.814534][T13573] ? __lock_is_held+0xb6/0x140 [ 3295.814549][T13573] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3295.814582][T13573] vmalloc_user+0x6b/0x90 [ 3295.814603][T13573] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3295.834311][T13573] vb2_vmalloc_alloc+0x134/0x3a0 [ 3295.834332][T13573] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3295.834350][T13573] ? lock_acquire+0x1db/0x570 [ 3295.834368][T13573] ? __video_do_ioctl+0x3b1/0xd80 [ 3295.834381][T13573] ? __vb2_queue_alloc+0xf5/0xf40 [ 3295.834401][T13573] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3295.859524][T13576] kvm [13563]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x48 [ 3295.863945][T13573] __vb2_queue_alloc+0x5a6/0xf40 [ 3295.863983][T13573] ? vimc_cap_get_format+0x120/0x120 [ 3295.863998][T13573] vb2_core_create_bufs+0x378/0x8e0 [ 3295.864019][T13573] ? __vb2_queue_alloc+0xf40/0xf40 [ 3295.864037][T13573] ? mutex_trylock+0x2d0/0x2d0 [ 3295.864061][T13573] ? save_stack+0xa9/0xd0 [ 3295.881633][T13573] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3295.881656][T13573] vb2_create_bufs+0x4b5/0x8e0 [ 3295.881678][T13573] ? vb2_request_queue+0x120/0x120 [ 3295.881698][T13573] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3295.881713][T13573] ? v4l2_prio_max+0x266/0x310 [ 3295.881733][T13573] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3295.892027][T13573] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3295.892052][T13573] v4l_create_bufs+0x152/0x230 [ 3295.892073][T13573] __video_do_ioctl+0x805/0xd80 [ 3295.892100][T13573] ? v4l_s_fmt+0xb20/0xb20 [ 3295.892122][T13573] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3295.892138][T13573] ? _copy_from_user+0xdd/0x150 [ 3295.892158][T13573] video_usercopy+0x460/0x16b0 [ 3295.892175][T13573] ? v4l_s_fmt+0xb20/0xb20 [ 3295.892198][T13573] ? v4l_enumstd+0x70/0x70 [ 3295.922572][T13573] ? __fget+0x473/0x710 [ 3295.922593][T13573] ? find_held_lock+0x35/0x120 [ 3295.922609][T13573] ? __fget+0x473/0x710 [ 3295.922629][T13573] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3295.922650][T13573] ? lock_downgrade+0xbe0/0xbe0 [ 3295.922672][T13573] ? kasan_check_read+0x11/0x20 [ 3295.932095][T13573] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3295.932115][T13573] ? rcu_read_unlock_special+0x380/0x380 [ 3295.932142][T13573] ? __fget+0x49a/0x710 [ 3295.932165][T13573] ? video_usercopy+0x16b0/0x16b0 [ 3295.932181][T13573] video_ioctl2+0x2d/0x35 [ 3295.932198][T13573] v4l2_ioctl+0x156/0x1b0 [ 3295.932214][T13573] ? video_devdata+0xa0/0xa0 [ 3295.932230][T13573] do_vfs_ioctl+0x107b/0x17d0 [ 3295.932251][T13573] ? ioctl_preallocate+0x2f0/0x2f0 [ 3296.156550][T13573] ? __fget_light+0x2db/0x420 [ 3296.161242][T13573] ? fget_raw+0x20/0x20 [ 3296.165394][T13573] ? put_timespec64+0x115/0x1b0 [ 3296.170242][T13573] ? nsecs_to_jiffies+0x30/0x30 [ 3296.175096][T13573] ? do_syscall_64+0x8c/0x800 [ 3296.179772][T13573] ? do_syscall_64+0x8c/0x800 [ 3296.184447][T13573] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3296.189737][T13573] ? security_file_ioctl+0x93/0xc0 [ 3296.194855][T13573] ksys_ioctl+0xab/0xd0 [ 3296.199023][T13573] __x64_sys_ioctl+0x73/0xb0 [ 3296.203618][T13573] do_syscall_64+0x1a3/0x800 [ 3296.208214][T13573] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3296.213849][T13573] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3296.219587][T13573] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3296.225148][T13573] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3296.231040][T13573] RIP: 0033:0x457ec9 [ 3296.234933][T13573] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3296.254566][T13573] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3296.262983][T13573] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3296.270954][T13573] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3296.278923][T13573] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3296.286900][T13573] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3296.294869][T13573] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3296.306960][T13573] warn_alloc_show_mem: 1 callbacks suppressed [ 3296.306965][T13573] Mem-Info: [ 3296.317340][T13573] active_anon:148148 inactive_anon:203 isolated_anon:0 [ 3296.317340][T13573] active_file:12621 inactive_file:59078 isolated_file:0 [ 3296.317340][T13573] unevictable:0 dirty:459 writeback:0 unstable:0 [ 3296.317340][T13573] slab_reclaimable:15614 slab_unreclaimable:115610 [ 3296.317340][T13573] mapped:55587 shmem:244 pagetables:1896 bounce:0 [ 3296.317340][T13573] free:1176095 free_pcp:401 free_cma:0 [ 3296.363358][T13573] Node 0 active_anon:592592kB inactive_anon:812kB active_file:50344kB inactive_file:236312kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222348kB dirty:1836kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 176128kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3296.394552][T13573] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3296.428321][T13573] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3296.465775][T13573] lowmem_reserve[]: 0 2535 2537 2537 [ 3296.472505][T13583] Unknown ioctl 1074025829 20:33:13 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000901000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3296.532789][T13573] Node 0 DMA32 free:904908kB min:36080kB low:45100kB high:54120kB active_anon:590416kB inactive_anon:816kB active_file:50344kB inactive_file:236352kB unevictable:0kB writepending:1024kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8192kB pagetables:7552kB bounce:0kB free_pcp:1580kB local_pcp:496kB free_cma:0kB 20:33:13 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3296.584361][T13573] lowmem_reserve[]: 0 0 2 2 20:33:13 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) syncfs(r0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x49]}) [ 3296.624239][T13573] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:33:13 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3296.702173][T13573] lowmem_reserve[]: 0 0 0 0 [ 3296.709941][T13573] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3296.739338][T13573] lowmem_reserve[]: 0 0 0 0 [ 3296.743998][T13573] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3296.800948][T13573] Node 0 DMA32: 594*4kB (UME) 264*8kB (U) 1104*16kB (UM) 1409*32kB (UM) 608*64kB (UME) 105*128kB (UM) 26*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 34*2048kB (U) 156*4096kB (UM) = 906024kB 20:33:13 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000a01000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3296.845493][T13573] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3296.869489][T13573] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB 20:33:13 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3296.929683][T13573] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3297.018728][T13573] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3297.069798][T13573] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3297.082895][T13603] XFS (loop2): Invalid superblock magic number [ 3297.102516][T13630] kvm [13610]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x49 [ 3297.130202][T13573] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3297.194163][T13573] 71964 total pagecache pages [ 3297.239751][T13573] 0 pages in swap cache [ 3297.249313][T13630] kvm [13610]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x49 [ 3297.262241][T13573] Swap cache stats: add 0, delete 0, find 0/0 [ 3297.279334][T13573] Free swap = 0kB [ 3297.300707][T13573] Total swap = 0kB [ 3297.325343][T13573] 1965979 pages RAM [ 3297.359230][T13573] 0 pages HighMem/MovableOnly [ 3297.369715][T13573] 343989 pages reserved [ 3297.389177][T13573] 0 pages cma reserved 20:33:14 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff00000004]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:14 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:14 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x900000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) 20:33:14 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000190f01000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:14 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="6e6f59d7666c61726765696f2c646958636172642c007fba30ce742fbf9e646eb2112a1a6744b6f50dc189650263b1b4f14dd178048c47612072ba35aeadb127fff150cff5f9cd03c20361f7541d1d86af8488a592a669df02ef6f9707d8ea642e2ca8b8a670fd769e2f5236fd2327f30b060bbb2fb24010ac94b169766cdc27e8fbbb6893b77f9aa0157f0ca050519de2d4f4c990a5bb9ee948e546454aa2199881a2"]) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x4c]}) [ 3297.585924][T13656] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3297.624176][T13656] CPU: 1 PID: 13656 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3297.633180][T13656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3297.643254][T13656] Call Trace: [ 3297.646566][T13656] dump_stack+0x1db/0x2d0 [ 3297.650908][T13656] ? dump_stack_print_info.cold+0x20/0x20 [ 3297.656642][T13656] ? idr_get_free+0xee0/0xee0 [ 3297.661327][T13656] ? kasan_kmalloc+0x9/0x10 [ 3297.665835][T13656] ? kmem_cache_alloc_trace+0x151/0x760 [ 3297.671385][T13656] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3297.676428][T13656] ? vb2_core_create_bufs+0x378/0x8e0 [ 3297.681809][T13656] warn_alloc.cold+0xc3/0x1c9 [ 3297.686750][T13656] ? zone_watermark_ok_safe+0x420/0x420 [ 3297.692294][T13656] ? print_usage_bug+0xd0/0xd0 [ 3297.697059][T13656] ? kasan_kmalloc+0x9/0x10 [ 3297.701583][T13656] ? __lock_is_held+0xb6/0x140 [ 3297.706355][T13656] ? add_lock_to_list.isra.0+0x450/0x450 [ 3297.711996][T13656] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3297.718251][T13656] ? check_preemption_disabled+0x48/0x290 [ 3297.723975][T13656] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3297.729101][T13656] __vmalloc_node_range+0x57a/0x910 [ 3297.734309][T13656] ? __lock_is_held+0xb6/0x140 [ 3297.739087][T13656] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3297.744208][T13656] ? vfree_atomic+0xe0/0xe0 [ 3297.748712][T13656] ? rcu_read_lock_sched_held+0x110/0x130 [ 3297.754434][T13656] ? kmem_cache_alloc_trace+0x354/0x760 [ 3297.759977][T13656] ? __lock_is_held+0xb6/0x140 [ 3297.764742][T13656] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3297.769859][T13656] vmalloc_user+0x6b/0x90 [ 3297.774195][T13656] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3297.779308][T13656] vb2_vmalloc_alloc+0x134/0x3a0 [ 3297.784257][T13656] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3297.790065][T13656] ? lock_acquire+0x1db/0x570 [ 3297.794758][T13656] ? __video_do_ioctl+0x3b1/0xd80 [ 3297.799781][T13656] ? __vb2_queue_alloc+0xf5/0xf40 [ 3297.804812][T13656] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3297.810621][T13656] __vb2_queue_alloc+0x5a6/0xf40 [ 3297.815587][T13656] ? vimc_cap_get_format+0x120/0x120 [ 3297.820875][T13656] vb2_core_create_bufs+0x378/0x8e0 [ 3297.826084][T13656] ? __vb2_queue_alloc+0xf40/0xf40 [ 3297.831198][T13656] ? mutex_trylock+0x2d0/0x2d0 [ 3297.835973][T13656] ? save_stack+0xa9/0xd0 [ 3297.840307][T13656] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3297.846574][T13656] vb2_create_bufs+0x4b5/0x8e0 [ 3297.851343][T13656] ? vb2_request_queue+0x120/0x120 [ 3297.856461][T13656] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3297.862707][T13656] ? v4l2_prio_max+0x266/0x310 [ 3297.867472][T13656] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3297.873716][T13656] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3297.879009][T13656] v4l_create_bufs+0x152/0x230 [ 3297.883778][T13656] __video_do_ioctl+0x805/0xd80 [ 3297.888643][T13656] ? v4l_s_fmt+0xb20/0xb20 [ 3297.893081][T13656] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3297.899327][T13656] ? _copy_from_user+0xdd/0x150 [ 3297.904186][T13656] video_usercopy+0x460/0x16b0 [ 3297.908955][T13656] ? v4l_s_fmt+0xb20/0xb20 [ 3297.913386][T13656] ? v4l_enumstd+0x70/0x70 [ 3297.917810][T13656] ? __fget+0x473/0x710 [ 3297.921969][T13656] ? find_held_lock+0x35/0x120 [ 3297.926737][T13656] ? __fget+0x473/0x710 [ 3297.930899][T13656] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3297.937142][T13656] ? lock_downgrade+0xbe0/0xbe0 [ 3297.941993][T13656] ? kasan_check_read+0x11/0x20 [ 3297.946849][T13656] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3297.952834][T13656] ? rcu_read_unlock_special+0x380/0x380 [ 3297.958507][T13656] ? __fget+0x49a/0x710 [ 3297.962670][T13656] ? video_usercopy+0x16b0/0x16b0 [ 3297.967698][T13656] video_ioctl2+0x2d/0x35 [ 3297.972054][T13656] v4l2_ioctl+0x156/0x1b0 [ 3297.976399][T13656] ? video_devdata+0xa0/0xa0 [ 3297.980990][T13656] do_vfs_ioctl+0x107b/0x17d0 [ 3297.985688][T13656] ? ioctl_preallocate+0x2f0/0x2f0 [ 3297.990814][T13656] ? __fget_light+0x2db/0x420 [ 3297.995498][T13656] ? fget_raw+0x20/0x20 [ 3297.999659][T13656] ? put_timespec64+0x115/0x1b0 [ 3298.004510][T13656] ? nsecs_to_jiffies+0x30/0x30 [ 3298.009364][T13656] ? do_syscall_64+0x8c/0x800 [ 3298.014045][T13656] ? do_syscall_64+0x8c/0x800 [ 3298.018732][T13656] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3298.024027][T13656] ? security_file_ioctl+0x93/0xc0 [ 3298.029142][T13656] ksys_ioctl+0xab/0xd0 [ 3298.033308][T13656] __x64_sys_ioctl+0x73/0xb0 20:33:14 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3298.037907][T13656] do_syscall_64+0x1a3/0x800 [ 3298.042504][T13656] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3298.048143][T13656] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3298.053871][T13656] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3298.059432][T13656] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3298.065322][T13656] RIP: 0033:0x457ec9 [ 3298.069221][T13656] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3298.088820][T13656] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3298.088837][T13656] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3298.088846][T13656] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3298.088856][T13656] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3298.088866][T13656] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3298.088875][T13656] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff 20:33:14 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000201001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3298.098232][T13659] kvm [13646]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x4c [ 3298.109930][T13656] Mem-Info: [ 3298.158019][T13662] kvm [13646]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x4c [ 3298.209179][T13654] XFS (loop2): unknown mount option [noY×flargeio]. [ 3298.255988][T13656] active_anon:147652 inactive_anon:201 isolated_anon:0 [ 3298.255988][T13656] active_file:12621 inactive_file:59107 isolated_file:0 [ 3298.255988][T13656] unevictable:0 dirty:157 writeback:0 unstable:0 [ 3298.255988][T13656] slab_reclaimable:15615 slab_unreclaimable:116095 [ 3298.255988][T13656] mapped:55553 shmem:245 pagetables:1894 bounce:0 [ 3298.255988][T13656] free:1175952 free_pcp:557 free_cma:0 20:33:14 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x60]}) [ 3298.312108][T13656] Node 0 active_anon:588552kB inactive_anon:804kB active_file:50344kB inactive_file:236428kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222212kB dirty:628kB writeback:0kB shmem:980kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 180224kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:33:14 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x9, 0x2000) read$eventfd(r1, &(0x7f00000000c0), 0x8) signalfd(r0, &(0x7f0000000100)={0x5}, 0x8) [ 3298.348526][T13656] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3298.449206][T13656] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3298.481522][T13656] lowmem_reserve[]: 0 2535 2537 2537 [ 3298.487937][T13656] Node 0 DMA32 free:898500kB min:36080kB low:45100kB high:54120kB active_anon:593080kB inactive_anon:804kB active_file:50344kB inactive_file:236428kB unevictable:0kB writepending:628kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8384kB pagetables:7576kB bounce:0kB free_pcp:1192kB local_pcp:856kB free_cma:0kB [ 3298.521671][T13656] lowmem_reserve[]: 0 0 2 2 [ 3298.528352][T13685] kvm [13677]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x60 [ 3298.537762][T13656] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:33:15 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa00000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3298.595312][T13689] kvm [13677]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x60 [ 3298.633630][T13656] lowmem_reserve[]: 0 0 0 0 [ 3298.638365][T13656] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3298.674605][T13656] lowmem_reserve[]: 0 0 0 0 [ 3298.698512][T13656] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3298.739690][T13656] Node 0 DMA32: 512*4kB (UE) 85*8kB (UE) 1055*16kB (UME) 1408*32kB (UE) 602*64kB (UME) 118*128kB (UME) 25*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 37*2048kB (UM) 155*4096kB (UM) = 906520kB [ 3298.758744][T13656] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3298.789019][T13656] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3298.807962][T13656] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3298.833158][T13656] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3298.849062][T13656] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3298.859000][T13656] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3298.869815][T13656] 71982 total pagecache pages [ 3298.874516][T13656] 0 pages in swap cache [ 3298.878677][T13656] Swap cache stats: add 0, delete 0, find 0/0 [ 3298.885119][T13656] Free swap = 0kB 20:33:15 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff0000000a]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:15 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="6ecaa26172670000006a2647a10662d7736942f2c83fb51e0000006172643c00"]) recvfrom$unix(r0, &(0x7f0000000180)=""/223, 0xdf, 0x140, &(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e20}, 0x6e) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$usb(&(0x7f0000000280)='/dev/bus/usb/00#/00#\x00', 0x0, 0x10003) ioctl$TUNSETLINK(r1, 0x400454cd, 0x17) 20:33:15 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a0000010000000f1901000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x68]}) 20:33:15 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc00000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:15 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0xa00000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3298.889659][T13656] Total swap = 0kB [ 3298.893399][T13656] 1965979 pages RAM [ 3298.897198][T13656] 0 pages HighMem/MovableOnly [ 3298.902810][T13656] 343989 pages reserved [ 3298.906979][T13656] 0 pages cma reserved [ 3299.015990][T13708] XFS (loop2): unknown mount option [nÊ¢arg]. [ 3299.040916][T13713] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 20:33:15 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1003000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:15 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000001f01000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3299.086206][T13713] CPU: 1 PID: 13713 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3299.095166][T13713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3299.095174][T13713] Call Trace: [ 3299.095200][T13713] dump_stack+0x1db/0x2d0 [ 3299.095224][T13713] ? dump_stack_print_info.cold+0x20/0x20 [ 3299.095246][T13713] ? idr_get_free+0xee0/0xee0 [ 3299.123267][T13713] ? kasan_kmalloc+0x9/0x10 [ 3299.127780][T13713] ? kmem_cache_alloc_trace+0x151/0x760 [ 3299.133326][T13713] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3299.138348][T13713] ? vb2_core_create_bufs+0x378/0x8e0 [ 3299.143725][T13713] warn_alloc.cold+0xc3/0x1c9 [ 3299.148407][T13713] ? zone_watermark_ok_safe+0x420/0x420 [ 3299.153954][T13713] ? print_usage_bug+0xd0/0xd0 [ 3299.158716][T13713] ? kasan_kmalloc+0x9/0x10 [ 3299.163223][T13713] ? __lock_is_held+0xb6/0x140 [ 3299.167987][T13713] ? add_lock_to_list.isra.0+0x450/0x450 [ 3299.173619][T13713] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3299.179862][T13713] ? check_preemption_disabled+0x48/0x290 [ 3299.185632][T13713] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3299.190746][T13713] __vmalloc_node_range+0x57a/0x910 [ 3299.195942][T13713] ? __lock_is_held+0xb6/0x140 [ 3299.200709][T13713] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3299.205821][T13713] ? vfree_atomic+0xe0/0xe0 [ 3299.210348][T13713] ? rcu_read_lock_sched_held+0x110/0x130 [ 3299.216066][T13713] ? kmem_cache_alloc_trace+0x354/0x760 [ 3299.221631][T13713] ? __lock_is_held+0xb6/0x140 [ 3299.226396][T13713] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3299.231536][T13713] vmalloc_user+0x6b/0x90 [ 3299.235873][T13713] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3299.240982][T13713] vb2_vmalloc_alloc+0x134/0x3a0 [ 3299.245923][T13713] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3299.251725][T13713] ? lock_acquire+0x1db/0x570 [ 3299.256404][T13713] ? __video_do_ioctl+0x3b1/0xd80 [ 3299.261429][T13713] ? __vb2_queue_alloc+0xf5/0xf40 [ 3299.266454][T13713] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3299.272258][T13713] __vb2_queue_alloc+0x5a6/0xf40 [ 3299.277216][T13713] ? vimc_cap_get_format+0x120/0x120 [ 3299.282496][T13713] vb2_core_create_bufs+0x378/0x8e0 [ 3299.287693][T13713] ? __vb2_queue_alloc+0xf40/0xf40 [ 3299.292802][T13713] ? mutex_trylock+0x2d0/0x2d0 [ 3299.297590][T13713] ? save_stack+0xa9/0xd0 [ 3299.301921][T13713] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3299.308161][T13713] vb2_create_bufs+0x4b5/0x8e0 [ 3299.312926][T13713] ? vb2_request_queue+0x120/0x120 [ 3299.318043][T13713] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3299.324306][T13713] ? v4l2_prio_max+0x266/0x310 [ 3299.329073][T13713] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3299.335318][T13713] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3299.340622][T13713] v4l_create_bufs+0x152/0x230 [ 3299.345407][T13713] __video_do_ioctl+0x805/0xd80 [ 3299.350270][T13713] ? v4l_s_fmt+0xb20/0xb20 [ 3299.354690][T13713] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3299.360929][T13713] ? _copy_from_user+0xdd/0x150 [ 3299.365785][T13713] video_usercopy+0x460/0x16b0 [ 3299.370578][T13713] ? v4l_s_fmt+0xb20/0xb20 [ 3299.375004][T13713] ? v4l_enumstd+0x70/0x70 [ 3299.379424][T13713] ? __fget+0x473/0x710 [ 3299.383586][T13713] ? find_held_lock+0x35/0x120 [ 3299.388347][T13713] ? __fget+0x473/0x710 [ 3299.392504][T13713] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3299.398744][T13713] ? lock_downgrade+0xbe0/0xbe0 [ 3299.403605][T13713] ? kasan_check_read+0x11/0x20 [ 3299.408454][T13713] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3299.414435][T13713] ? rcu_read_unlock_special+0x380/0x380 [ 3299.420084][T13713] ? __fget+0x49a/0x710 [ 3299.424244][T13713] ? video_usercopy+0x16b0/0x16b0 [ 3299.429284][T13713] video_ioctl2+0x2d/0x35 [ 3299.433615][T13713] v4l2_ioctl+0x156/0x1b0 [ 3299.437941][T13713] ? video_devdata+0xa0/0xa0 [ 3299.442594][T13713] do_vfs_ioctl+0x107b/0x17d0 [ 3299.447276][T13713] ? ioctl_preallocate+0x2f0/0x2f0 [ 3299.452651][T13713] ? __fget_light+0x2db/0x420 [ 3299.457328][T13713] ? fget_raw+0x20/0x20 [ 3299.461483][T13713] ? put_timespec64+0x115/0x1b0 [ 3299.466328][T13713] ? nsecs_to_jiffies+0x30/0x30 [ 3299.471181][T13713] ? do_syscall_64+0x8c/0x800 [ 3299.475854][T13713] ? do_syscall_64+0x8c/0x800 [ 3299.480550][T13713] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3299.485848][T13713] ? security_file_ioctl+0x93/0xc0 [ 3299.490959][T13713] ksys_ioctl+0xab/0xd0 [ 3299.495122][T13713] __x64_sys_ioctl+0x73/0xb0 [ 3299.499713][T13713] do_syscall_64+0x1a3/0x800 [ 3299.504302][T13713] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3299.509934][T13713] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3299.515655][T13713] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3299.521207][T13713] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3299.527114][T13713] RIP: 0033:0x457ec9 [ 3299.531006][T13713] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3299.550624][T13713] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3299.559030][T13713] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3299.566996][T13713] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3299.575078][T13713] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3299.583044][T13713] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3299.591017][T13713] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3299.605326][T13713] Mem-Info: [ 3299.609757][T13713] active_anon:147178 inactive_anon:209 isolated_anon:0 [ 3299.609757][T13713] active_file:12621 inactive_file:59121 isolated_file:0 [ 3299.609757][T13713] unevictable:0 dirty:173 writeback:0 unstable:0 [ 3299.609757][T13713] slab_reclaimable:15614 slab_unreclaimable:115957 [ 3299.609757][T13713] mapped:55580 shmem:253 pagetables:1861 bounce:0 [ 3299.609757][T13713] free:1176809 free_pcp:332 free_cma:0 [ 3299.648616][T13713] Node 0 active_anon:588760kB inactive_anon:832kB active_file:50344kB inactive_file:236488kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222336kB dirty:696kB writeback:0kB shmem:1012kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 182272kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:33:16 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1200000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3299.756533][T13713] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3299.786911][T13713] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3299.817269][T13719] kvm [13702]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x68 20:33:16 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) fcntl$dupfd(r0, 0x406, r0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x1, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0/file0\x00', 0x80, 0x28) syz_read_part_table(0x80000000, 0x6, &(0x7f0000000540)=[{&(0x7f0000000100)="007c7f48f920379bb6cbd8d7fe2669ebf8589ff3753b1820b06e81903e4149282a9080643488b04c45184cb65b02", 0x2e, 0x400}, {&(0x7f0000000180)="36850866007316165752e859c87d2cacc07f6e0cd7e66518d7f5fe8ef04d61fea5eac7462114d07a1da00f0ad497a5cba2d282d971a95592d85d3aca02462372edb53dc4b4d10011a1a1046776e9aff23fba653d79a7a34e488557bd58600c2dc0ce3c51791de93d7ef70abb5c42eb1c80ca5ab9d772658e12e682b5320f1a64225790bc77eb8a9db96492f06371a5bcd7b670a7b898e7a75a2b3ea82d8ba297cbe24471", 0xa4, 0x100}, {&(0x7f0000000240)="b0f9b84cc02b20b8869fd1e4ac9904ec55094b09c9eea2ed6a672eb93a", 0x1d, 0xffffffffffff0000}, {&(0x7f0000000280)="43d3c2386c36d966e47726c8f04126c84e752d789fe91b7f92fe7b46d34f63ae913cd3f3b29e976ca74c304419dffc98e757718189de3f0c0f8eb54a6dc62bc304e9bbfc5d9d9c8a7360ffce5c01ae784839ca18c6378be9bd9e05c6be537340849c6ee7f33e4966075ba3dee76a7915ec4de5f09aba505b60128d479ae6d26bff26eeecce5310845056a9d563f107c5de67495716e7cb7a1c257c6b27abea83d1d8e6a9b8e873d36a02db73a85d9dfa0c717b9fe759da7cf0847d2585904dfbc9bf8c910090d7fb32", 0xc9, 0x2}, {&(0x7f0000000380)="8c8ae3feefdad86857fa75817beee8d8979fc45af8056b455d4138fac8e5e2e2ea841b9d74278f4f47ea924300adc21efdbdaf9c020b3a9ed20d7b578f2dfe1ea329a58874b1b2b0182d719009d50de993e7dd3a222b0dd3896d8fe78b64ae31dba8ebd1df0663ed84a3870439eec9a4fcb41957ff4bbb5e440db420a0cd29fc95cebfeafcd91ce58493989a8427d985776ea2b5101fd67e5ef9b625772cd4037fc6e5961283bead9b8f0cf02400b6", 0xaf, 0xc0}, {&(0x7f0000000440)="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", 0xfc, 0x3}]) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x9) 20:33:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x6c]}) [ 3299.878900][T13713] lowmem_reserve[]: 0 2535 2537 2537 [ 3299.897356][T13713] Node 0 DMA32 free:902148kB min:36080kB low:45100kB high:54120kB active_anon:592692kB inactive_anon:832kB active_file:50344kB inactive_file:236488kB unevictable:0kB writepending:696kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8352kB pagetables:7420kB bounce:0kB free_pcp:1372kB local_pcp:560kB free_cma:0kB 20:33:16 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2200000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3299.937375][T13713] lowmem_reserve[]: 0 0 2 2 [ 3299.942349][T13713] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3299.972890][T13713] lowmem_reserve[]: 0 0 0 0 [ 3299.977434][T13713] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3300.005995][T13713] lowmem_reserve[]: 0 0 0 0 [ 3300.010662][T13713] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3300.025279][ T7849] Node 0 DMA32: 689*4kB (UME) 367*8kB (UME) 935*16kB (UME) 1411*32kB (UE) 602*64kB (UME) 120*128kB (UME) 27*256kB (UM) 23*512kB (UME) 58*1024kB (UM) [ 3300.025363][T13713] 38*2048kB (UM) 155*4096kB (UM) = 910476kB [ 3300.046505][T13713] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3300.065043][T13713] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3300.082879][T13713] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3300.092469][T13713] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3300.122576][T13713] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3300.195859][T13713] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3300.210282][T13713] 71995 total pagecache pages [ 3300.214988][T13713] 0 pages in swap cache [ 3300.236898][T13746] kvm [13735]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x6c [ 3300.274692][T13713] Swap cache stats: add 0, delete 0, find 0/0 [ 3300.282382][T13713] Free swap = 0kB [ 3300.297932][T13713] Total swap = 0kB [ 3300.312113][T13713] 1965979 pages RAM [ 3300.326335][T13713] 0 pages HighMem/MovableOnly 20:33:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff0000000b]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:16 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000002001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:16 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f00000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x74]}) 20:33:17 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x2000000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3300.348153][T13713] 343989 pages reserved [ 3300.362786][T13743] XFS (loop2): Invalid superblock magic number [ 3300.372833][T13713] 0 pages cma reserved 20:33:17 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3300.524127][T13778] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3300.554288][T13778] CPU: 0 PID: 13778 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3300.563274][T13778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3300.573314][T13778] Call Trace: [ 3300.573343][T13778] dump_stack+0x1db/0x2d0 [ 3300.573368][T13778] ? dump_stack_print_info.cold+0x20/0x20 [ 3300.573385][T13778] ? idr_get_free+0xee0/0xee0 [ 3300.573406][T13778] ? kasan_kmalloc+0x9/0x10 [ 3300.573424][T13778] ? kmem_cache_alloc_trace+0x151/0x760 [ 3300.573441][T13778] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3300.573455][T13778] ? vb2_core_create_bufs+0x378/0x8e0 [ 3300.573476][T13778] warn_alloc.cold+0xc3/0x1c9 [ 3300.573497][T13778] ? zone_watermark_ok_safe+0x420/0x420 20:33:17 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="c022d6b4b05d3e5672a42c00"]) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='timers\x00') syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x5cd6a1c3, 0x400400) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0) r0 = syz_open_dev$sndpcmp(&(0x7f0000000280)='/dev/snd/pcmC#D#p\x00', 0x6be6, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0xa3) r1 = semget$private(0x0, 0x6, 0x708) semctl$IPC_INFO(r1, 0x2, 0x3, &(0x7f0000000180)=""/215) [ 3300.611838][T13778] ? print_usage_bug+0xd0/0xd0 [ 3300.622026][T13778] ? kasan_kmalloc+0x9/0x10 [ 3300.622047][T13778] ? __lock_is_held+0xb6/0x140 [ 3300.622065][T13778] ? add_lock_to_list.isra.0+0x450/0x450 [ 3300.622082][T13778] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3300.622098][T13778] ? check_preemption_disabled+0x48/0x290 [ 3300.622117][T13778] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3300.622138][T13778] __vmalloc_node_range+0x57a/0x910 [ 3300.622157][T13778] ? __lock_is_held+0xb6/0x140 [ 3300.631395][T13778] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3300.631416][T13778] ? vfree_atomic+0xe0/0xe0 [ 3300.631434][T13778] ? rcu_read_lock_sched_held+0x110/0x130 [ 3300.631450][T13778] ? kmem_cache_alloc_trace+0x354/0x760 [ 3300.631463][T13778] ? __lock_is_held+0xb6/0x140 [ 3300.631484][T13778] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3300.658878][T13778] vmalloc_user+0x6b/0x90 [ 3300.658897][T13778] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3300.658914][T13778] vb2_vmalloc_alloc+0x134/0x3a0 [ 3300.658933][T13778] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3300.658953][T13778] ? lock_acquire+0x1db/0x570 [ 3300.724345][T13778] ? __video_do_ioctl+0x3b1/0xd80 [ 3300.729378][T13778] ? __vb2_queue_alloc+0xf5/0xf40 [ 3300.734429][T13778] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3300.740238][T13778] __vb2_queue_alloc+0x5a6/0xf40 [ 3300.745211][T13778] ? vimc_cap_get_format+0x120/0x120 [ 3300.750497][T13778] vb2_core_create_bufs+0x378/0x8e0 [ 3300.755723][T13778] ? __vb2_queue_alloc+0xf40/0xf40 [ 3300.760844][T13778] ? mutex_trylock+0x2d0/0x2d0 [ 3300.765630][T13778] ? save_stack+0xa9/0xd0 [ 3300.769965][T13778] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3300.776209][T13778] vb2_create_bufs+0x4b5/0x8e0 [ 3300.780975][T13778] ? vb2_request_queue+0x120/0x120 [ 3300.786091][T13778] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3300.792333][T13778] ? v4l2_prio_max+0x266/0x310 [ 3300.797094][T13778] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3300.803336][T13778] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3300.808627][T13778] v4l_create_bufs+0x152/0x230 [ 3300.813393][T13778] __video_do_ioctl+0x805/0xd80 [ 3300.818469][T13778] ? v4l_s_fmt+0xb20/0xb20 [ 3300.822898][T13778] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3300.829136][T13778] ? _copy_from_user+0xdd/0x150 [ 3300.833993][T13778] video_usercopy+0x460/0x16b0 [ 3300.838757][T13778] ? v4l_s_fmt+0xb20/0xb20 [ 3300.843183][T13778] ? v4l_enumstd+0x70/0x70 [ 3300.847606][T13778] ? __fget+0x473/0x710 [ 3300.851764][T13778] ? find_held_lock+0x35/0x120 [ 3300.856523][T13778] ? __fget+0x473/0x710 [ 3300.860692][T13778] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3300.866933][T13778] ? lock_downgrade+0xbe0/0xbe0 [ 3300.871783][T13778] ? kasan_check_read+0x11/0x20 [ 3300.876636][T13778] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3300.882616][T13778] ? rcu_read_unlock_special+0x380/0x380 [ 3300.888264][T13778] ? __fget+0x49a/0x710 [ 3300.892422][T13778] ? video_usercopy+0x16b0/0x16b0 [ 3300.897458][T13778] video_ioctl2+0x2d/0x35 [ 3300.901801][T13778] v4l2_ioctl+0x156/0x1b0 [ 3300.906129][T13778] ? video_devdata+0xa0/0xa0 [ 3300.910718][T13778] do_vfs_ioctl+0x107b/0x17d0 [ 3300.915397][T13778] ? ioctl_preallocate+0x2f0/0x2f0 [ 3300.920508][T13778] ? __fget_light+0x2db/0x420 [ 3300.925186][T13778] ? fget_raw+0x20/0x20 [ 3300.929337][T13778] ? put_timespec64+0x115/0x1b0 [ 3300.934189][T13778] ? nsecs_to_jiffies+0x30/0x30 [ 3300.939041][T13778] ? do_syscall_64+0x8c/0x800 [ 3300.943719][T13778] ? do_syscall_64+0x8c/0x800 [ 3300.948393][T13778] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3300.953711][T13778] ? security_file_ioctl+0x93/0xc0 [ 3300.958823][T13778] ksys_ioctl+0xab/0xd0 [ 3300.962999][T13778] __x64_sys_ioctl+0x73/0xb0 [ 3300.967601][T13778] do_syscall_64+0x1a3/0x800 [ 3300.972193][T13778] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3300.977823][T13778] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3300.983553][T13778] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3300.989145][T13778] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3300.995035][T13778] RIP: 0033:0x457ec9 [ 3300.998929][T13778] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 20:33:17 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c03000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3301.018525][T13778] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3301.026943][T13778] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3301.034998][T13778] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3301.042978][T13778] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3301.050990][T13778] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3301.058956][T13778] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3301.113999][T13778] Mem-Info: [ 3301.117279][T13778] active_anon:147677 inactive_anon:198 isolated_anon:0 [ 3301.117279][T13778] active_file:12621 inactive_file:59139 isolated_file:0 [ 3301.117279][T13778] unevictable:0 dirty:192 writeback:0 unstable:0 [ 3301.117279][T13778] slab_reclaimable:15620 slab_unreclaimable:116230 [ 3301.117279][T13778] mapped:55548 shmem:245 pagetables:1884 bounce:0 [ 3301.117279][T13778] free:1175905 free_pcp:401 free_cma:0 [ 3301.158800][T13778] Node 0 active_anon:590708kB inactive_anon:792kB active_file:50344kB inactive_file:236556kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222292kB dirty:768kB writeback:0kB shmem:980kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 180224kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3301.189060][T13778] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3301.218176][T13780] kvm_set_msr_common: 1 callbacks suppressed [ 3301.218191][T13780] kvm [13776]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x74 [ 3301.236462][T13778] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3301.263835][T13778] lowmem_reserve[]: 0 2535 2537 2537 [ 3301.275782][T13793] kvm [13776]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x74 [ 3301.285410][T13778] Node 0 DMA32 free:900268kB min:36080kB low:45100kB high:54120kB active_anon:592864kB inactive_anon:792kB active_file:50344kB inactive_file:236556kB unevictable:0kB writepending:768kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8416kB pagetables:7684kB bounce:0kB free_pcp:1252kB local_pcp:848kB free_cma:0kB 20:33:17 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000102001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3301.355849][T13788] XFS (loop2): unknown mount option [À"Ö´°]>Vr¤]. [ 3301.391726][T13778] lowmem_reserve[]: 0 0 2 2 20:33:18 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5203000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3301.406401][T13778] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:33:18 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x7, 0x160, 0x0, 0x0, &(0x7f0000000000)={[{@nolargeio='nolargeio'}, {@allocsize={'allocsize', 0x3d, [0x65, 0x7d, 0x74, 0x6d]}}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x79]}) [ 3301.550091][T13778] lowmem_reserve[]: 0 0 0 0 [ 3301.588800][T13778] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3301.668372][T13778] lowmem_reserve[]: 0 0 0 0 [ 3301.676012][T13778] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3301.712702][T13778] Node 0 DMA32: 575*4kB (UME) 403*8kB (UME) 966*16kB (UME) 1409*32kB (UM) 600*64kB (UME) 112*128kB (UM) 30*256kB (UME) 23*512kB (UME) 58*1024kB (UM) 34*2048kB (U) 156*4096kB (UM) = 906260kB [ 3301.725536][T13819] kvm [13810]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x79 [ 3301.732131][T13778] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3301.779317][T13778] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3301.798229][T13778] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3301.809135][T13778] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3301.818480][T13778] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3301.828689][T13778] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3301.854082][T13819] kvm [13810]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x79 [ 3301.878389][T13778] 72020 total pagecache pages [ 3301.895694][T13778] 0 pages in swap cache [ 3301.909891][T13778] Swap cache stats: add 0, delete 0, find 0/0 [ 3301.915970][T13778] Free swap = 0kB [ 3301.923110][T13778] Total swap = 0kB [ 3301.935422][T13778] 1965979 pages RAM [ 3301.939427][T13778] 0 pages HighMem/MovableOnly [ 3301.944115][T13778] 343989 pages reserved [ 3301.948267][T13778] 0 pages cma reserved 20:33:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff0000000d]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:18 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6401000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:18 executing program 2: r0 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x9, 0x80002) setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f00000000c0)=0x1, 0x4) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 20:33:18 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000002301000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x7a]}) 20:33:18 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x2000480000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3302.083406][T13839] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3302.113742][T13839] CPU: 0 PID: 13839 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3302.122695][T13839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3302.132745][T13839] Call Trace: [ 3302.136044][T13839] dump_stack+0x1db/0x2d0 [ 3302.140382][T13839] ? dump_stack_print_info.cold+0x20/0x20 [ 3302.146097][T13839] ? idr_get_free+0xee0/0xee0 [ 3302.150795][T13839] ? kasan_kmalloc+0x9/0x10 [ 3302.155299][T13839] ? kmem_cache_alloc_trace+0x151/0x760 [ 3302.160856][T13839] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3302.165886][T13839] ? vb2_core_create_bufs+0x378/0x8e0 [ 3302.171271][T13839] warn_alloc.cold+0xc3/0x1c9 [ 3302.175947][T13839] ? zone_watermark_ok_safe+0x420/0x420 [ 3302.181489][T13839] ? print_usage_bug+0xd0/0xd0 [ 3302.186253][T13839] ? kasan_kmalloc+0x9/0x10 [ 3302.190763][T13839] ? __lock_is_held+0xb6/0x140 [ 3302.195530][T13839] ? add_lock_to_list.isra.0+0x450/0x450 [ 3302.201180][T13839] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3302.207414][T13839] ? check_preemption_disabled+0x48/0x290 [ 3302.213132][T13839] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3302.218249][T13839] __vmalloc_node_range+0x57a/0x910 [ 3302.223444][T13839] ? __lock_is_held+0xb6/0x140 [ 3302.228211][T13839] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3302.233323][T13839] ? vfree_atomic+0xe0/0xe0 [ 3302.237823][T13839] ? rcu_read_lock_sched_held+0x110/0x130 [ 3302.243543][T13839] ? kmem_cache_alloc_trace+0x354/0x760 [ 3302.249097][T13839] ? __lock_is_held+0xb6/0x140 [ 3302.253863][T13839] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3302.258973][T13839] vmalloc_user+0x6b/0x90 [ 3302.263306][T13839] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3302.268415][T13839] vb2_vmalloc_alloc+0x134/0x3a0 [ 3302.273351][T13839] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3302.279154][T13839] ? lock_acquire+0x1db/0x570 [ 3302.283829][T13839] ? __video_do_ioctl+0x3b1/0xd80 [ 3302.288853][T13839] ? __vb2_queue_alloc+0xf5/0xf40 [ 3302.293882][T13839] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3302.299686][T13839] __vb2_queue_alloc+0x5a6/0xf40 [ 3302.304641][T13839] ? vimc_cap_get_format+0x120/0x120 [ 3302.309924][T13839] vb2_core_create_bufs+0x378/0x8e0 [ 3302.315128][T13839] ? __vb2_queue_alloc+0xf40/0xf40 [ 3302.320237][T13839] ? mutex_trylock+0x2d0/0x2d0 [ 3302.325008][T13839] ? save_stack+0xa9/0xd0 [ 3302.329335][T13839] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3302.335591][T13839] vb2_create_bufs+0x4b5/0x8e0 [ 3302.340363][T13839] ? vb2_request_queue+0x120/0x120 [ 3302.345477][T13839] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3302.351715][T13839] ? v4l2_prio_max+0x266/0x310 [ 3302.356478][T13839] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3302.362722][T13839] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3302.368028][T13839] v4l_create_bufs+0x152/0x230 [ 3302.372796][T13839] __video_do_ioctl+0x805/0xd80 [ 3302.377655][T13839] ? v4l_s_fmt+0xb20/0xb20 [ 3302.382081][T13839] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3302.388326][T13839] ? _copy_from_user+0xdd/0x150 [ 3302.393179][T13839] video_usercopy+0x460/0x16b0 [ 3302.397942][T13839] ? v4l_s_fmt+0xb20/0xb20 [ 3302.402367][T13839] ? v4l_enumstd+0x70/0x70 [ 3302.406784][T13839] ? __fget+0x473/0x710 [ 3302.410941][T13839] ? find_held_lock+0x35/0x120 [ 3302.415704][T13839] ? __fget+0x473/0x710 [ 3302.419864][T13839] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3302.426111][T13839] ? lock_downgrade+0xbe0/0xbe0 [ 3302.430963][T13839] ? kasan_check_read+0x11/0x20 [ 3302.435817][T13839] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3302.441800][T13839] ? rcu_read_unlock_special+0x380/0x380 [ 3302.447437][T13839] ? __fget+0x49a/0x710 [ 3302.451604][T13839] ? video_usercopy+0x16b0/0x16b0 [ 3302.456630][T13839] video_ioctl2+0x2d/0x35 [ 3302.460959][T13839] v4l2_ioctl+0x156/0x1b0 [ 3302.465293][T13839] ? video_devdata+0xa0/0xa0 [ 3302.469880][T13839] do_vfs_ioctl+0x107b/0x17d0 [ 3302.474577][T13839] ? ioctl_preallocate+0x2f0/0x2f0 [ 3302.479707][T13839] ? __fget_light+0x2db/0x420 [ 3302.484387][T13839] ? fget_raw+0x20/0x20 [ 3302.488543][T13839] ? put_timespec64+0x115/0x1b0 [ 3302.493406][T13839] ? nsecs_to_jiffies+0x30/0x30 [ 3302.498260][T13839] ? do_syscall_64+0x8c/0x800 [ 3302.502933][T13839] ? do_syscall_64+0x8c/0x800 [ 3302.507614][T13839] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3302.512902][T13839] ? security_file_ioctl+0x93/0xc0 [ 3302.518017][T13839] ksys_ioctl+0xab/0xd0 [ 3302.522174][T13839] __x64_sys_ioctl+0x73/0xb0 [ 3302.526765][T13839] do_syscall_64+0x1a3/0x800 [ 3302.531362][T13839] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3302.537013][T13839] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3302.542739][T13839] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3302.548383][T13839] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3302.554284][T13839] RIP: 0033:0x457ec9 [ 3302.558190][T13839] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 20:33:19 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6403000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3302.577790][T13839] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3302.586220][T13839] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3302.594191][T13839] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3302.602156][T13839] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3302.610127][T13839] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3302.618093][T13839] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3302.651948][T13839] Mem-Info: [ 3302.655956][T13839] active_anon:147228 inactive_anon:198 isolated_anon:0 [ 3302.655956][T13839] active_file:12621 inactive_file:59155 isolated_file:0 [ 3302.655956][T13839] unevictable:0 dirty:195 writeback:0 unstable:0 [ 3302.655956][T13839] slab_reclaimable:15636 slab_unreclaimable:115442 [ 3302.655956][T13839] mapped:55577 shmem:245 pagetables:1922 bounce:0 [ 3302.655956][T13839] free:1177185 free_pcp:302 free_cma:0 [ 3302.696500][T13844] kvm [13833]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x7a 20:33:19 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000003f01000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3302.810462][T13838] XFS (loop2): Invalid superblock magic number [ 3302.821520][T13839] Node 0 active_anon:590696kB inactive_anon:792kB active_file:50344kB inactive_file:236620kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222108kB dirty:780kB writeback:0kB shmem:980kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 182272kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3302.859956][T13860] kvm [13833]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x7a 20:33:19 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6800000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3302.889253][T13839] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3302.937257][ T3866] Node 0 [ 3302.947027][T13839] DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:33:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x8b]}) 20:33:19 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8c00000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:19 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3303.047036][T13839] lowmem_reserve[]: 0 2535 2537 2537 [ 3303.099310][T13839] Node 0 DMA32 free:907672kB min:36080kB low:45100kB high:54120kB active_anon:584472kB inactive_anon:792kB active_file:50344kB inactive_file:236620kB unevictable:0kB writepending:780kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8256kB pagetables:7392kB bounce:0kB free_pcp:1792kB local_pcp:812kB free_cma:0kB [ 3303.137420][T13839] lowmem_reserve[]: 0 0 2 2 [ 3303.145363][T13839] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3303.175894][T13839] lowmem_reserve[]: 0 0 0 0 [ 3303.207002][T13839] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3303.276729][T13883] kvm [13873]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x8b [ 3303.284489][T13839] lowmem_reserve[]: 0 0 0 0 [ 3303.304705][T13839] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3303.328404][T13839] Node 0 DMA32: 653*4kB (UM) 400*8kB (U) 1048*16kB (UME) 1408*32kB (UE) 598*64kB (UME) 101*128kB (UME) 24*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 35*2048kB (UM) 155*4096kB (UM) = 902708kB [ 3303.347180][T13839] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3303.364124][T13839] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3303.378156][T13893] kvm [13873]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x8b [ 3303.382033][T13839] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3303.410729][T13839] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3303.420172][T13839] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3303.430020][T13839] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3303.439439][T13839] 72020 total pagecache pages [ 3303.444448][T13839] 0 pages in swap cache [ 3303.448861][T13839] Swap cache stats: add 0, delete 0, find 0/0 [ 3303.464787][T13884] XFS (loop2): Invalid superblock magic number [ 3303.469195][T13839] Free swap = 0kB [ 3303.474985][T13839] Total swap = 0kB [ 3303.478888][T13839] 1965979 pages RAM [ 3303.483245][T13839] 0 pages HighMem/MovableOnly [ 3303.491710][T13839] 343989 pages reserved [ 3303.498027][T13839] 0 pages cma reserved 20:33:20 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff00000017]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:20 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000004001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:20 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8cffffff00000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x9e]}) 20:33:20 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x3f00000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) 20:33:20 executing program 2: socketpair$unix(0x1, 0x40006, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = getuid() syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={[{@nolargeio='nolargeio'}, {@discard='discard'}], [{@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@euid_lt={'euid<', r1}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}, {@audit='audit'}, {@audit='audit'}, {@pcr={'pcr', 0x3d, 0x20}}, {@permit_directio='permit_directio'}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3303.639930][T13909] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3303.682660][T13909] CPU: 0 PID: 13909 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3303.692136][T13909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3303.702193][T13909] Call Trace: [ 3303.705501][T13909] dump_stack+0x1db/0x2d0 [ 3303.709845][T13909] ? dump_stack_print_info.cold+0x20/0x20 [ 3303.715585][T13909] ? idr_get_free+0xee0/0xee0 [ 3303.719259][T13915] kvm [13903]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x9e [ 3303.720271][T13909] ? kasan_kmalloc+0x9/0x10 [ 3303.720288][T13909] ? kmem_cache_alloc_trace+0x151/0x760 [ 3303.720305][T13909] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3303.720320][T13909] ? vb2_core_create_bufs+0x378/0x8e0 [ 3303.720341][T13909] warn_alloc.cold+0xc3/0x1c9 [ 3303.720362][T13909] ? zone_watermark_ok_safe+0x420/0x420 [ 3303.739310][T13909] ? print_usage_bug+0xd0/0xd0 [ 3303.739326][T13909] ? kasan_kmalloc+0x9/0x10 [ 3303.739348][T13909] ? __lock_is_held+0xb6/0x140 [ 3303.739365][T13909] ? add_lock_to_list.isra.0+0x450/0x450 [ 3303.739383][T13909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3303.739399][T13909] ? check_preemption_disabled+0x48/0x290 [ 3303.739416][T13909] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3303.739440][T13909] __vmalloc_node_range+0x57a/0x910 [ 3303.747574][T13920] kvm [13903]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x9e [ 3303.749815][T13909] ? __lock_is_held+0xb6/0x140 [ 3303.749833][T13909] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3303.749854][T13909] ? vfree_atomic+0xe0/0xe0 [ 3303.749871][T13909] ? rcu_read_lock_sched_held+0x110/0x130 [ 3303.749887][T13909] ? kmem_cache_alloc_trace+0x354/0x760 [ 3303.749900][T13909] ? __lock_is_held+0xb6/0x140 [ 3303.749915][T13909] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3303.749937][T13909] vmalloc_user+0x6b/0x90 [ 3303.760156][T13909] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3303.760174][T13909] vb2_vmalloc_alloc+0x134/0x3a0 [ 3303.760193][T13909] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3303.760210][T13909] ? lock_acquire+0x1db/0x570 [ 3303.760227][T13909] ? __video_do_ioctl+0x3b1/0xd80 [ 3303.760241][T13909] ? __vb2_queue_alloc+0xf5/0xf40 [ 3303.760260][T13909] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3303.760273][T13909] __vb2_queue_alloc+0x5a6/0xf40 [ 3303.760305][T13909] ? vimc_cap_get_format+0x120/0x120 [ 3303.774283][T13909] vb2_core_create_bufs+0x378/0x8e0 [ 3303.774313][T13909] ? __vb2_queue_alloc+0xf40/0xf40 [ 3303.786163][T13909] ? mutex_trylock+0x2d0/0x2d0 [ 3303.786188][T13909] ? save_stack+0xa9/0xd0 [ 3303.786206][T13909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3303.786226][T13909] vb2_create_bufs+0x4b5/0x8e0 [ 3303.786246][T13909] ? vb2_request_queue+0x120/0x120 [ 3303.786267][T13909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3303.938956][T13909] ? v4l2_prio_max+0x266/0x310 [ 3303.943723][T13909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3303.949967][T13909] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3303.955259][T13909] v4l_create_bufs+0x152/0x230 [ 3303.960027][T13909] __video_do_ioctl+0x805/0xd80 [ 3303.964900][T13909] ? v4l_s_fmt+0xb20/0xb20 [ 3303.969335][T13909] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3303.975585][T13909] ? _copy_from_user+0xdd/0x150 [ 3303.980460][T13909] video_usercopy+0x460/0x16b0 [ 3303.985259][T13909] ? v4l_s_fmt+0xb20/0xb20 [ 3303.989688][T13909] ? v4l_enumstd+0x70/0x70 [ 3303.994104][T13909] ? __fget+0x473/0x710 [ 3303.998258][T13909] ? find_held_lock+0x35/0x120 [ 3304.003019][T13909] ? __fget+0x473/0x710 [ 3304.007177][T13909] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3304.013420][T13909] ? lock_downgrade+0xbe0/0xbe0 [ 3304.018268][T13909] ? kasan_check_read+0x11/0x20 [ 3304.023115][T13909] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3304.029091][T13909] ? rcu_read_unlock_special+0x380/0x380 [ 3304.034736][T13909] ? __fget+0x49a/0x710 [ 3304.038895][T13909] ? video_usercopy+0x16b0/0x16b0 [ 3304.043918][T13909] video_ioctl2+0x2d/0x35 [ 3304.048249][T13909] v4l2_ioctl+0x156/0x1b0 [ 3304.052592][T13909] ? video_devdata+0xa0/0xa0 [ 3304.057182][T13909] do_vfs_ioctl+0x107b/0x17d0 [ 3304.061865][T13909] ? ioctl_preallocate+0x2f0/0x2f0 [ 3304.066977][T13909] ? __fget_light+0x2db/0x420 [ 3304.071658][T13909] ? fget_raw+0x20/0x20 [ 3304.075810][T13909] ? put_timespec64+0x115/0x1b0 [ 3304.080660][T13909] ? nsecs_to_jiffies+0x30/0x30 [ 3304.085511][T13909] ? do_syscall_64+0x8c/0x800 [ 3304.090186][T13909] ? do_syscall_64+0x8c/0x800 [ 3304.094860][T13909] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3304.100145][T13909] ? security_file_ioctl+0x93/0xc0 [ 3304.105257][T13909] ksys_ioctl+0xab/0xd0 [ 3304.109416][T13909] __x64_sys_ioctl+0x73/0xb0 [ 3304.114007][T13909] do_syscall_64+0x1a3/0x800 [ 3304.118604][T13909] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3304.124252][T13909] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3304.129984][T13909] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3304.135539][T13909] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3304.141438][T13909] RIP: 0033:0x457ec9 [ 3304.145331][T13909] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3304.164928][T13909] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3304.173334][T13909] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 20:33:20 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcc00000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3304.181317][T13909] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3304.189289][T13909] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3304.197254][T13909] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3304.205224][T13909] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3304.225360][T13909] Mem-Info: [ 3304.228687][T13909] active_anon:148230 inactive_anon:201 isolated_anon:0 [ 3304.228687][T13909] active_file:12621 inactive_file:59170 isolated_file:0 [ 3304.228687][T13909] unevictable:0 dirty:144 writeback:0 unstable:0 [ 3304.228687][T13909] slab_reclaimable:15636 slab_unreclaimable:115847 [ 3304.228687][T13909] mapped:55556 shmem:244 pagetables:1897 bounce:0 [ 3304.228687][T13909] free:1175704 free_pcp:363 free_cma:0 20:33:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0xc0]}) [ 3304.273358][T13909] Node 0 active_anon:592920kB inactive_anon:804kB active_file:50344kB inactive_file:236680kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222224kB dirty:576kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 174080kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3304.304868][T13909] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3304.368636][T13909] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3304.398167][T13912] XFS (loop2): unknown mount option [rootcontext=unconfined_u]. 20:33:21 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000004801000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3304.427743][T13909] lowmem_reserve[]: 0 2535 2537 2537 [ 3304.437764][T13909] Node 0 DMA32 free:899752kB min:36080kB low:45100kB high:54120kB active_anon:592948kB inactive_anon:804kB active_file:50344kB inactive_file:236680kB unevictable:0kB writepending:580kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8416kB pagetables:7588kB bounce:0kB free_pcp:1184kB local_pcp:252kB free_cma:0kB 20:33:21 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd003000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3304.497175][T13909] lowmem_reserve[]: 0 0 2 2 [ 3304.503171][T13909] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3304.534814][T13909] lowmem_reserve[]: 0 0 0 0 [ 3304.539544][T13909] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3304.568083][T13909] lowmem_reserve[]: 0 0 0 0 [ 3304.572750][T13909] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3304.588011][T13909] Node 0 DMA32: 548*4kB (UE) 319*8kB (UM) 1078*16kB (UE) 1416*32kB (UME) 599*64kB (UME) 101*128kB (UME) 22*256kB (UM) 23*512kB (UME) 58*1024kB (UM) 37*2048kB (UM) 154*4096kB (UM) = 901928kB [ 3304.618346][T13909] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB 20:33:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0xc1]}) [ 3304.638723][T13909] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3304.663369][T13909] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3304.685479][T13909] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3304.703617][T13909] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3304.729307][T13909] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 20:33:21 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xda03000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3304.754407][T13909] 72057 total pagecache pages [ 3304.789329][T13909] 0 pages in swap cache [ 3304.815655][T13909] Swap cache stats: add 0, delete 0, find 0/0 [ 3304.848435][T13909] Free swap = 0kB [ 3304.865644][T13909] Total swap = 0kB [ 3304.877578][T13909] 1965979 pages RAM [ 3304.888501][T13909] 0 pages HighMem/MovableOnly [ 3304.911151][T13909] 343989 pages reserved [ 3304.923601][T13909] 0 pages cma reserved 20:33:21 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff0000004a]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:21 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) rt_sigaction(0x32, &(0x7f0000000100)={&(0x7f0000000000)="430f0f0aa06564f045f6547409c4a2fd1c6c2400c4a1f8572e2e40dfd1f366656440393c67470f53d9660f3a40400e0bc4c2f94110c48250f34eae", {0x101}, 0xc8000005, &(0x7f00000000c0)="2644dcf0360f540b66400f5bc8362ef2a7c421c5ecaf88a7000064f226648b150000008036f3abd9e926660f2f2d46410000c42269979ab0000000"}, &(0x7f0000000240)={&(0x7f0000000180)="0f46cec4e17a2decc4028d3c11c4817454300f0fd7aec4c195565603643e440f74e3c4c129fc6c4de9c40315187afe3f44dbdc", {}, 0x0, &(0x7f00000001c0)="66400f654905c44159c6ba5c50000006c4c15012d5f0478399bc7c01770ec4e35d0d3e08c461fdef25f9000000c421d571e3ed67460fe8eac421adf8610ec461f92fde"}, 0x8, &(0x7f0000000280)) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:21 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000004c01000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:21 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe001000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0xc2]}) 20:33:21 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x4000000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3305.094113][T13973] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 20:33:21 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe803000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3305.184915][T13973] CPU: 1 PID: 13973 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3305.193885][T13973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3305.193892][T13973] Call Trace: [ 3305.193919][T13973] dump_stack+0x1db/0x2d0 [ 3305.193943][T13973] ? dump_stack_print_info.cold+0x20/0x20 [ 3305.193959][T13973] ? idr_get_free+0xee0/0xee0 [ 3305.193979][T13973] ? kasan_kmalloc+0x9/0x10 [ 3305.194004][T13973] ? kmem_cache_alloc_trace+0x151/0x760 [ 3305.232033][T13973] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3305.237061][T13973] ? vb2_core_create_bufs+0x378/0x8e0 [ 3305.242449][T13973] warn_alloc.cold+0xc3/0x1c9 [ 3305.247128][T13973] ? zone_watermark_ok_safe+0x420/0x420 [ 3305.252671][T13973] ? print_usage_bug+0xd0/0xd0 [ 3305.257433][T13973] ? kasan_kmalloc+0x9/0x10 [ 3305.261937][T13973] ? __lock_is_held+0xb6/0x140 [ 3305.266702][T13973] ? add_lock_to_list.isra.0+0x450/0x450 [ 3305.272337][T13973] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3305.278582][T13973] ? check_preemption_disabled+0x48/0x290 [ 3305.284306][T13973] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3305.289423][T13973] __vmalloc_node_range+0x57a/0x910 [ 3305.294619][T13973] ? __lock_is_held+0xb6/0x140 [ 3305.299383][T13973] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3305.304495][T13973] ? vfree_atomic+0xe0/0xe0 [ 3305.308996][T13973] ? rcu_read_lock_sched_held+0x110/0x130 [ 3305.314716][T13973] ? kmem_cache_alloc_trace+0x354/0x760 [ 3305.320256][T13973] ? __lock_is_held+0xb6/0x140 [ 3305.325020][T13973] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3305.330135][T13973] vmalloc_user+0x6b/0x90 [ 3305.334467][T13973] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3305.339586][T13973] vb2_vmalloc_alloc+0x134/0x3a0 [ 3305.344527][T13973] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3305.350341][T13973] ? lock_acquire+0x1db/0x570 [ 3305.355019][T13973] ? __video_do_ioctl+0x3b1/0xd80 [ 3305.360039][T13973] ? __vb2_queue_alloc+0xf5/0xf40 [ 3305.365075][T13973] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3305.370881][T13973] __vb2_queue_alloc+0x5a6/0xf40 [ 3305.375834][T13973] ? vimc_cap_get_format+0x120/0x120 [ 3305.381115][T13973] vb2_core_create_bufs+0x378/0x8e0 [ 3305.386314][T13973] ? __vb2_queue_alloc+0xf40/0xf40 [ 3305.391423][T13973] ? mutex_trylock+0x2d0/0x2d0 [ 3305.396194][T13973] ? save_stack+0xa9/0xd0 [ 3305.400524][T13973] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3305.406771][T13973] vb2_create_bufs+0x4b5/0x8e0 [ 3305.411537][T13973] ? vb2_request_queue+0x120/0x120 [ 3305.416719][T13973] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3305.422958][T13973] ? v4l2_prio_max+0x266/0x310 [ 3305.427721][T13973] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3305.433965][T13973] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3305.439258][T13973] v4l_create_bufs+0x152/0x230 [ 3305.444024][T13973] __video_do_ioctl+0x805/0xd80 [ 3305.448884][T13973] ? v4l_s_fmt+0xb20/0xb20 [ 3305.453306][T13973] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3305.459571][T13973] ? _copy_from_user+0xdd/0x150 [ 3305.464429][T13973] video_usercopy+0x460/0x16b0 [ 3305.469192][T13973] ? v4l_s_fmt+0xb20/0xb20 [ 3305.473621][T13973] ? v4l_enumstd+0x70/0x70 [ 3305.478037][T13973] ? __fget+0x473/0x710 [ 3305.482196][T13973] ? find_held_lock+0x35/0x120 [ 3305.486961][T13973] ? __fget+0x473/0x710 [ 3305.491121][T13973] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3305.497368][T13973] ? lock_downgrade+0xbe0/0xbe0 [ 3305.502214][T13973] ? kasan_check_read+0x11/0x20 [ 3305.507074][T13973] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3305.513056][T13973] ? rcu_read_unlock_special+0x380/0x380 [ 3305.518707][T13973] ? __fget+0x49a/0x710 [ 3305.522868][T13973] ? video_usercopy+0x16b0/0x16b0 [ 3305.527891][T13973] video_ioctl2+0x2d/0x35 [ 3305.532221][T13973] v4l2_ioctl+0x156/0x1b0 [ 3305.536548][T13973] ? video_devdata+0xa0/0xa0 [ 3305.541147][T13973] do_vfs_ioctl+0x107b/0x17d0 [ 3305.545829][T13973] ? ioctl_preallocate+0x2f0/0x2f0 [ 3305.550940][T13973] ? __fget_light+0x2db/0x420 [ 3305.555617][T13973] ? fget_raw+0x20/0x20 [ 3305.559770][T13973] ? put_timespec64+0x115/0x1b0 [ 3305.564621][T13973] ? nsecs_to_jiffies+0x30/0x30 [ 3305.569476][T13973] ? do_syscall_64+0x8c/0x800 [ 3305.574165][T13973] ? do_syscall_64+0x8c/0x800 [ 3305.578838][T13973] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3305.584126][T13973] ? security_file_ioctl+0x93/0xc0 [ 3305.589261][T13973] ksys_ioctl+0xab/0xd0 [ 3305.593421][T13973] __x64_sys_ioctl+0x73/0xb0 [ 3305.598012][T13973] do_syscall_64+0x1a3/0x800 [ 3305.602608][T13973] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3305.608240][T13973] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3305.613965][T13973] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3305.619523][T13973] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3305.625420][T13973] RIP: 0033:0x457ec9 [ 3305.629312][T13973] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3305.648913][T13973] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3305.657327][T13973] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3305.665296][T13973] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3305.673263][T13973] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3305.681229][T13973] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3305.689355][T13973] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3305.713618][T13973] Mem-Info: [ 3305.717094][T13973] active_anon:148240 inactive_anon:200 isolated_anon:0 [ 3305.717094][T13973] active_file:12621 inactive_file:59191 isolated_file:0 [ 3305.717094][T13973] unevictable:0 dirty:184 writeback:0 unstable:0 [ 3305.717094][T13973] slab_reclaimable:15652 slab_unreclaimable:116314 [ 3305.717094][T13973] mapped:55583 shmem:245 pagetables:1881 bounce:0 [ 3305.717094][T13973] free:1175109 free_pcp:441 free_cma:0 [ 3305.731973][T13969] XFS (loop2): Invalid superblock magic number [ 3305.762233][T13973] Node 0 active_anon:592860kB inactive_anon:800kB active_file:50344kB inactive_file:236764kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222332kB dirty:736kB writeback:0kB shmem:980kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 186368kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:33:22 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000006801000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0xce]}) 20:33:22 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xed01000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3305.820157][T13973] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:33:22 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef03000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:22 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x40, 0x0) getpeername$packet(r1, &(0x7f00000000c0), &(0x7f0000000100)=0x14) [ 3305.940281][T13973] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3306.012841][T13973] lowmem_reserve[]: 0 2535 2537 2537 [ 3306.018713][T13973] Node 0 DMA32 free:900432kB min:36080kB low:45100kB high:54120kB active_anon:590940kB inactive_anon:800kB active_file:50344kB inactive_file:236764kB unevictable:0kB writepending:736kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8256kB pagetables:7524kB bounce:0kB free_pcp:1968kB local_pcp:1148kB free_cma:0kB [ 3306.090064][T13973] lowmem_reserve[]: 0 0 2 2 [ 3306.146602][T13973] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3306.181938][T13973] lowmem_reserve[]: 0 0 0 0 [ 3306.186886][T13973] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3306.229463][T13973] lowmem_reserve[]: 0 0 0 0 [ 3306.234002][T13973] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3306.267646][T13973] Node 0 DMA32: 487*4kB (UME) 185*8kB (U) 1095*16kB (UME) 1416*32kB (UE) 598*64kB (UME) 113*128kB (UM) 22*256kB (UME) 18*512kB (UME) 58*1024kB (UM) 37*2048kB (UM) 155*4096kB (UM) = 903892kB [ 3306.320286][T13973] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3306.336216][T13973] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3306.354998][T13973] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3306.364822][T13973] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3306.366319][T14019] XFS (loop2): Invalid superblock magic number [ 3306.376969][T13973] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3306.390236][T13973] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3306.399749][T13973] 72056 total pagecache pages [ 3306.404442][T13973] 0 pages in swap cache [ 3306.408602][T13973] Swap cache stats: add 0, delete 0, find 0/0 [ 3306.414894][T13973] Free swap = 0kB 20:33:23 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff000e1000]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:23 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000006c01000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x10a]}) 20:33:23 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf402000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:23 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x4000600000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3306.418611][T13973] Total swap = 0kB [ 3306.422370][T13973] 1965979 pages RAM [ 3306.426184][T13973] 0 pages HighMem/MovableOnly [ 3306.430921][T13973] 343989 pages reserved [ 3306.435080][T13973] 0 pages cma reserved 20:33:23 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$FIDEDUPERANGE(r1, 0xc0189436, &(0x7f00000000c0)={0x2, 0x2, 0x3, 0x0, 0x0, [{r1, 0x0, 0xfff}, {r0, 0x0, 0x5}, {r0, 0x0, 0x7}]}) [ 3306.538297][T14052] kvm_set_msr_common: 8 callbacks suppressed [ 3306.538313][T14052] kvm [14041]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x10a 20:33:23 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf6ffffff00000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:23 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000007401000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3306.640844][T14057] kvm [14041]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x10a 20:33:23 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x4800000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3306.751395][T14060] XFS (loop2): Invalid superblock magic number 20:33:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x11e]}) 20:33:23 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf803000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:23 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x50000, 0x4200) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000180)={0x0, @in6={{0xa, 0x4e21, 0x9f1, @mcast1, 0xa9d8}}, 0xffffffffffffffff, 0x0, 0x80000000, 0x7, 0x6}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000100)={r2, 0x7ff}, &(0x7f0000000240)=0x8) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3306.873226][T14081] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3306.898357][T14081] CPU: 1 PID: 14081 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3306.907320][T14081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3306.907327][T14081] Call Trace: [ 3306.907381][T14081] dump_stack+0x1db/0x2d0 [ 3306.907419][T14081] ? dump_stack_print_info.cold+0x20/0x20 [ 3306.930773][T14081] ? idr_get_free+0xee0/0xee0 [ 3306.930792][T14081] ? kasan_kmalloc+0x9/0x10 [ 3306.930808][T14081] ? kmem_cache_alloc_trace+0x151/0x760 [ 3306.930825][T14081] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3306.930839][T14081] ? vb2_core_create_bufs+0x378/0x8e0 [ 3306.930861][T14081] warn_alloc.cold+0xc3/0x1c9 [ 3306.940012][T14081] ? zone_watermark_ok_safe+0x420/0x420 [ 3306.940029][T14081] ? print_usage_bug+0xd0/0xd0 [ 3306.940044][T14081] ? kasan_kmalloc+0x9/0x10 [ 3306.940066][T14081] ? __lock_is_held+0xb6/0x140 [ 3306.940091][T14081] ? add_lock_to_list.isra.0+0x450/0x450 [ 3306.940109][T14081] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3306.940131][T14081] ? check_preemption_disabled+0x48/0x290 [ 3306.950668][T14081] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3306.950691][T14081] __vmalloc_node_range+0x57a/0x910 [ 3306.950707][T14081] ? __lock_is_held+0xb6/0x140 [ 3306.950724][T14081] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3306.950743][T14081] ? vfree_atomic+0xe0/0xe0 [ 3306.950765][T14081] ? rcu_read_lock_sched_held+0x110/0x130 [ 3306.960784][T14081] ? kmem_cache_alloc_trace+0x354/0x760 [ 3306.960798][T14081] ? __lock_is_held+0xb6/0x140 [ 3306.960814][T14081] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3306.960832][T14081] vmalloc_user+0x6b/0x90 [ 3306.960849][T14081] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3306.960865][T14081] vb2_vmalloc_alloc+0x134/0x3a0 [ 3306.960889][T14081] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3306.971161][T14081] ? lock_acquire+0x1db/0x570 [ 3306.971181][T14081] ? __vb2_queue_alloc+0xf5/0xf40 [ 3306.971201][T14081] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3306.971224][T14081] __vb2_queue_alloc+0x5a6/0xf40 [ 3306.971256][T14081] ? vimc_cap_get_format+0x120/0x120 [ 3306.992339][T14081] vb2_core_create_bufs+0x378/0x8e0 [ 3306.992361][T14081] ? __vb2_queue_alloc+0xf40/0xf40 [ 3306.992380][T14081] ? mutex_trylock+0x2d0/0x2d0 [ 3306.992402][T14081] ? save_stack+0xa9/0xd0 [ 3306.992424][T14081] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3307.115165][T14081] vb2_create_bufs+0x4b5/0x8e0 [ 3307.119933][T14081] ? vb2_request_queue+0x120/0x120 [ 3307.125046][T14081] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3307.131293][T14081] ? v4l2_prio_max+0x266/0x310 [ 3307.136058][T14081] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3307.142305][T14081] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3307.147607][T14081] v4l_create_bufs+0x152/0x230 [ 3307.152374][T14081] __video_do_ioctl+0x805/0xd80 [ 3307.157236][T14081] ? v4l_s_fmt+0xb20/0xb20 [ 3307.161659][T14081] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3307.167991][T14081] ? _copy_from_user+0xdd/0x150 [ 3307.172846][T14081] video_usercopy+0x460/0x16b0 [ 3307.177608][T14081] ? v4l_s_fmt+0xb20/0xb20 [ 3307.182033][T14081] ? v4l_enumstd+0x70/0x70 [ 3307.186452][T14081] ? __fget+0x473/0x710 [ 3307.190606][T14081] ? find_held_lock+0x35/0x120 [ 3307.195367][T14081] ? __fget+0x473/0x710 [ 3307.199522][T14081] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3307.205769][T14081] ? lock_downgrade+0xbe0/0xbe0 [ 3307.210617][T14081] ? kasan_check_read+0x11/0x20 [ 3307.215466][T14081] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3307.221444][T14081] ? rcu_read_unlock_special+0x380/0x380 [ 3307.227091][T14081] ? __fget+0x49a/0x710 [ 3307.231254][T14081] ? video_usercopy+0x16b0/0x16b0 [ 3307.236275][T14081] video_ioctl2+0x2d/0x35 [ 3307.240609][T14081] v4l2_ioctl+0x156/0x1b0 [ 3307.244937][T14081] ? video_devdata+0xa0/0xa0 [ 3307.249524][T14081] do_vfs_ioctl+0x107b/0x17d0 [ 3307.254213][T14081] ? ioctl_preallocate+0x2f0/0x2f0 [ 3307.259324][T14081] ? __fget_light+0x2db/0x420 [ 3307.263999][T14081] ? fget_raw+0x20/0x20 [ 3307.268150][T14081] ? put_timespec64+0x115/0x1b0 [ 3307.272994][T14081] ? nsecs_to_jiffies+0x30/0x30 [ 3307.277848][T14081] ? do_syscall_64+0x8c/0x800 [ 3307.282526][T14081] ? do_syscall_64+0x8c/0x800 [ 3307.287208][T14081] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3307.292497][T14081] ? security_file_ioctl+0x93/0xc0 [ 3307.297610][T14081] ksys_ioctl+0xab/0xd0 [ 3307.301772][T14081] __x64_sys_ioctl+0x73/0xb0 [ 3307.306360][T14081] do_syscall_64+0x1a3/0x800 [ 3307.310951][T14081] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3307.316587][T14081] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3307.322315][T14081] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3307.327867][T14081] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3307.333753][T14081] RIP: 0033:0x457ec9 [ 3307.337644][T14081] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3307.357240][T14081] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3307.365647][T14081] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3307.373613][T14081] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3307.381591][T14081] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3307.389565][T14081] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3307.397532][T14081] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3307.446140][T14081] Mem-Info: [ 3307.449632][T14081] active_anon:146612 inactive_anon:200 isolated_anon:0 [ 3307.449632][T14081] active_file:12621 inactive_file:59205 isolated_file:0 [ 3307.449632][T14081] unevictable:0 dirty:213 writeback:0 unstable:0 [ 3307.449632][T14081] slab_reclaimable:15651 slab_unreclaimable:116087 [ 3307.449632][T14081] mapped:55557 shmem:245 pagetables:1894 bounce:0 [ 3307.449632][T14081] free:1176877 free_pcp:620 free_cma:0 [ 3307.542835][T14081] Node 0 active_anon:586440kB inactive_anon:800kB active_file:50344kB inactive_file:236820kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222192kB dirty:856kB writeback:0kB shmem:980kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 184320kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3307.578380][T14081] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3307.612130][T14081] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3307.644614][T14081] lowmem_reserve[]: 0 2535 2537 2537 [ 3307.650429][T14081] Node 0 DMA32 free:904856kB min:36080kB low:45100kB high:54120kB active_anon:586420kB inactive_anon:800kB active_file:50344kB inactive_file:236860kB unevictable:0kB writepending:896kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8416kB pagetables:7292kB bounce:0kB free_pcp:2576kB local_pcp:1132kB free_cma:0kB [ 3307.688825][T14092] XFS (loop2): Invalid superblock magic number [ 3307.708838][T14081] lowmem_reserve[]: 0 0 2 2 [ 3307.714733][T14081] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3307.792717][T14081] lowmem_reserve[]: 0 0 0 0 [ 3307.797287][T14081] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3307.846270][T14081] lowmem_reserve[]: 0 0 0 0 [ 3307.851597][T14081] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3307.873434][T14081] Node 0 DMA32: 973*4kB (UME) 586*8kB (UME) 968*16kB (UME) 1355*32kB (UE) 598*64kB (UME) 129*128kB (UM) 22*256kB (UME) 18*512kB (UME) 58*1024kB (UM) 36*2048kB (UM) 156*4096kB (UM) = 909156kB [ 3307.893513][T14081] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3307.909598][T14081] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3307.928163][T14081] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3307.938637][T14081] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3307.948398][T14081] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3307.958449][T14081] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3307.968254][T14081] 72079 total pagecache pages [ 3307.973264][T14081] 0 pages in swap cache [ 3307.977426][T14081] Swap cache stats: add 0, delete 0, find 0/0 [ 3307.989795][T14081] Free swap = 0kB [ 3307.993530][T14081] Total swap = 0kB 20:33:24 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000007a01000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:24 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfa00000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:24 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x2, 0x2) ioctl$VHOST_GET_VRING_ENDIAN(r1, 0x4008af14, &(0x7f0000000100)={0x2, 0x4}) ioctl$TIOCGLCKTRMIOS(r1, 0x5456, &(0x7f0000000180)={0x8001, 0xfffffffffffffffd, 0x7, 0x5, 0x7, 0x0, 0x0, 0x100000000, 0x8, 0x2, 0xffff, 0x1}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6c61726765696f2c646973636172642c00f2c8511cd86bc92f6acf03a190b8cf"]) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x140]}) 20:33:24 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff00100e00]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") [ 3307.997258][T14081] 1965979 pages RAM [ 3308.001339][T14081] 0 pages HighMem/MovableOnly [ 3308.006019][T14081] 343989 pages reserved [ 3308.010252][T14081] 0 pages cma reserved 20:33:24 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x4c00000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) 20:33:24 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfc03000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3308.143729][T14136] kvm [14116]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x140 20:33:24 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a0000010000000fff01000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3308.220438][T14144] kvm [14116]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x140 [ 3308.255158][T14125] XFS (loop2): Invalid superblock magic number 20:33:24 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe03000000000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:24 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x6000000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) 20:33:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x174]}) 20:33:25 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) r0 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x0, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x8000000000000) ioctl$KVM_SMI(r0, 0xaeb7) 20:33:25 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff7f00000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3308.511567][T14161] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 20:33:25 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000000010000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3308.615755][T14161] CPU: 1 PID: 14161 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3308.624752][T14161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3308.634819][T14161] Call Trace: [ 3308.638131][T14161] dump_stack+0x1db/0x2d0 [ 3308.642473][T14161] ? dump_stack_print_info.cold+0x20/0x20 [ 3308.648195][T14161] ? idr_get_free+0xee0/0xee0 [ 3308.652880][T14161] ? kasan_kmalloc+0x9/0x10 [ 3308.657386][T14161] ? kmem_cache_alloc_trace+0x151/0x760 [ 3308.662941][T14161] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3308.662958][T14161] ? vb2_core_create_bufs+0x378/0x8e0 [ 3308.662980][T14161] warn_alloc.cold+0xc3/0x1c9 [ 3308.662997][T14161] ? zone_watermark_ok_safe+0x420/0x420 [ 3308.663012][T14161] ? print_usage_bug+0xd0/0xd0 [ 3308.663026][T14161] ? kasan_kmalloc+0x9/0x10 [ 3308.663046][T14161] ? __lock_is_held+0xb6/0x140 [ 3308.673439][T14161] ? add_lock_to_list.isra.0+0x450/0x450 [ 3308.673458][T14161] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3308.673474][T14161] ? check_preemption_disabled+0x48/0x290 [ 3308.673491][T14161] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3308.673513][T14161] __vmalloc_node_range+0x57a/0x910 [ 3308.673528][T14161] ? __lock_is_held+0xb6/0x140 [ 3308.673548][T14161] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3308.693094][T14161] ? vfree_atomic+0xe0/0xe0 [ 3308.703460][T14161] ? rcu_read_lock_sched_held+0x110/0x130 [ 3308.703477][T14161] ? kmem_cache_alloc_trace+0x354/0x760 [ 3308.703489][T14161] ? __lock_is_held+0xb6/0x140 [ 3308.703511][T14161] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3308.761098][T14161] vmalloc_user+0x6b/0x90 [ 3308.765449][T14161] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3308.770568][T14161] vb2_vmalloc_alloc+0x134/0x3a0 [ 3308.775512][T14161] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3308.781313][T14161] ? lock_acquire+0x1db/0x570 [ 3308.785992][T14161] ? __vb2_queue_alloc+0xf5/0xf40 [ 3308.791017][T14161] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3308.796819][T14161] __vb2_queue_alloc+0x5a6/0xf40 [ 3308.801773][T14161] ? vimc_cap_get_format+0x120/0x120 [ 3308.807054][T14161] vb2_core_create_bufs+0x378/0x8e0 [ 3308.812261][T14161] ? __vb2_queue_alloc+0xf40/0xf40 [ 3308.817373][T14161] ? mutex_trylock+0x2d0/0x2d0 [ 3308.822661][T14161] ? save_stack+0xa9/0xd0 [ 3308.826991][T14161] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3308.833233][T14161] vb2_create_bufs+0x4b5/0x8e0 [ 3308.837998][T14161] ? vb2_request_queue+0x120/0x120 [ 3308.843113][T14161] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3308.849356][T14161] ? v4l2_prio_max+0x266/0x310 [ 3308.854119][T14161] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3308.860379][T14161] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3308.865670][T14161] v4l_create_bufs+0x152/0x230 [ 3308.870437][T14161] __video_do_ioctl+0x805/0xd80 [ 3308.875294][T14161] ? v4l_s_fmt+0xb20/0xb20 [ 3308.879716][T14161] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3308.885955][T14161] ? _copy_from_user+0xdd/0x150 [ 3308.890808][T14161] video_usercopy+0x460/0x16b0 [ 3308.895583][T14161] ? v4l_s_fmt+0xb20/0xb20 [ 3308.900011][T14161] ? v4l_enumstd+0x70/0x70 [ 3308.904431][T14161] ? __fget+0x473/0x710 [ 3308.908591][T14161] ? find_held_lock+0x35/0x120 [ 3308.913360][T14161] ? __fget+0x473/0x710 [ 3308.917517][T14161] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3308.923759][T14161] ? lock_downgrade+0xbe0/0xbe0 [ 3308.928609][T14161] ? kasan_check_read+0x11/0x20 [ 3308.933474][T14161] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3308.939458][T14161] ? rcu_read_unlock_special+0x380/0x380 [ 3308.945100][T14161] ? __fget+0x49a/0x710 [ 3308.949301][T14161] ? video_usercopy+0x16b0/0x16b0 [ 3308.954321][T14161] video_ioctl2+0x2d/0x35 [ 3308.958655][T14161] v4l2_ioctl+0x156/0x1b0 [ 3308.962988][T14161] ? video_devdata+0xa0/0xa0 [ 3308.967583][T14161] do_vfs_ioctl+0x107b/0x17d0 [ 3308.972271][T14161] ? ioctl_preallocate+0x2f0/0x2f0 [ 3308.977396][T14161] ? __fget_light+0x2db/0x420 [ 3308.982106][T14161] ? fget_raw+0x20/0x20 [ 3308.986273][T14161] ? put_timespec64+0x115/0x1b0 [ 3308.991155][T14161] ? nsecs_to_jiffies+0x30/0x30 [ 3308.996006][T14161] ? do_syscall_64+0x8c/0x800 [ 3309.000698][T14161] ? do_syscall_64+0x8c/0x800 [ 3309.005376][T14161] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3309.010682][T14161] ? security_file_ioctl+0x93/0xc0 [ 3309.015798][T14161] ksys_ioctl+0xab/0xd0 [ 3309.019959][T14161] __x64_sys_ioctl+0x73/0xb0 [ 3309.024572][T14161] do_syscall_64+0x1a3/0x800 [ 3309.029166][T14161] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3309.034799][T14161] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3309.040522][T14161] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3309.046087][T14161] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3309.051976][T14161] RIP: 0033:0x457ec9 [ 3309.055869][T14161] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3309.075475][T14161] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3309.083888][T14161] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3309.091855][T14161] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3309.099821][T14161] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3309.107786][T14161] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 20:33:25 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff00000000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3309.115751][T14161] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3309.131386][T14181] kvm [14162]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x174 [ 3309.175882][T14170] XFS (loop2): Invalid superblock magic number [ 3309.186740][T14161] Mem-Info: [ 3309.202738][T14161] active_anon:148223 inactive_anon:199 isolated_anon:0 [ 3309.202738][T14161] active_file:12621 inactive_file:59224 isolated_file:0 [ 3309.202738][T14161] unevictable:0 dirty:237 writeback:0 unstable:0 [ 3309.202738][T14161] slab_reclaimable:15659 slab_unreclaimable:115393 [ 3309.202738][T14161] mapped:55597 shmem:244 pagetables:1889 bounce:0 [ 3309.202738][T14161] free:1175979 free_pcp:479 free_cma:0 [ 3309.246101][T14181] kvm [14162]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x174 [ 3309.255404][T14161] Node 0 active_anon:592892kB inactive_anon:796kB active_file:50344kB inactive_file:236896kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222388kB dirty:948kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 180224kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3309.255440][T14161] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3309.404041][T14161] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3309.431651][T14161] lowmem_reserve[]: 0 2535 2537 2537 [ 3309.437039][T14161] Node 0 DMA32 free:907112kB min:36080kB low:45100kB high:54120kB active_anon:586564kB inactive_anon:796kB active_file:50344kB inactive_file:236896kB unevictable:0kB writepending:948kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8096kB pagetables:7260kB bounce:0kB free_pcp:2356kB local_pcp:1272kB free_cma:0kB [ 3309.467969][T14161] lowmem_reserve[]: 0 0 2 2 [ 3309.472615][T14161] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3309.504895][T14161] lowmem_reserve[]: 0 0 0 0 [ 3309.509674][T14161] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3309.538185][T14161] lowmem_reserve[]: 0 0 0 0 [ 3309.543703][T14161] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3309.579212][T14161] Node 0 DMA32: 754*4kB (UME) 580*8kB (UM) 967*16kB (UME) 1291*32kB (U) 600*64kB (UM) 161*128kB (UME) 25*256kB (UM) 18*512kB (UME) 58*1024kB (UM) 36*2048kB (UM) 156*4096kB (UM) = 911160kB [ 3309.598238][T14161] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3309.613772][T14161] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3309.631546][T14161] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3309.641173][T14161] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3309.650512][T14161] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3309.660148][T14161] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3309.669481][T14161] 72099 total pagecache pages [ 3309.674166][T14161] 0 pages in swap cache 20:33:26 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff02000000]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:26 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:26 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="fbf3087349c785da6e6f6c61726765696f2c646973636172642c00"]) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x175]}) 20:33:26 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000000030000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:26 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x6800000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3309.678316][T14161] Swap cache stats: add 0, delete 0, find 0/0 [ 3309.684429][T14161] Free swap = 0kB [ 3309.688321][T14161] Total swap = 0kB [ 3309.692100][T14161] 1965979 pages RAM [ 3309.695911][T14161] 0 pages HighMem/MovableOnly [ 3309.700662][T14161] 343989 pages reserved [ 3309.704814][T14161] 0 pages cma reserved [ 3309.793414][T14207] XFS (loop2): unknown mount option [ûósIÇ…Únolargeio]. [ 3309.821243][T14217] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 20:33:26 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3309.852087][T14217] CPU: 0 PID: 14217 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3309.861070][T14217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3309.861077][T14217] Call Trace: [ 3309.861105][T14217] dump_stack+0x1db/0x2d0 [ 3309.861130][T14217] ? dump_stack_print_info.cold+0x20/0x20 [ 3309.861155][T14217] ? idr_get_free+0xee0/0xee0 [ 3309.889290][T14217] ? kasan_kmalloc+0x9/0x10 [ 3309.893815][T14217] ? kmem_cache_alloc_trace+0x151/0x760 [ 3309.893833][T14217] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3309.893848][T14217] ? vb2_core_create_bufs+0x378/0x8e0 [ 3309.893877][T14217] warn_alloc.cold+0xc3/0x1c9 [ 3309.900301][T14208] kvm [14204]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x175 [ 3309.904423][T14217] ? zone_watermark_ok_safe+0x420/0x420 [ 3309.904440][T14217] ? print_usage_bug+0xd0/0xd0 [ 3309.904456][T14217] ? kasan_kmalloc+0x9/0x10 [ 3309.904476][T14217] ? __lock_is_held+0xb6/0x140 [ 3309.904496][T14217] ? add_lock_to_list.isra.0+0x450/0x450 [ 3309.929101][T14217] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3309.929118][T14217] ? check_preemption_disabled+0x48/0x290 [ 3309.929137][T14217] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3309.929159][T14217] __vmalloc_node_range+0x57a/0x910 [ 3309.929174][T14217] ? __lock_is_held+0xb6/0x140 [ 3309.929191][T14217] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3309.929213][T14217] ? vfree_atomic+0xe0/0xe0 [ 3309.938464][T14217] ? rcu_read_lock_sched_held+0x110/0x130 [ 3309.938483][T14217] ? kmem_cache_alloc_trace+0x354/0x760 [ 3309.938496][T14217] ? __lock_is_held+0xb6/0x140 [ 3309.938512][T14217] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3309.938532][T14217] vmalloc_user+0x6b/0x90 [ 3309.944910][T14222] kvm [14204]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x175 [ 3309.948907][T14217] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3309.948925][T14217] vb2_vmalloc_alloc+0x134/0x3a0 [ 3309.948945][T14217] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3309.948960][T14217] ? lock_acquire+0x1db/0x570 [ 3309.948987][T14217] ? __video_do_ioctl+0x3b1/0xd80 [ 3309.960915][T14217] ? __vb2_queue_alloc+0xf5/0xf40 [ 3309.960936][T14217] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3309.960950][T14217] __vb2_queue_alloc+0x5a6/0xf40 [ 3309.960983][T14217] ? vimc_cap_get_format+0x120/0x120 [ 3309.961003][T14217] vb2_core_create_bufs+0x378/0x8e0 [ 3309.971294][T14217] ? __vb2_queue_alloc+0xf40/0xf40 [ 3309.971312][T14217] ? mutex_trylock+0x2d0/0x2d0 [ 3309.971335][T14217] ? save_stack+0xa9/0xd0 [ 3309.971353][T14217] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3309.971372][T14217] vb2_create_bufs+0x4b5/0x8e0 [ 3309.971392][T14217] ? vb2_request_queue+0x120/0x120 [ 3309.971413][T14217] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3310.108212][T14217] ? v4l2_prio_max+0x266/0x310 [ 3310.113001][T14217] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3310.119249][T14217] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3310.124541][T14217] v4l_create_bufs+0x152/0x230 [ 3310.129321][T14217] __video_do_ioctl+0x805/0xd80 [ 3310.134180][T14217] ? v4l_s_fmt+0xb20/0xb20 [ 3310.138609][T14217] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3310.144853][T14217] ? _copy_from_user+0xdd/0x150 [ 3310.149713][T14217] video_usercopy+0x460/0x16b0 [ 3310.154482][T14217] ? v4l_s_fmt+0xb20/0xb20 [ 3310.158911][T14217] ? v4l_enumstd+0x70/0x70 [ 3310.163331][T14217] ? __fget+0x473/0x710 [ 3310.167483][T14217] ? find_held_lock+0x35/0x120 [ 3310.172242][T14217] ? __fget+0x473/0x710 [ 3310.176447][T14217] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3310.182704][T14217] ? lock_downgrade+0xbe0/0xbe0 [ 3310.187564][T14217] ? kasan_check_read+0x11/0x20 [ 3310.192424][T14217] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3310.198404][T14217] ? rcu_read_unlock_special+0x380/0x380 [ 3310.204049][T14217] ? __fget+0x49a/0x710 [ 3310.208210][T14217] ? video_usercopy+0x16b0/0x16b0 [ 3310.213234][T14217] video_ioctl2+0x2d/0x35 [ 3310.217590][T14217] v4l2_ioctl+0x156/0x1b0 [ 3310.221927][T14217] ? video_devdata+0xa0/0xa0 [ 3310.226535][T14217] do_vfs_ioctl+0x107b/0x17d0 [ 3310.231233][T14217] ? ioctl_preallocate+0x2f0/0x2f0 [ 3310.236358][T14217] ? __fget_light+0x2db/0x420 [ 3310.241055][T14217] ? fget_raw+0x20/0x20 [ 3310.245210][T14217] ? put_timespec64+0x115/0x1b0 [ 3310.250065][T14217] ? nsecs_to_jiffies+0x30/0x30 [ 3310.254922][T14217] ? do_syscall_64+0x8c/0x800 [ 3310.259601][T14217] ? do_syscall_64+0x8c/0x800 [ 3310.264278][T14217] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3310.269606][T14217] ? security_file_ioctl+0x93/0xc0 [ 3310.274719][T14217] ksys_ioctl+0xab/0xd0 [ 3310.278874][T14217] __x64_sys_ioctl+0x73/0xb0 [ 3310.283465][T14217] do_syscall_64+0x1a3/0x800 [ 3310.288054][T14217] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3310.293692][T14217] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3310.299437][T14217] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3310.304994][T14217] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3310.310900][T14217] RIP: 0033:0x457ec9 [ 3310.314795][T14217] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3310.334393][T14217] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3310.342800][T14217] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3310.350766][T14217] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3310.358751][T14217] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3310.366726][T14217] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3310.374694][T14217] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3310.401925][T14217] Mem-Info: [ 3310.406347][T14217] active_anon:148229 inactive_anon:202 isolated_anon:0 [ 3310.406347][T14217] active_file:12621 inactive_file:59235 isolated_file:0 [ 3310.406347][T14217] unevictable:0 dirty:251 writeback:0 unstable:0 [ 3310.406347][T14217] slab_reclaimable:15660 slab_unreclaimable:115621 [ 3310.406347][T14217] mapped:55562 shmem:244 pagetables:1884 bounce:0 [ 3310.406347][T14217] free:1175889 free_pcp:392 free_cma:0 20:33:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x176]}) [ 3310.446853][T14217] Node 0 active_anon:588748kB inactive_anon:808kB active_file:50344kB inactive_file:236940kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222248kB dirty:1004kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 178176kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:33:27 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:27 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3310.557803][T14217] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3310.585449][T14217] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3310.636066][T14217] lowmem_reserve[]: 0 2535 2537 2537 [ 3310.652549][T14217] Node 0 DMA32 free:910248kB min:36080kB low:45100kB high:54120kB active_anon:584416kB inactive_anon:804kB active_file:50340kB inactive_file:236988kB unevictable:0kB writepending:1100kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8288kB pagetables:7696kB bounce:0kB free_pcp:1268kB local_pcp:476kB free_cma:0kB 20:33:27 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000000040000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:27 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) setxattr$trusted_overlay_origin(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.origin\x00', &(0x7f0000000100)='y\x00', 0x2, 0x2) [ 3310.729251][T14217] lowmem_reserve[]: 0 0 2 2 [ 3310.737005][T14217] Node 0 Normal free:1540kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3310.794033][T14217] lowmem_reserve[]: 0 0 0 0 [ 3310.811445][T14217] Node 1 Normal free:3784824kB min:53780kB low:67224kB high:80668kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3310.843390][T14250] kvm [14237]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x176 [ 3310.856657][T14217] lowmem_reserve[]: 0 0 0 0 [ 3310.862147][T14217] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 3310.876896][T14217] Node 0 DMA32: 774*4kB (UE) 301*8kB (UE) 959*16kB (U) 1292*32kB (UE) 600*64kB (UME) 165*128kB (UME) 27*256kB (UME) 17*512kB (UM) 58*1024kB (UM) 34*2048kB (U) 155*4096kB (UM) = 901232kB [ 3310.896199][T14217] Node 0 Normal: 15*4kB (UME) 17*8kB (UME) 10*16kB (UME) 3*32kB (UM) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 1540kB [ 3310.906700][T14252] kvm [14237]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x176 [ 3310.920971][T14217] Node 1 Normal: 64*4kB (U) 243*8kB (UE) 258*16kB (UE) 62*32kB (UME) 16*64kB (UME) 10*128kB (U) 7*256kB (UME) 4*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 919*4096kB (M) = 3784824kB [ 3310.954961][T14217] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3310.997311][T14217] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3311.012895][T14217] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3311.039261][T14217] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3311.060457][T14217] 72110 total pagecache pages [ 3311.071350][T14217] 0 pages in swap cache [ 3311.082435][T14217] Swap cache stats: add 0, delete 0, find 0/0 [ 3311.088768][T14217] Free swap = 0kB [ 3311.094172][T14217] Total swap = 0kB [ 3311.098091][T14217] 1965979 pages RAM [ 3311.103153][T14217] 0 pages HighMem/MovableOnly [ 3311.107958][T14217] 343989 pages reserved [ 3311.112896][T14251] XFS (loop2): Invalid superblock magic number [ 3311.119444][T14217] 0 pages cma reserved 20:33:29 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff04000000]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:29 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:29 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000000080000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x17a]}) 20:33:29 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="6e6f6c61c0d8d19e335f726765696f2c64ac7c49b572645ca9cd34fdc2ff3fc8557022ddb46c9404e7070d9671"]) stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_tcp(&(0x7f00000000c0)='127.0.0.1\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x800, &(0x7f0000000280)={'trans=tcp,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@version_u='version=9p2000.u'}, {@mmap='mmap'}, {@afid={'afid', 0x3d, 0x6}}, {@cache_loose='cache=loose'}, {@nodevmap='nodevmap'}, {@dfltgid={'dfltgid', 0x3d, r1}}], [{@fsname={'fsname', 0x3d, 'keyring'}}]}}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:29 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x6c00000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) [ 3313.182328][T14275] XFS (loop2): unknown mount option [nolaÀØÑž3_rgeio]. [ 3313.243592][T14285] kvm [14270]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x17a 20:33:29 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3313.287314][T14287] 9pnet_virtio: no channels available for device 127.0.0.1 [ 3313.345970][T14290] kvm [14270]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x17a [ 3313.359376][T14283] 9pnet: p9_fd_create_tcp (14283): problem connecting socket to 127.0.0.1 20:33:30 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000000cd0000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:30 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6c61726765696f2c6469736361726469f69dfb410864b6ff84fe3f4f2c00"]) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:30 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x17b]}) [ 3313.630861][T14300] XFS (loop2): unknown mount option [discardiöûAd¶ÿ„þ?O]. 20:33:30 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000300000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3313.700254][T14310] kvm [14304]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x17b [ 3313.747120][T14315] kvm [14304]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x17b 20:33:33 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff0a000000]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:33 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:33 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) r1 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_LOG_STATUS(r1, 0x5646, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 20:33:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x185]}) 20:33:33 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000400000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:33 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x7400000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) 20:33:34 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3317.528512][T14358] kvm [14334]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x185 20:33:34 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000800000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) 20:33:34 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3317.604355][T14338] XFS (loop2): Invalid superblock magic number [ 3317.631406][T14369] kvm [14334]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x185 20:33:34 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r1) ioctl$sock_bt_hidp_HIDPCONNADD(r3, 0x400448c8, &(0x7f0000000300)={r2, r0, 0x200, 0x8, &(0x7f00000002c0)="352cb2d42e4c3f4a", 0x0, 0x4, 0x2, 0x10001, 0x8, 0x1, 0x2, 'syz1\x00'}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="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"]) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x82000, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r4, 0x40405514, &(0x7f0000000280)={0x8, 0x6, 0x9, 0x1}) syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x8, 0x0) 20:33:34 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x186]}) [ 3318.054579][T14393] kvm [14389]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x186 [ 3318.082621][T14386] XFS (loop2): Invalid superblock magic number [ 3318.111799][T14405] kvm [14389]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x186 [ 3326.203232][ T1042] oom_reaper: reaped process 14351 (syz-executor1), now anon-rss:0kB, file-rss:31796kB, shmem-rss:0kB [ 3326.269925][ T8039] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3326.309687][ T8039] CPU: 0 PID: 8039 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3326.318307][ T8039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3326.328364][ T8039] Call Trace: [ 3326.331670][ T8039] dump_stack+0x1db/0x2d0 [ 3326.336011][ T8039] ? dump_stack_print_info.cold+0x20/0x20 [ 3326.341747][ T8039] dump_header+0x1e6/0x11a6 [ 3326.346261][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3326.351896][ T8039] ? mark_held_locks+0x100/0x100 [ 3326.356837][ T8039] ? print_usage_bug+0xd0/0xd0 [ 3326.361611][ T8039] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3326.367246][ T8039] ? ___ratelimit+0x37c/0x686 [ 3326.371936][ T8039] ? mark_held_locks+0xb1/0x100 [ 3326.376793][ T8039] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3326.382611][ T8039] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3326.388425][ T8039] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3326.393715][ T8039] ? trace_hardirqs_on+0xbd/0x310 [ 3326.398743][ T8039] ? kasan_check_read+0x11/0x20 [ 3326.403602][ T8039] ? ___ratelimit+0x37c/0x686 [ 3326.408715][ T8039] ? trace_hardirqs_off_caller+0x300/0x300 [ 3326.414524][ T8039] ? do_raw_spin_trylock+0x270/0x270 [ 3326.419826][ T8039] ? trace_hardirqs_on_caller+0x310/0x310 [ 3326.425552][ T8039] ? lock_acquire+0x1db/0x570 [ 3326.430265][ T8039] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3326.436084][ T8039] ? ___ratelimit+0xac/0x686 [ 3326.440690][ T8039] ? idr_get_free+0xee0/0xee0 [ 3326.445373][ T8039] ? kasan_check_read+0x11/0x20 [ 3326.450231][ T8039] ? do_raw_spin_unlock+0xa0/0x330 [ 3326.455345][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3326.461776][ T8039] oom_kill_process.cold+0x10/0x9ca [ 3326.466986][ T8039] ? _raw_spin_unlock+0x2d/0x50 [ 3326.471842][ T8039] ? oom_badness+0xca/0xa50 [ 3326.476353][ T8039] ? out_of_memory+0xc8f/0x1420 [ 3326.481204][ T8039] ? find_held_lock+0x35/0x120 [ 3326.485979][ T8039] ? oom_evaluate_task+0x540/0x540 [ 3326.491094][ T8039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3326.497342][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3326.502195][ T8039] ? kasan_check_read+0x11/0x20 [ 3326.507048][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3326.513518][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3326.519167][ T8039] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 3326.524888][ T8039] ? oom_evaluate_task+0x305/0x540 [ 3326.530037][ T8039] out_of_memory+0x885/0x1420 [ 3326.534734][ T8039] ? oom_killer_disable+0x340/0x340 [ 3326.539937][ T8039] ? mutex_trylock+0x248/0x2d0 [ 3326.544705][ T8039] ? __ww_mutex_check_waiters+0x160/0x160 [ 3326.550439][ T8039] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3326.556018][ T8039] ? warn_alloc+0x110/0x110 [ 3326.560529][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3326.563203][T14351] syz-executor1: vmalloc: allocation failure, allocated 142372864 of 167776256 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 3326.566183][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3326.588544][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3326.594284][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3326.599943][ T8039] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3326.605758][ T8039] ? ___might_sleep+0x1e7/0x310 [ 3326.610612][ T8039] ? arch_local_save_flags+0x50/0x50 [ 3326.615896][ T8039] ? lock_release+0xc40/0xc40 [ 3326.620588][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3326.625438][ T8039] ? kasan_check_read+0x11/0x20 [ 3326.630302][ T8039] __alloc_pages_nodemask+0xa37/0xdc0 [ 3326.635683][ T8039] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3326.641425][ T8039] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3326.647673][ T8039] alloc_pages_current+0x107/0x210 [ 3326.652792][ T8039] __page_cache_alloc+0x3cd/0x620 [ 3326.657816][ T8039] ? alloc_pages_current+0x10f/0x210 [ 3326.663101][ T8039] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3326.668472][ T8039] ? __page_cache_alloc+0x19c/0x620 [ 3326.673668][ T8039] ? find_held_lock+0x60/0x120 [ 3326.678435][ T8039] pagecache_get_page+0x36f/0x1070 [ 3326.683552][ T8039] ? find_lock_entry+0x8b0/0x8b0 [ 3326.689004][ T8039] ? __do_page_cache_readahead+0x64b/0x800 [ 3326.694826][ T8039] ? read_pages+0x650/0x650 [ 3326.699327][ T8039] ? kasan_check_write+0x14/0x20 [ 3326.704258][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3326.709104][ T8039] ? kasan_check_read+0x11/0x20 [ 3326.713953][ T8039] ? up_read_non_owner+0x100/0x100 [ 3326.719065][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3326.724700][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3326.730947][ T8039] filemap_fault+0xb6a/0x2a30 [ 3326.735661][ T8039] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3326.741471][ T8039] ? __lock_is_held+0xb6/0x140 [ 3326.746240][ T8039] ? lock_acquire+0x1db/0x570 [ 3326.750987][ T8039] ? ext4_filemap_fault+0x7b/0xaf [ 3326.756057][ T8039] ? lock_release+0xc40/0xc40 [ 3326.760740][ T8039] ? print_usage_bug+0xd0/0xd0 [ 3326.765520][ T8039] ? down_read+0x8d/0x120 [ 3326.769856][ T8039] ? ext4_filemap_fault+0x7b/0xaf [ 3326.774879][ T8039] ? __down_interruptible+0x740/0x740 [ 3326.780253][ T8039] ? __lock_acquire+0x572/0x4a10 [ 3326.785187][ T8039] ? find_held_lock+0x35/0x120 [ 3326.789957][ T8039] ext4_filemap_fault+0x83/0xaf [ 3326.794809][ T8039] __do_fault+0x176/0x7b0 [ 3326.799143][ T8039] ? mark_held_locks+0x100/0x100 [ 3326.804097][ T8039] ? do_page_mkwrite+0x740/0x740 [ 3326.809033][ T8039] ? pmd_val+0x85/0x100 [ 3326.813191][ T8039] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3326.819692][ T8039] ? pmd_val+0x85/0x100 [ 3326.823855][ T8039] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3326.829610][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3326.835858][ T8039] __handle_mm_fault+0x377c/0x5610 [ 3326.840986][ T8039] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3326.846539][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3326.852295][ T8039] ? handle_mm_fault+0x3cc/0xc80 [ 3326.857251][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3326.862099][ T8039] ? kasan_check_read+0x11/0x20 [ 3326.866950][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3326.872935][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3326.878584][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3326.884825][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3326.890553][ T8039] handle_mm_fault+0x4ec/0xc80 [ 3326.895339][ T8039] ? __handle_mm_fault+0x5610/0x5610 [ 3326.900638][ T8039] __do_page_fault+0x5ef/0xda0 [ 3326.905399][ T8039] ? do_futex+0x2910/0x2910 [ 3326.909913][ T8039] do_page_fault+0xe6/0x7d8 [ 3326.914414][ T8039] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3326.920054][ T8039] ? vmalloc_sync_all+0x30/0x30 [ 3326.924902][ T8039] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3326.931057][ T8039] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3326.936687][ T8039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3326.942931][ T8039] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3326.948651][ T8039] ? page_fault+0x8/0x30 [ 3326.952899][ T8039] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3326.958444][ T8039] ? page_fault+0x8/0x30 [ 3326.962689][ T8039] page_fault+0x1e/0x30 [ 3326.966841][ T8039] RIP: 0033:0x459e00 [ 3326.970764][ T8039] Code: Bad RIP value. [ 3326.974825][ T8039] RSP: 002b:000000c4200246b8 EFLAGS: 00010206 [ 3326.980886][ T8039] RAX: 000000c4200246d0 RBX: 000000003b97fda1 RCX: 000000c420001500 [ 3326.988854][ T8039] RDX: 0000000000000000 RSI: 000000c4200246d8 RDI: 0000000000000001 [ 3326.996819][ T8039] RBP: 000000c4200246f0 R08: 00007ffdd53830b0 R09: 00007ffdd5383080 [ 3327.004786][ T8039] R10: 00000000000818a4 R11: 0000000000000cfe R12: 0000000000000001 [ 3327.012756][ T8039] R13: 000000c4368ec000 R14: 0000000000000001 R15: 0000000000000000 [ 3327.020749][T14351] CPU: 1 PID: 14351 Comm: syz-executor1 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3327.022617][ T8039] Mem-Info: [ 3327.029690][T14351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3327.029696][T14351] Call Trace: [ 3327.029719][T14351] dump_stack+0x1db/0x2d0 [ 3327.029740][T14351] ? dump_stack_print_info.cold+0x20/0x20 [ 3327.029760][T14351] ? idr_get_free+0xee0/0xee0 [ 3327.032887][ T8039] active_anon:119983 inactive_anon:203 isolated_anon:0 [ 3327.032887][ T8039] active_file:1 inactive_file:1 isolated_file:0 [ 3327.032887][ T8039] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3327.032887][ T8039] slab_reclaimable:15581 slab_unreclaimable:110173 [ 3327.032887][ T8039] mapped:49154 shmem:244 pagetables:1710 bounce:0 [ 3327.032887][ T8039] free:13938 free_pcp:124 free_cma:0 [ 3327.043099][T14351] warn_alloc.cold+0xc3/0x1c9 [ 3327.043117][T14351] ? zone_watermark_ok_safe+0x420/0x420 [ 3327.043143][T14351] ? ___might_sleep+0x1e7/0x310 [ 3327.046430][ T8039] Node 0 active_anon:479924kB inactive_anon:812kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 176128kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3327.050718][T14351] ? vfree_atomic+0xe0/0xe0 [ 3327.050736][T14351] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3327.050767][T14351] __vmalloc_node_range+0x659/0x910 [ 3327.056484][ T8039] Node 1 active_anon:8kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3327.061134][T14351] ? vfree_atomic+0xe0/0xe0 [ 3327.061151][T14351] ? rcu_read_lock_sched_held+0x110/0x130 [ 3327.061167][T14351] ? kmem_cache_alloc_trace+0x354/0x760 [ 3327.061180][T14351] ? __lock_is_held+0xb6/0x140 [ 3327.061197][T14351] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3327.061233][T14351] vmalloc_user+0x6b/0x90 [ 3327.098312][ T8039] Node 0 DMA free:10240kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3327.102952][T14351] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3327.102969][T14351] vb2_vmalloc_alloc+0x134/0x3a0 [ 3327.102990][T14351] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3327.108512][ T8039] lowmem_reserve[]: 0 2535 2537 2537 [ 3327.113351][T14351] ? __vb2_queue_alloc+0xf5/0xf40 [ 3327.113370][T14351] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3327.113384][T14351] __vb2_queue_alloc+0x5a6/0xf40 [ 3327.113416][T14351] ? vimc_cap_get_format+0x120/0x120 [ 3327.141360][ T8039] Node 0 DMA32 free:18736kB min:36080kB low:45100kB high:54120kB active_anon:479924kB inactive_anon:812kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7776kB pagetables:6840kB bounce:0kB free_pcp:248kB local_pcp:0kB free_cma:0kB [ 3327.145827][T14351] vb2_core_create_bufs+0x378/0x8e0 [ 3327.152981][ T8039] lowmem_reserve[]: 0 0 2 2 [ 3327.157264][T14351] ? __vb2_queue_alloc+0xf40/0xf40 [ 3327.183661][ T8039] Node 0 Normal free:16kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3327.188123][T14351] ? mutex_trylock+0x2d0/0x2d0 [ 3327.193840][ T8039] lowmem_reserve[]: 0 0 0 0 [ 3327.199348][T14351] ? save_stack+0xa9/0xd0 [ 3327.199366][T14351] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3327.199387][T14351] vb2_create_bufs+0x4b5/0x8e0 [ 3327.204128][ T8039] Node 1 Normal free:26760kB min:53780kB low:67224kB high:80668kB active_anon:8kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:248kB local_pcp:0kB free_cma:0kB [ 3327.209232][T14351] ? vb2_request_queue+0x120/0x120 [ 3327.209252][T14351] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3327.209273][T14351] ? v4l2_prio_max+0x266/0x310 [ 3327.213590][ T8039] lowmem_reserve[]: 0 0 0 0 [ 3327.240392][T14351] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3327.240411][T14351] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3327.240434][T14351] v4l_create_bufs+0x152/0x230 [ 3327.240466][T14351] __video_do_ioctl+0x805/0xd80 [ 3327.245552][ T8039] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10240kB [ 3327.250495][T14351] ? v4l_s_fmt+0xb20/0xb20 [ 3327.250517][T14351] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3327.250533][T14351] ? _copy_from_user+0xdd/0x150 [ 3327.250571][T14351] video_usercopy+0x460/0x16b0 [ 3327.256367][ T8039] Node 0 DMA32: 294*4kB (ME) 991*8kB (UME) 364*16kB (UM) 119*32kB (UM) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 18736kB [ 3327.261640][T14351] ? v4l_s_fmt+0xb20/0xb20 [ 3327.261665][T14351] ? v4l_enumstd+0x70/0x70 [ 3327.261686][T14351] ? __fget+0x473/0x710 [ 3327.266686][ T8039] Node 0 Normal: 0*4kB 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 3327.272479][T14351] ? find_held_lock+0x35/0x120 [ 3327.272495][T14351] ? __fget+0x473/0x710 [ 3327.272513][T14351] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3327.272532][T14351] ? lock_downgrade+0xbe0/0xbe0 [ 3327.277448][ T8039] Node 1 Normal: 2*4kB (M) 2*8kB (ME) 3*16kB (ME) 4*32kB (UME) 5*64kB (UME) 1*128kB (U) 2*256kB (ME) 4*512kB (UME) 3*1024kB (ME) 0*2048kB 5*4096kB (M) = 26760kB [ 3327.282721][T14351] ? kasan_check_read+0x11/0x20 [ 3327.282739][T14351] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3327.282756][T14351] ? rcu_read_unlock_special+0x380/0x380 [ 3327.282778][T14351] ? __fget+0x49a/0x710 [ 3327.282797][T14351] ? video_usercopy+0x16b0/0x16b0 [ 3327.282810][T14351] video_ioctl2+0x2d/0x35 [ 3327.282826][T14351] v4l2_ioctl+0x156/0x1b0 [ 3327.282847][T14351] ? video_devdata+0xa0/0xa0 [ 3327.312879][ T8039] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3327.317195][T14351] do_vfs_ioctl+0x107b/0x17d0 [ 3327.321740][ T8039] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3327.326809][T14351] ? ioctl_preallocate+0x2f0/0x2f0 [ 3327.353483][ T8039] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3327.358204][T14351] ? __fget_light+0x2db/0x420 [ 3327.362720][ T8039] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3327.367001][T14351] ? fget_raw+0x20/0x20 [ 3327.373247][ T8039] 246 total pagecache pages [ 3327.377961][T14351] ? put_timespec64+0x115/0x1b0 [ 3327.377986][T14351] ? nsecs_to_jiffies+0x30/0x30 [ 3327.409157][ T8039] 0 pages in swap cache [ 3327.411216][T14351] ? do_syscall_64+0x8c/0x800 [ 3327.417433][ T8039] Swap cache stats: add 0, delete 0, find 0/0 [ 3327.422178][T14351] ? do_syscall_64+0x8c/0x800 [ 3327.422194][T14351] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3327.422213][T14351] ? security_file_ioctl+0x93/0xc0 [ 3327.422233][T14351] ksys_ioctl+0xab/0xd0 [ 3327.422258][T14351] __x64_sys_ioctl+0x73/0xb0 [ 3327.426749][ T8039] Free swap = 0kB [ 3327.432980][T14351] do_syscall_64+0x1a3/0x800 [ 3327.432999][T14351] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3327.433022][T14351] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3327.433046][T14351] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3327.438310][ T8039] Total swap = 0kB [ 3327.443076][T14351] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3327.443089][T14351] RIP: 0033:0x457ec9 [ 3327.443114][T14351] Code: Bad RIP value. [ 3327.443129][T14351] RSP: 002b:00007fed92250c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3327.448779][ T8039] 1965979 pages RAM [ 3327.460110][T14351] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3327.460120][T14351] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000004 [ 3327.460129][T14351] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3327.460137][T14351] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fed922516d4 [ 3327.460161][T14351] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3327.489941][T14351] Mem-Info: [ 3327.494632][ T8039] 0 pages HighMem/MovableOnly [ 3327.499041][T14351] active_anon:119983 inactive_anon:203 isolated_anon:0 [ 3327.499041][T14351] active_file:1 inactive_file:1 isolated_file:0 [ 3327.499041][T14351] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3327.499041][T14351] slab_reclaimable:15581 slab_unreclaimable:110173 [ 3327.499041][T14351] mapped:49154 shmem:244 pagetables:1710 bounce:0 [ 3327.499041][T14351] free:13938 free_pcp:124 free_cma:0 [ 3327.503447][ T8039] 343989 pages reserved [ 3327.503452][ T8039] 0 pages cma reserved [ 3327.503462][ T8039] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=24662,uid=0 [ 3327.524094][T14351] Node 0 active_anon:479924kB inactive_anon:812kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 176128kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3327.524330][ T8039] Out of memory: Kill process 24662 (syz-executor4) score 1005 or sacrifice child [ 3327.528492][T14351] Node 1 active_anon:8kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3327.536517][ T8039] Killed process 24662 (syz-executor4) total-vm:70796kB, anon-rss:4260kB, file-rss:32768kB, shmem-rss:0kB [ 3327.553451][T14351] Node 0 DMA free:10240kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3327.596521][ T8039] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3327.623778][T14351] lowmem_reserve[]: 0 2535 2537 2537 [ 3327.624401][ T8039] CPU: 0 PID: 8039 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3327.635976][T14351] Node 0 DMA32 free:23416kB min:36080kB low:45100kB high:54120kB active_anon:475756kB inactive_anon:812kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7776kB pagetables:6840kB bounce:0kB free_pcp:820kB local_pcp:560kB free_cma:0kB [ 3327.638574][ T8039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3327.647854][T14351] lowmem_reserve[]: 0 0 2 2 [ 3327.651963][ T8039] Call Trace: [ 3327.651990][ T8039] dump_stack+0x1db/0x2d0 [ 3327.652011][ T8039] ? dump_stack_print_info.cold+0x20/0x20 [ 3327.656490][T14351] Node 0 Normal free:16kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3327.661331][ T8039] ? __lock_acquire+0x572/0x4a10 [ 3327.661358][ T8039] dump_header+0x1e6/0x11a6 [ 3327.661377][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3327.666202][T14351] lowmem_reserve[]: 0 0 0 0 [ 3327.670347][ T8039] ? mark_held_locks+0x100/0x100 [ 3327.670361][ T8039] ? print_usage_bug+0xd0/0xd0 [ 3327.670386][ T8039] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3327.675039][T14351] Node 1 Normal free:26760kB min:53780kB low:67224kB high:80668kB active_anon:8kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:248kB local_pcp:248kB free_cma:0kB [ 3327.681094][ T8039] ? ___ratelimit+0x37c/0x686 [ 3327.681115][ T8039] ? mark_held_locks+0xb1/0x100 [ 3327.681137][ T8039] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3327.685984][T14351] lowmem_reserve[]: 0 0 0 0 [ 3327.691260][ T8039] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3327.691275][ T8039] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3327.691291][ T8039] ? trace_hardirqs_on+0xbd/0x310 [ 3327.691313][ T8039] ? kasan_check_read+0x11/0x20 [ 3327.696400][T14351] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10240kB [ 3327.700540][ T8039] ? ___ratelimit+0x37c/0x686 [ 3327.700574][ T8039] ? trace_hardirqs_off_caller+0x300/0x300 [ 3327.700595][ T8039] ? do_raw_spin_trylock+0x270/0x270 [ 3327.705161][T14351] Node 0 DMA32: 294*4kB (ME) 1039*8kB (UME) 368*16kB (UM) 122*32kB (UM) 0*64kB 4*128kB (U) 0*256kB 0*512kB 0*1024kB 2*2048kB (M) 0*4096kB = 23888kB [ 3327.708877][ T8039] ? trace_hardirqs_on_caller+0x310/0x310 [ 3327.713464][T14351] Node 0 Normal: 0*4kB 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 3327.719071][ T8039] ? lock_acquire+0x1db/0x570 [ 3327.724793][T14351] Node 1 Normal: 2*4kB (M) 2*8kB (ME) 3*16kB (ME) 4*32kB (UME) 5*64kB (UME) 1*128kB (U) 2*256kB (ME) 4*512kB (UME) 3*1024kB (ME) 0*2048kB 5*4096kB (M) = 26760kB [ 3327.730309][ T8039] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3327.730323][ T8039] ? ___ratelimit+0xac/0x686 [ 3327.730337][ T8039] ? idr_get_free+0xee0/0xee0 [ 3327.730352][ T8039] ? kasan_check_read+0x11/0x20 [ 3327.730373][ T8039] ? do_raw_spin_unlock+0xa0/0x330 [ 3327.740971][T14351] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3327.743846][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3327.747894][T14351] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3327.756293][ T8039] oom_kill_process.cold+0x10/0x9ca [ 3327.756314][ T8039] ? _raw_spin_unlock+0x2d/0x50 [ 3327.756335][ T8039] ? oom_badness+0xca/0xa50 [ 3327.779402][T14351] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3327.784056][ T8039] ? out_of_memory+0xc8f/0x1420 [ 3327.792050][T14351] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3327.799983][ T8039] ? find_held_lock+0x35/0x120 [ 3327.800004][ T8039] ? oom_evaluate_task+0x540/0x540 [ 3327.800025][ T8039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3327.803115][T14351] 246 total pagecache pages [ 3327.807788][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3327.844867][T14351] 0 pages in swap cache [ 3327.848977][ T8039] ? kasan_check_read+0x11/0x20 [ 3327.853043][T14351] Swap cache stats: add 0, delete 0, find 0/0 [ 3327.867489][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3327.867507][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3327.867528][ T8039] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 3327.895473][T14351] Free swap = 0kB [ 3327.904639][ T8039] ? oom_evaluate_task+0x305/0x540 [ 3327.904661][ T8039] out_of_memory+0x885/0x1420 [ 3327.904687][ T8039] ? oom_killer_disable+0x340/0x340 [ 3327.931672][T14351] Total swap = 0kB [ 3327.942913][ T8039] ? mutex_trylock+0x248/0x2d0 [ 3327.942933][ T8039] ? __ww_mutex_check_waiters+0x160/0x160 [ 3327.942959][ T8039] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3327.969791][T14351] 1965979 pages RAM [ 3327.980444][ T8039] ? warn_alloc+0x110/0x110 [ 3327.980465][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3327.985725][T14351] 0 pages HighMem/MovableOnly [ 3327.994290][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3327.994305][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3327.994325][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3328.023660][T14351] 343989 pages reserved [ 3328.033705][ T8039] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3328.033726][ T8039] ? ___might_sleep+0x1e7/0x310 [ 3328.038205][T14351] 0 pages cma reserved [ 3328.041487][ T8039] ? arch_local_save_flags+0x50/0x50 [ 3328.041500][ T8039] ? lock_release+0xc40/0xc40 [ 3328.041520][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3328.515604][ T8039] ? kasan_check_read+0x11/0x20 [ 3328.520469][ T8039] __alloc_pages_nodemask+0xa37/0xdc0 [ 3328.525850][ T8039] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3328.531625][ T8039] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3328.538325][ T8039] alloc_pages_current+0x107/0x210 [ 3328.543440][ T8039] __page_cache_alloc+0x3cd/0x620 [ 3328.548464][ T8039] ? alloc_pages_current+0x10f/0x210 [ 3328.553751][ T8039] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3328.559123][ T8039] ? __page_cache_alloc+0x19c/0x620 [ 3328.564321][ T8039] ? find_held_lock+0x60/0x120 [ 3328.569086][ T8039] pagecache_get_page+0x36f/0x1070 [ 3328.574215][ T8039] ? find_lock_entry+0x8b0/0x8b0 [ 3328.579153][ T8039] ? __do_page_cache_readahead+0x64b/0x800 [ 3328.584971][ T8039] ? read_pages+0x650/0x650 [ 3328.589469][ T8039] ? kasan_check_write+0x14/0x20 [ 3328.594404][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3328.599249][ T8039] ? kasan_check_read+0x11/0x20 [ 3328.604099][ T8039] ? up_read_non_owner+0x100/0x100 [ 3328.609210][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3328.614857][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3328.621107][ T8039] filemap_fault+0xb6a/0x2a30 [ 3328.625793][ T8039] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3328.631609][ T8039] ? __lock_is_held+0xb6/0x140 [ 3328.636374][ T8039] ? lock_acquire+0x1db/0x570 [ 3328.641052][ T8039] ? ext4_filemap_fault+0x7b/0xaf [ 3328.646076][ T8039] ? lock_release+0xc40/0xc40 [ 3328.650752][ T8039] ? print_usage_bug+0xd0/0xd0 [ 3328.655531][ T8039] ? down_read+0x8d/0x120 [ 3328.659869][ T8039] ? ext4_filemap_fault+0x7b/0xaf [ 3328.664893][ T8039] ? __down_interruptible+0x740/0x740 [ 3328.670261][ T8039] ? __lock_acquire+0x572/0x4a10 [ 3328.675210][ T8039] ? find_held_lock+0x35/0x120 [ 3328.679980][ T8039] ext4_filemap_fault+0x83/0xaf [ 3328.684828][ T8039] __do_fault+0x176/0x7b0 [ 3328.689620][ T8039] ? mark_held_locks+0x100/0x100 [ 3328.694565][ T8039] ? do_page_mkwrite+0x740/0x740 [ 3328.699508][ T8039] ? pmd_val+0x85/0x100 [ 3328.703662][ T8039] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3328.709379][ T8039] ? pmd_val+0x85/0x100 [ 3328.713531][ T8039] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3328.719276][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3328.725532][ T8039] __handle_mm_fault+0x377c/0x5610 [ 3328.730668][ T8039] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3328.736211][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3328.741927][ T8039] ? handle_mm_fault+0x3cc/0xc80 [ 3328.746880][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3328.751728][ T8039] ? kasan_check_read+0x11/0x20 [ 3328.756590][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3328.762585][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3328.768218][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3328.774456][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3328.780178][ T8039] handle_mm_fault+0x4ec/0xc80 [ 3328.784943][ T8039] ? __handle_mm_fault+0x5610/0x5610 [ 3328.790236][ T8039] __do_page_fault+0x5ef/0xda0 [ 3328.795013][ T8039] ? do_futex+0x2910/0x2910 [ 3328.799523][ T8039] do_page_fault+0xe6/0x7d8 [ 3328.804056][ T8039] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3328.809693][ T8039] ? vmalloc_sync_all+0x30/0x30 [ 3328.814541][ T8039] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3328.820871][ T8039] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3328.826504][ T8039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3328.832745][ T8039] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3328.838472][ T8039] ? page_fault+0x8/0x30 [ 3328.842747][ T8039] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3328.848292][ T8039] ? page_fault+0x8/0x30 [ 3328.852530][ T8039] page_fault+0x1e/0x30 [ 3328.856692][ T8039] RIP: 0033:0x459e00 [ 3328.860608][ T8039] Code: Bad RIP value. [ 3328.864673][ T8039] RSP: 002b:000000c4200246b8 EFLAGS: 00010206 [ 3328.870732][ T8039] RAX: 000000c4200246d0 RBX: 000000003b97fda1 RCX: 000000c420001500 [ 3328.878703][ T8039] RDX: 0000000000000000 RSI: 000000c4200246d8 RDI: 0000000000000001 [ 3328.886670][ T8039] RBP: 000000c4200246f0 R08: 00007ffdd53830b0 R09: 00007ffdd5383080 [ 3328.894636][ T8039] R10: 00000000000818a4 R11: 0000000000000cfe R12: 0000000000000001 [ 3328.902602][ T8039] R13: 000000c4368ec000 R14: 0000000000000001 R15: 0000000000000000 [ 3328.911807][ T8039] Mem-Info: [ 3328.914955][ T8039] active_anon:118932 inactive_anon:203 isolated_anon:0 [ 3328.914955][ T8039] active_file:1 inactive_file:1 isolated_file:0 [ 3328.914955][ T8039] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3328.914955][ T8039] slab_reclaimable:15526 slab_unreclaimable:109889 [ 3328.914955][ T8039] mapped:49154 shmem:244 pagetables:1683 bounce:0 [ 3328.914955][ T8039] free:15856 free_pcp:480 free_cma:0 [ 3328.952114][ T8039] Node 0 active_anon:475720kB inactive_anon:812kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 172032kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3328.980278][ T8039] Node 1 active_anon:8kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3329.012632][ T8039] Node 0 DMA free:10240kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3329.046771][ T8039] lowmem_reserve[]: 0 2535 2537 2537 [ 3329.052133][ T8039] Node 0 DMA32 free:133408kB min:36080kB low:45100kB high:54120kB active_anon:475720kB inactive_anon:812kB active_file:0kB inactive_file:604kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7744kB pagetables:6732kB bounce:0kB free_pcp:1296kB local_pcp:260kB free_cma:0kB [ 3329.096260][ T8039] lowmem_reserve[]: 0 0 2 2 [ 3329.100861][ T8039] Node 0 Normal free:1316kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3329.135098][ T8039] lowmem_reserve[]: 0 0 0 0 [ 3329.147053][ T8039] Node 1 Normal free:52460kB min:53780kB low:67224kB high:80668kB active_anon:8kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1360kB local_pcp:0kB free_cma:0kB [ 3329.183741][ T8039] lowmem_reserve[]: 0 0 0 0 [ 3329.188269][ T8039] Node 0 DMA: 0*4kB 0*8kB 1*16kB (U) 1*32kB (U) 1*64kB (U) 0*128kB 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10352kB [ 3329.207525][ T8039] Node 0 DMA32: 3000*4kB (UME) 6694*8kB (UME) 3002*16kB (UM) 1881*32kB (UM) 220*64kB (UM) 25*128kB (U) 7*256kB (U) 2*512kB (UM) 0*1024kB 13*2048kB (UM) 0*4096kB = 220496kB [ 3329.230760][ T8039] Node 0 Normal: 14*4kB (M) 16*8kB (M) 7*16kB (M) 2*32kB (M) 1*64kB (M) 1*128kB (M) 1*256kB (M) 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 1320kB [ 3329.249183][ T8039] Node 1 Normal: 2*4kB (M) 5*8kB (UME) 6*16kB (UME) 3*32kB (ME) 6*64kB (UME) 3*128kB (U) 3*256kB (UME) 5*512kB (UME) 5*1024kB (UME) 1*2048kB (U) 10*4096kB (UM) = 52464kB [ 3329.266528][ T8039] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3329.276433][ T8039] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3329.286020][ T8039] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3329.295895][ T8039] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3329.305472][ T8039] 690 total pagecache pages [ 3329.310331][ T8039] 0 pages in swap cache [ 3329.314490][ T8039] Swap cache stats: add 0, delete 0, find 0/0 [ 3329.320897][ T8039] Free swap = 0kB [ 3329.324650][ T8039] Total swap = 0kB [ 3329.328371][ T8039] 1965979 pages RAM [ 3329.332662][ T8039] 0 pages HighMem/MovableOnly [ 3329.337342][ T8039] 343989 pages reserved [ 3329.341820][ T8039] 0 pages cma reserved [ 3329.346149][ T8039] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=4110,uid=0 [ 3329.360943][ T8039] Out of memory: Kill process 4110 (syz-executor4) score 1005 or sacrifice child [ 3329.371750][ T8039] Killed process 4110 (syz-executor4) total-vm:70664kB, anon-rss:4252kB, file-rss:32768kB, shmem-rss:0kB [ 3332.491488][T14351] syz-executor1 (14351) used greatest stack depth: 15544 bytes left 20:33:49 executing program 5: r0 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x7a00000000000000, 0x0, 0x0, 0x0, [0x0, 0xffffffffffffffff]}}}) 20:33:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x187]}) 20:33:49 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vivid(&(0x7f0000000200)='/dev/video#\x00', 0xffffffffffffffff, 0x2) ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000040)={0x0, 0x51, 0x1, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0xffffffff0b000000]}}}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") 20:33:49 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:49 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a00000100000000cd00000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3333.091607][T14424] syz-executor5: vmalloc: allocation failure: 0 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1 [ 3333.106508][T14424] CPU: 1 PID: 14424 Comm: syz-executor5 Not tainted 5.0.0-rc1-next-20190110 #9 [ 3333.115467][T14424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3333.125517][T14424] Call Trace: [ 3333.128824][T14424] dump_stack+0x1db/0x2d0 [ 3333.133151][T14424] ? dump_stack_print_info.cold+0x20/0x20 [ 3333.138848][T14424] ? idr_get_free+0xee0/0xee0 [ 3333.143509][T14424] ? kasan_kmalloc+0x9/0x10 [ 3333.147992][T14424] ? kmem_cache_alloc_trace+0x151/0x760 [ 3333.153522][T14424] ? vb2_vmalloc_alloc+0xf8/0x3a0 [ 3333.158548][T14424] ? vb2_core_create_bufs+0x378/0x8e0 [ 3333.163931][T14424] warn_alloc.cold+0xc3/0x1c9 [ 3333.168628][T14424] ? zone_watermark_ok_safe+0x420/0x420 [ 3333.174162][T14424] ? print_usage_bug+0xd0/0xd0 [ 3333.178908][T14424] ? kasan_kmalloc+0x9/0x10 [ 3333.183395][T14424] ? __lock_is_held+0xb6/0x140 [ 3333.188157][T14424] ? add_lock_to_list.isra.0+0x450/0x450 [ 3333.193772][T14424] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.199992][T14424] ? check_preemption_disabled+0x48/0x290 [ 3333.205738][T14424] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3333.210836][T14424] __vmalloc_node_range+0x57a/0x910 [ 3333.216015][T14424] ? __lock_is_held+0xb6/0x140 [ 3333.220762][T14424] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3333.225872][T14424] ? vfree_atomic+0xe0/0xe0 [ 3333.230359][T14424] ? rcu_read_lock_sched_held+0x110/0x130 [ 3333.236059][T14424] ? kmem_cache_alloc_trace+0x354/0x760 [ 3333.241591][T14424] ? __lock_is_held+0xb6/0x140 [ 3333.246336][T14424] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3333.251430][T14424] vmalloc_user+0x6b/0x90 [ 3333.255746][T14424] ? vb2_vmalloc_alloc+0x134/0x3a0 [ 3333.260845][T14424] vb2_vmalloc_alloc+0x134/0x3a0 [ 3333.265767][T14424] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3333.271574][T14424] ? lock_acquire+0x1db/0x570 [ 3333.276267][T14424] ? __video_do_ioctl+0x3b1/0xd80 [ 3333.281274][T14424] ? __vb2_queue_alloc+0xf5/0xf40 [ 3333.286290][T14424] ? vb2_vmalloc_attach_dmabuf+0x160/0x160 [ 3333.292095][T14424] __vb2_queue_alloc+0x5a6/0xf40 [ 3333.297055][T14424] ? vimc_cap_get_format+0x120/0x120 [ 3333.302329][T14424] vb2_core_create_bufs+0x378/0x8e0 [ 3333.307510][T14424] ? __vb2_queue_alloc+0xf40/0xf40 [ 3333.312607][T14424] ? mutex_trylock+0x2d0/0x2d0 [ 3333.317358][T14424] ? save_stack+0xa9/0xd0 [ 3333.321676][T14424] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.327902][T14424] vb2_create_bufs+0x4b5/0x8e0 [ 3333.332659][T14424] ? vb2_request_queue+0x120/0x120 [ 3333.337759][T14424] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.343984][T14424] ? v4l2_prio_max+0x266/0x310 [ 3333.348730][T14424] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.354952][T14424] vb2_ioctl_create_bufs+0x340/0x4b0 [ 3333.360223][T14424] v4l_create_bufs+0x152/0x230 [ 3333.364996][T14424] __video_do_ioctl+0x805/0xd80 [ 3333.369835][T14424] ? v4l_s_fmt+0xb20/0xb20 [ 3333.374233][T14424] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3333.380455][T14424] ? _copy_from_user+0xdd/0x150 [ 3333.385291][T14424] video_usercopy+0x460/0x16b0 [ 3333.390075][T14424] ? v4l_s_fmt+0xb20/0xb20 [ 3333.394493][T14424] ? v4l_enumstd+0x70/0x70 [ 3333.398901][T14424] ? __fget+0x473/0x710 [ 3333.403036][T14424] ? find_held_lock+0x35/0x120 [ 3333.407779][T14424] ? __fget+0x473/0x710 [ 3333.411918][T14424] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3333.418150][T14424] ? lock_downgrade+0xbe0/0xbe0 [ 3333.422977][T14424] ? kasan_check_read+0x11/0x20 [ 3333.427811][T14424] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3333.433774][T14424] ? rcu_read_unlock_special+0x380/0x380 [ 3333.439395][T14424] ? __fget+0x49a/0x710 [ 3333.443534][T14424] ? video_usercopy+0x16b0/0x16b0 [ 3333.448581][T14424] video_ioctl2+0x2d/0x35 [ 3333.452893][T14424] v4l2_ioctl+0x156/0x1b0 [ 3333.457207][T14424] ? video_devdata+0xa0/0xa0 [ 3333.461777][T14424] do_vfs_ioctl+0x107b/0x17d0 [ 3333.466440][T14424] ? ioctl_preallocate+0x2f0/0x2f0 [ 3333.471542][T14424] ? __fget_light+0x2db/0x420 [ 3333.476226][T14424] ? fget_raw+0x20/0x20 [ 3333.480362][T14424] ? put_timespec64+0x115/0x1b0 [ 3333.485194][T14424] ? nsecs_to_jiffies+0x30/0x30 [ 3333.490028][T14424] ? do_syscall_64+0x8c/0x800 [ 3333.494732][T14424] ? do_syscall_64+0x8c/0x800 [ 3333.499413][T14424] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3333.504716][T14424] ? security_file_ioctl+0x93/0xc0 [ 3333.509829][T14424] ksys_ioctl+0xab/0xd0 [ 3333.513971][T14424] __x64_sys_ioctl+0x73/0xb0 [ 3333.518542][T14424] do_syscall_64+0x1a3/0x800 [ 3333.523141][T14424] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3333.528767][T14424] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3333.534488][T14424] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3333.540033][T14424] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3333.545911][T14424] RIP: 0033:0x457ec9 [ 3333.549800][T14424] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 3333.569399][T14424] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3333.577788][T14424] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3333.585741][T14424] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 20:33:50 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="6e6f6c61546765696f2c646973636172642c00a34bcdbe82744b17e7265710f349207cd7cae2ab559ff1dc609d46f0b7eb68f379e8b6b13582343da5f82a93eef5d02ea5146e7aea775870d0aa11aa8460c2b39e6f31d1cfd5f79a641f22c301367345ef748d9ef34162cac8f6d9114db6f200bafc915c0f3541b1c2343cd80acdfb928e0f1e9c1a8ee0c2b4c2a9fa45c967c1f03ae187b9ea4e293a92aefcdc2a51653b89ffd97906bfb0a67ace28cd4e15fa64c15f544add0a12ade84b937d9eeea73f5125aba857bac1"]) r2 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x1, 0x2) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000300)={{{@in=@empty, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@initdev}}, &(0x7f0000000400)=0xe8) r4 = getegid() fchownat(r1, &(0x7f0000000100)='./file0/file0\x00', r3, r4, 0x0) syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x7, 0x100c2) r5 = dup(r0) write$binfmt_misc(r0, &(0x7f0000000280)={'syz0', "ce7e222db1fea23a037e1fdb7130878a78d7fa6442a438ec4b9a04809b0afe73b622089e56ab4f3c04a890a1ef0facc3bc9f6371daff03da5fe0cb446c9a4c9fcaf9724bb11884cebbc350b78910fb080079bfa1413843834318e28126c4b90dfdc517843fdafa4de550dacf2020db"}, 0x73) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x3) [ 3333.593695][T14424] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3333.601647][T14424] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3333.609599][T14424] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3333.629263][T14424] Mem-Info: [ 3333.632523][T14424] active_anon:118455 inactive_anon:203 isolated_anon:0 [ 3333.632523][T14424] active_file:623 inactive_file:2592 isolated_file:0 [ 3333.632523][T14424] unevictable:0 dirty:65 writeback:0 unstable:0 [ 3333.632523][T14424] slab_reclaimable:15516 slab_unreclaimable:109151 [ 3333.632523][T14424] mapped:51155 shmem:244 pagetables:1657 bounce:0 [ 3333.632523][T14424] free:1278275 free_pcp:1254 free_cma:0 [ 3333.670874][T14424] Node 0 active_anon:473812kB inactive_anon:812kB active_file:2488kB inactive_file:11068kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:205120kB dirty:260kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 169984kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3333.701243][T14424] Node 1 active_anon:8kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3333.729601][T14424] Node 0 DMA free:15908kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:33:50 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8c, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3333.791147][T14434] XFS (loop2): unknown mount option [nolaTgeio]. [ 3333.819043][T14435] kvm [14430]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x187 [ 3333.840680][T14424] lowmem_reserve[]: 0 2535 2537 2537 [ 3333.852497][T14424] Node 0 DMA32 free:1308568kB min:36080kB low:45100kB high:54120kB active_anon:482484kB inactive_anon:812kB active_file:2688kB inactive_file:11568kB unevictable:0kB writepending:260kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:8192kB pagetables:6924kB bounce:0kB free_pcp:1548kB local_pcp:880kB free_cma:0kB [ 3333.853778][T14441] kvm [14430]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x187 [ 3333.883670][T14424] lowmem_reserve[]: 0 0 2 2 [ 3333.913452][T14424] Node 0 Normal free:1508kB min:2076kB low:2080kB high:2084kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3333.972762][T14424] lowmem_reserve[]: 0 0 0 0 20:33:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x1a0]}) [ 3334.014670][T14424] Node 1 Normal free:3774956kB min:53780kB low:67224kB high:80668kB active_anon:8kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:2636kB local_pcp:1500kB free_cma:0kB [ 3334.050227][T14424] lowmem_reserve[]: 0 0 0 0 20:33:50 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000ec0)={[{@nolargeio='nolargeio'}, {@discard='discard'}]}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) [ 3334.054766][T14424] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (UM) = 15908kB 20:33:50 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcc, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 20:33:50 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000201000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3334.179334][T14424] Node 0 DMA32: 4966*4kB (UME) 7902*8kB (UME) 4767*16kB (UME) 2868*32kB (UME) 1118*64kB (UME) 423*128kB (UME) 153*256kB (UM) 71*512kB (UME) 51*1024kB (U) 72*2048kB (U) 161*4096kB (U) = 1311480kB [ 3334.243996][T14424] Node 0 Normal: 15*4kB (UM) 17*8kB (UM) 8*16kB (UM) 3*32kB (UM) 1*64kB (M) 2*128kB (UM) 1*256kB (M) 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 1508kB [ 3334.270982][T14476] kvm [14456]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x1a0 20:33:50 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfa, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3334.287344][T14424] Node 1 Normal: 106*4kB (UM) 282*8kB (UME) 310*16kB (UME) 102*32kB (UME) 64*64kB (UME) 35*128kB (U) 48*256kB (UME) 47*512kB (UME) 50*1024kB (UME) 43*2048kB (U) 874*4096kB (UM) = 3775000kB [ 3334.306761][T14424] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3334.316990][T14424] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3334.331540][T14424] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3334.343929][T14476] kvm [14456]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x1a0 [ 3334.369356][T14424] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 20:33:50 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x164, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3334.392022][T14424] 3992 total pagecache pages 20:33:51 executing program 0: syz_mount_image$btrfs(&(0x7f0000000080)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000500)="8da4363a00000000000000000000004d01000000000000000000000000000000ecf6f2a2299748aeb81e1b00920efd9a000001000000000301000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, 0x0) [ 3334.417266][T14424] 0 pages in swap cache [ 3334.430193][T14462] XFS (loop2): Invalid superblock magic number [ 3334.452023][T14424] Swap cache stats: add 0, delete 0, find 0/0 [ 3334.479463][T14424] Free swap = 0kB [ 3334.501810][T14424] Total swap = 0kB 20:33:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000240)={0x7c, 0x0, [0x11, 0x5, 0xc1, 0x1c0]}) 20:33:51 executing program 3: open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e0, @perf_bp={&(0x7f0000000000), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) [ 3334.529262][T14424] 1965979 pages RAM [ 3334.533086][T14424] 0 pages HighMem/MovableOnly [ 3334.537752][T14424] 343989 pages reserved [ 3334.555410][T14424] 0 pages cma reserved [ 3334.721916][T14507] kvm [14503]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x1c0 [ 3334.796118][T14507] kvm [14503]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc1 data 0x1c0 [ 3339.868669][ T8030] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3339.879537][ T8030] CPU: 1 PID: 8030 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3339.888133][ T8030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3339.898184][ T8030] Call Trace: [ 3339.901485][ T8030] dump_stack+0x1db/0x2d0 [ 3339.905829][ T8030] ? dump_stack_print_info.cold+0x20/0x20 [ 3339.911552][ T8030] ? __lock_acquire+0x572/0x4a10 [ 3339.916516][ T8030] dump_header+0x1e6/0x11a6 [ 3339.921034][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3339.926683][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3339.931454][ T8030] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3339.937104][ T8030] ? ___ratelimit+0x37c/0x686 [ 3339.941795][ T8030] ? mark_held_locks+0xb1/0x100 [ 3339.946658][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3339.952472][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3339.958283][ T8030] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3339.963595][ T8030] ? trace_hardirqs_on+0xbd/0x310 [ 3339.968625][ T8030] ? kasan_check_read+0x11/0x20 [ 3339.973499][ T8030] ? ___ratelimit+0x37c/0x686 [ 3339.978179][ T8030] ? trace_hardirqs_off_caller+0x300/0x300 [ 3339.983987][ T8030] ? do_raw_spin_trylock+0x270/0x270 [ 3339.989278][ T8030] ? trace_hardirqs_on_caller+0x310/0x310 [ 3339.995011][ T8030] ? lock_acquire+0x1db/0x570 [ 3339.999703][ T8030] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3340.005511][ T8030] ? ___ratelimit+0xac/0x686 [ 3340.010107][ T8030] ? idr_get_free+0xee0/0xee0 [ 3340.014789][ T8030] ? kasan_check_read+0x11/0x20 [ 3340.019646][ T8030] ? do_raw_spin_unlock+0xa0/0x330 [ 3340.024773][ T8030] oom_kill_process.cold+0x10/0x9ca [ 3340.029984][ T8030] ? _raw_spin_unlock+0x2d/0x50 [ 3340.034837][ T8030] ? oom_badness+0xca/0xa50 [ 3340.039347][ T8030] ? out_of_memory+0xc8f/0x1420 [ 3340.044204][ T8030] ? find_held_lock+0x35/0x120 [ 3340.048973][ T8030] ? oom_evaluate_task+0x540/0x540 [ 3340.054115][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3340.060363][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3340.065211][ T8030] ? kasan_check_read+0x11/0x20 [ 3340.070076][ T8030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3340.076084][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3340.081718][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3340.087963][ T8030] ? oom_evaluate_task+0x305/0x540 [ 3340.093098][ T8030] out_of_memory+0x885/0x1420 [ 3340.097803][ T8030] ? oom_killer_disable+0x340/0x340 [ 3340.103007][ T8030] ? mutex_trylock+0x248/0x2d0 [ 3340.107781][ T8030] ? __ww_mutex_check_waiters+0x160/0x160 [ 3340.113513][ T8030] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3340.119092][ T8030] ? warn_alloc+0x110/0x110 [ 3340.123603][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3340.129238][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3340.134877][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3340.140604][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3340.146258][ T8030] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3340.152092][ T8030] ? ___might_sleep+0x1e7/0x310 [ 3340.156960][ T8030] ? arch_local_save_flags+0x50/0x50 [ 3340.162259][ T8030] ? lock_release+0xc40/0xc40 [ 3340.166950][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3340.171802][ T8030] ? kasan_check_read+0x11/0x20 [ 3340.176667][ T8030] __alloc_pages_nodemask+0xa37/0xdc0 [ 3340.182050][ T8030] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3340.187803][ T8030] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3340.194055][ T8030] alloc_pages_current+0x107/0x210 [ 3340.199184][ T8030] __page_cache_alloc+0x3cd/0x620 [ 3340.204214][ T8030] ? alloc_pages_current+0x10f/0x210 [ 3340.209502][ T8030] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3340.214876][ T8030] ? __page_cache_alloc+0x19c/0x620 [ 3340.220081][ T8030] ? find_held_lock+0x60/0x120 [ 3340.224856][ T8030] pagecache_get_page+0x36f/0x1070 [ 3340.229981][ T8030] ? find_lock_entry+0x8b0/0x8b0 [ 3340.234925][ T8030] ? __do_page_cache_readahead+0x64b/0x800 [ 3340.240756][ T8030] ? read_pages+0x650/0x650 [ 3340.245277][ T8030] ? kasan_check_write+0x14/0x20 [ 3340.250238][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3340.255108][ T8030] ? kasan_check_read+0x11/0x20 [ 3340.259959][ T8030] ? up_read_non_owner+0x100/0x100 [ 3340.265105][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3340.270745][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3340.276997][ T8030] filemap_fault+0xb6a/0x2a30 [ 3340.281693][ T8030] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3340.287505][ T8030] ? __lock_is_held+0xb6/0x140 [ 3340.292285][ T8030] ? lock_acquire+0x1db/0x570 [ 3340.296964][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3340.301998][ T8030] ? lock_release+0xc40/0xc40 [ 3340.306678][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3340.311459][ T8030] ? down_read+0x8d/0x120 [ 3340.315790][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3340.320818][ T8030] ? __down_interruptible+0x740/0x740 [ 3340.326193][ T8030] ? __lock_acquire+0x572/0x4a10 [ 3340.331132][ T8030] ? find_held_lock+0x35/0x120 [ 3340.335906][ T8030] ext4_filemap_fault+0x83/0xaf [ 3340.340763][ T8030] __do_fault+0x176/0x7b0 [ 3340.345100][ T8030] ? mark_held_locks+0x100/0x100 [ 3340.350039][ T8030] ? do_page_mkwrite+0x740/0x740 [ 3340.354984][ T8030] ? pmd_val+0x85/0x100 [ 3340.359141][ T8030] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3340.364863][ T8030] ? pmd_val+0x85/0x100 [ 3340.369022][ T8030] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3340.374749][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3340.380998][ T8030] __handle_mm_fault+0x377c/0x5610 [ 3340.386152][ T8030] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3340.391699][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3340.397421][ T8030] ? handle_mm_fault+0x3cc/0xc80 [ 3340.402565][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3340.407420][ T8030] ? kasan_check_read+0x11/0x20 [ 3340.412273][ T8030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3340.418262][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3340.423897][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3340.430155][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3340.435897][ T8030] handle_mm_fault+0x4ec/0xc80 [ 3340.440668][ T8030] ? __handle_mm_fault+0x5610/0x5610 [ 3340.445970][ T8030] __do_page_fault+0x5ef/0xda0 [ 3340.450738][ T8030] ? do_futex+0x2910/0x2910 [ 3340.455258][ T8030] do_page_fault+0xe6/0x7d8 [ 3340.459765][ T8030] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3340.465404][ T8030] ? vmalloc_sync_all+0x30/0x30 [ 3340.470258][ T8030] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3340.476415][ T8030] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3340.482052][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3340.488305][ T8030] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3340.494027][ T8030] ? page_fault+0x8/0x30 [ 3340.498274][ T8030] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3340.503823][ T8030] ? page_fault+0x8/0x30 [ 3340.508074][ T8030] page_fault+0x1e/0x30 [ 3340.512229][ T8030] RIP: 0033:0x4333dd [ 3340.516137][ T8030] Code: Bad RIP value. [ 3340.520217][ T8030] RSP: 002b:000000c420033df8 EFLAGS: 00010206 [ 3340.526279][ T8030] RAX: 0000000001639d10 RBX: 0000000000000000 RCX: 0000000000000000 [ 3340.534250][ T8030] RDX: 0000000001639d10 RSI: 0000000000000001 RDI: 000000c420033f01 [ 3340.542223][ T8030] RBP: 000000c420033e20 R08: 000000c420000180 R09: 0000000000000008 [ 3340.550195][ T8030] R10: 0000000000000000 R11: 0000000000000d0b R12: 000000c4335abb78 [ 3340.558171][ T8030] R13: 000000c4335abb78 R14: 0000000000000000 R15: 0000000000000000 [ 3340.589383][ T8030] Mem-Info: [ 3340.592539][ T8030] active_anon:118463 inactive_anon:203 isolated_anon:0 [ 3340.592539][ T8030] active_file:11 inactive_file:22 isolated_file:0 [ 3340.592539][ T8030] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3340.592539][ T8030] slab_reclaimable:15509 slab_unreclaimable:109188 [ 3340.592539][ T8030] mapped:49154 shmem:244 pagetables:1657 bounce:0 [ 3340.592539][ T8030] free:25078 free_pcp:0 free_cma:0 [ 3340.705004][ T8030] Node 0 active_anon:473836kB inactive_anon:812kB active_file:152kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 169984kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3340.791867][ T8030] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3340.901754][ T8030] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3340.988121][ T8030] lowmem_reserve[]: 0 2535 2537 2537 [ 3341.007169][ T8030] Node 0 DMA32 free:35884kB min:36080kB low:45100kB high:54120kB active_anon:473836kB inactive_anon:812kB active_file:156kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7712kB pagetables:6628kB bounce:0kB free_pcp:248kB local_pcp:0kB free_cma:0kB [ 3341.052207][ T8030] lowmem_reserve[]: 0 0 2 2 [ 3341.056742][ T8030] Node 0 Normal free:28kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:16kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3341.151208][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3341.155761][ T8030] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:12kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3341.258653][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3341.279344][ T8030] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3341.314750][ T8030] Node 0 DMA32: 553*4kB (ME) 1541*8kB (UME) 702*16kB (UM) 278*32kB (UM) 19*64kB (UM) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35884kB [ 3341.351371][ T8030] Node 0 Normal: 1*4kB (U) 1*8kB (U) 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 28kB [ 3341.390197][ T8030] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3341.444997][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3341.465238][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3341.491600][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3341.517709][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3341.553994][ T8030] 277 total pagecache pages [ 3341.558524][ T8030] 0 pages in swap cache [ 3341.569641][ T8030] Swap cache stats: add 0, delete 0, find 0/0 [ 3341.575710][ T8030] Free swap = 0kB [ 3341.609608][ T8030] Total swap = 0kB [ 3341.613339][ T8030] 1965979 pages RAM [ 3341.638700][ T8030] 0 pages HighMem/MovableOnly [ 3341.643455][ T8030] 343989 pages reserved [ 3341.673145][ T8030] 0 pages cma reserved [ 3341.687104][ T8030] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=10932,uid=0 [ 3341.749547][ T8030] Out of memory: Kill process 10932 (syz-executor4) score 1005 or sacrifice child [ 3341.758849][ T8030] Killed process 10932 (syz-executor4) total-vm:70664kB, anon-rss:4252kB, file-rss:32640kB, shmem-rss:0kB [ 3341.797060][ T8028] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3341.849154][ T8028] CPU: 1 PID: 8028 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3341.857763][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3341.867816][ T8028] Call Trace: [ 3341.871130][ T8028] dump_stack+0x1db/0x2d0 [ 3341.875480][ T8028] ? dump_stack_print_info.cold+0x20/0x20 [ 3341.881198][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3341.886151][ T8028] dump_header+0x1e6/0x11a6 [ 3341.890661][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3341.896300][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3341.901080][ T8028] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3341.906719][ T8028] ? ___ratelimit+0x37c/0x686 [ 3341.911407][ T8028] ? mark_held_locks+0xb1/0x100 [ 3341.916266][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3341.922082][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3341.927892][ T8028] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3341.933179][ T8028] ? trace_hardirqs_on+0xbd/0x310 [ 3341.938207][ T8028] ? kasan_check_read+0x11/0x20 [ 3341.943063][ T8028] ? ___ratelimit+0x37c/0x686 [ 3341.947757][ T8028] ? trace_hardirqs_off_caller+0x300/0x300 [ 3341.953589][ T8028] ? do_raw_spin_trylock+0x270/0x270 [ 3341.958881][ T8028] ? trace_hardirqs_on_caller+0x310/0x310 [ 3341.964600][ T8028] ? lock_acquire+0x1db/0x570 [ 3341.969289][ T8028] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3341.975101][ T8028] ? ___ratelimit+0xac/0x686 [ 3341.979697][ T8028] ? idr_get_free+0xee0/0xee0 [ 3341.984375][ T8028] ? kasan_check_read+0x11/0x20 [ 3341.989229][ T8028] ? do_raw_spin_unlock+0xa0/0x330 [ 3341.994357][ T8028] oom_kill_process.cold+0x10/0x9ca [ 3341.999575][ T8028] ? _raw_spin_unlock+0x2d/0x50 [ 3342.004432][ T8028] ? oom_badness+0xca/0xa50 [ 3342.008942][ T8028] ? out_of_memory+0xc8f/0x1420 [ 3342.013796][ T8028] ? find_held_lock+0x35/0x120 [ 3342.018576][ T8028] ? oom_evaluate_task+0x540/0x540 [ 3342.023693][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3342.029941][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3342.034794][ T8028] ? kasan_check_read+0x11/0x20 [ 3342.039651][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3342.045635][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3342.051273][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3342.057524][ T8028] ? oom_evaluate_task+0x305/0x540 [ 3342.062657][ T8028] out_of_memory+0x885/0x1420 [ 3342.067355][ T8028] ? oom_killer_disable+0x340/0x340 [ 3342.072568][ T8028] ? mutex_trylock+0x248/0x2d0 [ 3342.077343][ T8028] ? __ww_mutex_check_waiters+0x160/0x160 [ 3342.083104][ T8028] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3342.088679][ T8028] ? warn_alloc+0x110/0x110 [ 3342.093188][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3342.098824][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3342.104457][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3342.110189][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3342.115845][ T8028] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3342.121657][ T8028] ? ___might_sleep+0x1e7/0x310 [ 3342.126513][ T8028] ? arch_local_save_flags+0x50/0x50 [ 3342.131799][ T8028] ? lock_release+0xc40/0xc40 [ 3342.136478][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3342.141336][ T8028] ? kasan_check_read+0x11/0x20 [ 3342.146208][ T8028] __alloc_pages_nodemask+0xa37/0xdc0 [ 3342.151599][ T8028] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3342.157345][ T8028] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3342.163609][ T8028] alloc_pages_current+0x107/0x210 [ 3342.168728][ T8028] __page_cache_alloc+0x3cd/0x620 [ 3342.173758][ T8028] ? alloc_pages_current+0x10f/0x210 [ 3342.179047][ T8028] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3342.184428][ T8028] ? __page_cache_alloc+0x19c/0x620 [ 3342.189628][ T8028] ? find_held_lock+0x60/0x120 [ 3342.194399][ T8028] pagecache_get_page+0x36f/0x1070 [ 3342.199522][ T8028] ? find_lock_entry+0x8b0/0x8b0 [ 3342.204475][ T8028] ? __do_page_cache_readahead+0x64b/0x800 [ 3342.210299][ T8028] ? read_pages+0x650/0x650 [ 3342.214805][ T8028] ? kasan_check_write+0x14/0x20 [ 3342.219743][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3342.224600][ T8028] ? kasan_check_read+0x11/0x20 [ 3342.229454][ T8028] ? up_read_non_owner+0x100/0x100 [ 3342.234582][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3342.240221][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3342.246472][ T8028] filemap_fault+0xb6a/0x2a30 [ 3342.251161][ T8028] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3342.256978][ T8028] ? __lock_is_held+0xb6/0x140 [ 3342.261749][ T8028] ? lock_acquire+0x1db/0x570 [ 3342.266427][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3342.271461][ T8028] ? lock_release+0xc40/0xc40 [ 3342.276139][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3342.280915][ T8028] ? down_read+0x8d/0x120 [ 3342.285244][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3342.290271][ T8028] ? __down_interruptible+0x740/0x740 [ 3342.295645][ T8028] ? __handle_mm_fault+0x4361/0x5610 [ 3342.300929][ T8028] ? find_held_lock+0x35/0x120 [ 3342.305701][ T8028] ext4_filemap_fault+0x83/0xaf [ 3342.310568][ T8028] __do_fault+0x176/0x7b0 [ 3342.314904][ T8028] ? do_page_mkwrite+0x740/0x740 [ 3342.319849][ T8028] ? do_raw_spin_unlock+0xa0/0x330 [ 3342.324964][ T8028] ? do_raw_spin_trylock+0x270/0x270 [ 3342.330251][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3342.335984][ T8028] __handle_mm_fault+0x377c/0x5610 [ 3342.341117][ T8028] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3342.346659][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3342.352358][ T8028] ? handle_mm_fault+0x3cc/0xc80 [ 3342.357282][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3342.362113][ T8028] ? kasan_check_read+0x11/0x20 [ 3342.366942][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3342.372902][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3342.378518][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3342.384741][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3342.390446][ T8028] handle_mm_fault+0x4ec/0xc80 [ 3342.395228][ T8028] ? __handle_mm_fault+0x5610/0x5610 [ 3342.400493][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3342.406711][ T8028] ? vmacache_update+0x114/0x140 [ 3342.411634][ T8028] __do_page_fault+0x5ef/0xda0 [ 3342.416376][ T8028] ? do_futex+0x2910/0x2910 [ 3342.420859][ T8028] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3342.426907][ T8028] do_page_fault+0xe6/0x7d8 [ 3342.431391][ T8028] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3342.437003][ T8028] ? vmalloc_sync_all+0x30/0x30 [ 3342.441847][ T8028] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3342.448001][ T8028] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3342.453614][ T8028] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3342.459312][ T8028] ? page_fault+0x8/0x30 [ 3342.463535][ T8028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3342.469093][ T8028] ? page_fault+0x8/0x30 [ 3342.473338][ T8028] page_fault+0x1e/0x30 [ 3342.477470][ T8028] RIP: 0033:0x45d911 [ 3342.481356][ T8028] Code: Bad RIP value. [ 3342.485421][ T8028] RSP: 002b:000000c420035f18 EFLAGS: 00010246 [ 3342.491465][ T8028] RAX: 0000000000000000 RBX: 0000000000000015 RCX: 000000000045d911 [ 3342.499413][ T8028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 3342.507362][ T8028] RBP: 000000c420035f28 R08: 000000c420035f18 R09: 0000000000000000 [ 3342.515310][ T8028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000430120 [ 3342.523262][ T8028] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000000 [ 3342.531594][ T8028] Mem-Info: [ 3342.534822][ T8028] active_anon:117414 inactive_anon:203 isolated_anon:0 [ 3342.534822][ T8028] active_file:0 inactive_file:61 isolated_file:0 [ 3342.534822][ T8028] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3342.534822][ T8028] slab_reclaimable:15508 slab_unreclaimable:109185 [ 3342.534822][ T8028] mapped:49164 shmem:244 pagetables:1655 bounce:0 [ 3342.534822][ T8028] free:25154 free_pcp:93 free_cma:0 [ 3342.574834][ T8028] Node 0 active_anon:469640kB inactive_anon:812kB active_file:120kB inactive_file:124kB unevictable:0kB isolated(anon):0kB isolated(file):116kB mapped:196656kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 165888kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3342.603703][ T8028] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:36kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3342.630414][ T8028] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3342.657425][ T8028] lowmem_reserve[]: 0 2535 2537 2537 [ 3342.663889][ T8028] Node 0 DMA32 free:36356kB min:36080kB low:45100kB high:54120kB active_anon:469640kB inactive_anon:812kB active_file:116kB inactive_file:112kB unevictable:0kB writepending:4kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7680kB pagetables:6528kB bounce:0kB free_pcp:172kB local_pcp:92kB free_cma:0kB [ 3342.698032][ T8028] lowmem_reserve[]: 0 0 2 2 [ 3342.704665][ T8028] Node 0 Normal free:24kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3342.731632][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3342.736251][ T8028] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3342.764376][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3342.768892][ T8028] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3342.781497][ T8028] Node 0 DMA32: 506*4kB (UME) 1534*8kB (UME) 695*16kB (UM) 279*32kB (UM) 19*64kB (UM) 2*128kB (U) 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36328kB [ 3342.797177][ T8028] Node 0 Normal: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 3342.811172][ T8028] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3342.828514][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3342.838267][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3342.847710][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3342.857311][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3342.866660][ T8028] 349 total pagecache pages [ 3342.871305][ T8028] 0 pages in swap cache [ 3342.875464][ T8028] Swap cache stats: add 0, delete 0, find 0/0 [ 3342.881680][ T8028] Free swap = 0kB [ 3342.885411][ T8028] Total swap = 0kB [ 3342.889292][ T8028] 1965979 pages RAM [ 3342.893126][ T8028] 0 pages HighMem/MovableOnly [ 3342.897809][ T8028] 343989 pages reserved [ 3342.902004][ T8028] 0 pages cma reserved [ 3342.906072][ T8028] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=24214,uid=0 [ 3342.920612][ T8028] Out of memory: Kill process 24214 (syz-executor4) score 1005 or sacrifice child [ 3342.929915][ T8028] Killed process 24214 (syz-executor4) total-vm:70664kB, anon-rss:4252kB, file-rss:32640kB, shmem-rss:0kB [ 3342.942966][ T1042] oom_reaper: reaped process 24214 (syz-executor4), now anon-rss:0kB, file-rss:32768kB, shmem-rss:0kB [ 3343.760625][ T8039] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3343.814447][ T8039] CPU: 0 PID: 8039 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3343.823067][ T8039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3343.833119][ T8039] Call Trace: [ 3343.836422][ T8039] dump_stack+0x1db/0x2d0 [ 3343.840763][ T8039] ? dump_stack_print_info.cold+0x20/0x20 [ 3343.846489][ T8039] ? __lock_acquire+0x572/0x4a10 [ 3343.851449][ T8039] dump_header+0x1e6/0x11a6 [ 3343.855956][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3343.861606][ T8039] ? print_usage_bug+0xd0/0xd0 [ 3343.866381][ T8039] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3343.872016][ T8039] ? ___ratelimit+0x37c/0x686 [ 3343.876701][ T8039] ? mark_held_locks+0xb1/0x100 [ 3343.881579][ T8039] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3343.887391][ T8039] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3343.893199][ T8039] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3343.898487][ T8039] ? trace_hardirqs_on+0xbd/0x310 [ 3343.903517][ T8039] ? kasan_check_read+0x11/0x20 [ 3343.908376][ T8039] ? ___ratelimit+0x37c/0x686 [ 3343.913054][ T8039] ? trace_hardirqs_off_caller+0x300/0x300 [ 3343.918864][ T8039] ? do_raw_spin_trylock+0x270/0x270 [ 3343.924151][ T8039] ? trace_hardirqs_on_caller+0x310/0x310 [ 3343.929872][ T8039] ? lock_acquire+0x1db/0x570 [ 3343.934572][ T8039] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3343.940396][ T8039] ? ___ratelimit+0xac/0x686 [ 3343.944991][ T8039] ? idr_get_free+0xee0/0xee0 [ 3343.949668][ T8039] ? kasan_check_read+0x11/0x20 [ 3343.954535][ T8039] ? do_raw_spin_unlock+0xa0/0x330 [ 3343.959677][ T8039] oom_kill_process.cold+0x10/0x9ca [ 3343.964881][ T8039] ? _raw_spin_unlock+0x2d/0x50 [ 3343.969737][ T8039] ? oom_badness+0xca/0xa50 [ 3343.974248][ T8039] ? out_of_memory+0xc8f/0x1420 [ 3343.979099][ T8039] ? find_held_lock+0x35/0x120 [ 3343.983872][ T8039] ? oom_evaluate_task+0x540/0x540 [ 3343.988987][ T8039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3343.995235][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3344.000089][ T8039] ? kasan_check_read+0x11/0x20 [ 3344.004947][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3344.010977][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3344.016613][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3344.022856][ T8039] ? oom_evaluate_task+0x305/0x540 [ 3344.027978][ T8039] out_of_memory+0x885/0x1420 [ 3344.032671][ T8039] ? oom_killer_disable+0x340/0x340 [ 3344.037872][ T8039] ? mutex_trylock+0x248/0x2d0 [ 3344.042644][ T8039] ? __ww_mutex_check_waiters+0x160/0x160 [ 3344.048378][ T8039] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3344.053963][ T8039] ? warn_alloc+0x110/0x110 [ 3344.058497][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3344.064182][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3344.069820][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3344.075542][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3344.081216][ T8039] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3344.087026][ T8039] ? ___might_sleep+0x1e7/0x310 [ 3344.091880][ T8039] ? arch_local_save_flags+0x50/0x50 [ 3344.097166][ T8039] ? lock_release+0xc40/0xc40 [ 3344.101849][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3344.106701][ T8039] ? kasan_check_read+0x11/0x20 [ 3344.111585][ T8039] __alloc_pages_nodemask+0xa37/0xdc0 [ 3344.116970][ T8039] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3344.122714][ T8039] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3344.128961][ T8039] alloc_pages_current+0x107/0x210 [ 3344.134115][ T8039] __page_cache_alloc+0x3cd/0x620 [ 3344.139146][ T8039] ? alloc_pages_current+0x10f/0x210 [ 3344.144449][ T8039] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3344.149837][ T8039] ? __page_cache_alloc+0x19c/0x620 [ 3344.155063][ T8039] ? find_held_lock+0x60/0x120 [ 3344.159840][ T8039] pagecache_get_page+0x36f/0x1070 [ 3344.164959][ T8039] ? find_lock_entry+0x8b0/0x8b0 [ 3344.169943][ T8039] ? __do_page_cache_readahead+0x64b/0x800 [ 3344.175781][ T8039] ? read_pages+0x650/0x650 [ 3344.180284][ T8039] ? kasan_check_write+0x14/0x20 [ 3344.185223][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3344.190073][ T8039] ? kasan_check_read+0x11/0x20 [ 3344.194926][ T8039] ? up_read_non_owner+0x100/0x100 [ 3344.200041][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3344.205678][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3344.211928][ T8039] filemap_fault+0xb6a/0x2a30 [ 3344.216637][ T8039] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3344.222448][ T8039] ? __lock_is_held+0xb6/0x140 [ 3344.227222][ T8039] ? lock_acquire+0x1db/0x570 [ 3344.231900][ T8039] ? ext4_filemap_fault+0x7b/0xaf [ 3344.236928][ T8039] ? lock_release+0xc40/0xc40 [ 3344.241613][ T8039] ? print_usage_bug+0xd0/0xd0 [ 3344.246394][ T8039] ? down_read+0x8d/0x120 [ 3344.250729][ T8039] ? ext4_filemap_fault+0x7b/0xaf [ 3344.255783][ T8039] ? __down_interruptible+0x740/0x740 [ 3344.261160][ T8039] ? __lock_acquire+0x572/0x4a10 [ 3344.266113][ T8039] ? find_held_lock+0x35/0x120 [ 3344.270882][ T8039] ext4_filemap_fault+0x83/0xaf [ 3344.275737][ T8039] __do_fault+0x176/0x7b0 [ 3344.280068][ T8039] ? mark_held_locks+0x100/0x100 [ 3344.285044][ T8039] ? do_page_mkwrite+0x740/0x740 [ 3344.289978][ T8039] ? pmd_val+0x85/0x100 [ 3344.294136][ T8039] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3344.299856][ T8039] ? pmd_val+0x85/0x100 [ 3344.304017][ T8039] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3344.309741][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3344.316019][ T8039] __handle_mm_fault+0x377c/0x5610 [ 3344.321145][ T8039] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3344.326698][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3344.332423][ T8039] ? handle_mm_fault+0x3cc/0xc80 [ 3344.337395][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3344.342276][ T8039] ? kasan_check_read+0x11/0x20 [ 3344.347133][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3344.353115][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3344.358751][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3344.364993][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3344.370723][ T8039] handle_mm_fault+0x4ec/0xc80 [ 3344.375492][ T8039] ? __handle_mm_fault+0x5610/0x5610 [ 3344.380794][ T8039] __do_page_fault+0x5ef/0xda0 [ 3344.385576][ T8039] ? do_futex+0x2910/0x2910 [ 3344.390095][ T8039] do_page_fault+0xe6/0x7d8 [ 3344.394607][ T8039] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3344.400258][ T8039] ? vmalloc_sync_all+0x30/0x30 [ 3344.405112][ T8039] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3344.411270][ T8039] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3344.416905][ T8039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3344.423148][ T8039] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3344.428867][ T8039] ? page_fault+0x8/0x30 [ 3344.433116][ T8039] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3344.438705][ T8039] ? page_fault+0x8/0x30 [ 3344.442956][ T8039] page_fault+0x1e/0x30 [ 3344.447124][ T8039] RIP: 0033:0x459e00 [ 3344.451030][ T8039] Code: Bad RIP value. [ 3344.455094][ T8039] RSP: 002b:000000c4200246b8 EFLAGS: 00010206 [ 3344.461157][ T8039] RAX: 000000c4200246d0 RBX: 000000003162a7e4 RCX: 000000c420001500 [ 3344.469129][ T8039] RDX: 0000000000000000 RSI: 000000c4200246d8 RDI: 0000000000000001 [ 3344.477100][ T8039] RBP: 000000c4200246f0 R08: 00007ffdd53830b0 R09: 00007ffdd5383080 [ 3344.485084][ T8039] R10: 000000000008220a R11: 0000000000000d0e R12: 0000000000000001 [ 3344.493070][ T8039] R13: 0000000000000001 R14: 000000c420039370 R15: 000000c43680a9b0 [ 3344.502242][ T8039] Mem-Info: [ 3344.505388][ T8039] active_anon:116365 inactive_anon:203 isolated_anon:0 [ 3344.505388][ T8039] active_file:9 inactive_file:20 isolated_file:0 [ 3344.505388][ T8039] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3344.505388][ T8039] slab_reclaimable:15458 slab_unreclaimable:109015 [ 3344.505388][ T8039] mapped:49154 shmem:244 pagetables:1607 bounce:0 [ 3344.505388][ T8039] free:25026 free_pcp:0 free_cma:0 [ 3344.542475][ T8039] Node 0 active_anon:465444kB inactive_anon:812kB active_file:68kB inactive_file:52kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196620kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 161792kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3344.570777][ T8039] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3344.614984][ T8039] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3344.672436][ T8039] lowmem_reserve[]: 0 2535 2537 2537 [ 3344.677772][ T8039] Node 0 DMA32 free:35684kB min:36080kB low:45100kB high:54120kB active_anon:465444kB inactive_anon:812kB active_file:64kB inactive_file:52kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7648kB pagetables:6428kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3344.707048][ T8039] lowmem_reserve[]: 0 0 2 2 [ 3344.711583][ T8039] Node 0 Normal free:24kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3344.738294][ T8039] lowmem_reserve[]: 0 0 0 0 [ 3344.742962][ T8039] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3344.771046][ T8039] lowmem_reserve[]: 0 0 0 0 [ 3344.775568][ T8039] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3344.788127][ T8039] Node 0 DMA32: 609*4kB (ME) 1531*8kB (ME) 694*16kB (UM) 277*32kB (UM) 18*64kB (M) 1*128kB (U) 1*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36188kB [ 3344.807764][ T8039] Node 0 Normal: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 3344.820884][ T8039] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3344.837751][ T8039] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3344.847298][ T8039] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3344.856595][ T8039] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3344.866141][ T8039] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3344.875451][ T8039] 276 total pagecache pages [ 3344.879988][ T8039] 0 pages in swap cache [ 3344.884155][ T8039] Swap cache stats: add 0, delete 0, find 0/0 [ 3344.890234][ T8039] Free swap = 0kB [ 3344.893933][ T8039] Total swap = 0kB [ 3344.897629][ T8039] 1965979 pages RAM [ 3344.902362][ T8039] 0 pages HighMem/MovableOnly [ 3344.907032][ T8039] 343989 pages reserved [ 3344.911551][ T8039] 0 pages cma reserved [ 3344.915620][ T8039] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=4117,uid=0 [ 3344.930845][ T8039] Out of memory: Kill process 4117 (syz-executor4) score 1005 or sacrifice child [ 3344.940082][ T8039] Killed process 4117 (syz-executor4) total-vm:70400kB, anon-rss:4236kB, file-rss:32640kB, shmem-rss:0kB [ 3345.952685][ T8030] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3346.013318][ T8030] CPU: 0 PID: 8030 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3346.021946][ T8030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3346.031998][ T8030] Call Trace: [ 3346.035302][ T8030] dump_stack+0x1db/0x2d0 [ 3346.039641][ T8030] ? dump_stack_print_info.cold+0x20/0x20 [ 3346.045362][ T8030] ? __lock_acquire+0x572/0x4a10 [ 3346.050315][ T8030] dump_header+0x1e6/0x11a6 [ 3346.054827][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3346.060463][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3346.065233][ T8030] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3346.070870][ T8030] ? ___ratelimit+0x37c/0x686 [ 3346.075572][ T8030] ? mark_held_locks+0xb1/0x100 [ 3346.080430][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3346.086239][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3346.092072][ T8030] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3346.097377][ T8030] ? trace_hardirqs_on+0xbd/0x310 [ 3346.102408][ T8030] ? kasan_check_read+0x11/0x20 [ 3346.107259][ T8030] ? ___ratelimit+0x37c/0x686 [ 3346.111941][ T8030] ? trace_hardirqs_off_caller+0x300/0x300 [ 3346.117752][ T8030] ? do_raw_spin_trylock+0x270/0x270 [ 3346.123038][ T8030] ? trace_hardirqs_on_caller+0x310/0x310 [ 3346.128756][ T8030] ? lock_acquire+0x1db/0x570 [ 3346.133444][ T8030] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3346.139255][ T8030] ? ___ratelimit+0xac/0x686 [ 3346.143863][ T8030] ? idr_get_free+0xee0/0xee0 [ 3346.148572][ T8030] oom_kill_process.cold+0x10/0x9ca [ 3346.153781][ T8030] ? _raw_spin_unlock+0x2d/0x50 [ 3346.158644][ T8030] ? out_of_memory+0xc8f/0x1420 [ 3346.163497][ T8030] ? find_held_lock+0x35/0x120 [ 3346.168282][ T8030] ? oom_evaluate_task+0x540/0x540 [ 3346.173399][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3346.179643][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3346.184501][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3346.190151][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3346.196449][ T8030] ? oom_evaluate_task+0x305/0x540 [ 3346.201591][ T8030] out_of_memory+0x885/0x1420 [ 3346.206309][ T8030] ? oom_killer_disable+0x340/0x340 [ 3346.211512][ T8030] ? mutex_trylock+0x248/0x2d0 [ 3346.216286][ T8030] ? __ww_mutex_check_waiters+0x160/0x160 [ 3346.222019][ T8030] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3346.227632][ T8030] ? warn_alloc+0x110/0x110 [ 3346.232157][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3346.237793][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3346.243432][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3346.249169][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3346.254820][ T8030] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3346.260636][ T8030] ? ___might_sleep+0x1e7/0x310 [ 3346.265492][ T8030] ? arch_local_save_flags+0x50/0x50 [ 3346.270775][ T8030] ? lock_release+0xc40/0xc40 [ 3346.275457][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3346.280309][ T8030] ? kasan_check_read+0x11/0x20 [ 3346.285173][ T8030] __alloc_pages_nodemask+0xa37/0xdc0 [ 3346.290554][ T8030] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3346.296352][ T8030] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3346.302615][ T8030] alloc_pages_current+0x107/0x210 [ 3346.307736][ T8030] __page_cache_alloc+0x3cd/0x620 [ 3346.312770][ T8030] ? alloc_pages_current+0x10f/0x210 [ 3346.318072][ T8030] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3346.323456][ T8030] ? __page_cache_alloc+0x19c/0x620 [ 3346.328659][ T8030] ? find_held_lock+0x60/0x120 [ 3346.333448][ T8030] pagecache_get_page+0x36f/0x1070 [ 3346.339068][ T8030] ? find_lock_entry+0x8b0/0x8b0 [ 3346.344010][ T8030] ? __do_page_cache_readahead+0x64b/0x800 [ 3346.349832][ T8030] ? read_pages+0x650/0x650 [ 3346.354340][ T8030] ? kasan_check_write+0x14/0x20 [ 3346.359285][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3346.364134][ T8030] ? kasan_check_read+0x11/0x20 [ 3346.368987][ T8030] ? up_read_non_owner+0x100/0x100 [ 3346.374102][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3346.379738][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3346.385995][ T8030] filemap_fault+0xb6a/0x2a30 [ 3346.390688][ T8030] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3346.396503][ T8030] ? __lock_is_held+0xb6/0x140 [ 3346.401276][ T8030] ? lock_acquire+0x1db/0x570 [ 3346.405957][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3346.410988][ T8030] ? lock_release+0xc40/0xc40 [ 3346.415673][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3346.420450][ T8030] ? down_read+0x8d/0x120 [ 3346.424782][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3346.429813][ T8030] ? __down_interruptible+0x740/0x740 [ 3346.435187][ T8030] ? __lock_acquire+0x572/0x4a10 [ 3346.440154][ T8030] ? find_held_lock+0x35/0x120 [ 3346.444927][ T8030] ext4_filemap_fault+0x83/0xaf [ 3346.449782][ T8030] __do_fault+0x176/0x7b0 [ 3346.454112][ T8030] ? mark_held_locks+0x100/0x100 [ 3346.459066][ T8030] ? do_page_mkwrite+0x740/0x740 [ 3346.464009][ T8030] ? pmd_val+0x85/0x100 [ 3346.468168][ T8030] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3346.473886][ T8030] ? pmd_val+0x85/0x100 [ 3346.478043][ T8030] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3346.483768][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3346.490015][ T8030] __handle_mm_fault+0x377c/0x5610 [ 3346.495169][ T8030] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3346.500734][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3346.506460][ T8030] ? handle_mm_fault+0x3cc/0xc80 [ 3346.511429][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3346.516283][ T8030] ? kasan_check_read+0x11/0x20 [ 3346.521143][ T8030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3346.527131][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3346.532765][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3346.539008][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3346.544737][ T8030] handle_mm_fault+0x4ec/0xc80 [ 3346.549507][ T8030] ? __handle_mm_fault+0x5610/0x5610 [ 3346.554811][ T8030] __do_page_fault+0x5ef/0xda0 [ 3346.559592][ T8030] ? do_futex+0x2910/0x2910 [ 3346.564112][ T8030] do_page_fault+0xe6/0x7d8 [ 3346.568617][ T8030] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3346.574253][ T8030] ? vmalloc_sync_all+0x30/0x30 [ 3346.579119][ T8030] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3346.585281][ T8030] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3346.590920][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3346.597164][ T8030] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3346.602906][ T8030] ? page_fault+0x8/0x30 [ 3346.607156][ T8030] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3346.612709][ T8030] ? page_fault+0x8/0x30 [ 3346.616956][ T8030] page_fault+0x1e/0x30 [ 3346.621111][ T8030] RIP: 0033:0x40cf71 [ 3346.625020][ T8030] Code: Bad RIP value. [ 3346.629083][ T8030] RSP: 002b:000000c4335aba00 EFLAGS: 00010246 [ 3346.635151][ T8030] RAX: 00000000008316a0 RBX: 0000000000000000 RCX: 000000c42b625e60 [ 3346.643120][ T8030] RDX: 000000c4335aba10 RSI: 000000c42b625e70 RDI: 00000000008bfb76 [ 3346.651090][ T8030] RBP: 000000c4335aba70 R08: 0000000000000000 R09: 0000000000000000 [ 3346.659061][ T8030] R10: 0000000000989e08 R11: 0000000000000006 R12: 0000000000000000 [ 3346.667033][ T8030] R13: 00000000000000f2 R14: 0000000000000032 R15: 0000000000000000 [ 3348.218058][ T8030] Mem-Info: [ 3348.250265][ T8030] active_anon:115314 inactive_anon:203 isolated_anon:0 [ 3348.250265][ T8030] active_file:40 inactive_file:0 isolated_file:0 [ 3348.250265][ T8030] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3348.250265][ T8030] slab_reclaimable:15458 slab_unreclaimable:108925 [ 3348.250265][ T8030] mapped:49154 shmem:244 pagetables:1582 bounce:0 [ 3348.250265][ T8030] free:25023 free_pcp:188 free_cma:0 [ 3348.404543][ T8030] Node 0 active_anon:461240kB inactive_anon:812kB active_file:156kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 157696kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3348.538787][ T8030] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:16kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3348.639828][ T8030] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3348.757859][ T8030] lowmem_reserve[]: 0 2535 2537 2537 [ 3348.781851][ T8030] Node 0 DMA32 free:35920kB min:36080kB low:45100kB high:54120kB active_anon:461240kB inactive_anon:812kB active_file:112kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7616kB pagetables:6328kB bounce:0kB free_pcp:752kB local_pcp:256kB free_cma:0kB [ 3348.907441][ T8030] lowmem_reserve[]: 0 0 2 2 [ 3348.925829][ T8030] Node 0 Normal free:24kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:16kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3349.005421][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3349.014912][ T8030] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3349.138077][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3349.156850][ T8030] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3349.190900][ T8030] Node 0 DMA32: 552*4kB (ME) 1536*8kB (UME) 693*16kB (M) 277*32kB (UM) 19*64kB (UM) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35920kB [ 3349.236836][ T8030] Node 0 Normal: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 3349.292010][ T8030] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3349.366002][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3349.412219][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3349.465829][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3349.505920][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3349.542089][ T8030] 276 total pagecache pages [ 3349.546639][ T8030] 0 pages in swap cache [ 3349.581653][ T8030] Swap cache stats: add 0, delete 0, find 0/0 [ 3349.587747][ T8030] Free swap = 0kB [ 3349.624606][ T8030] Total swap = 0kB [ 3349.628349][ T8030] 1965979 pages RAM [ 3349.652611][ T8030] 0 pages HighMem/MovableOnly [ 3349.657304][ T8030] 343989 pages reserved [ 3349.689644][ T8030] 0 pages cma reserved [ 3349.693735][ T8030] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=24674,uid=0 [ 3349.783159][ T8030] Out of memory: Kill process 24674 (syz-executor4) score 1005 or sacrifice child [ 3349.815683][ T8030] Killed process 24674 (syz-executor4) total-vm:70400kB, anon-rss:4236kB, file-rss:32640kB, shmem-rss:0kB [ 3350.600399][ T8030] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3350.635599][ T8030] CPU: 0 PID: 8030 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3350.644236][ T8030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3350.654290][ T8030] Call Trace: [ 3350.657603][ T8030] dump_stack+0x1db/0x2d0 [ 3350.661940][ T8030] ? dump_stack_print_info.cold+0x20/0x20 [ 3350.667663][ T8030] ? __lock_acquire+0x572/0x4a10 [ 3350.672622][ T8030] dump_header+0x1e6/0x11a6 [ 3350.677127][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3350.682760][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3350.687532][ T8030] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3350.693188][ T8030] ? ___ratelimit+0x37c/0x686 [ 3350.697874][ T8030] ? mark_held_locks+0xb1/0x100 [ 3350.702737][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3350.708545][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3350.714373][ T8030] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3350.719661][ T8030] ? trace_hardirqs_on+0xbd/0x310 [ 3350.724687][ T8030] ? kasan_check_read+0x11/0x20 [ 3350.729536][ T8030] ? ___ratelimit+0x37c/0x686 [ 3350.734231][ T8030] ? trace_hardirqs_off_caller+0x300/0x300 [ 3350.740052][ T8030] ? do_raw_spin_trylock+0x270/0x270 [ 3350.745351][ T8030] ? trace_hardirqs_on_caller+0x310/0x310 [ 3350.751083][ T8030] ? lock_acquire+0x1db/0x570 [ 3350.755784][ T8030] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3350.761603][ T8030] ? ___ratelimit+0xac/0x686 [ 3350.766211][ T8030] ? idr_get_free+0xee0/0xee0 [ 3350.770900][ T8030] ? kasan_check_read+0x11/0x20 [ 3350.775757][ T8030] ? do_raw_spin_unlock+0xa0/0x330 [ 3350.780899][ T8030] oom_kill_process.cold+0x10/0x9ca [ 3350.786106][ T8030] ? _raw_spin_unlock+0x2d/0x50 [ 3350.790978][ T8030] ? oom_badness+0xca/0xa50 [ 3350.795502][ T8030] ? out_of_memory+0xc8f/0x1420 [ 3350.800357][ T8030] ? find_held_lock+0x35/0x120 [ 3350.805175][ T8030] ? oom_evaluate_task+0x540/0x540 [ 3350.810286][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3350.816536][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3350.821554][ T8030] ? kasan_check_read+0x11/0x20 [ 3350.826428][ T8030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3350.832412][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3350.838049][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3350.844290][ T8030] ? oom_evaluate_task+0x305/0x540 [ 3350.849410][ T8030] out_of_memory+0x885/0x1420 [ 3350.854100][ T8030] ? oom_killer_disable+0x340/0x340 [ 3350.859301][ T8030] ? mutex_trylock+0x248/0x2d0 [ 3350.864076][ T8030] ? __ww_mutex_check_waiters+0x160/0x160 [ 3350.869813][ T8030] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3350.875385][ T8030] ? warn_alloc+0x110/0x110 [ 3350.879892][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3350.885523][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3350.891173][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3350.896928][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3350.902595][ T8030] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3350.908408][ T8030] ? ___might_sleep+0x1e7/0x310 [ 3350.913265][ T8030] ? arch_local_save_flags+0x50/0x50 [ 3350.918572][ T8030] ? lock_release+0xc40/0xc40 [ 3350.923253][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3350.928111][ T8030] ? kasan_check_read+0x11/0x20 [ 3350.932981][ T8030] __alloc_pages_nodemask+0xa37/0xdc0 [ 3350.938370][ T8030] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3350.944113][ T8030] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3350.950367][ T8030] alloc_pages_current+0x107/0x210 [ 3350.955487][ T8030] __page_cache_alloc+0x3cd/0x620 [ 3350.960516][ T8030] ? alloc_pages_current+0x10f/0x210 [ 3350.965807][ T8030] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3350.971180][ T8030] ? __page_cache_alloc+0x19c/0x620 [ 3350.976380][ T8030] ? find_held_lock+0x60/0x120 [ 3350.981151][ T8030] pagecache_get_page+0x36f/0x1070 [ 3350.986274][ T8030] ? find_lock_entry+0x8b0/0x8b0 [ 3350.991217][ T8030] ? __do_page_cache_readahead+0x64b/0x800 [ 3350.997037][ T8030] ? read_pages+0x650/0x650 [ 3351.001545][ T8030] ? kasan_check_write+0x14/0x20 [ 3351.006499][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3351.011350][ T8030] ? kasan_check_read+0x11/0x20 [ 3351.016200][ T8030] ? up_read_non_owner+0x100/0x100 [ 3351.021317][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3351.026955][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3351.033208][ T8030] filemap_fault+0xb6a/0x2a30 [ 3351.037896][ T8030] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3351.043709][ T8030] ? __lock_is_held+0xb6/0x140 [ 3351.048479][ T8030] ? lock_acquire+0x1db/0x570 [ 3351.053157][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3351.058186][ T8030] ? lock_release+0xc40/0xc40 [ 3351.062867][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3351.067646][ T8030] ? down_read+0x8d/0x120 [ 3351.072003][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3351.077042][ T8030] ? __down_interruptible+0x740/0x740 [ 3351.082418][ T8030] ? __handle_mm_fault+0x4361/0x5610 [ 3351.087710][ T8030] ? find_held_lock+0x35/0x120 [ 3351.092481][ T8030] ext4_filemap_fault+0x83/0xaf [ 3351.097349][ T8030] __do_fault+0x176/0x7b0 [ 3351.101731][ T8030] ? do_page_mkwrite+0x740/0x740 [ 3351.106677][ T8030] ? do_raw_spin_unlock+0xa0/0x330 [ 3351.111790][ T8030] ? do_raw_spin_trylock+0x270/0x270 [ 3351.117076][ T8030] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3351.122809][ T8030] __handle_mm_fault+0x377c/0x5610 [ 3351.127934][ T8030] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3351.133480][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3351.139206][ T8030] ? handle_mm_fault+0x3cc/0xc80 [ 3351.144165][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3351.149020][ T8030] ? kasan_check_read+0x11/0x20 [ 3351.153878][ T8030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3351.159878][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3351.165512][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3351.171755][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3351.177489][ T8030] handle_mm_fault+0x4ec/0xc80 [ 3351.182263][ T8030] ? __handle_mm_fault+0x5610/0x5610 [ 3351.187582][ T8030] __do_page_fault+0x5ef/0xda0 [ 3351.192352][ T8030] ? do_futex+0x2910/0x2910 [ 3351.196885][ T8030] do_page_fault+0xe6/0x7d8 [ 3351.201392][ T8030] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3351.207029][ T8030] ? vmalloc_sync_all+0x30/0x30 [ 3351.211882][ T8030] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3351.218041][ T8030] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3351.223678][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3351.229923][ T8030] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3351.235647][ T8030] ? page_fault+0x8/0x30 [ 3351.239900][ T8030] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3351.245449][ T8030] ? page_fault+0x8/0x30 [ 3351.249693][ T8030] page_fault+0x1e/0x30 [ 3351.253846][ T8030] RIP: 0033:0x40cf71 [ 3351.257751][ T8030] Code: Bad RIP value. [ 3351.261814][ T8030] RSP: 002b:000000c4335aba00 EFLAGS: 00010246 [ 3351.267878][ T8030] RAX: 00000000008316a0 RBX: 0000000000000000 RCX: 000000c42b625e60 [ 3351.275850][ T8030] RDX: 000000c4335aba10 RSI: 000000c42b625e70 RDI: 00000000008bfb76 [ 3351.283824][ T8030] RBP: 000000c4335aba70 R08: 0000000000000000 R09: 0000000000000000 [ 3351.291797][ T8030] R10: 0000000000989e08 R11: 0000000000000006 R12: 0000000000000000 [ 3351.299767][ T8030] R13: 00000000000000f2 R14: 0000000000000032 R15: 0000000000000000 [ 3351.309602][ T8030] Mem-Info: [ 3351.312753][ T8030] active_anon:114261 inactive_anon:203 isolated_anon:0 [ 3351.312753][ T8030] active_file:22 inactive_file:4 isolated_file:0 [ 3351.312753][ T8030] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3351.312753][ T8030] slab_reclaimable:15446 slab_unreclaimable:108910 [ 3351.312753][ T8030] mapped:49171 shmem:244 pagetables:1557 bounce:0 [ 3351.312753][ T8030] free:24983 free_pcp:62 free_cma:0 [ 3351.349897][ T8030] Node 0 active_anon:457028kB inactive_anon:812kB active_file:92kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196684kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 153600kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3351.378093][ T8030] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3351.404699][ T8030] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3351.431677][ T8030] lowmem_reserve[]: 0 2535 2537 2537 [ 3351.436984][ T8030] Node 0 DMA32 free:35760kB min:36080kB low:45100kB high:54120kB active_anon:457028kB inactive_anon:812kB active_file:56kB inactive_file:132kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7584kB pagetables:6228kB bounce:0kB free_pcp:248kB local_pcp:248kB free_cma:0kB [ 3351.541462][ T8030] lowmem_reserve[]: 0 0 2 2 [ 3351.546041][ T8030] Node 0 Normal free:24kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:12kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3351.573025][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3351.577636][ T8030] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3351.606359][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3351.610915][ T8030] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3351.623509][ T8030] Node 0 DMA32: 508*4kB (UME) 1542*8kB (UME) 694*16kB (M) 276*32kB (M) 18*64kB (M) 2*128kB (U) 1*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35968kB [ 3351.638872][ T8030] Node 0 Normal: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 3351.651121][ T8030] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3351.669793][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3351.679475][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3351.689323][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3351.698870][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3351.708225][ T8030] 311 total pagecache pages [ 3351.712793][ T8030] 0 pages in swap cache [ 3351.716956][ T8030] Swap cache stats: add 0, delete 0, find 0/0 [ 3351.723084][ T8030] Free swap = 0kB [ 3351.726820][ T8030] Total swap = 0kB [ 3351.731441][ T8030] 1965979 pages RAM [ 3351.735257][ T8030] 0 pages HighMem/MovableOnly [ 3351.739976][ T8030] 343989 pages reserved [ 3351.744129][ T8030] 0 pages cma reserved [ 3351.748199][ T8030] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=27968,uid=0 [ 3351.762776][ T8030] Out of memory: Kill process 27968 (syz-executor4) score 1004 or sacrifice child [ 3351.772120][ T8030] Killed process 27968 (syz-executor4) total-vm:71324kB, anon-rss:2256kB, file-rss:32768kB, shmem-rss:0kB [ 3352.485478][ T8030] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3352.520010][ T8030] CPU: 1 PID: 8030 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3352.528631][ T8030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3352.538683][ T8030] Call Trace: [ 3352.541982][ T8030] dump_stack+0x1db/0x2d0 [ 3352.546324][ T8030] ? dump_stack_print_info.cold+0x20/0x20 [ 3352.552050][ T8030] ? __lock_acquire+0x572/0x4a10 [ 3352.557011][ T8030] dump_header+0x1e6/0x11a6 [ 3352.561521][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3352.567169][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3352.571940][ T8030] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3352.577583][ T8030] ? ___ratelimit+0x37c/0x686 [ 3352.582273][ T8030] ? mark_held_locks+0xb1/0x100 [ 3352.587132][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3352.592947][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3352.598758][ T8030] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3352.604050][ T8030] ? trace_hardirqs_on+0xbd/0x310 [ 3352.609086][ T8030] ? kasan_check_read+0x11/0x20 [ 3352.613944][ T8030] ? ___ratelimit+0x37c/0x686 [ 3352.618623][ T8030] ? trace_hardirqs_off_caller+0x300/0x300 [ 3352.624430][ T8030] ? do_raw_spin_trylock+0x270/0x270 [ 3352.629717][ T8030] ? trace_hardirqs_on_caller+0x310/0x310 [ 3352.635441][ T8030] ? lock_acquire+0x1db/0x570 [ 3352.640128][ T8030] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3352.645936][ T8030] ? ___ratelimit+0xac/0x686 [ 3352.650536][ T8030] ? idr_get_free+0xee0/0xee0 [ 3352.655230][ T8030] ? kasan_check_read+0x11/0x20 [ 3352.660093][ T8030] ? do_raw_spin_unlock+0xa0/0x330 [ 3352.665222][ T8030] oom_kill_process.cold+0x10/0x9ca [ 3352.670429][ T8030] ? _raw_spin_unlock+0x2d/0x50 [ 3352.675313][ T8030] ? oom_badness+0xca/0xa50 [ 3352.679821][ T8030] ? out_of_memory+0xc8f/0x1420 [ 3352.684679][ T8030] ? find_held_lock+0x35/0x120 [ 3352.689451][ T8030] ? oom_evaluate_task+0x540/0x540 [ 3352.694577][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3352.700828][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3352.705678][ T8030] ? kasan_check_read+0x11/0x20 [ 3352.710534][ T8030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3352.716527][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3352.722172][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3352.728417][ T8030] ? oom_evaluate_task+0x305/0x540 [ 3352.733542][ T8030] out_of_memory+0x885/0x1420 [ 3352.738248][ T8030] ? oom_killer_disable+0x340/0x340 [ 3352.743455][ T8030] ? mutex_trylock+0x248/0x2d0 [ 3352.748224][ T8030] ? __ww_mutex_check_waiters+0x160/0x160 [ 3352.753954][ T8030] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3352.759533][ T8030] ? warn_alloc+0x110/0x110 [ 3352.764052][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3352.769693][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3352.775330][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3352.781095][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3352.786749][ T8030] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3352.792570][ T8030] ? ___might_sleep+0x1e7/0x310 [ 3352.797428][ T8030] ? arch_local_save_flags+0x50/0x50 [ 3352.802713][ T8030] ? lock_release+0xc40/0xc40 [ 3352.807391][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3352.812247][ T8030] ? kasan_check_read+0x11/0x20 [ 3352.817609][ T8030] __alloc_pages_nodemask+0xa37/0xdc0 [ 3352.822993][ T8030] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3352.828740][ T8030] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3352.834995][ T8030] alloc_pages_current+0x107/0x210 [ 3352.840125][ T8030] __page_cache_alloc+0x3cd/0x620 [ 3352.845158][ T8030] ? alloc_pages_current+0x10f/0x210 [ 3352.850449][ T8030] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3352.855825][ T8030] ? __page_cache_alloc+0x19c/0x620 [ 3352.861026][ T8030] ? find_held_lock+0x60/0x120 [ 3352.865801][ T8030] pagecache_get_page+0x36f/0x1070 [ 3352.870921][ T8030] ? find_lock_entry+0x8b0/0x8b0 [ 3352.875862][ T8030] ? __do_page_cache_readahead+0x64b/0x800 [ 3352.881683][ T8030] ? read_pages+0x650/0x650 [ 3352.886188][ T8030] ? kasan_check_write+0x14/0x20 [ 3352.891131][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3352.895985][ T8030] ? kasan_check_read+0x11/0x20 [ 3352.900860][ T8030] ? up_read_non_owner+0x100/0x100 [ 3352.905978][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3352.911616][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3352.917869][ T8030] filemap_fault+0xb6a/0x2a30 [ 3352.922567][ T8030] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3352.928384][ T8030] ? __lock_is_held+0xb6/0x140 [ 3352.933160][ T8030] ? lock_acquire+0x1db/0x570 [ 3352.937842][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3352.942873][ T8030] ? lock_release+0xc40/0xc40 [ 3352.947564][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3352.952345][ T8030] ? down_read+0x8d/0x120 [ 3352.956685][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3352.961719][ T8030] ? __down_interruptible+0x740/0x740 [ 3352.967103][ T8030] ? __handle_mm_fault+0x4361/0x5610 [ 3352.972394][ T8030] ? find_held_lock+0x35/0x120 [ 3352.977166][ T8030] ext4_filemap_fault+0x83/0xaf [ 3352.982026][ T8030] __do_fault+0x176/0x7b0 [ 3352.986363][ T8030] ? do_page_mkwrite+0x740/0x740 [ 3352.991303][ T8030] ? do_raw_spin_unlock+0xa0/0x330 [ 3352.996419][ T8030] ? do_raw_spin_trylock+0x270/0x270 [ 3353.001708][ T8030] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3353.007442][ T8030] __handle_mm_fault+0x377c/0x5610 [ 3353.012572][ T8030] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3353.018121][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3353.023850][ T8030] ? handle_mm_fault+0x3cc/0xc80 [ 3353.028809][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3353.033664][ T8030] ? kasan_check_read+0x11/0x20 [ 3353.038519][ T8030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3353.044514][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3353.050149][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3353.056388][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3353.062118][ T8030] handle_mm_fault+0x4ec/0xc80 [ 3353.066892][ T8030] ? __handle_mm_fault+0x5610/0x5610 [ 3353.072193][ T8030] __do_page_fault+0x5ef/0xda0 [ 3353.076956][ T8030] ? do_futex+0x2910/0x2910 [ 3353.081475][ T8030] do_page_fault+0xe6/0x7d8 [ 3353.085980][ T8030] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3353.091617][ T8030] ? vmalloc_sync_all+0x30/0x30 [ 3353.096468][ T8030] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3353.102627][ T8030] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3353.108264][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3353.114510][ T8030] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3353.120231][ T8030] ? page_fault+0x8/0x30 [ 3353.124482][ T8030] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3353.130031][ T8030] ? page_fault+0x8/0x30 [ 3353.134283][ T8030] page_fault+0x1e/0x30 [ 3353.138440][ T8030] RIP: 0033:0x40cf71 [ 3353.142349][ T8030] Code: Bad RIP value. [ 3353.146415][ T8030] RSP: 002b:000000c4335aba00 EFLAGS: 00010246 [ 3353.152477][ T8030] RAX: 00000000008316a0 RBX: 0000000000000000 RCX: 000000c42b625e60 [ 3353.160448][ T8030] RDX: 000000c4335aba10 RSI: 000000c42b625e70 RDI: 00000000008bfb76 [ 3353.168422][ T8030] RBP: 000000c4335aba70 R08: 0000000000000000 R09: 0000000000000000 [ 3353.176393][ T8030] R10: 0000000000989e08 R11: 0000000000000006 R12: 0000000000000000 [ 3353.184366][ T8030] R13: 00000000000000f2 R14: 0000000000000032 R15: 0000000000000000 [ 3353.716088][ T8030] Mem-Info: [ 3353.742644][ T8030] active_anon:113702 inactive_anon:203 isolated_anon:0 [ 3353.742644][ T8030] active_file:45 inactive_file:0 isolated_file:0 [ 3353.742644][ T8030] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3353.742644][ T8030] slab_reclaimable:15434 slab_unreclaimable:108859 [ 3353.742644][ T8030] mapped:49154 shmem:244 pagetables:1531 bounce:0 [ 3353.742644][ T8030] free:25001 free_pcp:1 free_cma:0 [ 3353.835459][ T8030] Node 0 active_anon:454792kB inactive_anon:812kB active_file:80kB inactive_file:28kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 151552kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3353.965708][ T8030] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3354.076445][ T8030] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3354.185097][ T8030] lowmem_reserve[]: 0 2535 2537 2537 [ 3354.198107][ T8030] Node 0 DMA32 free:35836kB min:36080kB low:45100kB high:54120kB active_anon:454792kB inactive_anon:812kB active_file:68kB inactive_file:24kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7552kB pagetables:6124kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB [ 3354.315867][ T8030] lowmem_reserve[]: 0 0 2 2 [ 3354.336187][ T8030] Node 0 Normal free:20kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:16kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3354.453481][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3354.458059][ T8030] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3354.588981][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3354.605010][ T8030] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3354.638766][ T8030] Node 0 DMA32: 627*4kB (UME) 1510*8kB (UME) 686*16kB (UM) 277*32kB (UM) 18*64kB (UM) 0*128kB 1*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35836kB [ 3354.688081][ T8030] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 3354.723839][ T8030] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3354.772292][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3354.805889][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3354.837178][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3354.882285][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3354.921149][ T8030] 274 total pagecache pages [ 3354.925676][ T8030] 0 pages in swap cache [ 3354.947863][ T8030] Swap cache stats: add 0, delete 0, find 0/0 [ 3354.963958][ T8030] Free swap = 0kB [ 3354.967701][ T8030] Total swap = 0kB [ 3354.989467][ T8030] 1965979 pages RAM [ 3354.993284][ T8030] 0 pages HighMem/MovableOnly [ 3354.997959][ T8030] 343989 pages reserved [ 3355.029552][ T8030] 0 pages cma reserved [ 3355.033656][ T8030] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=2891,uid=0 [ 3355.107271][ T8030] Out of memory: Kill process 2891 (syz-executor4) score 1004 or sacrifice child [ 3355.145510][ T8030] Killed process 2891 (syz-executor4) total-vm:70664kB, anon-rss:2204kB, file-rss:32768kB, shmem-rss:0kB [ 3356.116054][ T7958] cron invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3356.173651][ T7958] CPU: 1 PID: 7958 Comm: cron Not tainted 5.0.0-rc1-next-20190110 #9 [ 3356.181753][ T7958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3356.191805][ T7958] Call Trace: [ 3356.195111][ T7958] dump_stack+0x1db/0x2d0 [ 3356.199453][ T7958] ? dump_stack_print_info.cold+0x20/0x20 [ 3356.205178][ T7958] ? __lock_acquire+0x572/0x4a10 [ 3356.210131][ T7958] dump_header+0x1e6/0x11a6 [ 3356.214642][ T7958] ? add_lock_to_list.isra.0+0x450/0x450 [ 3356.220283][ T7958] ? print_usage_bug+0xd0/0xd0 [ 3356.225057][ T7958] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3356.230704][ T7958] ? ___ratelimit+0x37c/0x686 [ 3356.235397][ T7958] ? mark_held_locks+0xb1/0x100 [ 3356.240261][ T7958] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3356.246077][ T7958] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3356.251890][ T7958] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3356.257179][ T7958] ? trace_hardirqs_on+0xbd/0x310 [ 3356.262207][ T7958] ? kasan_check_read+0x11/0x20 [ 3356.267078][ T7958] ? ___ratelimit+0x37c/0x686 [ 3356.271756][ T7958] ? trace_hardirqs_off_caller+0x300/0x300 [ 3356.277580][ T7958] ? do_raw_spin_trylock+0x270/0x270 [ 3356.282884][ T7958] ? trace_hardirqs_on_caller+0x310/0x310 [ 3356.288602][ T7958] ? lock_acquire+0x1db/0x570 [ 3356.293297][ T7958] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3356.299108][ T7958] ? ___ratelimit+0xac/0x686 [ 3356.303702][ T7958] ? idr_get_free+0xee0/0xee0 [ 3356.308379][ T7958] ? kasan_check_read+0x11/0x20 [ 3356.313249][ T7958] ? do_raw_spin_unlock+0xa0/0x330 [ 3356.318374][ T7958] oom_kill_process.cold+0x10/0x9ca [ 3356.323590][ T7958] ? _raw_spin_unlock+0x2d/0x50 [ 3356.328449][ T7958] ? oom_badness+0xca/0xa50 [ 3356.332956][ T7958] ? out_of_memory+0xc8f/0x1420 [ 3356.337808][ T7958] ? find_held_lock+0x35/0x120 [ 3356.342601][ T7958] ? oom_evaluate_task+0x540/0x540 [ 3356.347717][ T7958] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3356.353993][ T7958] ? lock_downgrade+0xbe0/0xbe0 [ 3356.358846][ T7958] ? kasan_check_read+0x11/0x20 [ 3356.363703][ T7958] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3356.369688][ T7958] ? rcu_read_unlock_special+0x380/0x380 [ 3356.375324][ T7958] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3356.381574][ T7958] ? oom_evaluate_task+0x305/0x540 [ 3356.386696][ T7958] out_of_memory+0x885/0x1420 [ 3356.391391][ T7958] ? oom_killer_disable+0x340/0x340 [ 3356.396601][ T7958] ? mutex_trylock+0x248/0x2d0 [ 3356.401373][ T7958] ? __ww_mutex_check_waiters+0x160/0x160 [ 3356.407108][ T7958] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3356.412683][ T7958] ? warn_alloc+0x110/0x110 [ 3356.417192][ T7958] ? add_lock_to_list.isra.0+0x450/0x450 [ 3356.422823][ T7958] ? add_lock_to_list.isra.0+0x450/0x450 [ 3356.428459][ T7958] ? check_preemption_disabled+0x48/0x290 [ 3356.434226][ T7958] ? add_lock_to_list.isra.0+0x450/0x450 [ 3356.439878][ T7958] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3356.445688][ T7958] ? ___might_sleep+0x1e7/0x310 [ 3356.450545][ T7958] ? arch_local_save_flags+0x50/0x50 [ 3356.455844][ T7958] ? lock_release+0xc40/0xc40 [ 3356.460522][ T7958] ? lock_downgrade+0xbe0/0xbe0 [ 3356.465382][ T7958] ? kasan_check_read+0x11/0x20 [ 3356.470251][ T7958] __alloc_pages_nodemask+0xa37/0xdc0 [ 3356.475632][ T7958] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3356.481380][ T7958] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3356.487633][ T7958] alloc_pages_current+0x107/0x210 [ 3356.492755][ T7958] __page_cache_alloc+0x3cd/0x620 [ 3356.497787][ T7958] ? alloc_pages_current+0x10f/0x210 [ 3356.503080][ T7958] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3356.508454][ T7958] ? __page_cache_alloc+0x19c/0x620 [ 3356.513654][ T7958] ? find_held_lock+0x60/0x120 [ 3356.518424][ T7958] pagecache_get_page+0x36f/0x1070 [ 3356.523542][ T7958] ? find_lock_entry+0x8b0/0x8b0 [ 3356.528495][ T7958] ? __do_page_cache_readahead+0x64b/0x800 [ 3356.534315][ T7958] ? read_pages+0x650/0x650 [ 3356.538824][ T7958] ? kasan_check_write+0x14/0x20 [ 3356.543766][ T7958] ? lock_downgrade+0xbe0/0xbe0 [ 3356.548617][ T7958] ? kasan_check_read+0x11/0x20 [ 3356.553472][ T7958] ? up_read_non_owner+0x100/0x100 [ 3356.558599][ T7958] ? rcu_read_unlock_special+0x380/0x380 [ 3356.564238][ T7958] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3356.570491][ T7958] filemap_fault+0xb6a/0x2a30 [ 3356.575182][ T7958] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3356.580996][ T7958] ? __lock_is_held+0xb6/0x140 [ 3356.585770][ T7958] ? lock_acquire+0x1db/0x570 [ 3356.590449][ T7958] ? ext4_filemap_fault+0x7b/0xaf [ 3356.595479][ T7958] ? lock_release+0xc40/0xc40 [ 3356.600163][ T7958] ? print_usage_bug+0xd0/0xd0 [ 3356.604941][ T7958] ? down_read+0x8d/0x120 [ 3356.609274][ T7958] ? ext4_filemap_fault+0x7b/0xaf [ 3356.614325][ T7958] ? __down_interruptible+0x740/0x740 [ 3356.619699][ T7958] ? __lock_acquire+0x572/0x4a10 [ 3356.624647][ T7958] ext4_filemap_fault+0x83/0xaf [ 3356.629505][ T7958] __do_fault+0x176/0x7b0 [ 3356.633842][ T7958] ? mark_held_locks+0x100/0x100 [ 3356.638781][ T7958] ? do_page_mkwrite+0x740/0x740 [ 3356.643742][ T7958] ? pmd_val+0x85/0x100 [ 3356.647905][ T7958] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3356.653625][ T7958] ? pmd_val+0x85/0x100 [ 3356.657785][ T7958] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3356.663511][ T7958] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3356.669759][ T7958] __handle_mm_fault+0x377c/0x5610 [ 3356.674884][ T7958] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3356.680433][ T7958] ? check_preemption_disabled+0x48/0x290 [ 3356.686158][ T7958] ? handle_mm_fault+0x3cc/0xc80 [ 3356.691126][ T7958] ? lock_downgrade+0xbe0/0xbe0 [ 3356.695978][ T7958] ? kasan_check_read+0x11/0x20 [ 3356.700834][ T7958] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3356.706823][ T7958] ? rcu_read_unlock_special+0x380/0x380 [ 3356.712461][ T7958] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3356.718706][ T7958] ? check_preemption_disabled+0x48/0x290 [ 3356.724435][ T7958] handle_mm_fault+0x4ec/0xc80 [ 3356.729208][ T7958] ? __handle_mm_fault+0x5610/0x5610 [ 3356.734492][ T7958] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3356.740730][ T7958] ? vmacache_update+0x114/0x140 [ 3356.745884][ T7958] __do_page_fault+0x5ef/0xda0 [ 3356.750664][ T7958] do_page_fault+0xe6/0x7d8 [ 3356.755172][ T7958] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3356.760809][ T7958] ? vmalloc_sync_all+0x30/0x30 [ 3356.765666][ T7958] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3356.771846][ T7958] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3356.777592][ T7958] ? page_fault+0x8/0x30 [ 3356.781844][ T7958] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3356.787392][ T7958] ? page_fault+0x8/0x30 [ 3356.791657][ T7958] page_fault+0x1e/0x30 [ 3356.795826][ T7958] RIP: 0033:0x7f3bfa80fffa [ 3356.800253][ T7958] Code: Bad RIP value. [ 3356.804315][ T7958] RSP: 002b:00007ffd85adc7b0 EFLAGS: 00010246 [ 3356.810394][ T7958] RAX: 0000000000000000 RBX: 00007f3bfaafc380 RCX: 00007f3bfa81de40 [ 3356.818884][ T7958] RDX: 00007f3bfaafc380 RSI: 0000000000000001 RDI: 000000000060b2e0 [ 3356.826856][ T7958] RBP: 000000000060b2e0 R08: 00007ffd85adc650 R09: 0000000000000000 [ 3356.834827][ T7958] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 3356.842797][ T7958] R13: 00007ffd85adc950 R14: 0000000000000000 R15: 0000000000000000 [ 3356.873691][ T7958] Mem-Info: [ 3356.876848][ T7958] active_anon:113161 inactive_anon:203 isolated_anon:0 [ 3356.876848][ T7958] active_file:18 inactive_file:47 isolated_file:13 [ 3356.876848][ T7958] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3356.876848][ T7958] slab_reclaimable:15421 slab_unreclaimable:108572 [ 3356.876848][ T7958] mapped:49179 shmem:244 pagetables:1499 bounce:0 [ 3356.876848][ T7958] free:24953 free_pcp:8 free_cma:0 [ 3356.914047][ T7958] Node 0 active_anon:452628kB inactive_anon:812kB active_file:72kB inactive_file:184kB unevictable:0kB isolated(anon):0kB isolated(file):52kB mapped:196716kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 149504kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3356.942382][ T7958] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3356.968866][ T7958] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3356.997345][ T7958] lowmem_reserve[]: 0 2535 2537 2537 [ 3357.019114][ T7958] Node 0 DMA32 free:36080kB min:36080kB low:45100kB high:54120kB active_anon:452628kB inactive_anon:812kB active_file:40kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7520kB pagetables:5996kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3357.086296][ T7958] lowmem_reserve[]: 0 0 2 2 [ 3357.109843][ T7958] Node 0 Normal free:20kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:4kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3357.219214][ T7958] lowmem_reserve[]: 0 0 0 0 [ 3357.223779][ T7958] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3357.353591][ T7958] lowmem_reserve[]: 0 0 0 0 [ 3357.358170][ T7958] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3357.427329][ T7958] Node 0 DMA32: 647*4kB (UME) 1513*8kB (UME) 684*16kB (UM) 278*32kB (UM) 17*64kB (UM) 2*128kB (U) 1*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36644kB [ 3357.499649][ T7958] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 3357.565584][ T7958] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3357.618573][ T7958] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3357.650048][ T7958] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3357.678224][ T7958] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3357.700251][ T7958] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3357.717587][ T7958] 298 total pagecache pages [ 3357.739537][ T7958] 0 pages in swap cache [ 3357.743714][ T7958] Swap cache stats: add 0, delete 0, find 0/0 [ 3357.765091][ T7958] Free swap = 0kB [ 3357.768831][ T7958] Total swap = 0kB [ 3357.791966][ T7958] 1965979 pages RAM [ 3357.795782][ T7958] 0 pages HighMem/MovableOnly [ 3357.815277][ T7958] 343989 pages reserved [ 3357.834936][ T7958] 0 pages cma reserved [ 3357.839030][ T7958] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz5,task=syz-executor5,pid=9109,uid=0 [ 3357.911535][ T7958] Out of memory: Kill process 9109 (syz-executor5) score 1004 or sacrifice child [ 3357.946103][ T7958] Killed process 9109 (syz-executor5) total-vm:70796kB, anon-rss:2224kB, file-rss:32768kB, shmem-rss:0kB [ 3358.141080][ T9109] syz-executor5 (9109) used greatest stack depth: 13720 bytes left [ 3358.770189][ T8028] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3358.803801][ T8028] CPU: 1 PID: 8028 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3358.812407][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3358.822956][ T8028] Call Trace: [ 3358.826261][ T8028] dump_stack+0x1db/0x2d0 [ 3358.830603][ T8028] ? dump_stack_print_info.cold+0x20/0x20 [ 3358.836327][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3358.841278][ T8028] dump_header+0x1e6/0x11a6 [ 3358.845788][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3358.851431][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3358.856204][ T8028] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3358.861839][ T8028] ? ___ratelimit+0x37c/0x686 [ 3358.866528][ T8028] ? mark_held_locks+0xb1/0x100 [ 3358.871393][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3358.877203][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3358.883012][ T8028] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3358.888299][ T8028] ? trace_hardirqs_on+0xbd/0x310 [ 3358.893327][ T8028] ? kasan_check_read+0x11/0x20 [ 3358.898179][ T8028] ? ___ratelimit+0x37c/0x686 [ 3358.902861][ T8028] ? trace_hardirqs_off_caller+0x300/0x300 [ 3358.908670][ T8028] ? do_raw_spin_trylock+0x270/0x270 [ 3358.913956][ T8028] ? trace_hardirqs_on_caller+0x310/0x310 [ 3358.919680][ T8028] ? lock_acquire+0x1db/0x570 [ 3358.924367][ T8028] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3358.930179][ T8028] ? ___ratelimit+0xac/0x686 [ 3358.934777][ T8028] ? idr_get_free+0xee0/0xee0 [ 3358.939455][ T8028] ? kasan_check_read+0x11/0x20 [ 3358.944311][ T8028] ? do_raw_spin_unlock+0xa0/0x330 [ 3358.949439][ T8028] oom_kill_process.cold+0x10/0x9ca [ 3358.955087][ T8028] ? _raw_spin_unlock+0x2d/0x50 [ 3358.959946][ T8028] ? oom_badness+0xca/0xa50 [ 3358.964458][ T8028] ? out_of_memory+0xc8f/0x1420 [ 3358.969311][ T8028] ? find_held_lock+0x35/0x120 [ 3358.974091][ T8028] ? oom_evaluate_task+0x540/0x540 [ 3358.979213][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3358.985455][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3358.990305][ T8028] ? kasan_check_read+0x11/0x20 [ 3358.995163][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3359.001147][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3359.006782][ T8028] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3359.013076][ T8028] ? oom_evaluate_task+0x305/0x540 [ 3359.018194][ T8028] out_of_memory+0x885/0x1420 [ 3359.022888][ T8028] ? oom_killer_disable+0x340/0x340 [ 3359.028092][ T8028] ? mutex_trylock+0x248/0x2d0 [ 3359.032864][ T8028] ? __ww_mutex_check_waiters+0x160/0x160 [ 3359.038605][ T8028] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3359.044180][ T8028] ? warn_alloc+0x110/0x110 [ 3359.048684][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3359.054316][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3359.059965][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3359.065693][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3359.071315][ T8028] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3359.077102][ T8028] ? ___might_sleep+0x1e7/0x310 [ 3359.081932][ T8028] ? arch_local_save_flags+0x50/0x50 [ 3359.087193][ T8028] ? lock_release+0xc40/0xc40 [ 3359.091865][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3359.096693][ T8028] ? kasan_check_read+0x11/0x20 [ 3359.101530][ T8028] __alloc_pages_nodemask+0xa37/0xdc0 [ 3359.106888][ T8028] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3359.112612][ T8028] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3359.118840][ T8028] alloc_pages_current+0x107/0x210 [ 3359.123934][ T8028] __page_cache_alloc+0x3cd/0x620 [ 3359.128952][ T8028] ? alloc_pages_current+0x10f/0x210 [ 3359.134218][ T8028] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3359.139577][ T8028] ? __page_cache_alloc+0x19c/0x620 [ 3359.144753][ T8028] ? find_held_lock+0x60/0x120 [ 3359.149497][ T8028] pagecache_get_page+0x36f/0x1070 [ 3359.154590][ T8028] ? find_lock_entry+0x8b0/0x8b0 [ 3359.159510][ T8028] ? __do_page_cache_readahead+0x64b/0x800 [ 3359.165300][ T8028] ? read_pages+0x650/0x650 [ 3359.169783][ T8028] ? kasan_check_write+0x14/0x20 [ 3359.174701][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3359.179526][ T8028] ? kasan_check_read+0x11/0x20 [ 3359.184355][ T8028] ? up_read_non_owner+0x100/0x100 [ 3359.189448][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3359.195059][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3359.201287][ T8028] filemap_fault+0xb6a/0x2a30 [ 3359.205951][ T8028] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3359.211741][ T8028] ? __lock_is_held+0xb6/0x140 [ 3359.216486][ T8028] ? lock_acquire+0x1db/0x570 [ 3359.221143][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3359.226146][ T8028] ? lock_release+0xc40/0xc40 [ 3359.230801][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3359.235548][ T8028] ? down_read+0x8d/0x120 [ 3359.239864][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3359.244910][ T8028] ? __down_interruptible+0x740/0x740 [ 3359.250262][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3359.255193][ T8028] ? find_held_lock+0x35/0x120 [ 3359.259942][ T8028] ext4_filemap_fault+0x83/0xaf [ 3359.264790][ T8028] __do_fault+0x176/0x7b0 [ 3359.269105][ T8028] ? mark_held_locks+0x100/0x100 [ 3359.274040][ T8028] ? do_page_mkwrite+0x740/0x740 [ 3359.279047][ T8028] ? pmd_val+0x85/0x100 [ 3359.283228][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3359.288923][ T8028] ? pmd_val+0x85/0x100 [ 3359.293060][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3359.298762][ T8028] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3359.304991][ T8028] ? mpol_misplaced+0x2ca/0x590 [ 3359.309824][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3359.316044][ T8028] __handle_mm_fault+0x377c/0x5610 [ 3359.321144][ T8028] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3359.326679][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3359.332379][ T8028] ? handle_mm_fault+0x3cc/0xc80 [ 3359.337302][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3359.342128][ T8028] ? kasan_check_read+0x11/0x20 [ 3359.346958][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3359.352916][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3359.358554][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3359.364783][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3359.370483][ T8028] handle_mm_fault+0x4ec/0xc80 [ 3359.375230][ T8028] ? __handle_mm_fault+0x5610/0x5610 [ 3359.380494][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3359.386710][ T8028] ? vmacache_update+0x114/0x140 [ 3359.391634][ T8028] __do_page_fault+0x5ef/0xda0 [ 3359.396383][ T8028] do_page_fault+0xe6/0x7d8 [ 3359.400865][ T8028] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3359.406474][ T8028] ? vmalloc_sync_all+0x30/0x30 [ 3359.411303][ T8028] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3359.417437][ T8028] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3359.423084][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3359.429304][ T8028] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3359.435000][ T8028] ? page_fault+0x8/0x30 [ 3359.439220][ T8028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3359.444743][ T8028] ? page_fault+0x8/0x30 [ 3359.448963][ T8028] page_fault+0x1e/0x30 [ 3359.453102][ T8028] RIP: 0033:0x415430 [ 3359.456984][ T8028] Code: Bad RIP value. [ 3359.461027][ T8028] RSP: 002b:000000c420035e88 EFLAGS: 00010206 [ 3359.467090][ T8028] RAX: 00007f684a128998 RBX: 0000000000000000 RCX: 000000000000c000 [ 3359.475039][ T8028] RDX: 000000c437174000 RSI: 0000030dd680b5d2 RDI: 0000000000000006 [ 3359.482989][ T8028] RBP: 000000c420035eb8 R08: 000000c437174000 R09: 0000000000001000 [ 3359.490958][ T8028] R10: 000000000000c000 R11: 0000000000000246 R12: 0000000000430120 [ 3359.498909][ T8028] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000000 [ 3359.507184][ T8028] Mem-Info: [ 3359.510374][ T8028] active_anon:112612 inactive_anon:203 isolated_anon:0 [ 3359.510374][ T8028] active_file:20 inactive_file:7 isolated_file:0 [ 3359.510374][ T8028] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3359.510374][ T8028] slab_reclaimable:15420 slab_unreclaimable:108586 [ 3359.510374][ T8028] mapped:49154 shmem:244 pagetables:1475 bounce:0 [ 3359.510374][ T8028] free:25050 free_pcp:63 free_cma:0 [ 3359.548679][ T8028] Node 0 active_anon:450432kB inactive_anon:812kB active_file:84kB inactive_file:36kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196620kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 147456kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3359.577058][ T8028] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3359.603664][ T8028] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3359.647229][ T8028] lowmem_reserve[]: 0 2535 2537 2537 [ 3359.683928][ T8028] Node 0 DMA32 free:35844kB min:36080kB low:45100kB high:54120kB active_anon:450432kB inactive_anon:812kB active_file:56kB inactive_file:52kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7520kB pagetables:5900kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3359.801692][ T8028] lowmem_reserve[]: 0 0 2 2 [ 3359.806226][ T8028] Node 0 Normal free:24kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:4kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3359.897206][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3359.911506][ T8028] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3359.998516][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3360.012823][ T8028] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3360.049370][ T8028] Node 0 DMA32: 637*4kB (UME) 1528*8kB (UME) 685*16kB (UM) 272*32kB (UM) 18*64kB (UM) 0*128kB 1*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36356kB [ 3360.100866][ T8028] Node 0 Normal: 2*4kB (U) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 3360.136520][ T8028] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3360.184992][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3360.195317][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3360.222349][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3360.247834][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3360.276398][ T8028] 274 total pagecache pages [ 3360.290701][ T8028] 0 pages in swap cache [ 3360.294863][ T8028] Swap cache stats: add 0, delete 0, find 0/0 [ 3360.321140][ T8028] Free swap = 0kB [ 3360.324866][ T8028] Total swap = 0kB [ 3360.328590][ T8028] 1965979 pages RAM [ 3360.349127][ T8028] 0 pages HighMem/MovableOnly [ 3360.353806][ T8028] 343989 pages reserved [ 3360.357949][ T8028] 0 pages cma reserved [ 3360.372944][ T8028] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz0,task=syz-executor0,pid=13443,uid=0 [ 3360.402509][ T8028] Out of memory: Kill process 13443 (syz-executor0) score 1004 or sacrifice child [ 3360.419211][ T8028] Killed process 13443 (syz-executor0) total-vm:70532kB, anon-rss:2212kB, file-rss:32768kB, shmem-rss:0kB [ 3361.218049][ T7918] rsyslogd invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3361.259399][ T7918] CPU: 0 PID: 7918 Comm: rsyslogd Not tainted 5.0.0-rc1-next-20190110 #9 [ 3361.267839][ T7918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3361.277894][ T7918] Call Trace: [ 3361.281197][ T7918] dump_stack+0x1db/0x2d0 [ 3361.285536][ T7918] ? dump_stack_print_info.cold+0x20/0x20 [ 3361.291271][ T7918] ? __lock_acquire+0x572/0x4a10 [ 3361.296223][ T7918] dump_header+0x1e6/0x11a6 [ 3361.300735][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3361.306371][ T7918] ? print_usage_bug+0xd0/0xd0 [ 3361.311155][ T7918] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3361.316794][ T7918] ? ___ratelimit+0x37c/0x686 [ 3361.321484][ T7918] ? mark_held_locks+0xb1/0x100 [ 3361.326340][ T7918] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3361.332150][ T7918] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3361.337959][ T7918] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3361.343254][ T7918] ? trace_hardirqs_on+0xbd/0x310 [ 3361.348300][ T7918] ? kasan_check_read+0x11/0x20 [ 3361.353152][ T7918] ? ___ratelimit+0x37c/0x686 [ 3361.357835][ T7918] ? trace_hardirqs_off_caller+0x300/0x300 [ 3361.363642][ T7918] ? do_raw_spin_trylock+0x270/0x270 [ 3361.368932][ T7918] ? trace_hardirqs_on_caller+0x310/0x310 [ 3361.374654][ T7918] ? lock_acquire+0x1db/0x570 [ 3361.379345][ T7918] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3361.385155][ T7918] ? ___ratelimit+0xac/0x686 [ 3361.389759][ T7918] ? idr_get_free+0xee0/0xee0 [ 3361.394440][ T7918] ? kasan_check_read+0x11/0x20 [ 3361.399294][ T7918] ? do_raw_spin_unlock+0xa0/0x330 [ 3361.404417][ T7918] oom_kill_process.cold+0x10/0x9ca [ 3361.409625][ T7918] ? _raw_spin_unlock+0x2d/0x50 [ 3361.414478][ T7918] ? oom_badness+0xca/0xa50 [ 3361.418987][ T7918] ? out_of_memory+0xc8f/0x1420 [ 3361.423841][ T7918] ? find_held_lock+0x35/0x120 [ 3361.428613][ T7918] ? oom_evaluate_task+0x540/0x540 [ 3361.433726][ T7918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3361.439972][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3361.444824][ T7918] ? kasan_check_read+0x11/0x20 [ 3361.449682][ T7918] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3361.455665][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3361.461300][ T7918] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3361.467544][ T7918] ? oom_evaluate_task+0x305/0x540 [ 3361.472684][ T7918] out_of_memory+0x885/0x1420 [ 3361.477378][ T7918] ? oom_killer_disable+0x340/0x340 [ 3361.482594][ T7918] ? mutex_trylock+0x248/0x2d0 [ 3361.487367][ T7918] ? __ww_mutex_check_waiters+0x160/0x160 [ 3361.493100][ T7918] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3361.498672][ T7918] ? warn_alloc+0x110/0x110 [ 3361.503181][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3361.508812][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3361.514451][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3361.520172][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3361.525839][ T7918] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3361.531653][ T7918] ? ___might_sleep+0x1e7/0x310 [ 3361.536506][ T7918] ? arch_local_save_flags+0x50/0x50 [ 3361.541791][ T7918] ? lock_release+0xc40/0xc40 [ 3361.546472][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3361.551325][ T7918] ? kasan_check_read+0x11/0x20 [ 3361.556192][ T7918] __alloc_pages_nodemask+0xa37/0xdc0 [ 3361.561595][ T7918] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3361.567340][ T7918] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3361.573606][ T7918] alloc_pages_current+0x107/0x210 [ 3361.578724][ T7918] __page_cache_alloc+0x3cd/0x620 [ 3361.583758][ T7918] ? alloc_pages_current+0x10f/0x210 [ 3361.589049][ T7918] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3361.594425][ T7918] ? __page_cache_alloc+0x19c/0x620 [ 3361.599630][ T7918] ? find_held_lock+0x60/0x120 [ 3361.604408][ T7918] pagecache_get_page+0x36f/0x1070 [ 3361.609533][ T7918] ? find_lock_entry+0x8b0/0x8b0 [ 3361.614494][ T7918] ? __do_page_cache_readahead+0x64b/0x800 [ 3361.620314][ T7918] ? read_pages+0x650/0x650 [ 3361.624818][ T7918] ? kasan_check_write+0x14/0x20 [ 3361.629759][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3361.634609][ T7918] ? kasan_check_read+0x11/0x20 [ 3361.639465][ T7918] ? up_read_non_owner+0x100/0x100 [ 3361.644617][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3361.650439][ T7918] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3361.656690][ T7918] filemap_fault+0xb6a/0x2a30 [ 3361.661380][ T7918] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3361.667191][ T7918] ? __lock_is_held+0xb6/0x140 [ 3361.671965][ T7918] ? lock_acquire+0x1db/0x570 [ 3361.676649][ T7918] ? ext4_filemap_fault+0x7b/0xaf [ 3361.681680][ T7918] ? lock_release+0xc40/0xc40 [ 3361.686848][ T7918] ? print_usage_bug+0xd0/0xd0 [ 3361.691631][ T7918] ? down_read+0x8d/0x120 [ 3361.695961][ T7918] ? ext4_filemap_fault+0x7b/0xaf [ 3361.700987][ T7918] ? __down_interruptible+0x740/0x740 [ 3361.706362][ T7918] ? __lock_acquire+0x572/0x4a10 [ 3361.711299][ T7918] ? find_held_lock+0x35/0x120 [ 3361.716070][ T7918] ext4_filemap_fault+0x83/0xaf [ 3361.720933][ T7918] __do_fault+0x176/0x7b0 [ 3361.725266][ T7918] ? mark_held_locks+0x100/0x100 [ 3361.730208][ T7918] ? do_page_mkwrite+0x740/0x740 [ 3361.735150][ T7918] ? pmd_val+0x85/0x100 [ 3361.739309][ T7918] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3361.745030][ T7918] ? pmd_val+0x85/0x100 [ 3361.749194][ T7918] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3361.754914][ T7918] ? mpol_misplaced+0x2ca/0x590 [ 3361.759771][ T7918] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3361.766020][ T7918] __handle_mm_fault+0x377c/0x5610 [ 3361.771169][ T7918] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3361.776716][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3361.782440][ T7918] ? handle_mm_fault+0x3cc/0xc80 [ 3361.787419][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3361.792268][ T7918] ? kasan_check_read+0x11/0x20 [ 3361.797121][ T7918] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3361.803102][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3361.808742][ T7918] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3361.814982][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3361.820711][ T7918] handle_mm_fault+0x4ec/0xc80 [ 3361.825481][ T7918] ? __handle_mm_fault+0x5610/0x5610 [ 3361.830770][ T7918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3361.837026][ T7918] ? vmacache_update+0x114/0x140 [ 3361.841992][ T7918] __do_page_fault+0x5ef/0xda0 [ 3361.846777][ T7918] do_page_fault+0xe6/0x7d8 [ 3361.851282][ T7918] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3361.856920][ T7918] ? vmalloc_sync_all+0x30/0x30 [ 3361.862300][ T7918] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3361.868468][ T7918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3361.874715][ T7918] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3361.880435][ T7918] ? page_fault+0x8/0x30 [ 3361.884688][ T7918] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3361.890239][ T7918] ? page_fault+0x8/0x30 [ 3361.894482][ T7918] page_fault+0x1e/0x30 [ 3361.898636][ T7918] RIP: 0033:0x7fc6975aa610 [ 3361.903065][ T7918] Code: Bad RIP value. [ 3361.907128][ T7918] RSP: 002b:00007fc6951cdd58 EFLAGS: 00010293 [ 3361.913190][ T7918] RAX: 000000000161f1d0 RBX: 0000000001651340 RCX: 0000000000000000 [ 3361.921160][ T7918] RDX: 0000000000000009 RSI: 000000000161f1d0 RDI: 00000000016514cd [ 3361.929143][ T7918] RBP: 0000000000000009 R08: 000000000161f1d0 R09: 73205d3033303854 [ 3361.937113][ T7918] R10: 657a7a75662d7a79 R11: 656b6f766e692072 R12: 000000000161f1d0 [ 3361.945086][ T7918] R13: 0000000000000009 R14: 0000000000000f53 R15: 00007fc696a0261b [ 3361.977033][ T7918] Mem-Info: [ 3361.980320][ T7918] active_anon:112013 inactive_anon:203 isolated_anon:0 [ 3361.980320][ T7918] active_file:3 inactive_file:9 isolated_file:22 [ 3361.980320][ T7918] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3361.980320][ T7918] slab_reclaimable:15420 slab_unreclaimable:108520 [ 3361.980320][ T7918] mapped:49154 shmem:244 pagetables:1450 bounce:0 [ 3361.980320][ T7918] free:25178 free_pcp:0 free_cma:0 [ 3362.017362][ T7918] Node 0 active_anon:448036kB inactive_anon:812kB active_file:12kB inactive_file:32kB unevictable:0kB isolated(anon):0kB isolated(file):88kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 145408kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3362.045734][ T7918] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3362.072494][ T7918] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3362.101310][ T7918] lowmem_reserve[]: 0 2535 2537 2537 [ 3362.106625][ T7918] Node 0 DMA32 free:36032kB min:36080kB low:45100kB high:54120kB active_anon:448036kB inactive_anon:812kB active_file:44kB inactive_file:84kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7488kB pagetables:5800kB bounce:0kB free_pcp:744kB local_pcp:248kB free_cma:0kB [ 3362.233190][ T7918] lowmem_reserve[]: 0 0 2 2 [ 3362.237752][ T7918] Node 0 Normal free:28kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3362.389132][ T7918] lowmem_reserve[]: 0 0 0 0 [ 3362.393693][ T7918] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3362.506805][ T7918] lowmem_reserve[]: 0 0 0 0 [ 3362.527837][ T7918] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3362.593351][ T7918] Node 0 DMA32: 621*4kB (UME) 1522*8kB (ME) 685*16kB (UM) 270*32kB (M) 17*64kB (UM) 1*128kB (U) 0*256kB 0*512kB 1*1024kB (U) 0*2048kB 0*4096kB = 36500kB [ 3362.650526][ T7918] Node 0 Normal: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 3362.717483][ T7918] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3362.769968][ T7918] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3362.805572][ T7918] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3362.862499][ T7918] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3362.895578][ T7918] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3362.923257][ T7918] 312 total pagecache pages [ 3362.927778][ T7918] 0 pages in swap cache [ 3362.951125][ T7918] Swap cache stats: add 0, delete 0, find 0/0 [ 3362.957203][ T7918] Free swap = 0kB [ 3363.018847][ T7918] Total swap = 0kB [ 3363.037630][ T7918] 1965979 pages RAM [ 3363.041572][ T7918] 0 pages HighMem/MovableOnly [ 3363.068034][ T7918] 343989 pages reserved [ 3363.088947][ T7918] 0 pages cma reserved [ 3363.106716][ T7918] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz5,task=syz-executor5,pid=5351,uid=0 [ 3363.182228][ T7918] Out of memory: Kill process 5351 (syz-executor5) score 1004 or sacrifice child [ 3363.229946][ T7918] Killed process 5351 (syz-executor5) total-vm:70664kB, anon-rss:2216kB, file-rss:32768kB, shmem-rss:0kB [ 3364.270899][ T8039] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3364.313268][ T8039] CPU: 0 PID: 8039 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3364.321880][ T8039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3364.331935][ T8039] Call Trace: [ 3364.335238][ T8039] dump_stack+0x1db/0x2d0 [ 3364.339594][ T8039] ? dump_stack_print_info.cold+0x20/0x20 [ 3364.345318][ T8039] ? __lock_acquire+0x572/0x4a10 [ 3364.350274][ T8039] dump_header+0x1e6/0x11a6 [ 3364.354786][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3364.360423][ T8039] ? print_usage_bug+0xd0/0xd0 [ 3364.365193][ T8039] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3364.370829][ T8039] ? ___ratelimit+0x37c/0x686 [ 3364.375517][ T8039] ? mark_held_locks+0xb1/0x100 [ 3364.380382][ T8039] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3364.386191][ T8039] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3364.391998][ T8039] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3364.397287][ T8039] ? trace_hardirqs_on+0xbd/0x310 [ 3364.402321][ T8039] ? kasan_check_read+0x11/0x20 [ 3364.407176][ T8039] ? ___ratelimit+0x37c/0x686 [ 3364.411853][ T8039] ? trace_hardirqs_off_caller+0x300/0x300 [ 3364.417662][ T8039] ? do_raw_spin_trylock+0x270/0x270 [ 3364.422949][ T8039] ? trace_hardirqs_on_caller+0x310/0x310 [ 3364.428722][ T8039] ? lock_acquire+0x1db/0x570 [ 3364.433414][ T8039] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3364.439221][ T8039] ? ___ratelimit+0xac/0x686 [ 3364.443822][ T8039] ? idr_get_free+0xee0/0xee0 [ 3364.448497][ T8039] ? kasan_check_read+0x11/0x20 [ 3364.453349][ T8039] ? do_raw_spin_unlock+0xa0/0x330 [ 3364.458480][ T8039] oom_kill_process.cold+0x10/0x9ca [ 3364.463686][ T8039] ? _raw_spin_unlock+0x2d/0x50 [ 3364.468537][ T8039] ? oom_badness+0xca/0xa50 [ 3364.473063][ T8039] ? out_of_memory+0xc8f/0x1420 [ 3364.477916][ T8039] ? find_held_lock+0x35/0x120 [ 3364.482689][ T8039] ? oom_evaluate_task+0x540/0x540 [ 3364.487806][ T8039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3364.494051][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3364.498903][ T8039] ? kasan_check_read+0x11/0x20 [ 3364.503758][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3364.509749][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3364.515386][ T8039] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3364.521632][ T8039] ? oom_evaluate_task+0x305/0x540 [ 3364.526765][ T8039] out_of_memory+0x885/0x1420 [ 3364.531458][ T8039] ? oom_killer_disable+0x340/0x340 [ 3364.536658][ T8039] ? mutex_trylock+0x248/0x2d0 [ 3364.541430][ T8039] ? __ww_mutex_check_waiters+0x160/0x160 [ 3364.547166][ T8039] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3364.552740][ T8039] ? warn_alloc+0x110/0x110 [ 3364.557250][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3364.562885][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3364.568519][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3364.574257][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3364.579910][ T8039] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3364.585725][ T8039] ? ___might_sleep+0x1e7/0x310 [ 3364.590591][ T8039] ? arch_local_save_flags+0x50/0x50 [ 3364.595877][ T8039] ? lock_release+0xc40/0xc40 [ 3364.600576][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3364.605431][ T8039] ? kasan_check_read+0x11/0x20 [ 3364.610298][ T8039] __alloc_pages_nodemask+0xa37/0xdc0 [ 3364.615684][ T8039] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3364.621433][ T8039] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3364.627687][ T8039] alloc_pages_current+0x107/0x210 [ 3364.632807][ T8039] __page_cache_alloc+0x3cd/0x620 [ 3364.637835][ T8039] ? alloc_pages_current+0x10f/0x210 [ 3364.643123][ T8039] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3364.648502][ T8039] ? __page_cache_alloc+0x19c/0x620 [ 3364.653707][ T8039] ? find_held_lock+0x60/0x120 [ 3364.658475][ T8039] pagecache_get_page+0x36f/0x1070 [ 3364.663604][ T8039] ? find_lock_entry+0x8b0/0x8b0 [ 3364.668582][ T8039] ? __do_page_cache_readahead+0x64b/0x800 [ 3364.674449][ T8039] ? read_pages+0x650/0x650 [ 3364.678955][ T8039] ? kasan_check_write+0x14/0x20 [ 3364.683896][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3364.689182][ T8039] ? kasan_check_read+0x11/0x20 [ 3364.694035][ T8039] ? up_read_non_owner+0x100/0x100 [ 3364.699154][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3364.704973][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3364.711251][ T8039] filemap_fault+0xb6a/0x2a30 [ 3364.715938][ T8039] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3364.721752][ T8039] ? __lock_is_held+0xb6/0x140 [ 3364.726526][ T8039] ? lock_acquire+0x1db/0x570 [ 3364.731238][ T8039] ? ext4_filemap_fault+0x7b/0xaf [ 3364.736289][ T8039] ? lock_release+0xc40/0xc40 [ 3364.740975][ T8039] ? print_usage_bug+0xd0/0xd0 [ 3364.745759][ T8039] ? down_read+0x8d/0x120 [ 3364.750092][ T8039] ? ext4_filemap_fault+0x7b/0xaf [ 3364.755122][ T8039] ? __down_interruptible+0x740/0x740 [ 3364.760511][ T8039] ? __lock_acquire+0x572/0x4a10 [ 3364.765446][ T8039] ? find_held_lock+0x35/0x120 [ 3364.770219][ T8039] ext4_filemap_fault+0x83/0xaf [ 3364.775072][ T8039] __do_fault+0x176/0x7b0 [ 3364.779408][ T8039] ? mark_held_locks+0x100/0x100 [ 3364.784347][ T8039] ? do_page_mkwrite+0x740/0x740 [ 3364.789284][ T8039] ? pmd_val+0x85/0x100 [ 3364.793440][ T8039] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3364.799158][ T8039] ? pmd_val+0x85/0x100 [ 3364.803318][ T8039] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3364.809037][ T8039] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3364.815278][ T8039] ? mpol_misplaced+0x2ca/0x590 [ 3364.820254][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3364.826502][ T8039] __handle_mm_fault+0x377c/0x5610 [ 3364.831624][ T8039] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3364.837170][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3364.842895][ T8039] ? handle_mm_fault+0x3cc/0xc80 [ 3364.847852][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3364.852702][ T8039] ? kasan_check_read+0x11/0x20 [ 3364.857565][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3364.863574][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3364.869252][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3364.875495][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3364.881224][ T8039] handle_mm_fault+0x4ec/0xc80 [ 3364.885999][ T8039] ? __handle_mm_fault+0x5610/0x5610 [ 3364.891339][ T8039] __do_page_fault+0x5ef/0xda0 [ 3364.896114][ T8039] ? do_futex+0x2910/0x2910 [ 3364.900629][ T8039] do_page_fault+0xe6/0x7d8 [ 3364.905133][ T8039] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3364.910769][ T8039] ? vmalloc_sync_all+0x30/0x30 [ 3364.915623][ T8039] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3364.921783][ T8039] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3364.927418][ T8039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3364.933661][ T8039] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3364.939387][ T8039] ? page_fault+0x8/0x30 [ 3364.943633][ T8039] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3364.949184][ T8039] ? page_fault+0x8/0x30 [ 3364.953428][ T8039] page_fault+0x1e/0x30 [ 3364.957597][ T8039] RIP: 0033:0x40f5f6 [ 3364.961510][ T8039] Code: Bad RIP value. [ 3364.965586][ T8039] RSP: 002b:000000c420024758 EFLAGS: 00010246 [ 3364.971652][ T8039] RAX: 0000000000000000 RBX: 000000000040f5f6 RCX: 000000c420024000 [ 3364.979624][ T8039] RDX: 0000000000000000 RSI: 000000c420026a80 RDI: 000000c42003ff01 [ 3364.987603][ T8039] RBP: 000000c4200247d0 R08: 000000c420001500 R09: 00007ffdd5383080 [ 3364.995586][ T8039] R10: 0000000000082d0e R11: 0000000000000d20 R12: 0000000000000001 [ 3365.004340][ T8039] R13: 0000000000000001 R14: 000000c420039370 R15: 000000c43680a9b0 [ 3366.268841][ T8039] Mem-Info: [ 3366.292583][ T8039] active_anon:111472 inactive_anon:203 isolated_anon:0 [ 3366.292583][ T8039] active_file:6 inactive_file:17 isolated_file:0 [ 3366.292583][ T8039] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3366.292583][ T8039] slab_reclaimable:15436 slab_unreclaimable:108524 [ 3366.292583][ T8039] mapped:49154 shmem:244 pagetables:1426 bounce:0 [ 3366.292583][ T8039] free:25037 free_pcp:1 free_cma:0 [ 3366.491910][ T8039] Node 0 active_anon:445872kB inactive_anon:812kB active_file:172kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 143360kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3366.615995][ T8039] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3366.761960][ T8039] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3366.864692][ T8039] lowmem_reserve[]: 0 2535 2537 2537 [ 3366.899246][ T8039] Node 0 DMA32 free:35976kB min:36080kB low:45100kB high:54120kB active_anon:445872kB inactive_anon:812kB active_file:68kB inactive_file:64kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7456kB pagetables:5704kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB [ 3367.028537][ T8039] lowmem_reserve[]: 0 0 2 2 [ 3367.048154][ T8039] Node 0 Normal free:24kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3367.132692][ T8039] lowmem_reserve[]: 0 0 0 0 [ 3367.137243][ T8039] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:12kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3367.226824][ T8039] lowmem_reserve[]: 0 0 0 0 [ 3367.253166][ T8039] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3367.308349][ T8039] Node 0 DMA32: 610*4kB (UME) 1524*8kB (UME) 684*16kB (M) 271*32kB (UM) 17*64kB (UM) 1*128kB (U) 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 35976kB [ 3367.371751][ T8039] Node 0 Normal: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 3367.414734][ T8039] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3367.488163][ T8039] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3367.526921][ T8039] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3367.574193][ T8039] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3367.616098][ T8039] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3367.655779][ T8039] 278 total pagecache pages [ 3367.671137][ T8039] 0 pages in swap cache [ 3367.675306][ T8039] Swap cache stats: add 0, delete 0, find 0/0 [ 3367.706609][ T8039] Free swap = 0kB [ 3367.729721][ T8039] Total swap = 0kB [ 3367.733458][ T8039] 1965979 pages RAM [ 3367.737262][ T8039] 0 pages HighMem/MovableOnly [ 3367.798133][ T8039] 343989 pages reserved [ 3367.822626][ T8039] 0 pages cma reserved [ 3367.826706][ T8039] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=2975,uid=0 [ 3367.900246][ T8039] Out of memory: Kill process 2975 (syz-executor4) score 1004 or sacrifice child [ 3367.956740][ T8039] Killed process 2975 (syz-executor4) total-vm:70664kB, anon-rss:2204kB, file-rss:32768kB, shmem-rss:0kB [ 3368.718220][ T8028] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3368.754136][ T8028] CPU: 0 PID: 8028 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3368.762747][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3368.772799][ T8028] Call Trace: [ 3368.776098][ T8028] dump_stack+0x1db/0x2d0 [ 3368.780435][ T8028] ? dump_stack_print_info.cold+0x20/0x20 [ 3368.786172][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3368.791135][ T8028] dump_header+0x1e6/0x11a6 [ 3368.795660][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3368.801297][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3368.806066][ T8028] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3368.811705][ T8028] ? ___ratelimit+0x37c/0x686 [ 3368.816388][ T8028] ? mark_held_locks+0xb1/0x100 [ 3368.821421][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3368.827259][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3368.833068][ T8028] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3368.838355][ T8028] ? trace_hardirqs_on+0xbd/0x310 [ 3368.843383][ T8028] ? kasan_check_read+0x11/0x20 [ 3368.848232][ T8028] ? ___ratelimit+0x37c/0x686 [ 3368.852926][ T8028] ? trace_hardirqs_off_caller+0x300/0x300 [ 3368.858759][ T8028] ? do_raw_spin_trylock+0x270/0x270 [ 3368.864049][ T8028] ? trace_hardirqs_on_caller+0x310/0x310 [ 3368.869769][ T8028] ? lock_acquire+0x1db/0x570 [ 3368.874456][ T8028] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3368.880282][ T8028] ? ___ratelimit+0xac/0x686 [ 3368.884906][ T8028] ? idr_get_free+0xee0/0xee0 [ 3368.889597][ T8028] ? kasan_check_read+0x11/0x20 [ 3368.894457][ T8028] ? do_raw_spin_unlock+0xa0/0x330 [ 3368.899601][ T8028] oom_kill_process.cold+0x10/0x9ca [ 3368.904819][ T8028] ? _raw_spin_unlock+0x2d/0x50 [ 3368.909690][ T8028] ? oom_badness+0xca/0xa50 [ 3368.914224][ T8028] ? out_of_memory+0xc8f/0x1420 [ 3368.919070][ T8028] ? find_held_lock+0x35/0x120 [ 3368.923845][ T8028] ? oom_evaluate_task+0x540/0x540 [ 3368.928996][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3368.935248][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3368.940101][ T8028] ? kasan_check_read+0x11/0x20 [ 3368.944954][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3368.950938][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3368.956589][ T8028] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3368.962837][ T8028] ? oom_evaluate_task+0x305/0x540 [ 3368.967954][ T8028] out_of_memory+0x885/0x1420 [ 3368.972650][ T8028] ? oom_killer_disable+0x340/0x340 [ 3368.977847][ T8028] ? mutex_trylock+0x248/0x2d0 [ 3368.982617][ T8028] ? __ww_mutex_check_waiters+0x160/0x160 [ 3368.988350][ T8028] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3368.993924][ T8028] ? warn_alloc+0x110/0x110 [ 3368.998427][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3369.004069][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3369.009705][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3369.015431][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3369.021083][ T8028] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3369.026897][ T8028] ? ___might_sleep+0x1e7/0x310 [ 3369.031751][ T8028] ? arch_local_save_flags+0x50/0x50 [ 3369.037037][ T8028] ? lock_release+0xc40/0xc40 [ 3369.041714][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3369.046579][ T8028] ? kasan_check_read+0x11/0x20 [ 3369.051444][ T8028] __alloc_pages_nodemask+0xa37/0xdc0 [ 3369.056848][ T8028] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3369.062601][ T8028] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3369.068853][ T8028] alloc_pages_current+0x107/0x210 [ 3369.073970][ T8028] __page_cache_alloc+0x3cd/0x620 [ 3369.079001][ T8028] ? alloc_pages_current+0x10f/0x210 [ 3369.084317][ T8028] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3369.089691][ T8028] ? __page_cache_alloc+0x19c/0x620 [ 3369.094889][ T8028] ? find_held_lock+0x60/0x120 [ 3369.099658][ T8028] pagecache_get_page+0x36f/0x1070 [ 3369.104779][ T8028] ? find_lock_entry+0x8b0/0x8b0 [ 3369.109719][ T8028] ? __do_page_cache_readahead+0x64b/0x800 [ 3369.115550][ T8028] ? read_pages+0x650/0x650 [ 3369.120073][ T8028] ? kasan_check_write+0x14/0x20 [ 3369.125012][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3369.129866][ T8028] ? kasan_check_read+0x11/0x20 [ 3369.134720][ T8028] ? up_read_non_owner+0x100/0x100 [ 3369.139838][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3369.145475][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3369.151726][ T8028] filemap_fault+0xb6a/0x2a30 [ 3369.156415][ T8028] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3369.162230][ T8028] ? __lock_is_held+0xb6/0x140 [ 3369.167003][ T8028] ? lock_acquire+0x1db/0x570 [ 3369.171742][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3369.176775][ T8028] ? lock_release+0xc40/0xc40 [ 3369.181454][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3369.186231][ T8028] ? down_read+0x8d/0x120 [ 3369.190592][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3369.195622][ T8028] ? __down_interruptible+0x740/0x740 [ 3369.200998][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3369.205935][ T8028] ? __might_fault+0x12b/0x1e0 [ 3369.210706][ T8028] ext4_filemap_fault+0x83/0xaf [ 3369.215565][ T8028] __do_fault+0x176/0x7b0 [ 3369.219909][ T8028] ? mark_held_locks+0x100/0x100 [ 3369.224917][ T8028] ? do_page_mkwrite+0x740/0x740 [ 3369.229892][ T8028] ? pmd_val+0x85/0x100 [ 3369.234052][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3369.239817][ T8028] ? pmd_val+0x85/0x100 [ 3369.243975][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3369.249698][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3369.255945][ T8028] __handle_mm_fault+0x377c/0x5610 [ 3369.261070][ T8028] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3369.266617][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3369.272341][ T8028] ? handle_mm_fault+0x3cc/0xc80 [ 3369.277293][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3369.282145][ T8028] ? kasan_check_read+0x11/0x20 [ 3369.287000][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3369.292986][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3369.298619][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3369.304860][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3369.310600][ T8028] handle_mm_fault+0x4ec/0xc80 [ 3369.315375][ T8028] ? __handle_mm_fault+0x5610/0x5610 [ 3369.320675][ T8028] __do_page_fault+0x5ef/0xda0 [ 3369.325457][ T8028] do_page_fault+0xe6/0x7d8 [ 3369.329961][ T8028] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3369.335603][ T8028] ? vmalloc_sync_all+0x30/0x30 [ 3369.340456][ T8028] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3369.346613][ T8028] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3369.352248][ T8028] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3369.358011][ T8028] ? page_fault+0x8/0x30 [ 3369.362264][ T8028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3369.367815][ T8028] ? page_fault+0x8/0x30 [ 3369.372059][ T8028] page_fault+0x1e/0x30 [ 3369.376210][ T8028] RIP: 0033:0x4375fe [ 3369.380116][ T8028] Code: Bad RIP value. [ 3369.384180][ T8028] RSP: 002b:000000c420035f38 EFLAGS: 00010293 [ 3369.390241][ T8028] RAX: 0000000000002710 RBX: 0000000000000016 RCX: 000000000000004f [ 3369.398215][ T8028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 3369.406185][ T8028] RBP: 000000c420035fb0 R08: 000000c420035f18 R09: 0000000000000000 [ 3369.414208][ T8028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000430120 [ 3369.422181][ T8028] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000000 [ 3370.511758][ T8028] Mem-Info: [ 3370.514952][ T8028] active_anon:110931 inactive_anon:203 isolated_anon:0 [ 3370.514952][ T8028] active_file:21 inactive_file:0 isolated_file:5 [ 3370.514952][ T8028] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3370.514952][ T8028] slab_reclaimable:15436 slab_unreclaimable:108534 [ 3370.514952][ T8028] mapped:49154 shmem:244 pagetables:1399 bounce:0 [ 3370.514952][ T8028] free:25036 free_pcp:62 free_cma:0 [ 3370.552105][ T8028] Node 0 active_anon:443708kB inactive_anon:812kB active_file:32kB inactive_file:28kB unevictable:0kB isolated(anon):0kB isolated(file):20kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 141312kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3370.580596][ T8028] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3370.607093][ T8028] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3370.634704][ T8028] lowmem_reserve[]: 0 2535 2537 2537 [ 3370.648045][ T8028] Node 0 DMA32 free:35972kB min:36080kB low:45100kB high:54120kB active_anon:443708kB inactive_anon:812kB active_file:32kB inactive_file:48kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7424kB pagetables:5596kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3370.700673][ T8028] lowmem_reserve[]: 0 0 2 2 [ 3370.705200][ T8028] Node 0 Normal free:24kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3370.738663][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3370.743246][ T8028] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3370.805209][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3370.813098][ T8028] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3370.868855][ T8028] Node 0 DMA32: 623*4kB (ME) 1524*8kB (UME) 686*16kB (UM) 272*32kB (UM) 17*64kB (UM) 2*128kB (U) 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36220kB [ 3370.925233][ T8028] Node 0 Normal: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 3370.975432][ T8028] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3371.027342][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3371.078701][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3371.118060][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3371.163212][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3371.197279][ T8028] 265 total pagecache pages [ 3371.220634][ T8028] 0 pages in swap cache [ 3371.224828][ T8028] Swap cache stats: add 0, delete 0, find 0/0 [ 3371.265413][ T8028] Free swap = 0kB [ 3371.276381][ T8028] Total swap = 0kB [ 3371.294804][ T8028] 1965979 pages RAM [ 3371.298639][ T8028] 0 pages HighMem/MovableOnly [ 3371.324765][ T8028] 343989 pages reserved [ 3371.328929][ T8028] 0 pages cma reserved [ 3371.365621][ T8028] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=3051,uid=0 [ 3371.420350][ T8028] Out of memory: Kill process 3051 (syz-executor4) score 1004 or sacrifice child [ 3371.460084][ T8028] Killed process 3051 (syz-executor4) total-vm:70664kB, anon-rss:2204kB, file-rss:32768kB, shmem-rss:0kB [ 3372.238155][ T8028] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3372.285303][ T8028] CPU: 1 PID: 8028 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3372.293933][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3372.303989][ T8028] Call Trace: [ 3372.307295][ T8028] dump_stack+0x1db/0x2d0 [ 3372.311650][ T8028] ? dump_stack_print_info.cold+0x20/0x20 [ 3372.317371][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3372.322323][ T8028] dump_header+0x1e6/0x11a6 [ 3372.326832][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3372.332473][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3372.337246][ T8028] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3372.342898][ T8028] ? ___ratelimit+0x37c/0x686 [ 3372.347598][ T8028] ? mark_held_locks+0xb1/0x100 [ 3372.352458][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3372.358269][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3372.364084][ T8028] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3372.369374][ T8028] ? trace_hardirqs_on+0xbd/0x310 [ 3372.374402][ T8028] ? kasan_check_read+0x11/0x20 [ 3372.379255][ T8028] ? ___ratelimit+0x37c/0x686 [ 3372.383936][ T8028] ? trace_hardirqs_off_caller+0x300/0x300 [ 3372.389752][ T8028] ? do_raw_spin_trylock+0x270/0x270 [ 3372.395041][ T8028] ? trace_hardirqs_on_caller+0x310/0x310 [ 3372.400768][ T8028] ? lock_acquire+0x1db/0x570 [ 3372.405459][ T8028] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3372.411270][ T8028] ? ___ratelimit+0xac/0x686 [ 3372.415864][ T8028] ? idr_get_free+0xee0/0xee0 [ 3372.420546][ T8028] ? kasan_check_read+0x11/0x20 [ 3372.425414][ T8028] ? do_raw_spin_unlock+0xa0/0x330 [ 3372.430545][ T8028] oom_kill_process.cold+0x10/0x9ca [ 3372.435762][ T8028] ? _raw_spin_unlock+0x2d/0x50 [ 3372.440616][ T8028] ? oom_badness+0xca/0xa50 [ 3372.445128][ T8028] ? out_of_memory+0xc8f/0x1420 [ 3372.449985][ T8028] ? find_held_lock+0x35/0x120 [ 3372.454757][ T8028] ? oom_evaluate_task+0x540/0x540 [ 3372.459870][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3372.466117][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3372.470970][ T8028] ? kasan_check_read+0x11/0x20 [ 3372.475827][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3372.481815][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3372.487455][ T8028] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3372.493700][ T8028] ? oom_evaluate_task+0x305/0x540 [ 3372.498821][ T8028] out_of_memory+0x885/0x1420 [ 3372.503512][ T8028] ? oom_killer_disable+0x340/0x340 [ 3372.508712][ T8028] ? mutex_trylock+0x248/0x2d0 [ 3372.513490][ T8028] ? __ww_mutex_check_waiters+0x160/0x160 [ 3372.519224][ T8028] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3372.524812][ T8028] ? warn_alloc+0x110/0x110 [ 3372.529320][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3372.534954][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3372.540601][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3372.546325][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3372.551980][ T8028] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3372.557795][ T8028] ? ___might_sleep+0x1e7/0x310 [ 3372.562649][ T8028] ? arch_local_save_flags+0x50/0x50 [ 3372.567933][ T8028] ? lock_release+0xc40/0xc40 [ 3372.572618][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3372.577470][ T8028] ? kasan_check_read+0x11/0x20 [ 3372.582340][ T8028] __alloc_pages_nodemask+0xa37/0xdc0 [ 3372.587728][ T8028] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3372.593477][ T8028] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3372.599729][ T8028] alloc_pages_current+0x107/0x210 [ 3372.604847][ T8028] __page_cache_alloc+0x3cd/0x620 [ 3372.609876][ T8028] ? alloc_pages_current+0x10f/0x210 [ 3372.615164][ T8028] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3372.620541][ T8028] ? __page_cache_alloc+0x19c/0x620 [ 3372.625755][ T8028] ? find_held_lock+0x60/0x120 [ 3372.630530][ T8028] pagecache_get_page+0x36f/0x1070 [ 3372.635661][ T8028] ? find_lock_entry+0x8b0/0x8b0 [ 3372.640607][ T8028] ? __do_page_cache_readahead+0x64b/0x800 [ 3372.646432][ T8028] ? read_pages+0x650/0x650 [ 3372.650937][ T8028] ? kasan_check_write+0x14/0x20 [ 3372.655877][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3372.660729][ T8028] ? kasan_check_read+0x11/0x20 [ 3372.665593][ T8028] ? up_read_non_owner+0x100/0x100 [ 3372.670711][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3372.676359][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3372.682633][ T8028] filemap_fault+0xb6a/0x2a30 [ 3372.687325][ T8028] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3372.693143][ T8028] ? __lock_is_held+0xb6/0x140 [ 3372.697919][ T8028] ? lock_acquire+0x1db/0x570 [ 3372.702603][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3372.707634][ T8028] ? lock_release+0xc40/0xc40 [ 3372.712317][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3372.717129][ T8028] ? down_read+0x8d/0x120 [ 3372.721460][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3372.726486][ T8028] ? __down_interruptible+0x740/0x740 [ 3372.731862][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3372.736804][ T8028] ? __might_fault+0x12b/0x1e0 [ 3372.741592][ T8028] ext4_filemap_fault+0x83/0xaf [ 3372.746450][ T8028] __do_fault+0x176/0x7b0 [ 3372.750784][ T8028] ? mark_held_locks+0x100/0x100 [ 3372.755727][ T8028] ? do_page_mkwrite+0x740/0x740 [ 3372.760664][ T8028] ? pmd_val+0x85/0x100 [ 3372.764837][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3372.770566][ T8028] ? pmd_val+0x85/0x100 [ 3372.774726][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3372.780452][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3372.786703][ T8028] __handle_mm_fault+0x377c/0x5610 [ 3372.791832][ T8028] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3372.797415][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3372.803141][ T8028] ? handle_mm_fault+0x3cc/0xc80 [ 3372.808106][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3372.813482][ T8028] ? kasan_check_read+0x11/0x20 [ 3372.818931][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3372.824924][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3372.830571][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3372.836820][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3372.842566][ T8028] handle_mm_fault+0x4ec/0xc80 [ 3372.847340][ T8028] ? __handle_mm_fault+0x5610/0x5610 [ 3372.852644][ T8028] __do_page_fault+0x5ef/0xda0 [ 3372.857416][ T8028] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3372.863496][ T8028] do_page_fault+0xe6/0x7d8 [ 3372.868006][ T8028] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3372.873644][ T8028] ? vmalloc_sync_all+0x30/0x30 [ 3372.878516][ T8028] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3372.884675][ T8028] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3372.890315][ T8028] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3372.896037][ T8028] ? page_fault+0x8/0x30 [ 3372.900295][ T8028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3372.905849][ T8028] ? page_fault+0x8/0x30 [ 3372.910105][ T8028] page_fault+0x1e/0x30 [ 3372.914259][ T8028] RIP: 0033:0x45d911 [ 3372.918164][ T8028] Code: Bad RIP value. [ 3372.922227][ T8028] RSP: 002b:000000c420035f18 EFLAGS: 00010246 [ 3372.928291][ T8028] RAX: 0000000000000000 RBX: 0000000000000016 RCX: 000000000045d911 [ 3372.936263][ T8028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 3372.944234][ T8028] RBP: 000000c420035f28 R08: 000000c420035f18 R09: 0000000000000000 [ 3372.952207][ T8028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000430120 [ 3372.960177][ T8028] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000000 [ 3372.969431][ T8028] Mem-Info: [ 3372.972593][ T8028] active_anon:110390 inactive_anon:203 isolated_anon:0 [ 3372.972593][ T8028] active_file:9 inactive_file:10 isolated_file:0 [ 3372.972593][ T8028] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3372.972593][ T8028] slab_reclaimable:15437 slab_unreclaimable:108545 [ 3372.972593][ T8028] mapped:49154 shmem:244 pagetables:1372 bounce:0 [ 3372.972593][ T8028] free:25162 free_pcp:122 free_cma:0 [ 3373.027410][ T8028] Node 0 active_anon:441544kB inactive_anon:812kB active_file:136kB inactive_file:124kB unevictable:0kB isolated(anon):0kB isolated(file):120kB mapped:196716kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 139264kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3373.056314][ T8028] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3373.082852][ T8028] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3373.110607][ T8028] lowmem_reserve[]: 0 2535 2537 2537 [ 3373.115912][ T8028] Node 0 DMA32 free:36468kB min:36080kB low:45100kB high:54120kB active_anon:441544kB inactive_anon:812kB active_file:136kB inactive_file:124kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7392kB pagetables:5488kB bounce:0kB free_pcp:68kB local_pcp:0kB free_cma:0kB [ 3373.155662][ T8028] lowmem_reserve[]: 0 0 2 2 [ 3373.160364][ T8028] Node 0 Normal free:24kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3373.187140][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3373.191776][ T8028] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3373.219927][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3373.224457][ T8028] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3373.237067][ T8028] Node 0 DMA32: 491*4kB (UME) 1522*8kB (UME) 686*16kB (M) 271*32kB (UM) 17*64kB (UM) 0*128kB 0*256kB 0*512kB 1*1024kB (U) 0*2048kB 0*4096kB = 35900kB [ 3373.255937][ T8028] Node 0 Normal: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 3373.268201][ T8028] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3373.294417][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3373.304084][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3373.313464][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3373.323054][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3373.332381][ T8028] 263 total pagecache pages [ 3373.336882][ T8028] 0 pages in swap cache [ 3373.341081][ T8028] Swap cache stats: add 0, delete 0, find 0/0 [ 3373.347136][ T8028] Free swap = 0kB [ 3373.350894][ T8028] Total swap = 0kB [ 3373.354605][ T8028] 1965979 pages RAM [ 3373.358385][ T8028] 0 pages HighMem/MovableOnly [ 3373.363083][ T8028] 343989 pages reserved [ 3373.367216][ T8028] 0 pages cma reserved [ 3373.371297][ T8028] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=2932,uid=0 [ 3373.385750][ T8028] Out of memory: Kill process 2932 (syz-executor4) score 1004 or sacrifice child [ 3373.394968][ T8028] Killed process 2932 (syz-executor4) total-vm:70664kB, anon-rss:2204kB, file-rss:32768kB, shmem-rss:0kB [ 3373.408456][ T1042] oom_reaper: reaped process 2932 (syz-executor4), now anon-rss:0kB, file-rss:32768kB, shmem-rss:0kB [ 3374.162120][ T8028] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3374.196689][ T8028] CPU: 1 PID: 8028 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3374.205293][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3374.215345][ T8028] Call Trace: [ 3374.218646][ T8028] dump_stack+0x1db/0x2d0 [ 3374.222982][ T8028] ? dump_stack_print_info.cold+0x20/0x20 [ 3374.228702][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3374.233655][ T8028] dump_header+0x1e6/0x11a6 [ 3374.238166][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3374.243807][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3374.248584][ T8028] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3374.254224][ T8028] ? ___ratelimit+0x37c/0x686 [ 3374.258908][ T8028] ? mark_held_locks+0xb1/0x100 [ 3374.263765][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3374.269585][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3374.275397][ T8028] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3374.280685][ T8028] ? trace_hardirqs_on+0xbd/0x310 [ 3374.285710][ T8028] ? kasan_check_read+0x11/0x20 [ 3374.290571][ T8028] ? ___ratelimit+0x37c/0x686 [ 3374.295253][ T8028] ? trace_hardirqs_off_caller+0x300/0x300 [ 3374.301060][ T8028] ? do_raw_spin_trylock+0x270/0x270 [ 3374.306355][ T8028] ? trace_hardirqs_on_caller+0x310/0x310 [ 3374.312084][ T8028] ? lock_acquire+0x1db/0x570 [ 3374.316770][ T8028] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3374.322586][ T8028] ? ___ratelimit+0xac/0x686 [ 3374.327185][ T8028] ? idr_get_free+0xee0/0xee0 [ 3374.331866][ T8028] ? kasan_check_read+0x11/0x20 [ 3374.336720][ T8028] ? do_raw_spin_unlock+0xa0/0x330 [ 3374.341847][ T8028] oom_kill_process.cold+0x10/0x9ca [ 3374.347055][ T8028] ? _raw_spin_unlock+0x2d/0x50 [ 3374.351915][ T8028] ? oom_badness+0xca/0xa50 [ 3374.356423][ T8028] ? out_of_memory+0xc8f/0x1420 [ 3374.361277][ T8028] ? find_held_lock+0x35/0x120 [ 3374.366046][ T8028] ? oom_evaluate_task+0x540/0x540 [ 3374.371170][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3374.377415][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3374.382266][ T8028] ? kasan_check_read+0x11/0x20 [ 3374.387119][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3374.393106][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3374.398746][ T8028] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3374.404992][ T8028] ? oom_evaluate_task+0x305/0x540 [ 3374.410115][ T8028] out_of_memory+0x885/0x1420 [ 3374.414809][ T8028] ? oom_killer_disable+0x340/0x340 [ 3374.420011][ T8028] ? mutex_trylock+0x248/0x2d0 [ 3374.424779][ T8028] ? __ww_mutex_check_waiters+0x160/0x160 [ 3374.430509][ T8028] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3374.436088][ T8028] ? warn_alloc+0x110/0x110 [ 3374.440602][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3374.446235][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3374.451871][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3374.457598][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3374.463254][ T8028] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3374.469073][ T8028] ? ___might_sleep+0x1e7/0x310 [ 3374.473931][ T8028] ? arch_local_save_flags+0x50/0x50 [ 3374.479217][ T8028] ? lock_release+0xc40/0xc40 [ 3374.483897][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3374.488748][ T8028] ? kasan_check_read+0x11/0x20 [ 3374.493619][ T8028] __alloc_pages_nodemask+0xa37/0xdc0 [ 3374.498999][ T8028] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3374.504740][ T8028] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3374.510990][ T8028] alloc_pages_current+0x107/0x210 [ 3374.516112][ T8028] __page_cache_alloc+0x3cd/0x620 [ 3374.521143][ T8028] ? alloc_pages_current+0x10f/0x210 [ 3374.526431][ T8028] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3374.531809][ T8028] ? __page_cache_alloc+0x19c/0x620 [ 3374.537011][ T8028] ? find_held_lock+0x60/0x120 [ 3374.541780][ T8028] pagecache_get_page+0x36f/0x1070 [ 3374.546901][ T8028] ? find_lock_entry+0x8b0/0x8b0 [ 3374.551842][ T8028] ? __do_page_cache_readahead+0x64b/0x800 [ 3374.557665][ T8028] ? read_pages+0x650/0x650 [ 3374.562177][ T8028] ? kasan_check_write+0x14/0x20 [ 3374.567116][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3374.571970][ T8028] ? kasan_check_read+0x11/0x20 [ 3374.576819][ T8028] ? up_read_non_owner+0x100/0x100 [ 3374.581934][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3374.587577][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3374.593832][ T8028] filemap_fault+0xb6a/0x2a30 [ 3374.598522][ T8028] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3374.604353][ T8028] ? __lock_is_held+0xb6/0x140 [ 3374.609126][ T8028] ? lock_acquire+0x1db/0x570 [ 3374.613808][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3374.618838][ T8028] ? lock_release+0xc40/0xc40 [ 3374.623522][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3374.628309][ T8028] ? down_read+0x8d/0x120 [ 3374.633102][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3374.638131][ T8028] ? __down_interruptible+0x740/0x740 [ 3374.643507][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3374.648449][ T8028] ? __might_fault+0x12b/0x1e0 [ 3374.653227][ T8028] ext4_filemap_fault+0x83/0xaf [ 3374.658090][ T8028] __do_fault+0x176/0x7b0 [ 3374.662424][ T8028] ? mark_held_locks+0x100/0x100 [ 3374.667366][ T8028] ? do_page_mkwrite+0x740/0x740 [ 3374.672302][ T8028] ? pmd_val+0x85/0x100 [ 3374.676461][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3374.682344][ T8028] ? pmd_val+0x85/0x100 [ 3374.686503][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3374.692230][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3374.698478][ T8028] __handle_mm_fault+0x377c/0x5610 [ 3374.703612][ T8028] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3374.709163][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3374.714889][ T8028] ? handle_mm_fault+0x3cc/0xc80 [ 3374.719847][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3374.724706][ T8028] ? kasan_check_read+0x11/0x20 [ 3374.729575][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3374.735573][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3374.741212][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3374.747455][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3374.753186][ T8028] handle_mm_fault+0x4ec/0xc80 [ 3374.757957][ T8028] ? __handle_mm_fault+0x5610/0x5610 [ 3374.763243][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3374.769483][ T8028] ? vmacache_update+0x114/0x140 [ 3374.774434][ T8028] __do_page_fault+0x5ef/0xda0 [ 3374.779203][ T8028] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3374.785286][ T8028] do_page_fault+0xe6/0x7d8 [ 3374.789789][ T8028] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3374.795442][ T8028] ? vmalloc_sync_all+0x30/0x30 [ 3374.800294][ T8028] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3374.806453][ T8028] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3374.812095][ T8028] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3374.818274][ T8028] ? page_fault+0x8/0x30 [ 3374.822522][ T8028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3374.828088][ T8028] ? page_fault+0x8/0x30 [ 3374.832334][ T8028] page_fault+0x1e/0x30 [ 3374.836488][ T8028] RIP: 0033:0x45d911 [ 3374.840393][ T8028] Code: Bad RIP value. [ 3374.844459][ T8028] RSP: 002b:000000c420035f18 EFLAGS: 00010246 [ 3374.850526][ T8028] RAX: 0000000000000000 RBX: 0000000000000016 RCX: 000000000045d911 [ 3374.858507][ T8028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 3374.866477][ T8028] RBP: 000000c420035f28 R08: 000000c420035f18 R09: 0000000000000000 [ 3374.874451][ T8028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000430120 [ 3374.882420][ T8028] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000000 [ 3374.927460][ T8028] Mem-Info: [ 3374.931163][ T8028] active_anon:109844 inactive_anon:203 isolated_anon:0 [ 3374.931163][ T8028] active_file:8 inactive_file:0 isolated_file:0 [ 3374.931163][ T8028] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3374.931163][ T8028] slab_reclaimable:15438 slab_unreclaimable:108555 [ 3374.931163][ T8028] mapped:49154 shmem:244 pagetables:1346 bounce:0 [ 3374.931163][ T8028] free:25121 free_pcp:65 free_cma:0 [ 3374.985527][ T8028] Node 0 active_anon:439360kB inactive_anon:812kB active_file:136kB inactive_file:44kB unevictable:0kB isolated(anon):0kB isolated(file):4kB mapped:196716kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 137216kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3375.029869][ T8028] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3375.186553][ T8028] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3375.213680][ T8028] lowmem_reserve[]: 0 2535 2537 2537 [ 3375.218984][ T8028] Node 0 DMA32 free:35932kB min:36080kB low:45100kB high:54120kB active_anon:439360kB inactive_anon:812kB active_file:132kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7360kB pagetables:5384kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3375.248298][ T8028] lowmem_reserve[]: 0 0 2 2 [ 3375.252839][ T8028] Node 0 Normal free:20kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:8kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3375.279574][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3375.284090][ T8028] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3375.319775][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3375.324308][ T8028] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3375.336876][ T8028] Node 0 DMA32: 631*4kB (ME) 1520*8kB (ME) 686*16kB (UM) 271*32kB (M) 16*64kB (M) 1*128kB (U) 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 35996kB [ 3375.352162][ T8028] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 3375.364350][ T8028] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3375.381187][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3375.390770][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3375.400109][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3375.409696][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3375.418961][ T8028] 287 total pagecache pages [ 3375.423498][ T8028] 0 pages in swap cache [ 3375.427651][ T8028] Swap cache stats: add 0, delete 0, find 0/0 [ 3375.434085][ T8028] Free swap = 0kB [ 3375.437807][ T8028] Total swap = 0kB [ 3375.445221][ T8028] 1965979 pages RAM [ 3375.449030][ T8028] 0 pages HighMem/MovableOnly [ 3375.453715][ T8028] 343989 pages reserved [ 3375.457847][ T8028] 0 pages cma reserved [ 3375.461947][ T8028] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=20971,uid=0 [ 3375.476513][ T8028] Out of memory: Kill process 20971 (syz-executor4) score 1004 or sacrifice child [ 3375.485809][ T8028] Killed process 20971 (syz-executor4) total-vm:70664kB, anon-rss:2204kB, file-rss:32768kB, shmem-rss:0kB [ 3375.498264][ T1042] oom_reaper: reaped process 20971 (syz-executor4), now anon-rss:0kB, file-rss:32768kB, shmem-rss:0kB [ 3376.280484][ T3866] udevd invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=-1000 [ 3376.316604][ T3866] CPU: 0 PID: 3866 Comm: udevd Not tainted 5.0.0-rc1-next-20190110 #9 [ 3376.324795][ T3866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3376.334846][ T3866] Call Trace: [ 3376.338147][ T3866] dump_stack+0x1db/0x2d0 [ 3376.342487][ T3866] ? dump_stack_print_info.cold+0x20/0x20 [ 3376.348222][ T3866] ? __lock_acquire+0x572/0x4a10 [ 3376.353179][ T3866] dump_header+0x1e6/0x11a6 [ 3376.357686][ T3866] ? add_lock_to_list.isra.0+0x450/0x450 [ 3376.363322][ T3866] ? print_usage_bug+0xd0/0xd0 [ 3376.368089][ T3866] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3376.373727][ T3866] ? ___ratelimit+0x37c/0x686 [ 3376.378413][ T3866] ? mark_held_locks+0xb1/0x100 [ 3376.383270][ T3866] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3376.389079][ T3866] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3376.394888][ T3866] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3376.400176][ T3866] ? trace_hardirqs_on+0xbd/0x310 [ 3376.405202][ T3866] ? kasan_check_read+0x11/0x20 [ 3376.410054][ T3866] ? ___ratelimit+0x37c/0x686 [ 3376.414733][ T3866] ? trace_hardirqs_off_caller+0x300/0x300 [ 3376.420543][ T3866] ? do_raw_spin_trylock+0x270/0x270 [ 3376.425848][ T3866] ? trace_hardirqs_on_caller+0x310/0x310 [ 3376.431582][ T3866] ? lock_acquire+0x1db/0x570 [ 3376.436274][ T3866] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3376.442079][ T3866] ? ___ratelimit+0xac/0x686 [ 3376.446674][ T3866] ? idr_get_free+0xee0/0xee0 [ 3376.451352][ T3866] ? kasan_check_read+0x11/0x20 [ 3376.456225][ T3866] ? do_raw_spin_unlock+0xa0/0x330 [ 3376.461364][ T3866] oom_kill_process.cold+0x10/0x9ca [ 3376.466587][ T3866] ? _raw_spin_unlock+0x2d/0x50 [ 3376.471446][ T3866] ? oom_badness+0xca/0xa50 [ 3376.475954][ T3866] ? out_of_memory+0xc8f/0x1420 [ 3376.480808][ T3866] ? find_held_lock+0x35/0x120 [ 3376.485595][ T3866] ? oom_evaluate_task+0x540/0x540 [ 3376.490719][ T3866] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3376.496963][ T3866] ? lock_downgrade+0xbe0/0xbe0 [ 3376.501819][ T3866] ? kasan_check_read+0x11/0x20 [ 3376.506676][ T3866] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3376.512663][ T3866] ? rcu_read_unlock_special+0x380/0x380 [ 3376.518301][ T3866] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3376.524545][ T3866] ? oom_evaluate_task+0x305/0x540 [ 3376.529680][ T3866] out_of_memory+0x885/0x1420 [ 3376.534374][ T3866] ? oom_killer_disable+0x340/0x340 [ 3376.539591][ T3866] ? mutex_trylock+0x248/0x2d0 [ 3376.544363][ T3866] ? __ww_mutex_check_waiters+0x160/0x160 [ 3376.550093][ T3866] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3376.555680][ T3866] ? warn_alloc+0x110/0x110 [ 3376.560191][ T3866] ? add_lock_to_list.isra.0+0x450/0x450 [ 3376.565821][ T3866] ? add_lock_to_list.isra.0+0x450/0x450 [ 3376.571458][ T3866] ? check_preemption_disabled+0x48/0x290 [ 3376.577183][ T3866] ? add_lock_to_list.isra.0+0x450/0x450 [ 3376.582836][ T3866] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3376.588651][ T3866] ? ___might_sleep+0x1e7/0x310 [ 3376.593508][ T3866] ? arch_local_save_flags+0x50/0x50 [ 3376.598796][ T3866] ? lock_release+0xc40/0xc40 [ 3376.603476][ T3866] ? lock_downgrade+0xbe0/0xbe0 [ 3376.608329][ T3866] ? kasan_check_read+0x11/0x20 [ 3376.613199][ T3866] __alloc_pages_nodemask+0xa37/0xdc0 [ 3376.618599][ T3866] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3376.624343][ T3866] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3376.630605][ T3866] alloc_pages_current+0x107/0x210 [ 3376.635754][ T3866] __page_cache_alloc+0x3cd/0x620 [ 3376.640785][ T3866] ? alloc_pages_current+0x10f/0x210 [ 3376.646071][ T3866] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3376.651449][ T3866] ? __page_cache_alloc+0x19c/0x620 [ 3376.656652][ T3866] ? find_held_lock+0x60/0x120 [ 3376.661424][ T3866] pagecache_get_page+0x36f/0x1070 [ 3376.666544][ T3866] ? find_lock_entry+0x8b0/0x8b0 [ 3376.671505][ T3866] ? __do_page_cache_readahead+0x64b/0x800 [ 3376.677324][ T3866] ? read_pages+0x650/0x650 [ 3376.681832][ T3866] ? kasan_check_write+0x14/0x20 [ 3376.686770][ T3866] ? lock_downgrade+0xbe0/0xbe0 [ 3376.691651][ T3866] ? kasan_check_read+0x11/0x20 [ 3376.696504][ T3866] ? up_read_non_owner+0x100/0x100 [ 3376.701625][ T3866] ? rcu_read_unlock_special+0x380/0x380 [ 3376.707265][ T3866] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3376.713520][ T3866] filemap_fault+0xb6a/0x2a30 [ 3376.718225][ T3866] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3376.724047][ T3866] ? __lock_is_held+0xb6/0x140 [ 3376.728828][ T3866] ? lock_acquire+0x1db/0x570 [ 3376.733512][ T3866] ? ext4_filemap_fault+0x7b/0xaf [ 3376.738548][ T3866] ? lock_release+0xc40/0xc40 [ 3376.743252][ T3866] ? print_usage_bug+0xd0/0xd0 [ 3376.748028][ T3866] ? down_read+0x8d/0x120 [ 3376.752367][ T3866] ? ext4_filemap_fault+0x7b/0xaf [ 3376.757403][ T3866] ? __down_interruptible+0x740/0x740 [ 3376.762820][ T3866] ? __lock_acquire+0x572/0x4a10 [ 3376.767758][ T3866] ? find_held_lock+0x35/0x120 [ 3376.772538][ T3866] ext4_filemap_fault+0x83/0xaf [ 3376.777420][ T3866] __do_fault+0x176/0x7b0 [ 3376.781752][ T3866] ? mark_held_locks+0x100/0x100 [ 3376.786690][ T3866] ? do_page_mkwrite+0x740/0x740 [ 3376.791629][ T3866] ? pmd_val+0x85/0x100 [ 3376.795789][ T3866] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3376.801506][ T3866] ? pmd_val+0x85/0x100 [ 3376.805665][ T3866] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3376.811392][ T3866] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3376.817809][ T3866] __handle_mm_fault+0x377c/0x5610 [ 3376.822933][ T3866] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3376.828491][ T3866] ? check_preemption_disabled+0x48/0x290 [ 3376.834214][ T3866] ? handle_mm_fault+0x3cc/0xc80 [ 3376.839167][ T3866] ? lock_downgrade+0xbe0/0xbe0 [ 3376.844023][ T3866] ? kasan_check_read+0x11/0x20 [ 3376.848878][ T3866] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3376.854860][ T3866] ? rcu_read_unlock_special+0x380/0x380 [ 3376.860498][ T3866] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3376.866748][ T3866] ? check_preemption_disabled+0x48/0x290 [ 3376.872475][ T3866] handle_mm_fault+0x4ec/0xc80 [ 3376.877246][ T3866] ? __handle_mm_fault+0x5610/0x5610 [ 3376.882545][ T3866] __do_page_fault+0x5ef/0xda0 [ 3376.887345][ T3866] do_page_fault+0xe6/0x7d8 [ 3376.891851][ T3866] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3376.897488][ T3866] ? vmalloc_sync_all+0x30/0x30 [ 3376.902338][ T3866] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3376.908494][ T3866] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3376.914739][ T3866] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3376.920458][ T3866] ? page_fault+0x8/0x30 [ 3376.924704][ T3866] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3376.930251][ T3866] ? page_fault+0x8/0x30 [ 3376.934500][ T3866] page_fault+0x1e/0x30 [ 3376.938659][ T3866] RIP: 0033:0x7f5dd7a92270 [ 3376.943082][ T3866] Code: Bad RIP value. [ 3376.947145][ T3866] RSP: 002b:00007fff792c38f8 EFLAGS: 00010212 [ 3376.953208][ T3866] RAX: 0000000000000000 RBX: 000000000000002f RCX: 0000000000000000 [ 3376.961177][ T3866] RDX: 0000000000d7ed40 RSI: 0000000000d8eaa8 RDI: 00007fff792c39ef [ 3376.969148][ T3866] RBP: 0000000000d8e890 R08: 0000000000d90250 R09: 00007f5dd7a9f430 [ 3376.977127][ T3866] R10: 0000000000d7e250 R11: 00007f5dd7accdd0 R12: 00007fff792c39c0 [ 3376.985100][ T3866] R13: 00000000000000d1 R14: 0000000000d7e2d0 R15: 00007fff792c39ef [ 3377.015857][ T3866] Mem-Info: [ 3377.045755][ T3866] active_anon:109297 inactive_anon:203 isolated_anon:0 [ 3377.045755][ T3866] active_file:35 inactive_file:22 isolated_file:0 [ 3377.045755][ T3866] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3377.045755][ T3866] slab_reclaimable:15439 slab_unreclaimable:108469 [ 3377.045755][ T3866] mapped:49179 shmem:244 pagetables:1321 bounce:0 [ 3377.045755][ T3866] free:24944 free_pcp:0 free_cma:0 [ 3377.190202][ T3866] Node 0 active_anon:437172kB inactive_anon:812kB active_file:32kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 135168kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3377.340321][ T3866] Node 1 active_anon:16kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3377.469615][ T3866] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3377.604997][ T3866] lowmem_reserve[]: 0 2535 2537 2537 [ 3377.636724][ T3866] Node 0 DMA32 free:36052kB min:36080kB low:45100kB high:54120kB active_anon:437172kB inactive_anon:812kB active_file:16kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7328kB pagetables:5284kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3377.771300][ T3866] lowmem_reserve[]: 0 0 2 2 [ 3377.775846][ T3866] Node 0 Normal free:20kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3377.931521][ T3866] lowmem_reserve[]: 0 0 0 0 [ 3377.936102][ T3866] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3378.079031][ T3866] lowmem_reserve[]: 0 0 0 0 [ 3378.084209][ T3866] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3378.176348][ T3866] Node 0 DMA32: 635*4kB (ME) 1524*8kB (UME) 686*16kB (UM) 271*32kB (M) 17*64kB (UM) 0*128kB 0*256kB 0*512kB 1*1024kB (U) 0*2048kB 0*4096kB = 36492kB [ 3378.239715][ T3866] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 3378.291255][ T3866] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3378.347152][ T3866] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3378.402337][ T3866] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3378.450383][ T3866] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3378.490860][ T3866] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3378.522270][ T3866] 312 total pagecache pages [ 3378.539229][ T3866] 0 pages in swap cache [ 3378.548391][ T3866] Swap cache stats: add 0, delete 0, find 0/0 [ 3378.578096][ T3866] Free swap = 0kB [ 3378.592700][ T3866] Total swap = 0kB [ 3378.596431][ T3866] 1965979 pages RAM [ 3378.619663][ T3866] 0 pages HighMem/MovableOnly [ 3378.624347][ T3866] 343989 pages reserved [ 3378.628493][ T3866] 0 pages cma reserved [ 3378.676388][ T3866] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz5,task=syz-executor5,pid=30346,uid=0 [ 3378.741024][ T3866] Out of memory: Kill process 30346 (syz-executor5) score 1004 or sacrifice child [ 3378.777708][ T3866] Killed process 30346 (syz-executor5) total-vm:70532kB, anon-rss:2208kB, file-rss:32768kB, shmem-rss:0kB [ 3379.381371][ T7916] rs:main Q:Reg invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3379.430470][ T7916] CPU: 0 PID: 7916 Comm: rs:main Q:Reg Not tainted 5.0.0-rc1-next-20190110 #9 [ 3379.439367][ T7916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3379.449423][ T7916] Call Trace: [ 3379.452727][ T7916] dump_stack+0x1db/0x2d0 [ 3379.457068][ T7916] ? dump_stack_print_info.cold+0x20/0x20 [ 3379.462791][ T7916] ? __lock_acquire+0x572/0x4a10 [ 3379.467745][ T7916] dump_header+0x1e6/0x11a6 [ 3379.472260][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3379.477897][ T7916] ? print_usage_bug+0xd0/0xd0 [ 3379.482667][ T7916] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3379.488302][ T7916] ? ___ratelimit+0x37c/0x686 [ 3379.493003][ T7916] ? mark_held_locks+0xb1/0x100 [ 3379.497858][ T7916] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3379.503666][ T7916] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3379.509497][ T7916] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3379.514785][ T7916] ? trace_hardirqs_on+0xbd/0x310 [ 3379.519813][ T7916] ? kasan_check_read+0x11/0x20 [ 3379.524664][ T7916] ? ___ratelimit+0x37c/0x686 [ 3379.529344][ T7916] ? trace_hardirqs_off_caller+0x300/0x300 [ 3379.535152][ T7916] ? do_raw_spin_trylock+0x270/0x270 [ 3379.540440][ T7916] ? trace_hardirqs_on_caller+0x310/0x310 [ 3379.546157][ T7916] ? lock_acquire+0x1db/0x570 [ 3379.550850][ T7916] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3379.556664][ T7916] ? ___ratelimit+0xac/0x686 [ 3379.561259][ T7916] ? idr_get_free+0xee0/0xee0 [ 3379.565941][ T7916] ? kasan_check_read+0x11/0x20 [ 3379.570798][ T7916] ? do_raw_spin_unlock+0xa0/0x330 [ 3379.575919][ T7916] oom_kill_process.cold+0x10/0x9ca [ 3379.581118][ T7916] ? _raw_spin_unlock+0x2d/0x50 [ 3379.585967][ T7916] ? oom_badness+0xca/0xa50 [ 3379.590492][ T7916] ? out_of_memory+0xc8f/0x1420 [ 3379.595343][ T7916] ? find_held_lock+0x35/0x120 [ 3379.600109][ T7916] ? oom_evaluate_task+0x540/0x540 [ 3379.605221][ T7916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3379.611481][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3379.616353][ T7916] ? kasan_check_read+0x11/0x20 [ 3379.621205][ T7916] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3379.627183][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3379.632819][ T7916] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3379.639055][ T7916] ? oom_evaluate_task+0x305/0x540 [ 3379.644192][ T7916] out_of_memory+0x885/0x1420 [ 3379.648878][ T7916] ? oom_killer_disable+0x340/0x340 [ 3379.654071][ T7916] ? mutex_trylock+0x248/0x2d0 [ 3379.658839][ T7916] ? __ww_mutex_check_waiters+0x160/0x160 [ 3379.664580][ T7916] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3379.670154][ T7916] ? warn_alloc+0x110/0x110 [ 3379.674658][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3379.680306][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3379.686412][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3379.692133][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3379.697785][ T7916] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3379.703608][ T7916] ? ___might_sleep+0x1e7/0x310 [ 3379.708457][ T7916] ? arch_local_save_flags+0x50/0x50 [ 3379.713741][ T7916] ? lock_release+0xc40/0xc40 [ 3379.718415][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3379.723266][ T7916] ? kasan_check_read+0x11/0x20 [ 3379.728127][ T7916] __alloc_pages_nodemask+0xa37/0xdc0 [ 3379.733504][ T7916] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3379.739241][ T7916] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3379.745484][ T7916] alloc_pages_current+0x107/0x210 [ 3379.750609][ T7916] __page_cache_alloc+0x3cd/0x620 [ 3379.755634][ T7916] ? alloc_pages_current+0x10f/0x210 [ 3379.760920][ T7916] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3379.766290][ T7916] ? __page_cache_alloc+0x19c/0x620 [ 3379.771491][ T7916] ? find_held_lock+0x60/0x120 [ 3379.776257][ T7916] pagecache_get_page+0x36f/0x1070 [ 3379.781374][ T7916] ? find_lock_entry+0x8b0/0x8b0 [ 3379.786309][ T7916] ? __do_page_cache_readahead+0x64b/0x800 [ 3379.792123][ T7916] ? read_pages+0x650/0x650 [ 3379.796625][ T7916] ? kasan_check_write+0x14/0x20 [ 3379.801581][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3379.806448][ T7916] ? kasan_check_read+0x11/0x20 [ 3379.811297][ T7916] ? up_read_non_owner+0x100/0x100 [ 3379.816408][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3379.822039][ T7916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3379.828286][ T7916] filemap_fault+0xb6a/0x2a30 [ 3379.833000][ T7916] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3379.838812][ T7916] ? __lock_is_held+0xb6/0x140 [ 3379.843595][ T7916] ? lock_acquire+0x1db/0x570 [ 3379.848273][ T7916] ? ext4_filemap_fault+0x7b/0xaf [ 3379.853314][ T7916] ? lock_release+0xc40/0xc40 [ 3379.858003][ T7916] ? print_usage_bug+0xd0/0xd0 [ 3379.862763][ T7916] ? mark_held_locks+0xb1/0x100 [ 3379.867621][ T7916] ? down_read+0x8d/0x120 [ 3379.871946][ T7916] ? ext4_filemap_fault+0x7b/0xaf [ 3379.876974][ T7916] ? __down_interruptible+0x740/0x740 [ 3379.882352][ T7916] ? __lock_acquire+0x572/0x4a10 [ 3379.887292][ T7916] ? find_held_lock+0x35/0x120 [ 3379.892062][ T7916] ext4_filemap_fault+0x83/0xaf [ 3379.896931][ T7916] __do_fault+0x176/0x7b0 [ 3379.901260][ T7916] ? mark_held_locks+0x100/0x100 [ 3379.906211][ T7916] ? do_page_mkwrite+0x740/0x740 [ 3379.911158][ T7916] ? pmd_val+0x85/0x100 [ 3379.915323][ T7916] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3379.921041][ T7916] ? pmd_val+0x85/0x100 [ 3379.925224][ T7916] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3379.930964][ T7916] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3379.937202][ T7916] ? mpol_misplaced+0x2ca/0x590 [ 3379.942052][ T7916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3379.948310][ T7916] __handle_mm_fault+0x377c/0x5610 [ 3379.953430][ T7916] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3379.958973][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3379.964696][ T7916] ? handle_mm_fault+0x3cc/0xc80 [ 3379.969644][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3379.974517][ T7916] ? kasan_check_read+0x11/0x20 [ 3379.979408][ T7916] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3379.985385][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3379.991015][ T7916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3379.997250][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3380.002968][ T7916] handle_mm_fault+0x4ec/0xc80 [ 3380.007736][ T7916] ? __handle_mm_fault+0x5610/0x5610 [ 3380.013028][ T7916] __do_page_fault+0x5ef/0xda0 [ 3380.017792][ T7916] ? do_futex+0x2910/0x2910 [ 3380.022304][ T7916] do_page_fault+0xe6/0x7d8 [ 3380.026807][ T7916] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3380.032443][ T7916] ? vmalloc_sync_all+0x30/0x30 [ 3380.037288][ T7916] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3380.043439][ T7916] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3380.049074][ T7916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3380.055328][ T7916] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3380.061058][ T7916] ? page_fault+0x8/0x30 [ 3380.065304][ T7916] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3380.070852][ T7916] ? page_fault+0x8/0x30 [ 3380.075093][ T7916] page_fault+0x1e/0x30 [ 3380.079246][ T7916] RIP: 0033:0x41b2c1 [ 3380.083146][ T7916] Code: Bad RIP value. [ 3380.087208][ T7916] RSP: 002b:00007fc6961cf480 EFLAGS: 00010297 [ 3380.093267][ T7916] RAX: 0000000000445820 RBX: 0000000001651340 RCX: 000000000164fc70 [ 3380.101232][ T7916] RDX: 0000000000000002 RSI: 0000000000000002 RDI: 0000000001651340 [ 3380.109200][ T7916] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000002 [ 3380.117165][ T7916] R10: 0000000000083882 R11: 000000005c37ac58 R12: 0000000001651340 [ 3380.125131][ T7916] R13: 000000000164fc50 R14: 0000000001628a40 R15: 000000000164fc50 [ 3380.503803][ T7916] Mem-Info: [ 3380.507009][ T7916] active_anon:108753 inactive_anon:203 isolated_anon:0 [ 3380.507009][ T7916] active_file:6 inactive_file:5 isolated_file:10 [ 3380.507009][ T7916] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3380.507009][ T7916] slab_reclaimable:15439 slab_unreclaimable:108431 [ 3380.507009][ T7916] mapped:49154 shmem:244 pagetables:1297 bounce:0 [ 3380.507009][ T7916] free:25038 free_pcp:62 free_cma:0 [ 3380.544231][ T7916] Node 0 active_anon:434996kB inactive_anon:812kB active_file:40kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):40kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 133120kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3380.572394][ T7916] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3380.598916][ T7916] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3380.631145][ T7916] lowmem_reserve[]: 0 2535 2537 2537 [ 3380.636455][ T7916] Node 0 DMA32 free:35984kB min:36080kB low:45100kB high:54120kB active_anon:434996kB inactive_anon:812kB active_file:28kB inactive_file:8kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7296kB pagetables:5188kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3380.665648][ T7916] lowmem_reserve[]: 0 0 2 2 [ 3380.670199][ T7916] Node 0 Normal free:20kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3380.696894][ T7916] lowmem_reserve[]: 0 0 0 0 [ 3380.701411][ T7916] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3380.729507][ T7916] lowmem_reserve[]: 0 0 0 0 [ 3380.734033][ T7916] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3380.746634][ T7916] Node 0 DMA32: 632*4kB (ME) 1525*8kB (UME) 686*16kB (UM) 271*32kB (M) 17*64kB (UM) 0*128kB 1*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36232kB [ 3380.762129][ T7916] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 3380.774380][ T7916] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3380.791291][ T7916] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3380.800888][ T7916] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3380.810222][ T7916] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3380.819781][ T7916] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3380.829256][ T7916] 264 total pagecache pages [ 3380.833767][ T7916] 0 pages in swap cache [ 3380.837908][ T7916] Swap cache stats: add 0, delete 0, find 0/0 [ 3380.843989][ T7916] Free swap = 0kB [ 3380.847699][ T7916] Total swap = 0kB [ 3380.851449][ T7916] 1965979 pages RAM [ 3380.855267][ T7916] 0 pages HighMem/MovableOnly [ 3380.859950][ T7916] 343989 pages reserved [ 3380.864085][ T7916] 0 pages cma reserved [ 3380.868128][ T7916] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=19105,uid=0 [ 3380.882653][ T7916] Out of memory: Kill process 19105 (syz-executor4) score 1004 or sacrifice child [ 3380.891928][ T7916] Killed process 19105 (syz-executor4) total-vm:70664kB, anon-rss:2204kB, file-rss:32768kB, shmem-rss:0kB [ 3381.371171][ T8028] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3381.425974][ T8028] CPU: 0 PID: 8028 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3381.434597][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3381.444649][ T8028] Call Trace: [ 3381.447947][ T8028] dump_stack+0x1db/0x2d0 [ 3381.452293][ T8028] ? dump_stack_print_info.cold+0x20/0x20 [ 3381.458015][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3381.462967][ T8028] dump_header+0x1e6/0x11a6 [ 3381.467476][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3381.473112][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3381.477888][ T8028] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3381.483527][ T8028] ? ___ratelimit+0x37c/0x686 [ 3381.488222][ T8028] ? mark_held_locks+0xb1/0x100 [ 3381.493080][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3381.498890][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3381.504700][ T8028] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3381.509996][ T8028] ? trace_hardirqs_on+0xbd/0x310 [ 3381.515029][ T8028] ? kasan_check_read+0x11/0x20 [ 3381.519881][ T8028] ? ___ratelimit+0x37c/0x686 [ 3381.524579][ T8028] ? trace_hardirqs_off_caller+0x300/0x300 [ 3381.530388][ T8028] ? do_raw_spin_trylock+0x270/0x270 [ 3381.535680][ T8028] ? trace_hardirqs_on_caller+0x310/0x310 [ 3381.541416][ T8028] ? lock_acquire+0x1db/0x570 [ 3381.546108][ T8028] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3381.551917][ T8028] ? ___ratelimit+0xac/0x686 [ 3381.556511][ T8028] ? idr_get_free+0xee0/0xee0 [ 3381.561196][ T8028] ? kasan_check_read+0x11/0x20 [ 3381.566048][ T8028] ? do_raw_spin_unlock+0xa0/0x330 [ 3381.571174][ T8028] oom_kill_process.cold+0x10/0x9ca [ 3381.576380][ T8028] ? _raw_spin_unlock+0x2d/0x50 [ 3381.581234][ T8028] ? oom_badness+0xca/0xa50 [ 3381.585744][ T8028] ? out_of_memory+0xc8f/0x1420 [ 3381.590606][ T8028] ? find_held_lock+0x35/0x120 [ 3381.595379][ T8028] ? oom_evaluate_task+0x540/0x540 [ 3381.600493][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3381.606743][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3381.611600][ T8028] ? kasan_check_read+0x11/0x20 [ 3381.616454][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3381.622438][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3381.628073][ T8028] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3381.634317][ T8028] ? oom_evaluate_task+0x305/0x540 [ 3381.639435][ T8028] out_of_memory+0x885/0x1420 [ 3381.644127][ T8028] ? oom_killer_disable+0x340/0x340 [ 3381.649324][ T8028] ? mutex_trylock+0x248/0x2d0 [ 3381.654092][ T8028] ? __ww_mutex_check_waiters+0x160/0x160 [ 3381.659824][ T8028] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3381.665396][ T8028] ? warn_alloc+0x110/0x110 [ 3381.669902][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3381.675535][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3381.681186][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3381.687369][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3381.693023][ T8028] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3381.698837][ T8028] ? ___might_sleep+0x1e7/0x310 [ 3381.703694][ T8028] ? arch_local_save_flags+0x50/0x50 [ 3381.708977][ T8028] ? lock_release+0xc40/0xc40 [ 3381.713662][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3381.718526][ T8028] ? kasan_check_read+0x11/0x20 [ 3381.723407][ T8028] __alloc_pages_nodemask+0xa37/0xdc0 [ 3381.728790][ T8028] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3381.734534][ T8028] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3381.740799][ T8028] alloc_pages_current+0x107/0x210 [ 3381.745921][ T8028] __page_cache_alloc+0x3cd/0x620 [ 3381.750956][ T8028] ? alloc_pages_current+0x10f/0x210 [ 3381.756270][ T8028] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3381.761735][ T8028] ? __page_cache_alloc+0x19c/0x620 [ 3381.766935][ T8028] ? find_held_lock+0x60/0x120 [ 3381.771708][ T8028] pagecache_get_page+0x36f/0x1070 [ 3381.776841][ T8028] ? find_lock_entry+0x8b0/0x8b0 [ 3381.781785][ T8028] ? __do_page_cache_readahead+0x64b/0x800 [ 3381.787613][ T8028] ? read_pages+0x650/0x650 [ 3381.792116][ T8028] ? kasan_check_write+0x14/0x20 [ 3381.797098][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3381.801963][ T8028] ? kasan_check_read+0x11/0x20 [ 3381.806817][ T8028] ? up_read_non_owner+0x100/0x100 [ 3381.811930][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3381.817582][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3381.823849][ T8028] filemap_fault+0xb6a/0x2a30 [ 3381.828578][ T8028] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3381.834397][ T8028] ? __lock_is_held+0xb6/0x140 [ 3381.839199][ T8028] ? lock_acquire+0x1db/0x570 [ 3381.843905][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3381.848941][ T8028] ? lock_release+0xc40/0xc40 [ 3381.853619][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3381.858415][ T8028] ? down_read+0x8d/0x120 [ 3381.862768][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3381.867797][ T8028] ? __down_interruptible+0x740/0x740 [ 3381.873180][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3381.878119][ T8028] ? find_held_lock+0x35/0x120 [ 3381.882890][ T8028] ext4_filemap_fault+0x83/0xaf [ 3381.887746][ T8028] __do_fault+0x176/0x7b0 [ 3381.892097][ T8028] ? mark_held_locks+0x100/0x100 [ 3381.897052][ T8028] ? do_page_mkwrite+0x740/0x740 [ 3381.901988][ T8028] ? pmd_val+0x85/0x100 [ 3381.906151][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3381.911871][ T8028] ? pmd_val+0x85/0x100 [ 3381.916029][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3381.921753][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3381.927999][ T8028] __handle_mm_fault+0x377c/0x5610 [ 3381.933124][ T8028] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3381.938673][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3381.944394][ T8028] ? handle_mm_fault+0x3cc/0xc80 [ 3381.949347][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3381.954199][ T8028] ? kasan_check_read+0x11/0x20 [ 3381.959051][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3381.965038][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3381.970675][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3381.976942][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3381.982672][ T8028] handle_mm_fault+0x4ec/0xc80 [ 3381.987446][ T8028] ? __handle_mm_fault+0x5610/0x5610 [ 3381.992754][ T8028] __do_page_fault+0x5ef/0xda0 [ 3381.997533][ T8028] do_page_fault+0xe6/0x7d8 [ 3382.002051][ T8028] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3382.007694][ T8028] ? vmalloc_sync_all+0x30/0x30 [ 3382.012549][ T8028] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3382.018728][ T8028] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3382.024364][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3382.030610][ T8028] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3382.036335][ T8028] ? page_fault+0x8/0x30 [ 3382.040599][ T8028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3382.046155][ T8028] ? page_fault+0x8/0x30 [ 3382.050423][ T8028] page_fault+0x1e/0x30 [ 3382.054600][ T8028] RIP: 0033:0x4375fe [ 3382.058511][ T8028] Code: Bad RIP value. [ 3382.062597][ T8028] RSP: 002b:000000c420035f38 EFLAGS: 00010297 [ 3382.068666][ T8028] RAX: 0000000000002710 RBX: 0000000000000016 RCX: 0000000000000062 [ 3382.076645][ T8028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 3382.084622][ T8028] RBP: 000000c420035fb0 R08: 000000c420035f18 R09: 0000000000000000 [ 3382.092606][ T8028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000430120 [ 3382.100599][ T8028] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000000 [ 3384.706544][ T8028] Mem-Info: [ 3384.714211][ T8028] active_anon:108209 inactive_anon:203 isolated_anon:0 [ 3384.714211][ T8028] active_file:27 inactive_file:5 isolated_file:0 [ 3384.714211][ T8028] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3384.714211][ T8028] slab_reclaimable:15440 slab_unreclaimable:108368 [ 3384.714211][ T8028] mapped:49161 shmem:244 pagetables:1272 bounce:0 [ 3384.714211][ T8028] free:24948 free_pcp:0 free_cma:0 [ 3384.929202][ T8028] Node 0 active_anon:432820kB inactive_anon:812kB active_file:100kB inactive_file:24kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196644kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 131072kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3385.077834][ T8028] Node 1 active_anon:16kB inactive_anon:0kB active_file:8kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3385.194787][ T8028] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3385.308321][ T8028] lowmem_reserve[]: 0 2535 2537 2537 [ 3385.325415][ T8028] Node 0 DMA32 free:35620kB min:36080kB low:45100kB high:54120kB active_anon:432820kB inactive_anon:812kB active_file:68kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7264kB pagetables:5088kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3385.449205][ T8028] lowmem_reserve[]: 0 0 2 2 [ 3385.453739][ T8028] Node 0 Normal free:24kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3385.592224][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3385.596793][ T8028] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3385.746890][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3385.764877][ T8028] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3385.831121][ T8028] Node 0 DMA32: 631*4kB (ME) 1526*8kB (UME) 686*16kB (M) 271*32kB (M) 16*64kB (M) 3*128kB (U) 1*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36556kB [ 3385.907654][ T8028] Node 0 Normal: 0*4kB 1*8kB (U) 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB [ 3385.971444][ T8028] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3386.054641][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3386.110503][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3386.147092][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3386.187819][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3386.231283][ T8028] 266 total pagecache pages [ 3386.235825][ T8028] 0 pages in swap cache [ 3386.267438][ T8028] Swap cache stats: add 0, delete 0, find 0/0 [ 3386.287328][ T8028] Free swap = 0kB [ 3386.319615][ T8028] Total swap = 0kB [ 3386.323358][ T8028] 1965979 pages RAM [ 3386.327160][ T8028] 0 pages HighMem/MovableOnly [ 3386.376686][ T8028] 343989 pages reserved [ 3386.394826][ T8028] 0 pages cma reserved [ 3386.398902][ T8028] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz5,task=syz-executor5,pid=26138,uid=0 [ 3386.480076][ T8028] Out of memory: Kill process 26138 (syz-executor5) score 1004 or sacrifice child [ 3386.527753][ T8028] Killed process 26138 (syz-executor5) total-vm:70532kB, anon-rss:2208kB, file-rss:32768kB, shmem-rss:0kB [ 3387.335296][ T7916] rs:main Q:Reg invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3387.390247][ T7916] CPU: 1 PID: 7916 Comm: rs:main Q:Reg Not tainted 5.0.0-rc1-next-20190110 #9 [ 3387.399167][ T7916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3387.409227][ T7916] Call Trace: [ 3387.412545][ T7916] dump_stack+0x1db/0x2d0 [ 3387.416894][ T7916] ? dump_stack_print_info.cold+0x20/0x20 [ 3387.422618][ T7916] ? __lock_acquire+0x572/0x4a10 [ 3387.427581][ T7916] dump_header+0x1e6/0x11a6 [ 3387.432101][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3387.437745][ T7916] ? print_usage_bug+0xd0/0xd0 [ 3387.442520][ T7916] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3387.448169][ T7916] ? ___ratelimit+0x37c/0x686 [ 3387.452858][ T7916] ? mark_held_locks+0xb1/0x100 [ 3387.457716][ T7916] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3387.463525][ T7916] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3387.469347][ T7916] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3387.474637][ T7916] ? trace_hardirqs_on+0xbd/0x310 [ 3387.479668][ T7916] ? kasan_check_read+0x11/0x20 [ 3387.484519][ T7916] ? ___ratelimit+0x37c/0x686 [ 3387.489207][ T7916] ? trace_hardirqs_off_caller+0x300/0x300 [ 3387.495014][ T7916] ? do_raw_spin_trylock+0x270/0x270 [ 3387.500300][ T7916] ? trace_hardirqs_on_caller+0x310/0x310 [ 3387.506021][ T7916] ? lock_acquire+0x1db/0x570 [ 3387.510711][ T7916] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3387.516517][ T7916] ? ___ratelimit+0xac/0x686 [ 3387.521121][ T7916] ? idr_get_free+0xee0/0xee0 [ 3387.525802][ T7916] ? kasan_check_read+0x11/0x20 [ 3387.530655][ T7916] ? do_raw_spin_unlock+0xa0/0x330 [ 3387.535784][ T7916] oom_kill_process.cold+0x10/0x9ca [ 3387.540993][ T7916] ? _raw_spin_unlock+0x2d/0x50 [ 3387.545846][ T7916] ? oom_badness+0xca/0xa50 [ 3387.550364][ T7916] ? out_of_memory+0xc8f/0x1420 [ 3387.555219][ T7916] ? find_held_lock+0x35/0x120 [ 3387.559989][ T7916] ? oom_evaluate_task+0x540/0x540 [ 3387.565110][ T7916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3387.571357][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3387.576210][ T7916] ? kasan_check_read+0x11/0x20 [ 3387.581103][ T7916] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3387.587122][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3387.592762][ T7916] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3387.599008][ T7916] ? oom_evaluate_task+0x305/0x540 [ 3387.604133][ T7916] out_of_memory+0x885/0x1420 [ 3387.608824][ T7916] ? oom_killer_disable+0x340/0x340 [ 3387.614025][ T7916] ? mutex_trylock+0x248/0x2d0 [ 3387.618794][ T7916] ? __ww_mutex_check_waiters+0x160/0x160 [ 3387.624529][ T7916] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3387.630117][ T7916] ? warn_alloc+0x110/0x110 [ 3387.634624][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3387.640257][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3387.645895][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3387.651624][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3387.657281][ T7916] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3387.663097][ T7916] ? ___might_sleep+0x1e7/0x310 [ 3387.667952][ T7916] ? arch_local_save_flags+0x50/0x50 [ 3387.673240][ T7916] ? lock_release+0xc40/0xc40 [ 3387.677922][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3387.682888][ T7916] ? kasan_check_read+0x11/0x20 [ 3387.687882][ T7916] __alloc_pages_nodemask+0xa37/0xdc0 [ 3387.693242][ T7916] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3387.698951][ T7916] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3387.705177][ T7916] alloc_pages_current+0x107/0x210 [ 3387.710272][ T7916] __page_cache_alloc+0x3cd/0x620 [ 3387.715278][ T7916] ? alloc_pages_current+0x10f/0x210 [ 3387.720542][ T7916] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3387.725901][ T7916] ? __page_cache_alloc+0x19c/0x620 [ 3387.731082][ T7916] ? find_held_lock+0x60/0x120 [ 3387.735829][ T7916] pagecache_get_page+0x36f/0x1070 [ 3387.740922][ T7916] ? find_lock_entry+0x8b0/0x8b0 [ 3387.745839][ T7916] ? __do_page_cache_readahead+0x64b/0x800 [ 3387.751631][ T7916] ? read_pages+0x650/0x650 [ 3387.756114][ T7916] ? kasan_check_write+0x14/0x20 [ 3387.761119][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3387.765951][ T7916] ? kasan_check_read+0x11/0x20 [ 3387.770780][ T7916] ? up_read_non_owner+0x100/0x100 [ 3387.775874][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3387.781486][ T7916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3387.787709][ T7916] filemap_fault+0xb6a/0x2a30 [ 3387.792370][ T7916] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3387.798172][ T7916] ? __lock_is_held+0xb6/0x140 [ 3387.802921][ T7916] ? lock_acquire+0x1db/0x570 [ 3387.807584][ T7916] ? ext4_filemap_fault+0x7b/0xaf [ 3387.812593][ T7916] ? lock_release+0xc40/0xc40 [ 3387.817252][ T7916] ? print_usage_bug+0xd0/0xd0 [ 3387.821999][ T7916] ? down_read+0x8d/0x120 [ 3387.826306][ T7916] ? ext4_filemap_fault+0x7b/0xaf [ 3387.831310][ T7916] ? __down_interruptible+0x740/0x740 [ 3387.836667][ T7916] ? __handle_mm_fault+0x4361/0x5610 [ 3387.841929][ T7916] ? find_held_lock+0x35/0x120 [ 3387.846673][ T7916] ext4_filemap_fault+0x83/0xaf [ 3387.851512][ T7916] __do_fault+0x176/0x7b0 [ 3387.855824][ T7916] ? do_page_mkwrite+0x740/0x740 [ 3387.860742][ T7916] ? do_raw_spin_unlock+0xa0/0x330 [ 3387.865846][ T7916] ? do_raw_spin_trylock+0x270/0x270 [ 3387.871111][ T7916] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3387.876809][ T7916] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3387.883029][ T7916] ? mpol_misplaced+0x2ca/0x590 [ 3387.887862][ T7916] __handle_mm_fault+0x377c/0x5610 [ 3387.892956][ T7916] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3387.898479][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3387.904177][ T7916] ? handle_mm_fault+0x3cc/0xc80 [ 3387.909114][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3387.913949][ T7916] ? kasan_check_read+0x11/0x20 [ 3387.918778][ T7916] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3387.924759][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3387.930372][ T7916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3387.936589][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3387.942291][ T7916] handle_mm_fault+0x4ec/0xc80 [ 3387.947036][ T7916] ? __handle_mm_fault+0x5610/0x5610 [ 3387.952309][ T7916] __do_page_fault+0x5ef/0xda0 [ 3387.957052][ T7916] ? do_futex+0x2910/0x2910 [ 3387.961564][ T7916] do_page_fault+0xe6/0x7d8 [ 3387.966052][ T7916] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3387.971669][ T7916] ? vmalloc_sync_all+0x30/0x30 [ 3387.976506][ T7916] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3387.982639][ T7916] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3387.988248][ T7916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3387.994466][ T7916] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3388.000163][ T7916] ? page_fault+0x8/0x30 [ 3388.004385][ T7916] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3388.009907][ T7916] ? page_fault+0x8/0x30 [ 3388.014128][ T7916] page_fault+0x1e/0x30 [ 3388.018258][ T7916] RIP: 0033:0x41c910 [ 3388.022145][ T7916] Code: Bad RIP value. [ 3388.026191][ T7916] RSP: 002b:00007fc6961cf4a8 EFLAGS: 00010202 [ 3388.032249][ T7916] RAX: 0000000001651510 RBX: 0000000000000000 RCX: 0000000000000030 [ 3388.040198][ T7916] RDX: 0000000000000000 RSI: 0000000001651510 RDI: 0000000001651340 [ 3388.048147][ T7916] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000006578a0 [ 3388.056109][ T7916] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000001651340 [ 3388.064079][ T7916] R13: 0000000001651510 R14: 0000000001628a40 R15: 000000000164fc50 [ 3388.075614][ T7916] Mem-Info: [ 3388.078779][ T7916] active_anon:107665 inactive_anon:203 isolated_anon:0 [ 3388.078779][ T7916] active_file:2 inactive_file:18 isolated_file:0 [ 3388.078779][ T7916] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3388.078779][ T7916] slab_reclaimable:15440 slab_unreclaimable:108304 [ 3388.078779][ T7916] mapped:49177 shmem:244 pagetables:1248 bounce:0 [ 3388.078779][ T7916] free:25191 free_pcp:0 free_cma:0 [ 3388.134373][ T7916] Node 0 active_anon:430644kB inactive_anon:812kB active_file:44kB inactive_file:192kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196716kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 129024kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3388.162716][ T7916] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3388.189215][ T7916] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3388.216114][ T7916] lowmem_reserve[]: 0 2535 2537 2537 [ 3388.221434][ T7916] Node 0 DMA32 free:36360kB min:36080kB low:45100kB high:54120kB active_anon:430644kB inactive_anon:812kB active_file:40kB inactive_file:96kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7232kB pagetables:4992kB bounce:0kB free_pcp:632kB local_pcp:124kB free_cma:0kB [ 3388.252992][ T7916] lowmem_reserve[]: 0 0 2 2 [ 3388.286389][ T7916] Node 0 Normal free:20kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3388.395123][ T7916] lowmem_reserve[]: 0 0 0 0 [ 3388.414345][ T7916] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3388.559201][ T7916] lowmem_reserve[]: 0 0 0 0 [ 3388.563766][ T7916] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3388.632032][ T7916] Node 0 DMA32: 634*4kB (UME) 1525*8kB (ME) 686*16kB (M) 272*32kB (UM) 16*64kB (M) 1*128kB (U) 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36080kB [ 3388.698691][ T7916] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 3388.753327][ T7916] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3388.841475][ T7916] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3388.880010][ T7916] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3388.926891][ T7916] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3388.966538][ T7916] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3389.006484][ T7916] 288 total pagecache pages [ 3389.025338][ T7916] 0 pages in swap cache [ 3389.042684][ T7916] Swap cache stats: add 0, delete 0, find 0/0 [ 3389.048755][ T7916] Free swap = 0kB [ 3389.098936][ T7916] Total swap = 0kB [ 3389.113793][ T7916] 1965979 pages RAM [ 3389.117608][ T7916] 0 pages HighMem/MovableOnly [ 3389.160056][ T7916] 343989 pages reserved [ 3389.164219][ T7916] 0 pages cma reserved [ 3389.168432][ T7916] Unreclaimable slab info: [ 3389.219171][ T7916] Name Used Total [ 3389.225594][ T7916] pid_3 0KB 3KB [ 3389.277058][ T7916] pid_2 57KB 128KB [ 3389.307537][ T7916] bio-3 0KB 7KB [ 3389.339187][ T7916] batadv_tt_change_cache 2KB 7KB [ 3389.345705][ T7916] batadv_tl_cache 4KB 8KB [ 3389.399209][ T7916] TIPC 11KB 21KB [ 3389.405311][ T7916] SCTPv6 16KB 20KB [ 3389.445866][ T7916] DCCPv6 19KB 29KB [ 3389.470944][ T7916] DCCP 18KB 27KB [ 3389.477108][ T7916] bridge_fdb_cache 6KB 15KB [ 3389.516978][ T7916] fib6_nodes 98KB 124KB [ 3389.523137][ T7916] ip6_dst_cache 45KB 176KB [ 3389.551997][ T7916] RAWv6 68KB 78KB [ 3389.558083][ T7916] UDPv6 3KB 7KB [ 3389.608379][ T7916] TCPv6 23KB 29KB [ 3389.639698][ T7916] nf_conntrack 0KB 7KB [ 3389.645833][ T7916] sd_ext_cdb 0KB 7KB [ 3389.700380][ T7916] scsi_sense_cache 1056KB 1060KB [ 3389.706471][ T7916] virtio_scsi_cmd 16KB 16KB [ 3389.746139][ T7916] sgpool-128 8KB 8KB [ 3389.776892][ T7916] sgpool-64 4KB 12KB [ 3389.801509][ T7916] sgpool-32 2KB 15KB [ 3389.807597][ T7916] sgpool-16 1KB 7KB [ 3389.855137][ T7916] sgpool-8 0KB 7KB [ 3389.879172][ T7916] mqueue_inode_cache 10KB 14KB [ 3389.885342][ T7916] bio_post_read_ctx 14KB 15KB [ 3389.928585][ T7916] xfs_buf 9KB 22KB [ 3389.965275][ T7916] bio-2 14KB 15KB [ 3390.001074][ T7916] jfs_mp 7KB 7KB [ 3390.007241][ T7916] nfs_commit_data 3KB 7KB [ 3390.049205][ T7916] nfs_write_data 32KB 32KB [ 3390.055323][ T7916] ext4_system_zone 1KB 7KB [ 3390.093859][ T7916] bio_post_read_ctx 14KB 15KB [ 3390.129272][ T7916] kioctx 2KB 7KB [ 3390.135353][ T7916] userfaultfd_ctx_cache 0KB 3KB [ 3390.176014][ T7916] dio 0KB 7KB [ 3390.201239][ T7916] bio-1 1KB 7KB [ 3390.207320][ T7916] pid_namespace 2KB 7KB [ 3390.250374][ T7916] rpc_buffers 17KB 25KB [ 3390.256460][ T7916] rpc_tasks 2KB 7KB [ 3390.304294][ T7916] UNIX 9KB 14KB [ 3390.326490][ T7916] tcp_bind_bucket 1KB 4KB [ 3390.355294][ T7916] inet_peer_cache 0KB 4KB [ 3390.372601][ T7916] xfrm_state 2KB 4KB [ 3390.378681][ T7916] ip_fib_trie 15KB 23KB [ 3390.428592][ T7916] ip_fib_alias 71KB 86KB [ 3390.458245][ T7916] ip_dst_cache 4KB 20KB [ 3390.479744][ T7916] RAW 41KB 50KB [ 3390.485823][ T7916] UDP 16KB 26KB [ 3390.529754][ T7916] TCP 8KB 11KB [ 3390.535843][ T7916] hugetlbfs_inode_cache 2KB 7KB [ 3390.581533][ T7916] fscache_cookie_jar 1KB 7KB [ 3390.587729][ T7916] eventpoll_pwq 29KB 55KB [ 3390.637629][ T7916] eventpoll_epi 55KB 98KB [ 3390.658034][ T7916] inotify_inode_mark 51KB 102KB [ 3390.681226][ T7916] request_queue 135KB 141KB [ 3390.687330][ T7916] blkdev_ioc 26KB 46KB [ 3390.729220][ T7916] bio-0 881KB 881KB [ 3390.735327][ T7916] biovec-max 1575KB 1575KB [ 3390.774930][ T7916] biovec-64 724KB 724KB [ 3390.806674][ T7916] biovec-16 97KB 97KB [ 3390.832665][ T7916] bio_integrity_payload 1KB 7KB [ 3390.862917][ T7916] khugepaged_mm_slot 9KB 23KB [ 3390.886892][ T7916] user_namespace 0KB 3KB [ 3390.908110][ T7916] dmaengine-unmap-256 2KB 6KB [ 3390.931979][ T7916] dmaengine-unmap-128 1KB 3KB [ 3390.938230][ T7916] dmaengine-unmap-16 0KB 4KB [ 3390.969666][ T7916] dmaengine-unmap-2 0KB 3KB [ 3390.975751][ T7916] skbuff_fclone_cache 68KB 105KB [ 3391.016820][ T7916] skbuff_head_cache 986KB 1905KB [ 3391.047168][ T7916] configfs_dir_cache 0KB 8KB [ 3391.070076][ T7916] file_lock_cache 0KB 3KB [ 3391.076151][ T7916] file_lock_ctx 0KB 3KB [ 3391.123689][ T7916] fsnotify_mark_connector 29KB 59KB [ 3391.157294][ T7916] net_namespace 60KB 60KB [ 3391.186962][ T7916] shmem_inode_cache 5618KB 6092KB [ 3391.217081][ T7916] task_delay_info 124KB 242KB [ 3391.238307][ T7916] taskstats 58KB 131KB [ 3391.262735][ T7916] proc_dir_entry 658KB 693KB [ 3391.268814][ T7916] pde_opener 0KB 3KB [ 3391.309691][ T7916] seq_file 269KB 397KB [ 3391.315783][ T7916] sigqueue 49KB 122KB [ 3391.365300][ T7916] kernfs_node_cache 13838KB 13860KB [ 3391.386704][ T7916] mnt_cache 86KB 104KB [ 3391.415635][ T7916] filp 3548KB 5163KB [ 3391.440016][ T7916] names_cache 79802KB 79815KB [ 3391.446114][ T7916] iint_cache 87KB 107KB [ 3391.505188][ T7916] key_jar 7KB 15KB [ 3391.527353][ T7916] uts_namespace 2KB 7KB [ 3391.558375][ T7916] nsproxy 2KB 11KB [ 3391.583862][ T7916] vm_area_struct 6174KB 8596KB [ 3391.605796][ T7916] mm_struct 848KB 1280KB [ 3391.627434][ T7916] fs_cache 70KB 144KB [ 3391.650376][ T7916] files_cache 265KB 412KB [ 3391.656457][ T7916] signal_cache 898KB 1265KB [ 3391.702728][ T7916] sighand_cache 453KB 541KB [ 3391.708836][ T7916] task_struct 3941KB 3941KB [ 3391.753407][ T7916] cred_jar 528KB 888KB [ 3391.782076][ T7916] anon_vma_chain 3792KB 5969KB [ 3391.788163][ T7916] anon_vma 121KB 546KB [ 3391.847651][ T7916] pid 79KB 188KB [ 3391.873428][ T7916] Acpi-Operand 155KB 186KB [ 3391.899065][ T7916] Acpi-ParseExt 9KB 11KB [ 3391.905254][ T7916] Acpi-Parse 41KB 47KB [ 3391.947609][ T7916] Acpi-State 52KB 63KB [ 3391.976445][ T7916] Acpi-Namespace 21KB 23KB [ 3392.005912][ T7916] numa_policy 0KB 3KB [ 3392.013183][ T7916] trace_event_file 272KB 274KB [ 3392.038800][ T7916] ftrace_event_field 391KB 393KB [ 3392.072675][ T7916] pool_workqueue 90KB 96KB [ 3392.078763][ T7916] task_group 5KB 7KB [ 3392.114954][ T7916] debug_objects_cache 1609KB 1611KB [ 3392.149132][ T7916] page->ptl 1198KB 2051KB [ 3392.155259][ T7916] kmalloc-2M 2050KB 2050KB [ 3392.196908][ T7916] kmalloc-512k 2056KB 2056KB [ 3392.221273][ T7916] kmalloc-256k 516KB 516KB [ 3392.227355][ T7916] kmalloc-128k 520KB 520KB [ 3392.279593][ T7916] kmalloc-64k 47850KB 48246KB [ 3392.285696][ T7916] kmalloc-32k 1716KB 1716KB [ 3392.349375][ T7916] kmalloc-16k 1221KB 1270KB [ 3392.355476][ T7916] kmalloc-8k 2161KB 2202KB [ 3392.406694][ T7916] kmalloc-4k 22393KB 22393KB [ 3392.430059][ T7916] kmalloc-2k 8189KB 8874KB [ 3392.436173][ T7916] kmalloc-1k 5821KB 8418KB [ 3392.486378][ T7916] kmalloc-512 3950KB 6161KB [ 3392.513651][ T7916] kmalloc-256 3022KB 3423KB [ 3392.531486][ T7916] kmalloc-128 777KB 1256KB [ 3392.537581][ T7916] kmalloc-96 3119KB 4088KB [ 3392.583017][ T7916] kmalloc-64 3990KB 4116KB [ 3392.609121][ T7916] kmalloc-32 2189KB 2413KB [ 3392.615477][ T7916] kmalloc-192 1547KB 1840KB [ 3392.657826][ T7916] kmem_cache 285KB 288KB [ 3392.684549][ T7916] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz5,task=syz-executor5,pid=5473,uid=0 [ 3392.748085][ T7916] Out of memory: Kill process 5473 (syz-executor5) score 1004 or sacrifice child [ 3392.776881][ T7916] Killed process 5473 (syz-executor5) total-vm:70400kB, anon-rss:2200kB, file-rss:32768kB, shmem-rss:0kB [ 3393.046185][ T7916] rs:main Q:Reg invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3393.096031][ T7916] CPU: 0 PID: 7916 Comm: rs:main Q:Reg Not tainted 5.0.0-rc1-next-20190110 #9 [ 3393.104890][ T7916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3393.114939][ T7916] Call Trace: [ 3393.118237][ T7916] dump_stack+0x1db/0x2d0 [ 3393.122589][ T7916] ? dump_stack_print_info.cold+0x20/0x20 [ 3393.128313][ T7916] ? __lock_acquire+0x572/0x4a10 [ 3393.133268][ T7916] dump_header+0x1e6/0x11a6 [ 3393.137777][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3393.143414][ T7916] ? print_usage_bug+0xd0/0xd0 [ 3393.148184][ T7916] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3393.153819][ T7916] ? ___ratelimit+0x37c/0x686 [ 3393.158509][ T7916] ? mark_held_locks+0xb1/0x100 [ 3393.163364][ T7916] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3393.169173][ T7916] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3393.174986][ T7916] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3393.180276][ T7916] ? trace_hardirqs_on+0xbd/0x310 [ 3393.185312][ T7916] ? kasan_check_read+0x11/0x20 [ 3393.190161][ T7916] ? ___ratelimit+0x37c/0x686 [ 3393.194840][ T7916] ? trace_hardirqs_off_caller+0x300/0x300 [ 3393.200652][ T7916] ? do_raw_spin_trylock+0x270/0x270 [ 3393.205941][ T7916] ? trace_hardirqs_on_caller+0x310/0x310 [ 3393.211662][ T7916] ? lock_acquire+0x1db/0x570 [ 3393.216351][ T7916] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3393.222161][ T7916] ? ___ratelimit+0xac/0x686 [ 3393.226758][ T7916] ? idr_get_free+0xee0/0xee0 [ 3393.231438][ T7916] ? kasan_check_read+0x11/0x20 [ 3393.236294][ T7916] ? do_raw_spin_unlock+0xa0/0x330 [ 3393.241419][ T7916] oom_kill_process.cold+0x10/0x9ca [ 3393.246626][ T7916] ? _raw_spin_unlock+0x2d/0x50 [ 3393.251479][ T7916] ? oom_badness+0xca/0xa50 [ 3393.255987][ T7916] ? out_of_memory+0xc8f/0x1420 [ 3393.260841][ T7916] ? find_held_lock+0x35/0x120 [ 3393.265611][ T7916] ? oom_evaluate_task+0x540/0x540 [ 3393.270727][ T7916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3393.276973][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3393.281827][ T7916] ? kasan_check_read+0x11/0x20 [ 3393.286684][ T7916] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3393.292668][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3393.298304][ T7916] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3393.304544][ T7916] ? oom_evaluate_task+0x305/0x540 [ 3393.309682][ T7916] out_of_memory+0x885/0x1420 [ 3393.314380][ T7916] ? oom_killer_disable+0x340/0x340 [ 3393.319592][ T7916] ? mutex_trylock+0x248/0x2d0 [ 3393.324373][ T7916] ? __ww_mutex_check_waiters+0x160/0x160 [ 3393.330117][ T7916] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3393.335689][ T7916] ? warn_alloc+0x110/0x110 [ 3393.340200][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3393.345835][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3393.351471][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3393.357194][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3393.362851][ T7916] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3393.368664][ T7916] ? ___might_sleep+0x1e7/0x310 [ 3393.373518][ T7916] ? arch_local_save_flags+0x50/0x50 [ 3393.378811][ T7916] ? lock_release+0xc40/0xc40 [ 3393.383490][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3393.388361][ T7916] ? kasan_check_read+0x11/0x20 [ 3393.393275][ T7916] __alloc_pages_nodemask+0xa37/0xdc0 [ 3393.398658][ T7916] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3393.404400][ T7916] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3393.410650][ T7916] alloc_pages_current+0x107/0x210 [ 3393.415769][ T7916] __page_cache_alloc+0x3cd/0x620 [ 3393.420800][ T7916] ? alloc_pages_current+0x10f/0x210 [ 3393.426093][ T7916] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3393.431467][ T7916] ? __page_cache_alloc+0x19c/0x620 [ 3393.436671][ T7916] ? find_held_lock+0x60/0x120 [ 3393.441443][ T7916] pagecache_get_page+0x36f/0x1070 [ 3393.446582][ T7916] ? find_lock_entry+0x8b0/0x8b0 [ 3393.451526][ T7916] ? __do_page_cache_readahead+0x64b/0x800 [ 3393.457364][ T7916] ? read_pages+0x650/0x650 [ 3393.461871][ T7916] ? kasan_check_write+0x14/0x20 [ 3393.466811][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3393.471662][ T7916] ? kasan_check_read+0x11/0x20 [ 3393.476516][ T7916] ? up_read_non_owner+0x100/0x100 [ 3393.481813][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3393.487449][ T7916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3393.493700][ T7916] filemap_fault+0xb6a/0x2a30 [ 3393.498390][ T7916] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3393.504227][ T7916] ? __lock_is_held+0xb6/0x140 [ 3393.508995][ T7916] ? lock_acquire+0x1db/0x570 [ 3393.513677][ T7916] ? ext4_filemap_fault+0x7b/0xaf [ 3393.518709][ T7916] ? lock_release+0xc40/0xc40 [ 3393.523390][ T7916] ? print_usage_bug+0xd0/0xd0 [ 3393.528171][ T7916] ? down_read+0x8d/0x120 [ 3393.532502][ T7916] ? ext4_filemap_fault+0x7b/0xaf [ 3393.537532][ T7916] ? __down_interruptible+0x740/0x740 [ 3393.542926][ T7916] ? __handle_mm_fault+0x4361/0x5610 [ 3393.548213][ T7916] ? find_held_lock+0x35/0x120 [ 3393.552987][ T7916] ext4_filemap_fault+0x83/0xaf [ 3393.557843][ T7916] __do_fault+0x176/0x7b0 [ 3393.562180][ T7916] ? do_page_mkwrite+0x740/0x740 [ 3393.567150][ T7916] ? do_raw_spin_unlock+0xa0/0x330 [ 3393.572264][ T7916] ? do_raw_spin_trylock+0x270/0x270 [ 3393.577553][ T7916] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3393.583295][ T7916] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3393.589540][ T7916] ? mpol_misplaced+0x2ca/0x590 [ 3393.594416][ T7916] __handle_mm_fault+0x377c/0x5610 [ 3393.599542][ T7916] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3393.605110][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3393.610834][ T7916] ? handle_mm_fault+0x3cc/0xc80 [ 3393.615791][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3393.620646][ T7916] ? kasan_check_read+0x11/0x20 [ 3393.625532][ T7916] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3393.631530][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3393.637179][ T7916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3393.643423][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3393.649154][ T7916] handle_mm_fault+0x4ec/0xc80 [ 3393.653928][ T7916] ? __handle_mm_fault+0x5610/0x5610 [ 3393.659230][ T7916] __do_page_fault+0x5ef/0xda0 [ 3393.663995][ T7916] ? do_futex+0x2910/0x2910 [ 3393.668513][ T7916] do_page_fault+0xe6/0x7d8 [ 3393.673019][ T7916] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3393.678658][ T7916] ? vmalloc_sync_all+0x30/0x30 [ 3393.683507][ T7916] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3393.690146][ T7916] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3393.695781][ T7916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3393.702029][ T7916] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3393.707747][ T7916] ? page_fault+0x8/0x30 [ 3393.711997][ T7916] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3393.717547][ T7916] ? page_fault+0x8/0x30 [ 3393.721813][ T7916] page_fault+0x1e/0x30 [ 3393.725969][ T7916] RIP: 0033:0x41c910 [ 3393.729876][ T7916] Code: Bad RIP value. [ 3393.733938][ T7916] RSP: 002b:00007fc6961cf4a8 EFLAGS: 00010202 [ 3393.740000][ T7916] RAX: 0000000001651510 RBX: 0000000000000000 RCX: 0000000000000030 [ 3393.747974][ T7916] RDX: 0000000000000000 RSI: 0000000001651510 RDI: 0000000001651340 [ 3393.755947][ T7916] RBP: 0000000000000000 R08: 0000000000000000 R09: 00000000006578a0 [ 3393.763918][ T7916] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000001651340 [ 3393.771889][ T7916] R13: 0000000001651510 R14: 0000000001628a40 R15: 000000000164fc50 [ 3394.532510][ T7916] Mem-Info: [ 3394.549642][ T7916] active_anon:107129 inactive_anon:203 isolated_anon:0 [ 3394.549642][ T7916] active_file:9 inactive_file:52 isolated_file:0 [ 3394.549642][ T7916] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3394.549642][ T7916] slab_reclaimable:15440 slab_unreclaimable:108251 [ 3394.549642][ T7916] mapped:49154 shmem:244 pagetables:1224 bounce:0 [ 3394.549642][ T7916] free:24936 free_pcp:0 free_cma:0 [ 3394.760076][ T7916] Node 0 active_anon:428500kB inactive_anon:812kB active_file:44kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 126976kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3394.874427][ T7916] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:24kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3394.986664][ T7916] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3395.100369][ T7916] lowmem_reserve[]: 0 2535 2537 2537 [ 3395.105711][ T7916] Node 0 DMA32 free:36084kB min:36080kB low:45100kB high:54120kB active_anon:428500kB inactive_anon:812kB active_file:48kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7200kB pagetables:4896kB bounce:0kB free_pcp:20kB local_pcp:16kB free_cma:0kB [ 3395.230745][ T7916] lowmem_reserve[]: 0 0 2 2 [ 3395.235314][ T7916] Node 0 Normal free:16kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3395.400028][ T7916] lowmem_reserve[]: 0 0 0 0 [ 3395.404599][ T7916] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:24kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3395.572344][ T7916] lowmem_reserve[]: 0 0 0 0 [ 3395.576905][ T7916] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3395.655315][ T7916] Node 0 DMA32: 639*4kB (UME) 1527*8kB (UME) 686*16kB (M) 272*32kB (UM) 17*64kB (UM) 0*128kB 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36052kB [ 3395.727680][ T7916] Node 0 Normal: 0*4kB 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 3395.803721][ T7916] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3395.865907][ T7916] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3395.909210][ T7916] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3395.918505][ T7916] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3396.012757][ T7916] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3396.053394][ T7916] 277 total pagecache pages [ 3396.057917][ T7916] 0 pages in swap cache [ 3396.084052][ T7916] Swap cache stats: add 0, delete 0, find 0/0 [ 3396.114379][ T7916] Free swap = 0kB [ 3396.118109][ T7916] Total swap = 0kB [ 3396.145454][ T7916] 1965979 pages RAM [ 3396.156062][ T7916] 0 pages HighMem/MovableOnly [ 3396.175083][ T7916] 343989 pages reserved [ 3396.194525][ T7916] 0 pages cma reserved [ 3396.198608][ T7916] Unreclaimable slab info: [ 3396.229207][ T7916] Name Used Total [ 3396.235480][ T7916] pid_3 0KB 3KB [ 3396.277917][ T7916] pid_2 57KB 128KB [ 3396.309796][ T7916] bio-3 0KB 7KB [ 3396.315895][ T7916] batadv_tt_change_cache 2KB 7KB [ 3396.391015][ T7916] batadv_tl_cache 4KB 8KB [ 3396.397145][ T7916] TIPC 11KB 21KB [ 3396.449225][ T7916] SCTPv6 16KB 20KB [ 3396.455343][ T7916] DCCPv6 19KB 29KB [ 3396.519140][ T7916] DCCP 18KB 27KB [ 3396.525323][ T7916] bridge_fdb_cache 6KB 15KB [ 3396.577349][ T7916] fib6_nodes 98KB 124KB [ 3396.608767][ T7916] ip6_dst_cache 45KB 176KB [ 3396.636791][ T7916] RAWv6 68KB 78KB [ 3396.670415][ T7916] UDPv6 3KB 7KB [ 3396.676543][ T7916] TCPv6 23KB 29KB [ 3396.727893][ T7916] nf_conntrack 0KB 7KB [ 3396.766513][ T7916] sd_ext_cdb 0KB 7KB [ 3396.799987][ T7916] scsi_sense_cache 1056KB 1060KB [ 3396.806091][ T7916] virtio_scsi_cmd 16KB 16KB [ 3396.861263][ T7916] sgpool-128 8KB 8KB [ 3396.867372][ T7916] sgpool-64 4KB 12KB [ 3396.929241][ T7916] sgpool-32 2KB 15KB [ 3396.935326][ T7916] sgpool-16 1KB 7KB [ 3396.976262][ T7916] sgpool-8 0KB 7KB [ 3396.998786][ T7916] mqueue_inode_cache 10KB 14KB [ 3397.030182][ T7916] bio_post_read_ctx 14KB 15KB [ 3397.036283][ T7916] xfs_buf 9KB 22KB [ 3397.079188][ T7916] bio-2 14KB 15KB [ 3397.085271][ T7916] jfs_mp 7KB 7KB [ 3397.140358][ T7916] nfs_commit_data 3KB 7KB [ 3397.146439][ T7916] nfs_write_data 32KB 32KB [ 3397.190017][ T7916] ext4_system_zone 1KB 7KB [ 3397.196101][ T7916] bio_post_read_ctx 14KB 15KB [ 3397.241923][ T7916] kioctx 2KB 7KB [ 3397.248005][ T7916] userfaultfd_ctx_cache 0KB 3KB [ 3397.289040][ T7916] dio 0KB 7KB [ 3397.322722][ T7916] bio-1 1KB 7KB [ 3397.328806][ T7916] pid_namespace 2KB 7KB [ 3397.368337][ T7916] rpc_buffers 17KB 25KB [ 3397.389420][ T7916] rpc_tasks 2KB 7KB [ 3397.395528][ T7916] UNIX 9KB 14KB [ 3397.447627][ T7916] tcp_bind_bucket 1KB 4KB [ 3397.468337][ T7916] inet_peer_cache 0KB 4KB [ 3397.494788][ T7916] xfrm_state 2KB 4KB [ 3397.519769][ T7916] ip_fib_trie 15KB 23KB [ 3397.525844][ T7916] ip_fib_alias 71KB 86KB [ 3397.545294][ T7916] ip_dst_cache 4KB 20KB [ 3397.551597][ T7916] RAW 41KB 50KB [ 3397.557837][ T7916] UDP 16KB 26KB [ 3397.563932][ T7916] TCP 8KB 11KB [ 3397.570046][ T7916] hugetlbfs_inode_cache 2KB 7KB [ 3397.576438][ T7916] fscache_cookie_jar 1KB 7KB [ 3397.583551][ T7916] eventpoll_pwq 29KB 55KB [ 3397.589662][ T7916] eventpoll_epi 55KB 98KB [ 3397.595710][ T7916] inotify_inode_mark 51KB 102KB [ 3397.601887][ T7916] request_queue 135KB 141KB [ 3397.608206][ T7916] blkdev_ioc 26KB 46KB [ 3397.614291][ T7916] bio-0 892KB 892KB [ 3397.620434][ T7916] biovec-max 1575KB 1575KB [ 3397.626495][ T7916] biovec-64 740KB 740KB [ 3397.632578][ T7916] biovec-16 100KB 101KB [ 3397.638626][ T7916] bio_integrity_payload 1KB 7KB [ 3397.645043][ T7916] khugepaged_mm_slot 9KB 23KB [ 3397.651212][ T7916] user_namespace 0KB 3KB [ 3397.657258][ T7916] dmaengine-unmap-256 2KB 6KB [ 3397.668234][ T7916] dmaengine-unmap-128 1KB 3KB [ 3397.674523][ T7916] dmaengine-unmap-16 0KB 4KB [ 3397.680707][ T7916] dmaengine-unmap-2 0KB 3KB [ 3397.686757][ T7916] skbuff_fclone_cache 68KB 105KB [ 3397.693022][ T7916] skbuff_head_cache 1003KB 1905KB [ 3397.699151][ T7916] configfs_dir_cache 0KB 8KB [ 3397.705292][ T7916] file_lock_cache 0KB 3KB [ 3397.712289][ T7916] file_lock_ctx 0KB 3KB [ 3397.718372][ T7916] fsnotify_mark_connector 29KB 59KB [ 3397.724992][ T7916] net_namespace 60KB 60KB [ 3397.731087][ T7916] shmem_inode_cache 5618KB 6092KB [ 3397.737147][ T7916] task_delay_info 124KB 242KB [ 3397.743218][ T7916] taskstats 58KB 131KB [ 3397.749312][ T7916] proc_dir_entry 658KB 693KB [ 3397.755369][ T7916] pde_opener 0KB 3KB [ 3397.761442][ T7916] seq_file 269KB 397KB [ 3397.767487][ T7916] sigqueue 49KB 122KB [ 3397.773591][ T7916] kernfs_node_cache 13838KB 13860KB [ 3397.799208][ T7916] mnt_cache 86KB 104KB [ 3397.805293][ T7916] filp 3548KB 5163KB [ 3397.830645][ T7916] names_cache 79802KB 79815KB [ 3397.836727][ T7916] iint_cache 87KB 107KB [ 3397.872367][ T7916] key_jar 7KB 15KB [ 3397.878474][ T7916] uts_namespace 2KB 7KB [ 3397.935328][ T7916] nsproxy 2KB 11KB [ 3397.973224][ T7916] vm_area_struct 6173KB 8596KB [ 3398.002149][ T7916] mm_struct 848KB 1280KB [ 3398.008229][ T7916] fs_cache 70KB 144KB [ 3398.048205][ T7916] files_cache 265KB 412KB [ 3398.074428][ T7916] signal_cache 898KB 1265KB [ 3398.100044][ T7916] sighand_cache 453KB 541KB [ 3398.106144][ T7916] task_struct 3941KB 3941KB [ 3398.158113][ T7916] cred_jar 528KB 888KB [ 3398.194126][ T7916] anon_vma_chain 3791KB 5969KB [ 3398.224039][ T7916] anon_vma 121KB 546KB [ 3398.259227][ T7916] pid 79KB 188KB [ 3398.265342][ T7916] Acpi-Operand 155KB 186KB [ 3398.303819][ T7916] Acpi-ParseExt 9KB 11KB [ 3398.336080][ T7916] Acpi-Parse 41KB 47KB [ 3398.364029][ T7916] Acpi-State 52KB 63KB [ 3398.383170][ T7916] Acpi-Namespace 21KB 23KB [ 3398.405959][ T7916] numa_policy 0KB 3KB [ 3398.436993][ T7916] trace_event_file 272KB 274KB [ 3398.457677][ T7916] ftrace_event_field 391KB 393KB [ 3398.488051][ T7916] pool_workqueue 90KB 96KB [ 3398.513797][ T7916] task_group 5KB 7KB [ 3398.540944][ T7916] debug_objects_cache 1609KB 1611KB [ 3398.547205][ T7916] page->ptl 1198KB 2051KB [ 3398.606013][ T7916] kmalloc-2M 2050KB 2050KB [ 3398.632929][ T7916] kmalloc-512k 2056KB 2056KB [ 3398.639014][ T7916] kmalloc-256k 516KB 516KB [ 3398.693775][ T7916] kmalloc-128k 520KB 520KB [ 3398.732064][ T7916] kmalloc-64k 47850KB 48114KB [ 3398.738171][ T7916] kmalloc-32k 1716KB 1716KB [ 3398.782784][ T7916] kmalloc-16k 1221KB 1270KB [ 3398.788878][ T7916] kmalloc-8k 2161KB 2202KB [ 3398.840661][ T7916] kmalloc-4k 22393KB 22393KB [ 3398.846775][ T7916] kmalloc-2k 8189KB 8874KB [ 3398.908769][ T7916] kmalloc-1k 5821KB 8418KB [ 3398.942378][ T7916] kmalloc-512 3967KB 6161KB [ 3398.948464][ T7916] kmalloc-256 3022KB 3423KB [ 3398.994181][ T7916] kmalloc-128 777KB 1256KB [ 3399.019636][ T7916] kmalloc-96 3116KB 4088KB [ 3399.025715][ T7916] kmalloc-64 3991KB 4116KB [ 3399.083384][ T7916] kmalloc-32 2210KB 2421KB [ 3399.114701][ T7916] kmalloc-192 1547KB 1840KB [ 3399.149025][ T7916] kmem_cache 285KB 288KB [ 3399.176660][ T7916] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz5,task=syz-executor5,pid=5547,uid=0 [ 3399.259401][ T7916] Out of memory: Kill process 5547 (syz-executor5) score 1004 or sacrifice child [ 3399.268613][ T7916] Killed process 5547 (syz-executor5) total-vm:70400kB, anon-rss:2200kB, file-rss:32768kB, shmem-rss:0kB [ 3400.340115][ T8028] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3400.403127][ T8028] CPU: 1 PID: 8028 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3400.411735][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3400.421785][ T8028] Call Trace: [ 3400.425103][ T8028] dump_stack+0x1db/0x2d0 [ 3400.429440][ T8028] ? dump_stack_print_info.cold+0x20/0x20 [ 3400.435162][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3400.440116][ T8028] dump_header+0x1e6/0x11a6 [ 3400.444630][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3400.450266][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3400.455036][ T8028] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3400.460679][ T8028] ? ___ratelimit+0x37c/0x686 [ 3400.465363][ T8028] ? mark_held_locks+0xb1/0x100 [ 3400.470222][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3400.476035][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3400.481847][ T8028] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3400.487135][ T8028] ? trace_hardirqs_on+0xbd/0x310 [ 3400.492162][ T8028] ? kasan_check_read+0x11/0x20 [ 3400.497011][ T8028] ? ___ratelimit+0x37c/0x686 [ 3400.501695][ T8028] ? trace_hardirqs_off_caller+0x300/0x300 [ 3400.507503][ T8028] ? do_raw_spin_trylock+0x270/0x270 [ 3400.512792][ T8028] ? trace_hardirqs_on_caller+0x310/0x310 [ 3400.518510][ T8028] ? lock_acquire+0x1db/0x570 [ 3400.523195][ T8028] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3400.529003][ T8028] ? ___ratelimit+0xac/0x686 [ 3400.533602][ T8028] ? idr_get_free+0xee0/0xee0 [ 3400.538292][ T8028] ? kasan_check_read+0x11/0x20 [ 3400.543146][ T8028] ? do_raw_spin_unlock+0xa0/0x330 [ 3400.548272][ T8028] oom_kill_process.cold+0x10/0x9ca [ 3400.553509][ T8028] ? _raw_spin_unlock+0x2d/0x50 [ 3400.558366][ T8028] ? oom_badness+0xca/0xa50 [ 3400.562881][ T8028] ? out_of_memory+0xc8f/0x1420 [ 3400.567732][ T8028] ? find_held_lock+0x35/0x120 [ 3400.572500][ T8028] ? oom_evaluate_task+0x540/0x540 [ 3400.577620][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3400.583868][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3400.588722][ T8028] ? kasan_check_read+0x11/0x20 [ 3400.593583][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3400.599575][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3400.605218][ T8028] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3400.611465][ T8028] ? oom_evaluate_task+0x305/0x540 [ 3400.616592][ T8028] out_of_memory+0x885/0x1420 [ 3400.621286][ T8028] ? oom_killer_disable+0x340/0x340 [ 3400.626485][ T8028] ? mutex_trylock+0x248/0x2d0 [ 3400.631255][ T8028] ? __ww_mutex_check_waiters+0x160/0x160 [ 3400.636991][ T8028] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3400.642571][ T8028] ? warn_alloc+0x110/0x110 [ 3400.647085][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3400.652724][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3400.658358][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3400.664088][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3400.669745][ T8028] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3400.675567][ T8028] ? ___might_sleep+0x1e7/0x310 [ 3400.680424][ T8028] ? arch_local_save_flags+0x50/0x50 [ 3400.685709][ T8028] ? lock_release+0xc40/0xc40 [ 3400.690387][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3400.695238][ T8028] ? kasan_check_read+0x11/0x20 [ 3400.700109][ T8028] __alloc_pages_nodemask+0xa37/0xdc0 [ 3400.705494][ T8028] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3400.711236][ T8028] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3400.717483][ T8028] alloc_pages_current+0x107/0x210 [ 3400.722602][ T8028] __page_cache_alloc+0x3cd/0x620 [ 3400.727635][ T8028] ? alloc_pages_current+0x10f/0x210 [ 3400.732922][ T8028] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3400.738298][ T8028] ? __page_cache_alloc+0x19c/0x620 [ 3400.743502][ T8028] ? find_held_lock+0x60/0x120 [ 3400.748276][ T8028] pagecache_get_page+0x36f/0x1070 [ 3400.753395][ T8028] ? find_lock_entry+0x8b0/0x8b0 [ 3400.758338][ T8028] ? __do_page_cache_readahead+0x64b/0x800 [ 3400.764156][ T8028] ? read_pages+0x650/0x650 [ 3400.768665][ T8028] ? kasan_check_write+0x14/0x20 [ 3400.773608][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3400.778457][ T8028] ? kasan_check_read+0x11/0x20 [ 3400.783311][ T8028] ? up_read_non_owner+0x100/0x100 [ 3400.788425][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3400.794060][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3400.800317][ T8028] filemap_fault+0xb6a/0x2a30 [ 3400.805011][ T8028] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3400.810825][ T8028] ? __lock_is_held+0xb6/0x140 [ 3400.815608][ T8028] ? lock_acquire+0x1db/0x570 [ 3400.820799][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3400.825829][ T8028] ? lock_release+0xc40/0xc40 [ 3400.830508][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3400.835286][ T8028] ? down_read+0x8d/0x120 [ 3400.839618][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3400.844645][ T8028] ? __down_interruptible+0x740/0x740 [ 3400.850021][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3400.854956][ T8028] ? find_held_lock+0x35/0x120 [ 3400.859731][ T8028] ext4_filemap_fault+0x83/0xaf [ 3400.864597][ T8028] __do_fault+0x176/0x7b0 [ 3400.868930][ T8028] ? mark_held_locks+0x100/0x100 [ 3400.873871][ T8028] ? do_page_mkwrite+0x740/0x740 [ 3400.878809][ T8028] ? pmd_val+0x85/0x100 [ 3400.882967][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3400.888686][ T8028] ? pmd_val+0x85/0x100 [ 3400.892850][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3400.898585][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3400.904838][ T8028] __handle_mm_fault+0x377c/0x5610 [ 3400.909966][ T8028] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3400.915513][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3400.921237][ T8028] ? handle_mm_fault+0x3cc/0xc80 [ 3400.926713][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3400.931574][ T8028] ? kasan_check_read+0x11/0x20 [ 3400.936429][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3400.942413][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3400.948046][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3400.954294][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3400.960020][ T8028] handle_mm_fault+0x4ec/0xc80 [ 3400.964789][ T8028] ? __handle_mm_fault+0x5610/0x5610 [ 3400.970123][ T8028] __do_page_fault+0x5ef/0xda0 [ 3400.974901][ T8028] do_page_fault+0xe6/0x7d8 [ 3400.979406][ T8028] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3400.985044][ T8028] ? vmalloc_sync_all+0x30/0x30 [ 3400.989902][ T8028] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3400.996062][ T8028] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3401.001704][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3401.007946][ T8028] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3401.013674][ T8028] ? page_fault+0x8/0x30 [ 3401.017929][ T8028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3401.023478][ T8028] ? page_fault+0x8/0x30 [ 3401.027725][ T8028] page_fault+0x1e/0x30 [ 3401.031884][ T8028] RIP: 0033:0x437622 [ 3401.035792][ T8028] Code: Bad RIP value. [ 3401.039856][ T8028] RSP: 002b:000000c420035f38 EFLAGS: 00010216 [ 3401.045920][ T8028] RAX: 000003177faa3a6d RBX: 0000000000000016 RCX: 0000000000000017 [ 3401.053889][ T8028] RDX: 000000001b7a346d RSI: 000000c420035f18 RDI: 0000000000000001 [ 3401.061919][ T8028] RBP: 000000c420035fb0 R08: 00007ffdd53830b0 R09: 00007ffdd5383080 [ 3401.069891][ T8028] R10: 0000000000084a1c R11: 0000000000000d47 R12: 0000000000430120 [ 3401.077859][ T8028] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000000 [ 3401.125968][ T8028] Mem-Info: [ 3401.152832][ T8028] active_anon:106593 inactive_anon:203 isolated_anon:0 [ 3401.152832][ T8028] active_file:35 inactive_file:11 isolated_file:0 [ 3401.152832][ T8028] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3401.152832][ T8028] slab_reclaimable:15440 slab_unreclaimable:108197 [ 3401.152832][ T8028] mapped:49154 shmem:244 pagetables:1200 bounce:0 [ 3401.152832][ T8028] free:25004 free_pcp:0 free_cma:0 [ 3401.347588][ T8028] Node 0 active_anon:426356kB inactive_anon:812kB active_file:140kB inactive_file:40kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 124928kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3401.462519][ T8028] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3401.582886][ T8028] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3401.727218][ T8028] lowmem_reserve[]: 0 2535 2537 2537 [ 3401.750785][ T8028] Node 0 DMA32 free:35664kB min:36080kB low:45100kB high:54120kB active_anon:426356kB inactive_anon:812kB active_file:132kB inactive_file:12kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7168kB pagetables:4800kB bounce:0kB free_pcp:248kB local_pcp:248kB free_cma:0kB [ 3401.906020][ T8028] lowmem_reserve[]: 0 0 2 2 [ 3401.918654][ T8028] Node 0 Normal free:12kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:12kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3402.063053][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3402.067610][ T8028] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3402.214665][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3402.239000][ T8028] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3402.307457][ T8028] Node 0 DMA32: 639*4kB (ME) 1528*8kB (UME) 687*16kB (UM) 271*32kB (M) 16*64kB (M) 1*128kB (U) 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36108kB [ 3402.377847][ T8028] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 3402.448201][ T8028] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3402.536971][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3402.578339][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3402.608328][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3402.672684][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3402.719024][ T8028] 266 total pagecache pages [ 3402.741205][ T8028] 0 pages in swap cache [ 3402.745377][ T8028] Swap cache stats: add 0, delete 0, find 0/0 [ 3402.797998][ T8028] Free swap = 0kB [ 3402.815520][ T8028] Total swap = 0kB [ 3402.836374][ T8028] 1965979 pages RAM [ 3402.853077][ T8028] 0 pages HighMem/MovableOnly [ 3402.857758][ T8028] 343989 pages reserved [ 3402.900180][ T8028] 0 pages cma reserved [ 3402.904255][ T8028] Unreclaimable slab info: [ 3402.908666][ T8028] Name Used Total [ 3402.978005][ T8028] pid_3 0KB 3KB [ 3403.009034][ T8028] pid_2 57KB 128KB [ 3403.036537][ T8028] bio-3 0KB 7KB [ 3403.062572][ T8028] batadv_tt_change_cache 2KB 7KB [ 3403.087385][ T8028] batadv_tl_cache 4KB 8KB [ 3403.111973][ T8028] TIPC 11KB 21KB [ 3403.118075][ T8028] SCTPv6 16KB 20KB [ 3403.163650][ T8028] DCCPv6 19KB 29KB [ 3403.202064][ T8028] DCCP 18KB 27KB [ 3403.208196][ T8028] bridge_fdb_cache 6KB 15KB [ 3403.259582][ T8028] fib6_nodes 98KB 124KB [ 3403.265671][ T8028] ip6_dst_cache 45KB 176KB [ 3403.323672][ T8028] RAWv6 68KB 78KB [ 3403.353667][ T8028] UDPv6 3KB 7KB [ 3403.389189][ T8028] TCPv6 23KB 29KB [ 3403.395282][ T8028] nf_conntrack 0KB 7KB [ 3403.445773][ T8028] sd_ext_cdb 0KB 7KB [ 3403.476220][ T8028] scsi_sense_cache 1056KB 1060KB [ 3403.513288][ T8028] virtio_scsi_cmd 16KB 16KB [ 3403.543345][ T8028] sgpool-128 8KB 8KB [ 3403.571738][ T8028] sgpool-64 4KB 12KB [ 3403.577820][ T8028] sgpool-32 2KB 15KB [ 3403.631298][ T8028] sgpool-16 1KB 7KB [ 3403.637396][ T8028] sgpool-8 0KB 7KB [ 3403.687268][ T8028] mqueue_inode_cache 10KB 14KB [ 3403.713387][ T8028] bio_post_read_ctx 14KB 15KB [ 3403.741323][ T8028] xfs_buf 9KB 22KB [ 3403.747482][ T8028] bio-2 14KB 15KB [ 3403.801257][ T8028] jfs_mp 7KB 7KB [ 3403.807394][ T8028] nfs_commit_data 3KB 7KB [ 3403.852150][ T8028] nfs_write_data 32KB 32KB [ 3403.858316][ T8028] ext4_system_zone 1KB 7KB [ 3403.905361][ T8028] bio_post_read_ctx 14KB 15KB [ 3403.944092][ T8028] kioctx 2KB 7KB [ 3403.975016][ T8028] userfaultfd_ctx_cache 0KB 3KB [ 3404.005269][ T8028] dio 0KB 7KB [ 3404.028691][ T8028] bio-1 1KB 7KB [ 3404.042584][ T8028] pid_namespace 2KB 7KB [ 3404.048695][ T8028] rpc_buffers 17KB 25KB [ 3404.125037][ T8028] rpc_tasks 2KB 7KB [ 3404.154055][ T8028] UNIX 9KB 14KB [ 3404.186692][ T8028] tcp_bind_bucket 1KB 4KB [ 3404.218386][ T8028] inet_peer_cache 0KB 4KB [ 3404.252725][ T8028] xfrm_state 2KB 4KB [ 3404.258827][ T8028] ip_fib_trie 15KB 23KB [ 3404.300821][ T8028] ip_fib_alias 71KB 86KB [ 3404.306935][ T8028] ip_dst_cache 4KB 20KB [ 3404.348834][ T8028] RAW 41KB 50KB [ 3404.378052][ T8028] UDP 16KB 26KB [ 3404.402628][ T8028] TCP 8KB 11KB [ 3404.408726][ T8028] hugetlbfs_inode_cache 2KB 7KB [ 3404.455700][ T8028] fscache_cookie_jar 1KB 7KB [ 3404.485464][ T8028] eventpoll_pwq 29KB 55KB [ 3404.516742][ T8028] eventpoll_epi 55KB 98KB [ 3404.549168][ T8028] inotify_inode_mark 51KB 102KB [ 3404.555349][ T8028] request_queue 135KB 141KB [ 3404.600701][ T8028] blkdev_ioc 26KB 46KB [ 3404.606791][ T8028] bio-0 903KB 903KB [ 3404.647152][ T8028] biovec-max 1575KB 1575KB [ 3404.671509][ T8028] biovec-64 748KB 748KB [ 3404.677636][ T8028] biovec-16 101KB 101KB [ 3404.722860][ T8028] bio_integrity_payload 1KB 7KB [ 3404.755622][ T8028] khugepaged_mm_slot 9KB 23KB [ 3404.777950][ T8028] user_namespace 0KB 3KB [ 3404.802396][ T8028] dmaengine-unmap-256 2KB 6KB [ 3404.808656][ T8028] dmaengine-unmap-128 1KB 3KB [ 3404.852987][ T8028] dmaengine-unmap-16 0KB 4KB [ 3404.876616][ T8028] dmaengine-unmap-2 0KB 3KB [ 3404.906054][ T8028] skbuff_fclone_cache 68KB 105KB [ 3404.929583][ T8028] skbuff_head_cache 1029KB 1905KB [ 3404.935658][ T8028] configfs_dir_cache 0KB 8KB [ 3404.979445][ T8028] file_lock_cache 0KB 3KB [ 3404.985541][ T8028] file_lock_ctx 0KB 3KB [ 3405.039891][ T8028] fsnotify_mark_connector 29KB 59KB [ 3405.046525][ T8028] net_namespace 60KB 60KB [ 3405.097691][ T8028] shmem_inode_cache 5618KB 6092KB [ 3405.127859][ T8028] task_delay_info 124KB 242KB [ 3405.152363][ T8028] taskstats 58KB 131KB [ 3405.158443][ T8028] proc_dir_entry 658KB 693KB [ 3405.201601][ T8028] pde_opener 0KB 3KB [ 3405.207678][ T8028] seq_file 269KB 397KB [ 3405.253190][ T8028] sigqueue 49KB 122KB [ 3405.279235][ T8028] kernfs_node_cache 13838KB 13860KB [ 3405.285315][ T8028] mnt_cache 86KB 104KB [ 3405.329701][ T8028] filp 3548KB 5163KB [ 3405.335882][ T8028] names_cache 79798KB 79810KB [ 3405.380172][ T8028] iint_cache 87KB 107KB [ 3405.386257][ T8028] key_jar 7KB 15KB [ 3405.432575][ T8028] uts_namespace 2KB 7KB [ 3405.438658][ T8028] nsproxy 2KB 11KB [ 3405.484804][ T8028] vm_area_struct 6173KB 8596KB [ 3405.513682][ T8028] mm_struct 848KB 1280KB [ 3405.543227][ T8028] fs_cache 70KB 144KB [ 3405.549336][ T8028] files_cache 265KB 412KB [ 3405.555401][ T8028] signal_cache 898KB 1265KB [ 3405.561614][ T8028] sighand_cache 453KB 541KB [ 3405.567679][ T8028] task_struct 3941KB 3941KB [ 3405.573749][ T8028] cred_jar 528KB 888KB [ 3405.579854][ T8028] anon_vma_chain 3791KB 5969KB [ 3405.585910][ T8028] anon_vma 121KB 546KB [ 3405.591983][ T8028] pid 79KB 188KB [ 3405.598026][ T8028] Acpi-Operand 155KB 186KB [ 3405.604129][ T8028] Acpi-ParseExt 9KB 11KB [ 3405.610229][ T8028] Acpi-Parse 41KB 47KB [ 3405.616274][ T8028] Acpi-State 52KB 63KB [ 3405.622374][ T8028] Acpi-Namespace 21KB 23KB [ 3405.628433][ T8028] numa_policy 0KB 3KB [ 3405.634506][ T8028] trace_event_file 272KB 274KB [ 3405.640627][ T8028] ftrace_event_field 391KB 393KB [ 3405.646772][ T8028] pool_workqueue 90KB 96KB [ 3405.652843][ T8028] task_group 5KB 7KB [ 3405.663354][ T8028] debug_objects_cache 1609KB 1611KB [ 3405.669656][ T8028] page->ptl 1198KB 2051KB [ 3405.675774][ T8028] kmalloc-2M 2050KB 2050KB [ 3405.681865][ T8028] kmalloc-512k 2056KB 2056KB [ 3405.688062][ T8028] kmalloc-256k 516KB 516KB [ 3405.694147][ T8028] kmalloc-128k 520KB 520KB [ 3405.700255][ T8028] kmalloc-64k 47850KB 47982KB [ 3405.706314][ T8028] kmalloc-32k 1716KB 1716KB [ 3405.712386][ T8028] kmalloc-16k 1221KB 1270KB [ 3405.718429][ T8028] kmalloc-8k 2161KB 2202KB [ 3405.724574][ T8028] kmalloc-4k 22393KB 22393KB [ 3405.730680][ T8028] kmalloc-2k 8189KB 8874KB [ 3405.736727][ T8028] kmalloc-1k 5821KB 8418KB [ 3405.742845][ T8028] kmalloc-512 3967KB 6161KB [ 3405.748904][ T8028] kmalloc-256 3022KB 3423KB [ 3405.754977][ T8028] kmalloc-128 777KB 1256KB [ 3405.761102][ T8028] kmalloc-96 3116KB 4088KB [ 3405.767161][ T8028] kmalloc-64 3991KB 4116KB [ 3405.773240][ T8028] kmalloc-32 2222KB 2433KB [ 3405.779783][ T8028] kmalloc-192 1547KB 1840KB [ 3405.785860][ T8028] kmem_cache 285KB 288KB [ 3405.791966][ T8028] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz5,task=syz-executor5,pid=5559,uid=0 [ 3405.806434][ T8028] Out of memory: Kill process 5559 (syz-executor5) score 1004 or sacrifice child [ 3405.815696][ T8028] Killed process 5559 (syz-executor5) total-vm:70400kB, anon-rss:2200kB, file-rss:32768kB, shmem-rss:0kB [ 3405.828097][ T1042] oom_reaper: reaped process 5559 (syz-executor5), now anon-rss:0kB, file-rss:32768kB, shmem-rss:0kB [ 3406.849296][ T8030] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3406.901359][ T8030] CPU: 0 PID: 8030 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3406.909997][ T8030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3406.920049][ T8030] Call Trace: [ 3406.923348][ T8030] dump_stack+0x1db/0x2d0 [ 3406.927688][ T8030] ? dump_stack_print_info.cold+0x20/0x20 [ 3406.933410][ T8030] ? __lock_acquire+0x572/0x4a10 [ 3406.938362][ T8030] dump_header+0x1e6/0x11a6 [ 3406.942869][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3406.948509][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3406.953279][ T8030] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3406.958916][ T8030] ? ___ratelimit+0x37c/0x686 [ 3406.963614][ T8030] ? mark_held_locks+0xb1/0x100 [ 3406.968477][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3406.974285][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3406.980094][ T8030] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3406.985398][ T8030] ? trace_hardirqs_on+0xbd/0x310 [ 3406.990428][ T8030] ? kasan_check_read+0x11/0x20 [ 3406.995282][ T8030] ? ___ratelimit+0x37c/0x686 [ 3406.999960][ T8030] ? trace_hardirqs_off_caller+0x300/0x300 [ 3407.005769][ T8030] ? do_raw_spin_trylock+0x270/0x270 [ 3407.011058][ T8030] ? trace_hardirqs_on_caller+0x310/0x310 [ 3407.016777][ T8030] ? lock_acquire+0x1db/0x570 [ 3407.021463][ T8030] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3407.027275][ T8030] ? ___ratelimit+0xac/0x686 [ 3407.031870][ T8030] ? idr_get_free+0xee0/0xee0 [ 3407.036546][ T8030] ? kasan_check_read+0x11/0x20 [ 3407.041415][ T8030] ? do_raw_spin_unlock+0xa0/0x330 [ 3407.046544][ T8030] oom_kill_process.cold+0x10/0x9ca [ 3407.051765][ T8030] ? _raw_spin_unlock+0x2d/0x50 [ 3407.056655][ T8030] ? oom_badness+0xca/0xa50 [ 3407.061161][ T8030] ? out_of_memory+0xc8f/0x1420 [ 3407.066013][ T8030] ? find_held_lock+0x35/0x120 [ 3407.070781][ T8030] ? oom_evaluate_task+0x540/0x540 [ 3407.075899][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3407.082152][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3407.087006][ T8030] ? kasan_check_read+0x11/0x20 [ 3407.091860][ T8030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3407.097852][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3407.103591][ T8030] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3407.109838][ T8030] ? oom_evaluate_task+0x305/0x540 [ 3407.114956][ T8030] out_of_memory+0x885/0x1420 [ 3407.119651][ T8030] ? oom_killer_disable+0x340/0x340 [ 3407.124849][ T8030] ? mutex_trylock+0x248/0x2d0 [ 3407.129622][ T8030] ? __ww_mutex_check_waiters+0x160/0x160 [ 3407.135354][ T8030] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3407.140930][ T8030] ? warn_alloc+0x110/0x110 [ 3407.145444][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3407.151080][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3407.156722][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3407.162461][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3407.168128][ T8030] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3407.173941][ T8030] ? ___might_sleep+0x1e7/0x310 [ 3407.178835][ T8030] ? arch_local_save_flags+0x50/0x50 [ 3407.184124][ T8030] ? lock_release+0xc40/0xc40 [ 3407.188803][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3407.193657][ T8030] ? kasan_check_read+0x11/0x20 [ 3407.198525][ T8030] __alloc_pages_nodemask+0xa37/0xdc0 [ 3407.203923][ T8030] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3407.209669][ T8030] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3407.215923][ T8030] alloc_pages_current+0x107/0x210 [ 3407.221043][ T8030] __page_cache_alloc+0x3cd/0x620 [ 3407.226073][ T8030] ? alloc_pages_current+0x10f/0x210 [ 3407.231355][ T8030] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3407.236705][ T8030] ? __page_cache_alloc+0x19c/0x620 [ 3407.241880][ T8030] ? find_held_lock+0x60/0x120 [ 3407.246629][ T8030] pagecache_get_page+0x36f/0x1070 [ 3407.251724][ T8030] ? find_lock_entry+0x8b0/0x8b0 [ 3407.256641][ T8030] ? __do_page_cache_readahead+0x64b/0x800 [ 3407.262431][ T8030] ? read_pages+0x650/0x650 [ 3407.266913][ T8030] ? kasan_check_write+0x14/0x20 [ 3407.271830][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3407.276657][ T8030] ? kasan_check_read+0x11/0x20 [ 3407.281496][ T8030] ? up_read_non_owner+0x100/0x100 [ 3407.286597][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3407.292210][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3407.298449][ T8030] filemap_fault+0xb6a/0x2a30 [ 3407.303110][ T8030] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3407.308896][ T8030] ? __lock_is_held+0xb6/0x140 [ 3407.313640][ T8030] ? lock_acquire+0x1db/0x570 [ 3407.318299][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3407.323304][ T8030] ? lock_release+0xc40/0xc40 [ 3407.327959][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3407.332708][ T8030] ? down_read+0x8d/0x120 [ 3407.337016][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3407.342033][ T8030] ? __down_interruptible+0x740/0x740 [ 3407.347385][ T8030] ? __lock_acquire+0x572/0x4a10 [ 3407.352316][ T8030] ? find_held_lock+0x35/0x120 [ 3407.357062][ T8030] ext4_filemap_fault+0x83/0xaf [ 3407.361897][ T8030] __do_fault+0x176/0x7b0 [ 3407.366204][ T8030] ? mark_held_locks+0x100/0x100 [ 3407.371122][ T8030] ? do_page_mkwrite+0x740/0x740 [ 3407.376036][ T8030] ? pmd_val+0x85/0x100 [ 3407.380171][ T8030] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3407.385869][ T8030] ? pmd_val+0x85/0x100 [ 3407.390020][ T8030] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3407.395723][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3407.401941][ T8030] __handle_mm_fault+0x377c/0x5610 [ 3407.407053][ T8030] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3407.412589][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3407.418317][ T8030] ? handle_mm_fault+0x3cc/0xc80 [ 3407.423270][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3407.428097][ T8030] ? kasan_check_read+0x11/0x20 [ 3407.432927][ T8030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3407.438886][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3407.444498][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3407.450718][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3407.456433][ T8030] handle_mm_fault+0x4ec/0xc80 [ 3407.461180][ T8030] ? __handle_mm_fault+0x5610/0x5610 [ 3407.466452][ T8030] __do_page_fault+0x5ef/0xda0 [ 3407.471205][ T8030] do_page_fault+0xe6/0x7d8 [ 3407.475687][ T8030] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3407.481317][ T8030] ? vmalloc_sync_all+0x30/0x30 [ 3407.486148][ T8030] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3407.492279][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3407.498499][ T8030] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3407.504198][ T8030] ? page_fault+0x8/0x30 [ 3407.508423][ T8030] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3407.513979][ T8030] ? page_fault+0x8/0x30 [ 3407.518201][ T8030] page_fault+0x1e/0x30 [ 3407.522333][ T8030] RIP: 0033:0x42f260 [ 3407.526216][ T8030] Code: Bad RIP value. [ 3407.530259][ T8030] RSP: 002b:000000c420033e40 EFLAGS: 00010206 [ 3407.536299][ T8030] RAX: 000000c420000180 RBX: 000000c4335aba70 RCX: 0000000400000002 [ 3407.544249][ T8030] RDX: 000000c420019300 RSI: 000000c420026740 RDI: 000000c420033f38 [ 3407.552197][ T8030] RBP: 000000c420033fa8 R08: 000000c420000180 R09: 00000000008da0cd [ 3407.560146][ T8030] R10: 0000000000000001 R11: 00000000008da0cd R12: 0000000000000011 [ 3407.568096][ T8030] R13: 0000000000000001 R14: 00000000000000f8 R15: 0000000000000008 [ 3410.479144][ T8030] Mem-Info: [ 3410.482372][ T8030] active_anon:106057 inactive_anon:203 isolated_anon:0 [ 3410.482372][ T8030] active_file:31 inactive_file:0 isolated_file:0 [ 3410.482372][ T8030] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3410.482372][ T8030] slab_reclaimable:15440 slab_unreclaimable:108180 [ 3410.482372][ T8030] mapped:49154 shmem:244 pagetables:1176 bounce:0 [ 3410.482372][ T8030] free:25000 free_pcp:61 free_cma:0 [ 3410.691431][ T8030] Node 0 active_anon:424212kB inactive_anon:812kB active_file:48kB inactive_file:24kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 122880kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3410.833108][ T8030] Node 1 active_anon:16kB inactive_anon:0kB active_file:20kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3410.967123][ T8030] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3411.109381][ T8030] lowmem_reserve[]: 0 2535 2537 2537 [ 3411.114709][ T8030] Node 0 DMA32 free:35840kB min:36080kB low:45100kB high:54120kB active_anon:424212kB inactive_anon:812kB active_file:48kB inactive_file:20kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7136kB pagetables:4704kB bounce:0kB free_pcp:244kB local_pcp:0kB free_cma:0kB [ 3411.289116][ T8030] lowmem_reserve[]: 0 0 2 2 [ 3411.293682][ T8030] Node 0 Normal free:12kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3411.450348][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3411.454920][ T8030] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:20kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3411.621809][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3411.626376][ T8030] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3411.707273][ T8030] Node 0 DMA32: 640*4kB (ME) 1526*8kB (ME) 687*16kB (M) 271*32kB (M) 16*64kB (M) 1*128kB (U) 1*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35840kB [ 3411.788599][ T8030] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 3411.855094][ T8030] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3411.938259][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3412.000050][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3412.048435][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3412.088289][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3412.146260][ T8030] 263 total pagecache pages [ 3412.172295][ T8030] 0 pages in swap cache [ 3412.176476][ T8030] Swap cache stats: add 0, delete 0, find 0/0 [ 3412.219551][ T8030] Free swap = 0kB [ 3412.223330][ T8030] Total swap = 0kB [ 3412.227043][ T8030] 1965979 pages RAM [ 3412.282640][ T8030] 0 pages HighMem/MovableOnly [ 3412.287374][ T8030] 343989 pages reserved [ 3412.332736][ T8030] 0 pages cma reserved [ 3412.336850][ T8030] Unreclaimable slab info: [ 3412.376380][ T8030] Name Used Total [ 3412.402809][ T8030] pid_3 0KB 3KB [ 3412.408937][ T8030] pid_2 57KB 128KB [ 3412.470682][ T8030] bio-3 0KB 7KB [ 3412.476815][ T8030] batadv_tt_change_cache 2KB 7KB [ 3412.534251][ T8030] batadv_tl_cache 4KB 8KB [ 3412.565535][ T8030] TIPC 11KB 21KB [ 3412.595641][ T8030] SCTPv6 16KB 20KB [ 3412.629633][ T8030] DCCPv6 19KB 29KB [ 3412.635715][ T8030] DCCP 18KB 27KB [ 3412.677440][ T8030] bridge_fdb_cache 6KB 15KB [ 3412.702411][ T8030] fib6_nodes 98KB 124KB [ 3412.708490][ T8030] ip6_dst_cache 45KB 176KB [ 3412.784883][ T8030] RAWv6 68KB 78KB [ 3412.816461][ T8030] UDPv6 3KB 7KB [ 3412.854017][ T8030] TCPv6 23KB 29KB [ 3412.886481][ T8030] nf_conntrack 0KB 7KB [ 3412.913691][ T8030] sd_ext_cdb 0KB 7KB [ 3412.949730][ T8030] scsi_sense_cache 1056KB 1060KB [ 3412.955810][ T8030] virtio_scsi_cmd 16KB 16KB [ 3413.015377][ T8030] sgpool-128 8KB 8KB [ 3413.047184][ T8030] sgpool-64 4KB 12KB [ 3413.079122][ T8030] sgpool-32 2KB 15KB [ 3413.085201][ T8030] sgpool-16 1KB 7KB [ 3413.158004][ T8030] sgpool-8 0KB 7KB [ 3413.186637][ T8030] mqueue_inode_cache 10KB 14KB [ 3413.217590][ T8030] bio_post_read_ctx 14KB 15KB [ 3413.249262][ T8030] xfs_buf 9KB 22KB [ 3413.255384][ T8030] bio-2 14KB 15KB [ 3413.312568][ T8030] jfs_mp 7KB 7KB [ 3413.318726][ T8030] nfs_commit_data 3KB 7KB [ 3413.368610][ T8030] nfs_write_data 32KB 32KB [ 3413.407883][ T8030] ext4_system_zone 1KB 7KB [ 3413.443319][ T8030] bio_post_read_ctx 14KB 15KB [ 3413.465418][ T8030] kioctx 2KB 7KB [ 3413.486970][ T8030] userfaultfd_ctx_cache 0KB 3KB [ 3413.527981][ T8030] dio 0KB 7KB [ 3413.550166][ T8030] bio-1 1KB 7KB [ 3413.556250][ T8030] pid_namespace 2KB 7KB [ 3413.618154][ T8030] rpc_buffers 17KB 25KB [ 3413.652924][ T8030] rpc_tasks 2KB 7KB [ 3413.659022][ T8030] UNIX 9KB 14KB [ 3413.736658][ T8030] tcp_bind_bucket 1KB 4KB [ 3413.769210][ T8030] inet_peer_cache 0KB 4KB [ 3413.775296][ T8030] xfrm_state 2KB 4KB [ 3413.834815][ T8030] ip_fib_trie 15KB 23KB [ 3413.864808][ T8030] ip_fib_alias 71KB 86KB [ 3413.899506][ T8030] ip_dst_cache 4KB 20KB [ 3413.905600][ T8030] RAW 41KB 50KB [ 3413.961303][ T8030] UDP 16KB 26KB [ 3413.967384][ T8030] TCP 8KB 11KB [ 3414.022680][ T8030] hugetlbfs_inode_cache 2KB 7KB [ 3414.052412][ T8030] fscache_cookie_jar 1KB 7KB [ 3414.058601][ T8030] eventpoll_pwq 29KB 55KB [ 3414.117274][ T8030] eventpoll_epi 55KB 98KB [ 3414.145734][ T8030] inotify_inode_mark 51KB 102KB [ 3414.179176][ T8030] request_queue 135KB 141KB [ 3414.185254][ T8030] blkdev_ioc 27KB 46KB [ 3414.245734][ T8030] bio-0 917KB 918KB [ 3414.272709][ T8030] biovec-max 1575KB 1575KB [ 3414.278790][ T8030] biovec-64 768KB 771KB [ 3414.333931][ T8030] biovec-16 103KB 105KB [ 3414.368440][ T8030] bio_integrity_payload 1KB 7KB [ 3414.402789][ T8030] khugepaged_mm_slot 9KB 23KB [ 3414.408964][ T8030] user_namespace 0KB 3KB [ 3414.459634][ T8030] dmaengine-unmap-256 2KB 6KB [ 3414.465888][ T8030] dmaengine-unmap-128 1KB 3KB [ 3414.524211][ T8030] dmaengine-unmap-16 0KB 4KB [ 3414.557077][ T8030] dmaengine-unmap-2 0KB 3KB [ 3414.584452][ T8030] skbuff_ext_cache 3KB 3KB [ 3414.620100][ T8030] skbuff_fclone_cache 68KB 105KB [ 3414.626350][ T8030] skbuff_head_cache 1054KB 1905KB [ 3414.679520][ T8030] configfs_dir_cache 0KB 8KB [ 3414.685701][ T8030] file_lock_cache 0KB 3KB [ 3414.744102][ T8030] file_lock_ctx 0KB 3KB [ 3414.776793][ T8030] fsnotify_mark_connector 29KB 59KB [ 3414.804891][ T8030] net_namespace 60KB 60KB [ 3414.843438][ T8030] shmem_inode_cache 5618KB 6092KB [ 3414.866331][ T8030] task_delay_info 124KB 242KB [ 3414.908566][ T8030] taskstats 58KB 131KB [ 3414.935970][ T8030] proc_dir_entry 658KB 693KB [ 3414.966594][ T8030] pde_opener 0KB 3KB [ 3415.004938][ T8030] seq_file 269KB 397KB [ 3415.030098][ T8030] sigqueue 49KB 122KB [ 3415.036187][ T8030] kernfs_node_cache 13838KB 13860KB [ 3415.092088][ T8030] mnt_cache 86KB 104KB [ 3415.098167][ T8030] filp 3548KB 5163KB [ 3415.153673][ T8030] names_cache 79802KB 79810KB [ 3415.189622][ T8030] iint_cache 87KB 107KB [ 3415.195723][ T8030] key_jar 7KB 15KB [ 3415.249441][ T8030] uts_namespace 2KB 7KB [ 3415.255541][ T8030] nsproxy 2KB 11KB [ 3415.316835][ T8030] vm_area_struct 6173KB 8596KB [ 3415.345315][ T8030] mm_struct 848KB 1280KB [ 3415.375627][ T8030] fs_cache 70KB 144KB [ 3415.410132][ T8030] files_cache 265KB 412KB [ 3415.416211][ T8030] signal_cache 898KB 1265KB [ 3415.469209][ T8030] sighand_cache 453KB 541KB [ 3415.475311][ T8030] task_struct 3941KB 3941KB [ 3415.535606][ T8030] cred_jar 528KB 888KB [ 3415.556945][ T8030] anon_vma_chain 3791KB 5969KB [ 3415.598025][ T8030] anon_vma 121KB 546KB [ 3415.623809][ T8030] pid 79KB 188KB [ 3415.659345][ T8030] Acpi-Operand 155KB 186KB [ 3415.665433][ T8030] Acpi-ParseExt 9KB 11KB [ 3415.721724][ T8030] Acpi-Parse 41KB 47KB [ 3415.727825][ T8030] Acpi-State 52KB 63KB [ 3415.789214][ T8030] Acpi-Namespace 21KB 23KB [ 3415.795338][ T8030] numa_policy 0KB 3KB [ 3415.846191][ T8030] trace_event_file 272KB 274KB [ 3415.881728][ T8030] ftrace_event_field 391KB 393KB [ 3415.887915][ T8030] pool_workqueue 90KB 96KB [ 3415.939756][ T8030] task_group 5KB 7KB [ 3415.945877][ T8030] debug_objects_cache 1609KB 1611KB [ 3416.004180][ T8030] page->ptl 1198KB 2051KB [ 3416.038583][ T8030] kmalloc-2M 2050KB 2050KB [ 3416.069995][ T8030] kmalloc-512k 2056KB 2056KB [ 3416.076088][ T8030] kmalloc-256k 516KB 516KB [ 3416.129944][ T8030] kmalloc-128k 520KB 520KB [ 3416.136049][ T8030] kmalloc-64k 47850KB 47916KB [ 3416.198809][ T8030] kmalloc-32k 1716KB 1716KB [ 3416.226244][ T8030] kmalloc-16k 1221KB 1270KB [ 3416.259281][ T8030] kmalloc-8k 2161KB 2202KB [ 3416.265359][ T8030] kmalloc-4k 22393KB 22393KB [ 3416.320430][ T8030] kmalloc-2k 8189KB 8874KB [ 3416.326513][ T8030] kmalloc-1k 5835KB 8418KB [ 3416.385744][ T8030] kmalloc-512 4018KB 6161KB [ 3416.420125][ T8030] kmalloc-256 3022KB 3423KB [ 3416.426231][ T8030] kmalloc-128 777KB 1256KB [ 3416.486793][ T8030] kmalloc-96 3112KB 4088KB [ 3416.519649][ T8030] kmalloc-64 3989KB 4116KB [ 3416.525736][ T8030] kmalloc-32 2254KB 2464KB [ 3416.581513][ T8030] kmalloc-192 1547KB 1840KB [ 3416.587609][ T8030] kmem_cache 285KB 288KB [ 3416.648972][ T8030] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=30885,uid=0 [ 3416.719706][ T8030] Out of memory: Kill process 30885 (syz-executor4) score 1004 or sacrifice child [ 3416.729002][ T8030] Killed process 30885 (syz-executor4) total-vm:70532kB, anon-rss:2196kB, file-rss:32768kB, shmem-rss:0kB [ 3417.450408][ T7918] rsyslogd invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3417.507371][ T7918] CPU: 0 PID: 7918 Comm: rsyslogd Not tainted 5.0.0-rc1-next-20190110 #9 [ 3417.515803][ T7918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3417.525860][ T7918] Call Trace: [ 3417.529163][ T7918] dump_stack+0x1db/0x2d0 [ 3417.533600][ T7918] ? dump_stack_print_info.cold+0x20/0x20 [ 3417.539321][ T7918] ? __lock_acquire+0x572/0x4a10 [ 3417.544274][ T7918] dump_header+0x1e6/0x11a6 [ 3417.548787][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3417.554428][ T7918] ? print_usage_bug+0xd0/0xd0 [ 3417.559203][ T7918] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3417.564841][ T7918] ? ___ratelimit+0x37c/0x686 [ 3417.569524][ T7918] ? mark_held_locks+0xb1/0x100 [ 3417.574417][ T7918] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3417.580400][ T7918] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3417.586212][ T7918] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3417.591502][ T7918] ? trace_hardirqs_on+0xbd/0x310 [ 3417.596530][ T7918] ? kasan_check_read+0x11/0x20 [ 3417.601394][ T7918] ? ___ratelimit+0x37c/0x686 [ 3417.606073][ T7918] ? trace_hardirqs_off_caller+0x300/0x300 [ 3417.611882][ T7918] ? do_raw_spin_trylock+0x270/0x270 [ 3417.617195][ T7918] ? trace_hardirqs_on_caller+0x310/0x310 [ 3417.622916][ T7918] ? lock_acquire+0x1db/0x570 [ 3417.627611][ T7918] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3417.633420][ T7918] ? ___ratelimit+0xac/0x686 [ 3417.638013][ T7918] ? idr_get_free+0xee0/0xee0 [ 3417.642693][ T7918] ? kasan_check_read+0x11/0x20 [ 3417.647551][ T7918] ? do_raw_spin_unlock+0xa0/0x330 [ 3417.652725][ T7918] oom_kill_process.cold+0x10/0x9ca [ 3417.657932][ T7918] ? _raw_spin_unlock+0x2d/0x50 [ 3417.662788][ T7918] ? oom_badness+0xca/0xa50 [ 3417.667302][ T7918] ? out_of_memory+0xc8f/0x1420 [ 3417.672157][ T7918] ? find_held_lock+0x35/0x120 [ 3417.676928][ T7918] ? oom_evaluate_task+0x540/0x540 [ 3417.682041][ T7918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3417.688761][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3417.693620][ T7918] ? kasan_check_read+0x11/0x20 [ 3417.698476][ T7918] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3417.704464][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3417.710102][ T7918] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3417.716385][ T7918] ? oom_evaluate_task+0x305/0x540 [ 3417.721515][ T7918] out_of_memory+0x885/0x1420 [ 3417.726216][ T7918] ? oom_killer_disable+0x340/0x340 [ 3417.731431][ T7918] ? mutex_trylock+0x248/0x2d0 [ 3417.736206][ T7918] ? __ww_mutex_check_waiters+0x160/0x160 [ 3417.741942][ T7918] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3417.747515][ T7918] ? warn_alloc+0x110/0x110 [ 3417.752032][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3417.757666][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3417.763303][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3417.769030][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3417.774682][ T7918] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3417.780496][ T7918] ? ___might_sleep+0x1e7/0x310 [ 3417.785352][ T7918] ? arch_local_save_flags+0x50/0x50 [ 3417.790644][ T7918] ? lock_release+0xc40/0xc40 [ 3417.795322][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3417.800174][ T7918] ? kasan_check_read+0x11/0x20 [ 3417.805043][ T7918] __alloc_pages_nodemask+0xa37/0xdc0 [ 3417.810429][ T7918] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3417.816171][ T7918] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3417.822421][ T7918] alloc_pages_current+0x107/0x210 [ 3417.827542][ T7918] __page_cache_alloc+0x3cd/0x620 [ 3417.832611][ T7918] ? alloc_pages_current+0x10f/0x210 [ 3417.837906][ T7918] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3417.843291][ T7918] ? __page_cache_alloc+0x19c/0x620 [ 3417.848493][ T7918] ? find_held_lock+0x60/0x120 [ 3417.853268][ T7918] pagecache_get_page+0x36f/0x1070 [ 3417.858396][ T7918] ? find_lock_entry+0x8b0/0x8b0 [ 3417.863340][ T7918] ? __do_page_cache_readahead+0x64b/0x800 [ 3417.869163][ T7918] ? read_pages+0x650/0x650 [ 3417.873672][ T7918] ? kasan_check_write+0x14/0x20 [ 3417.878617][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3417.883484][ T7918] ? kasan_check_read+0x11/0x20 [ 3417.888315][ T7918] ? up_read_non_owner+0x100/0x100 [ 3417.893406][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3417.899017][ T7918] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3417.905242][ T7918] filemap_fault+0xb6a/0x2a30 [ 3417.909904][ T7918] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3417.915693][ T7918] ? __lock_is_held+0xb6/0x140 [ 3417.920441][ T7918] ? lock_acquire+0x1db/0x570 [ 3417.925098][ T7918] ? ext4_filemap_fault+0x7b/0xaf [ 3417.930107][ T7918] ? lock_release+0xc40/0xc40 [ 3417.934780][ T7918] ? print_usage_bug+0xd0/0xd0 [ 3417.939537][ T7918] ? down_read+0x8d/0x120 [ 3417.943857][ T7918] ? ext4_filemap_fault+0x7b/0xaf [ 3417.948861][ T7918] ? __down_interruptible+0x740/0x740 [ 3417.954211][ T7918] ? __lock_acquire+0x572/0x4a10 [ 3417.959128][ T7918] ? find_held_lock+0x35/0x120 [ 3417.963872][ T7918] ext4_filemap_fault+0x83/0xaf [ 3417.968702][ T7918] __do_fault+0x176/0x7b0 [ 3417.973008][ T7918] ? mark_held_locks+0x100/0x100 [ 3417.977925][ T7918] ? do_page_mkwrite+0x740/0x740 [ 3417.982839][ T7918] ? pmd_val+0x85/0x100 [ 3417.986974][ T7918] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3417.992672][ T7918] ? pmd_val+0x85/0x100 [ 3417.996805][ T7918] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3418.002505][ T7918] ? mpol_misplaced+0x2ca/0x590 [ 3418.007333][ T7918] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3418.013585][ T7918] __handle_mm_fault+0x377c/0x5610 [ 3418.018685][ T7918] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3418.024230][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3418.029933][ T7918] ? handle_mm_fault+0x3cc/0xc80 [ 3418.034857][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3418.039686][ T7918] ? kasan_check_read+0x11/0x20 [ 3418.044514][ T7918] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3418.050473][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3418.056083][ T7918] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3418.062304][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3418.068007][ T7918] handle_mm_fault+0x4ec/0xc80 [ 3418.072770][ T7918] ? __handle_mm_fault+0x5610/0x5610 [ 3418.078036][ T7918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3418.084254][ T7918] ? vmacache_update+0x114/0x140 [ 3418.089177][ T7918] __do_page_fault+0x5ef/0xda0 [ 3418.093925][ T7918] do_page_fault+0xe6/0x7d8 [ 3418.098407][ T7918] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3418.104019][ T7918] ? vmalloc_sync_all+0x30/0x30 [ 3418.108852][ T7918] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3418.114988][ T7918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3418.121237][ T7918] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3418.126939][ T7918] ? page_fault+0x8/0x30 [ 3418.131185][ T7918] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3418.136712][ T7918] ? page_fault+0x8/0x30 [ 3418.140941][ T7918] page_fault+0x1e/0x30 [ 3418.145078][ T7918] RIP: 0033:0x43fc00 [ 3418.148981][ T7918] Code: Bad RIP value. [ 3418.153028][ T7918] RSP: 002b:00007fc6951cdd00 EFLAGS: 00010202 [ 3418.159081][ T7918] RAX: 00007fc6951cdd10 RBX: 00000000016516e8 RCX: 0000000000000009 [ 3418.167043][ T7918] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 3418.175007][ T7918] RBP: 00000000016516e0 R08: 0000000000000000 R09: 00000000000007e3 [ 3418.182980][ T7918] R10: 0000000000000012 R11: a3d70a3d70a3d70b R12: 0000000000000000 [ 3418.190929][ T7918] R13: 00007fc696a035a3 R14: 0000000000000ef0 R15: 00007fc696a0267e [ 3418.201478][ T7918] Mem-Info: [ 3418.204638][ T7918] active_anon:105519 inactive_anon:203 isolated_anon:0 [ 3418.204638][ T7918] active_file:27 inactive_file:0 isolated_file:0 [ 3418.204638][ T7918] unevictable:0 dirty:1 writeback:1 unstable:0 [ 3418.204638][ T7918] slab_reclaimable:15441 slab_unreclaimable:108191 [ 3418.204638][ T7918] mapped:49178 shmem:244 pagetables:1139 bounce:0 [ 3418.204638][ T7918] free:25039 free_pcp:0 free_cma:0 [ 3418.241782][ T7918] Node 0 active_anon:422060kB inactive_anon:812kB active_file:108kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196712kB dirty:4kB writeback:4kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 122880kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3418.270144][ T7918] Node 1 active_anon:16kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3418.296730][ T7918] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3418.323729][ T7918] lowmem_reserve[]: 0 2535 2537 2537 [ 3418.329034][ T7918] Node 0 DMA32 free:35988kB min:36080kB low:45100kB high:54120kB active_anon:422032kB inactive_anon:812kB active_file:40kB inactive_file:36kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7104kB pagetables:4604kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB [ 3418.483319][ T7918] lowmem_reserve[]: 0 0 2 2 [ 3418.487887][ T7918] Node 0 Normal free:16kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3418.642268][ T7918] lowmem_reserve[]: 0 0 0 0 [ 3418.646832][ T7918] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3418.793688][ T7918] lowmem_reserve[]: 0 0 0 0 [ 3418.798286][ T7918] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3418.862281][ T7918] Node 0 DMA32: 674*4kB (UME) 1526*8kB (ME) 689*16kB (UM) 274*32kB (UM) 16*64kB (M) 0*128kB 1*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36488kB [ 3418.929530][ T7918] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 3418.999249][ T7918] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3419.093992][ T7918] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3419.136077][ T7918] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3419.173647][ T7918] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3419.219998][ T7918] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3419.261319][ T7918] 264 total pagecache pages [ 3419.265864][ T7918] 0 pages in swap cache [ 3419.300199][ T7918] Swap cache stats: add 0, delete 0, find 0/0 [ 3419.306298][ T7918] Free swap = 0kB [ 3419.351856][ T7918] Total swap = 0kB [ 3419.355613][ T7918] 1965979 pages RAM [ 3419.397653][ T7918] 0 pages HighMem/MovableOnly [ 3419.419142][ T7918] 343989 pages reserved [ 3419.423315][ T7918] 0 pages cma reserved [ 3419.427376][ T7918] Unreclaimable slab info: [ 3419.481979][ T7918] Name Used Total [ 3419.488277][ T7918] pid_3 0KB 3KB [ 3419.534662][ T7918] pid_2 57KB 128KB [ 3419.556887][ T7918] bio-3 0KB 7KB [ 3419.589770][ T7918] batadv_tt_change_cache 2KB 7KB [ 3419.596305][ T7918] batadv_tl_cache 4KB 8KB [ 3419.652237][ T7918] TIPC 11KB 21KB [ 3419.658346][ T7918] SCTPv6 16KB 20KB [ 3419.707157][ T7918] DCCPv6 19KB 29KB [ 3419.737234][ T7918] DCCP 18KB 27KB [ 3419.771478][ T7918] bridge_fdb_cache 9KB 15KB [ 3419.777572][ T7918] fib6_nodes 98KB 124KB [ 3419.827609][ T7918] ip6_dst_cache 50KB 176KB [ 3419.851358][ T7918] RAWv6 68KB 78KB [ 3419.857447][ T7918] UDPv6 3KB 7KB [ 3419.903726][ T7918] TCPv6 23KB 29KB [ 3419.927035][ T7918] nf_conntrack 0KB 7KB [ 3419.954947][ T7918] sd_ext_cdb 0KB 7KB [ 3419.978613][ T7918] scsi_sense_cache 1056KB 1060KB [ 3420.010861][ T7918] virtio_scsi_cmd 16KB 16KB [ 3420.016956][ T7918] sgpool-128 8KB 8KB [ 3420.072575][ T7918] sgpool-64 4KB 12KB [ 3420.078710][ T7918] sgpool-32 2KB 15KB [ 3420.139186][ T7918] sgpool-16 1KB 7KB [ 3420.145291][ T7918] sgpool-8 0KB 7KB [ 3420.203075][ T7918] mqueue_inode_cache 10KB 14KB [ 3420.228592][ T7918] bio_post_read_ctx 14KB 15KB [ 3420.256678][ T7918] xfs_buf 9KB 22KB [ 3420.281655][ T7918] bio-2 14KB 15KB [ 3420.287739][ T7918] jfs_mp 7KB 7KB [ 3420.311660][ T7918] nfs_commit_data 3KB 7KB [ 3420.317740][ T7918] nfs_write_data 32KB 32KB [ 3420.386909][ T7918] ext4_system_zone 1KB 7KB [ 3420.425927][ T7918] bio_post_read_ctx 14KB 15KB [ 3420.449217][ T7918] kioctx 2KB 7KB [ 3420.455297][ T7918] userfaultfd_ctx_cache 0KB 3KB [ 3420.512440][ T7918] dio 0KB 7KB [ 3420.518539][ T7918] bio-1 1KB 7KB [ 3420.566751][ T7918] pid_namespace 2KB 7KB [ 3420.590548][ T7918] rpc_buffers 17KB 25KB [ 3420.615973][ T7918] rpc_tasks 2KB 7KB [ 3420.649204][ T7918] UNIX 9KB 14KB [ 3420.655288][ T7918] tcp_bind_bucket 1KB 4KB [ 3420.711462][ T7918] inet_peer_cache 0KB 4KB [ 3420.717542][ T7918] xfrm_state 2KB 4KB [ 3420.761076][ T7918] ip_fib_trie 15KB 23KB [ 3420.767165][ T7918] ip_fib_alias 71KB 86KB [ 3420.814486][ T7918] ip_dst_cache 4KB 20KB [ 3420.849264][ T7918] RAW 41KB 50KB [ 3420.855364][ T7918] UDP 16KB 26KB [ 3420.909244][ T7918] TCP 8KB 11KB [ 3420.915350][ T7918] hugetlbfs_inode_cache 2KB 7KB [ 3420.958026][ T7918] fscache_cookie_jar 1KB 7KB [ 3420.983608][ T7918] eventpoll_pwq 29KB 55KB [ 3421.009396][ T7918] eventpoll_epi 55KB 98KB [ 3421.015481][ T7918] inotify_inode_mark 51KB 102KB [ 3421.061460][ T7918] request_queue 135KB 141KB [ 3421.067582][ T7918] blkdev_ioc 27KB 46KB [ 3421.130504][ T7918] bio-0 933KB 933KB [ 3421.136626][ T7918] biovec-max 1575KB 1575KB [ 3421.195956][ T7918] biovec-64 787KB 787KB [ 3421.228216][ T7918] biovec-16 104KB 105KB [ 3421.254321][ T7918] bio_integrity_payload 1KB 7KB [ 3421.281211][ T7918] khugepaged_mm_slot 9KB 23KB [ 3421.287381][ T7918] user_namespace 0KB 3KB [ 3421.325212][ T7918] dmaengine-unmap-256 2KB 6KB [ 3421.362435][ T7918] dmaengine-unmap-128 1KB 3KB [ 3421.368702][ T7918] dmaengine-unmap-16 0KB 4KB [ 3421.409213][ T7918] dmaengine-unmap-2 0KB 3KB [ 3421.415312][ T7918] skbuff_ext_cache 3KB 3KB [ 3421.457934][ T7918] skbuff_fclone_cache 68KB 105KB [ 3421.489992][ T7918] skbuff_head_cache 1079KB 1905KB [ 3421.496078][ T7918] configfs_dir_cache 0KB 8KB [ 3421.535429][ T7918] file_lock_cache 0KB 3KB [ 3421.572676][ T7918] file_lock_ctx 0KB 3KB [ 3421.606188][ T7918] fsnotify_mark_connector 29KB 59KB [ 3421.648480][ T7918] net_namespace 60KB 60KB [ 3421.679122][ T7918] shmem_inode_cache 5618KB 6092KB [ 3421.685609][ T7918] task_delay_info 124KB 242KB [ 3421.746858][ T7918] taskstats 58KB 131KB [ 3421.774981][ T7918] proc_dir_entry 658KB 693KB [ 3421.810044][ T7918] pde_opener 0KB 3KB [ 3421.816142][ T7918] seq_file 269KB 397KB [ 3421.878745][ T7918] sigqueue 49KB 122KB [ 3421.909316][ T7918] kernfs_node_cache 13838KB 13860KB [ 3421.915412][ T7918] mnt_cache 86KB 104KB [ 3421.985950][ T7918] filp 3548KB 5163KB [ 3422.020855][ T7918] names_cache 79806KB 79810KB [ 3422.026937][ T7918] iint_cache 87KB 107KB [ 3422.079900][ T7918] key_jar 7KB 15KB [ 3422.086017][ T7918] uts_namespace 2KB 7KB [ 3422.146903][ T7918] nsproxy 2KB 11KB [ 3422.174614][ T7918] vm_area_struct 6173KB 8596KB [ 3422.211126][ T7918] mm_struct 848KB 1280KB [ 3422.217226][ T7918] fs_cache 70KB 144KB [ 3422.268896][ T7918] files_cache 265KB 412KB [ 3422.302965][ T7918] signal_cache 898KB 1265KB [ 3422.329344][ T7918] sighand_cache 453KB 541KB [ 3422.335435][ T7918] task_struct 3941KB 3941KB [ 3422.397942][ T7918] cred_jar 528KB 888KB [ 3422.427831][ T7918] anon_vma_chain 3791KB 5969KB [ 3422.459571][ T7918] anon_vma 121KB 546KB [ 3422.465666][ T7918] pid 79KB 188KB [ 3422.520616][ T7918] Acpi-Operand 155KB 186KB [ 3422.526724][ T7918] Acpi-ParseExt 9KB 11KB [ 3422.584408][ T7918] Acpi-Parse 41KB 47KB [ 3422.618779][ T7918] Acpi-State 52KB 63KB [ 3422.656080][ T7918] Acpi-Namespace 21KB 23KB [ 3422.697788][ T7918] numa_policy 0KB 3KB [ 3422.734093][ T7918] trace_event_file 272KB 274KB [ 3422.759552][ T7918] ftrace_event_field 391KB 393KB [ 3422.765738][ T7918] pool_workqueue 90KB 96KB [ 3422.823652][ T7918] task_group 5KB 7KB [ 3422.851510][ T7918] debug_objects_cache 1609KB 1611KB [ 3422.857769][ T7918] page->ptl 1198KB 2051KB [ 3422.919798][ T7918] kmalloc-2M 2050KB 2050KB [ 3422.925886][ T7918] kmalloc-512k 2056KB 2056KB [ 3422.986484][ T7918] kmalloc-256k 516KB 516KB [ 3423.012785][ T7918] kmalloc-128k 520KB 520KB [ 3423.018860][ T7918] kmalloc-64k 47850KB 47916KB [ 3423.079167][ T7918] kmalloc-32k 1716KB 1716KB [ 3423.085247][ T7918] kmalloc-16k 1221KB 1270KB [ 3423.139122][ T7918] kmalloc-8k 2161KB 2202KB [ 3423.145210][ T7918] kmalloc-4k 22393KB 22393KB [ 3423.198037][ T7918] kmalloc-2k 8189KB 8874KB [ 3423.233585][ T7918] kmalloc-1k 5835KB 8418KB [ 3423.265271][ T7918] kmalloc-512 4018KB 6161KB [ 3423.296306][ T7918] kmalloc-256 3022KB 3423KB [ 3423.329638][ T7918] kmalloc-128 777KB 1256KB [ 3423.335741][ T7918] kmalloc-96 3112KB 4088KB [ 3423.389612][ T7918] kmalloc-64 3989KB 4116KB [ 3423.395716][ T7918] kmalloc-32 2273KB 2484KB [ 3423.446451][ T7918] kmalloc-192 1547KB 1840KB [ 3423.489663][ T7918] kmem_cache 285KB 288KB [ 3423.495763][ T7918] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=24074,uid=0 [ 3423.589136][ T7918] Out of memory: Kill process 24074 (syz-executor4) score 1004 or sacrifice child [ 3423.598476][ T7918] Killed process 24074 (syz-executor4) total-vm:70532kB, anon-rss:2196kB, file-rss:32768kB, shmem-rss:0kB [ 3424.310796][ T8028] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3424.376498][ T8028] CPU: 0 PID: 8028 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3424.385143][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3424.395203][ T8028] Call Trace: [ 3424.398523][ T8028] dump_stack+0x1db/0x2d0 [ 3424.402878][ T8028] ? dump_stack_print_info.cold+0x20/0x20 [ 3424.408611][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3424.413596][ T8028] dump_header+0x1e6/0x11a6 [ 3424.418114][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3424.423756][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3424.428528][ T8028] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3424.434176][ T8028] ? ___ratelimit+0x37c/0x686 [ 3424.438866][ T8028] ? mark_held_locks+0xb1/0x100 [ 3424.443724][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3424.449533][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3424.455352][ T8028] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3424.460639][ T8028] ? trace_hardirqs_on+0xbd/0x310 [ 3424.465668][ T8028] ? kasan_check_read+0x11/0x20 [ 3424.470520][ T8028] ? ___ratelimit+0x37c/0x686 [ 3424.475211][ T8028] ? trace_hardirqs_off_caller+0x300/0x300 [ 3424.481017][ T8028] ? do_raw_spin_trylock+0x270/0x270 [ 3424.486304][ T8028] ? trace_hardirqs_on_caller+0x310/0x310 [ 3424.492024][ T8028] ? lock_acquire+0x1db/0x570 [ 3424.496710][ T8028] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3424.502617][ T8028] ? ___ratelimit+0xac/0x686 [ 3424.507224][ T8028] ? idr_get_free+0xee0/0xee0 [ 3424.511904][ T8028] ? kasan_check_read+0x11/0x20 [ 3424.516757][ T8028] ? do_raw_spin_unlock+0xa0/0x330 [ 3424.521884][ T8028] oom_kill_process.cold+0x10/0x9ca [ 3424.527092][ T8028] ? _raw_spin_unlock+0x2d/0x50 [ 3424.531945][ T8028] ? oom_badness+0xca/0xa50 [ 3424.536465][ T8028] ? out_of_memory+0xc8f/0x1420 [ 3424.541318][ T8028] ? find_held_lock+0x35/0x120 [ 3424.546086][ T8028] ? oom_evaluate_task+0x540/0x540 [ 3424.551203][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3424.557450][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3424.562305][ T8028] ? kasan_check_read+0x11/0x20 [ 3424.567158][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3424.573145][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3424.578783][ T8028] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3424.585024][ T8028] ? oom_evaluate_task+0x305/0x540 [ 3424.590146][ T8028] out_of_memory+0x885/0x1420 [ 3424.594841][ T8028] ? oom_killer_disable+0x340/0x340 [ 3424.600042][ T8028] ? mutex_trylock+0x248/0x2d0 [ 3424.604809][ T8028] ? __ww_mutex_check_waiters+0x160/0x160 [ 3424.610543][ T8028] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3424.616139][ T8028] ? warn_alloc+0x110/0x110 [ 3424.620644][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3424.626275][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3424.631910][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3424.637648][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3424.643330][ T8028] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3424.649141][ T8028] ? ___might_sleep+0x1e7/0x310 [ 3424.653997][ T8028] ? arch_local_save_flags+0x50/0x50 [ 3424.659283][ T8028] ? lock_release+0xc40/0xc40 [ 3424.663963][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3424.668815][ T8028] ? kasan_check_read+0x11/0x20 [ 3424.673683][ T8028] __alloc_pages_nodemask+0xa37/0xdc0 [ 3424.679066][ T8028] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3424.684812][ T8028] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3424.691537][ T8028] alloc_pages_current+0x107/0x210 [ 3424.696692][ T8028] __page_cache_alloc+0x3cd/0x620 [ 3424.701730][ T8028] ? alloc_pages_current+0x10f/0x210 [ 3424.707020][ T8028] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3424.712394][ T8028] ? __page_cache_alloc+0x19c/0x620 [ 3424.717605][ T8028] ? find_held_lock+0x60/0x120 [ 3424.722376][ T8028] pagecache_get_page+0x36f/0x1070 [ 3424.727495][ T8028] ? find_lock_entry+0x8b0/0x8b0 [ 3424.732440][ T8028] ? __do_page_cache_readahead+0x64b/0x800 [ 3424.738259][ T8028] ? read_pages+0x650/0x650 [ 3424.742768][ T8028] ? kasan_check_write+0x14/0x20 [ 3424.747710][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3424.752580][ T8028] ? kasan_check_read+0x11/0x20 [ 3424.757432][ T8028] ? up_read_non_owner+0x100/0x100 [ 3424.762549][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3424.768202][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3424.774452][ T8028] filemap_fault+0xb6a/0x2a30 [ 3424.779142][ T8028] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3424.784955][ T8028] ? __lock_is_held+0xb6/0x140 [ 3424.789731][ T8028] ? lock_acquire+0x1db/0x570 [ 3424.794410][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3424.799443][ T8028] ? lock_release+0xc40/0xc40 [ 3424.804125][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3424.808903][ T8028] ? down_read+0x8d/0x120 [ 3424.813246][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3424.818418][ T8028] ? __down_interruptible+0x740/0x740 [ 3424.823795][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3424.828740][ T8028] ? find_held_lock+0x35/0x120 [ 3424.833514][ T8028] ext4_filemap_fault+0x83/0xaf [ 3424.838385][ T8028] __do_fault+0x176/0x7b0 [ 3424.842744][ T8028] ? mark_held_locks+0x100/0x100 [ 3424.847694][ T8028] ? do_page_mkwrite+0x740/0x740 [ 3424.852634][ T8028] ? pmd_val+0x85/0x100 [ 3424.856796][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3424.862514][ T8028] ? pmd_val+0x85/0x100 [ 3424.866689][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3424.872428][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3424.878689][ T8028] __handle_mm_fault+0x377c/0x5610 [ 3424.883813][ T8028] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3424.889360][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3424.895082][ T8028] ? handle_mm_fault+0x3cc/0xc80 [ 3424.900039][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3424.904892][ T8028] ? kasan_check_read+0x11/0x20 [ 3424.909746][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3424.915728][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3424.921367][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3424.927614][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3424.933341][ T8028] handle_mm_fault+0x4ec/0xc80 [ 3424.938114][ T8028] ? __handle_mm_fault+0x5610/0x5610 [ 3424.943604][ T8028] __do_page_fault+0x5ef/0xda0 [ 3424.948387][ T8028] do_page_fault+0xe6/0x7d8 [ 3424.952890][ T8028] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3424.958528][ T8028] ? vmalloc_sync_all+0x30/0x30 [ 3424.963391][ T8028] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3424.969548][ T8028] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3424.975202][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3424.981445][ T8028] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3424.987165][ T8028] ? page_fault+0x8/0x30 [ 3424.991417][ T8028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3424.996965][ T8028] ? page_fault+0x8/0x30 [ 3425.001210][ T8028] page_fault+0x1e/0x30 [ 3425.005364][ T8028] RIP: 0033:0x4375fe [ 3425.009273][ T8028] Code: Bad RIP value. [ 3425.013335][ T8028] RSP: 002b:000000c420035f38 EFLAGS: 00010293 [ 3425.019399][ T8028] RAX: 0000000000002710 RBX: 0000000000000016 RCX: 0000000000000076 [ 3425.027366][ T8028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 3425.035337][ T8028] RBP: 000000c420035fb0 R08: 000000c420035f18 R09: 0000000000000000 [ 3425.043307][ T8028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000430120 [ 3425.051282][ T8028] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000000 [ 3425.804124][ T8028] Mem-Info: [ 3425.807319][ T8028] active_anon:104973 inactive_anon:203 isolated_anon:0 [ 3425.807319][ T8028] active_file:16 inactive_file:0 isolated_file:0 [ 3425.807319][ T8028] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3425.807319][ T8028] slab_reclaimable:15441 slab_unreclaimable:108204 [ 3425.807319][ T8028] mapped:49153 shmem:244 pagetables:1126 bounce:0 [ 3425.807319][ T8028] free:25054 free_pcp:0 free_cma:0 [ 3425.878676][ T8028] Node 0 active_anon:419876kB inactive_anon:812kB active_file:76kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196612kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 118784kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3425.997022][ T8028] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:16kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3426.125119][ T8028] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3426.268170][ T8028] lowmem_reserve[]: 0 2535 2537 2537 [ 3426.305794][ T8028] Node 0 DMA32 free:36056kB min:36080kB low:45100kB high:54120kB active_anon:419876kB inactive_anon:812kB active_file:76kB inactive_file:24kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7072kB pagetables:4504kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3426.460006][ T8028] lowmem_reserve[]: 0 0 2 2 [ 3426.464583][ T8028] Node 0 Normal free:12kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3426.614498][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3426.654819][ T8028] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:20kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3426.842564][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3426.847130][ T8028] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3426.926792][ T8028] Node 0 DMA32: 639*4kB (UME) 1526*8kB (ME) 687*16kB (M) 272*32kB (UM) 17*64kB (UM) 0*128kB 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36060kB [ 3427.016235][ T8028] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 3427.081128][ T8028] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3427.182930][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3427.247112][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3427.292019][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3427.340947][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3427.379715][ T8028] 264 total pagecache pages [ 3427.384250][ T8028] 0 pages in swap cache [ 3427.388416][ T8028] Swap cache stats: add 0, delete 0, find 0/0 [ 3427.464668][ T8028] Free swap = 0kB [ 3427.468397][ T8028] Total swap = 0kB [ 3427.501302][ T8028] 1965979 pages RAM [ 3427.505119][ T8028] 0 pages HighMem/MovableOnly [ 3427.548163][ T8028] 343989 pages reserved [ 3427.569128][ T8028] 0 pages cma reserved [ 3427.573214][ T8028] Unreclaimable slab info: [ 3427.577624][ T8028] Name Used Total [ 3427.630908][ T8028] pid_3 0KB 3KB [ 3427.636997][ T8028] pid_2 57KB 128KB [ 3427.683325][ T8028] bio-3 0KB 7KB [ 3427.716548][ T8028] batadv_tt_change_cache 2KB 7KB [ 3427.748275][ T8028] batadv_tl_cache 4KB 8KB [ 3427.780023][ T8028] TIPC 11KB 21KB [ 3427.786209][ T8028] SCTPv6 16KB 20KB [ 3427.843423][ T8028] DCCPv6 19KB 29KB [ 3427.871318][ T8028] DCCP 18KB 27KB [ 3427.877475][ T8028] bridge_fdb_cache 7KB 15KB [ 3427.935027][ T8028] fib6_nodes 98KB 124KB [ 3427.971551][ T8028] ip6_dst_cache 45KB 176KB [ 3427.977666][ T8028] RAWv6 68KB 78KB [ 3428.028574][ T8028] UDPv6 3KB 7KB [ 3428.064737][ T8028] TCPv6 23KB 29KB [ 3428.095876][ T8028] nf_conntrack 0KB 7KB [ 3428.119481][ T8028] sd_ext_cdb 0KB 7KB [ 3428.125568][ T8028] scsi_sense_cache 1056KB 1060KB [ 3428.191621][ T8028] virtio_scsi_cmd 16KB 16KB [ 3428.197728][ T8028] sgpool-128 8KB 8KB [ 3428.254094][ T8028] sgpool-64 4KB 12KB [ 3428.277140][ T8028] sgpool-32 2KB 15KB [ 3428.317520][ T8028] sgpool-16 1KB 7KB [ 3428.345720][ T8028] sgpool-8 0KB 7KB [ 3428.382853][ T8028] mqueue_inode_cache 10KB 14KB [ 3428.389037][ T8028] bio_post_read_ctx 14KB 15KB [ 3428.439669][ T8028] xfs_buf 9KB 22KB [ 3428.445811][ T8028] bio-2 14KB 15KB [ 3428.491753][ T8028] jfs_mp 7KB 7KB [ 3428.497882][ T8028] nfs_commit_data 3KB 7KB [ 3428.543997][ T8028] nfs_write_data 32KB 32KB [ 3428.579529][ T8028] ext4_system_zone 1KB 7KB [ 3428.585621][ T8028] bio_post_read_ctx 14KB 15KB [ 3428.641894][ T8028] kioctx 2KB 7KB [ 3428.647987][ T8028] userfaultfd_ctx_cache 0KB 3KB [ 3428.690550][ T8028] dio 0KB 7KB [ 3428.696657][ T8028] bio-1 1KB 7KB [ 3428.742432][ T8028] pid_namespace 2KB 7KB [ 3428.748565][ T8028] rpc_buffers 17KB 25KB [ 3428.812932][ T8028] rpc_tasks 2KB 7KB [ 3428.843501][ T8028] UNIX 9KB 14KB [ 3428.879149][ T8028] tcp_bind_bucket 1KB 4KB [ 3428.885248][ T8028] inet_peer_cache 0KB 4KB [ 3428.939246][ T8028] xfrm_state 2KB 4KB [ 3428.945357][ T8028] ip_fib_trie 15KB 23KB [ 3429.004013][ T8028] ip_fib_alias 71KB 86KB [ 3429.039773][ T8028] ip_dst_cache 4KB 20KB [ 3429.045865][ T8028] RAW 41KB 50KB [ 3429.099517][ T8028] UDP 16KB 26KB [ 3429.105630][ T8028] TCP 8KB 11KB [ 3429.160943][ T8028] hugetlbfs_inode_cache 2KB 7KB [ 3429.167388][ T8028] fscache_cookie_jar 1KB 7KB [ 3429.225009][ T8028] eventpoll_pwq 29KB 55KB [ 3429.256004][ T8028] eventpoll_epi 55KB 98KB [ 3429.293082][ T8028] inotify_inode_mark 51KB 102KB [ 3429.319216][ T8028] request_queue 135KB 141KB [ 3429.325298][ T8028] blkdev_ioc 26KB 46KB [ 3429.387441][ T8028] bio-0 945KB 945KB [ 3429.415325][ T8028] biovec-max 1575KB 1575KB [ 3429.453101][ T8028] biovec-64 803KB 803KB [ 3429.490047][ T8028] biovec-16 105KB 105KB [ 3429.496160][ T8028] bio_integrity_payload 1KB 7KB [ 3429.558581][ T8028] khugepaged_mm_slot 9KB 23KB [ 3429.586351][ T8028] user_namespace 0KB 3KB [ 3429.614024][ T8028] dmaengine-unmap-256 2KB 6KB [ 3429.654684][ T8028] dmaengine-unmap-128 1KB 3KB [ 3429.675670][ T8028] dmaengine-unmap-16 0KB 4KB [ 3429.694036][ T8028] dmaengine-unmap-2 0KB 3KB [ 3429.736413][ T8028] skbuff_ext_cache 0KB 3KB [ 3429.772174][ T8028] skbuff_fclone_cache 68KB 105KB [ 3429.778459][ T8028] skbuff_head_cache 1105KB 1905KB [ 3429.836619][ T8028] configfs_dir_cache 0KB 8KB [ 3429.864474][ T8028] file_lock_cache 0KB 3KB [ 3429.902766][ T8028] file_lock_ctx 0KB 3KB [ 3429.908882][ T8028] fsnotify_mark_connector 29KB 59KB [ 3429.966993][ T8028] net_namespace 60KB 60KB [ 3429.998343][ T8028] shmem_inode_cache 5618KB 6092KB [ 3430.037769][ T8028] task_delay_info 124KB 242KB [ 3430.065843][ T8028] taskstats 58KB 131KB [ 3430.099482][ T8028] proc_dir_entry 658KB 693KB [ 3430.105599][ T8028] pde_opener 0KB 3KB [ 3430.165283][ T8028] seq_file 269KB 397KB [ 3430.191401][ T8028] sigqueue 49KB 122KB [ 3430.197503][ T8028] kernfs_node_cache 13838KB 13860KB [ 3430.259119][ T8028] mnt_cache 86KB 104KB [ 3430.265236][ T8028] filp 3548KB 5163KB [ 3430.325498][ T8028] names_cache 79806KB 79810KB [ 3430.356811][ T8028] iint_cache 87KB 107KB [ 3430.393048][ T8028] key_jar 7KB 15KB [ 3430.420427][ T8028] uts_namespace 2KB 7KB [ 3430.426540][ T8028] nsproxy 2KB 11KB [ 3430.482198][ T8028] vm_area_struct 6173KB 8596KB [ 3430.488316][ T8028] mm_struct 848KB 1280KB [ 3430.547793][ T8028] fs_cache 70KB 144KB [ 3430.579710][ T8028] files_cache 265KB 412KB [ 3430.585826][ T8028] signal_cache 898KB 1265KB [ 3430.642177][ T8028] sighand_cache 453KB 541KB [ 3430.648288][ T8028] task_struct 3941KB 3941KB [ 3430.709133][ T8028] cred_jar 528KB 888KB [ 3430.715247][ T8028] anon_vma_chain 3791KB 5969KB [ 3430.771888][ T8028] anon_vma 121KB 546KB [ 3430.777997][ T8028] pid 79KB 188KB [ 3430.836123][ T8028] Acpi-Operand 155KB 186KB [ 3430.864752][ T8028] Acpi-ParseExt 9KB 11KB [ 3430.897834][ T8028] Acpi-Parse 41KB 47KB [ 3430.929126][ T8028] Acpi-State 52KB 63KB [ 3430.935222][ T8028] Acpi-Namespace 21KB 23KB [ 3430.989962][ T8028] numa_policy 0KB 3KB [ 3430.996070][ T8028] trace_event_file 272KB 274KB [ 3431.065392][ T8028] ftrace_event_field 391KB 393KB [ 3431.085694][ T8028] pool_workqueue 90KB 96KB [ 3431.105404][ T8028] task_group 5KB 7KB [ 3431.149136][ T8028] debug_objects_cache 1609KB 1611KB [ 3431.155423][ T8028] page->ptl 1198KB 2051KB [ 3431.210945][ T8028] kmalloc-2M 2050KB 2050KB [ 3431.217063][ T8028] kmalloc-512k 2056KB 2056KB [ 3431.267250][ T8028] kmalloc-256k 516KB 516KB [ 3431.286868][ T8028] kmalloc-128k 520KB 520KB [ 3431.320517][ T8028] kmalloc-64k 47850KB 47916KB [ 3431.326629][ T8028] kmalloc-32k 1716KB 1716KB [ 3431.389157][ T8028] kmalloc-16k 1221KB 1270KB [ 3431.395268][ T8028] kmalloc-8k 2161KB 2202KB [ 3431.447470][ T8028] kmalloc-4k 22393KB 22393KB [ 3431.478178][ T8028] kmalloc-2k 8189KB 8874KB [ 3431.511854][ T8028] kmalloc-1k 5827KB 8418KB [ 3431.517960][ T8028] kmalloc-512 4035KB 6161KB [ 3431.590845][ T8028] kmalloc-256 3022KB 3423KB [ 3431.596961][ T8028] kmalloc-128 777KB 1256KB [ 3431.659248][ T8028] kmalloc-96 3112KB 4088KB [ 3431.665359][ T8028] kmalloc-64 3989KB 4116KB [ 3431.717471][ T8028] kmalloc-32 2293KB 2504KB [ 3431.749420][ T8028] kmalloc-192 1547KB 1840KB [ 3431.755502][ T8028] kmem_cache 285KB 288KB [ 3431.786668][ T8028] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz4,task=syz-executor4,pid=24159,uid=0 [ 3431.802150][ T8028] Out of memory: Kill process 24159 (syz-executor4) score 1004 or sacrifice child [ 3431.811419][ T8028] Killed process 24159 (syz-executor4) total-vm:70532kB, anon-rss:2196kB, file-rss:32768kB, shmem-rss:0kB [ 3432.822108][ T7918] rsyslogd invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3432.868703][ T7918] CPU: 0 PID: 7918 Comm: rsyslogd Not tainted 5.0.0-rc1-next-20190110 #9 [ 3432.877126][ T7918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3432.887179][ T7918] Call Trace: [ 3432.890478][ T7918] dump_stack+0x1db/0x2d0 [ 3432.894816][ T7918] ? dump_stack_print_info.cold+0x20/0x20 [ 3432.900535][ T7918] ? __lock_acquire+0x572/0x4a10 [ 3432.905539][ T7918] dump_header+0x1e6/0x11a6 [ 3432.910091][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3432.915727][ T7918] ? print_usage_bug+0xd0/0xd0 [ 3432.920497][ T7918] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3432.926133][ T7918] ? ___ratelimit+0x37c/0x686 [ 3432.930818][ T7918] ? mark_held_locks+0xb1/0x100 [ 3432.935675][ T7918] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3432.941484][ T7918] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3432.947291][ T7918] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3432.952597][ T7918] ? trace_hardirqs_on+0xbd/0x310 [ 3432.957623][ T7918] ? kasan_check_read+0x11/0x20 [ 3432.962475][ T7918] ? ___ratelimit+0x37c/0x686 [ 3432.967187][ T7918] ? trace_hardirqs_off_caller+0x300/0x300 [ 3432.972997][ T7918] ? do_raw_spin_trylock+0x270/0x270 [ 3432.978289][ T7918] ? trace_hardirqs_on_caller+0x310/0x310 [ 3432.984013][ T7918] ? lock_acquire+0x1db/0x570 [ 3432.988699][ T7918] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3432.994508][ T7918] ? ___ratelimit+0xac/0x686 [ 3432.999099][ T7918] ? idr_get_free+0xee0/0xee0 [ 3433.003781][ T7918] ? kasan_check_read+0x11/0x20 [ 3433.008635][ T7918] ? do_raw_spin_unlock+0xa0/0x330 [ 3433.013759][ T7918] oom_kill_process.cold+0x10/0x9ca [ 3433.018964][ T7918] ? _raw_spin_unlock+0x2d/0x50 [ 3433.023845][ T7918] ? oom_badness+0xca/0xa50 [ 3433.028354][ T7918] ? out_of_memory+0xc8f/0x1420 [ 3433.033207][ T7918] ? find_held_lock+0x35/0x120 [ 3433.037982][ T7918] ? oom_evaluate_task+0x540/0x540 [ 3433.043096][ T7918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3433.049343][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3433.054195][ T7918] ? kasan_check_read+0x11/0x20 [ 3433.059049][ T7918] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3433.065045][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3433.070683][ T7918] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3433.076949][ T7918] ? oom_evaluate_task+0x305/0x540 [ 3433.082078][ T7918] out_of_memory+0x885/0x1420 [ 3433.086769][ T7918] ? oom_killer_disable+0x340/0x340 [ 3433.091968][ T7918] ? mutex_trylock+0x248/0x2d0 [ 3433.096739][ T7918] ? __ww_mutex_check_waiters+0x160/0x160 [ 3433.102526][ T7918] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3433.108112][ T7918] ? warn_alloc+0x110/0x110 [ 3433.112623][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3433.118256][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3433.123889][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3433.129634][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3433.135311][ T7918] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3433.141125][ T7918] ? ___might_sleep+0x1e7/0x310 [ 3433.145977][ T7918] ? arch_local_save_flags+0x50/0x50 [ 3433.151284][ T7918] ? lock_release+0xc40/0xc40 [ 3433.155969][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3433.160822][ T7918] ? kasan_check_read+0x11/0x20 [ 3433.165689][ T7918] __alloc_pages_nodemask+0xa37/0xdc0 [ 3433.171069][ T7918] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3433.176815][ T7918] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3433.183063][ T7918] alloc_pages_current+0x107/0x210 [ 3433.188185][ T7918] __page_cache_alloc+0x3cd/0x620 [ 3433.193216][ T7918] ? alloc_pages_current+0x10f/0x210 [ 3433.198526][ T7918] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3433.203922][ T7918] ? __page_cache_alloc+0x19c/0x620 [ 3433.209121][ T7918] ? find_held_lock+0x60/0x120 [ 3433.213894][ T7918] pagecache_get_page+0x36f/0x1070 [ 3433.219020][ T7918] ? find_lock_entry+0x8b0/0x8b0 [ 3433.223959][ T7918] ? __do_page_cache_readahead+0x64b/0x800 [ 3433.229781][ T7918] ? read_pages+0x650/0x650 [ 3433.234289][ T7918] ? kasan_check_write+0x14/0x20 [ 3433.239241][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3433.244102][ T7918] ? kasan_check_read+0x11/0x20 [ 3433.248957][ T7918] ? up_read_non_owner+0x100/0x100 [ 3433.254075][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3433.259712][ T7918] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3433.265966][ T7918] filemap_fault+0xb6a/0x2a30 [ 3433.270659][ T7918] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3433.276474][ T7918] ? __lock_is_held+0xb6/0x140 [ 3433.281245][ T7918] ? lock_acquire+0x1db/0x570 [ 3433.285920][ T7918] ? ext4_filemap_fault+0x7b/0xaf [ 3433.290952][ T7918] ? lock_release+0xc40/0xc40 [ 3433.295635][ T7918] ? print_usage_bug+0xd0/0xd0 [ 3433.300414][ T7918] ? down_read+0x8d/0x120 [ 3433.304746][ T7918] ? ext4_filemap_fault+0x7b/0xaf [ 3433.309774][ T7918] ? __down_interruptible+0x740/0x740 [ 3433.315149][ T7918] ? __handle_mm_fault+0x4361/0x5610 [ 3433.320449][ T7918] ? find_held_lock+0x35/0x120 [ 3433.325235][ T7918] ext4_filemap_fault+0x83/0xaf [ 3433.330096][ T7918] __do_fault+0x176/0x7b0 [ 3433.334447][ T7918] ? do_page_mkwrite+0x740/0x740 [ 3433.339385][ T7918] ? do_raw_spin_unlock+0xa0/0x330 [ 3433.344502][ T7918] ? do_raw_spin_trylock+0x270/0x270 [ 3433.349795][ T7918] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3433.355518][ T7918] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3433.361766][ T7918] ? mpol_misplaced+0x2ca/0x590 [ 3433.366633][ T7918] __handle_mm_fault+0x377c/0x5610 [ 3433.371785][ T7918] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3433.377336][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3433.383061][ T7918] ? handle_mm_fault+0x3cc/0xc80 [ 3433.388015][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3433.392866][ T7918] ? kasan_check_read+0x11/0x20 [ 3433.397719][ T7918] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3433.403706][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3433.409342][ T7918] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3433.415611][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3433.421341][ T7918] handle_mm_fault+0x4ec/0xc80 [ 3433.426115][ T7918] ? __handle_mm_fault+0x5610/0x5610 [ 3433.431407][ T7918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3433.437652][ T7918] ? vmacache_update+0x114/0x140 [ 3433.442619][ T7918] __do_page_fault+0x5ef/0xda0 [ 3433.447402][ T7918] do_page_fault+0xe6/0x7d8 [ 3433.451903][ T7918] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3433.457541][ T7918] ? vmalloc_sync_all+0x30/0x30 [ 3433.462409][ T7918] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3433.468586][ T7918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3433.474835][ T7918] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3433.480569][ T7918] ? page_fault+0x8/0x30 [ 3433.484817][ T7918] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3433.490381][ T7918] ? page_fault+0x8/0x30 [ 3433.494628][ T7918] page_fault+0x1e/0x30 [ 3433.498783][ T7918] RIP: 0033:0x41cb70 [ 3433.502694][ T7918] Code: Bad RIP value. [ 3433.506758][ T7918] RSP: 002b:00007fc6951cdd78 EFLAGS: 00010206 [ 3433.512826][ T7918] RAX: 000000000000005f RBX: 00007fc69680050c RCX: 0000000000000002 [ 3433.520800][ T7918] RDX: 000000000000005f RSI: 00007fc696a035a3 RDI: 00000000016515e0 [ 3433.528768][ T7918] RBP: 0000000000000004 R08: 00007fc696a035a3 R09: 00000000000007e3 [ 3433.536737][ T7918] R10: 0000000000000012 R11: a3d70a3d70a3d70b R12: 0000000000000000 [ 3433.544708][ T7918] R13: 00007fc696a035a3 R14: 0000000000000ef0 R15: 00007fc696a0267e [ 3436.484819][ T7918] Mem-Info: [ 3436.488017][ T7918] active_anon:104434 inactive_anon:203 isolated_anon:0 [ 3436.488017][ T7918] active_file:31 inactive_file:9 isolated_file:0 [ 3436.488017][ T7918] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3436.488017][ T7918] slab_reclaimable:15440 slab_unreclaimable:108059 [ 3436.488017][ T7918] mapped:49154 shmem:244 pagetables:1101 bounce:0 [ 3436.488017][ T7918] free:24951 free_pcp:126 free_cma:0 [ 3436.707531][ T7918] Node 0 active_anon:417720kB inactive_anon:812kB active_file:40kB inactive_file:36kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 116736kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3436.849704][ T7918] Node 1 active_anon:16kB inactive_anon:0kB active_file:12kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3436.991177][ T7918] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3437.141323][ T7918] lowmem_reserve[]: 0 2535 2537 2537 [ 3437.146662][ T7918] Node 0 DMA32 free:35924kB min:36080kB low:45100kB high:54120kB active_anon:417720kB inactive_anon:812kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7040kB pagetables:4404kB bounce:0kB free_pcp:524kB local_pcp:264kB free_cma:0kB [ 3437.305540][ T7918] lowmem_reserve[]: 0 0 2 2 [ 3437.329018][ T7918] Node 0 Normal free:12kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3437.428422][ T7918] lowmem_reserve[]: 0 0 0 0 [ 3437.453996][ T7918] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:12kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3437.606726][ T7918] lowmem_reserve[]: 0 0 0 0 [ 3437.627922][ T7918] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3437.694868][ T7918] Node 0 DMA32: 639*4kB (UME) 1531*8kB (UME) 687*16kB (M) 271*32kB (M) 17*64kB (UM) 3*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35940kB [ 3437.785616][ T7918] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 3437.850329][ T7918] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3437.938770][ T7918] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3437.992864][ T7918] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3438.053287][ T7918] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3438.113643][ T7918] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3438.169111][ T7918] 264 total pagecache pages [ 3438.173648][ T7918] 0 pages in swap cache [ 3438.177804][ T7918] Swap cache stats: add 0, delete 0, find 0/0 [ 3438.248397][ T7918] Free swap = 0kB [ 3438.269989][ T7918] Total swap = 0kB [ 3438.273756][ T7918] 1965979 pages RAM [ 3438.277564][ T7918] 0 pages HighMem/MovableOnly [ 3438.326463][ T7918] 343989 pages reserved [ 3438.354551][ T7918] 0 pages cma reserved [ 3438.358639][ T7918] Unreclaimable slab info: [ 3438.401523][ T7918] Name Used Total [ 3438.407802][ T7918] pid_3 0KB 3KB [ 3438.462973][ T7918] pid_2 57KB 128KB [ 3438.496070][ T7918] bio-3 0KB 7KB [ 3438.525637][ T7918] batadv_tt_change_cache 2KB 7KB [ 3438.564178][ T7918] batadv_tl_cache 4KB 8KB [ 3438.588984][ T7918] TIPC 11KB 21KB [ 3438.623742][ T7918] SCTPv6 16KB 20KB [ 3438.654130][ T7918] DCCPv6 19KB 29KB [ 3438.687954][ T7918] DCCP 18KB 27KB [ 3438.716588][ T7918] bridge_fdb_cache 6KB 15KB [ 3438.746638][ T7918] fib6_nodes 98KB 124KB [ 3438.784116][ T7918] ip6_dst_cache 45KB 176KB [ 3438.809726][ T7918] RAWv6 68KB 78KB [ 3438.815818][ T7918] UDPv6 3KB 7KB [ 3438.877097][ T7918] TCPv6 23KB 29KB [ 3438.903801][ T7918] nf_conntrack 0KB 7KB [ 3438.935787][ T7918] sd_ext_cdb 0KB 7KB [ 3438.967181][ T7918] scsi_sense_cache 1056KB 1060KB [ 3439.004700][ T7918] virtio_scsi_cmd 16KB 16KB [ 3439.028386][ T7918] sgpool-128 8KB 8KB [ 3439.068376][ T7918] sgpool-64 4KB 12KB [ 3439.092822][ T7918] sgpool-32 2KB 15KB [ 3439.098907][ T7918] sgpool-16 1KB 7KB [ 3439.162534][ T7918] sgpool-8 0KB 7KB [ 3439.168643][ T7918] mqueue_inode_cache 10KB 14KB [ 3439.221390][ T7918] bio_post_read_ctx 14KB 15KB [ 3439.227503][ T7918] xfs_buf 9KB 22KB [ 3439.288237][ T7918] bio-2 14KB 15KB [ 3439.311920][ T7918] jfs_mp 7KB 7KB [ 3439.318047][ T7918] nfs_commit_data 3KB 7KB [ 3439.382538][ T7918] nfs_write_data 32KB 32KB [ 3439.388711][ T7918] ext4_system_zone 1KB 7KB [ 3439.442402][ T7918] bio_post_read_ctx 14KB 15KB [ 3439.448514][ T7918] kioctx 2KB 7KB [ 3439.507378][ T7918] userfaultfd_ctx_cache 0KB 3KB [ 3439.540000][ T7918] dio 0KB 7KB [ 3439.546098][ T7918] bio-1 1KB 7KB [ 3439.608175][ T7918] pid_namespace 2KB 7KB [ 3439.642862][ T7918] rpc_buffers 17KB 25KB [ 3439.648943][ T7918] rpc_tasks 2KB 7KB [ 3439.708003][ T7918] UNIX 9KB 14KB [ 3439.740312][ T7918] tcp_bind_bucket 1KB 4KB [ 3439.746394][ T7918] inet_peer_cache 0KB 4KB [ 3439.812503][ T7918] xfrm_state 2KB 4KB [ 3439.818625][ T7918] ip_fib_trie 15KB 23KB [ 3439.874245][ T7918] ip_fib_alias 71KB 86KB [ 3439.908894][ T7918] ip_dst_cache 4KB 20KB [ 3439.946964][ T7918] RAW 41KB 50KB [ 3439.972948][ T7918] UDP 16KB 26KB [ 3439.979033][ T7918] TCP 8KB 11KB [ 3440.043732][ T7918] hugetlbfs_inode_cache 2KB 7KB [ 3440.068771][ T7918] fscache_cookie_jar 1KB 7KB [ 3440.102132][ T7918] eventpoll_pwq 29KB 55KB [ 3440.108209][ T7918] eventpoll_epi 55KB 98KB [ 3440.149018][ T7918] inotify_inode_mark 51KB 102KB [ 3440.187205][ T7918] request_queue 135KB 141KB [ 3440.226737][ T7918] blkdev_ioc 26KB 46KB [ 3440.265351][ T7918] bio-0 954KB 956KB [ 3440.302490][ T7918] biovec-max 1575KB 1575KB [ 3440.308619][ T7918] biovec-64 813KB 826KB [ 3440.363950][ T7918] biovec-16 106KB 112KB [ 3440.399510][ T7918] bio_integrity_payload 1KB 7KB [ 3440.406017][ T7918] khugepaged_mm_slot 9KB 23KB [ 3440.458479][ T7918] user_namespace 0KB 3KB [ 3440.496963][ T7918] dmaengine-unmap-256 2KB 6KB [ 3440.515888][ T7918] dmaengine-unmap-128 1KB 3KB [ 3440.527222][ T7918] dmaengine-unmap-16 0KB 4KB [ 3440.533436][ T7918] dmaengine-unmap-2 0KB 3KB [ 3440.539662][ T7918] skbuff_ext_cache 0KB 3KB [ 3440.545735][ T7918] skbuff_fclone_cache 68KB 105KB [ 3440.552014][ T7918] skbuff_head_cache 1128KB 1905KB [ 3440.558093][ T7918] configfs_dir_cache 0KB 8KB [ 3440.564251][ T7918] file_lock_cache 0KB 3KB [ 3440.570333][ T7918] file_lock_ctx 0KB 3KB [ 3440.576377][ T7918] fsnotify_mark_connector 29KB 59KB [ 3440.583952][ T7918] net_namespace 60KB 60KB [ 3440.590063][ T7918] shmem_inode_cache 5618KB 6092KB [ 3440.596119][ T7918] task_delay_info 124KB 242KB [ 3440.602210][ T7918] taskstats 58KB 131KB [ 3440.608266][ T7918] proc_dir_entry 658KB 693KB [ 3440.614334][ T7918] pde_opener 0KB 3KB [ 3440.620428][ T7918] seq_file 267KB 397KB [ 3440.626494][ T7918] sigqueue 48KB 122KB [ 3440.643790][ T7918] kernfs_node_cache 13838KB 13860KB [ 3440.652128][ T7918] mnt_cache 86KB 104KB [ 3440.658209][ T7918] filp 3546KB 5163KB [ 3440.664432][ T7918] names_cache 79424KB 79466KB [ 3440.670542][ T7918] iint_cache 87KB 107KB [ 3440.676629][ T7918] key_jar 7KB 15KB [ 3440.682732][ T7918] uts_namespace 2KB 7KB [ 3440.689306][ T7918] nsproxy 2KB 11KB [ 3440.695372][ T7918] vm_area_struct 6152KB 8596KB [ 3440.701463][ T7918] mm_struct 845KB 1274KB [ 3440.707509][ T7918] fs_cache 70KB 144KB [ 3440.714485][ T7918] files_cache 264KB 412KB [ 3440.720603][ T7918] signal_cache 898KB 1265KB [ 3440.726674][ T7918] sighand_cache 453KB 541KB [ 3440.732765][ T7918] task_struct 3941KB 3941KB [ 3440.738822][ T7918] cred_jar 527KB 888KB [ 3440.744941][ T7918] anon_vma_chain 3778KB 5969KB [ 3440.751056][ T7918] anon_vma 121KB 546KB [ 3440.757296][ T7918] pid 79KB 188KB [ 3440.779127][ T7918] Acpi-Operand 155KB 186KB [ 3440.785202][ T7918] Acpi-ParseExt 9KB 11KB [ 3440.818725][ T7918] Acpi-Parse 41KB 47KB [ 3440.837108][ T7918] Acpi-State 52KB 63KB [ 3440.884371][ T7918] Acpi-Namespace 21KB 23KB [ 3440.918097][ T7918] numa_policy 0KB 3KB [ 3440.950711][ T7918] trace_event_file 272KB 274KB [ 3440.956788][ T7918] ftrace_event_field 391KB 393KB [ 3441.016764][ T7918] pool_workqueue 90KB 96KB [ 3441.041903][ T7918] task_group 5KB 7KB [ 3441.047982][ T7918] debug_objects_cache 1609KB 1611KB [ 3441.114833][ T7918] page->ptl 1195KB 2051KB [ 3441.151202][ T7918] kmalloc-2M 2050KB 2050KB [ 3441.157312][ T7918] kmalloc-512k 2056KB 2056KB [ 3441.206440][ T7918] kmalloc-256k 516KB 516KB [ 3441.239659][ T7918] kmalloc-128k 520KB 520KB [ 3441.245746][ T7918] kmalloc-64k 47586KB 47784KB [ 3441.308946][ T7918] kmalloc-32k 1716KB 1716KB [ 3441.338608][ T7918] kmalloc-16k 1221KB 1270KB [ 3441.368807][ T7918] kmalloc-8k 2161KB 2202KB [ 3441.390344][ T7918] kmalloc-4k 22316KB 22355KB [ 3441.396424][ T7918] kmalloc-2k 8187KB 8874KB [ 3441.443178][ T7918] kmalloc-1k 5829KB 8418KB [ 3441.471874][ T7918] kmalloc-512 4045KB 6161KB [ 3441.477954][ T7918] kmalloc-256 3022KB 3423KB [ 3441.542751][ T7918] kmalloc-128 776KB 1256KB [ 3441.548835][ T7918] kmalloc-96 3108KB 4088KB [ 3441.620038][ T7918] kmalloc-64 3987KB 4116KB [ 3441.626153][ T7918] kmalloc-32 2324KB 2535KB [ 3441.678306][ T7918] kmalloc-192 1547KB 1840KB [ 3441.709328][ T7918] kmem_cache 285KB 288KB [ 3441.715414][ T7918] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz2,task=syz-executor2,pid=8380,uid=0 [ 3441.814201][ T7918] Out of memory: Kill process 8380 (syz-executor2) score 1004 or sacrifice child [ 3441.864062][ T7918] Killed process 8380 (syz-executor2) total-vm:70400kB, anon-rss:2192kB, file-rss:32768kB, shmem-rss:0kB [ 3443.229366][ T7918] rsyslogd invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3443.270366][ T7918] CPU: 1 PID: 7918 Comm: rsyslogd Not tainted 5.0.0-rc1-next-20190110 #9 [ 3443.278802][ T7918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3443.288856][ T7918] Call Trace: [ 3443.292161][ T7918] dump_stack+0x1db/0x2d0 [ 3443.296499][ T7918] ? dump_stack_print_info.cold+0x20/0x20 [ 3443.302218][ T7918] ? __lock_acquire+0x572/0x4a10 [ 3443.307171][ T7918] dump_header+0x1e6/0x11a6 [ 3443.311680][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3443.317318][ T7918] ? print_usage_bug+0xd0/0xd0 [ 3443.322096][ T7918] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3443.327731][ T7918] ? ___ratelimit+0x37c/0x686 [ 3443.332417][ T7918] ? mark_held_locks+0xb1/0x100 [ 3443.337269][ T7918] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3443.343088][ T7918] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3443.348896][ T7918] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3443.354180][ T7918] ? trace_hardirqs_on+0xbd/0x310 [ 3443.359219][ T7918] ? kasan_check_read+0x11/0x20 [ 3443.364076][ T7918] ? ___ratelimit+0x37c/0x686 [ 3443.368752][ T7918] ? trace_hardirqs_off_caller+0x300/0x300 [ 3443.374564][ T7918] ? do_raw_spin_trylock+0x270/0x270 [ 3443.379853][ T7918] ? trace_hardirqs_on_caller+0x310/0x310 [ 3443.385596][ T7918] ? lock_acquire+0x1db/0x570 [ 3443.390282][ T7918] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3443.396095][ T7918] ? ___ratelimit+0xac/0x686 [ 3443.400689][ T7918] ? idr_get_free+0xee0/0xee0 [ 3443.405364][ T7918] ? kasan_check_read+0x11/0x20 [ 3443.410220][ T7918] ? do_raw_spin_unlock+0xa0/0x330 [ 3443.415346][ T7918] oom_kill_process.cold+0x10/0x9ca [ 3443.420563][ T7918] ? _raw_spin_unlock+0x2d/0x50 [ 3443.425419][ T7918] ? oom_badness+0xca/0xa50 [ 3443.429931][ T7918] ? out_of_memory+0xc8f/0x1420 [ 3443.434785][ T7918] ? find_held_lock+0x35/0x120 [ 3443.439564][ T7918] ? oom_evaluate_task+0x540/0x540 [ 3443.444676][ T7918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3443.450919][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3443.455771][ T7918] ? kasan_check_read+0x11/0x20 [ 3443.460625][ T7918] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3443.466610][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3443.472243][ T7918] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3443.478487][ T7918] ? oom_evaluate_task+0x305/0x540 [ 3443.483606][ T7918] out_of_memory+0x885/0x1420 [ 3443.488293][ T7918] ? oom_killer_disable+0x340/0x340 [ 3443.493494][ T7918] ? mutex_trylock+0x248/0x2d0 [ 3443.498265][ T7918] ? __ww_mutex_check_waiters+0x160/0x160 [ 3443.504000][ T7918] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3443.509579][ T7918] ? warn_alloc+0x110/0x110 [ 3443.514093][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3443.519725][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3443.525357][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3443.531083][ T7918] ? add_lock_to_list.isra.0+0x450/0x450 [ 3443.536736][ T7918] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3443.542546][ T7918] ? ___might_sleep+0x1e7/0x310 [ 3443.547412][ T7918] ? arch_local_save_flags+0x50/0x50 [ 3443.552699][ T7918] ? lock_release+0xc40/0xc40 [ 3443.557376][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3443.562227][ T7918] ? kasan_check_read+0x11/0x20 [ 3443.567106][ T7918] __alloc_pages_nodemask+0xa37/0xdc0 [ 3443.572492][ T7918] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3443.578212][ T7918] ? __put_page+0x190/0x190 [ 3443.582840][ T7918] ? blk_finish_plug+0x8f/0xa2 [ 3443.587611][ T7918] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3443.593866][ T7918] alloc_pages_current+0x107/0x210 [ 3443.598980][ T7918] __page_cache_alloc+0x3cd/0x620 [ 3443.604009][ T7918] ? read_cache_pages+0xa90/0xa90 [ 3443.609035][ T7918] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3443.614409][ T7918] ? __page_cache_alloc+0x19c/0x620 [ 3443.619608][ T7918] ? find_held_lock+0x60/0x120 [ 3443.624375][ T7918] pagecache_get_page+0x36f/0x1070 [ 3443.629489][ T7918] ? find_lock_entry+0x8b0/0x8b0 [ 3443.634428][ T7918] ? __do_page_cache_readahead+0x64b/0x800 [ 3443.640243][ T7918] ? read_pages+0x650/0x650 [ 3443.644742][ T7918] ? kasan_check_write+0x14/0x20 [ 3443.649680][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3443.654527][ T7918] ? kasan_check_read+0x11/0x20 [ 3443.659385][ T7918] ? up_read_non_owner+0x100/0x100 [ 3443.664496][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3443.670133][ T7918] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3443.676378][ T7918] filemap_fault+0xb6a/0x2a30 [ 3443.681068][ T7918] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3443.687070][ T7918] ? __lock_is_held+0xb6/0x140 [ 3443.691841][ T7918] ? lock_acquire+0x1db/0x570 [ 3443.696519][ T7918] ? ext4_filemap_fault+0x7b/0xaf [ 3443.701562][ T7918] ? lock_release+0xc40/0xc40 [ 3443.706239][ T7918] ? print_usage_bug+0xd0/0xd0 [ 3443.711014][ T7918] ? down_read+0x8d/0x120 [ 3443.715371][ T7918] ? ext4_filemap_fault+0x7b/0xaf [ 3443.720396][ T7918] ? __down_interruptible+0x740/0x740 [ 3443.725767][ T7918] ? __lock_acquire+0x572/0x4a10 [ 3443.730699][ T7918] ? find_held_lock+0x35/0x120 [ 3443.735467][ T7918] ext4_filemap_fault+0x83/0xaf [ 3443.740317][ T7918] __do_fault+0x176/0x7b0 [ 3443.744650][ T7918] ? mark_held_locks+0x100/0x100 [ 3443.749595][ T7918] ? do_page_mkwrite+0x740/0x740 [ 3443.754529][ T7918] ? pmd_val+0x85/0x100 [ 3443.758693][ T7918] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3443.764408][ T7918] ? pmd_val+0x85/0x100 [ 3443.768569][ T7918] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3443.774289][ T7918] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3443.780528][ T7918] ? mpol_misplaced+0x2ca/0x590 [ 3443.785386][ T7918] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3443.791628][ T7918] __handle_mm_fault+0x377c/0x5610 [ 3443.796750][ T7918] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3443.802295][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3443.808017][ T7918] ? handle_mm_fault+0x3cc/0xc80 [ 3443.812973][ T7918] ? lock_downgrade+0xbe0/0xbe0 [ 3443.818310][ T7918] ? kasan_check_read+0x11/0x20 [ 3443.823163][ T7918] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3443.829147][ T7918] ? rcu_read_unlock_special+0x380/0x380 [ 3443.834784][ T7918] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3443.841021][ T7918] ? check_preemption_disabled+0x48/0x290 [ 3443.846749][ T7918] handle_mm_fault+0x4ec/0xc80 [ 3443.851520][ T7918] ? __handle_mm_fault+0x5610/0x5610 [ 3443.856824][ T7918] __do_page_fault+0x5ef/0xda0 [ 3443.861603][ T7918] do_page_fault+0xe6/0x7d8 [ 3443.866107][ T7918] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3443.871742][ T7918] ? vmalloc_sync_all+0x30/0x30 [ 3443.876593][ T7918] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3443.882747][ T7918] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3443.888986][ T7918] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3443.894708][ T7918] ? page_fault+0x8/0x30 [ 3443.898970][ T7918] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3443.904520][ T7918] ? page_fault+0x8/0x30 [ 3443.908768][ T7918] page_fault+0x1e/0x30 [ 3443.912918][ T7918] RIP: 0033:0x7fc6975aa6ec [ 3443.917341][ T7918] Code: Bad RIP value. [ 3443.921401][ T7918] RSP: 002b:00007fc6951cdd48 EFLAGS: 00010202 [ 3443.927461][ T7918] RAX: 0000000001651708 RBX: 00000000016515e0 RCX: 0000000000004000 [ 3443.935434][ T7918] RDX: 0000000000000058 RSI: 00007fc696a035fb RDI: 0000000001651760 [ 3443.943401][ T7918] RBP: 0000000001651708 R08: 0000000001651757 R09: 000000000000000b [ 3443.951369][ T7918] R10: 0000000000000012 R11: 00007fc6975debd0 R12: 0000000000000000 [ 3443.959340][ T7918] R13: 000000000000005f R14: 00007fc696a035a3 R15: 00007fc696a0267e [ 3445.328729][ T7918] Mem-Info: [ 3445.347486][ T7918] active_anon:103892 inactive_anon:203 isolated_anon:0 [ 3445.347486][ T7918] active_file:37 inactive_file:1 isolated_file:0 [ 3445.347486][ T7918] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3445.347486][ T7918] slab_reclaimable:15431 slab_unreclaimable:107700 [ 3445.347486][ T7918] mapped:49154 shmem:244 pagetables:1076 bounce:0 [ 3445.347486][ T7918] free:25009 free_pcp:6 free_cma:0 [ 3445.463026][ T7918] Node 0 active_anon:415552kB inactive_anon:812kB active_file:48kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 114688kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3445.565857][ T7918] Node 1 active_anon:16kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3445.642973][ T7918] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3445.694877][ T7918] lowmem_reserve[]: 0 2535 2537 2537 [ 3445.705134][ T7918] Node 0 DMA32 free:35960kB min:36080kB low:45100kB high:54120kB active_anon:415552kB inactive_anon:812kB active_file:68kB inactive_file:64kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7040kB pagetables:4304kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3445.833175][ T7918] lowmem_reserve[]: 0 0 2 2 [ 3445.837754][ T7918] Node 0 Normal free:12kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3445.957675][ T7918] lowmem_reserve[]: 0 0 0 0 [ 3445.972154][ T7918] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3446.074002][ T7918] lowmem_reserve[]: 0 0 0 0 [ 3446.085936][ T7918] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3446.137458][ T7918] Node 0 DMA32: 639*4kB (UME) 1532*8kB (UME) 687*16kB (UM) 272*32kB (M) 17*64kB (UM) 1*128kB (U) 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36236kB [ 3446.207966][ T7918] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 3446.251643][ T7918] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3446.321502][ T7918] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3446.361379][ T7918] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3446.400782][ T7918] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3446.439911][ T7918] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3446.477905][ T7918] 278 total pagecache pages [ 3446.495573][ T7918] 0 pages in swap cache [ 3446.508139][ T7918] Swap cache stats: add 0, delete 0, find 0/0 [ 3446.542880][ T7918] Free swap = 0kB [ 3446.546620][ T7918] Total swap = 0kB [ 3446.571535][ T7918] 1965979 pages RAM [ 3446.575421][ T7918] 0 pages HighMem/MovableOnly [ 3446.609144][ T7918] 343989 pages reserved [ 3446.613337][ T7918] 0 pages cma reserved [ 3446.617398][ T7918] Unreclaimable slab info: [ 3446.664905][ T7918] Name Used Total [ 3446.690369][ T7918] pid_3 0KB 3KB [ 3446.696475][ T7918] pid_2 57KB 128KB [ 3446.732211][ T7918] bio-3 0KB 7KB [ 3446.738314][ T7918] batadv_tt_change_cache 2KB 7KB [ 3446.770433][ T7918] batadv_tl_cache 4KB 8KB [ 3446.776531][ T7918] TIPC 11KB 21KB [ 3446.806312][ T7918] SCTPv6 16KB 20KB [ 3446.828429][ T7918] DCCPv6 17KB 29KB [ 3446.846206][ T7918] DCCP 16KB 27KB [ 3446.867544][ T7918] bridge_fdb_cache 6KB 15KB [ 3446.888054][ T7918] fib6_nodes 98KB 124KB [ 3446.904596][ T7918] ip6_dst_cache 45KB 176KB [ 3446.925843][ T7918] RAWv6 68KB 78KB [ 3446.942735][ T7918] UDPv6 3KB 7KB [ 3446.948819][ T7918] TCPv6 23KB 29KB [ 3446.979430][ T7918] nf_conntrack 0KB 7KB [ 3446.985577][ T7918] sd_ext_cdb 0KB 7KB [ 3447.039199][ T7918] scsi_sense_cache 1056KB 1060KB [ 3447.045275][ T7918] virtio_scsi_cmd 16KB 16KB [ 3447.071011][ T7918] sgpool-128 8KB 8KB [ 3447.077088][ T7918] sgpool-64 4KB 12KB [ 3447.086945][ T7918] sgpool-32 2KB 15KB [ 3447.105588][ T7918] sgpool-16 1KB 7KB [ 3447.128996][ T7918] sgpool-8 0KB 7KB [ 3447.146768][ T7918] mqueue_inode_cache 10KB 14KB [ 3447.169991][ T7918] bio_post_read_ctx 14KB 15KB [ 3447.176097][ T7918] xfs_buf 9KB 22KB [ 3447.224159][ T7918] bio-2 14KB 15KB [ 3447.248675][ T7918] jfs_mp 7KB 7KB [ 3447.271023][ T7918] nfs_commit_data 3KB 7KB [ 3447.277112][ T7918] nfs_write_data 32KB 32KB [ 3447.325683][ T7918] ext4_system_zone 1KB 7KB [ 3447.347104][ T7918] bio_post_read_ctx 14KB 15KB [ 3447.376398][ T7918] kioctx 2KB 7KB [ 3447.398503][ T7918] userfaultfd_ctx_cache 0KB 3KB [ 3447.425971][ T7918] dio 0KB 7KB [ 3447.452928][ T7918] bio-1 1KB 7KB [ 3447.459018][ T7918] pid_namespace 2KB 7KB [ 3447.500175][ T7918] rpc_buffers 17KB 25KB [ 3447.506264][ T7918] rpc_tasks 2KB 7KB [ 3447.550583][ T7918] UNIX 9KB 14KB [ 3447.556682][ T7918] tcp_bind_bucket 1KB 4KB [ 3447.600431][ T7918] inet_peer_cache 0KB 4KB [ 3447.606549][ T7918] xfrm_state 2KB 4KB [ 3447.651749][ T7918] ip_fib_trie 15KB 23KB [ 3447.657844][ T7918] ip_fib_alias 71KB 86KB [ 3447.703013][ T7918] ip_dst_cache 4KB 20KB [ 3447.719024][ T7918] RAW 41KB 50KB [ 3447.746093][ T7918] UDP 16KB 26KB [ 3447.779322][ T7918] TCP 8KB 11KB [ 3447.785412][ T7918] hugetlbfs_inode_cache 2KB 7KB [ 3447.831531][ T7918] fscache_cookie_jar 1KB 7KB [ 3447.837732][ T7918] eventpoll_pwq 29KB 55KB [ 3447.879230][ T7918] eventpoll_epi 54KB 98KB [ 3447.885330][ T7918] inotify_inode_mark 50KB 102KB [ 3447.945814][ T7918] request_queue 135KB 141KB [ 3447.979220][ T7918] blkdev_ioc 28KB 46KB [ 3447.985319][ T7918] bio-0 1016KB 1016KB [ 3448.029062][ T7918] biovec-max 1575KB 1575KB [ 3448.035194][ T7918] biovec-64 895KB 897KB [ 3448.076457][ T7918] biovec-16 119KB 120KB [ 3448.099222][ T7918] bio_integrity_payload 1KB 7KB [ 3448.105663][ T7918] khugepaged_mm_slot 9KB 23KB [ 3448.159225][ T7918] user_namespace 0KB 3KB [ 3448.165323][ T7918] dmaengine-unmap-256 2KB 6KB [ 3448.222337][ T7918] dmaengine-unmap-128 1KB 3KB [ 3448.228614][ T7918] dmaengine-unmap-16 0KB 4KB [ 3448.274400][ T7918] dmaengine-unmap-2 0KB 3KB [ 3448.297680][ T7918] skbuff_ext_cache 0KB 3KB [ 3448.308760][ T7918] skbuff_fclone_cache 71KB 105KB [ 3448.346004][ T7918] skbuff_head_cache 1154KB 1905KB [ 3448.364249][ T7918] configfs_dir_cache 0KB 8KB [ 3448.371359][ T7918] file_lock_cache 0KB 3KB [ 3448.377439][ T7918] file_lock_ctx 0KB 3KB [ 3448.383614][ T7918] fsnotify_mark_connector 29KB 59KB [ 3448.390251][ T7918] net_namespace 60KB 60KB [ 3448.396325][ T7918] shmem_inode_cache 5609KB 6088KB [ 3448.402478][ T7918] task_delay_info 130KB 242KB [ 3448.408578][ T7918] taskstats 58KB 131KB [ 3448.414724][ T7918] proc_dir_entry 658KB 693KB [ 3448.420879][ T7918] pde_opener 0KB 3KB [ 3448.426955][ T7918] seq_file 266KB 397KB [ 3448.433068][ T7918] sigqueue 48KB 122KB [ 3448.439244][ T7918] kernfs_node_cache 13754KB 13836KB [ 3448.445305][ T7918] mnt_cache 86KB 104KB [ 3448.451402][ T7918] filp 3525KB 5160KB [ 3448.457475][ T7918] names_cache 79037KB 79075KB [ 3448.463612][ T7918] iint_cache 87KB 107KB [ 3448.469728][ T7918] key_jar 7KB 15KB [ 3448.475799][ T7918] uts_namespace 2KB 7KB [ 3448.497036][ T7918] nsproxy 2KB 11KB [ 3448.512203][ T7918] vm_area_struct 6130KB 8596KB [ 3448.518289][ T7918] mm_struct 841KB 1261KB [ 3448.539138][ T7918] fs_cache 70KB 144KB [ 3448.545224][ T7918] files_cache 263KB 412KB [ 3448.561744][ T7918] signal_cache 902KB 1265KB [ 3448.567836][ T7918] sighand_cache 469KB 541KB [ 3448.587292][ T7918] task_struct 3922KB 3922KB [ 3448.599001][ T7918] cred_jar 524KB 888KB [ 3448.635755][ T7918] anon_vma_chain 3764KB 5969KB [ 3448.663662][ T7918] anon_vma 121KB 546KB [ 3448.695356][ T7918] pid 83KB 188KB [ 3448.723250][ T7918] Acpi-Operand 155KB 186KB [ 3448.744236][ T7918] Acpi-ParseExt 9KB 11KB [ 3448.771329][ T7918] Acpi-Parse 41KB 47KB [ 3448.777419][ T7918] Acpi-State 52KB 63KB [ 3448.821956][ T7918] Acpi-Namespace 21KB 23KB [ 3448.828049][ T7918] numa_policy 0KB 3KB [ 3448.872984][ T7918] trace_event_file 272KB 274KB [ 3448.897444][ T7918] ftrace_event_field 391KB 393KB [ 3448.923577][ T7918] pool_workqueue 90KB 96KB [ 3448.950549][ T7918] task_group 5KB 7KB [ 3448.956664][ T7918] debug_objects_cache 1609KB 1611KB [ 3448.992640][ T7918] page->ptl 1191KB 2051KB [ 3448.998780][ T7918] kmalloc-2M 2050KB 2050KB [ 3449.047895][ T7918] kmalloc-512k 2056KB 2056KB [ 3449.077066][ T7918] kmalloc-256k 516KB 516KB [ 3449.097996][ T7918] kmalloc-128k 520KB 520KB [ 3449.124476][ T7918] kmalloc-64k 47256KB 47520KB [ 3449.153607][ T7918] kmalloc-32k 1716KB 1716KB [ 3449.170853][ T7918] kmalloc-16k 1204KB 1254KB [ 3449.176942][ T7918] kmalloc-8k 2161KB 2202KB [ 3449.230823][ T7918] kmalloc-4k 22206KB 22236KB [ 3449.237076][ T7918] kmalloc-2k 8208KB 8874KB [ 3449.265729][ T7918] kmalloc-1k 5812KB 8418KB [ 3449.316956][ T7918] kmalloc-512 4061KB 6161KB [ 3449.341386][ T7918] kmalloc-256 3022KB 3423KB [ 3449.347513][ T7918] kmalloc-128 776KB 1256KB [ 3449.391009][ T7918] kmalloc-96 3114KB 4088KB [ 3449.397103][ T7918] kmalloc-64 3991KB 4116KB [ 3449.439185][ T7918] kmalloc-32 2328KB 2539KB [ 3449.445275][ T7918] kmalloc-192 1549KB 1840KB [ 3449.490516][ T7918] kmem_cache 285KB 288KB [ 3449.496634][ T7918] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz5,task=syz-executor5,pid=9274,uid=0 [ 3449.574884][ T7918] Out of memory: Kill process 9274 (syz-executor5) score 1004 or sacrifice child [ 3449.611533][ T7918] Killed process 9274 (syz-executor5) total-vm:70800kB, anon-rss:2224kB, file-rss:32640kB, shmem-rss:0kB [ 3449.802467][ T7916] rs:main Q:Reg invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3449.844874][ T7916] CPU: 0 PID: 7916 Comm: rs:main Q:Reg Not tainted 5.0.0-rc1-next-20190110 #9 [ 3449.853750][ T7916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3449.863808][ T7916] Call Trace: [ 3449.867116][ T7916] dump_stack+0x1db/0x2d0 [ 3449.871466][ T7916] ? dump_stack_print_info.cold+0x20/0x20 [ 3449.877196][ T7916] ? __lock_acquire+0x572/0x4a10 [ 3449.882164][ T7916] dump_header+0x1e6/0x11a6 [ 3449.886704][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3449.892356][ T7916] ? print_usage_bug+0xd0/0xd0 [ 3449.897138][ T7916] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3449.902782][ T7916] ? ___ratelimit+0x37c/0x686 [ 3449.907476][ T7916] ? mark_held_locks+0xb1/0x100 [ 3449.912357][ T7916] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3449.918265][ T7916] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3449.924081][ T7916] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3449.929381][ T7916] ? trace_hardirqs_on+0xbd/0x310 [ 3449.934415][ T7916] ? kasan_check_read+0x11/0x20 [ 3449.939281][ T7916] ? ___ratelimit+0x37c/0x686 [ 3449.943978][ T7916] ? trace_hardirqs_off_caller+0x300/0x300 [ 3449.949810][ T7916] ? do_raw_spin_trylock+0x270/0x270 [ 3449.955105][ T7916] ? trace_hardirqs_on_caller+0x310/0x310 [ 3449.960836][ T7916] ? lock_acquire+0x1db/0x570 [ 3449.965532][ T7916] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3449.971371][ T7916] ? ___ratelimit+0xac/0x686 [ 3449.975975][ T7916] ? idr_get_free+0xee0/0xee0 [ 3449.980669][ T7916] ? kasan_check_read+0x11/0x20 [ 3449.985531][ T7916] ? do_raw_spin_unlock+0xa0/0x330 [ 3449.990690][ T7916] oom_kill_process.cold+0x10/0x9ca [ 3449.995905][ T7916] ? _raw_spin_unlock+0x2d/0x50 [ 3450.000772][ T7916] ? oom_badness+0xca/0xa50 [ 3450.005291][ T7916] ? out_of_memory+0xc8f/0x1420 [ 3450.010154][ T7916] ? find_held_lock+0x35/0x120 [ 3450.014939][ T7916] ? oom_evaluate_task+0x540/0x540 [ 3450.020074][ T7916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3450.026334][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3450.031198][ T7916] ? kasan_check_read+0x11/0x20 [ 3450.036063][ T7916] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3450.042061][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3450.047708][ T7916] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3450.053965][ T7916] ? oom_evaluate_task+0x305/0x540 [ 3450.059094][ T7916] out_of_memory+0x885/0x1420 [ 3450.063798][ T7916] ? oom_killer_disable+0x340/0x340 [ 3450.069016][ T7916] ? mutex_trylock+0x248/0x2d0 [ 3450.073801][ T7916] ? __ww_mutex_check_waiters+0x160/0x160 [ 3450.079582][ T7916] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3450.085171][ T7916] ? warn_alloc+0x110/0x110 [ 3450.089690][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3450.095330][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3450.100978][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3450.106711][ T7916] ? add_lock_to_list.isra.0+0x450/0x450 [ 3450.112375][ T7916] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3450.118199][ T7916] ? ___might_sleep+0x1e7/0x310 [ 3450.123069][ T7916] ? arch_local_save_flags+0x50/0x50 [ 3450.128364][ T7916] ? lock_release+0xc40/0xc40 [ 3450.133053][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3450.137916][ T7916] ? kasan_check_read+0x11/0x20 [ 3450.142792][ T7916] __alloc_pages_nodemask+0xa37/0xdc0 [ 3450.148190][ T7916] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3450.153943][ T7916] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3450.160207][ T7916] alloc_pages_current+0x107/0x210 [ 3450.165358][ T7916] __page_cache_alloc+0x3cd/0x620 [ 3450.170406][ T7916] ? alloc_pages_current+0x10f/0x210 [ 3450.175714][ T7916] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3450.181098][ T7916] ? __page_cache_alloc+0x19c/0x620 [ 3450.186308][ T7916] ? find_held_lock+0x60/0x120 [ 3450.191091][ T7916] pagecache_get_page+0x36f/0x1070 [ 3450.196253][ T7916] ? find_lock_entry+0x8b0/0x8b0 [ 3450.201228][ T7916] ? __do_page_cache_readahead+0x64b/0x800 [ 3450.207058][ T7916] ? read_pages+0x650/0x650 [ 3450.211595][ T7916] ? kasan_check_write+0x14/0x20 [ 3450.216550][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3450.221440][ T7916] ? kasan_check_read+0x11/0x20 [ 3450.226303][ T7916] ? up_read_non_owner+0x100/0x100 [ 3450.231433][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3450.237083][ T7916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3450.243346][ T7916] filemap_fault+0xb6a/0x2a30 [ 3450.248050][ T7916] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3450.253874][ T7916] ? __lock_is_held+0xb6/0x140 [ 3450.258658][ T7916] ? lock_acquire+0x1db/0x570 [ 3450.263346][ T7916] ? ext4_filemap_fault+0x7b/0xaf [ 3450.268386][ T7916] ? lock_release+0xc40/0xc40 [ 3450.273613][ T7916] ? print_usage_bug+0xd0/0xd0 [ 3450.278398][ T7916] ? down_read+0x8d/0x120 [ 3450.282740][ T7916] ? ext4_filemap_fault+0x7b/0xaf [ 3450.287779][ T7916] ? __down_interruptible+0x740/0x740 [ 3450.293163][ T7916] ? __lock_acquire+0x572/0x4a10 [ 3450.298109][ T7916] ? find_held_lock+0x35/0x120 [ 3450.302901][ T7916] ext4_filemap_fault+0x83/0xaf [ 3450.307812][ T7916] __do_fault+0x176/0x7b0 [ 3450.312183][ T7916] ? mark_held_locks+0x100/0x100 [ 3450.317133][ T7916] ? do_page_mkwrite+0x740/0x740 [ 3450.322082][ T7916] ? pmd_val+0x85/0x100 [ 3450.326371][ T7916] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3450.332100][ T7916] ? pmd_val+0x85/0x100 [ 3450.336269][ T7916] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3450.341999][ T7916] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3450.348251][ T7916] ? mpol_misplaced+0x2ca/0x590 [ 3450.353116][ T7916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3450.359373][ T7916] __handle_mm_fault+0x377c/0x5610 [ 3450.364506][ T7916] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3450.370060][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3450.375796][ T7916] ? handle_mm_fault+0x3cc/0xc80 [ 3450.380765][ T7916] ? lock_downgrade+0xbe0/0xbe0 [ 3450.385632][ T7916] ? kasan_check_read+0x11/0x20 [ 3450.390505][ T7916] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3450.396519][ T7916] ? rcu_read_unlock_special+0x380/0x380 [ 3450.402207][ T7916] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3450.408471][ T7916] ? check_preemption_disabled+0x48/0x290 [ 3450.414283][ T7916] handle_mm_fault+0x4ec/0xc80 [ 3450.419077][ T7916] ? __handle_mm_fault+0x5610/0x5610 [ 3450.424375][ T7916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3450.430633][ T7916] ? vmacache_update+0x114/0x140 [ 3450.435621][ T7916] __do_page_fault+0x5ef/0xda0 [ 3450.440410][ T7916] do_page_fault+0xe6/0x7d8 [ 3450.444926][ T7916] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3450.450614][ T7916] ? vmalloc_sync_all+0x30/0x30 [ 3450.455488][ T7916] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3450.461673][ T7916] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3450.467937][ T7916] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3450.473677][ T7916] ? page_fault+0x8/0x30 [ 3450.477941][ T7916] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3450.483505][ T7916] ? page_fault+0x8/0x30 [ 3450.487764][ T7916] page_fault+0x1e/0x30 [ 3450.491927][ T7916] RIP: 0033:0x7fc697c2d750 [ 3450.496365][ T7916] Code: Bad RIP value. [ 3450.500449][ T7916] RSP: 002b:00007fc6961cf578 EFLAGS: 00010246 [ 3450.506526][ T7916] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 3d6a64615f65726f [ 3450.514532][ T7916] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fc6961cf5c0 [ 3450.522538][ T7916] RBP: 0000000000000008 R08: 0000000001630f50 R09: 0000000000001eec [ 3450.530545][ T7916] R10: 303d726564726f20 R11: 63735f6d6f6f202c R12: 0000000001651340 [ 3450.538549][ T7916] R13: 0000000000000000 R14: 0000000000000000 R15: 000000000164fc40 [ 3453.390067][ T7916] Mem-Info: [ 3453.393384][ T7916] active_anon:103353 inactive_anon:203 isolated_anon:0 [ 3453.393384][ T7916] active_file:30 inactive_file:5 isolated_file:0 [ 3453.393384][ T7916] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3453.393384][ T7916] slab_reclaimable:15429 slab_unreclaimable:107534 [ 3453.393384][ T7916] mapped:49154 shmem:244 pagetables:1053 bounce:0 [ 3453.393384][ T7916] free:25020 free_pcp:124 free_cma:0 [ 3453.615827][ T7916] Node 0 active_anon:413396kB inactive_anon:812kB active_file:188kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 112640kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3453.758480][ T7916] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3453.838326][ T7916] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3453.865286][ T7916] lowmem_reserve[]: 0 2535 2537 2537 [ 3453.870646][ T7916] Node 0 DMA32 free:35672kB min:36080kB low:45100kB high:54120kB active_anon:413396kB inactive_anon:812kB active_file:168kB inactive_file:28kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:7008kB pagetables:4212kB bounce:0kB free_pcp:496kB local_pcp:248kB free_cma:0kB [ 3453.900324][ T7916] lowmem_reserve[]: 0 0 2 2 [ 3453.904848][ T7916] Node 0 Normal free:12kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3453.932472][ T7916] lowmem_reserve[]: 0 0 0 0 [ 3453.937004][ T7916] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3453.999202][ T7916] lowmem_reserve[]: 0 0 0 0 [ 3454.003778][ T7916] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3454.017926][ T7916] Node 0 DMA32: 632*4kB (UME) 1531*8kB (UME) 687*16kB (UM) 273*32kB (UM) 18*64kB (UM) 2*128kB (U) 1*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36168kB [ 3454.033604][ T7916] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 3454.045828][ T7916] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3454.063709][ T7916] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3454.073342][ T7916] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3454.082663][ T7916] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3454.092233][ T7916] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3454.101549][ T7916] 278 total pagecache pages [ 3454.106091][ T7916] 0 pages in swap cache [ 3454.110271][ T7916] Swap cache stats: add 0, delete 0, find 0/0 [ 3454.116323][ T7916] Free swap = 0kB [ 3454.120075][ T7916] Total swap = 0kB [ 3454.123803][ T7916] 1965979 pages RAM [ 3454.127608][ T7916] 0 pages HighMem/MovableOnly [ 3454.132324][ T7916] 343989 pages reserved [ 3454.136478][ T7916] 0 pages cma reserved [ 3454.140610][ T7916] Unreclaimable slab info: [ 3454.145033][ T7916] Name Used Total [ 3454.151355][ T7916] pid_3 0KB 3KB [ 3454.157455][ T7916] pid_2 57KB 128KB [ 3454.163614][ T7916] bio-3 0KB 7KB [ 3454.169716][ T7916] batadv_tt_change_cache 2KB 7KB [ 3454.176207][ T7916] batadv_tl_cache 4KB 8KB [ 3454.182331][ T7916] TIPC 11KB 21KB [ 3454.188408][ T7916] SCTPv6 16KB 20KB [ 3454.194973][ T7916] DCCPv6 17KB 29KB [ 3454.201094][ T7916] DCCP 16KB 27KB [ 3454.207236][ T7916] bridge_fdb_cache 6KB 15KB [ 3454.213325][ T7916] fib6_nodes 98KB 124KB [ 3454.219429][ T7916] ip6_dst_cache 45KB 176KB [ 3454.225497][ T7916] RAWv6 68KB 78KB [ 3454.231666][ T7916] UDPv6 3KB 7KB [ 3454.237754][ T7916] TCPv6 23KB 29KB [ 3454.243852][ T7916] nf_conntrack 0KB 7KB [ 3454.250015][ T7916] sd_ext_cdb 0KB 7KB [ 3454.256091][ T7916] scsi_sense_cache 1056KB 1060KB [ 3454.262237][ T7916] virtio_scsi_cmd 16KB 16KB [ 3454.268298][ T7916] sgpool-128 8KB 8KB [ 3454.274407][ T7916] sgpool-64 4KB 12KB [ 3454.280528][ T7916] sgpool-32 2KB 15KB [ 3454.286630][ T7916] sgpool-16 1KB 7KB [ 3454.292729][ T7916] sgpool-8 0KB 7KB [ 3454.298799][ T7916] mqueue_inode_cache 10KB 14KB [ 3454.305015][ T7916] bio_post_read_ctx 14KB 15KB [ 3454.311114][ T7916] xfs_buf 9KB 22KB [ 3454.317241][ T7916] bio-2 14KB 15KB [ 3454.324267][ T7916] jfs_mp 7KB 7KB [ 3454.330388][ T7916] nfs_commit_data 3KB 7KB [ 3454.336442][ T7916] nfs_write_data 32KB 32KB [ 3454.342624][ T7916] ext4_system_zone 1KB 7KB [ 3454.348692][ T7916] bio_post_read_ctx 14KB 15KB [ 3454.354823][ T7916] kioctx 2KB 7KB [ 3454.360933][ T7916] userfaultfd_ctx_cache 0KB 3KB [ 3454.367353][ T7916] dio 0KB 7KB [ 3454.373435][ T7916] bio-1 1KB 7KB [ 3454.379548][ T7916] pid_namespace 2KB 7KB [ 3454.385654][ T7916] rpc_buffers 17KB 25KB [ 3454.391819][ T7916] rpc_tasks 2KB 7KB [ 3454.397896][ T7916] UNIX 9KB 14KB [ 3454.404028][ T7916] tcp_bind_bucket 1KB 4KB [ 3454.410167][ T7916] inet_peer_cache 0KB 4KB [ 3454.416248][ T7916] xfrm_state 2KB 4KB [ 3454.422365][ T7916] ip_fib_trie 15KB 23KB [ 3454.428442][ T7916] ip_fib_alias 71KB 86KB [ 3454.434587][ T7916] ip_dst_cache 4KB 20KB [ 3454.440717][ T7916] RAW 41KB 50KB [ 3454.446792][ T7916] UDP 16KB 26KB [ 3454.453828][ T7916] TCP 8KB 11KB [ 3454.460080][ T7916] hugetlbfs_inode_cache 2KB 7KB [ 3454.466503][ T7916] fscache_cookie_jar 1KB 7KB [ 3454.472710][ T7916] eventpoll_pwq 29KB 55KB [ 3454.478818][ T7916] eventpoll_epi 54KB 98KB [ 3454.484903][ T7916] inotify_inode_mark 50KB 102KB [ 3454.491101][ T7916] request_queue 135KB 141KB [ 3454.497176][ T7916] blkdev_ioc 27KB 46KB [ 3454.503296][ T7916] bio-0 1020KB 1020KB [ 3454.509419][ T7916] biovec-max 1575KB 1575KB [ 3454.515497][ T7916] biovec-64 904KB 905KB [ 3454.521633][ T7916] biovec-16 117KB 120KB [ 3454.527709][ T7916] bio_integrity_payload 1KB 7KB [ 3454.534174][ T7916] khugepaged_mm_slot 9KB 23KB [ 3454.540389][ T7916] user_namespace 0KB 3KB [ 3454.546495][ T7916] dmaengine-unmap-256 2KB 6KB [ 3454.552778][ T7916] dmaengine-unmap-128 1KB 3KB [ 3454.559019][ T7916] dmaengine-unmap-16 0KB 4KB [ 3454.565236][ T7916] dmaengine-unmap-2 0KB 3KB [ 3454.571522][ T7916] skbuff_ext_cache 0KB 3KB [ 3454.577612][ T7916] skbuff_fclone_cache 69KB 105KB [ 3454.584475][ T7916] skbuff_head_cache 1187KB 1905KB [ 3454.590612][ T7916] configfs_dir_cache 0KB 8KB [ 3454.596767][ T7916] file_lock_cache 0KB 3KB [ 3454.602871][ T7916] file_lock_ctx 0KB 3KB [ 3454.608983][ T7916] fsnotify_mark_connector 29KB 59KB [ 3454.615604][ T7916] net_namespace 60KB 60KB [ 3454.621711][ T7916] shmem_inode_cache 5609KB 6088KB [ 3454.627777][ T7916] task_delay_info 125KB 242KB [ 3454.633906][ T7916] taskstats 58KB 131KB [ 3454.640018][ T7916] proc_dir_entry 658KB 693KB [ 3454.646135][ T7916] pde_opener 0KB 3KB [ 3454.652245][ T7916] seq_file 266KB 397KB [ 3454.658322][ T7916] sigqueue 48KB 122KB [ 3454.664819][ T7916] kernfs_node_cache 13725KB 13832KB [ 3454.670956][ T7916] mnt_cache 86KB 104KB [ 3454.677057][ T7916] filp 3516KB 5160KB [ 3454.683165][ T7916] names_cache 79037KB 79067KB [ 3454.689287][ T7916] iint_cache 87KB 107KB [ 3454.695354][ T7916] key_jar 7KB 15KB [ 3454.701458][ T7916] uts_namespace 2KB 7KB [ 3454.707524][ T7916] nsproxy 2KB 11KB [ 3454.714081][ T7916] vm_area_struct 6128KB 8596KB [ 3454.720191][ T7916] mm_struct 841KB 1261KB [ 3454.726258][ T7916] fs_cache 70KB 144KB [ 3454.732339][ T7916] files_cache 263KB 412KB [ 3454.738394][ T7916] signal_cache 894KB 1265KB [ 3454.744518][ T7916] sighand_cache 455KB 541KB [ 3454.750647][ T7916] task_struct 3922KB 3922KB [ 3454.756721][ T7916] cred_jar 524KB 888KB [ 3454.762815][ T7916] anon_vma_chain 3762KB 5969KB [ 3454.768871][ T7916] anon_vma 121KB 546KB [ 3454.774952][ T7916] pid 79KB 188KB [ 3454.781064][ T7916] Acpi-Operand 155KB 186KB [ 3454.787142][ T7916] Acpi-ParseExt 9KB 11KB [ 3454.793263][ T7916] Acpi-Parse 41KB 47KB [ 3454.799384][ T7916] Acpi-State 52KB 63KB [ 3454.805454][ T7916] Acpi-Namespace 21KB 23KB [ 3454.811539][ T7916] numa_policy 0KB 3KB [ 3454.817820][ T7916] trace_event_file 272KB 274KB [ 3454.823901][ T7916] ftrace_event_field 391KB 393KB [ 3454.830093][ T7916] pool_workqueue 90KB 96KB [ 3454.836208][ T7916] task_group 5KB 7KB [ 3454.843011][ T7916] debug_objects_cache 1609KB 1611KB [ 3454.850173][ T7916] page->ptl 1190KB 2051KB [ 3454.856273][ T7916] kmalloc-2M 2050KB 2050KB [ 3454.862380][ T7916] kmalloc-512k 2056KB 2056KB [ 3454.868448][ T7916] kmalloc-256k 516KB 516KB [ 3454.877106][ T7916] kmalloc-128k 520KB 520KB [ 3454.883281][ T7916] kmalloc-64k 47256KB 47388KB [ 3454.889375][ T7916] kmalloc-32k 1716KB 1716KB [ 3454.895459][ T7916] kmalloc-16k 1204KB 1254KB [ 3454.901589][ T7916] kmalloc-8k 2161KB 2202KB [ 3454.907667][ T7916] kmalloc-4k 22206KB 22227KB [ 3454.913782][ T7916] kmalloc-2k 8206KB 8874KB [ 3454.919879][ T7916] kmalloc-1k 5872KB 8410KB [ 3454.925935][ T7916] kmalloc-512 4078KB 6161KB [ 3454.932048][ T7916] kmalloc-256 3022KB 3423KB [ 3454.938115][ T7916] kmalloc-128 775KB 1256KB [ 3454.944199][ T7916] kmalloc-96 3105KB 4088KB [ 3454.950324][ T7916] kmalloc-64 3986KB 4116KB [ 3454.956387][ T7916] kmalloc-32 2340KB 2551KB [ 3454.962471][ T7916] kmalloc-192 1548KB 1840KB [ 3454.968526][ T7916] kmem_cache 285KB 288KB [ 3454.975263][ T7916] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz2,task=syz-executor2,pid=12564,uid=0 [ 3454.995272][ T7916] Out of memory: Kill process 12564 (syz-executor2) score 1004 or sacrifice child [ 3455.004620][ T7916] Killed process 12564 (syz-executor2) total-vm:70664kB, anon-rss:2208kB, file-rss:32640kB, shmem-rss:0kB [ 3455.813129][ T8028] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3455.881910][ T8028] CPU: 1 PID: 8028 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3455.890549][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3455.900638][ T8028] Call Trace: [ 3455.903950][ T8028] dump_stack+0x1db/0x2d0 [ 3455.908299][ T8028] ? dump_stack_print_info.cold+0x20/0x20 [ 3455.914029][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3455.919006][ T8028] dump_header+0x1e6/0x11a6 [ 3455.923522][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3455.929191][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3455.933973][ T8028] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3455.939620][ T8028] ? ___ratelimit+0x37c/0x686 [ 3455.944314][ T8028] ? mark_held_locks+0xb1/0x100 [ 3455.949182][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3455.955002][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3455.960818][ T8028] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3455.966114][ T8028] ? trace_hardirqs_on+0xbd/0x310 [ 3455.971155][ T8028] ? kasan_check_read+0x11/0x20 [ 3455.976019][ T8028] ? ___ratelimit+0x37c/0x686 [ 3455.980707][ T8028] ? trace_hardirqs_off_caller+0x300/0x300 [ 3455.986521][ T8028] ? do_raw_spin_trylock+0x270/0x270 [ 3455.991843][ T8028] ? trace_hardirqs_on_caller+0x310/0x310 [ 3455.997590][ T8028] ? lock_acquire+0x1db/0x570 [ 3456.002295][ T8028] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3456.008164][ T8028] ? ___ratelimit+0xac/0x686 [ 3456.012770][ T8028] ? idr_get_free+0xee0/0xee0 [ 3456.017461][ T8028] ? kasan_check_read+0x11/0x20 [ 3456.022323][ T8028] ? do_raw_spin_unlock+0xa0/0x330 [ 3456.027455][ T8028] oom_kill_process.cold+0x10/0x9ca [ 3456.032675][ T8028] ? _raw_spin_unlock+0x2d/0x50 [ 3456.037538][ T8028] ? oom_badness+0xca/0xa50 [ 3456.042086][ T8028] ? out_of_memory+0xc8f/0x1420 [ 3456.046949][ T8028] ? find_held_lock+0x35/0x120 [ 3456.051730][ T8028] ? oom_evaluate_task+0x540/0x540 [ 3456.056854][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3456.063110][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3456.067973][ T8028] ? kasan_check_read+0x11/0x20 [ 3456.072834][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3456.078824][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3456.084477][ T8028] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3456.090729][ T8028] ? oom_evaluate_task+0x305/0x540 [ 3456.095855][ T8028] out_of_memory+0x885/0x1420 [ 3456.100574][ T8028] ? oom_killer_disable+0x340/0x340 [ 3456.105785][ T8028] ? mutex_trylock+0x248/0x2d0 [ 3456.110586][ T8028] ? __ww_mutex_check_waiters+0x160/0x160 [ 3456.116330][ T8028] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3456.121916][ T8028] ? warn_alloc+0x110/0x110 [ 3456.126432][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3456.132085][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3456.137732][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3456.143466][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3456.149127][ T8028] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3456.154951][ T8028] ? ___might_sleep+0x1e7/0x310 [ 3456.159816][ T8028] ? arch_local_save_flags+0x50/0x50 [ 3456.165111][ T8028] ? lock_release+0xc40/0xc40 [ 3456.169800][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3456.174663][ T8028] ? kasan_check_read+0x11/0x20 [ 3456.179538][ T8028] __alloc_pages_nodemask+0xa37/0xdc0 [ 3456.184954][ T8028] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3456.190705][ T8028] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3456.196966][ T8028] alloc_pages_current+0x107/0x210 [ 3456.202101][ T8028] __page_cache_alloc+0x3cd/0x620 [ 3456.207142][ T8028] ? alloc_pages_current+0x10f/0x210 [ 3456.212439][ T8028] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3456.217823][ T8028] ? __page_cache_alloc+0x19c/0x620 [ 3456.223035][ T8028] ? find_held_lock+0x60/0x120 [ 3456.227823][ T8028] pagecache_get_page+0x36f/0x1070 [ 3456.232952][ T8028] ? find_lock_entry+0x8b0/0x8b0 [ 3456.237901][ T8028] ? __do_page_cache_readahead+0x64b/0x800 [ 3456.243738][ T8028] ? read_pages+0x650/0x650 [ 3456.248251][ T8028] ? kasan_check_write+0x14/0x20 [ 3456.253201][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3456.258069][ T8028] ? kasan_check_read+0x11/0x20 [ 3456.262932][ T8028] ? up_read_non_owner+0x100/0x100 [ 3456.268068][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3456.273715][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3456.279975][ T8028] filemap_fault+0xb6a/0x2a30 [ 3456.284676][ T8028] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3456.290499][ T8028] ? __lock_is_held+0xb6/0x140 [ 3456.295283][ T8028] ? lock_acquire+0x1db/0x570 [ 3456.299970][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3456.305014][ T8028] ? lock_release+0xc40/0xc40 [ 3456.309705][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3456.314491][ T8028] ? down_read+0x8d/0x120 [ 3456.318830][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3456.323866][ T8028] ? __down_interruptible+0x740/0x740 [ 3456.329248][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3456.334207][ T8028] ext4_filemap_fault+0x83/0xaf [ 3456.339078][ T8028] __do_fault+0x176/0x7b0 [ 3456.343423][ T8028] ? mark_held_locks+0x100/0x100 [ 3456.348377][ T8028] ? do_page_mkwrite+0x740/0x740 [ 3456.353327][ T8028] ? pmd_val+0x85/0x100 [ 3456.357496][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3456.363225][ T8028] ? pmd_val+0x85/0x100 [ 3456.367395][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3456.373127][ T8028] ? _raw_spin_unlock_irq+0x28/0x90 [ 3456.378340][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3456.384616][ T8028] __handle_mm_fault+0x377c/0x5610 [ 3456.389749][ T8028] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3456.395307][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3456.401038][ T8028] ? handle_mm_fault+0x3cc/0xc80 [ 3456.406009][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3456.410873][ T8028] ? kasan_check_read+0x11/0x20 [ 3456.415736][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3456.421732][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3456.427379][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3456.433633][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3456.439374][ T8028] handle_mm_fault+0x4ec/0xc80 [ 3456.444162][ T8028] ? __handle_mm_fault+0x5610/0x5610 [ 3456.449611][ T8028] __do_page_fault+0x5ef/0xda0 [ 3456.454396][ T8028] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3456.460485][ T8028] do_page_fault+0xe6/0x7d8 [ 3456.465001][ T8028] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3456.470651][ T8028] ? vmalloc_sync_all+0x30/0x30 [ 3456.475512][ T8028] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3456.481678][ T8028] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3456.487335][ T8028] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3456.493074][ T8028] ? page_fault+0x8/0x30 [ 3456.497334][ T8028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3456.502893][ T8028] ? page_fault+0x8/0x30 [ 3456.507150][ T8028] page_fault+0x1e/0x30 [ 3456.511312][ T8028] RIP: 0033:0x429000 [ 3456.515227][ T8028] Code: Bad RIP value. [ 3456.519300][ T8028] RSP: 002b:000000c420035ee8 EFLAGS: 00010202 [ 3456.525373][ T8028] RAX: 0000000000000004 RBX: 0000000000000001 RCX: 0000000000000001 [ 3456.533351][ T8028] RDX: 0000000001639d10 RSI: 0000000000000001 RDI: 0000000001639dd8 [ 3456.541330][ T8028] RBP: 000000c420035f28 R08: 0000000000000000 R09: 0000000000000000 [ 3456.549313][ T8028] R10: 000000c420035eb8 R11: 0000000000000202 R12: 0000000000430120 [ 3456.557292][ T8028] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000000 [ 3456.639308][ T8028] Mem-Info: [ 3456.645528][ T8028] active_anon:102816 inactive_anon:203 isolated_anon:0 [ 3456.645528][ T8028] active_file:26 inactive_file:8 isolated_file:0 [ 3456.645528][ T8028] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3456.645528][ T8028] slab_reclaimable:15432 slab_unreclaimable:107507 [ 3456.645528][ T8028] mapped:49154 shmem:244 pagetables:1029 bounce:0 [ 3456.645528][ T8028] free:24888 free_pcp:0 free_cma:0 [ 3456.819657][ T8028] Node 0 active_anon:411248kB inactive_anon:812kB active_file:92kB inactive_file:40kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 110592kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3456.954731][ T8028] Node 1 active_anon:16kB inactive_anon:0kB active_file:12kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3457.091370][ T8028] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3457.202009][ T8028] lowmem_reserve[]: 0 2535 2537 2537 [ 3457.207364][ T8028] Node 0 DMA32 free:35396kB min:36080kB low:45100kB high:54120kB active_anon:411248kB inactive_anon:812kB active_file:168kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:6976kB pagetables:4116kB bounce:0kB free_pcp:248kB local_pcp:0kB free_cma:0kB [ 3457.348293][ T8028] lowmem_reserve[]: 0 0 2 2 [ 3457.364781][ T8028] Node 0 Normal free:8kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3457.399211][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3457.404434][ T8028] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:12kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3457.538115][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3457.557076][ T8028] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3457.608206][ T8028] Node 0 DMA32: 627*4kB (UME) 1531*8kB (ME) 686*16kB (M) 273*32kB (UM) 17*64kB (UM) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35556kB [ 3457.671920][ T8028] Node 0 Normal: 0*4kB 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 3457.714957][ T8028] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3457.789142][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3457.798733][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3457.865082][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3457.909739][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3457.945428][ T8028] 278 total pagecache pages [ 3457.966390][ T8028] 0 pages in swap cache [ 3457.984080][ T8028] Swap cache stats: add 0, delete 0, find 0/0 [ 3458.013387][ T8028] Free swap = 0kB [ 3458.017118][ T8028] Total swap = 0kB [ 3458.032550][ T8028] 1965979 pages RAM [ 3458.036374][ T8028] 0 pages HighMem/MovableOnly [ 3458.074975][ T8028] 343989 pages reserved [ 3458.093712][ T8028] 0 pages cma reserved [ 3458.097786][ T8028] Unreclaimable slab info: [ 3458.126775][ T8028] Name Used Total [ 3458.147705][ T8028] pid_3 0KB 3KB [ 3458.179775][ T8028] pid_2 57KB 128KB [ 3458.185903][ T8028] bio-3 0KB 7KB [ 3458.229613][ T8028] batadv_tt_change_cache 2KB 7KB [ 3458.236142][ T8028] batadv_tl_cache 4KB 8KB [ 3458.283974][ T8028] TIPC 11KB 21KB [ 3458.308079][ T8028] SCTPv6 16KB 20KB [ 3458.329914][ T8028] DCCPv6 17KB 29KB [ 3458.336028][ T8028] DCCP 16KB 27KB [ 3458.384674][ T8028] bridge_fdb_cache 6KB 15KB [ 3458.405648][ T8028] fib6_nodes 98KB 124KB [ 3458.429781][ T8028] ip6_dst_cache 50KB 176KB [ 3458.435867][ T8028] RAWv6 68KB 78KB [ 3458.480336][ T8028] UDPv6 3KB 7KB [ 3458.486424][ T8028] TCPv6 23KB 29KB [ 3458.530896][ T8028] nf_conntrack 0KB 7KB [ 3458.537038][ T8028] sd_ext_cdb 0KB 7KB [ 3458.577550][ T8028] scsi_sense_cache 1056KB 1060KB [ 3458.607687][ T8028] virtio_scsi_cmd 16KB 16KB [ 3458.646017][ T8028] sgpool-128 8KB 8KB [ 3458.668120][ T8028] sgpool-64 4KB 12KB [ 3458.703355][ T8028] sgpool-32 2KB 15KB [ 3458.736540][ T8028] sgpool-16 1KB 7KB [ 3458.771017][ T8028] sgpool-8 0KB 7KB [ 3458.777133][ T8028] mqueue_inode_cache 10KB 14KB [ 3458.836966][ T8028] bio_post_read_ctx 14KB 15KB [ 3458.867080][ T8028] xfs_buf 9KB 22KB [ 3458.887091][ T8028] bio-2 14KB 15KB [ 3458.939110][ T8028] jfs_mp 7KB 7KB [ 3458.945221][ T8028] nfs_commit_data 3KB 7KB [ 3458.976289][ T8028] nfs_write_data 32KB 32KB [ 3458.994381][ T8028] ext4_system_zone 1KB 7KB [ 3459.003579][ T8028] bio_post_read_ctx 14KB 15KB [ 3459.012748][ T8028] kioctx 2KB 7KB [ 3459.018824][ T8028] userfaultfd_ctx_cache 0KB 3KB [ 3459.028308][ T8028] dio 0KB 7KB [ 3459.037471][ T8028] bio-1 1KB 7KB [ 3459.046969][ T8028] pid_namespace 2KB 7KB [ 3459.056150][ T8028] rpc_buffers 17KB 25KB [ 3459.066224][ T8028] rpc_tasks 2KB 7KB [ 3459.075467][ T8028] UNIX 9KB 14KB [ 3459.084701][ T8028] tcp_bind_bucket 1KB 4KB [ 3459.093908][ T8028] inet_peer_cache 0KB 4KB [ 3459.103122][ T8028] xfrm_state 2KB 4KB [ 3459.135195][ T8028] ip_fib_trie 15KB 23KB [ 3459.156683][ T8028] ip_fib_alias 71KB 86KB [ 3459.178909][ T8028] ip_dst_cache 4KB 20KB [ 3459.214773][ T8028] RAW 41KB 50KB [ 3459.243648][ T8028] UDP 16KB 26KB [ 3459.275850][ T8028] TCP 8KB 11KB [ 3459.301218][ T8028] hugetlbfs_inode_cache 2KB 7KB [ 3459.307648][ T8028] fscache_cookie_jar 1KB 7KB [ 3459.358601][ T8028] eventpoll_pwq 29KB 55KB [ 3459.378791][ T8028] eventpoll_epi 54KB 98KB [ 3459.400547][ T8028] inotify_inode_mark 50KB 102KB [ 3459.406732][ T8028] request_queue 135KB 141KB [ 3459.452506][ T8028] blkdev_ioc 27KB 46KB [ 3459.458601][ T8028] bio-0 1035KB 1035KB [ 3459.499720][ T8028] biovec-max 1575KB 1575KB [ 3459.505798][ T8028] biovec-64 913KB 913KB [ 3459.563365][ T8028] biovec-16 120KB 120KB [ 3459.596574][ T8028] bio_integrity_payload 1KB 7KB [ 3459.628006][ T8028] khugepaged_mm_slot 9KB 23KB [ 3459.666438][ T8028] user_namespace 0KB 3KB [ 3459.695527][ T8028] dmaengine-unmap-256 2KB 6KB [ 3459.730126][ T8028] dmaengine-unmap-128 1KB 3KB [ 3459.736409][ T8028] dmaengine-unmap-16 0KB 4KB [ 3459.769536][ T8028] dmaengine-unmap-2 0KB 3KB [ 3459.775633][ T8028] skbuff_ext_cache 0KB 3KB [ 3459.831417][ T8028] skbuff_fclone_cache 68KB 105KB [ 3459.837678][ T8028] skbuff_head_cache 1213KB 1905KB [ 3459.894237][ T8028] configfs_dir_cache 0KB 8KB [ 3459.925235][ T8028] file_lock_cache 0KB 3KB [ 3459.947130][ T8028] file_lock_ctx 0KB 3KB [ 3459.976231][ T8028] fsnotify_mark_connector 29KB 59KB [ 3460.003059][ T8028] net_namespace 60KB 60KB [ 3460.025534][ T8028] shmem_inode_cache 5609KB 6088KB [ 3460.053519][ T8028] task_delay_info 124KB 242KB [ 3460.088283][ T8028] taskstats 58KB 131KB [ 3460.119882][ T8028] proc_dir_entry 658KB 693KB [ 3460.125965][ T8028] pde_opener 0KB 3KB [ 3460.168828][ T8028] seq_file 266KB 397KB [ 3460.191211][ T8028] sigqueue 48KB 122KB [ 3460.197290][ T8028] kernfs_node_cache 13703KB 13832KB [ 3460.237254][ T8028] mnt_cache 86KB 104KB [ 3460.271916][ T8028] filp 3515KB 5160KB [ 3460.277995][ T8028] names_cache 79037KB 79058KB [ 3460.339145][ T8028] iint_cache 87KB 107KB [ 3460.345225][ T8028] key_jar 7KB 15KB [ 3460.381110][ T8028] uts_namespace 2KB 7KB [ 3460.387198][ T8028] nsproxy 2KB 11KB [ 3460.435417][ T8028] vm_area_struct 6127KB 8596KB [ 3460.469113][ T8028] mm_struct 841KB 1261KB [ 3460.475192][ T8028] fs_cache 70KB 144KB [ 3460.534272][ T8028] files_cache 263KB 412KB [ 3460.559204][ T8028] signal_cache 894KB 1265KB [ 3460.565282][ T8028] sighand_cache 455KB 541KB [ 3460.602443][ T8028] task_struct 3922KB 3922KB [ 3460.608527][ T8028] cred_jar 524KB 888KB [ 3460.658381][ T8028] anon_vma_chain 3761KB 5969KB [ 3460.689117][ T8028] anon_vma 121KB 546KB [ 3460.695198][ T8028] pid 79KB 188KB [ 3460.742315][ T8028] Acpi-Operand 155KB 186KB [ 3460.748402][ T8028] Acpi-ParseExt 9KB 11KB [ 3460.802814][ T8028] Acpi-Parse 41KB 47KB [ 3460.808894][ T8028] Acpi-State 52KB 63KB [ 3460.860108][ T8028] Acpi-Namespace 21KB 23KB [ 3460.866194][ T8028] numa_policy 0KB 3KB [ 3460.925378][ T8028] trace_event_file 272KB 274KB [ 3460.956904][ T8028] ftrace_event_field 391KB 393KB [ 3460.982065][ T8028] pool_workqueue 90KB 96KB [ 3460.988139][ T8028] task_group 5KB 7KB [ 3461.042514][ T8028] debug_objects_cache 1609KB 1611KB [ 3461.048788][ T8028] page->ptl 1190KB 2051KB [ 3461.096163][ T8028] kmalloc-2M 2050KB 2050KB [ 3461.119190][ T8028] kmalloc-512k 2056KB 2056KB [ 3461.125266][ T8028] kmalloc-256k 516KB 516KB [ 3461.168078][ T8028] kmalloc-128k 520KB 520KB [ 3461.192041][ T8028] kmalloc-64k 47256KB 47322KB [ 3461.198121][ T8028] kmalloc-32k 1716KB 1716KB [ 3461.244654][ T8028] kmalloc-16k 1204KB 1254KB [ 3461.263584][ T8028] kmalloc-8k 2161KB 2202KB [ 3461.296451][ T8028] kmalloc-4k 22206KB 22219KB [ 3461.318897][ T8028] kmalloc-2k 8206KB 8874KB [ 3461.352830][ T8028] kmalloc-1k 5883KB 8410KB [ 3461.358909][ T8028] kmalloc-512 4078KB 6161KB [ 3461.408911][ T8028] kmalloc-256 3022KB 3423KB [ 3461.447165][ T8028] kmalloc-128 775KB 1256KB [ 3461.471879][ T8028] kmalloc-96 3104KB 4088KB [ 3461.477969][ T8028] kmalloc-64 3986KB 4116KB [ 3461.537716][ T8028] kmalloc-32 2360KB 2571KB [ 3461.568771][ T8028] kmalloc-192 1548KB 1840KB [ 3461.601014][ T8028] kmem_cache 285KB 288KB [ 3461.607126][ T8028] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz5,task=syz-executor5,pid=9260,uid=0 [ 3461.707483][ T8028] Out of memory: Kill process 9260 (syz-executor5) score 1004 or sacrifice child [ 3461.752635][ T8028] Killed process 9260 (syz-executor5) total-vm:70532kB, anon-rss:2208kB, file-rss:32640kB, shmem-rss:0kB [ 3461.794209][ T7958] cron(7958): getblk(): executed=c8 bh_count=1 bh_state=c029 bdev_super_blocksize=4096 size=4096 bdev_super_blocksize_bits=12 bdev_inode_blkbits=12 [ 3462.784222][ T8030] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3462.829505][ T8030] CPU: 1 PID: 8030 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3462.838114][ T8030] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3462.848168][ T8030] Call Trace: [ 3462.851472][ T8030] dump_stack+0x1db/0x2d0 [ 3462.855816][ T8030] ? dump_stack_print_info.cold+0x20/0x20 [ 3462.861546][ T8030] ? __lock_acquire+0x572/0x4a10 [ 3462.866512][ T8030] dump_header+0x1e6/0x11a6 [ 3462.871034][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3462.876677][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3462.881456][ T8030] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3462.887099][ T8030] ? ___ratelimit+0x37c/0x686 [ 3462.891785][ T8030] ? mark_held_locks+0xb1/0x100 [ 3462.896646][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3462.902455][ T8030] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3462.908263][ T8030] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3462.913564][ T8030] ? trace_hardirqs_on+0xbd/0x310 [ 3462.918593][ T8030] ? kasan_check_read+0x11/0x20 [ 3462.923445][ T8030] ? ___ratelimit+0x37c/0x686 [ 3462.928128][ T8030] ? trace_hardirqs_off_caller+0x300/0x300 [ 3462.933968][ T8030] ? do_raw_spin_trylock+0x270/0x270 [ 3462.939257][ T8030] ? trace_hardirqs_on_caller+0x310/0x310 [ 3462.944980][ T8030] ? lock_acquire+0x1db/0x570 [ 3462.949670][ T8030] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3462.955479][ T8030] ? ___ratelimit+0xac/0x686 [ 3462.960076][ T8030] ? idr_get_free+0xee0/0xee0 [ 3462.964755][ T8030] ? kasan_check_read+0x11/0x20 [ 3462.969608][ T8030] ? do_raw_spin_unlock+0xa0/0x330 [ 3462.974737][ T8030] oom_kill_process.cold+0x10/0x9ca [ 3462.979941][ T8030] ? _raw_spin_unlock+0x2d/0x50 [ 3462.984795][ T8030] ? oom_badness+0xca/0xa50 [ 3462.989302][ T8030] ? out_of_memory+0xc8f/0x1420 [ 3462.994154][ T8030] ? find_held_lock+0x35/0x120 [ 3462.998923][ T8030] ? oom_evaluate_task+0x540/0x540 [ 3463.004039][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3463.010293][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3463.015144][ T8030] ? kasan_check_read+0x11/0x20 [ 3463.019998][ T8030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3463.025984][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3463.031619][ T8030] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3463.037860][ T8030] ? oom_evaluate_task+0x305/0x540 [ 3463.042983][ T8030] out_of_memory+0x885/0x1420 [ 3463.047675][ T8030] ? oom_killer_disable+0x340/0x340 [ 3463.052876][ T8030] ? mutex_trylock+0x248/0x2d0 [ 3463.057646][ T8030] ? __ww_mutex_check_waiters+0x160/0x160 [ 3463.063383][ T8030] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3463.068956][ T8030] ? warn_alloc+0x110/0x110 [ 3463.073463][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3463.079099][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3463.084736][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3463.090460][ T8030] ? add_lock_to_list.isra.0+0x450/0x450 [ 3463.096119][ T8030] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3463.101931][ T8030] ? ___might_sleep+0x1e7/0x310 [ 3463.106787][ T8030] ? arch_local_save_flags+0x50/0x50 [ 3463.112077][ T8030] ? lock_release+0xc40/0xc40 [ 3463.116761][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3463.121612][ T8030] ? kasan_check_read+0x11/0x20 [ 3463.126480][ T8030] __alloc_pages_nodemask+0xa37/0xdc0 [ 3463.131864][ T8030] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3463.137619][ T8030] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3463.143869][ T8030] alloc_pages_current+0x107/0x210 [ 3463.148992][ T8030] __page_cache_alloc+0x3cd/0x620 [ 3463.154026][ T8030] ? alloc_pages_current+0x10f/0x210 [ 3463.159320][ T8030] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3463.164695][ T8030] ? __page_cache_alloc+0x19c/0x620 [ 3463.169896][ T8030] ? find_held_lock+0x60/0x120 [ 3463.174667][ T8030] pagecache_get_page+0x36f/0x1070 [ 3463.179786][ T8030] ? find_lock_entry+0x8b0/0x8b0 [ 3463.184727][ T8030] ? __do_page_cache_readahead+0x64b/0x800 [ 3463.190546][ T8030] ? read_pages+0x650/0x650 [ 3463.195087][ T8030] ? kasan_check_write+0x14/0x20 [ 3463.200028][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3463.204908][ T8030] ? kasan_check_read+0x11/0x20 [ 3463.209762][ T8030] ? up_read_non_owner+0x100/0x100 [ 3463.214879][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3463.220521][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3463.226781][ T8030] filemap_fault+0xb6a/0x2a30 [ 3463.231472][ T8030] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3463.237287][ T8030] ? __lock_is_held+0xb6/0x140 [ 3463.242057][ T8030] ? lock_acquire+0x1db/0x570 [ 3463.246748][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3463.251778][ T8030] ? lock_release+0xc40/0xc40 [ 3463.256457][ T8030] ? print_usage_bug+0xd0/0xd0 [ 3463.261223][ T8030] ? drop_futex_key_refs.isra.0+0x6f/0xf0 [ 3463.266954][ T8030] ? down_read+0x8d/0x120 [ 3463.271290][ T8030] ? ext4_filemap_fault+0x7b/0xaf [ 3463.276317][ T8030] ? __down_interruptible+0x740/0x740 [ 3463.281692][ T8030] ? __lock_acquire+0x572/0x4a10 [ 3463.286630][ T8030] ? find_held_lock+0x35/0x120 [ 3463.291403][ T8030] ext4_filemap_fault+0x83/0xaf [ 3463.296261][ T8030] __do_fault+0x176/0x7b0 [ 3463.300595][ T8030] ? mark_held_locks+0x100/0x100 [ 3463.305540][ T8030] ? do_page_mkwrite+0x740/0x740 [ 3463.310490][ T8030] ? pmd_val+0x85/0x100 [ 3463.314651][ T8030] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3463.320371][ T8030] ? pmd_val+0x85/0x100 [ 3463.324532][ T8030] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3463.330265][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3463.336513][ T8030] __handle_mm_fault+0x377c/0x5610 [ 3463.341644][ T8030] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3463.347190][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3463.352911][ T8030] ? handle_mm_fault+0x3cc/0xc80 [ 3463.357873][ T8030] ? lock_downgrade+0xbe0/0xbe0 [ 3463.362733][ T8030] ? kasan_check_read+0x11/0x20 [ 3463.367594][ T8030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3463.373587][ T8030] ? rcu_read_unlock_special+0x380/0x380 [ 3463.379225][ T8030] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3463.385465][ T8030] ? check_preemption_disabled+0x48/0x290 [ 3463.391196][ T8030] handle_mm_fault+0x4ec/0xc80 [ 3463.395969][ T8030] ? __handle_mm_fault+0x5610/0x5610 [ 3463.401271][ T8030] __do_page_fault+0x5ef/0xda0 [ 3463.406038][ T8030] ? do_futex+0x2910/0x2910 [ 3463.410563][ T8030] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3463.416647][ T8030] do_page_fault+0xe6/0x7d8 [ 3463.421155][ T8030] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3463.426793][ T8030] ? vmalloc_sync_all+0x30/0x30 [ 3463.431645][ T8030] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3463.437803][ T8030] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3463.443441][ T8030] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3463.449685][ T8030] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3463.455406][ T8030] ? page_fault+0x8/0x30 [ 3463.459658][ T8030] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3463.465207][ T8030] ? page_fault+0x8/0x30 [ 3463.469454][ T8030] page_fault+0x1e/0x30 [ 3463.473609][ T8030] RIP: 0033:0x42ffcd [ 3463.477514][ T8030] Code: Bad RIP value. [ 3463.481589][ T8030] RSP: 002b:000000c420033f78 EFLAGS: 00010212 [ 3463.487656][ T8030] RAX: 000000c420000d80 RBX: 0000000000000002 RCX: 0000000000000001 [ 3463.495628][ T8030] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 0000000001639d10 [ 3463.503604][ T8030] RBP: 000000c420033fa8 R08: 0000000000000000 R09: 0000000000000000 [ 3463.511583][ T8030] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000011 [ 3463.519562][ T8030] R13: 0000000000000001 R14: 00000000000000f8 R15: 0000000000000008 [ 3463.552949][ T8030] Mem-Info: [ 3463.556128][ T8030] active_anon:102275 inactive_anon:203 isolated_anon:0 [ 3463.556128][ T8030] active_file:9 inactive_file:10 isolated_file:17 [ 3463.556128][ T8030] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3463.556128][ T8030] slab_reclaimable:15434 slab_unreclaimable:107499 [ 3463.556128][ T8030] mapped:49156 shmem:244 pagetables:1006 bounce:0 [ 3463.556128][ T8030] free:25119 free_pcp:0 free_cma:0 [ 3463.593358][ T8030] Node 0 active_anon:409084kB inactive_anon:812kB active_file:32kB inactive_file:40kB unevictable:0kB isolated(anon):0kB isolated(file):68kB mapped:196624kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 108544kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3463.621746][ T8030] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3463.648270][ T8030] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3463.709124][ T8030] lowmem_reserve[]: 0 2535 2537 2537 [ 3463.714443][ T8030] Node 0 DMA32 free:36064kB min:36080kB low:45100kB high:54120kB active_anon:409084kB inactive_anon:812kB active_file:72kB inactive_file:88kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:6944kB pagetables:4024kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3463.853082][ T8030] lowmem_reserve[]: 0 0 2 2 [ 3463.857662][ T8030] Node 0 Normal free:12kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3464.014767][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3464.039170][ T8030] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3464.196790][ T8030] lowmem_reserve[]: 0 0 0 0 [ 3464.226886][ T8030] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3464.299133][ T8030] Node 0 DMA32: 630*4kB (UME) 1518*8kB (UME) 684*16kB (UM) 273*32kB (UM) 19*64kB (UM) 0*128kB 1*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36328kB [ 3464.390802][ T8030] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 3464.465007][ T8030] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3464.489339][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3464.498892][ T8030] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3464.514525][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3464.525074][ T8030] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3464.540805][ T8030] 285 total pagecache pages [ 3464.545328][ T8030] 0 pages in swap cache [ 3464.553777][ T8030] Swap cache stats: add 0, delete 0, find 0/0 [ 3464.562020][ T8030] Free swap = 0kB [ 3464.565742][ T8030] Total swap = 0kB [ 3464.575934][ T8030] 1965979 pages RAM [ 3464.588657][ T8030] 0 pages HighMem/MovableOnly [ 3464.602106][ T8030] 343989 pages reserved [ 3464.606293][ T8030] 0 pages cma reserved [ 3464.682863][ T8030] Unreclaimable slab info: [ 3464.687447][ T8030] Name Used Total [ 3464.750705][ T8030] pid_3 0KB 3KB [ 3464.756835][ T8030] pid_2 57KB 128KB [ 3464.818521][ T8030] bio-3 0KB 7KB [ 3464.854237][ T8030] batadv_tt_change_cache 2KB 7KB [ 3464.882521][ T8030] batadv_tl_cache 4KB 8KB [ 3464.888634][ T8030] TIPC 11KB 21KB [ 3464.936006][ T8030] SCTPv6 16KB 20KB [ 3464.957904][ T8030] DCCPv6 17KB 29KB [ 3464.988793][ T8030] DCCP 16KB 27KB [ 3465.016721][ T8030] bridge_fdb_cache 6KB 15KB [ 3465.043726][ T8030] fib6_nodes 98KB 124KB [ 3465.076483][ T8030] ip6_dst_cache 46KB 176KB [ 3465.103381][ T8030] RAWv6 68KB 78KB [ 3465.129538][ T8030] UDPv6 3KB 7KB [ 3465.135653][ T8030] TCPv6 23KB 29KB [ 3465.182516][ T8030] nf_conntrack 0KB 7KB [ 3465.188682][ T8030] sd_ext_cdb 0KB 7KB [ 3465.236627][ T8030] scsi_sense_cache 1056KB 1060KB [ 3465.275114][ T8030] virtio_scsi_cmd 16KB 16KB [ 3465.312703][ T8030] sgpool-128 8KB 8KB [ 3465.318815][ T8030] sgpool-64 4KB 12KB [ 3465.388208][ T8030] sgpool-32 2KB 15KB [ 3465.418302][ T8030] sgpool-16 1KB 7KB [ 3465.451582][ T8030] sgpool-8 0KB 7KB [ 3465.457664][ T8030] mqueue_inode_cache 10KB 14KB [ 3465.518933][ T8030] bio_post_read_ctx 14KB 15KB [ 3465.544879][ T8030] xfs_buf 9KB 22KB [ 3465.567538][ T8030] bio-2 14KB 15KB [ 3465.610048][ T8030] jfs_mp 7KB 7KB [ 3465.616173][ T8030] nfs_commit_data 3KB 7KB [ 3465.675770][ T8030] nfs_write_data 32KB 32KB [ 3465.703784][ T8030] ext4_system_zone 1KB 7KB [ 3465.736804][ T8030] bio_post_read_ctx 14KB 15KB [ 3465.773444][ T8030] kioctx 2KB 7KB [ 3465.799624][ T8030] userfaultfd_ctx_cache 0KB 3KB [ 3465.806074][ T8030] dio 0KB 7KB [ 3465.867936][ T8030] bio-1 1KB 7KB [ 3465.902256][ T8030] pid_namespace 2KB 7KB [ 3465.908383][ T8030] rpc_buffers 17KB 25KB [ 3465.978768][ T8030] rpc_tasks 2KB 7KB [ 3466.007452][ T8030] UNIX 9KB 14KB [ 3466.045746][ T8030] tcp_bind_bucket 1KB 4KB [ 3466.072285][ T8030] inet_peer_cache 0KB 4KB [ 3466.078395][ T8030] xfrm_state 2KB 4KB [ 3466.121364][ T8030] ip_fib_trie 15KB 23KB [ 3466.127476][ T8030] ip_fib_alias 71KB 86KB [ 3466.170131][ T8030] ip_dst_cache 4KB 20KB [ 3466.176228][ T8030] RAW 41KB 50KB [ 3466.237442][ T8030] UDP 16KB 26KB [ 3466.264843][ T8030] TCP 8KB 11KB [ 3466.301720][ T8030] hugetlbfs_inode_cache 2KB 7KB [ 3466.308185][ T8030] fscache_cookie_jar 1KB 7KB [ 3466.362703][ T8030] eventpoll_pwq 29KB 55KB [ 3466.368787][ T8030] eventpoll_epi 54KB 98KB [ 3466.427492][ T8030] inotify_inode_mark 50KB 102KB [ 3466.460336][ T8030] request_queue 135KB 141KB [ 3466.466414][ T8030] blkdev_ioc 28KB 46KB [ 3466.524454][ T8030] bio-0 1050KB 1050KB [ 3466.558298][ T8030] biovec-max 1575KB 1575KB [ 3466.586728][ T8030] biovec-64 915KB 921KB [ 3466.619798][ T8030] biovec-16 121KB 123KB [ 3466.625881][ T8030] bio_integrity_payload 1KB 7KB [ 3466.693683][ T8030] khugepaged_mm_slot 9KB 23KB [ 3466.732632][ T8030] user_namespace 0KB 3KB [ 3466.738724][ T8030] dmaengine-unmap-256 2KB 6KB [ 3466.799370][ T8030] dmaengine-unmap-128 1KB 3KB [ 3466.805659][ T8030] dmaengine-unmap-16 0KB 4KB [ 3466.862954][ T8030] dmaengine-unmap-2 0KB 3KB [ 3466.869040][ T8030] skbuff_ext_cache 0KB 3KB [ 3466.923452][ T8030] skbuff_fclone_cache 68KB 105KB [ 3466.957713][ T8030] skbuff_head_cache 1230KB 1905KB [ 3466.984581][ T8030] configfs_dir_cache 0KB 8KB [ 3467.022740][ T8030] file_lock_cache 0KB 3KB [ 3467.028819][ T8030] file_lock_ctx 0KB 3KB [ 3467.082153][ T8030] fsnotify_mark_connector 29KB 59KB [ 3467.088752][ T8030] net_namespace 60KB 60KB [ 3467.143816][ T8030] shmem_inode_cache 5609KB 6088KB [ 3467.174117][ T8030] task_delay_info 124KB 242KB [ 3467.209125][ T8030] taskstats 58KB 131KB [ 3467.215201][ T8030] proc_dir_entry 658KB 693KB [ 3467.272074][ T8030] pde_opener 0KB 3KB [ 3467.278151][ T8030] seq_file 266KB 397KB [ 3467.334909][ T8030] sigqueue 48KB 122KB [ 3467.368446][ T8030] kernfs_node_cache 13681KB 13812KB [ 3467.393501][ T8030] mnt_cache 86KB 104KB [ 3467.426812][ T8030] filp 3515KB 5160KB [ 3467.462412][ T8030] names_cache 79045KB 79050KB [ 3467.468490][ T8030] iint_cache 87KB 107KB [ 3467.519704][ T8030] key_jar 7KB 15KB [ 3467.525782][ T8030] uts_namespace 2KB 7KB [ 3467.586829][ T8030] nsproxy 2KB 11KB [ 3467.619458][ T8030] vm_area_struct 6126KB 8596KB [ 3467.625549][ T8030] mm_struct 841KB 1261KB [ 3467.677401][ T8030] fs_cache 70KB 144KB [ 3467.710748][ T8030] files_cache 263KB 412KB [ 3467.716829][ T8030] signal_cache 894KB 1265KB [ 3467.772605][ T8030] sighand_cache 455KB 541KB [ 3467.778706][ T8030] task_struct 3922KB 3922KB [ 3467.795367][ T8030] cred_jar 524KB 888KB [ 3467.806505][ T8030] anon_vma_chain 3761KB 5969KB [ 3467.813692][ T8030] anon_vma 121KB 546KB [ 3467.825095][ T8030] pid 78KB 188KB [ 3467.832250][ T8030] Acpi-Operand 155KB 186KB [ 3467.838322][ T8030] Acpi-ParseExt 9KB 11KB [ 3467.850660][ T8030] Acpi-Parse 41KB 47KB [ 3467.856736][ T8030] Acpi-State 52KB 63KB [ 3467.887696][ T8030] Acpi-Namespace 21KB 23KB [ 3467.904365][ T8030] numa_policy 0KB 3KB [ 3467.953609][ T8030] trace_event_file 272KB 274KB [ 3467.971209][ T8030] ftrace_event_field 391KB 393KB [ 3467.977377][ T8030] pool_workqueue 90KB 96KB [ 3468.012140][ T8030] task_group 5KB 7KB [ 3468.018256][ T8030] debug_objects_cache 1609KB 1611KB [ 3468.059617][ T8030] page->ptl 1190KB 2051KB [ 3468.065876][ T8030] kmalloc-2M 2050KB 2050KB [ 3468.129130][ T8030] kmalloc-512k 2056KB 2056KB [ 3468.135222][ T8030] kmalloc-256k 516KB 516KB [ 3468.196133][ T8030] kmalloc-128k 520KB 520KB [ 3468.217748][ T8030] kmalloc-64k 47256KB 47322KB [ 3468.256639][ T8030] kmalloc-32k 1716KB 1716KB [ 3468.293643][ T8030] kmalloc-16k 1204KB 1254KB [ 3468.320305][ T8030] kmalloc-8k 2161KB 2202KB [ 3468.326391][ T8030] kmalloc-4k 22206KB 22210KB [ 3468.388027][ T8030] kmalloc-2k 8206KB 8874KB [ 3468.407173][ T8030] kmalloc-1k 5872KB 8410KB [ 3468.456255][ T8030] kmalloc-512 4095KB 6161KB [ 3468.473476][ T8030] kmalloc-256 3022KB 3423KB [ 3468.484646][ T8030] kmalloc-128 775KB 1256KB [ 3468.516130][ T8030] kmalloc-96 3103KB 4088KB [ 3468.533706][ T8030] kmalloc-64 3986KB 4116KB [ 3468.556671][ T8030] kmalloc-32 2375KB 2586KB [ 3468.620352][ T8030] kmalloc-192 1548KB 1840KB [ 3468.626467][ T8030] kmem_cache 285KB 288KB [ 3468.637601][ T8030] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz5,task=syz-executor5,pid=9329,uid=0 [ 3468.652103][ T8030] Out of memory: Kill process 9329 (syz-executor5) score 1004 or sacrifice child [ 3468.661297][ T8030] Killed process 9329 (syz-executor5) total-vm:70532kB, anon-rss:2208kB, file-rss:32640kB, shmem-rss:0kB [ 3469.423461][ T8028] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3469.473628][ T8028] CPU: 0 PID: 8028 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3469.482255][ T8028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3469.492305][ T8028] Call Trace: [ 3469.495610][ T8028] dump_stack+0x1db/0x2d0 [ 3469.499948][ T8028] ? dump_stack_print_info.cold+0x20/0x20 [ 3469.505702][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3469.510656][ T8028] dump_header+0x1e6/0x11a6 [ 3469.515190][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3469.520825][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3469.525626][ T8028] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3469.531262][ T8028] ? ___ratelimit+0x37c/0x686 [ 3469.535952][ T8028] ? mark_held_locks+0xb1/0x100 [ 3469.540807][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3469.546616][ T8028] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3469.552425][ T8028] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3469.557714][ T8028] ? trace_hardirqs_on+0xbd/0x310 [ 3469.562743][ T8028] ? kasan_check_read+0x11/0x20 [ 3469.567605][ T8028] ? ___ratelimit+0x37c/0x686 [ 3469.572285][ T8028] ? trace_hardirqs_off_caller+0x300/0x300 [ 3469.578093][ T8028] ? do_raw_spin_trylock+0x270/0x270 [ 3469.583382][ T8028] ? trace_hardirqs_on_caller+0x310/0x310 [ 3469.589099][ T8028] ? lock_acquire+0x1db/0x570 [ 3469.593834][ T8028] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3469.599646][ T8028] ? ___ratelimit+0xac/0x686 [ 3469.604242][ T8028] ? idr_get_free+0xee0/0xee0 [ 3469.608917][ T8028] ? kasan_check_read+0x11/0x20 [ 3469.613769][ T8028] ? do_raw_spin_unlock+0xa0/0x330 [ 3469.618896][ T8028] oom_kill_process.cold+0x10/0x9ca [ 3469.624105][ T8028] ? _raw_spin_unlock+0x2d/0x50 [ 3469.628958][ T8028] ? oom_badness+0xca/0xa50 [ 3469.633466][ T8028] ? out_of_memory+0xc8f/0x1420 [ 3469.638322][ T8028] ? find_held_lock+0x35/0x120 [ 3469.643094][ T8028] ? oom_evaluate_task+0x540/0x540 [ 3469.648215][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3469.654466][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3469.659321][ T8028] ? kasan_check_read+0x11/0x20 [ 3469.664178][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3469.670165][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3469.675800][ T8028] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3469.682048][ T8028] ? oom_evaluate_task+0x305/0x540 [ 3469.687364][ T8028] out_of_memory+0x885/0x1420 [ 3469.692057][ T8028] ? oom_killer_disable+0x340/0x340 [ 3469.697260][ T8028] ? mutex_trylock+0x248/0x2d0 [ 3469.702032][ T8028] ? __ww_mutex_check_waiters+0x160/0x160 [ 3469.707763][ T8028] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3469.713364][ T8028] ? warn_alloc+0x110/0x110 [ 3469.717872][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3469.723507][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3469.729145][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3469.734873][ T8028] ? add_lock_to_list.isra.0+0x450/0x450 [ 3469.740528][ T8028] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3469.746351][ T8028] ? ___might_sleep+0x1e7/0x310 [ 3469.751208][ T8028] ? arch_local_save_flags+0x50/0x50 [ 3469.756492][ T8028] ? lock_release+0xc40/0xc40 [ 3469.761173][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3469.766026][ T8028] ? kasan_check_read+0x11/0x20 [ 3469.770894][ T8028] __alloc_pages_nodemask+0xa37/0xdc0 [ 3469.776293][ T8028] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3469.782043][ T8028] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3469.788290][ T8028] alloc_pages_current+0x107/0x210 [ 3469.793407][ T8028] __page_cache_alloc+0x3cd/0x620 [ 3469.798436][ T8028] ? alloc_pages_current+0x10f/0x210 [ 3469.803727][ T8028] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3469.809104][ T8028] ? __page_cache_alloc+0x19c/0x620 [ 3469.814308][ T8028] ? find_held_lock+0x60/0x120 [ 3469.819103][ T8028] pagecache_get_page+0x36f/0x1070 [ 3469.824255][ T8028] ? find_lock_entry+0x8b0/0x8b0 [ 3469.829214][ T8028] ? __do_page_cache_readahead+0x64b/0x800 [ 3469.835035][ T8028] ? read_pages+0x650/0x650 [ 3469.839538][ T8028] ? kasan_check_write+0x14/0x20 [ 3469.844493][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3469.849381][ T8028] ? kasan_check_read+0x11/0x20 [ 3469.854235][ T8028] ? up_read_non_owner+0x100/0x100 [ 3469.859353][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3469.864988][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3469.871239][ T8028] filemap_fault+0xb6a/0x2a30 [ 3469.875930][ T8028] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3469.881746][ T8028] ? __lock_is_held+0xb6/0x140 [ 3469.886516][ T8028] ? lock_acquire+0x1db/0x570 [ 3469.891215][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3469.896248][ T8028] ? lock_release+0xc40/0xc40 [ 3469.900945][ T8028] ? print_usage_bug+0xd0/0xd0 [ 3469.905737][ T8028] ? down_read+0x8d/0x120 [ 3469.910069][ T8028] ? ext4_filemap_fault+0x7b/0xaf [ 3469.915102][ T8028] ? __down_interruptible+0x740/0x740 [ 3469.920476][ T8028] ? __lock_acquire+0x572/0x4a10 [ 3469.925416][ T8028] ? find_held_lock+0x35/0x120 [ 3469.930215][ T8028] ext4_filemap_fault+0x83/0xaf [ 3469.935074][ T8028] __do_fault+0x176/0x7b0 [ 3469.939425][ T8028] ? mark_held_locks+0x100/0x100 [ 3469.944363][ T8028] ? do_page_mkwrite+0x740/0x740 [ 3469.949305][ T8028] ? pmd_val+0x85/0x100 [ 3469.953465][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3469.959217][ T8028] ? pmd_val+0x85/0x100 [ 3469.963388][ T8028] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3469.969126][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3469.975404][ T8028] __handle_mm_fault+0x377c/0x5610 [ 3469.980581][ T8028] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3469.986144][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3469.991866][ T8028] ? handle_mm_fault+0x3cc/0xc80 [ 3469.996824][ T8028] ? lock_downgrade+0xbe0/0xbe0 [ 3470.001678][ T8028] ? kasan_check_read+0x11/0x20 [ 3470.006531][ T8028] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3470.012545][ T8028] ? rcu_read_unlock_special+0x380/0x380 [ 3470.018197][ T8028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3470.024437][ T8028] ? check_preemption_disabled+0x48/0x290 [ 3470.030168][ T8028] handle_mm_fault+0x4ec/0xc80 [ 3470.034938][ T8028] ? __handle_mm_fault+0x5610/0x5610 [ 3470.040240][ T8028] __do_page_fault+0x5ef/0xda0 [ 3470.045012][ T8028] ? do_futex+0x2910/0x2910 [ 3470.049519][ T8028] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3470.055614][ T8028] do_page_fault+0xe6/0x7d8 [ 3470.060120][ T8028] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3470.065759][ T8028] ? vmalloc_sync_all+0x30/0x30 [ 3470.070614][ T8028] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3470.076779][ T8028] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3470.082414][ T8028] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3470.088661][ T8028] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3470.094385][ T8028] ? page_fault+0x8/0x30 [ 3470.098636][ T8028] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3470.104184][ T8028] ? page_fault+0x8/0x30 [ 3470.108428][ T8028] page_fault+0x1e/0x30 [ 3470.112600][ T8028] RIP: 0033:0x40f600 [ 3470.116505][ T8028] Code: Bad RIP value. [ 3470.120585][ T8028] RSP: 002b:000000c420035f30 EFLAGS: 00010246 [ 3470.127130][ T8028] RAX: 0000000000000014 RBX: 0000000000000000 RCX: 0000000000000000 [ 3470.135114][ T8028] RDX: 0000000001639d10 RSI: 0000000000000004 RDI: 0000000001639d01 [ 3470.143082][ T8028] RBP: 000000c420035fb0 R08: 0000000000000000 R09: 0000000000000000 [ 3470.151087][ T8028] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000430120 [ 3470.159059][ T8028] R13: 00000000000000f1 R14: 0000000000000011 R15: 0000000000000000 [ 3472.388096][ T8028] Mem-Info: [ 3472.401087][ T8028] active_anon:101730 inactive_anon:203 isolated_anon:0 [ 3472.401087][ T8028] active_file:29 inactive_file:16 isolated_file:0 [ 3472.401087][ T8028] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3472.401087][ T8028] slab_reclaimable:15434 slab_unreclaimable:107498 [ 3472.401087][ T8028] mapped:49154 shmem:244 pagetables:983 bounce:0 [ 3472.401087][ T8028] free:25054 free_pcp:60 free_cma:0 [ 3472.550651][ T8028] Node 0 active_anon:406904kB inactive_anon:812kB active_file:196kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 106496kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3472.592674][ T8028] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3472.619549][ T8028] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3472.646533][ T8028] lowmem_reserve[]: 0 2535 2537 2537 [ 3472.651847][ T8028] Node 0 DMA32 free:36056kB min:36080kB low:45100kB high:54120kB active_anon:406904kB inactive_anon:812kB active_file:72kB inactive_file:40kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:6912kB pagetables:3932kB bounce:0kB free_pcp:240kB local_pcp:240kB free_cma:0kB [ 3472.681490][ T8028] lowmem_reserve[]: 0 0 2 2 [ 3472.686027][ T8028] Node 0 Normal free:12kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3472.739132][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3472.743706][ T8028] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:16kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3472.861824][ T8028] lowmem_reserve[]: 0 0 0 0 [ 3472.866388][ T8028] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3472.943114][ T8028] Node 0 DMA32: 632*4kB (UME) 1517*8kB (UME) 684*16kB (UM) 272*32kB (UM) 19*64kB (UM) 0*128kB 1*256kB (U) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36296kB [ 3473.015522][ T8028] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 3473.058782][ T8028] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3473.128778][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3473.169539][ T8028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3473.178862][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3473.246430][ T8028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3473.281539][ T8028] 276 total pagecache pages [ 3473.286087][ T8028] 0 pages in swap cache [ 3473.320886][ T8028] Swap cache stats: add 0, delete 0, find 0/0 [ 3473.326996][ T8028] Free swap = 0kB [ 3473.358344][ T8028] Total swap = 0kB [ 3473.370175][ T8028] 1965979 pages RAM [ 3473.374002][ T8028] 0 pages HighMem/MovableOnly [ 3473.378684][ T8028] 343989 pages reserved [ 3473.417189][ T8028] 0 pages cma reserved [ 3473.437129][ T8028] Unreclaimable slab info: [ 3473.468840][ T8028] Name Used Total [ 3473.484139][ T8028] pid_3 0KB 3KB [ 3473.491300][ T8028] pid_2 57KB 128KB [ 3473.497391][ T8028] bio-3 0KB 7KB [ 3473.503479][ T8028] batadv_tt_change_cache 2KB 7KB [ 3473.510027][ T8028] batadv_tl_cache 4KB 8KB [ 3473.516100][ T8028] TIPC 11KB 21KB [ 3473.522182][ T8028] SCTPv6 16KB 20KB [ 3473.528233][ T8028] DCCPv6 17KB 29KB [ 3473.534326][ T8028] DCCP 16KB 27KB [ 3473.540508][ T8028] bridge_fdb_cache 6KB 15KB [ 3473.546572][ T8028] fib6_nodes 98KB 124KB [ 3473.552664][ T8028] ip6_dst_cache 46KB 176KB [ 3473.558714][ T8028] RAWv6 68KB 78KB [ 3473.564836][ T8028] UDPv6 3KB 7KB [ 3473.570930][ T8028] TCPv6 23KB 29KB [ 3473.577000][ T8028] nf_conntrack 0KB 7KB [ 3473.583169][ T8028] sd_ext_cdb 0KB 7KB [ 3473.589259][ T8028] scsi_sense_cache 1056KB 1060KB [ 3473.595304][ T8028] virtio_scsi_cmd 16KB 16KB [ 3473.601412][ T8028] sgpool-128 8KB 8KB [ 3473.607469][ T8028] sgpool-64 4KB 12KB [ 3473.613586][ T8028] sgpool-32 2KB 15KB [ 3473.620614][ T8028] sgpool-16 1KB 7KB [ 3473.626689][ T8028] sgpool-8 0KB 7KB [ 3473.636803][ T8028] mqueue_inode_cache 10KB 14KB [ 3473.657544][ T8028] bio_post_read_ctx 14KB 15KB [ 3473.683348][ T8028] xfs_buf 9KB 22KB [ 3473.723128][ T8028] bio-2 14KB 15KB [ 3473.744456][ T8028] jfs_mp 7KB 7KB [ 3473.774525][ T8028] nfs_commit_data 3KB 7KB [ 3473.799246][ T8028] nfs_write_data 32KB 32KB [ 3473.805366][ T8028] ext4_system_zone 1KB 7KB [ 3473.838984][ T8028] bio_post_read_ctx 14KB 15KB [ 3473.870636][ T8028] kioctx 2KB 7KB [ 3473.876732][ T8028] userfaultfd_ctx_cache 0KB 3KB [ 3473.925686][ T8028] dio 0KB 7KB [ 3473.946203][ T8028] bio-1 1KB 7KB [ 3473.970792][ T8028] pid_namespace 2KB 7KB [ 3473.976882][ T8028] rpc_buffers 17KB 25KB [ 3474.020448][ T8028] rpc_tasks 2KB 7KB [ 3474.026528][ T8028] UNIX 9KB 14KB [ 3474.071569][ T8028] tcp_bind_bucket 1KB 4KB [ 3474.077653][ T8028] inet_peer_cache 0KB 4KB [ 3474.122599][ T8028] xfrm_state 2KB 4KB [ 3474.128682][ T8028] ip_fib_trie 15KB 23KB [ 3474.178506][ T8028] ip_fib_alias 71KB 86KB [ 3474.198725][ T8028] ip_dst_cache 4KB 20KB [ 3474.223859][ T8028] RAW 41KB 50KB [ 3474.248274][ T8028] UDP 16KB 26KB [ 3474.270822][ T8028] TCP 8KB 11KB [ 3474.276902][ T8028] hugetlbfs_inode_cache 2KB 7KB [ 3474.320512][ T8028] fscache_cookie_jar 1KB 7KB [ 3474.326690][ T8028] eventpoll_pwq 29KB 55KB [ 3474.389435][ T8028] eventpoll_epi 54KB 98KB [ 3474.395537][ T8028] inotify_inode_mark 50KB 102KB [ 3474.454137][ T8028] request_queue 135KB 141KB [ 3474.483272][ T8028] blkdev_ioc 27KB 46KB [ 3474.509692][ T8028] bio-0 1055KB 1057KB [ 3474.515769][ T8028] biovec-max 1575KB 1575KB [ 3474.559213][ T8028] biovec-64 923KB 929KB [ 3474.565289][ T8028] biovec-16 123KB 123KB [ 3474.611693][ T8028] bio_integrity_payload 1KB 7KB [ 3474.618133][ T8028] khugepaged_mm_slot 9KB 23KB [ 3474.662977][ T8028] user_namespace 0KB 3KB [ 3474.685718][ T8028] dmaengine-unmap-256 2KB 6KB [ 3474.715308][ T8028] dmaengine-unmap-128 1KB 3KB [ 3474.739210][ T8028] dmaengine-unmap-16 0KB 4KB [ 3474.745376][ T8028] dmaengine-unmap-2 0KB 3KB [ 3474.789902][ T8028] skbuff_ext_cache 0KB 3KB [ 3474.796014][ T8028] skbuff_fclone_cache 68KB 105KB [ 3474.840575][ T8028] skbuff_head_cache 1255KB 1905KB [ 3474.846672][ T8028] configfs_dir_cache 0KB 8KB [ 3474.901768][ T8028] file_lock_cache 0KB 3KB [ 3474.907863][ T8028] file_lock_ctx 0KB 3KB [ 3474.966956][ T8028] fsnotify_mark_connector 29KB 59KB [ 3474.999873][ T8028] net_namespace 60KB 60KB [ 3475.005949][ T8028] shmem_inode_cache 5609KB 6088KB [ 3475.069191][ T8028] task_delay_info 124KB 242KB [ 3475.075297][ T8028] taskstats 58KB 131KB [ 3475.132464][ T8028] proc_dir_entry 658KB 693KB [ 3475.138564][ T8028] pde_opener 0KB 3KB [ 3475.199128][ T8028] seq_file 266KB 397KB [ 3475.205218][ T8028] sigqueue 48KB 122KB [ 3475.260126][ T8028] kernfs_node_cache 13660KB 13777KB [ 3475.266218][ T8028] mnt_cache 86KB 104KB [ 3475.319985][ T8028] filp 3515KB 5160KB [ 3475.326079][ T8028] names_cache 79045KB 79054KB [ 3475.379248][ T8028] iint_cache 87KB 107KB [ 3475.385335][ T8028] key_jar 7KB 15KB [ 3475.444847][ T8028] uts_namespace 2KB 7KB [ 3475.471919][ T8028] nsproxy 2KB 11KB [ 3475.477995][ T8028] vm_area_struct 6126KB 8596KB [ 3475.522278][ T8028] mm_struct 841KB 1261KB [ 3475.528371][ T8028] fs_cache 70KB 144KB [ 3475.573895][ T8028] files_cache 263KB 412KB [ 3475.595378][ T8028] signal_cache 894KB 1265KB [ 3475.623685][ T8028] sighand_cache 455KB 541KB [ 3475.653785][ T8028] task_struct 3922KB 3922KB [ 3475.670532][ T8028] cred_jar 524KB 888KB [ 3475.676624][ T8028] anon_vma_chain 3761KB 5969KB [ 3475.724353][ T8028] anon_vma 121KB 546KB [ 3475.746198][ T8028] pid 78KB 188KB [ 3475.777630][ T8028] Acpi-Operand 155KB 186KB [ 3475.798427][ T8028] Acpi-ParseExt 9KB 11KB [ 3475.829988][ T8028] Acpi-Parse 41KB 47KB [ 3475.836066][ T8028] Acpi-State 52KB 63KB [ 3475.890002][ T8028] Acpi-Namespace 21KB 23KB [ 3475.896083][ T8028] numa_policy 0KB 3KB [ 3475.952549][ T8028] trace_event_file 272KB 274KB [ 3475.958673][ T8028] ftrace_event_field 391KB 393KB [ 3476.018691][ T8028] pool_workqueue 90KB 96KB [ 3476.038745][ T8028] task_group 5KB 7KB [ 3476.063779][ T8028] debug_objects_cache 1609KB 1611KB [ 3476.092919][ T8028] page->ptl 1190KB 2051KB [ 3476.099047][ T8028] kmalloc-2M 2050KB 2050KB [ 3476.120691][ T8028] kmalloc-512k 2056KB 2056KB [ 3476.126769][ T8028] kmalloc-256k 516KB 516KB [ 3476.184493][ T8028] kmalloc-128k 520KB 520KB [ 3476.216807][ T8028] kmalloc-64k 47256KB 47322KB [ 3476.240284][ T8028] kmalloc-32k 1716KB 1716KB [ 3476.246362][ T8028] kmalloc-16k 1204KB 1254KB [ 3476.289762][ T8028] kmalloc-8k 2161KB 2202KB [ 3476.295842][ T8028] kmalloc-4k 22206KB 22206KB [ 3476.328659][ T8028] kmalloc-2k 8206KB 8874KB [ 3476.367212][ T8028] kmalloc-1k 5880KB 8410KB [ 3476.400971][ T8028] kmalloc-512 4112KB 6161KB [ 3476.407061][ T8028] kmalloc-256 3022KB 3423KB [ 3476.452814][ T8028] kmalloc-128 775KB 1256KB [ 3476.458899][ T8028] kmalloc-96 3102KB 4088KB [ 3476.504029][ T8028] kmalloc-64 3987KB 4116KB [ 3476.526550][ T8028] kmalloc-32 2399KB 2610KB [ 3476.555391][ T8028] kmalloc-192 1548KB 1840KB [ 3476.579219][ T8028] kmem_cache 285KB 288KB [ 3476.585292][ T8028] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz2,task=syz-executor2,pid=12544,uid=0 [ 3476.659685][ T8028] Out of memory: Kill process 12544 (syz-executor2) score 1004 or sacrifice child [ 3476.668941][ T8028] Killed process 12544 (syz-executor2) total-vm:70532kB, anon-rss:2200kB, file-rss:32640kB, shmem-rss:0kB [ 3478.252478][ T8039] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 3478.284019][ T8039] CPU: 1 PID: 8039 Comm: syz-fuzzer Not tainted 5.0.0-rc1-next-20190110 #9 [ 3478.292636][ T8039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3478.302688][ T8039] Call Trace: [ 3478.305991][ T8039] dump_stack+0x1db/0x2d0 [ 3478.310332][ T8039] ? dump_stack_print_info.cold+0x20/0x20 [ 3478.316058][ T8039] ? __lock_acquire+0x572/0x4a10 [ 3478.321020][ T8039] dump_header+0x1e6/0x11a6 [ 3478.325531][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3478.331184][ T8039] ? print_usage_bug+0xd0/0xd0 [ 3478.335986][ T8039] ? pagefault_out_of_memory+0x1a1/0x1a1 [ 3478.341622][ T8039] ? ___ratelimit+0x37c/0x686 [ 3478.346314][ T8039] ? mark_held_locks+0xb1/0x100 [ 3478.351168][ T8039] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3478.356982][ T8039] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 3478.362771][ T8039] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3478.368033][ T8039] ? trace_hardirqs_on+0xbd/0x310 [ 3478.373038][ T8039] ? kasan_check_read+0x11/0x20 [ 3478.377868][ T8039] ? ___ratelimit+0x37c/0x686 [ 3478.382535][ T8039] ? trace_hardirqs_off_caller+0x300/0x300 [ 3478.388361][ T8039] ? do_raw_spin_trylock+0x270/0x270 [ 3478.393625][ T8039] ? trace_hardirqs_on_caller+0x310/0x310 [ 3478.399323][ T8039] ? lock_acquire+0x1db/0x570 [ 3478.403985][ T8039] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3478.409785][ T8039] ? ___ratelimit+0xac/0x686 [ 3478.414355][ T8039] ? idr_get_free+0xee0/0xee0 [ 3478.419356][ T8039] ? kasan_check_read+0x11/0x20 [ 3478.424189][ T8039] ? do_raw_spin_unlock+0xa0/0x330 [ 3478.429310][ T8039] oom_kill_process.cold+0x10/0x9ca [ 3478.434489][ T8039] ? _raw_spin_unlock+0x2d/0x50 [ 3478.439321][ T8039] ? oom_badness+0xca/0xa50 [ 3478.443806][ T8039] ? out_of_memory+0xc8f/0x1420 [ 3478.448634][ T8039] ? find_held_lock+0x35/0x120 [ 3478.453380][ T8039] ? oom_evaluate_task+0x540/0x540 [ 3478.458486][ T8039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3478.464707][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3478.469536][ T8039] ? kasan_check_read+0x11/0x20 [ 3478.474375][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3478.480335][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3478.485952][ T8039] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3478.492172][ T8039] ? oom_evaluate_task+0x305/0x540 [ 3478.497279][ T8039] out_of_memory+0x885/0x1420 [ 3478.501945][ T8039] ? oom_killer_disable+0x340/0x340 [ 3478.507124][ T8039] ? mutex_trylock+0x248/0x2d0 [ 3478.511869][ T8039] ? __ww_mutex_check_waiters+0x160/0x160 [ 3478.517584][ T8039] __alloc_pages_slowpath+0x21dd/0x2c60 [ 3478.523137][ T8039] ? warn_alloc+0x110/0x110 [ 3478.527620][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3478.533231][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3478.538845][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3478.544543][ T8039] ? add_lock_to_list.isra.0+0x450/0x450 [ 3478.550175][ T8039] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 3478.555966][ T8039] ? ___might_sleep+0x1e7/0x310 [ 3478.560814][ T8039] ? arch_local_save_flags+0x50/0x50 [ 3478.566095][ T8039] ? lock_release+0xc40/0xc40 [ 3478.570750][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3478.575596][ T8039] ? kasan_check_read+0x11/0x20 [ 3478.580446][ T8039] __alloc_pages_nodemask+0xa37/0xdc0 [ 3478.585805][ T8039] ? __alloc_pages_slowpath+0x2c60/0x2c60 [ 3478.591566][ T8039] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 3478.597821][ T8039] alloc_pages_current+0x107/0x210 [ 3478.602915][ T8039] __page_cache_alloc+0x3cd/0x620 [ 3478.607927][ T8039] ? alloc_pages_current+0x10f/0x210 [ 3478.613194][ T8039] ? __filemap_set_wb_err+0x3f0/0x3f0 [ 3478.618545][ T8039] ? __page_cache_alloc+0x19c/0x620 [ 3478.623732][ T8039] ? find_held_lock+0x60/0x120 [ 3478.628477][ T8039] pagecache_get_page+0x36f/0x1070 [ 3478.633578][ T8039] ? find_lock_entry+0x8b0/0x8b0 [ 3478.638496][ T8039] ? __do_page_cache_readahead+0x64b/0x800 [ 3478.644286][ T8039] ? read_pages+0x650/0x650 [ 3478.648768][ T8039] ? kasan_check_write+0x14/0x20 [ 3478.653697][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3478.658525][ T8039] ? kasan_check_read+0x11/0x20 [ 3478.663358][ T8039] ? up_read_non_owner+0x100/0x100 [ 3478.668446][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3478.674059][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3478.680309][ T8039] filemap_fault+0xb6a/0x2a30 [ 3478.684971][ T8039] ? grab_cache_page_write_begin+0xb0/0xb0 [ 3478.690759][ T8039] ? __lock_is_held+0xb6/0x140 [ 3478.695679][ T8039] ? lock_acquire+0x1db/0x570 [ 3478.700335][ T8039] ? ext4_filemap_fault+0x7b/0xaf [ 3478.705339][ T8039] ? lock_release+0xc40/0xc40 [ 3478.710009][ T8039] ? print_usage_bug+0xd0/0xd0 [ 3478.714768][ T8039] ? drop_futex_key_refs.isra.0+0x6f/0xf0 [ 3478.720935][ T8039] ? down_read+0x8d/0x120 [ 3478.725242][ T8039] ? ext4_filemap_fault+0x7b/0xaf [ 3478.730264][ T8039] ? __down_interruptible+0x740/0x740 [ 3478.735630][ T8039] ? __lock_acquire+0x572/0x4a10 [ 3478.740544][ T8039] ? find_held_lock+0x35/0x120 [ 3478.745311][ T8039] ext4_filemap_fault+0x83/0xaf [ 3478.750159][ T8039] __do_fault+0x176/0x7b0 [ 3478.754507][ T8039] ? mark_held_locks+0x100/0x100 [ 3478.759453][ T8039] ? do_page_mkwrite+0x740/0x740 [ 3478.764369][ T8039] ? pmd_val+0x85/0x100 [ 3478.768504][ T8039] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3478.774224][ T8039] ? pmd_val+0x85/0x100 [ 3478.778361][ T8039] ? add_mm_counter_fast.part.0+0x40/0x40 [ 3478.784059][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3478.790285][ T8039] __handle_mm_fault+0x377c/0x5610 [ 3478.795379][ T8039] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 3478.800901][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3478.806601][ T8039] ? handle_mm_fault+0x3cc/0xc80 [ 3478.811524][ T8039] ? lock_downgrade+0xbe0/0xbe0 [ 3478.816351][ T8039] ? kasan_check_read+0x11/0x20 [ 3478.821335][ T8039] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 3478.827296][ T8039] ? rcu_read_unlock_special+0x380/0x380 [ 3478.832907][ T8039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 3478.839141][ T8039] ? check_preemption_disabled+0x48/0x290 [ 3478.844840][ T8039] handle_mm_fault+0x4ec/0xc80 [ 3478.849588][ T8039] ? __handle_mm_fault+0x5610/0x5610 [ 3478.854851][ T8039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3478.861073][ T8039] ? vmacache_update+0x114/0x140 [ 3478.865996][ T8039] __do_page_fault+0x5ef/0xda0 [ 3478.870739][ T8039] ? do_futex+0x2910/0x2910 [ 3478.875224][ T8039] do_page_fault+0xe6/0x7d8 [ 3478.879709][ T8039] ? trace_hardirqs_on_caller+0xc0/0x310 [ 3478.885322][ T8039] ? vmalloc_sync_all+0x30/0x30 [ 3478.890147][ T8039] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 3478.896281][ T8039] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3478.901894][ T8039] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3478.908114][ T8039] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3478.913810][ T8039] ? page_fault+0x8/0x30 [ 3478.918033][ T8039] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3478.923569][ T8039] ? page_fault+0x8/0x30 [ 3478.927793][ T8039] page_fault+0x1e/0x30 [ 3478.931928][ T8039] RIP: 0033:0x40f82b [ 3478.935812][ T8039] Code: Bad RIP value. [ 3478.939853][ T8039] RSP: 002b:000000c42003fd28 EFLAGS: 00010212 [ 3478.945896][ T8039] RAX: 0000000000000000 RBX: 000000c420026a80 RCX: 000000000045ddf3 [ 3478.953845][ T8039] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000c420026b90 [ 3478.961793][ T8039] RBP: 000000c42003fd50 R08: 0000000000000000 R09: 0000000000000000 [ 3478.969758][ T8039] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000001 [ 3478.977707][ T8039] R13: 0000000000000001 R14: 000000c420039370 R15: 000000c43680a9b0 [ 3479.000217][ T8039] Mem-Info: [ 3479.003375][ T8039] active_anon:101190 inactive_anon:203 isolated_anon:0 [ 3479.003375][ T8039] active_file:21 inactive_file:9 isolated_file:0 [ 3479.003375][ T8039] unevictable:0 dirty:0 writeback:0 unstable:0 [ 3479.003375][ T8039] slab_reclaimable:15435 slab_unreclaimable:107278 [ 3479.003375][ T8039] mapped:49153 shmem:244 pagetables:959 bounce:0 [ 3479.003375][ T8039] free:25012 free_pcp:0 free_cma:0 [ 3479.039243][ T1041] INFO: task syz-executor5:14423 blocked for more than 140 seconds. [ 3479.048240][ T1041] Not tainted 5.0.0-rc1-next-20190110 #9 [ 3479.096901][ T8039] Node 0 active_anon:404744kB inactive_anon:812kB active_file:148kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196616kB dirty:0kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 104448kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3479.103596][ T1041] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 3479.243626][ T1041] syz-executor5 D24072 14423 8060 0x00000004 [ 3479.277025][ T1041] Call Trace: [ 3479.280452][ T8039] Node 1 active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3479.318111][ T1041] __schedule+0x897/0x1e60 [ 3479.342251][ T1041] ? trace_hardirqs_on+0xbd/0x310 [ 3479.347291][ T1041] ? kasan_check_read+0x11/0x20 [ 3479.384546][ T1041] ? pci_mmcfg_check_reserved+0x170/0x170 [ 3479.406842][ T1041] ? __mutex_lock+0xa36/0x1670 [ 3479.421061][ T8039] Node 0 DMA free:10368kB min:220kB low:272kB high:324kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3479.454644][ T1041] ? find_held_lock+0x35/0x120 [ 3479.473687][ T1041] schedule+0xfe/0x350 [ 3479.477780][ T1041] ? __schedule+0x1e60/0x1e60 [ 3479.511225][ T1041] ? __mutex_add_waiter+0xba/0x290 [ 3479.516363][ T1041] ? do_raw_spin_trylock+0x270/0x270 [ 3479.553252][ T1041] ? mutex_destroy+0x200/0x200 [ 3479.558046][ T1041] schedule_preempt_disabled+0x13/0x20 [ 3479.573750][ T8039] lowmem_reserve[]: 0 2535 2537 2537 [ 3479.597329][ T8039] Node 0 DMA32 free:35964kB min:36080kB low:45100kB high:54120kB active_anon:404744kB inactive_anon:812kB active_file:40kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2599664kB mlocked:0kB kernel_stack:6880kB pagetables:3836kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3479.632866][ T1041] __mutex_lock+0xa3b/0x1670 [ 3479.637475][ T1041] ? print_usage_bug+0xd0/0xd0 [ 3479.671252][ T1041] ? _vb2_fop_release+0x3f/0x2a0 [ 3479.676217][ T1041] ? mutex_trylock+0x2d0/0x2d0 [ 3479.711179][ T1041] ? __lock_acquire+0x572/0x4a10 [ 3479.716154][ T1041] ? get_futex_key+0x2070/0x2070 [ 3479.740644][ T8039] lowmem_reserve[]: 0 0 2 2 [ 3479.745169][ T8039] Node 0 Normal free:12kB min:28kB low:32kB high:36kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:2204kB mlocked:0kB kernel_stack:96kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3479.783600][ T1041] ? mark_held_locks+0x100/0x100 [ 3479.788681][ T1041] ? locks_remove_posix+0x488/0x860 [ 3479.829159][ T1041] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3479.835417][ T1041] ? fsnotify+0x50c/0xef0 [ 3479.862686][ T1041] ? _vb2_fop_release+0x2a0/0x2a0 [ 3479.867742][ T1041] mutex_lock_nested+0x16/0x20 [ 3479.902895][ T8039] lowmem_reserve[]: 0 0 0 0 [ 3479.907423][ T8039] Node 1 Normal free:53780kB min:53780kB low:67224kB high:80668kB active_anon:16kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:3932160kB managed:3870184kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3479.946055][ T1041] ? mutex_lock_nested+0x16/0x20 [ 3479.963061][ T1041] _vb2_fop_release+0x3f/0x2a0 [ 3479.967858][ T1041] ? _vb2_fop_release+0x2a0/0x2a0 [ 3480.004990][ T1041] vb2_fop_release+0x75/0xc0 [ 3480.024263][ T1041] v4l2_release+0x2f2/0x3a0 [ 3480.028789][ T1041] __fput+0x3c5/0xb10 [ 3480.060357][ T1041] ? dev_debug_store+0x150/0x150 [ 3480.065318][ T1041] ? file_free_rcu+0xe0/0xe0 [ 3480.085995][ T8039] lowmem_reserve[]: 0 0 0 0 [ 3480.100113][ T1041] ? task_work_run+0x1bb/0x2b0 [ 3480.104895][ T1041] ? trace_hardirqs_off_caller+0x300/0x300 [ 3480.109967][ T8039] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 1*128kB (U) 0*256kB 0*512kB 0*1024kB 1*2048kB (M) 2*4096kB (M) = 10368kB [ 3480.146580][ T1041] ? do_raw_spin_trylock+0x270/0x270 [ 3480.175704][ T1041] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3480.179362][ T8039] Node 0 DMA32: 627*4kB (UME) 1513*8kB (ME) 684*16kB (M) 271*32kB (M) 18*64kB (UM) 1*128kB (U) 0*256kB 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 36020kB [ 3480.214488][ T1041] ____fput+0x16/0x20 [ 3480.218840][ T1041] task_work_run+0x1f4/0x2b0 [ 3480.258615][ T1041] ? task_work_cancel+0x2c0/0x2c0 [ 3480.273014][ T8039] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 3480.283484][ T1041] ? __close_fd+0x25f/0x3d0 [ 3480.313975][ T1041] ? do_syscall_64+0x8c/0x800 [ 3480.318677][ T1041] exit_to_usermode_loop+0x32a/0x3b0 [ 3480.335848][ T8039] Node 1 Normal: 5*4kB (UM) 2*8kB (ME) 5*16kB (UME) 5*32kB (UME) 6*64kB (UME) 1*128kB (M) 3*256kB (ME) 2*512kB (ME) 4*1024kB (UME) 1*2048kB (U) 11*4096kB (UM) = 53780kB [ 3480.365280][ T1041] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3480.389653][ T1041] ? syscall_trace_enter+0x12a0/0x12a0 [ 3480.395141][ T1041] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3480.432935][ T8039] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3480.433861][ T1041] do_syscall_64+0x696/0x800 [ 3480.484129][ T8039] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3480.501449][ T1041] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3480.507099][ T1041] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3480.533466][ T8039] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3480.557920][ T1041] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3480.578523][ T8039] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3480.591161][ T1041] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3480.597066][ T1041] RIP: 0033:0x411c91 [ 3480.629302][ T8039] 276 total pagecache pages [ 3480.633830][ T8039] 0 pages in swap cache [ 3480.637983][ T8039] Swap cache stats: add 0, delete 0, find 0/0 [ 3480.647774][ T1041] Code: Bad RIP value. [ 3480.662242][ T1041] RSP: 002b:00007ffcd7169a40 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 3480.698205][ T1041] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000411c91 [ 3480.709108][ T8039] Free swap = 0kB [ 3480.712838][ T8039] Total swap = 0kB [ 3480.716575][ T8039] 1965979 pages RAM [ 3480.738630][ T1041] RDX: 0000000000000000 RSI: 00000000007404a8 RDI: 0000000000000004 [ 3480.755403][ T8039] 0 pages HighMem/MovableOnly [ 3480.764014][ T1041] RBP: 0000000000000000 R08: 00000000007404a0 R09: 0000000000000000 [ 3480.789197][ T8039] 343989 pages reserved [ 3480.793365][ T8039] 0 pages cma reserved [ 3480.797438][ T8039] Unreclaimable slab info: [ 3480.826415][ T1041] R10: 00007ffcd7169960 R11: 0000000000000293 R12: 0000000000000000 [ 3480.857721][ T1041] R13: 0000000000000001 R14: 0000000000000a9f R15: 0000000000000005 [ 3480.862470][ T8039] Name Used Total [ 3480.900203][ T1041] INFO: task syz-executor5:14424 blocked for more than 140 seconds. [ 3480.906256][ T8039] pid_3 0KB 3KB [ 3480.908320][ T1041] Not tainted 5.0.0-rc1-next-20190110 #9 [ 3480.945442][ T8039] pid_2 57KB 128KB [ 3480.982769][ T8039] bio-3 0KB 7KB [ 3480.988881][ T8039] batadv_tt_change_cache 2KB 7KB [ 3481.007469][ T1041] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 3481.045233][ T8039] batadv_tl_cache 4KB 8KB [ 3481.051378][ T1041] syz-executor5 D23688 14424 8060 0x00000004 [ 3481.051404][ T1041] Call Trace: [ 3481.051441][ T1041] __schedule+0x897/0x1e60 [ 3481.078728][ T8039] TIPC 11KB 21KB [ 3481.109188][ T8039] SCTPv6 16KB 20KB [ 3481.109214][ T1041] ? pci_mmcfg_check_reserved+0x170/0x170 [ 3481.115279][ T8039] DCCPv6 17KB 29KB [ 3481.173503][ T1041] ? save_stack+0xa9/0xd0 [ 3481.177898][ T1041] ? __mutex_lock+0xa36/0x1670 [ 3481.200205][ T8039] DCCP 16KB 27KB [ 3481.206338][ T8039] bridge_fdb_cache 6KB 15KB [ 3481.218828][ T1041] ? find_held_lock+0x35/0x120 [ 3481.243627][ T1041] schedule+0xfe/0x350 [ 3481.247725][ T1041] ? __schedule+0x1e60/0x1e60 [ 3481.268898][ T8039] fib6_nodes 98KB 124KB [ 3481.289699][ T1041] ? __mutex_add_waiter+0xba/0x290 [ 3481.294846][ T1041] ? do_raw_spin_trylock+0x270/0x270 [ 3481.295794][ T8039] ip6_dst_cache 46KB 176KB [ 3481.319129][ T8039] RAWv6 68KB 78KB [ 3481.325215][ T8039] UDPv6 3KB 7KB [ 3481.344581][ T1041] ? mutex_destroy+0x200/0x200 [ 3481.366289][ T1041] schedule_preempt_disabled+0x13/0x20 [ 3481.384172][ T8039] TCPv6 23KB 29KB [ 3481.393590][ T1041] __mutex_lock+0xa3b/0x1670 [ 3481.398208][ T1041] ? print_usage_bug+0xd0/0xd0 [ 3481.410475][ T8039] nf_conntrack 0KB 7KB [ 3481.416636][ T8039] sd_ext_cdb 0KB 7KB [ 3481.443212][ T1041] ? _vb2_fop_release+0x3f/0x2a0 [ 3481.448187][ T1041] ? mutex_trylock+0x2d0/0x2d0 [ 3481.469660][ T8039] scsi_sense_cache 1056KB 1060KB [ 3481.475749][ T8039] virtio_scsi_cmd 16KB 16KB [ 3481.497643][ T1041] ? __lock_acquire+0x572/0x4a10 [ 3481.523514][ T1041] ? mark_held_locks+0x100/0x100 [ 3481.528507][ T1041] ? v4l_enumstd+0x70/0x70 [ 3481.535285][ T8039] sgpool-128 8KB 8KB [ 3481.566102][ T8039] sgpool-64 4KB 12KB [ 3481.567589][ T1041] ? __fget+0x473/0x710 [ 3481.599170][ T8039] sgpool-32 2KB 15KB [ 3481.605255][ T8039] sgpool-16 1KB 7KB [ 3481.617686][ T1041] ? find_held_lock+0x35/0x120 [ 3481.637628][ T1041] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3481.668205][ T8039] sgpool-8 0KB 7KB [ 3481.671581][ T1041] ? fsnotify+0x50c/0xef0 [ 3481.678639][ T1041] ? _vb2_fop_release+0x2a0/0x2a0 [ 3481.698614][ T8039] mqueue_inode_cache 10KB 14KB [ 3481.726852][ T8039] bio_post_read_ctx 14KB 15KB [ 3481.739199][ T1041] mutex_lock_nested+0x16/0x20 [ 3481.743991][ T1041] ? mutex_lock_nested+0x16/0x20 [ 3481.748942][ T1041] _vb2_fop_release+0x3f/0x2a0 [ 3481.759194][ T8039] xfs_buf 9KB 22KB [ 3481.765321][ T8039] bio-2 14KB 15KB [ 3481.812183][ T1041] ? _vb2_fop_release+0x2a0/0x2a0 [ 3481.817235][ T1041] vb2_fop_release+0x75/0xc0 [ 3481.820309][ T8039] jfs_mp 7KB 7KB [ 3481.827935][ T8039] nfs_commit_data 3KB 7KB [ 3481.861835][ T1041] v4l2_release+0x2f2/0x3a0 [ 3481.866375][ T1041] __fput+0x3c5/0xb10 [ 3481.889200][ T8039] nfs_write_data 32KB 32KB [ 3481.895332][ T8039] ext4_system_zone 1KB 7KB [ 3481.918458][ T1041] ? dev_debug_store+0x150/0x150 [ 3481.948476][ T1041] ? file_free_rcu+0xe0/0xe0 [ 3481.949662][ T8039] bio_post_read_ctx 14KB 15KB [ 3481.974396][ T1041] ? task_work_run+0x1bb/0x2b0 [ 3482.001587][ T8039] kioctx 2KB 7KB [ 3482.003399][ T1041] ? trace_hardirqs_off_caller+0x300/0x300 [ 3482.007675][ T8039] userfaultfd_ctx_cache 0KB 3KB [ 3482.058526][ T1041] ? do_raw_spin_trylock+0x270/0x270 [ 3482.091462][ T1041] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3482.097734][ T1041] ____fput+0x16/0x20 [ 3482.109278][ T8039] dio 0KB 7KB [ 3482.115428][ T8039] bio-1 1KB 7KB [ 3482.152979][ T1041] task_work_run+0x1f4/0x2b0 [ 3482.157619][ T1041] ? task_work_cancel+0x2c0/0x2c0 [ 3482.177763][ T8039] pid_namespace 2KB 7KB [ 3482.203908][ T8039] rpc_buffers 17KB 25KB [ 3482.210374][ T1041] ? cpumask_weight.constprop.0+0x3f/0x3f [ 3482.216123][ T1041] ? do_syscall_64+0x8c/0x800 [ 3482.242050][ T8039] rpc_tasks 2KB 7KB [ 3482.248151][ T8039] UNIX 9KB 14KB [ 3482.275965][ T1041] exit_to_usermode_loop+0x32a/0x3b0 [ 3482.302358][ T1041] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3482.308457][ T1041] ? syscall_trace_enter+0x12a0/0x12a0 [ 3482.319220][ T8039] tcp_bind_bucket 1KB 4KB [ 3482.325311][ T8039] inet_peer_cache 0KB 4KB [ 3482.369199][ T1041] ? ksys_ioctl+0x82/0xd0 [ 3482.373681][ T1041] do_syscall_64+0x696/0x800 [ 3482.378291][ T1041] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3482.396908][ T8039] xfrm_state 2KB 4KB [ 3482.423522][ T8039] ip_fib_trie 15KB 23KB [ 3482.441876][ T8039] ip_fib_alias 71KB 86KB [ 3482.447961][ T8039] ip_dst_cache 4KB 20KB [ 3482.453025][ T1041] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3482.519162][ T1041] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3482.524748][ T1041] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3482.530772][ T8039] RAW 41KB 50KB [ 3482.536851][ T8039] UDP 16KB 26KB [ 3482.585960][ T1041] RIP: 0033:0x457ec9 [ 3482.593536][ T8039] TCP 8KB 11KB [ 3482.609939][ T1041] Code: Bad RIP value. [ 3482.614023][ T1041] RSP: 002b:00007fd948db6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3482.631785][ T8039] hugetlbfs_inode_cache 2KB 7KB [ 3482.638219][ T8039] fscache_cookie_jar 1KB 7KB [ 3482.675331][ T1041] RAX: fffffffffffffff4 RBX: 0000000000000003 RCX: 0000000000457ec9 [ 3482.690110][ T8039] eventpoll_pwq 29KB 55KB [ 3482.696225][ T8039] eventpoll_epi 54KB 98KB [ 3482.725011][ T1041] RDX: 0000000020000040 RSI: 00000000c100565c RDI: 0000000000000003 [ 3482.762414][ T8039] inotify_inode_mark 50KB 102KB [ 3482.768611][ T8039] request_queue 135KB 141KB [ 3482.778316][ T1041] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 3482.823439][ T1041] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd948db76d4 [ 3482.846164][ T8039] blkdev_ioc 27KB 46KB [ 3482.863380][ T1041] R13: 00000000004c2849 R14: 00000000004d4ee8 R15: 00000000ffffffff [ 3482.883188][ T8039] bio-0 1106KB 1106KB [ 3482.908876][ T1041] INFO: task syz-executor1:14425 blocked for more than 140 seconds. [ 3482.916077][ T8039] biovec-max 1575KB 1575KB [ 3482.947831][ T8039] biovec-64 992KB 992KB [ 3482.957306][ T1041] Not tainted 5.0.0-rc1-next-20190110 #9 [ 3482.985212][ T8039] biovec-16 138KB 138KB [ 3483.002082][ T1041] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 3483.015269][ T8039] bio_integrity_payload 1KB 7KB [ 3483.043593][ T8039] khugepaged_mm_slot 9KB 23KB [ 3483.055148][ T1041] syz-executor1 D25928 14425 25944 0x00000004 [ 3483.081255][ T8039] user_namespace 0KB 3KB [ 3483.087406][ T8039] dmaengine-unmap-256 2KB 6KB [ 3483.089223][ T1041] Call Trace: [ 3483.096957][ T1041] __schedule+0x897/0x1e60 [ 3483.143102][ T8039] dmaengine-unmap-128 1KB 3KB [ 3483.169386][ T1041] ? pci_mmcfg_check_reserved+0x170/0x170 [ 3483.175146][ T1041] ? __debug_object_init+0x54b/0x1280 [ 3483.177060][ T8039] dmaengine-unmap-16 0KB 4KB [ 3483.209166][ T8039] dmaengine-unmap-2 0KB 3KB [ 3483.215256][ T8039] skbuff_ext_cache 0KB 3KB [ 3483.239171][ T1041] ? __mutex_lock+0xa36/0x1670 [ 3483.243962][ T1041] ? find_held_lock+0x35/0x120 [ 3483.248750][ T1041] schedule+0xfe/0x350 [ 3483.260650][ T8039] skbuff_fclone_cache 68KB 105KB [ 3483.266994][ T8039] skbuff_head_cache 1272KB 1905KB [ 3483.319911][ T1041] ? __schedule+0x1e60/0x1e60 [ 3483.324638][ T1041] ? __mutex_add_waiter+0xba/0x290 [ 3483.326491][ T8039] configfs_dir_cache 0KB 8KB [ 3483.377244][ T8039] file_lock_cache 0KB 3KB [ 3483.379789][ T1041] ? do_raw_spin_trylock+0x270/0x270 [ 3483.388635][ T1041] ? mutex_destroy+0x200/0x200 [ 3483.411713][ T8039] file_lock_ctx 0KB 3KB [ 3483.417805][ T8039] fsnotify_mark_connector 29KB 59KB [ 3483.467073][ T1041] schedule_preempt_disabled+0x13/0x20 [ 3483.472381][ T8039] net_namespace 60KB 60KB [ 3483.478655][ T8039] shmem_inode_cache 5602KB 6084KB [ 3483.497399][ T1041] __mutex_lock+0xa3b/0x1670 [ 3483.529498][ T1041] ? print_usage_bug+0xd0/0xd0 [ 3483.534314][ T1041] ? _vb2_fop_release+0x3f/0x2a0 [ 3483.536641][ T8039] task_delay_info 123KB 242KB [ 3483.570085][ T8039] taskstats 57KB 131KB [ 3483.576171][ T8039] proc_dir_entry 658KB 693KB [ 3483.594445][ T1041] ? mutex_trylock+0x2d0/0x2d0 [ 3483.615912][ T8039] pde_opener 0KB 3KB [ 3483.628281][ T1041] ? __lock_acquire+0x572/0x4a10 [ 3483.652105][ T1041] ? mark_held_locks+0x100/0x100 [ 3483.653190][ T8039] seq_file 264KB 397KB [ 3483.657071][ T1041] ? trace_hardirqs_on+0xbd/0x310 [ 3483.708823][ T1041] ? locks_remove_posix+0x488/0x860 [ 3483.712679][ T8039] sigqueue 48KB 122KB [ 3483.740092][ T1041] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3483.746371][ T1041] ? fsnotify+0x50c/0xef0 [ 3483.759125][ T8039] kernfs_node_cache 13660KB 13777KB [ 3483.765209][ T8039] mnt_cache 86KB 104KB [ 3483.795432][ T1041] ? _vb2_fop_release+0x2a0/0x2a0 [ 3483.824951][ T1041] mutex_lock_nested+0x16/0x20 [ 3483.835001][ T8039] filp 3508KB 5160KB [ 3483.856580][ T1041] ? mutex_lock_nested+0x16/0x20 [ 3483.882099][ T1041] _vb2_fop_release+0x3f/0x2a0 [ 3483.882441][ T8039] names_cache 78493KB 78535KB [ 3483.886893][ T1041] ? _vb2_fop_release+0x2a0/0x2a0 [ 3483.931423][ T8039] iint_cache 87KB 107KB [ 3483.937513][ T8039] key_jar 7KB 15KB [ 3483.977788][ T1041] vb2_fop_release+0x75/0xc0 [ 3484.002579][ T8039] uts_namespace 2KB 7KB [ 3484.008667][ T8039] nsproxy 2KB 11KB [ 3484.008700][ T1041] v4l2_release+0x2f2/0x3a0 [ 3484.067221][ T8039] vm_area_struct 6120KB 8596KB [ 3484.068447][ T1041] __fput+0x3c5/0xb10 [ 3484.108619][ T8039] mm_struct 840KB 1261KB [ 3484.114863][ T1041] ? dev_debug_store+0x150/0x150 [ 3484.140543][ T1041] ? file_free_rcu+0xe0/0xe0 [ 3484.144994][ T8039] fs_cache 70KB 144KB [ 3484.145186][ T1041] ? task_work_run+0x1bb/0x2b0 [ 3484.187954][ T8039] files_cache 263KB 412KB [ 3484.215472][ T1041] ? trace_hardirqs_off_caller+0x300/0x300 [ 3484.223998][ T8039] signal_cache 892KB 1265KB [ 3484.254415][ T1041] ? do_raw_spin_trylock+0x270/0x270 [ 3484.254520][ T8039] sighand_cache 455KB 541KB [ 3484.274623][ T8039] task_struct 3922KB 3922KB [ 3484.277266][ T1041] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3484.305402][ T8039] cred_jar 524KB 888KB [ 3484.311582][ T8039] anon_vma_chain 3755KB 5969KB [ 3484.317669][ T8039] anon_vma 121KB 546KB [ 3484.319178][ T1041] ____fput+0x16/0x20 [ 3484.327801][ T1041] task_work_run+0x1f4/0x2b0 [ 3484.346017][ T1041] ? task_work_cancel+0x2c0/0x2c0 [ 3484.357703][ T8039] pid 78KB 188KB [ 3484.360826][ T1041] ? __close_fd+0x25f/0x3d0 [ 3484.368309][ T1041] ? do_syscall_64+0x8c/0x800 [ 3484.388288][ T8039] Acpi-Operand 155KB 186KB [ 3484.434943][ T1041] exit_to_usermode_loop+0x32a/0x3b0 [ 3484.439909][ T8039] Acpi-ParseExt 9KB 11KB [ 3484.446379][ T8039] Acpi-Parse 41KB 47KB [ 3484.489005][ T8039] Acpi-State 52KB 63KB [ 3484.493608][ T1041] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3484.528904][ T8039] Acpi-Namespace 21KB 23KB [ 3484.539160][ T1041] ? syscall_trace_enter+0x12a0/0x12a0 [ 3484.544648][ T1041] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3484.568041][ T8039] numa_policy 0KB 3KB [ 3484.579648][ T7916] rs:main Q:Reg(7916): getblk(): executed=c8 bh_count=1 bh_state=29 bdev_super_blocksize=4096 size=4096 bdev_super_blocksize_bits=12 bdev_inode_blkbits=12 [ 3484.589484][ T8039] trace_event_file 272KB 274KB [ 3484.613191][ T1041] do_syscall_64+0x696/0x800 [ 3484.617812][ T1041] ? syscall_return_slowpath+0x5f0/0x5f0 [ 3484.667770][ T1041] ? prepare_exit_to_usermode+0x232/0x3b0 [ 3484.674522][ T8039] ftrace_event_field 391KB 393KB [ 3484.704084][ T1041] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3484.710811][ T8039] pool_workqueue 90KB 96KB [ 3484.716896][ T8039] task_group 5KB 7KB [ 3484.741363][ T1041] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 3484.747296][ T1041] RIP: 0033:0x411c91 [ 3484.774008][ T8039] debug_objects_cache 1609KB 1611KB [ 3484.791528][ T1041] Code: Bad RIP value. [ 3484.795636][ T1041] RSP: 002b:00007ffd476e4250 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 3484.814590][ T8039] page->ptl 1189KB 2051KB [ 3484.853592][ T8039] kmalloc-2M 2050KB 2050KB [ 3484.864819][ T1041] RAX: 0000000000000000 RBX: 0000000000000007 RCX: 0000000000411c91 [ 3484.889857][ T8039] kmalloc-512k 2056KB 2056KB [ 3484.896078][ T8039] kmalloc-256k 516KB 516KB [ 3484.923288][ T1041] RDX: 0000000000000000 RSI: 00000000007405b0 RDI: 0000000000000006 [ 3484.961960][ T1041] RBP: 0000000000000000 R08: 00000000007405a8 R09: 0000000000000000 [ 3484.976058][ T8039] kmalloc-128k 520KB 520KB [ 3485.005398][ T8039] kmalloc-64k 47124KB 47322KB [ 3485.014893][ T1041] R10: 00007ffd476e4170 R11: 0000000000000293 R12: 0000000000000000 [ 3485.045156][ T8039] kmalloc-32k 1716KB 1716KB [ 3485.064102][ T1041] R13: 0000000000000001 R14: 0000000000000346 R15: 0000000000000001 [ 3485.081519][ T8039] kmalloc-16k 1204KB 1254KB [ 3485.087629][ T8039] kmalloc-8k 2161KB 2202KB [ 3485.108414][ T1041] [ 3485.108414][ T1041] Showing all locks held in the system: [ 3485.137171][ T8039] kmalloc-4k 22151KB 22180KB [ 3485.146859][ T1041] 3 locks held by init/1: [ 3485.165670][ T1041] 1 lock held by khungtaskd/1041: [ 3485.171998][ T8039] kmalloc-2k 8204KB 8874KB [ 3485.178171][ T8039] kmalloc-1k 5880KB 8410KB [ 3485.198140][ T1041] #0: 000000003e86bda1 (rcu_read_lock){....}, at: debug_show_all_locks+0xc6/0x41d [ 3485.235647][ T8039] kmalloc-512 4129KB 6161KB [ 3485.243291][ T1041] 3 locks held by udevd/3866: [ 3485.247984][ T1041] 4 locks held by rs:main Q:Reg/7916: [ 3485.275139][ T8039] kmalloc-256 3022KB 3423KB [ 3485.296746][ T1041] 3 locks held by rsyslogd/7918: [ 3485.305611][ T8039] kmalloc-128 774KB 1256KB [ 3485.323464][ T1041] 3 locks held by cron/7958: [ 3485.328082][ T1041] 2 locks held by getty/8008: [ 3485.338335][ T8039] kmalloc-96 3104KB 4088KB [ 3485.365654][ T8039] kmalloc-64 3988KB 4116KB [ 3485.373352][ T1041] #0: 00000000d8bdb5b4 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3485.402807][ T8039] kmalloc-32 2427KB 2638KB [ 3485.408898][ T8039] kmalloc-192 1548KB 1840KB [ 3485.434858][ T1041] #1: 0000000099fd5273 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3485.482510][ T8039] kmem_cache 285KB 288KB [ 3485.488623][ T8039] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/syz2,task=syz-executor2,pid=12633,uid=0 [ 3485.506707][ T1041] 2 locks held by getty/8009: [ 3485.531872][ T1041] #0: 00000000f4873364 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3485.575527][ T1041] #1: 000000002eda49f3 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3485.619231][ T8039] Out of memory: Kill process 12633 (syz-executor2) score 1004 or sacrifice child [ 3485.628510][ T8039] Killed process 12633 (syz-executor2) total-vm:70532kB, anon-rss:2200kB, file-rss:32640kB, shmem-rss:0kB [ 3485.643691][ T1041] 2 locks held by getty/8010: [ 3485.648381][ T1041] #0: 000000002b33afdd (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3485.712203][ T1041] #1: 0000000037eb19bc (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3485.725037][ T1041] 2 locks held by getty/8011: [ 3485.739224][ T1041] #0: 00000000ed10454d (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3485.755098][ T1041] #1: 00000000dfe99369 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3485.766222][ T1041] 2 locks held by getty/8012: [ 3485.773214][ T1041] #0: 00000000a7ece7ba (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3485.801283][ T1041] #1: 000000006b2de8c0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3485.813735][ T1041] 2 locks held by getty/8013: [ 3485.823951][ T1041] #0: 00000000dee977f5 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3485.834154][ T1041] #1: 000000007f3666c0 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3485.844956][ T1041] 2 locks held by getty/8014: [ 3485.850738][ T1041] #0: 000000006617535d (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 3485.859879][ T1041] #1: 00000000e6074f64 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x30a/0x1eb0 [ 3485.869721][ T1041] 2 locks held by syz-fuzzer/8030: [ 3485.874846][ T1041] #0: 000000008aa78fb8 (&ei->i_mmap_sem){++++}, at: ext4_filemap_fault+0x7b/0xaf [ 3485.884130][ T1041] #1: 00000000ece391bb (fs_reclaim){+.+.}, at: fs_reclaim_acquire.part.0+0x0/0x30 [ 3485.893836][ T1041] 1 lock held by syz-fuzzer/8039: [ 3485.913585][ T1041] 1 lock held by syz-executor5/14423: [ 3485.918969][ T1041] #0: 00000000651cce5c (&vcap->lock){+.+.}, at: _vb2_fop_release+0x3f/0x2a0 [ 3485.969197][ T1041] 1 lock held by syz-executor5/14424: [ 3485.974587][ T1041] #0: 00000000651cce5c (&vcap->lock){+.+.}, at: _vb2_fop_release+0x3f/0x2a0 [ 3486.004080][ T1041] 1 lock held by syz-executor1/14425: [ 3486.037601][ T1041] #0: 00000000651cce5c (&vcap->lock){+.+.}, at: _vb2_fop_release+0x3f/0x2a0 [ 3486.083724][ T1041] 3 locks held by syz-executor1/14426: [ 3486.106148][ T1041] [ 3486.108488][ T1041] ============================================= [ 3486.108488][ T1041] [ 3486.162006][ T1041] NMI backtrace for cpu 1 [ 3486.166364][ T1041] CPU: 1 PID: 1041 Comm: khungtaskd Not tainted 5.0.0-rc1-next-20190110 #9 [ 3486.174943][ T1041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3486.184994][ T1041] Call Trace: [ 3486.188291][ T1041] dump_stack+0x1db/0x2d0 [ 3486.192627][ T1041] ? dump_stack_print_info.cold+0x20/0x20 [ 3486.198368][ T1041] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 3486.204620][ T1041] nmi_cpu_backtrace.cold+0x63/0xa4 [ 3486.209901][ T1041] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 3486.215543][ T1041] nmi_trigger_cpumask_backtrace+0x1be/0x236 [ 3486.221549][ T1041] arch_trigger_cpumask_backtrace+0x14/0x20 [ 3486.227454][ T1041] watchdog+0xbbb/0x1170 [ 3486.231711][ T1041] ? reset_hung_task_detector+0xd0/0xd0 [ 3486.237257][ T1041] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3486.242563][ T1041] ? trace_hardirqs_on+0xbd/0x310 [ 3486.247601][ T1041] ? kasan_check_read+0x11/0x20 [ 3486.252456][ T1041] ? __kthread_parkme+0xc3/0x1b0 [ 3486.257397][ T1041] ? trace_hardirqs_off_caller+0x300/0x300 [ 3486.263205][ T1041] ? do_raw_spin_trylock+0x270/0x270 [ 3486.268493][ T1041] ? schedule+0x108/0x350 [ 3486.272824][ T1041] ? do_raw_spin_trylock+0x270/0x270 [ 3486.278124][ T1041] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3486.283935][ T1041] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3486.290187][ T1041] ? __kthread_parkme+0xfb/0x1b0 [ 3486.295132][ T1041] kthread+0x357/0x430 [ 3486.299208][ T1041] ? reset_hung_task_detector+0xd0/0xd0 [ 3486.304753][ T1041] ? kthread_stop+0x920/0x920 [ 3486.309436][ T1041] ret_from_fork+0x3a/0x50 [ 3486.314026][ T1041] Sending NMI from CPU 1 to CPUs 0: [ 3486.319428][ C0] NMI backtrace for cpu 0 [ 3486.319435][ C0] CPU: 0 PID: 10 Comm: rcu_preempt Not tainted 5.0.0-rc1-next-20190110 #9 [ 3486.319442][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3486.319446][ C0] RIP: 0010:__switch_to+0x1d5/0x1270 [ 3486.319458][ C0] Code: 0c 00 00 48 c7 c0 40 82 92 89 48 ba 00 00 00 00 00 fc ff df 48 c1 e8 03 80 3c 10 00 0f 85 c7 0d 00 00 48 83 3d 1b 09 67 08 00 <0f> 84 bb 0b 00 00 8b b5 ec fe ff ff 48 89 df e8 17 be 0b 00 66 90 [ 3486.319463][ C0] RSP: 0000:ffff8880a5f3f840 EFLAGS: 00000086 [ 3486.319472][ C0] RAX: 1ffffffff1325048 RBX: ffff8880a5f31740 RCX: ffffffff839277da [ 3486.319478][ C0] RDX: dffffc0000000000 RSI: ffffffff839277e8 RDI: ffff8880a94816c0 [ 3486.319484][ C0] RBP: ffff8880a5f3f970 R08: ffff8880a9480280 R09: 0000000000000001 [ 3486.319490][ C0] R10: 0000000000000000 R11: ffff88809f12b99f R12: ffff8880a5f303c0 [ 3486.319496][ C0] R13: ffff8880a9480280 R14: ffff8880a9481624 R15: ffff8880a9481626 [ 3486.319502][ C0] FS: 0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 3486.319507][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3486.319513][ C0] CR2: 0000000000456d34 CR3: 000000007299e000 CR4: 00000000001406f0 [ 3486.319519][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3486.319525][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3486.319528][ C0] Call Trace: [ 3486.562527][ T1041] Kernel panic - not syncing: hung_task: blocked tasks [ 3486.569443][ T1041] CPU: 0 PID: 1041 Comm: khungtaskd Not tainted 5.0.0-rc1-next-20190110 #9 [ 3486.578020][ T1041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3486.588073][ T1041] Call Trace: [ 3486.591372][ T1041] dump_stack+0x1db/0x2d0 [ 3486.595707][ T1041] ? dump_stack_print_info.cold+0x20/0x20 [ 3486.601444][ T1041] panic+0x2cb/0x65c [ 3486.605346][ T1041] ? add_taint.cold+0x16/0x16 [ 3486.610056][ T1041] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 3486.615694][ T1041] ? ___preempt_schedule+0x16/0x18 [ 3486.620813][ T1041] ? nmi_trigger_cpumask_backtrace+0x19e/0x236 [ 3486.626974][ T1041] ? nmi_trigger_cpumask_backtrace+0x1fa/0x236 [ 3486.633148][ T1041] ? nmi_trigger_cpumask_backtrace+0x204/0x236 [ 3486.639304][ T1041] ? nmi_trigger_cpumask_backtrace+0x19e/0x236 [ 3486.645477][ T1041] watchdog+0xbcc/0x1170 [ 3486.649750][ T1041] ? reset_hung_task_detector+0xd0/0xd0 [ 3486.655295][ T1041] ? lockdep_hardirqs_on+0x415/0x5d0 [ 3486.660597][ T1041] ? trace_hardirqs_on+0xbd/0x310 [ 3486.665623][ T1041] ? kasan_check_read+0x11/0x20 [ 3486.670474][ T1041] ? __kthread_parkme+0xc3/0x1b0 [ 3486.675418][ T1041] ? trace_hardirqs_off_caller+0x300/0x300 [ 3486.681221][ T1041] ? do_raw_spin_trylock+0x270/0x270 [ 3486.687020][ T1041] ? schedule+0x108/0x350 [ 3486.691351][ T1041] ? do_raw_spin_trylock+0x270/0x270 [ 3486.696646][ T1041] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 3486.702454][ T1041] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 3486.708696][ T1041] ? __kthread_parkme+0xfb/0x1b0 [ 3486.713638][ T1041] kthread+0x357/0x430 [ 3486.717709][ T1041] ? reset_hung_task_detector+0xd0/0xd0 [ 3486.723252][ T1041] ? kthread_stop+0x920/0x920 [ 3486.727963][ T1041] ret_from_fork+0x3a/0x50 [ 3486.733532][ T1041] Kernel Offset: disabled [ 3486.737900][ T1041] Rebooting in 86400 seconds..